hd.3lordserial.xyz/templates/lordfun/fonts/fontawesome-webfont.woff2?v=4.7.0
200 OK 77 kB URL GET HTTP/3 hd.3lordserial.xyz/templates/lordfun/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject3lordserial.xyz
Fingerprint55:F3:EC:F8:C5:A9:65:3A:AD:8F:B2:1A:59:6B:1A:41:7E:A0:65:DF
ValidityWed, 29 Nov 2023 21:49:20 GMT - Tue, 27 Feb 2024 21:49:19 GMT
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /templates/lordfun/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: hd.3lordserial.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hd.3lordserial.xyz/146-kasl-sv-13.html
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=c0506767ddef664786c878030c4f8c6b
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 01 Dec 2023 20:54:52 GMT
content-type: font/woff2
content-length: 77160
last-modified: Tue, 06 Sep 2022 06:42:38 GMT
etag: "6316ebde-12d68"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4185
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QxaVpB%2B0L3pBJbs5w4IyCaeot%2FGVlUQBf4gOx7CmrMesXa80Gi05KpPa7Kc0PEh6yrB10e8s8GC70gEQzI36S%2FQPDuGuEe2yZGQPno9Acmp33xQ%2FDtam73GMBROVMbosVXhuzKY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82ee3a520e6656a8-OSL
alt-svc: h3=":443"; ma=86400
api.strvid.ws/embed/movie/455
200 OK 24 kB URL GET HTTP/1.1 api.strvid.ws/embed/movie/455
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerSectigo Limited
Subjectapi.strvid.ws
Fingerprint03:16:4D:D3:51:3C:A4:93:A0:13:B4:36:B9:25:19:E7:D3:48:65:81
ValidityThu, 02 Mar 2023 00:00:00 GMT - Sat, 02 Mar 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (49346)
Hash b4587f93833f00a75dbdead1bb56b5c4
1476d91c13c972d49a9139928d0e35eb7dcfd711
79390349f86e8a4384ae0ccd5d15fe741dc006b4f7e3d5f763805c72d31c349b
GET /embed/movie/455 HTTP/1.1
Host: api.strvid.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 01 Dec 2023 20:54:52 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: no-cache, no-store, must-revalidate
Expires: 1970-01-01 00:00:00
Pragma: no-cache
Set-Cookie: _uid=24ac65fe-0584-46c3-9a78-42947ff42283; Path=/; Domain=strvid.ws; Max-Age=31104000; Secure
Vary: *
Content-Encoding: gzip
videotoday.site/frndnp.php?ver=1&autoplay=1&v=647a534f9f5fb9ced25ee7db57ef9c72&cb=805e1579-dbe0-4830-bffa-dd6b2459b8b3&fclose=false&sub_id=ap&fmt_id=1&testad=no&nomon=1&cdiv=221&r=https%3A%2F%2Fhd.3lordserial.xyz%2F146-kasl-sv-13.html&frnd=true
23 kB URL GET videotoday.site/frndnp.php?ver=1&autoplay=1&v=647a534f9f5fb9ced25ee7db57ef9c72&cb=805e1579-dbe0-4830-bffa-dd6b2459b8b3&fclose=false&sub_id=ap&fmt_id=1&testad=no&nomon=1&cdiv=221&r=https%3A%2F%2Fhd.3lordserial.xyz%2F146-kasl-sv-13.html&frnd=true
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGoogle Trust Services LLC
Subjectvideotoday.site
FingerprintA8:0A:0C:FF:C9:74:01:DA:F2:F4:6F:1A:46:B4:A3:2D:53:73:57:62
ValidityFri, 06 Oct 2023 02:55:12 GMT - Thu, 04 Jan 2024 02:55:11 GMT
File type ASCII text, with very long lines (41685)
Hash de7fe0949d471bc6a707a372d2a51830
421a5176bdb2096cff1aca9974bb9eecdf651d94
62a0f0ee9203fd1a3e8665cad892988cafbd65e238d6e687c704303ad9a267e6
GET /frndnp.php?ver=1&autoplay=1&v=647a534f9f5fb9ced25ee7db57ef9c72&cb=805e1579-dbe0-4830-bffa-dd6b2459b8b3&fclose=false&sub_id=ap&fmt_id=1&testad=no&nomon=1&cdiv=221&r=https%3A%2F%2Fhd.3lordserial.xyz%2F146-kasl-sv-13.html&frnd=true HTTP/1.1
Host: videotoday.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 20:54:53 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-cache: Yac
x-movieads-country: NO
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rJ5pGFHzgIk16mU2mSZlBNY3jCWmFjq8n3ZVSQ6KdLSYl0nbOJhX%2BbP1zVSVVePy5DwYrG4%2FThOC3dJQp86FBxGXeD3YIFI2wN59y2YrGfnF7%2Bo2PqhJ%2BR4AUuVOdJogST8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82ee3a550d51b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
s.myangular.life/player?cat=support&hit=async&description=yes
200 OK 0 B URL GET HTTP/1.1 s.myangular.life/player?cat=support&hit=async&description=yes
IP
ASN #24940 Hetzner Online GmbH
Requested by https://api.strvid.ws/embed/movie/455
Certificate IssuerSectigo Limited
Subjects.myangular.life
Fingerprint3A:21:0F:72:24:43:49:14:06:28:C6:D0:A6:10:6B:D7:B2:EA:5A:66
ValidityTue, 04 Apr 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /player?cat=support&hit=async&description=yes HTTP/1.1
Host: s.myangular.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://api.strvid.ws/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 01 Dec 2023 20:54:53 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
s.myangular.life/player?cat=support&hit=wasm&description=wasm%20dc
200 OK 0 B URL GET HTTP/1.1 s.myangular.life/player?cat=support&hit=wasm&description=wasm%20dc
IP
ASN #24940 Hetzner Online GmbH
Requested by https://api.strvid.ws/embed/movie/455
Certificate IssuerSectigo Limited
Subjects.myangular.life
Fingerprint3A:21:0F:72:24:43:49:14:06:28:C6:D0:A6:10:6B:D7:B2:EA:5A:66
ValidityTue, 04 Apr 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /player?cat=support&hit=wasm&description=wasm%20dc HTTP/1.1
Host: s.myangular.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://api.strvid.ws/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 01 Dec 2023 20:54:53 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
hd.3lordserial.xyz/uploads/posts/2022-03/409640_1646822003.jpg
200 OK 15 kB URL GET HTTP/3 hd.3lordserial.xyz/uploads/posts/2022-03/409640_1646822003.jpg
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject3lordserial.xyz
Fingerprint55:F3:EC:F8:C5:A9:65:3A:AD:8F:B2:1A:59:6B:1A:41:7E:A0:65:DF
ValidityWed, 29 Nov 2023 21:49:20 GMT - Tue, 27 Feb 2024 21:49:19 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 200x300, components 3\012- data
Hash 496462d18d3b4430dc289b2ad59c2545
aa2cbbb70eac86c03758bf4b287c6e9e2da6afd3
19c097200128c36fecdc47736998f11bebd99b1c91aecceebb70ec29725e5d57
GET /uploads/posts/2022-03/409640_1646822003.jpg HTTP/1.1
Host: hd.3lordserial.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/146-kasl-sv-13.html
Cookie: PHPSESSID=c0506767ddef664786c878030c4f8c6b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 01 Dec 2023 20:54:52 GMT
content-type: image/jpeg
last-modified: Tue, 06 Sep 2022 06:42:38 GMT
vary: Accept-Encoding
etag: W/"6316ebde-3af7"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4205
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7VeCsnzYrnbIIWqjnp7nrfMfRhOKDj5FbVs%2FmRIdh5hYr4OPiSNWVu01eC4jaXXFxXUYD0%2BC5M7%2BZ6qXYbA%2FeEhbp4APkN4QWg98JojLyeHOxGCjgWD8o9WoSBsQLcHifDIKbaQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82ee3a521e7256a8-OSL
alt-svc: h3=":443"; ma=86400
s.myangular.life/player?cat=support&hit=opus&description=true
200 OK 0 B URL GET HTTP/1.1 s.myangular.life/player?cat=support&hit=opus&description=true
IP
ASN #24940 Hetzner Online GmbH
Requested by https://api.strvid.ws/embed/movie/455
Certificate IssuerSectigo Limited
Subjects.myangular.life
Fingerprint3A:21:0F:72:24:43:49:14:06:28:C6:D0:A6:10:6B:D7:B2:EA:5A:66
ValidityTue, 04 Apr 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /player?cat=support&hit=opus&description=true HTTP/1.1
Host: s.myangular.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://api.strvid.ws/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 01 Dec 2023 20:54:53 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
logger.moviead55.ru/logger.php?t=target_country_load&c=805e1579-dbe0-4830-bffa-dd6b2459b8b3&a=&m=%7B%22browser%22%3A%22%7B%5C%22name%5C%22%3A%5C%22firefox%5C%22%2C%5C%22version%5C%22%3A%5C%22105%5C%22%7D%22%2C%22isMobile%22%3Afalse%2C%22format%22%3A%22new%22%7D&v=647a534f9f5fb9ced25ee7db57ef9c72&o=undefined
200 OK 933 B URL GET HTTP/2 logger.moviead55.ru/logger.php?t=target_country_load&c=805e1579-dbe0-4830-bffa-dd6b2459b8b3&a=&m=%7B%22browser%22%3A%22%7B%5C%22name%5C%22%3A%5C%22firefox%5C%22%2C%5C%22version%5C%22%3A%5C%22105%5C%22%7D%22%2C%22isMobile%22%3Afalse%2C%22format%22%3A%22new%22%7D&v=647a534f9f5fb9ced25ee7db57ef9c72&o=undefined
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash ed375e7c1dc0846cf94200e340142f25
01dc17f98a4954af096ce0ff9fbd69cd7165d42c
1ef9aedc924dc68a25b43c46b75eb6d787489707237da8cd8fd0102cf9520895
GET /logger.php?t=target_country_load&c=805e1579-dbe0-4830-bffa-dd6b2459b8b3&a=&m=%7B%22browser%22%3A%22%7B%5C%22name%5C%22%3A%5C%22firefox%5C%22%2C%5C%22version%5C%22%3A%5C%22105%5C%22%7D%22%2C%22isMobile%22%3Afalse%2C%22format%22%3A%22new%22%7D&v=647a534f9f5fb9ced25ee7db57ef9c72&o=undefined HTTP/1.1
Host: logger.moviead55.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 20:54:52 GMT
content-type: Content-Type: image/png
vary: Accept-Encoding
x-movieads-le: true
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=vhd&rnd=1701464093
301 Moved Permanently 0 B URL GET HTTP/2 code.moviead55.ru/go/cinit?cn=vhd&rnd=1701464093
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=vhd&rnd=1701464093 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 01 Dec 2023 20:54:53 GMT
content-length: 0
location: https://a.videohead.tech/sync?ssp=44
set-cookie: sky_uuid=41b0ba00-2ac8-c3cc-87a0-6106da3a8756; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=gtnt&rnd=1701464093
301 Moved Permanently 0 B URL GET HTTP/2 code.moviead55.ru/go/cinit?cn=gtnt&rnd=1701464093
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=gtnt&rnd=1701464093 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 01 Dec 2023 20:54:53 GMT
content-length: 0
location: https://px.adhigh.net/p/cm/skyadvert?u=a2f3a78f-94cb-25a7-57bb-6399b931b786
set-cookie: sky_uuid=a2f3a78f-94cb-25a7-57bb-6399b931b786; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=btwcookie&rnd=1701464093
301 Moved Permanently 0 B URL GET HTTP/2 code.moviead55.ru/go/cinit?cn=btwcookie&rnd=1701464093
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=btwcookie&rnd=1701464093 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 01 Dec 2023 20:54:53 GMT
content-length: 0
location: https://ads.betweendigital.com/match?bidder_id=34348&callback_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dbtwcookie%26bid%3D%24%7BUSER_ID%7D
set-cookie: sky_uuid=d4ea809b-5154-c658-90a3-ca56a57416ab; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
s.myangular.life/player?cat=frame&hit=sub&host=api
200 OK 0 B URL GET HTTP/1.1 s.myangular.life/player?cat=frame&hit=sub&host=api
IP
ASN #24940 Hetzner Online GmbH
Requested by https://api.strvid.ws/embed/movie/455
Certificate IssuerSectigo Limited
Subjects.myangular.life
Fingerprint3A:21:0F:72:24:43:49:14:06:28:C6:D0:A6:10:6B:D7:B2:EA:5A:66
ValidityTue, 04 Apr 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /player?cat=frame&hit=sub&host=api HTTP/1.1
Host: s.myangular.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://api.strvid.ws/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 01 Dec 2023 20:54:53 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
hd.3lordserial.xyz/engine/classes/min/index.php?f=engine/classes/js/jqueryui.js,engine/classes/js/dle_js.js,engine/classes/js/bbcodes.js&v=cbebf
200 OK 40 kB URL GET HTTP/3 hd.3lordserial.xyz/engine/classes/min/index.php?f=engine/classes/js/jqueryui.js,engine/classes/js/dle_js.js,engine/classes/js/bbcodes.js&v=cbebf
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject3lordserial.xyz
Fingerprint55:F3:EC:F8:C5:A9:65:3A:AD:8F:B2:1A:59:6B:1A:41:7E:A0:65:DF
ValidityWed, 29 Nov 2023 21:49:20 GMT - Tue, 27 Feb 2024 21:49:19 GMT
File type ASCII text, with very long lines (18446), with CRLF line terminators
Hash dfe48653114336364782f5ba29ac32c4
f2ba72145a4db4c00500e638f62be786dfd568e3
8f5510595ba5624489cfccaf984e38a77d7622c2c119b58fff3ae1c8e36456d6
GET /engine/classes/min/index.php?f=engine/classes/js/jqueryui.js,engine/classes/js/dle_js.js,engine/classes/js/bbcodes.js&v=cbebf HTTP/1.1
Host: hd.3lordserial.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/146-kasl-sv-13.html
Cookie: PHPSESSID=c0506767ddef664786c878030c4f8c6b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 01 Dec 2023 20:54:52 GMT
content-type: application/x-javascript; charset=utf-8
x-powered-by: PHP/7.4.33
expires: Sat, 30 Nov 2024 20:54:52 GMT
vary: Accept-Encoding
cache-control: max-age=31536000
last-modified: Thu, 06 Jul 2023 21:06:23 GMT
etag: W/"pub1688677583;gz"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cdmWXDVXgkMkQIL%2F8lbQ%2FRQCjy9Y4Aoqh5B3XIdKqODqkpQxsw1Z4CNagrD50BlszfaPrbXBqudPQCmg8uxgxYemQY5QOlWGjSsaSyPufqsf6%2BO65gvrBAhTy8TVHQ%2FoJcea0ns%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82ee3a521e7956a8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
code.moviead55.ru/go/cinit?cn=sapecookie&rnd=1701464093
301 Moved Permanently 0 B URL GET HTTP/2 code.moviead55.ru/go/cinit?cn=sapecookie&rnd=1701464093
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=sapecookie&rnd=1701464093 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 01 Dec 2023 20:54:53 GMT
content-length: 0
location: https://www.acint.net/rmatch?dp=167&euid=30dd7735-cf40-e7d8-96a0-75795845c1ef&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D%24%7BUSER_ID%7D
set-cookie: sky_uuid=30dd7735-cf40-e7d8-96a0-75795845c1ef; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
hd.3lordserial.xyz/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
200 OK 2.5 kB URL GET HTTP/3 hd.3lordserial.xyz/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject3lordserial.xyz
Fingerprint55:F3:EC:F8:C5:A9:65:3A:AD:8F:B2:1A:59:6B:1A:41:7E:A0:65:DF
ValidityWed, 29 Nov 2023 21:49:20 GMT - Tue, 27 Feb 2024 21:49:19 GMT
File type gzip compressed data, from Unix\012- data
Hash 167b21121ebf2e2886b73eb6cfa98651
0694b9e27fc17d327cb6df6d78009b618c03f14d
421608256239a5e7a940f5ad45cbe272f64c20f113cc052c80592ef174a1fce6
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: hd.3lordserial.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/146-kasl-sv-13.html
Cookie: PHPSESSID=c0506767ddef664786c878030c4f8c6b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 01 Dec 2023 20:54:52 GMT
content-type: application/javascript
last-modified: Tue, 28 Nov 2023 16:06:21 GMT
etag: W/"65660ffd-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dAOwkXY%2BQ%2BuUJVuj5cBMOLku4T2YweFNNyGcE5ywiBQAPvjGt5S2UWLtrpPNxld3U7%2F9ACic9h39vyKjXsZwmvO2l54wyFt8F4tWRxQQssM9H32kRhZuMK4fK03%2BMSaoyte8MrM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82ee3a521e7656a8-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sun, 03 Dec 2023 20:54:52 GMT
cache-control: max-age=172800, public
content-encoding: gzip
cdn.jsdelivr.net/npm/venom-player@0.2.86
200 OK 0 B URL GET HTTP/2 cdn.jsdelivr.net/npm/venom-player@0.2.86
IP
Requested by https://api.strvid.ws/embed/movie/455
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /npm/venom-player@0.2.86 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://api.strvid.ws
DNT: 1
Connection: keep-alive
Referer: https://api.strvid.ws/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.2.86
x-jsd-version-type: version
etag: W/"b0a89-1BOiGy3ecB+l817zXDSjVzo8z10"
content-encoding: br
accept-ranges: bytes
date: Fri, 01 Dec 2023 20:54:53 GMT
age: 4996005
x-served-by: cache-fra-eddf8230080-FRA, cache-bma1677-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 198514
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=dgm&rnd=1701464093
301 Moved Permanently 0 B URL GET HTTP/2 code.moviead55.ru/go/cinit?cn=dgm&rnd=1701464093
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=dgm&rnd=1701464093 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 01 Dec 2023 20:54:53 GMT
content-length: 0
location: https://sync.opendsp.ru/match/Movieads?id=${UUID}
set-cookie: sky_uuid=69783509-6531-2301-4b08-c3f0bf2e359a; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=hbrdcookie2&rnd=1701464093
301 Moved Permanently 0 B URL GET HTTP/2 code.moviead55.ru/go/cinit?cn=hbrdcookie2&rnd=1701464093
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=hbrdcookie2&rnd=1701464093 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 01 Dec 2023 20:54:53 GMT
content-length: 0
location: https://dm-eu.hybrid.ai/match?id=185&burl=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dhbrdcookie2%26bid%3D%24%7BVID%7D
set-cookie: sky_uuid=472bbd7c-26d3-c837-3bf6-13c5970217f9; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=solta&rnd=1701464093
301 Moved Permanently 0 B URL GET HTTP/2 code.moviead55.ru/go/cinit?cn=solta&rnd=1701464093
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=solta&rnd=1701464093 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 01 Dec 2023 20:54:53 GMT
content-length: 0
location: https://kimberlite.io/rtb/sync/skyadvert?u=b11f561f-9141-e7c6-4889-17625eb811c6
set-cookie: sky_uuid=b11f561f-9141-e7c6-4889-17625eb811c6; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=bzcookie&rnd=1701464093
301 Moved Permanently 0 B URL GET HTTP/2 code.moviead55.ru/go/cinit?cn=bzcookie&rnd=1701464093
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=bzcookie&rnd=1701464093 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 01 Dec 2023 20:54:53 GMT
content-length: 0
location: https://exchange.buzzoola.com/cookiesync/redirect/skyadvert?redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dbzcookie%26bid%3D%24%7BUUID%7D
set-cookie: sky_uuid=f7cb13de-5f9c-0dde-ad3f-972479021d3d; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=otmbid&rnd=1701464093
301 Moved Permanently 0 B URL GET HTTP/2 code.moviead55.ru/go/cinit?cn=otmbid&rnd=1701464093
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=otmbid&rnd=1701464093 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 01 Dec 2023 20:54:53 GMT
content-length: 0
location: https://sync.dmp.otm-r.com/match/skyadvert
set-cookie: sky_uuid=8843e40b-35d2-1ff5-81f3-0030f0f5e75d; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
hd.3lordserial.xyz/templates/lordfun/style/full.css?v=2.6
200 OK 35 kB URL GET HTTP/3 hd.3lordserial.xyz/templates/lordfun/style/full.css?v=2.6
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject3lordserial.xyz
Fingerprint55:F3:EC:F8:C5:A9:65:3A:AD:8F:B2:1A:59:6B:1A:41:7E:A0:65:DF
ValidityWed, 29 Nov 2023 21:49:20 GMT - Tue, 27 Feb 2024 21:49:19 GMT
File type Unicode text, UTF-8 text, with very long lines (65512), with no line terminators
Hash c358cfd9c6b65d1301c3e98a57eeaf54
ba34025c0ca5c2f1435d551b1318830b5134b989
199e8e582afe0a43c6f973d82653d122b636c06d816219e8f41df532b6aaaa4d
GET /templates/lordfun/style/full.css?v=2.6 HTTP/1.1
Host: hd.3lordserial.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/146-kasl-sv-13.html
Cookie: PHPSESSID=c0506767ddef664786c878030c4f8c6b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 01 Dec 2023 20:54:52 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=127503
etag: W/"654a170f-1f20f"
last-modified: Tue, 07 Nov 2023 10:53:03 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4205
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m5DbiFlzHgj98BmKeqrenzlqjjelICFe8vymeD4FrmuvXQgIYDe3GAoMosK67KStk4wzH6hUpbK3lvaUJKM88LB9V%2BtibM%2FNgVMSDVkBGm3ScpAP%2FMUdJkkBpPO%2BR2np1ZV2jgU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82ee3a520e6556a8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
code.moviead55.ru/go/cinit?cn=gonetbid&rnd=1701464093
301 Moved Permanently 0 B URL GET HTTP/2 code.moviead55.ru/go/cinit?cn=gonetbid&rnd=1701464093
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=gonetbid&rnd=1701464093 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 01 Dec 2023 20:54:53 GMT
content-length: 0
location: https://sync.gonet-ads.com/match/SkyAdvert?id=be9fe05e-bd8f-fcbd-c0df-d3b5691c6bb7
set-cookie: sky_uuid=be9fe05e-bd8f-fcbd-c0df-d3b5691c6bb7; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
www.acint.net/mc/?dp=167
302 Found 154 B IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintD1:98:D5:B7:91:FF:E3:AC:0C:2E:5F:9E:20:DE:E5:45:A8:C2:0E:B1
ValidityTue, 31 Oct 2023 03:36:00 GMT - Mon, 29 Jan 2024 03:35:59 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /mc/?dp=167 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: openresty
date: Fri, 01 Dec 2023 20:54:53 GMT
content-type: text/html
content-length: 154
location: /mc/?dp=167&tc=1
set-cookie: test_cookie=CheckForPermission; path=/; Secure; SameSite=None; domain=.acint.net; expires=Fri, 01-Dec-23 21:04:53 GMT
aid=fwAAAWVqSB0n/jbru+FxAnBO9uArXikJ9bP7KWs+DcG51+8Z; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
www.acint.net/rmatch?dp=167&euid=30dd7735-cf40-e7d8-96a0-75795845c1ef&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D%24%7BUSER_ID%7D
302 Found 154 B URL GET HTTP/2 www.acint.net/rmatch?dp=167&euid=30dd7735-cf40-e7d8-96a0-75795845c1ef&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D%24%7BUSER_ID%7D
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintD1:98:D5:B7:91:FF:E3:AC:0C:2E:5F:9E:20:DE:E5:45:A8:C2:0E:B1
ValidityTue, 31 Oct 2023 03:36:00 GMT - Mon, 29 Jan 2024 03:35:59 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=167&euid=30dd7735-cf40-e7d8-96a0-75795845c1ef&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWVqSB0n/jbru+FxAnBO9uArXikJ9bP7KWs+DcG51+8Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Fri, 01 Dec 2023 20:54:53 GMT
content-type: text/html
content-length: 154
location: https://ssp-rtb.sape.ru/rmatch?r=https%3A%2F%2Facint.net%2Frmatch%3Fdp%3D14%26euid%3D$%7BUSER_ID%7D%26r%3Dhttps%253A%252F%252Fcode.moviead55.ru%252Fgo%252Fcsync%253Fcn%253Dsapecookie%2526bid%253D%2524%257BUSER_ID%257D&dp=14
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
set-cookie: cSyncDp14v4=1701464093; expires=Sun, 31-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/venom-player@0.2.86/dist/theme-classic.js
200 OK 5.7 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/venom-player@0.2.86/dist/theme-classic.js
IP
Requested by https://api.strvid.ws/embed/movie/455
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type ASCII text, with very long lines (15451), with no line terminators
Hash 210c3f63bba6881ea3787a533af7cca0
5f3766edd39ae2502c8ee06bb3630cc447f6f216
b4e7dc4a29652ef34ede138da2d02209e51d9f3f2a8c07d5e891a85fca16a822
GET /npm/venom-player@0.2.86/dist/theme-classic.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://api.strvid.ws
DNT: 1
Connection: keep-alive
Referer: https://api.strvid.ws/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.2.86
x-jsd-version-type: version
etag: W/"3c5b-Xzdm7dOa4lAsjuBrs2MMxEf28hY"
content-encoding: br
accept-ranges: bytes
date: Fri, 01 Dec 2023 20:54:53 GMT
age: 4996005
x-served-by: cache-fra-eddf8230100-FRA, cache-bma1677-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 5651
X-Firefox-Spdy: h2
s.myangular.life/ws?cdn
0 B IP
ASN #24940 Hetzner Online GmbH
Certificate IssuerSectigo Limited
Subjects.myangular.life
Fingerprint3A:21:0F:72:24:43:49:14:06:28:C6:D0:A6:10:6B:D7:B2:EA:5A:66
ValidityTue, 04 Apr 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ws?cdn HTTP/1.1
Host: s.myangular.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://api.strvid.ws
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: gAK2lKKrkYYsTTz7YifqKQ==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Fri, 01 Dec 2023 20:54:53 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: tIrwdE+qj23Wa1hJaqKf58sj1B0=
logger.moviead55.ru/logger.php?t=cdiv&c=805e1579-dbe0-4830-bffa-dd6b2459b8b3&a=&m=221&v=647a534f9f5fb9ced25ee7db57ef9c72&o=
200 OK 81 B URL GET HTTP/2 logger.moviead55.ru/logger.php?t=cdiv&c=805e1579-dbe0-4830-bffa-dd6b2459b8b3&a=&m=221&v=647a534f9f5fb9ced25ee7db57ef9c72&o=
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash b357a19c87624c7c4d131aeeb4ae677f
c7a9c45fd419815a5ab1998503a9f03514c0e229
497790947d4666760ce38f3c00e852c71fdb66cae849bae8e9ede352719e1581
GET /logger.php?t=cdiv&c=805e1579-dbe0-4830-bffa-dd6b2459b8b3&a=&m=221&v=647a534f9f5fb9ced25ee7db57ef9c72&o= HTTP/1.1
Host: logger.moviead55.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 20:54:53 GMT
content-type: Content-Type: image/png
vary: Accept-Encoding
x-movieads-le: true
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
user91471.clients-cdnnow.ru/yasdk/vw.js?v3
1.4 kB URL user91471.clients-cdnnow.ru/yasdk/vw.js?v3
IP
File type gzip compressed data, from Unix\012- data
Hash 26be30e7f79fe70bc6fb32d0ead8853c
5ece4a7728972a402883b277248365ec7046ea66
0f20ba4a2e44b13c48aa10b0cae5ba38df53d239c3a862ba47e46cf7bd822ca4
GET /yasdk/vw.js?v3 HTTP/1.1
Host: user91471.clients-cdnnow.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 20:54:53 GMT
content-type: application/javascript
last-modified: Fri, 21 Jul 2023 13:34:19 GMT
vary: Accept-Encoding
etag: W/"64ba895b-12fc"
x-movieads-country: RU
content-encoding: gzip
x-edge-cache: HIT
x-edge-ip: 172.19.32.3
X-Firefox-Spdy: h2
otclick-adv.ru/core/match.gif?s=30&reference=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dotclkbid%26bid%3D%23%7BUID%7D
302 Found 124 B URL GET HTTP/2 otclick-adv.ru/core/match.gif?s=30&reference=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dotclkbid%26bid%3D%23%7BUID%7D
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subjectotclick.ru
Fingerprint3A:7D:83:98:7E:DD:BF:D7:8A:A8:6E:FB:B0:9E:9F:DF:A9:37:C8:54
ValidityMon, 02 Oct 2023 16:11:22 GMT - Sun, 31 Dec 2023 16:11:21 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash c73e35f73ed5c795c70cf66e99088b7c
63a9ffe5d0e5b4070819b95ef564a58d8a3a3a1c
80034a9712f07e6b0577c7e5bf6d5d718736593e7d21c81dd1a3cbdb4eb860de
GET /core/match.gif?s=30&reference=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dotclkbid%26bid%3D%23%7BUID%7D HTTP/1.1
Host: otclick-adv.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.24.0
date: Fri, 01 Dec 2023 20:54:53 GMT
content-length: 124
location: https://code.moviead55.ru/go/csync?cn=otclkbid&bid=VUG31mKFfTelneA
p3p: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA
cache-control: no-cache, max-age=0, must-revalidate, no-store
pragma: no-cache
expires: Thursday, 01-Jan-1970 00:00:00 GMT
set-cookie: idntfy=VUG31mKFfTelneA; expires=Mon, 28-Nov-2033 20:54:53 GMT; domain=otclick-adv.ru; path=/core; SameSite=None; Secure
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dm-eu.hybrid.ai/match?id=185&burl=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dhbrdcookie2%26bid%3D%24%7BVID%7D
302 Found 0 B URL GET HTTP/2 dm-eu.hybrid.ai/match?id=185&burl=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dhbrdcookie2%26bid%3D%24%7BVID%7D
IP
ASN #58272 LeaderTelecom B.V.
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerSectigo Limited
Subject*.hybrid.ai
Fingerprint40:F9:88:C5:EF:2B:26:9C:61:DC:CC:ED:B1:67:03:F4:E2:CC:B7:C8
ValidityThu, 14 Sep 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?id=185&burl=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dhbrdcookie2%26bid%3D%24%7BVID%7D HTTP/1.1
Host: dm-eu.hybrid.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 01 Dec 2023 20:54:53 GMT
content-length: 0
cache-control: no-cache, no-store
pragma: no-cache
expires: -1
location: https://code.moviead55.ru/go/csync?cn=hbrdcookie2&bid=86236e1e32982c274142
set-cookie: vid=86236e1e32982c274142; Expires=Sat, 30 Nov 2024 20:54:53 GMT; Domain=.hybrid.ai; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC"
x-mode: 554
x-xss-protection: 1; mode=block
access-control-allow-origin: https://hd.3lordserial.xyz
access-control-allow-credentials: true
server: Hybrid Web Server
X-Firefox-Spdy: h2
api.stiven-king.com/storage.html
200 OK 426 B URL GET HTTP/1.1 api.stiven-king.com/storage.html
IP
ASN #206264 Amarutu Technology Ltd
Requested by https://api.strvid.ws/embed/movie/455
Certificate IssuerLet's Encrypt
Subject*.stiven-king.com
FingerprintA5:D2:DD:E9:E4:81:45:1B:AD:29:61:50:C3:6A:18:61:28:DE:6F:8A
ValidityFri, 29 Sep 2023 04:00:49 GMT - Thu, 28 Dec 2023 04:00:48 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 6f0af5eceb02df06d9771a821c7f1c03
e3fadc9c79be329c255348417a56bc438ad27810
0a92085060d2e4bffd6140b5f99fcec79ec0f82eaf5a41d16873d9c19ce00b7b
GET /storage.html HTTP/1.1
Host: api.stiven-king.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://api.strvid.ws/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 01 Dec 2023 20:54:53 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 13 Sep 2023 09:52:22 GMT
ETag: W/"65018656-369"
Content-Encoding: gzip
exchange.buzzoola.com/cookiesync/redirect/skyadvert?redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dbzcookie%26bid%3D%24%7BUUID%7D
301 Moved Permanently 126 B URL GET HTTP/2 exchange.buzzoola.com/cookiesync/redirect/skyadvert?redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dbzcookie%26bid%3D%24%7BUUID%7D
IP
ASN #24940 Hetzner Online GmbH
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerSectigo Limited
Subject*.buzzoola.com
FingerprintE6:7F:94:98:CF:E4:CF:88:C7:8C:FC:16:A3:D7:D0:10:4E:EC:AB:F1
ValidityMon, 04 Sep 2023 00:00:00 GMT - Fri, 04 Oct 2024 23:59:59 GMT
File type HTML document, ASCII text
Hash 95d8deb55bddd69145e5e0a59cd04b94
90edcfc4c247b09f24dfd5c7f18d6e9c3082cf85
11a152cd6ed82a47a6d39a1d4b8aa423b99df60931efd12b5f41258278ff5bf4
GET /cookiesync/redirect/skyadvert?redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dbzcookie%26bid%3D%24%7BUUID%7D HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 01 Dec 2023 20:54:53 GMT
content-type: text/html; charset=utf-8
content-length: 126
location: https://code.moviead55.ru/go/csync?cn=bzcookie&bid=62702512-19f3-4f1f-709f-f1701214a947
serverid: TODO
X-Firefox-Spdy: h2
match.ohmy.bid/cm?ssp=skyadv&redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dohmybid%26bid%3D%24%7BUUID%7D
302 Found 0 B URL GET HTTP/2 match.ohmy.bid/cm?ssp=skyadv&redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dohmybid%26bid%3D%24%7BUUID%7D
IP
ASN #24940 Hetzner Online GmbH
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subjectmatch.ohmy.bid
Fingerprint9E:80:FE:F1:53:4B:43:82:19:E2:9C:5A:93:AF:43:96:5D:6C:7B:69
ValidityFri, 24 Nov 2023 20:06:51 GMT - Thu, 22 Feb 2024 20:06:50 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?ssp=skyadv&redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dohmybid%26bid%3D%24%7BUUID%7D HTTP/1.1
Host: match.ohmy.bid
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Fri, 01 Dec 2023 20:54:53 GMT
content-length: 0
bidder: bid-01
location: https://code.moviead55.ru/go/csync?cn=ohmybid&bid=8ff58d1b-9d36-4f21-a30f-e57ae193aeac
set-cookie: uid=8ff58d1b-9d36-4f21-a30f-e57ae193aeac.656a481d.d1f4aba5648db48c; domain=.ohmy.bid; path=/; expires=Sun, 31-Dec-2023 20:54:53 GMT; SameSite=None; Secure;
access-control-allow-credentials: true
X-Firefox-Spdy: h2
t8.zcvh.net/v1/ws
0 B IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v1/ws HTTP/1.1
Host: t8.zcvh.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://api.strvid.ws
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: G/DHEiNaweyvBHvAV7ngLQ==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Fri, 01 Dec 2023 20:54:54 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: aWXqBQCj3HLjCCZrnPacfedp4wE=
kimberlite.io/rtb/sync/skyadvert?u=b11f561f-9141-e7c6-4889-17625eb811c6
307 Temporary Redirect 0 B URL GET HTTP/1.1 kimberlite.io/rtb/sync/skyadvert?u=b11f561f-9141-e7c6-4889-17625eb811c6
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.kimberlite.io
Fingerprint94:44:D9:27:EE:9B:5F:DE:36:07:ED:BA:1A:1D:62:2A:31:B6:43:72
ValidityFri, 10 Mar 2023 07:40:01 GMT - Wed, 10 Apr 2024 07:40:00 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtb/sync/skyadvert?u=b11f561f-9141-e7c6-4889-17625eb811c6 HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Fri, 01 Dec 2023 20:54:54 GMT
Content-Length: 0
Connection: keep-alive
cache-control: no-store
access-control-allow-credentials: true
access-control-allow-origin: *
location: https://code.moviead55.ru/go/csync?cn=solta&bid=ZWpIHhCxuEg
set-cookie: u=ZWpIHhCxuEg~3ibymx4COHG4rgC8hbNf8i9N5n8; path=/; max-age=7776000; samesite=none; httponly; secure
n=; max-age=0; samesite=none; httponly; secure
referrer-policy: no-referrer
server-timing: app;srv=8;dur=0.0002
sync.gonet-ads.com/match/SkyAdvert?id=be9fe05e-bd8f-fcbd-c0df-d3b5691c6bb7
200 OK 43 B URL GET HTTP/2 sync.gonet-ads.com/match/SkyAdvert?id=be9fe05e-bd8f-fcbd-c0df-d3b5691c6bb7
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerSectigo Limited
Subject*.gonet-ads.com
Fingerprint2B:BE:BF:75:0A:67:AA:2D:FA:0A:7F:92:F4:37:AE:9B:DD:47:68:2D
ValidityWed, 07 Jun 2023 00:00:00 GMT - Tue, 11 Jun 2024 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/SkyAdvert?id=be9fe05e-bd8f-fcbd-c0df-d3b5691c6bb7 HTTP/1.1
Host: sync.gonet-ads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 20:54:54 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/venom-player@0.2.86/dist/189.js
200 OK 143 kB URL GET HTTP/3 cdn.jsdelivr.net/npm/venom-player@0.2.86/dist/189.js
IP
Requested by https://api.strvid.ws/embed/movie/455
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 143 kB (142555 bytes)
Hash ea5b3848f4922f116f42e286c2a09ea2
8e3950a1b871be2027f3f9f5b4fe0fa30fe97f47
5b812741df3698efa4c953adc84499a05a572f7a6f2ab7731c8c7774aa51e57c
GET /npm/venom-player@0.2.86/dist/189.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://api.strvid.ws
DNT: 1
Connection: keep-alive
Referer: https://api.strvid.ws/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 142555
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.2.86
x-jsd-version-type: version
etag: W/"7f90d-jjlQobhxviAn8/n1tP4Pow/pf0c"
content-encoding: br
accept-ranges: bytes
date: Fri, 01 Dec 2023 20:54:54 GMT
age: 2744310
x-served-by: cache-fra-etou8220077-FRA, cache-bma1632-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn.jsdelivr.net/npm/venom-player@0.2.86/dist/dash.js
200 OK 84 B URL GET HTTP/3 cdn.jsdelivr.net/npm/venom-player@0.2.86/dist/dash.js
IP
Requested by https://api.strvid.ws/embed/movie/455
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type ASCII text, with no line terminators
Hash 84eee3ca3b339eebee1fa872f1ece64a
ac28843b7fcdc5023f65c747e51f009562b1c478
94a1443f69cfc9942e6a9d2ed2fc644702e271683b2e703f9adf65113a430ed5
GET /npm/venom-player@0.2.86/dist/dash.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://api.strvid.ws
DNT: 1
Connection: keep-alive
Referer: https://api.strvid.ws/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 84
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.2.86
x-jsd-version-type: version
etag: W/"71-rCiEO3/NxQI/ZcdH5R8AlWKxxHg"
content-encoding: br
accept-ranges: bytes
date: Fri, 01 Dec 2023 20:54:54 GMT
age: 4996006
x-served-by: cache-fra-etou8220030-FRA, cache-bma1632-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
vast.playmatic.video/vast.php?format=7&jsv=1.0&partner_id=8459371
200 OK 80 B URL POST HTTP/1.1 vast.playmatic.video/vast.php?format=7&jsv=1.0&partner_id=8459371
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subjectvast.playmatic.video
Fingerprint74:F3:80:77:BE:73:B2:65:AA:35:3E:A8:10:8F:B4:C8:B7:19:35:C2
ValiditySat, 28 Oct 2023 13:51:28 GMT - Fri, 26 Jan 2024 13:51:27 GMT
File type HTML document, ASCII text, with no line terminators
Hash f68e1549c6af686623fe6854fc863dde
ec80575f0562498fc197dc7148c4384050ef2298
9feb7b830608e95374df9ce7b85e99edc9544f595308c85d543b3d860fd3645f
POST /vast.php?format=7&jsv=1.0&partner_id=8459371 HTTP/1.1
Host: vast.playmatic.video
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 0
Origin: https://hd.3lordserial.xyz
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Fri, 01 Dec 2023 20:54:54 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/8.2.11
Set-Cookie: cookie_work=1701464094; expires=Mon, 28 Nov 2033 20:54:54 GMT; Max-Age=315360000; path=/; domain=playmatic.video; secure; SameSite=None
Access-Control-Allow-Origin: https://hd.3lordserial.xyz
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
sync.dmp.otm-r.com/match/skyadvert
204 No Content 0 B URL GET HTTP/2 sync.dmp.otm-r.com/match/skyadvert
IP
ASN #24940 Hetzner Online GmbH
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.dmp.otm-r.com
FingerprintC6:A2:9D:82:0D:D1:C1:2D:A4:ED:7F:05:13:52:5B:94:6B:10:58:D6
ValidityMon, 19 Jun 2023 10:50:51 GMT - Sat, 20 Jul 2024 10:50:50 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/skyadvert HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
server: nginx/1.17.2
date: Fri, 01 Dec 2023 20:54:54 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
hd.3lordserial.xyz/templates/lordfun/images/favicon.png
200 OK 3.1 kB URL GET HTTP/3 hd.3lordserial.xyz/templates/lordfun/images/favicon.png
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject3lordserial.xyz
Fingerprint55:F3:EC:F8:C5:A9:65:3A:AD:8F:B2:1A:59:6B:1A:41:7E:A0:65:DF
ValidityWed, 29 Nov 2023 21:49:20 GMT - Tue, 27 Feb 2024 21:49:19 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 51ed3314ca236d302b7a4c229b216a84
a3bd7ccc45f54b7f2a0c1a572bb628ebb2142270
ca732814bb0b1808000642169d9ea4616a6b0ffcc480cbdd01c3ebe60b871780
GET /templates/lordfun/images/favicon.png HTTP/1.1
Host: hd.3lordserial.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/146-kasl-sv-13.html
Cookie: PHPSESSID=c0506767ddef664786c878030c4f8c6b; _ma=96c8bcbc-89b2-47f3-b910-3f5529571cb5; viewed_ids=146
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 01 Dec 2023 20:54:54 GMT
content-type: image/png
last-modified: Tue, 06 Sep 2022 06:42:38 GMT
vary: Accept-Encoding
etag: W/"6316ebde-c2a"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4192
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eArE7M2PBw8DkjTWrUBFiAkZ1QzC5DfRNeUcm4Y%2FYTfKIoTwe9xdBds%2FjNs9p3Exig18buMHbAWeiwYnI3d4jVWYDMcep7ITjPQHcH%2FvCd4dGlji3vYzFi542yhHKMRdnAgFhBI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82ee3a5c5a3356a8-OSL
alt-svc: h3=":443"; ma=86400
code.moviead55.ru/go/csync?cn=otclkbid&bid=VUG31mKFfTelneA
200 OK 0 B URL GET HTTP/2 code.moviead55.ru/go/csync?cn=otclkbid&bid=VUG31mKFfTelneA
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=otclkbid&bid=VUG31mKFfTelneA HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: sky_uuid=be9fe05e-bd8f-fcbd-c0df-d3b5691c6bb7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 20:54:54 GMT
content-type: image/jpeg
content-length: 0
set-cookie: otclkbid=VUG31mKFfTelneA; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
code.moviead55.ru/go/csync?cn=bzcookie&bid=62702512-19f3-4f1f-709f-f1701214a947
200 OK 0 B URL GET HTTP/2 code.moviead55.ru/go/csync?cn=bzcookie&bid=62702512-19f3-4f1f-709f-f1701214a947
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=bzcookie&bid=62702512-19f3-4f1f-709f-f1701214a947 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: sky_uuid=be9fe05e-bd8f-fcbd-c0df-d3b5691c6bb7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 20:54:54 GMT
content-type: image/jpeg
content-length: 0
set-cookie: bzcookie=62702512-19f3-4f1f-709f-f1701214a947; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
code.moviead55.ru/go/csync?cn=ohmybid&bid=8ff58d1b-9d36-4f21-a30f-e57ae193aeac
200 OK 0 B URL GET HTTP/2 code.moviead55.ru/go/csync?cn=ohmybid&bid=8ff58d1b-9d36-4f21-a30f-e57ae193aeac
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=ohmybid&bid=8ff58d1b-9d36-4f21-a30f-e57ae193aeac HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: sky_uuid=be9fe05e-bd8f-fcbd-c0df-d3b5691c6bb7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 20:54:54 GMT
content-type: image/jpeg
content-length: 0
set-cookie: ohmybid=8ff58d1b-9d36-4f21-a30f-e57ae193aeac; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
code.moviead55.ru/go/csync?cn=hbrdcookie2&bid=86236e1e32982c274142
200 OK 0 B URL GET HTTP/2 code.moviead55.ru/go/csync?cn=hbrdcookie2&bid=86236e1e32982c274142
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=hbrdcookie2&bid=86236e1e32982c274142 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: sky_uuid=be9fe05e-bd8f-fcbd-c0df-d3b5691c6bb7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 20:54:54 GMT
content-type: image/jpeg
content-length: 0
set-cookie: hbrdcookie2=86236e1e32982c274142; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
ssp-rtb.sape.ru/rmatch?r=https%3A%2F%2Facint.net%2Frmatch%3Fdp%3D14%26euid%3D$%7BUSER_ID%7D%26r%3Dhttps%253A%252F%252Fcode.moviead55.ru%252Fgo%252Fcsync%253Fcn%253Dsapecookie%2526bid%253D%2524%257BUSER_ID%257D&dp=14
302 Moved Temporarily 142 B URL GET HTTP/1.1 ssp-rtb.sape.ru/rmatch?r=https%3A%2F%2Facint.net%2Frmatch%3Fdp%3D14%26euid%3D$%7BUSER_ID%7D%26r%3Dhttps%253A%252F%252Fcode.moviead55.ru%252Fgo%252Fcsync%253Fcn%253Dsapecookie%2526bid%253D%2524%257BUSER_ID%257D&dp=14
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject*.sape.ru
FingerprintF9:61:5C:64:81:FD:57:C2:4A:BD:6B:12:D4:7E:02:5E:83:8E:3E:40
ValiditySun, 08 Oct 2023 01:41:50 GMT - Sat, 06 Jan 2024 01:41:49 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /rmatch?r=https%3A%2F%2Facint.net%2Frmatch%3Fdp%3D14%26euid%3D$%7BUSER_ID%7D%26r%3Dhttps%253A%252F%252Fcode.moviead55.ru%252Fgo%252Fcsync%253Fcn%253Dsapecookie%2526bid%253D%2524%257BUSER_ID%257D&dp=14 HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Fri, 01 Dec 2023 20:54:54 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
P3P: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Location: https://acint.net/rmatch?dp=14&euid=1A03420A1E486A651C00FF7C02ED3582&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D%24%7BUSER_ID%7D
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Set-Cookie: sspuid=CkIDGmVqSB58/wAcgjXtAgE3p9toolFP37V7HmgJRdulaXHU; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.ssp-rtb.sape.ru; path=/; Secure; SameSite=None
ssp-rtb.sape.ru/rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D
302 Moved Temporarily 142 B URL GET HTTP/1.1 ssp-rtb.sape.ru/rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D
IP
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subject*.sape.ru
FingerprintF9:61:5C:64:81:FD:57:C2:4A:BD:6B:12:D4:7E:02:5E:83:8E:3E:40
ValiditySun, 08 Oct 2023 01:41:50 GMT - Sat, 06 Jan 2024 01:41:49 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Cookie: sspuid=CkIDGmVqSB58/wAcgjXtAgE3p9toolFP37V7HmgJRdulaXHU
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Fri, 01 Dec 2023 20:54:54 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
P3P: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Location: https://acint.net/match?dp=14&euid=1A03420A1E486A651C00FF7C02ED3582
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
dm-eu.hybrid.ai/match?id=106&vid=0100007F1D486A65EB36FE270271E1BB
302 Found 0 B URL GET HTTP/2 dm-eu.hybrid.ai/match?id=106&vid=0100007F1D486A65EB36FE270271E1BB
IP
ASN #58272 LeaderTelecom B.V.
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerSectigo Limited
Subject*.hybrid.ai
Fingerprint40:F9:88:C5:EF:2B:26:9C:61:DC:CC:ED:B1:67:03:F4:E2:CC:B7:C8
ValidityThu, 14 Sep 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?id=106&vid=0100007F1D486A65EB36FE270271E1BB HTTP/1.1
Host: dm-eu.hybrid.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Cookie: vid=86236e1e32982c274142
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Fri, 01 Dec 2023 20:54:54 GMT
content-length: 0
cache-control: no-cache, no-store
pragma: no-cache
expires: -1
location: https://pixel.onaudience.com/?partner=207&mapped=86236e1e32982c274142&noredirect=1
p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC"
x-mode: 564
x-xss-protection: 1; mode=block
access-control-allow-origin: https://www.acint.net
access-control-allow-credentials: true
server: Hybrid Web Server
X-Firefox-Spdy: h2
sync.gonet-ads.com/match/sape.js?id=0100007F1D486A65EB36FE270271E1BB
200 OK 43 B URL GET HTTP/2 sync.gonet-ads.com/match/sape.js?id=0100007F1D486A65EB36FE270271E1BB
IP
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerSectigo Limited
Subject*.gonet-ads.com
Fingerprint2B:BE:BF:75:0A:67:AA:2D:FA:0A:7F:92:F4:37:AE:9B:DD:47:68:2D
ValidityWed, 07 Jun 2023 00:00:00 GMT - Tue, 11 Jun 2024 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/sape.js?id=0100007F1D486A65EB36FE270271E1BB HTTP/1.1
Host: sync.gonet-ads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 20:54:54 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
exchange.buzzoola.com/cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D
301 Moved Permanently 115 B URL GET HTTP/2 exchange.buzzoola.com/cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerSectigo Limited
Subject*.buzzoola.com
FingerprintE6:7F:94:98:CF:E4:CF:88:C7:8C:FC:16:A3:D7:D0:10:4E:EC:AB:F1
ValidityMon, 04 Sep 2023 00:00:00 GMT - Fri, 04 Oct 2024 23:59:59 GMT
File type HTML document, ASCII text
Hash 43be07fca70e6d57a19e4274d0193143
fdff03cfc2f311ecb58eb5f3b6096de6bbc9cd51
584eecc9ef827c38b9e19f99ab9768c11efcb770949d533a3240b4f821f6ff64
GET /cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 01 Dec 2023 20:54:47 GMT
content-type: text/html; charset=utf-8
content-length: 115
location: https://www.acint.net/match?dp=126&euid=2a86ad72-5358-44b7-43fb-493fbc1fd47f
serverid: TODO
X-Firefox-Spdy: h2
match.ohmy.bid/cm?ssp=sape&redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D217%26euid%3D%7Buid%7D
302 Found 0 B URL GET HTTP/2 match.ohmy.bid/cm?ssp=sape&redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D217%26euid%3D%7Buid%7D
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subjectmatch.ohmy.bid
Fingerprint9E:80:FE:F1:53:4B:43:82:19:E2:9C:5A:93:AF:43:96:5D:6C:7B:69
ValidityFri, 24 Nov 2023 20:06:51 GMT - Thu, 22 Feb 2024 20:06:50 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?ssp=sape&redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D217%26euid%3D%7Buid%7D HTTP/1.1
Host: match.ohmy.bid
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Cookie: uid=8ff58d1b-9d36-4f21-a30f-e57ae193aeac.656a481d.d1f4aba5648db48c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Fri, 01 Dec 2023 20:54:54 GMT
content-length: 0
bidder: bid-23
location: https://www.acint.net/match?dp=217&euid=8ff58d1b-9d36-4f21-a30f-e57ae193aeac
access-control-allow-credentials: true
X-Firefox-Spdy: h2
code.moviead55.ru/go/csync?cn=solta&bid=ZWpIHhCxuEg
200 OK 0 B URL GET HTTP/2 code.moviead55.ru/go/csync?cn=solta&bid=ZWpIHhCxuEg
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=solta&bid=ZWpIHhCxuEg HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: sky_uuid=be9fe05e-bd8f-fcbd-c0df-d3b5691c6bb7; otclkbid=VUG31mKFfTelneA; bzcookie=62702512-19f3-4f1f-709f-f1701214a947; ohmybid=8ff58d1b-9d36-4f21-a30f-e57ae193aeac; hbrdcookie2=86236e1e32982c274142
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 20:54:54 GMT
content-type: image/jpeg
content-length: 0
set-cookie: solta=ZWpIHhCxuEg; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
sync.dmp.otm-r.com/match/sape?id=0100007F1D486A65EB36FE270271E1BB
204 No Content 0 B URL GET HTTP/2 sync.dmp.otm-r.com/match/sape?id=0100007F1D486A65EB36FE270271E1BB
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerGlobalSign nv-sa
Subject*.dmp.otm-r.com
FingerprintC6:A2:9D:82:0D:D1:C1:2D:A4:ED:7F:05:13:52:5B:94:6B:10:58:D6
ValidityMon, 19 Jun 2023 10:50:51 GMT - Sat, 20 Jul 2024 10:50:50 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/sape?id=0100007F1D486A65EB36FE270271E1BB HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: nginx/1.17.2
date: Fri, 01 Dec 2023 20:54:54 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
kimberlite.io/rtb/sync/sape2?u=0100007F1D486A65EB36FE270271E1BB
307 Temporary Redirect 0 B URL GET HTTP/1.1 kimberlite.io/rtb/sync/sape2?u=0100007F1D486A65EB36FE270271E1BB
IP
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerGlobalSign nv-sa
Subject*.kimberlite.io
Fingerprint94:44:D9:27:EE:9B:5F:DE:36:07:ED:BA:1A:1D:62:2A:31:B6:43:72
ValidityFri, 10 Mar 2023 07:40:01 GMT - Wed, 10 Apr 2024 07:40:00 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtb/sync/sape2?u=0100007F1D486A65EB36FE270271E1BB HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Cookie: u=ZWpIHhCxuEg~3ibymx4COHG4rgC8hbNf8i9N5n8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Fri, 01 Dec 2023 20:54:54 GMT
Content-Length: 0
Connection: keep-alive
cache-control: no-store
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: u=ZWpIHhCxuEg~3ibymx4COHG4rgC8hbNf8i9N5n8; path=/; max-age=7776000; samesite=none; httponly; secure
as=hPJ_CGVqSB4; max-age=604800; samesite=none; httponly; secure
f=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D243%26euid%3DZWpIHhCxuEg; max-age=30; samesite=none; httponly; secure
n=1; max-age=30; samesite=none; httponly; secure
location: https://sync.dsp.solta.io/match/kimberlite?id=ZWpIHhCxuEg
referrer-policy: no-referrer
server-timing: app;srv=9;dur=0.0003
sync.adspend.space/sape?uid=0100007F1D486A65EB36FE270271E1BB
302 Found 149 B URL GET HTTP/2 sync.adspend.space/sape?uid=0100007F1D486A65EB36FE270271E1BB
IP
ASN #50340 OOO Network of data-centers Selectel
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subjectadspend.space
Fingerprint25:A8:18:8F:99:5E:81:77:EE:CC:A2:7D:B9:A4:65:C6:29:9B:72:AF
ValidityMon, 27 Nov 2023 12:15:31 GMT - Sun, 25 Feb 2024 12:15:30 GMT
File type HTML document, ASCII text
Hash 23bd1456d4ba9c04e26440e66b98de64
968d894f96e6f3c55748296c31abf5f3d2252563
5174242e249e9e89af39452aa4ca18aea1d1535e0a8673f446fb6ab2d8d7c74c
GET /sape?uid=0100007F1D486A65EB36FE270271E1BB HTTP/1.1
Host: sync.adspend.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.22.1
date: Fri, 01 Dec 2023 20:54:54 GMT
content-type: text/html; charset=utf-8
content-length: 149
location: https://sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3D1c931d12-853d-4d5f-a5e5-985f2066ed0f
set-cookie: as-user=1c931d12-853d-4d5f-a5e5-985f2066ed0f; Path=/; Max-Age=31536000; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
code.moviead55.ru/go/bn?key=647a534f9f5fb9ced25ee7db57ef9c72&cp.adsource=Sw_cr_br&vt=[vt]&w=300&h=250&cp.referer=https%3A%2F%2Fhd.3lordserial.xyz%2F146-kasl-sv-13.html&fid=ab2f6a4f615f90cc&cp.tanc=
100 B URL code.moviead55.ru/go/bn?key=647a534f9f5fb9ced25ee7db57ef9c72&cp.adsource=Sw_cr_br&vt=[vt]&w=300&h=250&cp.referer=https%3A%2F%2Fhd.3lordserial.xyz%2F146-kasl-sv-13.html&fid=ab2f6a4f615f90cc&cp.tanc=
IP
ASN #6681 Rozetka Sp. z o.o.
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
File type ASCII text, with no line terminators
Hash a4069b95ec72159e5c70fe4b1b962bfc
36c057dfc913d129dbf6df7392eb745db56f08d2
feb5a5960148b3ff3b34f883c84075a8158d8475539676699b2428cd7d0f0ec7
GET /go/bn?key=647a534f9f5fb9ced25ee7db57ef9c72&cp.adsource=Sw_cr_br&vt=[vt]&w=300&h=250&cp.referer=https%3A%2F%2Fhd.3lordserial.xyz%2F146-kasl-sv-13.html&fid=ab2f6a4f615f90cc&cp.tanc= HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: sky_uuid=be9fe05e-bd8f-fcbd-c0df-d3b5691c6bb7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 20:54:53 GMT
content-type: text/javascript;charset=UTF-8
vary: Accept-Encoding
x-movieads-path: /
x-movieads-referrer: https://hd.3lordserial.xyz/
access-control-allow-credentials: true
access-control-allow-origin: https://hd.3lordserial.xyz
x-movieads-udata: cache,parsed,27966
x-cache-source: Yac
x-movieads-mrc: no
x-movieads-ref: {"Scheme":"https","Opaque":"","User":null,"Host":"hd.3lordserial.xyz","Path":"/","RawPath":"","OmitHost":false,"ForceQuery":false,"RawQuery":"","Fragment":"","RawFragment":""}
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
match.new-programmatic.com/userbind?src=sape&id=0100007F1D486A65EB36FE270271E1BB
204 No Content 0 B URL GET HTTP/1.1 match.new-programmatic.com/userbind?src=sape&id=0100007F1D486A65EB36FE270271E1BB
IP
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subjectad.ad-blast.ru
FingerprintF3:B7:15:BC:2F:A8:7D:5A:73:CB:BC:43:B8:4C:EA:11:17:2B:7A:34
ValiditySat, 07 Oct 2023 18:59:50 GMT - Fri, 05 Jan 2024 18:59:49 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userbind?src=sape&id=0100007F1D486A65EB36FE270271E1BB HTTP/1.1
Host: match.new-programmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.22.1
Date: Fri, 01 Dec 2023 20:54:54 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin
pix.bumlam.com/sync/sape/check?sspuid=0100007F1D486A65EB36FE270271E1BB
302 Found 0 B URL GET HTTP/1.1 pix.bumlam.com/sync/sape/check?sspuid=0100007F1D486A65EB36FE270271E1BB
IP
ASN #44066 diva-e Datacenters GmbH
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subject*.bumlam.com
Fingerprint08:E4:EB:78:69:AA:1C:77:24:F5:D4:0F:6C:52:FC:A6:D3:74:90:D0
ValidityMon, 16 Oct 2023 05:30:36 GMT - Sun, 14 Jan 2024 05:30:35 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/sape/check?sspuid=0100007F1D486A65EB36FE270271E1BB HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 01 Dec 2023 20:54:54 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://sync.bumlam.com/?src=sape
sync.bumlam.com/?src=sap1&uid=0100007F1D486A65EB36FE270271E1BB
302 Moved Temporarily 0 B URL GET HTTP/1.1 sync.bumlam.com/?src=sap1&uid=0100007F1D486A65EB36FE270271E1BB
IP
ASN #44066 diva-e Datacenters GmbH
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subject*.bumlam.com
Fingerprint08:E4:EB:78:69:AA:1C:77:24:F5:D4:0F:6C:52:FC:A6:D3:74:90:D0
ValidityMon, 16 Oct 2023 05:30:36 GMT - Sun, 14 Jan 2024 05:30:35 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sap1&uid=0100007F1D486A65EB36FE270271E1BB HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Fri, 01 Dec 2023 20:54:54 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiRlMTM4MzNjZS05MDhiLTExZWUtODZlMC0wMDI1OTBjMDY0N2M*; Path=/; Expires=Thu, 26 Nov 2043 20:54:54 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: //sync.bumlam.com/?src=sap1&s_data=CAIQARiekKmrBmIgMDEwMDAwN0YxRDQ4NkE2NUVCMzZGRTI3MDI3MUUxQkKiARDhODPOkIsR7obgACWQwGR8
ETag: e13833ce-908b-11ee-86e0-002590c0647c
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
a.utraff.com/sync?ssp=8&id=0100007F1D486A65EB36FE270271E1BB
204 No Content 0 B URL GET HTTP/2 a.utraff.com/sync?ssp=8&id=0100007F1D486A65EB36FE270271E1BB
IP
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerGoogle Trust Services LLC
Subjectutraff.com
Fingerprint65:F0:CB:A7:9C:1E:18:8C:D9:DE:5B:4C:46:9E:79:3E:78:F1:B0:CD
ValidityThu, 12 Oct 2023 03:40:45 GMT - Wed, 10 Jan 2024 03:40:44 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=8&id=0100007F1D486A65EB36FE270271E1BB HTTP/1.1
Host: a.utraff.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Fri, 01 Dec 2023 20:54:54 GMT
content-type: text/plain
set-cookie: preutid=1; Expires=Sun, 31 Dec 2023 23:54:54 GMT; Domain=.itraff.net; SameSite=None; Secure; Path=/
preutid=1; Expires=Sun, 31 Dec 2023 23:54:54 GMT; Domain=.utraff.com; SameSite=None; Secure; Path=/
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=geMx5J6mOAEazdcG89W9hrtxswKop8aP84MI8N0WQw31%2FzzzAos0JECh7CsRu3iAT9W9YvHDm8zY5uQmBhyXk25biu4vRaWv%2FOFf3DmGOhxPgZkmy3m6BBQ%2B8xlICpE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82ee3a60987b3696-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
sync.upravel.com/sape/sync
302 Found 0 B URL GET HTTP/2 sync.upravel.com/sape/sync
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerGlobalSign nv-sa
Subject*.upravel.com
Fingerprint4C:ED:03:57:58:43:18:2C:CC:41:F3:3B:19:72:75:BD:29:C1:04:08
ValiditySat, 29 Apr 2023 07:48:21 GMT - Thu, 30 May 2024 07:48:20 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/sync HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Fri, 01 Dec 2023 20:54:54 GMT
content-type: image/png
content-length: 0
location: https://sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
set-cookie: session_tptc=1701464094871;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
session_tptc-legacy=1701464094871;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
ads.adlook.me/csync?pid=sape&uid=0100007F1D486A65EB36FE270271E1BB&url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D
503 Service Unavailable 27 B URL GET HTTP/2 ads.adlook.me/csync?pid=sape&uid=0100007F1D486A65EB36FE270271E1BB&url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D
IP
ASN #48096 Enterprise Cloud Ltd.
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerGlobalSign nv-sa
Subject*.adlook.me
FingerprintBB:74:3B:09:F5:13:79:CE:CF:22:44:22:AD:AF:A7:74:23:4F:98:32
ValidityTue, 06 Jun 2023 15:02:11 GMT - Sun, 07 Jul 2024 15:02:10 GMT
File type ASCII text, with no line terminators
Hash 435b48c70aca2dc80f8b34b5fdeb2789
ffe2c8567607568f939fa1a6f9888639b98b400c
6468ac9f9bca964f3910fc967b80781c1c8634300e36f95ae49056d91a2734bf
GET /csync?pid=sape&uid=0100007F1D486A65EB36FE270271E1BB&url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D HTTP/1.1
Host: ads.adlook.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 503 Service Unavailable
content-type: text/html
server: Microsoft-IIS/10.0
date: Fri, 01 Dec 2023 20:54:54 GMT
content-length: 27
X-Firefox-Spdy: h2
nr.bidderstack.com/sape/cm?user_id=0100007F1D486A65EB36FE270271E1BB
302 Found 0 B URL GET HTTP/1.1 nr.bidderstack.com/sape/cm?user_id=0100007F1D486A65EB36FE270271E1BB
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerGoDaddy.com, Inc.
Subject*.bidderstack.com
Fingerprint7A:83:29:BF:37:01:78:02:DF:C1:07:D8:A2:10:AB:0A:DD:11:66:B0
ValidityTue, 21 Nov 2023 08:57:57 GMT - Sun, 22 Dec 2024 08:57:57 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/cm?user_id=0100007F1D486A65EB36FE270271E1BB HTTP/1.1
Host: nr.bidderstack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 01 Dec 2023 20:54:54 GMT
Content-Length: 0
Connection: keep-alive
Location: /sape/cm?user_id=0100007F1D486A65EB36FE270271E1BB&pupa=1
Set-Cookie: pupa=d6979f52-2616-aa83-4667-870fd419f06c; domain=.bidderstack.com; path=/; expires=Sat, 30-Nov-2024 20:54:54 GMT;
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
ssp.afp.ai/api/sync/sape
302 Found 0 B IP
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerSectigo Limited
Subject*.afp.ai
Fingerprint6D:78:55:60:8D:74:D7:2E:9F:A5:B1:56:72:76:A6:20:F9:7E:E4:4F
ValidityMon, 23 Oct 2023 00:00:00 GMT - Tue, 24 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/sync/sape HTTP/1.1
Host: ssp.afp.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.20.1
Date: Fri, 01 Dec 2023 20:54:54 GMT
Content-Length: 0
Connection: keep-alive
Vary: Origin
Access-Control-Allow-Origin:
Access-Control-Allow-Credentials: true
Location: https://www.acint.net/match?dp=261&euid=1b977199-607e-4479-8f7c-7ffe43e102a6
Set-Cookie: afp_cookie=gAAAAABlakgeRPGA6h94i8MvgZ-8z9rn5id0rOXnsktRldr255bgxHlWLd-cfBwWKqGveq95tgLOYQ77CUQY7kWBIFElaj7rZgZp0hY-XmZDA1T1L7GTAzpsDA_Z6jcKn2c4MAph4pe04Z_ffzheAp7Tv0woI5z_GJH8voR7o5HZsTy7pMPP1_4hBkvvOmQUhxsCNMyDx2iS$; expires=Mon, 01 Jan 2024 20:54:54 GMT; path=/; secure; SameSite=None
yastatic.net/partner-code-bundles/920174/ca82583607ca89ec068d.js
200 OK 3.6 kB URL GET HTTP/2 yastatic.net/partner-code-bundles/920174/ca82583607ca89ec068d.js
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.yastatic-net.ru
FingerprintD9:64:E0:F2:39:AC:36:DB:9A:A3:3D:E4:27:E4:0B:F5:5B:5B:E3:A0
ValidityMon, 10 Jul 2023 13:25:28 GMT - Sun, 07 Jan 2024 20:59:59 GMT
File type ASCII text, with very long lines (9173)
Hash 33d0c2943e43a53c0362eab1f1c43c49
e864129df73cfe9b6d749c491280ec7e5cf64b4f
e75a9a840b03704c942ee6bcb80f99bdd2290bb2dd8d6ff63d985d560ddeb480
GET /partner-code-bundles/920174/ca82583607ca89ec068d.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd.3lordserial.xyz
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 01 Dec 2023 20:54:54 GMT
content-type: text/javascript; charset=utf-8
content-length: 3559
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "c9bfc5aaeaf38b832984cf74810c88f8"
expires: Mon, 01 Dec 2053 03:28:23 GMT
last-modified: Thu, 30 Nov 2023 18:32:44 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
cs.agency2.ru/p?ssp=sp&uid=0100007F1D486A65EB36FE270271E1BB
301 Moved Permanently 0 B URL GET HTTP/1.1 cs.agency2.ru/p?ssp=sp&uid=0100007F1D486A65EB36FE270271E1BB
IP
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subjectapi.agency2.ru
Fingerprint50:48:39:D7:EB:8F:8E:E7:36:A3:F3:08:25:93:84:7F:6B:36:24:95
ValidityMon, 16 Oct 2023 23:38:04 GMT - Sun, 14 Jan 2024 23:38:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=sp&uid=0100007F1D486A65EB36FE270271E1BB HTTP/1.1
Host: cs.agency2.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Fri, 01 Dec 2023 20:54:54 GMT
Content-Length: 0
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://www.acint.net/match?dp=186&euid=e6bd85b4-44d0-493f-8c6d-4ce8e9152d79
Set-Cookie: uuid=e6bd85b4-44d0-493f-8c6d-4ce8e9152d79; expires=Thu, 21 Nov 2024 20:54:54 GMT; domain=agency2.ru; path=/; secure; SameSite=None
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.107.44
yastatic.net/partner-code-bundles/920174/5a7a526829132d8f111a.js
200 OK 4.8 kB URL GET HTTP/2 yastatic.net/partner-code-bundles/920174/5a7a526829132d8f111a.js
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.yastatic-net.ru
FingerprintD9:64:E0:F2:39:AC:36:DB:9A:A3:3D:E4:27:E4:0B:F5:5B:5B:E3:A0
ValidityMon, 10 Jul 2023 13:25:28 GMT - Sun, 07 Jan 2024 20:59:59 GMT
File type ASCII text, with very long lines (14270)
Hash e924479e4100d23e9ad37ae6d5213e90
3c27d4a750865971fc22a9035583cb54d21f0862
0fcd6527670f13a714d7afd7fed44abe22bdd841ecf4671977d1af457e09ab92
GET /partner-code-bundles/920174/5a7a526829132d8f111a.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd.3lordserial.xyz
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 01 Dec 2023 20:54:54 GMT
content-type: text/javascript; charset=utf-8
content-length: 4774
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "cc445302cf6de8d966f36fb269e69f5a"
expires: Mon, 01 Dec 2053 03:26:51 GMT
last-modified: Thu, 30 Nov 2023 18:32:43 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
sync.programmatica.com/match/01
200 OK 43 B URL GET HTTP/2 sync.programmatica.com/match/01
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerGlobalSign nv-sa
Subject*.programmatica.com
FingerprintE4:B6:ED:A7:02:18:8C:3F:D0:A3:8D:04:EE:40:21:0A:0E:83:D1:D6
ValidityThu, 15 Dec 2022 17:05:13 GMT - Tue, 16 Jan 2024 17:05:12 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/01 HTTP/1.1
Host: sync.programmatica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 20:54:54 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
logger.moviead55.ru/logger.php?v=647a534f9f5fb9ced25ee7db57ef9c72&c=805e1579-dbe0-4830-bffa-dd6b2459b8b3&t=player_loaded&a=&m=%7B%22sub_id%22%3A%22ap%22%2C%22loadTime%22%3A1.088%2C%22version%22%3A%221701285253729%22%2C%22vt%22%3A100%2C%22dh%22%3Afalse%2C%22l%22%3A%22https%3A%2F%2Fhd.3lordserial.xyz%2F146-kasl-sv-13.html%22%2C%22scr%22%3A%7B%22w%22%3A1280%2C%22h%22%3A1024%2C%22c%22%3A24%2C%22iw%22%3A1060%2C%22ih%22%3A330%7D%7D&o=
200 OK 8.0 kB URL GET HTTP/2 logger.moviead55.ru/logger.php?v=647a534f9f5fb9ced25ee7db57ef9c72&c=805e1579-dbe0-4830-bffa-dd6b2459b8b3&t=player_loaded&a=&m=%7B%22sub_id%22%3A%22ap%22%2C%22loadTime%22%3A1.088%2C%22version%22%3A%221701285253729%22%2C%22vt%22%3A100%2C%22dh%22%3Afalse%2C%22l%22%3A%22https%3A%2F%2Fhd.3lordserial.xyz%2F146-kasl-sv-13.html%22%2C%22scr%22%3A%7B%22w%22%3A1280%2C%22h%22%3A1024%2C%22c%22%3A24%2C%22iw%22%3A1060%2C%22ih%22%3A330%7D%7D&o=
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
File type gzip compressed data, from Unix\012- data
Hash edcfe0d7b2e78441a6cd32a43c6dd1b2
3d5162ade4c08737683277f9ad01eb72ddcee984
9ccdf409cf38d8a4dbf164dc4bcbeb74b479880d7487df98932cd03c9f397968
GET /logger.php?v=647a534f9f5fb9ced25ee7db57ef9c72&c=805e1579-dbe0-4830-bffa-dd6b2459b8b3&t=player_loaded&a=&m=%7B%22sub_id%22%3A%22ap%22%2C%22loadTime%22%3A1.088%2C%22version%22%3A%221701285253729%22%2C%22vt%22%3A100%2C%22dh%22%3Afalse%2C%22l%22%3A%22https%3A%2F%2Fhd.3lordserial.xyz%2F146-kasl-sv-13.html%22%2C%22scr%22%3A%7B%22w%22%3A1280%2C%22h%22%3A1024%2C%22c%22%3A24%2C%22iw%22%3A1060%2C%22ih%22%3A330%7D%7D&o= HTTP/1.1
Host: logger.moviead55.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 20:54:54 GMT
content-type: Content-Type: image/png
vary: Accept-Encoding
x-movieads-le: true
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/920174/dfa824eba677c14973d6.js
200 OK 25 kB URL GET HTTP/2 yastatic.net/partner-code-bundles/920174/dfa824eba677c14973d6.js
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.yastatic-net.ru
FingerprintD9:64:E0:F2:39:AC:36:DB:9A:A3:3D:E4:27:E4:0B:F5:5B:5B:E3:A0
ValidityMon, 10 Jul 2023 13:25:28 GMT - Sun, 07 Jan 2024 20:59:59 GMT
File type ASCII text, with very long lines (65494)
Hash 0115b6aefb895f1182ce8df245cba2c4
03a88ad9027b95fde2ceef83527e96664bd361e9
196b63b4562684970d0086e596b078a626fc7a04c588bfeffdd2e6ee441054b7
GET /partner-code-bundles/920174/dfa824eba677c14973d6.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd.3lordserial.xyz
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 01 Dec 2023 20:54:54 GMT
content-type: text/javascript; charset=utf-8
content-length: 24553
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "3b4c127e66bba4cbc2ea76df23f922d3"
expires: Mon, 01 Dec 2053 03:26:51 GMT
last-modified: Thu, 30 Nov 2023 18:32:44 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/safeframe-bundles/0.83/host.js
200 OK 8.9 kB URL GET HTTP/2 yastatic.net/safeframe-bundles/0.83/host.js
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.yastatic-net.ru
FingerprintD9:64:E0:F2:39:AC:36:DB:9A:A3:3D:E4:27:E4:0B:F5:5B:5B:E3:A0
ValidityMon, 10 Jul 2023 13:25:28 GMT - Sun, 07 Jan 2024 20:59:59 GMT
File type ASCII text, with very long lines (33703), with no line terminators
Hash 2435549eac66915d7464ee7b9efce038
e390598fb192583622a8ea079d5c96dffdb34fb5
34806ef573086241dd1a596a860b0295b51c24f1c37eab36eb9d0665683abb55
GET /safeframe-bundles/0.83/host.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd.3lordserial.xyz
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 01 Dec 2023 20:54:54 GMT
content-type: text/javascript; charset=utf-8
content-length: 8878
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "f80882bf67cf261aa08d636da095149a"
expires: Mon, 01 Dec 2053 03:28:55 GMT
last-modified: Wed, 03 Nov 2021 13:42:58 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/s3/home/fonts/ys/3/text-variable-full.woff2
200 OK 26 kB URL GET HTTP/2 yastatic.net/s3/home/fonts/ys/3/text-variable-full.woff2
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.yastatic-net.ru
FingerprintD9:64:E0:F2:39:AC:36:DB:9A:A3:3D:E4:27:E4:0B:F5:5B:5B:E3:A0
ValidityMon, 10 Jul 2023 13:25:28 GMT - Sun, 07 Jan 2024 20:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 26004, version 1.0\012- data
Hash 7f0cdaf91230f9789ca4162aedff612e
965de571aa794dab64076c3cc64dc8894b843f23
033696b7f1ac04d1dcc102be84550e146236ceffc25a6cabc12aa51a6ee410b9
GET /s3/home/fonts/ys/3/text-variable-full.woff2 HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hd.3lordserial.xyz/
Origin: https://hd.3lordserial.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 01 Dec 2023 20:54:54 GMT
content-type: font/woff2
content-length: 26004
access-control-allow-origin: *
cache-control: public, max-age=31556952
etag: "7f0cdaf91230f9789ca4162aedff612e"
expires: Sun, 01 Dec 2024 02:42:00 GMT
last-modified: Mon, 25 Apr 2022 14:02:39 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-amz-meta-owner: {"role":"admin","login":"4eb0da"}
x-nginx-request-id: 585fd5893cfe8e5e
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/920174/7e4653f1bf11b767a289.js
200 OK 8.7 kB URL GET HTTP/2 yastatic.net/partner-code-bundles/920174/7e4653f1bf11b767a289.js
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.yastatic-net.ru
FingerprintD9:64:E0:F2:39:AC:36:DB:9A:A3:3D:E4:27:E4:0B:F5:5B:5B:E3:A0
ValidityMon, 10 Jul 2023 13:25:28 GMT - Sun, 07 Jan 2024 20:59:59 GMT
File type ASCII text, with very long lines (31080)
Hash 548355665c08b11c6ad620da58d5a0fc
f7931159da9856a79a00c3aef388be4afff26bf5
aa7beee8e746579d9e1c779a08713b607ca5cd494e5e7004ae9a0e2004c14314
GET /partner-code-bundles/920174/7e4653f1bf11b767a289.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd.3lordserial.xyz
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 01 Dec 2023 20:54:54 GMT
content-type: text/javascript; charset=utf-8
content-length: 8707
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "12eea2ead88ffba95a08644e650d3f41"
expires: Mon, 01 Dec 2053 03:28:23 GMT
last-modified: Thu, 30 Nov 2023 18:32:43 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
s.ccsyncuuid.net/match/5/?remote_uid=0100007F1D486A65EB36FE270271E1BB
302 Found 0 B URL GET HTTP/2 s.ccsyncuuid.net/match/5/?remote_uid=0100007F1D486A65EB36FE270271E1BB
IP
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subjectccsyncuuid.net
Fingerprint05:93:D2:3F:39:41:DF:CE:18:E5:65:94:78:1D:8A:7F:24:58:17:98
ValidityMon, 13 Nov 2023 06:10:33 GMT - Sun, 11 Feb 2024 06:10:32 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/5/?remote_uid=0100007F1D486A65EB36FE270271E1BB HTTP/1.1
Host: s.ccsyncuuid.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Fri, 01 Dec 2023 20:54:54 GMT
content-length: 0
location: https://acint.net/match?dp=80&euid=SWOP2Gg9V9Y5yS85gWSL
set-cookie: jcsuuid=SWOP2Gg9V9Y5yS85gWSL; expires=Sat, 30 Nov 2024 20:54:54 GMT; domain=ccsyncuuid.net; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/920174/37a64a473fd75f1d1e48.js
200 OK 15 kB URL GET HTTP/2 yastatic.net/partner-code-bundles/920174/37a64a473fd75f1d1e48.js
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.yastatic-net.ru
FingerprintD9:64:E0:F2:39:AC:36:DB:9A:A3:3D:E4:27:E4:0B:F5:5B:5B:E3:A0
ValidityMon, 10 Jul 2023 13:25:28 GMT - Sun, 07 Jan 2024 20:59:59 GMT
File type ASCII text, with very long lines (60313)
Hash 2746961d729829fa1e2db7982bc048c9
b53729f24d6c5f2a6aed0a178b168414b08e847e
d3542e91cb8213b52b268d59498902610511da580d520d0f13270b483d95dc20
GET /partner-code-bundles/920174/37a64a473fd75f1d1e48.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd.3lordserial.xyz
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 01 Dec 2023 20:54:55 GMT
content-type: text/javascript; charset=utf-8
content-length: 14842
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "59d99a410ec348ec6bce8f4a74a3688c"
expires: Mon, 01 Dec 2053 03:26:51 GMT
last-modified: Thu, 30 Nov 2023 18:32:42 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
hye1eaipby4w.takedwn.ws/x-en-x/khqakvL5Ya8cky8aRn8akn8cka81nESBnEObyn83khQ5kBEuMWlw
200 OK 42 kB URL GET HTTP/1.1 hye1eaipby4w.takedwn.ws/x-en-x/khqakvL5Ya8cky8aRn8akn8cka81nESBnEObyn83khQ5kBEuMWlw
IP
Requested by https://api.strvid.ws/embed/movie/455
Certificate IssuerSectigo Limited
Subject*.takedwn.ws
Fingerprint10:FE:92:D9:53:67:C4:4D:D3:64:8C:31:29:59:C5:F4:1A:DC:AC:92
ValidityTue, 26 Sep 2023 00:00:00 GMT - Fri, 11 Oct 2024 23:59:59 GMT
File type XML 1.0 document text\012- XML document, ASCII text
Hash efdd36e6f1e4a1b07e54be47acc57537
b7b49818c5685035ebac66b8aa244a9605ce70ff
d78b8742449581d9891cdd79f72c9b5449c48ea32c7476a7f2b720311bc45f87
GET /x-en-x/khqakvL5Ya8cky8aRn8akn8cka81nESBnEObyn83khQ5kBEuMWlw HTTP/1.1
Host: hye1eaipby4w.takedwn.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://api.strvid.ws/
Origin: https://api.strvid.ws
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 01 Dec 2023 20:54:54 GMT
Content-Type: application/dash+xml
Content-Length: 42148
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Vary: *
Expires: 1970-01-01 00:00:00
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Accept-Ranges: bytes
yastatic.net/partner-code-bundles/920174/8011efa9db4d1ab95316.js
200 OK 118 kB URL GET HTTP/2 yastatic.net/partner-code-bundles/920174/8011efa9db4d1ab95316.js
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.yastatic-net.ru
FingerprintD9:64:E0:F2:39:AC:36:DB:9A:A3:3D:E4:27:E4:0B:F5:5B:5B:E3:A0
ValidityMon, 10 Jul 2023 13:25:28 GMT - Sun, 07 Jan 2024 20:59:59 GMT
File type ASCII text, with very long lines (65497)
Size 118 kB (117475 bytes)
Hash 4f422f8bd2fc5044bebf9d30abc60126
45a06e666f8a5babfd6074acede5fd3218b11f40
166f03d2c873c38d857427c2bd2492844b8c906734dc4629eb1443c4ffc84361
GET /partner-code-bundles/920174/8011efa9db4d1ab95316.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd.3lordserial.xyz
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 01 Dec 2023 20:54:55 GMT
content-type: text/javascript; charset=utf-8
content-length: 117475
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "4201e101909068813da4e5b3a3d44d10"
expires: Mon, 01 Dec 2053 03:26:51 GMT
last-modified: Thu, 30 Nov 2023 18:32:43 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
acint.net/rmatch?dp=14&euid=1A03420A1E486A651C00FF7C02ED3582&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D%24%7BUSER_ID%7D
302 Found 154 B URL GET HTTP/2 acint.net/rmatch?dp=14&euid=1A03420A1E486A651C00FF7C02ED3582&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D%24%7BUSER_ID%7D
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintD1:98:D5:B7:91:FF:E3:AC:0C:2E:5F:9E:20:DE:E5:45:A8:C2:0E:B1
ValidityTue, 31 Oct 2023 03:36:00 GMT - Mon, 29 Jan 2024 03:35:59 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=14&euid=1A03420A1E486A651C00FF7C02ED3582&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWVqSB0n/jbru+FxAnBO9uArXikJ9bP7KWs+DcG51+8Z; cSyncDp14v4=1701464093; cSyncDp14v6=1701464093; cSyncDp17v2=1701464093; cSyncDp45v5=1701464093; cSyncDp53v5=1701464093; cSyncDp62v2=1701464093; cSyncDp67v3=1701464093; cSyncDp68v2=1701464093; cSyncDp71v2=1701464093; cSyncDp80v2=1701464093; cSyncDp85v2=1701464093; cSyncDp95v4=1701464093; cSyncDp98v3=1701464093; cSyncDp104v2=1701464093; cSyncDp107v2=1701464093; cSyncDp110v3=1701464093; cSyncDp125v4=1701464093; cSyncDp126v2=1701464093; cSyncDp127v2=1701464093; cSyncDp129v2=1701464093; cSyncDp136v3=1701464093; cSyncDp146v2=1701464093; cSyncDp148v2=1701464093; cSyncDp149v3=1701464093; cSyncDp151v2=1701464093; cSyncDp251v1=1701464093; cSyncDp186v2=1701464093; cSyncDp217v2=1701464093; cSyncDp221v2=1701464093; cSyncDp235v2=1701464093; cSyncDp239v2=1701464093; cSyncDp243v2=1701464093; cSyncDp260v2=1701464093; cSyncDp244v2=1701464093; cSyncDp248v2=1701464093; cSyncDp261v1=1701464093
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Fri, 01 Dec 2023 20:54:55 GMT
content-type: text/html
content-length: 154
location: https://code.moviead55.ru/go/csync?cn=sapecookie&bid=0100007F1D486A65EB36FE270271E1BB
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
sync.dsp.solta.io/match/sape?id=0100007F1D486A65EB36FE270271E1BB
200 OK 43 B URL GET HTTP/2 sync.dsp.solta.io/match/sape?id=0100007F1D486A65EB36FE270271E1BB
IP
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerGlobalSign nv-sa
Subject*.dsp.solta.io
Fingerprint6D:7F:91:92:30:E1:6A:A0:9B:86:49:7A:21:7F:5B:A4:23:8F:92:BC
ValidityWed, 02 Aug 2023 16:38:38 GMT - Mon, 02 Sep 2024 16:38:37 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/sape?id=0100007F1D486A65EB36FE270271E1BB HTTP/1.1
Host: sync.dsp.solta.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 20:54:55 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
adx.com.ru/sape-sync?uid=0100007F1D486A65EB36FE270271E1BB
429 Too Many Requests 169 B URL GET HTTP/2 adx.com.ru/sape-sync?uid=0100007F1D486A65EB36FE270271E1BB
IP
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerGlobalSign nv-sa
Subject*.adx.com.ru
FingerprintB6:86:21:C8:F9:AF:00:9E:42:EC:E3:77:AC:A3:5B:2B:E7:C4:46:B3
ValidityFri, 26 May 2023 11:44:59 GMT - Wed, 26 Jun 2024 11:44:58 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3456231c174fb2d76d51f73b828635a7
49c43f133ee881851becd78c2e9e885ebaad005e
02a097cad2b1a9db6797fdb73c0dcd0d66d8ae7d4b5f906658bb45a502c2c106
GET /sape-sync?uid=0100007F1D486A65EB36FE270271E1BB HTTP/1.1
Host: adx.com.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 429 Too Many Requests
server: nginx/1.22.0
date: Fri, 01 Dec 2023 20:54:55 GMT
content-type: text/html
content-length: 169
X-Firefox-Spdy: h2
ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D
302 Found 74 B URL GET HTTP/2 ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D
IP
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerGlobalSign nv-sa
Subject*.bestssp.com
Fingerprint25:15:42:2E:1C:54:0F:74:CF:89:02:5A:5E:AC:98:DA:1C:34:B3:B3
ValidityMon, 24 Jul 2023 17:15:54 GMT - Sat, 24 Aug 2024 17:15:53 GMT
File type HTML document, ASCII text
Hash aa7ad316f060626ef8afe1c92eb8b8ff
24bbe3047ec3823e872743186577b34d5ea3e6d1
bdf339f26b92d97896ce7a21cf6654f1d0ee87a5f165ce6bc1f16284a88df8bb
GET /sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D HTTP/1.1
Host: ssp.bestssp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.22.0
date: Fri, 01 Dec 2023 20:54:55 GMT
content-type: text/html; charset=utf-8
content-length: 74
location: https://www.acint.net/match?dp=95&euid=KIAJAIUK
set-cookie: uid=KIAJAIUK; Expires=Mon, 28 Nov 2033 20:54:55 GMT
X-Firefox-Spdy: h2
acint.net/match?dp=14&euid=1A03420A1E486A651C00FF7C02ED3582
200 OK 43 B URL GET HTTP/2 acint.net/match?dp=14&euid=1A03420A1E486A651C00FF7C02ED3582
IP
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintD1:98:D5:B7:91:FF:E3:AC:0C:2E:5F:9E:20:DE:E5:45:A8:C2:0E:B1
ValidityTue, 31 Oct 2023 03:36:00 GMT - Mon, 29 Jan 2024 03:35:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=14&euid=1A03420A1E486A651C00FF7C02ED3582 HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWVqSB0n/jbru+FxAnBO9uArXikJ9bP7KWs+DcG51+8Z; cSyncDp14v4=1701464093; cSyncDp14v6=1701464093; cSyncDp17v2=1701464093; cSyncDp45v5=1701464093; cSyncDp53v5=1701464093; cSyncDp62v2=1701464093; cSyncDp67v3=1701464093; cSyncDp68v2=1701464093; cSyncDp71v2=1701464093; cSyncDp80v2=1701464093; cSyncDp85v2=1701464093; cSyncDp95v4=1701464093; cSyncDp98v3=1701464093; cSyncDp104v2=1701464093; cSyncDp107v2=1701464093; cSyncDp110v3=1701464093; cSyncDp125v4=1701464093; cSyncDp126v2=1701464093; cSyncDp127v2=1701464093; cSyncDp129v2=1701464093; cSyncDp136v3=1701464093; cSyncDp146v2=1701464093; cSyncDp148v2=1701464093; cSyncDp149v3=1701464093; cSyncDp151v2=1701464093; cSyncDp251v1=1701464093; cSyncDp186v2=1701464093; cSyncDp217v2=1701464093; cSyncDp221v2=1701464093; cSyncDp235v2=1701464093; cSyncDp239v2=1701464093; cSyncDp243v2=1701464093; cSyncDp260v2=1701464093; cSyncDp244v2=1701464093; cSyncDp248v2=1701464093; cSyncDp261v1=1701464093
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Fri, 01 Dec 2023 20:54:55 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
www.acint.net/match?dp=126&euid=2a86ad72-5358-44b7-43fb-493fbc1fd47f
200 OK 43 B URL GET HTTP/2 www.acint.net/match?dp=126&euid=2a86ad72-5358-44b7-43fb-493fbc1fd47f
IP
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintD1:98:D5:B7:91:FF:E3:AC:0C:2E:5F:9E:20:DE:E5:45:A8:C2:0E:B1
ValidityTue, 31 Oct 2023 03:36:00 GMT - Mon, 29 Jan 2024 03:35:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=126&euid=2a86ad72-5358-44b7-43fb-493fbc1fd47f HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWVqSB0n/jbru+FxAnBO9uArXikJ9bP7KWs+DcG51+8Z; cSyncDp14v4=1701464093; cSyncDp14v6=1701464093; cSyncDp17v2=1701464093; cSyncDp45v5=1701464093; cSyncDp53v5=1701464093; cSyncDp62v2=1701464093; cSyncDp67v3=1701464093; cSyncDp68v2=1701464093; cSyncDp71v2=1701464093; cSyncDp80v2=1701464093; cSyncDp85v2=1701464093; cSyncDp95v4=1701464093; cSyncDp98v3=1701464093; cSyncDp104v2=1701464093; cSyncDp107v2=1701464093; cSyncDp110v3=1701464093; cSyncDp125v4=1701464093; cSyncDp126v2=1701464093; cSyncDp127v2=1701464093; cSyncDp129v2=1701464093; cSyncDp136v3=1701464093; cSyncDp146v2=1701464093; cSyncDp148v2=1701464093; cSyncDp149v3=1701464093; cSyncDp151v2=1701464093; cSyncDp251v1=1701464093; cSyncDp186v2=1701464093; cSyncDp217v2=1701464093; cSyncDp221v2=1701464093; cSyncDp235v2=1701464093; cSyncDp239v2=1701464093; cSyncDp243v2=1701464093; cSyncDp260v2=1701464093; cSyncDp244v2=1701464093; cSyncDp248v2=1701464093; cSyncDp261v1=1701464093
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Fri, 01 Dec 2023 20:54:55 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
www.acint.net/match?dp=217&euid=8ff58d1b-9d36-4f21-a30f-e57ae193aeac
200 OK 43 B URL GET HTTP/2 www.acint.net/match?dp=217&euid=8ff58d1b-9d36-4f21-a30f-e57ae193aeac
IP
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintD1:98:D5:B7:91:FF:E3:AC:0C:2E:5F:9E:20:DE:E5:45:A8:C2:0E:B1
ValidityTue, 31 Oct 2023 03:36:00 GMT - Mon, 29 Jan 2024 03:35:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=217&euid=8ff58d1b-9d36-4f21-a30f-e57ae193aeac HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWVqSB0n/jbru+FxAnBO9uArXikJ9bP7KWs+DcG51+8Z; cSyncDp14v4=1701464093; cSyncDp14v6=1701464093; cSyncDp17v2=1701464093; cSyncDp45v5=1701464093; cSyncDp53v5=1701464093; cSyncDp62v2=1701464093; cSyncDp67v3=1701464093; cSyncDp68v2=1701464093; cSyncDp71v2=1701464093; cSyncDp80v2=1701464093; cSyncDp85v2=1701464093; cSyncDp95v4=1701464093; cSyncDp98v3=1701464093; cSyncDp104v2=1701464093; cSyncDp107v2=1701464093; cSyncDp110v3=1701464093; cSyncDp125v4=1701464093; cSyncDp126v2=1701464093; cSyncDp127v2=1701464093; cSyncDp129v2=1701464093; cSyncDp136v3=1701464093; cSyncDp146v2=1701464093; cSyncDp148v2=1701464093; cSyncDp149v3=1701464093; cSyncDp151v2=1701464093; cSyncDp251v1=1701464093; cSyncDp186v2=1701464093; cSyncDp217v2=1701464093; cSyncDp221v2=1701464093; cSyncDp235v2=1701464093; cSyncDp239v2=1701464093; cSyncDp243v2=1701464093; cSyncDp260v2=1701464093; cSyncDp244v2=1701464093; cSyncDp248v2=1701464093; cSyncDp261v1=1701464093
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Fri, 01 Dec 2023 20:54:55 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3D1c931d12-853d-4d5f-a5e5-985f2066ed0f
302 Found 102 B URL GET HTTP/2 sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3D1c931d12-853d-4d5f-a5e5-985f2066ed0f
IP
ASN #50340 OOO Network of data-centers Selectel
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subjectadspend.space
Fingerprint25:A8:18:8F:99:5E:81:77:EE:CC:A2:7D:B9:A4:65:C6:29:9B:72:AF
ValidityMon, 27 Nov 2023 12:15:31 GMT - Sun, 25 Feb 2024 12:15:30 GMT
File type HTML document, ASCII text
Hash 048a25a778c971a664c292983b2a88c0
b33ab49ad2a4d80cd3604ea20f8f5fdb4a193538
eb7808334f17f602faaed29213cb96d56a3a8b4ac45abfd3ccb001122056c26d
GET /check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3D1c931d12-853d-4d5f-a5e5-985f2066ed0f HTTP/1.1
Host: sync.adspend.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: as-user=1c931d12-853d-4d5f-a5e5-985f2066ed0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx/1.22.1
date: Fri, 01 Dec 2023 20:54:55 GMT
content-type: text/html; charset=utf-8
content-length: 102
location: https://www.acint.net/match?dp=98&euid=1c931d12-853d-4d5f-a5e5-985f2066ed0f
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: PUT, GET, POST, OPTIONS
access-control-allow-headers: Content-Type, authorization
access-control-max-age: 1728000
X-Firefox-Spdy: h2
www.acint.net/match?dp=127&euid=35MxOgkIKPcQzAWGlJYG
200 OK 43 B URL GET HTTP/2 www.acint.net/match?dp=127&euid=35MxOgkIKPcQzAWGlJYG
IP
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintD1:98:D5:B7:91:FF:E3:AC:0C:2E:5F:9E:20:DE:E5:45:A8:C2:0E:B1
ValidityTue, 31 Oct 2023 03:36:00 GMT - Mon, 29 Jan 2024 03:35:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=127&euid=35MxOgkIKPcQzAWGlJYG HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWVqSB0n/jbru+FxAnBO9uArXikJ9bP7KWs+DcG51+8Z; cSyncDp14v4=1701464093; cSyncDp14v6=1701464093; cSyncDp17v2=1701464093; cSyncDp45v5=1701464093; cSyncDp53v5=1701464093; cSyncDp62v2=1701464093; cSyncDp67v3=1701464093; cSyncDp68v2=1701464093; cSyncDp71v2=1701464093; cSyncDp80v2=1701464093; cSyncDp85v2=1701464093; cSyncDp95v4=1701464093; cSyncDp98v3=1701464093; cSyncDp104v2=1701464093; cSyncDp107v2=1701464093; cSyncDp110v3=1701464093; cSyncDp125v4=1701464093; cSyncDp126v2=1701464093; cSyncDp127v2=1701464093; cSyncDp129v2=1701464093; cSyncDp136v3=1701464093; cSyncDp146v2=1701464093; cSyncDp148v2=1701464093; cSyncDp149v3=1701464093; cSyncDp151v2=1701464093; cSyncDp251v1=1701464093; cSyncDp186v2=1701464093; cSyncDp217v2=1701464093; cSyncDp221v2=1701464093; cSyncDp235v2=1701464093; cSyncDp239v2=1701464093; cSyncDp243v2=1701464093; cSyncDp260v2=1701464093; cSyncDp244v2=1701464093; cSyncDp248v2=1701464093; cSyncDp261v1=1701464093
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Fri, 01 Dec 2023 20:54:55 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
sync.bumlam.com/?src=sape
302 Moved Temporarily 0 B URL GET HTTP/1.1 sync.bumlam.com/?src=sape
IP
ASN #44066 diva-e Datacenters GmbH
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subject*.bumlam.com
Fingerprint08:E4:EB:78:69:AA:1C:77:24:F5:D4:0F:6C:52:FC:A6:D3:74:90:D0
ValidityMon, 16 Oct 2023 05:30:36 GMT - Sun, 14 Jan 2024 05:30:35 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sape HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiRlMTM4MzNjZS05MDhiLTExZWUtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Fri, 01 Dec 2023 20:54:55 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiRlMTM4MzNjZS05MDhiLTExZWUtODZlMC0wMDI1OTBjMDY0N2M*; Path=/; Expires=Thu, 26 Nov 2043 20:54:55 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: https://pix.bumlam.com/sync/sape/sync_ok?guid=e13833ce-908b-11ee-86e0-002590c0647c
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
Access-Control-Allow-Origin: https://acint.net
Access-Control-Allow-Credentials: true
exchange.buzzoola.com/ssp/adfox
307 Temporary Redirect 0 B URL POST HTTP/2 exchange.buzzoola.com/ssp/adfox
IP
ASN #24940 Hetzner Online GmbH
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerSectigo Limited
Subject*.buzzoola.com
FingerprintE6:7F:94:98:CF:E4:CF:88:C7:8C:FC:16:A3:D7:D0:10:4E:EC:AB:F1
ValidityMon, 04 Sep 2023 00:00:00 GMT - Fri, 04 Oct 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ssp/adfox HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 362
Origin: https://hd.3lordserial.xyz
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 307 Temporary Redirect
server: nginx
date: Fri, 01 Dec 2023 20:54:55 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: Set-Cookie, X-Alt-Referer, X-First-Party-Cookie, X-Aidata-FP, If-None-Match
access-control-allow-origin: https://hd.3lordserial.xyz
access-control-expose-headers: Set-Cookie, Etag
location: /ssp/adfox?set_buzzoola_cookie=t
set-cookie: uuid=9ec21319-5e24-4b88-6e86-87b40e4ff5bc; Path=/; Domain=exchange.buzzoola.com; Expires=Sun, 31 Dec 2023 20:54:55 GMT; Max-Age=2592000; Secure; SameSite=None
serverid: TODO
X-Firefox-Spdy: h2
sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
302 Found 0 B URL GET HTTP/2 sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerGlobalSign nv-sa
Subject*.upravel.com
Fingerprint4C:ED:03:57:58:43:18:2C:CC:41:F3:3B:19:72:75:BD:29:C1:04:08
ValiditySat, 29 Apr 2023 07:48:21 GMT - Thu, 30 May 2024 07:48:20 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0 HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: session_tptc=1701464094871
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Fri, 01 Dec 2023 20:54:55 GMT
content-type: image/png
content-length: 0
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: user_id=8b57f7b8-ff6f-434c-b65e-0d51403ce371;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
user_id-legacy=8b57f7b8-ff6f-434c-b65e-0d51403ce371;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
location: https://www.acint.net/match?dp=71&euid=8b57f7b8-ff6f-434c-b65e-0d51403ce371
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
ssp-rtb.sape.ru/adfoxhb
200 OK 11 B IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject*.sape.ru
FingerprintF9:61:5C:64:81:FD:57:C2:4A:BD:6B:12:D4:7E:02:5E:83:8E:3E:40
ValiditySun, 08 Oct 2023 01:41:50 GMT - Sat, 06 Jan 2024 01:41:49 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 9cc989d2e211083e0a170316914f1d06
392cd18d051f72b887529ac2998da54749f1338f
846949c5a40e3ffbb702473e54dfac0646541aa624a844369b6e24e51ddaf96b
POST /adfoxhb HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 360
Origin: https://hd.3lordserial.xyz
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: sspuid=CkIDGmVqSB58/wAcgjXtAgE3p9toolFP37V7HmgJRdulaXHU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 01 Dec 2023 20:54:55 GMT
Content-Type: application/json
Content-Length: 11
Connection: keep-alive
Access-Control-Allow-Origin: https://hd.3lordserial.xyz
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST
X-YaRequestId: 18e76877d59747ffa3e30c37e7e069ea
X-YaSpanId: 504d02813ac6d0d5
X-YaTraceId: d14f648e1e834ddc97b10b829fb05756
www.acint.net/match?dp=261&euid=1b977199-607e-4479-8f7c-7ffe43e102a6
200 OK 43 B URL GET HTTP/2 www.acint.net/match?dp=261&euid=1b977199-607e-4479-8f7c-7ffe43e102a6
IP
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintD1:98:D5:B7:91:FF:E3:AC:0C:2E:5F:9E:20:DE:E5:45:A8:C2:0E:B1
ValidityTue, 31 Oct 2023 03:36:00 GMT - Mon, 29 Jan 2024 03:35:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=261&euid=1b977199-607e-4479-8f7c-7ffe43e102a6 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWVqSB0n/jbru+FxAnBO9uArXikJ9bP7KWs+DcG51+8Z; cSyncDp14v4=1701464093; cSyncDp14v6=1701464093; cSyncDp17v2=1701464093; cSyncDp45v5=1701464093; cSyncDp53v5=1701464093; cSyncDp62v2=1701464093; cSyncDp67v3=1701464093; cSyncDp68v2=1701464093; cSyncDp71v2=1701464093; cSyncDp80v2=1701464093; cSyncDp85v2=1701464093; cSyncDp95v4=1701464093; cSyncDp98v3=1701464093; cSyncDp104v2=1701464093; cSyncDp107v2=1701464093; cSyncDp110v3=1701464093; cSyncDp125v4=1701464093; cSyncDp126v2=1701464093; cSyncDp127v2=1701464093; cSyncDp129v2=1701464093; cSyncDp136v3=1701464093; cSyncDp146v2=1701464093; cSyncDp148v2=1701464093; cSyncDp149v3=1701464093; cSyncDp151v2=1701464093; cSyncDp251v1=1701464093; cSyncDp186v2=1701464093; cSyncDp217v2=1701464093; cSyncDp221v2=1701464093; cSyncDp235v2=1701464093; cSyncDp239v2=1701464093; cSyncDp243v2=1701464093; cSyncDp260v2=1701464093; cSyncDp244v2=1701464093; cSyncDp248v2=1701464093; cSyncDp261v1=1701464093
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Fri, 01 Dec 2023 20:54:55 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
sync.dsp.solta.io/match/kimberlite?id=ZWpIHhCxuEg
200 OK 43 B URL GET HTTP/2 sync.dsp.solta.io/match/kimberlite?id=ZWpIHhCxuEg
IP
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerGlobalSign nv-sa
Subject*.dsp.solta.io
Fingerprint6D:7F:91:92:30:E1:6A:A0:9B:86:49:7A:21:7F:5B:A4:23:8F:92:BC
ValidityWed, 02 Aug 2023 16:38:38 GMT - Mon, 02 Sep 2024 16:38:37 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/kimberlite?id=ZWpIHhCxuEg HTTP/1.1
Host: sync.dsp.solta.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 20:54:55 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
ssp.bidvol.com/rtb/pl999
200 OK 11 B IP
ASN #24940 Hetzner Online GmbH
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subjectssp.bidvol.com
Fingerprint40:DB:53:6B:41:DC:4B:32:C0:EE:F6:09:5C:13:AF:5C:EF:90:56:90
ValidityThu, 09 Nov 2023 10:21:37 GMT - Wed, 07 Feb 2024 10:21:36 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 9cc989d2e211083e0a170316914f1d06
392cd18d051f72b887529ac2998da54749f1338f
846949c5a40e3ffbb702473e54dfac0646541aa624a844369b6e24e51ddaf96b
POST /rtb/pl999 HTTP/1.1
Host: ssp.bidvol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 358
Origin: https://hd.3lordserial.xyz
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 01 Dec 2023 20:54:55 GMT
content-type: application/json; charset=utf-8
content-length: 11
x-request-id: 43bc0d07-b29b-4422-85f6-3d494c71c0c3
access-control-allow-origin: https://hd.3lordserial.xyz
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
pragma: no-cache
expires: 0
surrogate-control: no-store
set-cookie: bvuid=3veqvg2yeg; Max-Age=2147483647; Domain=.bidvol.com; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT; Secure; SameSite=None
bvuid2=3veqvg2yeg; Max-Age=2147483647; Domain=.bidvol.com; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
nr.bidderstack.com/sape/cm?user_id=0100007F1D486A65EB36FE270271E1BB&pupa=1
302 Found 0 B URL GET HTTP/1.1 nr.bidderstack.com/sape/cm?user_id=0100007F1D486A65EB36FE270271E1BB&pupa=1
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerGoDaddy.com, Inc.
Subject*.bidderstack.com
Fingerprint7A:83:29:BF:37:01:78:02:DF:C1:07:D8:A2:10:AB:0A:DD:11:66:B0
ValidityTue, 21 Nov 2023 08:57:57 GMT - Sun, 22 Dec 2024 08:57:57 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/cm?user_id=0100007F1D486A65EB36FE270271E1BB&pupa=1 HTTP/1.1
Host: nr.bidderstack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 01 Dec 2023 20:54:55 GMT
Content-Length: 0
Connection: keep-alive
Location: https://www.acint.net/match?dp=251&euid=d6979f52-2616-aa83-4667-870fd419f06c
Set-Cookie: pupa=d6979f52-2616-aa83-4667-870fd419f06c; domain=.bidderstack.com; path=/; expires=Sat, 30-Nov-2024 20:54:55 GMT;
csorigin2=244; domain=.bidderstack.com; path=/; expires=Fri, 01-Dec-2023 20:59:55 GMT;
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
sync.bumlam.com/?src=sap1&s_data=CAIQARiekKmrBmIgMDEwMDAwN0YxRDQ4NkE2NUVCMzZGRTI3MDI3MUUxQkKiARDhODPOkIsR7obgACWQwGR8
200 OK 0 B URL GET HTTP/1.1 sync.bumlam.com/?src=sap1&s_data=CAIQARiekKmrBmIgMDEwMDAwN0YxRDQ4NkE2NUVCMzZGRTI3MDI3MUUxQkKiARDhODPOkIsR7obgACWQwGR8
IP
ASN #44066 diva-e Datacenters GmbH
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subject*.bumlam.com
Fingerprint08:E4:EB:78:69:AA:1C:77:24:F5:D4:0F:6C:52:FC:A6:D3:74:90:D0
ValidityMon, 16 Oct 2023 05:30:36 GMT - Sun, 14 Jan 2024 05:30:35 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sap1&s_data=CAIQARiekKmrBmIgMDEwMDAwN0YxRDQ4NkE2NUVCMzZGRTI3MDI3MUUxQkKiARDhODPOkIsR7obgACWQwGR8 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiRlMTM4MzNjZS05MDhiLTExZWUtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 01 Dec 2023 20:54:55 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiRlMTM4MzNjZS05MDhiLTExZWUtODZlMC0wMDI1OTBjMDY0N2M*; Path=/; Expires=Thu, 26 Nov 2043 20:54:55 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
www.acint.net/match?dp=186&euid=e6bd85b4-44d0-493f-8c6d-4ce8e9152d79
200 OK 43 B URL GET HTTP/2 www.acint.net/match?dp=186&euid=e6bd85b4-44d0-493f-8c6d-4ce8e9152d79
IP
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintD1:98:D5:B7:91:FF:E3:AC:0C:2E:5F:9E:20:DE:E5:45:A8:C2:0E:B1
ValidityTue, 31 Oct 2023 03:36:00 GMT - Mon, 29 Jan 2024 03:35:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=186&euid=e6bd85b4-44d0-493f-8c6d-4ce8e9152d79 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWVqSB0n/jbru+FxAnBO9uArXikJ9bP7KWs+DcG51+8Z; cSyncDp14v4=1701464093; cSyncDp14v6=1701464093; cSyncDp17v2=1701464093; cSyncDp45v5=1701464093; cSyncDp53v5=1701464093; cSyncDp62v2=1701464093; cSyncDp67v3=1701464093; cSyncDp68v2=1701464093; cSyncDp71v2=1701464093; cSyncDp80v2=1701464093; cSyncDp85v2=1701464093; cSyncDp95v4=1701464093; cSyncDp98v3=1701464093; cSyncDp104v2=1701464093; cSyncDp107v2=1701464093; cSyncDp110v3=1701464093; cSyncDp125v4=1701464093; cSyncDp126v2=1701464093; cSyncDp127v2=1701464093; cSyncDp129v2=1701464093; cSyncDp136v3=1701464093; cSyncDp146v2=1701464093; cSyncDp148v2=1701464093; cSyncDp149v3=1701464093; cSyncDp151v2=1701464093; cSyncDp251v1=1701464093; cSyncDp186v2=1701464093; cSyncDp217v2=1701464093; cSyncDp221v2=1701464093; cSyncDp235v2=1701464093; cSyncDp239v2=1701464093; cSyncDp243v2=1701464093; cSyncDp260v2=1701464093; cSyncDp244v2=1701464093; cSyncDp248v2=1701464093; cSyncDp261v1=1701464093
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Fri, 01 Dec 2023 20:54:55 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
acint.net/match?dp=80&euid=SWOP2Gg9V9Y5yS85gWSL
200 OK 43 B URL GET HTTP/2 acint.net/match?dp=80&euid=SWOP2Gg9V9Y5yS85gWSL
IP
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintD1:98:D5:B7:91:FF:E3:AC:0C:2E:5F:9E:20:DE:E5:45:A8:C2:0E:B1
ValidityTue, 31 Oct 2023 03:36:00 GMT - Mon, 29 Jan 2024 03:35:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=80&euid=SWOP2Gg9V9Y5yS85gWSL HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWVqSB0n/jbru+FxAnBO9uArXikJ9bP7KWs+DcG51+8Z; cSyncDp14v4=1701464093; cSyncDp14v6=1701464093; cSyncDp17v2=1701464093; cSyncDp45v5=1701464093; cSyncDp53v5=1701464093; cSyncDp62v2=1701464093; cSyncDp67v3=1701464093; cSyncDp68v2=1701464093; cSyncDp71v2=1701464093; cSyncDp80v2=1701464093; cSyncDp85v2=1701464093; cSyncDp95v4=1701464093; cSyncDp98v3=1701464093; cSyncDp104v2=1701464093; cSyncDp107v2=1701464093; cSyncDp110v3=1701464093; cSyncDp125v4=1701464093; cSyncDp126v2=1701464093; cSyncDp127v2=1701464093; cSyncDp129v2=1701464093; cSyncDp136v3=1701464093; cSyncDp146v2=1701464093; cSyncDp148v2=1701464093; cSyncDp149v3=1701464093; cSyncDp151v2=1701464093; cSyncDp251v1=1701464093; cSyncDp186v2=1701464093; cSyncDp217v2=1701464093; cSyncDp221v2=1701464093; cSyncDp235v2=1701464093; cSyncDp239v2=1701464093; cSyncDp243v2=1701464093; cSyncDp260v2=1701464093; cSyncDp244v2=1701464093; cSyncDp248v2=1701464093; cSyncDp261v1=1701464093
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Fri, 01 Dec 2023 20:54:55 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
www.acint.net/match?dp=95&euid=KIAJAIUK
200 OK 43 B URL GET HTTP/2 www.acint.net/match?dp=95&euid=KIAJAIUK
IP
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintD1:98:D5:B7:91:FF:E3:AC:0C:2E:5F:9E:20:DE:E5:45:A8:C2:0E:B1
ValidityTue, 31 Oct 2023 03:36:00 GMT - Mon, 29 Jan 2024 03:35:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=95&euid=KIAJAIUK HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWVqSB0n/jbru+FxAnBO9uArXikJ9bP7KWs+DcG51+8Z; cSyncDp14v4=1701464093; cSyncDp14v6=1701464093; cSyncDp17v2=1701464093; cSyncDp45v5=1701464093; cSyncDp53v5=1701464093; cSyncDp62v2=1701464093; cSyncDp67v3=1701464093; cSyncDp68v2=1701464093; cSyncDp71v2=1701464093; cSyncDp80v2=1701464093; cSyncDp85v2=1701464093; cSyncDp95v4=1701464093; cSyncDp98v3=1701464093; cSyncDp104v2=1701464093; cSyncDp107v2=1701464093; cSyncDp110v3=1701464093; cSyncDp125v4=1701464093; cSyncDp126v2=1701464093; cSyncDp127v2=1701464093; cSyncDp129v2=1701464093; cSyncDp136v3=1701464093; cSyncDp146v2=1701464093; cSyncDp148v2=1701464093; cSyncDp149v3=1701464093; cSyncDp151v2=1701464093; cSyncDp251v1=1701464093; cSyncDp186v2=1701464093; cSyncDp217v2=1701464093; cSyncDp221v2=1701464093; cSyncDp235v2=1701464093; cSyncDp239v2=1701464093; cSyncDp243v2=1701464093; cSyncDp260v2=1701464093; cSyncDp244v2=1701464093; cSyncDp248v2=1701464093; cSyncDp261v1=1701464093
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Fri, 01 Dec 2023 20:54:55 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
kimberlite.io/rtb/bid/hb/adfox
200 OK 11 B URL POST HTTP/1.1 kimberlite.io/rtb/bid/hb/adfox
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.kimberlite.io
Fingerprint94:44:D9:27:EE:9B:5F:DE:36:07:ED:BA:1A:1D:62:2A:31:B6:43:72
ValidityFri, 10 Mar 2023 07:40:01 GMT - Wed, 10 Apr 2024 07:40:00 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 9cc989d2e211083e0a170316914f1d06
392cd18d051f72b887529ac2998da54749f1338f
846949c5a40e3ffbb702473e54dfac0646541aa624a844369b6e24e51ddaf96b
POST /rtb/bid/hb/adfox HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 364
Origin: https://hd.3lordserial.xyz
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: u=ZWpIHhCxuEg~3ibymx4COHG4rgC8hbNf8i9N5n8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 01 Dec 2023 20:54:55 GMT
Content-Type: application/json
Content-Length: 11
Connection: keep-alive
access-control-allow-credentials: true
access-control-allow-origin: https://hd.3lordserial.xyz
set-cookie: u=ZWpIHhCxuEg~3ibymx4COHG4rgC8hbNf8i9N5n8; path=/; max-age=7776000; samesite=none; httponly; secure
server-timing: app;srv=6;dur=0.0807
yhb.p.otm-r.com/yhb
200 OK 11 B IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.p.otm-r.com
FingerprintD6:A5:0F:D1:7C:BD:32:44:FA:DC:D7:1C:CE:C3:43:FB:5A:7B:F1:08
ValidityWed, 22 Feb 2023 14:51:57 GMT - Mon, 25 Mar 2024 14:51:56 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 9cc989d2e211083e0a170316914f1d06
392cd18d051f72b887529ac2998da54749f1338f
846949c5a40e3ffbb702473e54dfac0646541aa624a844369b6e24e51ddaf96b
POST /yhb HTTP/1.1
Host: yhb.p.otm-r.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 358
Origin: https://hd.3lordserial.xyz
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.23.2
date: Fri, 01 Dec 2023 20:54:55 GMT
content-type: text/plain; charset=utf-8
content-length: 11
access-control-allow-credentials: true
access-control-allow-origin: https://hd.3lordserial.xyz
set-cookie: mpid=NjU2YTQ4MWYwNDc1NzJmNg==; Path=/; Domain=otm-r.com; Max-Age=31536000; Secure; SameSite=None
vary: Origin
X-Firefox-Spdy: h2
s.myangular.life/ws?ref_id=13098
0 B URL s.myangular.life/ws?ref_id=13098
IP
ASN #24940 Hetzner Online GmbH
Certificate IssuerSectigo Limited
Subjects.myangular.life
Fingerprint3A:21:0F:72:24:43:49:14:06:28:C6:D0:A6:10:6B:D7:B2:EA:5A:66
ValidityTue, 04 Apr 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ws?ref_id=13098 HTTP/1.1
Host: s.myangular.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://api.strvid.ws
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 30bfXbUnEJKKDus5cJ+hbw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Fri, 01 Dec 2023 20:54:55 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: TdrXL+QWaGwIB3Xg0Ym2N/dDyYg=
code.moviead55.ru/go/csync?cn=sapecookie&bid=0100007F1D486A65EB36FE270271E1BB
200 OK 0 B URL GET HTTP/2 code.moviead55.ru/go/csync?cn=sapecookie&bid=0100007F1D486A65EB36FE270271E1BB
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=sapecookie&bid=0100007F1D486A65EB36FE270271E1BB HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: sky_uuid=be9fe05e-bd8f-fcbd-c0df-d3b5691c6bb7; otclkbid=VUG31mKFfTelneA; bzcookie=62702512-19f3-4f1f-709f-f1701214a947; ohmybid=8ff58d1b-9d36-4f21-a30f-e57ae193aeac; hbrdcookie2=86236e1e32982c274142; solta=ZWpIHhCxuEg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 20:54:55 GMT
content-type: image/jpeg
content-length: 0
set-cookie: sapecookie=0100007F1D486A65EB36FE270271E1BB; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
www.acint.net/match?dp=98&euid=1c931d12-853d-4d5f-a5e5-985f2066ed0f
200 OK 43 B URL GET HTTP/2 www.acint.net/match?dp=98&euid=1c931d12-853d-4d5f-a5e5-985f2066ed0f
IP
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintD1:98:D5:B7:91:FF:E3:AC:0C:2E:5F:9E:20:DE:E5:45:A8:C2:0E:B1
ValidityTue, 31 Oct 2023 03:36:00 GMT - Mon, 29 Jan 2024 03:35:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=98&euid=1c931d12-853d-4d5f-a5e5-985f2066ed0f HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWVqSB0n/jbru+FxAnBO9uArXikJ9bP7KWs+DcG51+8Z; cSyncDp14v4=1701464093; cSyncDp14v6=1701464093; cSyncDp17v2=1701464093; cSyncDp45v5=1701464093; cSyncDp53v5=1701464093; cSyncDp62v2=1701464093; cSyncDp67v3=1701464093; cSyncDp68v2=1701464093; cSyncDp71v2=1701464093; cSyncDp80v2=1701464093; cSyncDp85v2=1701464093; cSyncDp95v4=1701464093; cSyncDp98v3=1701464093; cSyncDp104v2=1701464093; cSyncDp107v2=1701464093; cSyncDp110v3=1701464093; cSyncDp125v4=1701464093; cSyncDp126v2=1701464093; cSyncDp127v2=1701464093; cSyncDp129v2=1701464093; cSyncDp136v3=1701464093; cSyncDp146v2=1701464093; cSyncDp148v2=1701464093; cSyncDp149v3=1701464093; cSyncDp151v2=1701464093; cSyncDp251v1=1701464093; cSyncDp186v2=1701464093; cSyncDp217v2=1701464093; cSyncDp221v2=1701464093; cSyncDp235v2=1701464093; cSyncDp239v2=1701464093; cSyncDp243v2=1701464093; cSyncDp260v2=1701464093; cSyncDp244v2=1701464093; cSyncDp248v2=1701464093; cSyncDp261v1=1701464093
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Fri, 01 Dec 2023 20:54:55 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
code.moviead55.ru/go/jmap?v=647a534f9f5fb9ced25ee7db57ef9c72&sid=ap&cp.referer=https%253A%252F%252Fhd.3lordserial.xyz%252F146-kasl-sv-13.html&it=1&tq=2&cp.cb=36fff07f-45a2-8538-2327-e72340d68eb9&session=805e1579-dbe0-4830-bffa-dd6b2459b8b3&position=pre&vt=100&ostream=true&isp=0&suri=https%253A%252F%252Fhd.3lordserial.xyz%252F146-kasl-sv-13.html&rnd=1701464100448&raw=yes
200 OK 2 B URL GET HTTP/2 code.moviead55.ru/go/jmap?v=647a534f9f5fb9ced25ee7db57ef9c72&sid=ap&cp.referer=https%253A%252F%252Fhd.3lordserial.xyz%252F146-kasl-sv-13.html&it=1&tq=2&cp.cb=36fff07f-45a2-8538-2327-e72340d68eb9&session=805e1579-dbe0-4830-bffa-dd6b2459b8b3&position=pre&vt=100&ostream=true&isp=0&suri=https%253A%252F%252Fhd.3lordserial.xyz%252F146-kasl-sv-13.html&rnd=1701464100448&raw=yes
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
GET /go/jmap?v=647a534f9f5fb9ced25ee7db57ef9c72&sid=ap&cp.referer=https%253A%252F%252Fhd.3lordserial.xyz%252F146-kasl-sv-13.html&it=1&tq=2&cp.cb=36fff07f-45a2-8538-2327-e72340d68eb9&session=805e1579-dbe0-4830-bffa-dd6b2459b8b3&position=pre&vt=100&ostream=true&isp=0&suri=https%253A%252F%252Fhd.3lordserial.xyz%252F146-kasl-sv-13.html&rnd=1701464100448&raw=yes HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd.3lordserial.xyz
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: sky_uuid=be9fe05e-bd8f-fcbd-c0df-d3b5691c6bb7; otclkbid=VUG31mKFfTelneA; bzcookie=62702512-19f3-4f1f-709f-f1701214a947; ohmybid=8ff58d1b-9d36-4f21-a30f-e57ae193aeac; hbrdcookie2=86236e1e32982c274142; solta=ZWpIHhCxuEg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 20:54:55 GMT
content-type: application/json;charset=UTF-8
content-length: 2
x-movieads-cors-qex: Referer
x-movieads-path: /
access-control-allow-credentials: true
access-control-allow-origin: https://hd.3lordserial.xyz
x-go-country: NO
x-movieads-udata: cache,parsed,14388
x-movieads-plc: 0
x-movieads-ark: true
x-movieads-qmc: NO
x-movieads-alc: 2
x-movieads-ctvs: 2
server-timing: buildTagsQueue;dur=0.0000, range_links;dur=0.0000, qManager;dur=0.0000, initBuilder;dur=0.0000, getLinks;dur=0.0000, queuesMerge;dur=0.0000, attachTracking;dur=0.0000, queueSort;dur=0.0000, getJson;dur=0.0000, jmapParams;dur=0.0000, keyValidation;dur=0.0000, uData;dur=0.0000, getAnyQueue;dur=0.0000, corsParams;dur=0.0000, wmData;dur=0.0000, optProc;dur=0.0000
x-movieads-country: NO
X-Firefox-Spdy: h2
img.zcvh.net/748951/desktop/thumb-1.webp
200 OK 213 kB URL GET HTTP/1.1 img.zcvh.net/748951/desktop/thumb-1.webp
IP
ASN #24940 Hetzner Online GmbH
Requested by https://api.strvid.ws/embed/movie/455
Certificate IssuerLet's Encrypt
Subject*.zcvh.net
Fingerprint9F:09:BF:B0:10:B8:43:CC:8F:29:36:BC:BD:D2:2C:71:A7:7E:CA:9A
ValidityWed, 27 Sep 2023 04:02:29 GMT - Tue, 26 Dec 2023 04:02:28 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1600x900, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 213 kB (212626 bytes)
Hash ec8ce9030289ceacccd38bd5a3dca384
42e791a20cf4e6547a62f1f88b4d2c3f9ae8dcf6
fb3018fa704be9d53225b392301cbecd847c3b1843ed77b11920cf7ec8e46581
GET /748951/desktop/thumb-1.webp HTTP/1.1
Host: img.zcvh.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://api.strvid.ws/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 01 Dec 2023 20:54:55 GMT
Content-Type: image/webp
Content-Length: 212626
Last-Modified: Mon, 12 Sep 2022 02:36:41 GMT
Connection: keep-alive
ETag: "631e9b39-33e92"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
www.acint.net/match?dp=71&euid=8b57f7b8-ff6f-434c-b65e-0d51403ce371
200 OK 43 B URL GET HTTP/2 www.acint.net/match?dp=71&euid=8b57f7b8-ff6f-434c-b65e-0d51403ce371
IP
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintD1:98:D5:B7:91:FF:E3:AC:0C:2E:5F:9E:20:DE:E5:45:A8:C2:0E:B1
ValidityTue, 31 Oct 2023 03:36:00 GMT - Mon, 29 Jan 2024 03:35:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=71&euid=8b57f7b8-ff6f-434c-b65e-0d51403ce371 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWVqSB0n/jbru+FxAnBO9uArXikJ9bP7KWs+DcG51+8Z; cSyncDp14v4=1701464093; cSyncDp14v6=1701464093; cSyncDp17v2=1701464093; cSyncDp45v5=1701464093; cSyncDp53v5=1701464093; cSyncDp62v2=1701464093; cSyncDp67v3=1701464093; cSyncDp68v2=1701464093; cSyncDp71v2=1701464093; cSyncDp80v2=1701464093; cSyncDp85v2=1701464093; cSyncDp95v4=1701464093; cSyncDp98v3=1701464093; cSyncDp104v2=1701464093; cSyncDp107v2=1701464093; cSyncDp110v3=1701464093; cSyncDp125v4=1701464093; cSyncDp126v2=1701464093; cSyncDp127v2=1701464093; cSyncDp129v2=1701464093; cSyncDp136v3=1701464093; cSyncDp146v2=1701464093; cSyncDp148v2=1701464093; cSyncDp149v3=1701464093; cSyncDp151v2=1701464093; cSyncDp251v1=1701464093; cSyncDp186v2=1701464093; cSyncDp217v2=1701464093; cSyncDp221v2=1701464093; cSyncDp235v2=1701464093; cSyncDp239v2=1701464093; cSyncDp243v2=1701464093; cSyncDp260v2=1701464093; cSyncDp244v2=1701464093; cSyncDp248v2=1701464093; cSyncDp261v1=1701464093
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Fri, 01 Dec 2023 20:54:55 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
exchange.buzzoola.com/ssp/adfox?set_buzzoola_cookie=t
200 OK 11 B URL POST HTTP/2 exchange.buzzoola.com/ssp/adfox?set_buzzoola_cookie=t
IP
ASN #24940 Hetzner Online GmbH
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerSectigo Limited
Subject*.buzzoola.com
FingerprintE6:7F:94:98:CF:E4:CF:88:C7:8C:FC:16:A3:D7:D0:10:4E:EC:AB:F1
ValidityMon, 04 Sep 2023 00:00:00 GMT - Fri, 04 Oct 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 9cc989d2e211083e0a170316914f1d06
392cd18d051f72b887529ac2998da54749f1338f
846949c5a40e3ffbb702473e54dfac0646541aa624a844369b6e24e51ddaf96b
POST /ssp/adfox?set_buzzoola_cookie=t HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 362
Origin: https://hd.3lordserial.xyz
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: uuid=9ec21319-5e24-4b88-6e86-87b40e4ff5bc
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 20:54:57 GMT
content-type: text/plain; charset=utf-8
content-length: 11
access-control-allow-credentials: true
access-control-allow-headers: Set-Cookie, X-Alt-Referer, X-First-Party-Cookie, X-Aidata-FP, If-None-Match
access-control-allow-origin: https://hd.3lordserial.xyz
access-control-expose-headers: Set-Cookie, Etag
set-cookie: cookiesyncs=000000000000000000000000d93dab9edf0912baf9008f35866978f1; Path=/; Domain=exchange.buzzoola.com; Expires=Sat, 02 Dec 2023 08:54:57 GMT; Max-Age=43200; Secure; SameSite=None
serverid: TODO
X-Firefox-Spdy: h2
pix.bumlam.com/sync/sape/sync_ok?guid=e13833ce-908b-11ee-86e0-002590c0647c
302 Found 0 B URL GET HTTP/1.1 pix.bumlam.com/sync/sape/sync_ok?guid=e13833ce-908b-11ee-86e0-002590c0647c
IP
ASN #44066 diva-e Datacenters GmbH
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subject*.bumlam.com
Fingerprint08:E4:EB:78:69:AA:1C:77:24:F5:D4:0F:6C:52:FC:A6:D3:74:90:D0
ValidityMon, 16 Oct 2023 05:30:36 GMT - Sun, 14 Jan 2024 05:30:35 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/sape/sync_ok?guid=e13833ce-908b-11ee-86e0-002590c0647c HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiRlMTM4MzNjZS05MDhiLTExZWUtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 01 Dec 2023 20:54:55 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://e13833ce-908b-11ee-86e0-002590c0647c.n2.sync.bumlam.com/?src=sape
www.acint.net/match?dp=251&euid=d6979f52-2616-aa83-4667-870fd419f06c
200 OK 43 B URL GET HTTP/2 www.acint.net/match?dp=251&euid=d6979f52-2616-aa83-4667-870fd419f06c
IP
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintD1:98:D5:B7:91:FF:E3:AC:0C:2E:5F:9E:20:DE:E5:45:A8:C2:0E:B1
ValidityTue, 31 Oct 2023 03:36:00 GMT - Mon, 29 Jan 2024 03:35:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=251&euid=d6979f52-2616-aa83-4667-870fd419f06c HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWVqSB0n/jbru+FxAnBO9uArXikJ9bP7KWs+DcG51+8Z; cSyncDp14v4=1701464093; cSyncDp14v6=1701464093; cSyncDp17v2=1701464093; cSyncDp45v5=1701464093; cSyncDp53v5=1701464093; cSyncDp62v2=1701464093; cSyncDp67v3=1701464093; cSyncDp68v2=1701464093; cSyncDp71v2=1701464093; cSyncDp80v2=1701464093; cSyncDp85v2=1701464093; cSyncDp95v4=1701464093; cSyncDp98v3=1701464093; cSyncDp104v2=1701464093; cSyncDp107v2=1701464093; cSyncDp110v3=1701464093; cSyncDp125v4=1701464093; cSyncDp126v2=1701464093; cSyncDp127v2=1701464093; cSyncDp129v2=1701464093; cSyncDp136v3=1701464093; cSyncDp146v2=1701464093; cSyncDp148v2=1701464093; cSyncDp149v3=1701464093; cSyncDp151v2=1701464093; cSyncDp251v1=1701464093; cSyncDp186v2=1701464093; cSyncDp217v2=1701464093; cSyncDp221v2=1701464093; cSyncDp235v2=1701464093; cSyncDp239v2=1701464093; cSyncDp243v2=1701464093; cSyncDp260v2=1701464093; cSyncDp244v2=1701464093; cSyncDp248v2=1701464093; cSyncDp261v1=1701464093
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Fri, 01 Dec 2023 20:54:55 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
e13833ce-908b-11ee-86e0-002590c0647c.n2.sync.bumlam.com/?src=sape
302 Found 0 B URL GET HTTP/2 e13833ce-908b-11ee-86e0-002590c0647c.n2.sync.bumlam.com/?src=sape
IP
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subject*.n0.sync.bumlam.com
Fingerprint99:77:61:BD:7C:71:52:75:4C:35:19:FA:21:42:A9:2E:BF:93:81:BF
ValidityTue, 19 Sep 2023 05:05:41 GMT - Mon, 18 Dec 2023 05:05:40 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sape HTTP/1.1
Host: e13833ce-908b-11ee-86e0-002590c0647c.n2.sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiRlMTM4MzNjZS05MDhiLTExZWUtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.24.0
date: Fri, 01 Dec 2023 20:54:56 GMT
content-length: 0
location: https://pix.bumlam.com/sync/sape/done
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
X-Firefox-Spdy: h2
user91471.clients-cdnnow.ru/yasdk/vw.js?v3
1.4 kB URL user91471.clients-cdnnow.ru/yasdk/vw.js?v3
IP
File type gzip compressed data, from Unix\012- data
Hash 215acb4e51d71be68eaeb0243feb78ab
dcc640c5e95a42b67aa4839a4aef77e02e7f3b4c
1ccbd9b926fbb3f58d5d96fd8e34d58a37c8b15ff1b56dba697ed7d651195cc3
GET /yasdk/vw.js?v3 HTTP/1.1
Host: user91471.clients-cdnnow.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 20:54:55 GMT
content-type: application/javascript
last-modified: Fri, 21 Jul 2023 13:34:19 GMT
vary: Accept-Encoding
etag: W/"64ba895b-12fc"
x-movieads-country: RU
content-encoding: gzip
x-edge-cache: HIT
x-edge-ip: 172.19.32.3
X-Firefox-Spdy: h2
user91471.clients-cdnnow.ru/vp_dist/hls.js?v2
200 OK 97 kB URL GET HTTP/2 user91471.clients-cdnnow.ru/vp_dist/hls.js?v2
IP
Requested by https://videotoday.site/mp_dist/td/trhls.html?v5646834026
Certificate IssuerLet's Encrypt
Subject*.clients-cdnnow.ru
Fingerprint7E:E4:04:34:49:F5:F1:E6:2A:83:55:F6:8A:EF:64:0A:9D:DB:88:53
ValidityTue, 07 Nov 2023 22:34:52 GMT - Mon, 05 Feb 2024 22:34:51 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 05a1b55a4d7828b9fcfb4a2a43f1ded8
f06fa60dd1e0c60d590d8cfccc82823bdd67ee25
a209e611d60a9f94a32a91cd925d1918a11ae38476c13499c0e71a33b9c8d4d3
GET /vp_dist/hls.js?v2 HTTP/1.1
Host: user91471.clients-cdnnow.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videotoday.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 20:54:56 GMT
content-type: application/javascript
last-modified: Tue, 14 Feb 2023 08:10:38 GMT
vary: Accept-Encoding
etag: W/"63eb41fe-52302"
x-movieads-country: RU
content-encoding: gzip
x-edge-cache: HIT
x-edge-ip: 172.19.32.3
X-Firefox-Spdy: h2
static.filmskino.site/hls/trailers/arJIA_8cyT0.mp4/seg-1-v1-a1.ts
200 OK 238 kB URL GET HTTP/1.1 static.filmskino.site/hls/trailers/arJIA_8cyT0.mp4/seg-1-v1-a1.ts
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://videotoday.site/mp_dist/td/trhls.html?v5646834026
Certificate IssuerLet's Encrypt
Subjectstatic.filmskino.site
Fingerprint6E:8F:8F:89:03:E1:65:6F:AE:73:8A:6F:6B:A2:B1:02:C1:FE:D3:C7
ValidityMon, 02 Oct 2023 16:05:08 GMT - Sun, 31 Dec 2023 16:05:07 GMT
File type MPEG transport stream data\012- data
Size 238 kB (238008 bytes)
Hash 98616065fd379d384eb2f9e097653403
75cdf38589191b963badcf808f565cd705cf2b3a
5c43a81c639cea66bc1c0aaa5a7b2c334ad522c910b085d83c25e216d9c536a7
GET /hls/trailers/arJIA_8cyT0.mp4/seg-1-v1-a1.ts HTTP/1.1
Host: static.filmskino.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videotoday.site
DNT: 1
Connection: keep-alive
Referer: https://videotoday.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 01 Dec 2023 20:54:57 GMT
Content-Type: video/MP2T
Content-Length: 238008
Last-Modified: Sun, 19 Nov 2000 08:52:00 GMT
Connection: keep-alive
ETag: "3a1794b0-3a1b8"
Expires: Sun, 10 Mar 2024 20:54:57 GMT
Cache-Control: max-age=8640000
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
sync.dmp.otm-r.com/match/aotm.js
204 No Content 0 B URL GET HTTP/2 sync.dmp.otm-r.com/match/aotm.js
IP
ASN #24940 Hetzner Online GmbH
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.dmp.otm-r.com
FingerprintC6:A2:9D:82:0D:D1:C1:2D:A4:ED:7F:05:13:52:5B:94:6B:10:58:D6
ValidityMon, 19 Jun 2023 10:50:51 GMT - Sat, 20 Jul 2024 10:50:50 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/aotm.js HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: mpid=NjU2YTQ4MWYwNDc1NzJmNg==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: nginx/1.17.2
date: Fri, 01 Dec 2023 20:54:57 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
static.filmskino.site/hls/trailers/arJIA_8cyT0.mp4/seg-2-v1-a1.ts
200 OK 226 kB URL GET HTTP/1.1 static.filmskino.site/hls/trailers/arJIA_8cyT0.mp4/seg-2-v1-a1.ts
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://videotoday.site/mp_dist/td/trhls.html?v5646834026
Certificate IssuerLet's Encrypt
Subjectstatic.filmskino.site
Fingerprint6E:8F:8F:89:03:E1:65:6F:AE:73:8A:6F:6B:A2:B1:02:C1:FE:D3:C7
ValidityMon, 02 Oct 2023 16:05:08 GMT - Sun, 31 Dec 2023 16:05:07 GMT
File type MPEG transport stream data\012- TeX font metric data (\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377)\012- data
Size 226 kB (225976 bytes)
Hash 023aed136f0161337a6541e5eeb24d70
d2fc4342a9668b0a1fe2b86f2383b8f6a7cc5887
001d1cce503c2f072d35e13f148520c407541e6bc0ac8c8f66e5f64537684663
GET /hls/trailers/arJIA_8cyT0.mp4/seg-2-v1-a1.ts HTTP/1.1
Host: static.filmskino.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videotoday.site
DNT: 1
Connection: keep-alive
Referer: https://videotoday.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 01 Dec 2023 20:54:57 GMT
Content-Type: video/MP2T
Content-Length: 225976
Last-Modified: Sun, 19 Nov 2000 08:52:00 GMT
Connection: keep-alive
ETag: "3a1794b0-372b8"
Expires: Sun, 10 Mar 2024 20:54:57 GMT
Cache-Control: max-age=8640000
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
cdn.alfasense.net/lib/prebid.js
200 OK 399 kB URL GET HTTP/2 cdn.alfasense.net/lib/prebid.js
IP
ASN #52000 Innovation IT Solutions LTD
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.net
Fingerprint15:61:D7:BD:E9:E1:37:36:5F:FD:47:F7:69:F7:5E:53:CD:95:A9:59
ValidityWed, 22 Nov 2023 16:23:03 GMT - Mon, 23 Dec 2024 16:23:02 GMT
File type gzip compressed data, max speed, from Unix\012- data
Size 399 kB (398994 bytes)
Hash defdd4da629dc989a6c72d7efdd4a318
39fac2e88ffef7dfeb5eef0bc26c975e4b0d64de
8ba94786b255f6547e03cf910dc4e4ac43545c8b258c5392b4eb64c540971b0a
GET /lib/prebid.js HTTP/1.1
Host: cdn.alfasense.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 20:54:57 GMT
content-type: application/javascript
last-modified: Mon, 27 Feb 2023 15:51:14 GMT
etag: W/"63fcd172-2c53e"
content-security-policy: frame-ancestors 'none';frame-src 'self';
cross-origin-embedder-policy: unsafe-none
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
permissions-policy: geolocation=(self), payment=(self)
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block;
cache-control: public, max-age=60
content-encoding: gzip
set-cookie: route=dd92c318b574e2af8018c0207c5098f9; Path=/
SRVGROUP=common; path=/; Secure; HttpOnly
X-Firefox-Spdy: h2
cs.alfasense.com/pixeljs
200 OK 5.5 kB IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.com
Fingerprint92:58:B8:97:87:98:3A:5B:01:DA:24:13:D3:B2:D4:AF:F5:07:AE:9E
ValiditySat, 10 Dec 2022 23:58:10 GMT - Thu, 11 Jan 2024 23:58:09 GMT
File type ASCII text, with very long lines (5490), with no line terminators
Hash 9b2e8925020b6030ca86b1d6cfc1acc5
9c7c0bbc4c4b22541c6d9ba57ba5c352d2ea6b7b
efed13ab86b3d36fb4ce08c5a11c0c26fedcbb502e742ab013e9c04111512e0e
GET /pixeljs HTTP/1.1
Host: cs.alfasense.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 01 Dec 2023 20:54:57 GMT
Content-Type: application/javascript
Content-Length: 5490
Connection: keep-alive
Server: fasthttp
Set-Cookie: uuid=76165f9c-19c5-44f9-a939-d74d6f307d13; expires=Thu, 21 Nov 2024 20:54:57 GMT; domain=alfasense.com; path=/; secure; SameSite=None
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.100.20
Accept-Ranges: bytes
v.alfasrv.com/stats/2x2.png?s=104707&e=r&t=p
200 OK 95 B URL GET HTTP/1.1 v.alfasrv.com/stats/2x2.png?s=104707&e=r&t=p
IP
ASN #200350 Yandex.Cloud LLC
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasrv.com
Fingerprint4B:8A:22:65:23:10:74:25:5D:40:3B:78:20:8D:F8:82:A4:50:44:90
ValidityTue, 10 Oct 2023 09:20:49 GMT - Sun, 10 Nov 2024 09:20:48 GMT
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 9591c410148e6883727c5339fd1c02cd
3442a95fe890ce4769b36b2ecc611b801a54cfb5
cafbd551d674da240212f6c44988757a728b9dc8cbc2a6c8dcf53c0d9159c323
GET /stats/2x2.png?s=104707&e=r&t=p HTTP/1.1
Host: v.alfasrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Fri, 01 Dec 2023 20:54:57 GMT
Content-Type: image/png
Content-Length: 95
Connection: keep-alive
Last-Modified: Friday, 01-Dec-2023 20:54:57 GMT
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
Accept-Ranges: bytes
s.alfasrv.com/events/1x1.png?s=104707&e=r&t=p
200 OK 95 B URL GET HTTP/2 s.alfasrv.com/events/1x1.png?s=104707&e=r&t=p
IP
ASN #200350 Yandex.Cloud LLC
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasrv.com
Fingerprint4B:8A:22:65:23:10:74:25:5D:40:3B:78:20:8D:F8:82:A4:50:44:90
ValidityTue, 10 Oct 2023 09:20:49 GMT - Sun, 10 Nov 2024 09:20:48 GMT
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 9591c410148e6883727c5339fd1c02cd
3442a95fe890ce4769b36b2ecc611b801a54cfb5
cafbd551d674da240212f6c44988757a728b9dc8cbc2a6c8dcf53c0d9159c323
GET /events/1x1.png?s=104707&e=r&t=p HTTP/1.1
Host: s.alfasrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.24.0
date: Fri, 01 Dec 2023 20:54:57 GMT
content-type: image/png
content-length: 95
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,X-Original-Referer
access-control-allow-credentials: true
cache-control: no-cache,no-store
expires: Tue, 01 Jan 1980 1:00:00 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
sync.programmatica.com/match/Alfasense?id=76165f9c-19c5-44f9-a939-d74d6f307d13
200 OK 43 B URL GET HTTP/2 sync.programmatica.com/match/Alfasense?id=76165f9c-19c5-44f9-a939-d74d6f307d13
IP
ASN #24940 Hetzner Online GmbH
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.programmatica.com
FingerprintE4:B6:ED:A7:02:18:8C:3F:D0:A3:8D:04:EE:40:21:0A:0E:83:D1:D6
ValidityThu, 15 Dec 2022 17:05:13 GMT - Tue, 16 Jan 2024 17:05:12 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/Alfasense?id=76165f9c-19c5-44f9-a939-d74d6f307d13 HTTP/1.1
Host: sync.programmatica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 20:54:57 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kimberlite.io/rtb/sync/alfasense?u=76165f9c-19c5-44f9-a939-d74d6f307d13
307 Temporary Redirect 0 B URL GET HTTP/1.1 kimberlite.io/rtb/sync/alfasense?u=76165f9c-19c5-44f9-a939-d74d6f307d13
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.kimberlite.io
Fingerprint94:44:D9:27:EE:9B:5F:DE:36:07:ED:BA:1A:1D:62:2A:31:B6:43:72
ValidityFri, 10 Mar 2023 07:40:01 GMT - Wed, 10 Apr 2024 07:40:00 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtb/sync/alfasense?u=76165f9c-19c5-44f9-a939-d74d6f307d13 HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: as=hPJ_CGVqSB4; f=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D243%26euid%3DZWpIHhCxuEg; n=1; u=ZWpIHhCxuEg~3ibymx4COHG4rgC8hbNf8i9N5n8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Fri, 01 Dec 2023 20:54:57 GMT
Content-Length: 0
Connection: keep-alive
cache-control: no-store
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: as=-WrUeGVqSCGE8n8IZWpIHg; max-age=604800; samesite=none; httponly; secure
n=2; max-age=30; samesite=none; httponly; secure
location: https://solta-sync.rutarget.ru/sync
referrer-policy: no-referrer
server-timing: app;srv=0;dur=0.0001
ssp.afp.ai/api/sync/alfadart?skipme=76165f9c-19c5-44f9-a939-d74d6f307d13
302 Found 0 B URL GET HTTP/1.1 ssp.afp.ai/api/sync/alfadart?skipme=76165f9c-19c5-44f9-a939-d74d6f307d13
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerSectigo Limited
Subject*.afp.ai
Fingerprint6D:78:55:60:8D:74:D7:2E:9F:A5:B1:56:72:76:A6:20:F9:7E:E4:4F
ValidityMon, 23 Oct 2023 00:00:00 GMT - Tue, 24 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/sync/alfadart?skipme=76165f9c-19c5-44f9-a939-d74d6f307d13 HTTP/1.1
Host: ssp.afp.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: afp_cookie=gAAAAABlakgeRPGA6h94i8MvgZ-8z9rn5id0rOXnsktRldr255bgxHlWLd-cfBwWKqGveq95tgLOYQ77CUQY7kWBIFElaj7rZgZp0hY-XmZDA1T1L7GTAzpsDA_Z6jcKn2c4MAph4pe04Z_ffzheAp7Tv0woI5z_GJH8voR7o5HZsTy7pMPP1_4hBkvvOmQUhxsCNMyDx2iS$
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.20.1
Date: Fri, 01 Dec 2023 20:54:57 GMT
Content-Length: 0
Connection: keep-alive
Vary: Origin
Access-Control-Allow-Origin:
Access-Control-Allow-Credentials: true
Location: https://cs.alfasense.com/p?ssp=al&id=1b977199-607e-4479-8f7c-7ffe43e102a6
Set-Cookie: afp_cookie=gAAAAABlakghRaD_6gjbZCkwWkVqsHE_UN_vfUkZObUcX0ePvobtyIrSZRNnsPKBRqtECRGs_q8HiqNVXwZVJhH_1hnchzjdAtpqmyaoHz38n6JkUicP_qEjaJp6vDCLLD4wUX5gGhhuIyZIedbQfVgp5O7hAICf_t2S892H_Ew6cYsF2XkSmLs9AMVdD_LpU587N6YUY7RJCqJ8TbW2dFEen7tzpfAfwvzbhHdnyN6mS7itlBzfjek=$; expires=Mon, 01 Jan 2024 20:54:57 GMT; path=/; secure; SameSite=None
sync.adspend.space/alfasense?uid=76165f9c-19c5-44f9-a939-d74d6f307d13
204 No Content 0 B URL GET HTTP/2 sync.adspend.space/alfasense?uid=76165f9c-19c5-44f9-a939-d74d6f307d13
IP
ASN #50340 OOO Network of data-centers Selectel
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subjectadspend.space
Fingerprint25:A8:18:8F:99:5E:81:77:EE:CC:A2:7D:B9:A4:65:C6:29:9B:72:AF
ValidityMon, 27 Nov 2023 12:15:31 GMT - Sun, 25 Feb 2024 12:15:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /alfasense?uid=76165f9c-19c5-44f9-a939-d74d6f307d13 HTTP/1.1
Host: sync.adspend.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: as-user=1c931d12-853d-4d5f-a5e5-985f2066ed0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: nginx/1.22.1
date: Fri, 01 Dec 2023 20:54:57 GMT
X-Firefox-Spdy: h2
www.acint.net/rmatch?dp=185&euid=76165f9c-19c5-44f9-a939-d74d6f307d13&r=https%3A%2F%2Fcs.alfasense.com%2Fp%3Fssp%3Dsp%26uid%3D%24%7BUSER_ID%7D
302 Found 154 B URL GET HTTP/2 www.acint.net/rmatch?dp=185&euid=76165f9c-19c5-44f9-a939-d74d6f307d13&r=https%3A%2F%2Fcs.alfasense.com%2Fp%3Fssp%3Dsp%26uid%3D%24%7BUSER_ID%7D
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintD1:98:D5:B7:91:FF:E3:AC:0C:2E:5F:9E:20:DE:E5:45:A8:C2:0E:B1
ValidityTue, 31 Oct 2023 03:36:00 GMT - Mon, 29 Jan 2024 03:35:59 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=185&euid=76165f9c-19c5-44f9-a939-d74d6f307d13&r=https%3A%2F%2Fcs.alfasense.com%2Fp%3Fssp%3Dsp%26uid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWVqSB0n/jbru+FxAnBO9uArXikJ9bP7KWs+DcG51+8Z; cSyncDp14v4=1701464093; cSyncDp14v6=1701464093; cSyncDp17v2=1701464093; cSyncDp45v5=1701464093; cSyncDp53v5=1701464093; cSyncDp62v2=1701464093; cSyncDp67v3=1701464093; cSyncDp68v2=1701464093; cSyncDp71v2=1701464093; cSyncDp80v2=1701464093; cSyncDp85v2=1701464093; cSyncDp95v4=1701464093; cSyncDp98v3=1701464093; cSyncDp104v2=1701464093; cSyncDp107v2=1701464093; cSyncDp110v3=1701464093; cSyncDp125v4=1701464093; cSyncDp126v2=1701464093; cSyncDp127v2=1701464093; cSyncDp129v2=1701464093; cSyncDp136v3=1701464093; cSyncDp146v2=1701464093; cSyncDp148v2=1701464093; cSyncDp149v3=1701464093; cSyncDp151v2=1701464093; cSyncDp251v1=1701464093; cSyncDp186v2=1701464093; cSyncDp217v2=1701464093; cSyncDp221v2=1701464093; cSyncDp235v2=1701464093; cSyncDp239v2=1701464093; cSyncDp243v2=1701464093; cSyncDp260v2=1701464093; cSyncDp244v2=1701464093; cSyncDp248v2=1701464093; cSyncDp261v1=1701464093
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Fri, 01 Dec 2023 20:54:57 GMT
content-type: text/html
content-length: 154
location: https://cs.alfasense.com/p?ssp=sp&uid=0100007F1D486A65EB36FE270271E1BB
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
sync.bumlam.com/?src=asense&uid=76165f9c-19c5-44f9-a939-d74d6f307d13
200 OK 43 B URL GET HTTP/1.1 sync.bumlam.com/?src=asense&uid=76165f9c-19c5-44f9-a939-d74d6f307d13
IP
ASN #44066 diva-e Datacenters GmbH
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject*.bumlam.com
Fingerprint08:E4:EB:78:69:AA:1C:77:24:F5:D4:0F:6C:52:FC:A6:D3:74:90:D0
ValidityMon, 16 Oct 2023 05:30:36 GMT - Sun, 14 Jan 2024 05:30:35 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /?src=asense&uid=76165f9c-19c5-44f9-a939-d74d6f307d13 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: suuid3=IiRlMTM4MzNjZS05MDhiLTExZWUtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 01 Dec 2023 20:54:57 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Set-Cookie: suuid3=IiRlMTM4MzNjZS05MDhiLTExZWUtODZlMC0wMDI1OTBjMDY0N2M*; Path=/; Expires=Thu, 26 Nov 2043 20:54:57 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
cs.agency2.ru/p?ssp=ai&skipme=76165f9c-19c5-44f9-a939-d74d6f307d13
301 Moved Permanently 0 B URL GET HTTP/1.1 cs.agency2.ru/p?ssp=ai&skipme=76165f9c-19c5-44f9-a939-d74d6f307d13
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subjectapi.agency2.ru
Fingerprint50:48:39:D7:EB:8F:8E:E7:36:A3:F3:08:25:93:84:7F:6B:36:24:95
ValidityMon, 16 Oct 2023 23:38:04 GMT - Sun, 14 Jan 2024 23:38:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=ai&skipme=76165f9c-19c5-44f9-a939-d74d6f307d13 HTTP/1.1
Host: cs.agency2.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: uuid=e6bd85b4-44d0-493f-8c6d-4ce8e9152d79
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Fri, 01 Dec 2023 20:54:57 GMT
Content-Length: 0
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://x01.aidata.io/0.gif?pid=7140034&id=e6bd85b4-44d0-493f-8c6d-4ce8e9152d79
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.107.44
exchange.buzzoola.com/cookiesync/redirect?skip2=76165f9c-19c5-44f9-a939-d74d6f307d13&redirect_url=https%3A%2F%2Fcs.alfasense.com%2Fp%3Fssp%3Dbz%26uid%3D%24%7BUUID%7D
301 Moved Permanently 113 B URL GET HTTP/2 exchange.buzzoola.com/cookiesync/redirect?skip2=76165f9c-19c5-44f9-a939-d74d6f307d13&redirect_url=https%3A%2F%2Fcs.alfasense.com%2Fp%3Fssp%3Dbz%26uid%3D%24%7BUUID%7D
IP
ASN #24940 Hetzner Online GmbH
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerSectigo Limited
Subject*.buzzoola.com
FingerprintE6:7F:94:98:CF:E4:CF:88:C7:8C:FC:16:A3:D7:D0:10:4E:EC:AB:F1
ValidityMon, 04 Sep 2023 00:00:00 GMT - Fri, 04 Oct 2024 23:59:59 GMT
File type HTML document, ASCII text
Hash f9e0530c177be02d27ab06a824e9e680
64e12443053f594823e7bb8b0179535ae48a55d1
e6789b48f4bbf479bb711c7f5e112a9552c7c0c71a77013a50ce008a0d67f82e
GET /cookiesync/redirect?skip2=76165f9c-19c5-44f9-a939-d74d6f307d13&redirect_url=https%3A%2F%2Fcs.alfasense.com%2Fp%3Fssp%3Dbz%26uid%3D%24%7BUUID%7D HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: uuid=9ec21319-5e24-4b88-6e86-87b40e4ff5bc; cookiesyncs=000000000000000000000000d93dab9edf0912baf9008f35866978f1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 01 Dec 2023 20:54:57 GMT
content-type: text/html; charset=utf-8
content-length: 113
location: https://cs.alfasense.com/p?ssp=bz&uid=9ec21319-5e24-4b88-6e86-87b40e4ff5bc
serverid: TODO
X-Firefox-Spdy: h2
sync.upravel.com/alfadart/sync?uid=76165f9c-19c5-44f9-a939-d74d6f307d13
302 Found 0 B URL GET HTTP/2 sync.upravel.com/alfadart/sync?uid=76165f9c-19c5-44f9-a939-d74d6f307d13
IP
ASN #24940 Hetzner Online GmbH
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.upravel.com
Fingerprint4C:ED:03:57:58:43:18:2C:CC:41:F3:3B:19:72:75:BD:29:C1:04:08
ValiditySat, 29 Apr 2023 07:48:21 GMT - Thu, 30 May 2024 07:48:20 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /alfadart/sync?uid=76165f9c-19c5-44f9-a939-d74d6f307d13 HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: session_tptc=1701464094871; user_id=8b57f7b8-ff6f-434c-b65e-0d51403ce371
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Fri, 01 Dec 2023 20:54:57 GMT
content-type: image/png
content-length: 0
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: user_id=8b57f7b8-ff6f-434c-b65e-0d51403ce371;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
user_id-legacy=8b57f7b8-ff6f-434c-b65e-0d51403ce371;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
location: https://cs.alfasense.com/p?ssp=up&id=8b57f7b8-ff6f-434c-b65e-0d51403ce371
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
const.uno/id.json?p=5
200 OK 13 B IP
ASN #12695 LLC Digital Network
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subjectconst.uno
FingerprintF3:55:FF:DF:CF:D2:5B:10:0C:D3:01:CB:10:2A:F0:23:D4:D3:B1:04
ValidityFri, 13 Oct 2023 08:17:54 GMT - Thu, 11 Jan 2024 08:17:53 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash f51f496a0658094e8eae3ee01c8c45ab
0f3ec02ab5185dfc13a4f1dc7ed01c6f400f39b6
d32acf592f7f63460ff06711e1a9d41fbf6327a03303ae840e83fa9ef278d8f1
GET /id.json?p=5 HTTP/1.1
Host: const.uno
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://hd.3lordserial.xyz
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 01 Dec 2023 20:54:57 GMT
Content-Type: application/json
Content-Length: 13
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://hd.3lordserial.xyz
a.adsource.tech/sync?id=76165f9c-19c5-44f9-a939-d74d6f307d13&ssp=Alfasense
204 No Content 0 B URL GET HTTP/2 a.adsource.tech/sync?id=76165f9c-19c5-44f9-a939-d74d6f307d13&ssp=Alfasense
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGoogle Trust Services LLC
Subjectadsource.tech
FingerprintA9:D3:6F:42:9D:C2:CC:8A:47:59:1B:20:7F:7D:94:AF:9D:37:C4:86
ValidityThu, 19 Oct 2023 23:09:18 GMT - Wed, 17 Jan 2024 23:09:17 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?id=76165f9c-19c5-44f9-a939-d74d6f307d13&ssp=Alfasense HTTP/1.1
Host: a.adsource.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Fri, 01 Dec 2023 20:54:57 GMT
content-type: text/plain
set-cookie: adpreudid=1; Expires=Sun, 31 Dec 2023 20:54:57 GMT; Domain=adsource.tech; SameSite=None; Secure; Path=/
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cOPRSBxgkgQaeCJve%2FxQpQT7qsmwuu%2B5gk2o9A6i0yoyo89SW4M4QoBSYjNDwlniOkfJEEpm94H9YkYiK%2FMyL%2BLCQ8Sqpef9gLiErUeCmGwpc1C18XYSY%2FYI4qSYZwCXJz4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82ee3a728c3356b9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cs.agency2.ru/p?ssp=al&uid=76165f9c-19c5-44f9-a939-d74d6f307d13
301 Moved Permanently 0 B URL GET HTTP/1.1 cs.agency2.ru/p?ssp=al&uid=76165f9c-19c5-44f9-a939-d74d6f307d13
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subjectapi.agency2.ru
Fingerprint50:48:39:D7:EB:8F:8E:E7:36:A3:F3:08:25:93:84:7F:6B:36:24:95
ValidityMon, 16 Oct 2023 23:38:04 GMT - Sun, 14 Jan 2024 23:38:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=al&uid=76165f9c-19c5-44f9-a939-d74d6f307d13 HTTP/1.1
Host: cs.agency2.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: uuid=e6bd85b4-44d0-493f-8c6d-4ce8e9152d79
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Fri, 01 Dec 2023 20:54:57 GMT
Content-Length: 0
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://cs.alfasense.com/p?ssp=a2&uid=e6bd85b4-44d0-493f-8c6d-4ce8e9152d79
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.107.44
s.uuidksinc.net/match/1215/?remote_uid=76165f9c-19c5-44f9-a939-d74d6f307d13
302 Found 0 B URL GET HTTP/2 s.uuidksinc.net/match/1215/?remote_uid=76165f9c-19c5-44f9-a939-d74d6f307d13
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subjectuuidksinc.net
Fingerprint24:9D:6D:A2:89:55:7D:CD:A6:BD:59:A3:21:F2:65:41:A8:9D:38:99
ValidityThu, 09 Nov 2023 23:20:21 GMT - Wed, 07 Feb 2024 23:20:20 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/1215/?remote_uid=76165f9c-19c5-44f9-a939-d74d6f307d13 HTTP/1.1
Host: s.uuidksinc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: jcsuuid=35MxOgkIKPcQzAWGlJYG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.23.2
date: Fri, 01 Dec 2023 20:54:57 GMT
content-length: 0
location: https://cs.alfasense.com/p?ssp=kd&uid=35MxOgkIKPcQzAWGlJYG
set-cookie: jcsuuid=35MxOgkIKPcQzAWGlJYG; expires=Sat, 30 Nov 2024 20:54:57 GMT; domain=uuidksinc.net; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
match.new-programmatic.com/userbind?src=alfasense&id=76165f9c-19c5-44f9-a939-d74d6f307d13
302 Found 0 B URL GET HTTP/1.1 match.new-programmatic.com/userbind?src=alfasense&id=76165f9c-19c5-44f9-a939-d74d6f307d13
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subjectad.ad-blast.ru
FingerprintF3:B7:15:BC:2F:A8:7D:5A:73:CB:BC:43:B8:4C:EA:11:17:2B:7A:34
ValiditySat, 07 Oct 2023 18:59:50 GMT - Fri, 05 Jan 2024 18:59:49 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userbind?src=alfasense&id=76165f9c-19c5-44f9-a939-d74d6f307d13 HTTP/1.1
Host: match.new-programmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.22.1
Date: Fri, 01 Dec 2023 20:54:57 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin
Location: https://cs.alfasense.com/p?ssp=tg&redir=0&id=
cs.alfasense.com/p?ssp=al&id=1b977199-607e-4479-8f7c-7ffe43e102a6
200 OK 35 B URL GET HTTP/1.1 cs.alfasense.com/p?ssp=al&id=1b977199-607e-4479-8f7c-7ffe43e102a6
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.com
Fingerprint92:58:B8:97:87:98:3A:5B:01:DA:24:13:D3:B2:D4:AF:F5:07:AE:9E
ValiditySat, 10 Dec 2022 23:58:10 GMT - Thu, 11 Jan 2024 23:58:09 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /p?ssp=al&id=1b977199-607e-4479-8f7c-7ffe43e102a6 HTTP/1.1
Host: cs.alfasense.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: uuid=76165f9c-19c5-44f9-a939-d74d6f307d13
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 01 Dec 2023 20:54:57 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.100.20
Accept-Ranges: bytes
ssp-rtb.sape.ru/prebid
204 No Content 0 B IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject*.sape.ru
FingerprintF9:61:5C:64:81:FD:57:C2:4A:BD:6B:12:D4:7E:02:5E:83:8E:3E:40
ValiditySun, 08 Oct 2023 01:41:50 GMT - Sat, 06 Jan 2024 01:41:49 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 955
Origin: https://hd.3lordserial.xyz
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: sspuid=CkIDGmVqSB58/wAcgjXtAgE3p9toolFP37V7HmgJRdulaXHU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: openresty
Date: Fri, 01 Dec 2023 20:54:57 GMT
Content-Type: text/html
Connection: keep-alive
Access-Control-Allow-Origin: https://hd.3lordserial.xyz
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST
X-YaSpanId: 25b0d052e2d705e0
X-YaRequestId: 0cf17afcbdc4477c8f25c5782aed3c47
X-YaTraceId: 74545605c4424e3f95d511e2f6823acb
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
cs.alfasense.com/p?ssp=bz&uid=9ec21319-5e24-4b88-6e86-87b40e4ff5bc
200 OK 35 B URL GET HTTP/1.1 cs.alfasense.com/p?ssp=bz&uid=9ec21319-5e24-4b88-6e86-87b40e4ff5bc
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.com
Fingerprint92:58:B8:97:87:98:3A:5B:01:DA:24:13:D3:B2:D4:AF:F5:07:AE:9E
ValiditySat, 10 Dec 2022 23:58:10 GMT - Thu, 11 Jan 2024 23:58:09 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /p?ssp=bz&uid=9ec21319-5e24-4b88-6e86-87b40e4ff5bc HTTP/1.1
Host: cs.alfasense.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: uuid=76165f9c-19c5-44f9-a939-d74d6f307d13
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 01 Dec 2023 20:54:57 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.100.20
Accept-Ranges: bytes
ssp.hybrid.ai/auction/prebid
204 No Content 0 B URL POST HTTP/2 ssp.hybrid.ai/auction/prebid
IP
ASN #58272 LeaderTelecom B.V.
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerSectigo Limited
Subject*.hybrid.ai
Fingerprint40:F9:88:C5:EF:2B:26:9C:61:DC:CC:ED:B1:67:03:F4:E2:CC:B7:C8
ValidityThu, 14 Sep 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /auction/prebid HTTP/1.1
Host: ssp.hybrid.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://hd.3lordserial.xyz/
Origin: https://hd.3lordserial.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Fri, 01 Dec 2023 20:54:57 GMT
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: POST
access-control-allow-origin: https://hd.3lordserial.xyz
vary: Origin
p3p: CP='NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC'
server: Hybrid Web Server
X-Firefox-Spdy: h2
match.qtarget.tech/userbind?src=alfasense&id=76165f9c-19c5-44f9-a939-d74d6f307d13
204 No Content 0 B URL GET HTTP/1.1 match.qtarget.tech/userbind?src=alfasense&id=76165f9c-19c5-44f9-a939-d74d6f307d13
IP
ASN #12695 LLC Digital Network
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subjectdsp.qtarget.tech
Fingerprint29:6F:E0:4A:F8:5E:3D:84:DF:96:EB:7F:EF:EC:D4:F8:16:19:3A:14
ValiditySun, 12 Nov 2023 07:12:31 GMT - Sat, 10 Feb 2024 07:12:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userbind?src=alfasense&id=76165f9c-19c5-44f9-a939-d74d6f307d13 HTTP/1.1
Host: match.qtarget.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.22.1
Date: Sat, 02 Dec 2023 01:57:32 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin
ssp.hybrid.ai/auction/prebid
204 No Content 0 B URL POST HTTP/2 ssp.hybrid.ai/auction/prebid
IP
ASN #58272 LeaderTelecom B.V.
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerSectigo Limited
Subject*.hybrid.ai
Fingerprint40:F9:88:C5:EF:2B:26:9C:61:DC:CC:ED:B1:67:03:F4:E2:CC:B7:C8
ValidityThu, 14 Sep 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /auction/prebid HTTP/1.1
Host: ssp.hybrid.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 245
Origin: https://hd.3lordserial.xyz
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: vid=86236e1e32982c274142
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Fri, 01 Dec 2023 20:54:57 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://hd.3lordserial.xyz
vary: Origin
p3p: CP='NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC'
server: Hybrid Web Server
X-Firefox-Spdy: h2
cs.alfasense.com/p?ssp=vh&id=2ffec98b-851b-4a0e-8702-67f9b8c52227
200 OK 35 B URL GET HTTP/1.1 cs.alfasense.com/p?ssp=vh&id=2ffec98b-851b-4a0e-8702-67f9b8c52227
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.com
Fingerprint92:58:B8:97:87:98:3A:5B:01:DA:24:13:D3:B2:D4:AF:F5:07:AE:9E
ValiditySat, 10 Dec 2022 23:58:10 GMT - Thu, 11 Jan 2024 23:58:09 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /p?ssp=vh&id=2ffec98b-851b-4a0e-8702-67f9b8c52227 HTTP/1.1
Host: cs.alfasense.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: uuid=76165f9c-19c5-44f9-a939-d74d6f307d13
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 01 Dec 2023 20:54:57 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.100.20
Accept-Ranges: bytes
a.utraff.com/sync?ssp=716&skipme=76165f9c-19c5-44f9-a939-d74d6f307d13
302 Found 35 B URL GET HTTP/3 a.utraff.com/sync?ssp=716&skipme=76165f9c-19c5-44f9-a939-d74d6f307d13
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGoogle Trust Services LLC
Subjectutraff.com
Fingerprint65:F0:CB:A7:9C:1E:18:8C:D9:DE:5B:4C:46:9E:79:3E:78:F1:B0:CD
ValidityThu, 12 Oct 2023 03:40:45 GMT - Wed, 10 Jan 2024 03:40:44 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /sync?ssp=716&skipme=76165f9c-19c5-44f9-a939-d74d6f307d13 HTTP/1.1
Host: a.utraff.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: preutid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Fri, 01 Dec 2023 20:54:57 GMT
content-type: text/plain
location: https://cs.alfasense.com/p?ssp=um&id=987241e1-373a-40cf-b173-7f7696f4e2de
set-cookie: preutid=1; Max-Age=0; Domain=.itraff.net; SameSite=None; Secure; Path=/
preutid=1; Max-Age=0; Domain=.utraff.com; SameSite=None; Secure; Path=/
utid=cR-oJ26hV31iVIbDlm1EIRh68hOuWKLnh1W_8-uzEV39-Bd1EyzXIrUhZU0Sj37Fsjhp9fsL2Ilk9OyUrAiuIA; Expires=Mon, 28 Nov 2033 23:54:57 GMT; Domain=.itraff.net; SameSite=None; Secure; Path=/
utid=cR-oJ26hV31iVIbDlm1EIRh68hOuWKLnh1W_8-uzEV39-Bd1EyzXIrUhZU0Sj37Fsjhp9fsL2Ilk9OyUrAiuIA; Expires=Mon, 28 Nov 2033 23:54:57 GMT; Domain=.utraff.com; SameSite=None; Secure; Path=/
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Vb5hMEFuht1uXkA6h%2Fe1uZZiKrN9yv%2BfAN%2FVo8AsoSIPNU0JJfuObIep8Y7WnzSjFvQ7RFvpTvgGdsl58q5N6vXZJ0EdJOLACfYh8QtweTAu2j6j4hiHVtt6qaeY%2FTQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82ee3a725dc47772-LHR
alt-svc: h3=":443"; ma=86400
cs.alfasense.com/p?ssp=sp&uid=0100007F1D486A65EB36FE270271E1BB
200 OK 35 B URL GET HTTP/1.1 cs.alfasense.com/p?ssp=sp&uid=0100007F1D486A65EB36FE270271E1BB
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.com
Fingerprint92:58:B8:97:87:98:3A:5B:01:DA:24:13:D3:B2:D4:AF:F5:07:AE:9E
ValiditySat, 10 Dec 2022 23:58:10 GMT - Thu, 11 Jan 2024 23:58:09 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /p?ssp=sp&uid=0100007F1D486A65EB36FE270271E1BB HTTP/1.1
Host: cs.alfasense.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: uuid=76165f9c-19c5-44f9-a939-d74d6f307d13
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 01 Dec 2023 20:54:58 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.100.20
Accept-Ranges: bytes
sync.dmp.otm-r.com/match/alfasensor?id=76165f9c-19c5-44f9-a939-d74d6f307d13
204 No Content 0 B URL GET HTTP/2 sync.dmp.otm-r.com/match/alfasensor?id=76165f9c-19c5-44f9-a939-d74d6f307d13
IP
ASN #24940 Hetzner Online GmbH
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.dmp.otm-r.com
FingerprintC6:A2:9D:82:0D:D1:C1:2D:A4:ED:7F:05:13:52:5B:94:6B:10:58:D6
ValidityMon, 19 Jun 2023 10:50:51 GMT - Sat, 20 Jul 2024 10:50:50 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/alfasensor?id=76165f9c-19c5-44f9-a939-d74d6f307d13 HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: mpid=NjU2YTQ4MWYwNDc1NzJmNg==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: nginx/1.17.2
date: Fri, 01 Dec 2023 20:54:58 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
pbs.alfasense.com/yandex/auction
200 OK 11 B URL POST HTTP/1.1 pbs.alfasense.com/yandex/auction
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.com
Fingerprint92:58:B8:97:87:98:3A:5B:01:DA:24:13:D3:B2:D4:AF:F5:07:AE:9E
ValiditySat, 10 Dec 2022 23:58:10 GMT - Thu, 11 Jan 2024 23:58:09 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 9cc989d2e211083e0a170316914f1d06
392cd18d051f72b887529ac2998da54749f1338f
846949c5a40e3ffbb702473e54dfac0646541aa624a844369b6e24e51ddaf96b
POST /yandex/auction HTTP/1.1
Host: pbs.alfasense.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 274
Origin: https://hd.3lordserial.xyz
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: uuid=76165f9c-19c5-44f9-a939-d74d6f307d13
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 01 Dec 2023 20:54:58 GMT
Content-Type: application/json
Content-Length: 11
Connection: keep-alive
x-dsp-24__status: 204
x-dsp-22__status: 204
expires: 0
x-geo-cityid: 4000000055
cache-control: no-cache, no-store, must-revalidate
uuid: 7701f509-9448-47e5-bedf-f3e086a786ad
pragma: no-cache
x-dsp-4__status: 204
x-dsp-8__status: 204
access-control-max-age: 0
Access-Control-Allow-Origin: https://hd.3lordserial.xyz
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.119.60
Accept-Ranges: bytes
cs.alfasense.com/p?ssp=up&id=8b57f7b8-ff6f-434c-b65e-0d51403ce371
200 OK 35 B URL GET HTTP/1.1 cs.alfasense.com/p?ssp=up&id=8b57f7b8-ff6f-434c-b65e-0d51403ce371
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.com
Fingerprint92:58:B8:97:87:98:3A:5B:01:DA:24:13:D3:B2:D4:AF:F5:07:AE:9E
ValiditySat, 10 Dec 2022 23:58:10 GMT - Thu, 11 Jan 2024 23:58:09 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /p?ssp=up&id=8b57f7b8-ff6f-434c-b65e-0d51403ce371 HTTP/1.1
Host: cs.alfasense.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: uuid=76165f9c-19c5-44f9-a939-d74d6f307d13
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 01 Dec 2023 20:54:58 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.100.20
Accept-Ranges: bytes
cs.alfasense.com/p?ssp=tg&redir=0&id=
200 OK 35 B URL GET HTTP/1.1 cs.alfasense.com/p?ssp=tg&redir=0&id=
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.com
Fingerprint92:58:B8:97:87:98:3A:5B:01:DA:24:13:D3:B2:D4:AF:F5:07:AE:9E
ValiditySat, 10 Dec 2022 23:58:10 GMT - Thu, 11 Jan 2024 23:58:09 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /p?ssp=tg&redir=0&id= HTTP/1.1
Host: cs.alfasense.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: uuid=76165f9c-19c5-44f9-a939-d74d6f307d13
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 01 Dec 2023 20:54:58 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.100.20
Accept-Ranges: bytes
cs.alfasense.com/p?ssp=a2&uid=e6bd85b4-44d0-493f-8c6d-4ce8e9152d79
200 OK 35 B URL GET HTTP/1.1 cs.alfasense.com/p?ssp=a2&uid=e6bd85b4-44d0-493f-8c6d-4ce8e9152d79
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.com
Fingerprint92:58:B8:97:87:98:3A:5B:01:DA:24:13:D3:B2:D4:AF:F5:07:AE:9E
ValiditySat, 10 Dec 2022 23:58:10 GMT - Thu, 11 Jan 2024 23:58:09 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /p?ssp=a2&uid=e6bd85b4-44d0-493f-8c6d-4ce8e9152d79 HTTP/1.1
Host: cs.alfasense.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: uuid=76165f9c-19c5-44f9-a939-d74d6f307d13
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 01 Dec 2023 20:54:58 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.100.20
Accept-Ranges: bytes
ssp.otm-r.com/adjson?tz=0&w=970&h=250&domain=&l=https%3A%2F%2Fhd.3lordserial.xyz%2F146-kasl-sv-13.html&s=38014&cur=RUB&bidid=8b8a24d87cb55e&transactionid=174fbc57-75eb-41e9-8828-401afda20858&auctionid=0b739fa1-abe8-42a0-9492-065d4090cb56&bidfloor=0
200 OK 2 B URL GET HTTP/2 ssp.otm-r.com/adjson?tz=0&w=970&h=250&domain=&l=https%3A%2F%2Fhd.3lordserial.xyz%2F146-kasl-sv-13.html&s=38014&cur=RUB&bidid=8b8a24d87cb55e&transactionid=174fbc57-75eb-41e9-8828-401afda20858&auctionid=0b739fa1-abe8-42a0-9492-065d4090cb56&bidfloor=0
IP
ASN #24940 Hetzner Online GmbH
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.otm-r.com
FingerprintDE:D2:E7:8E:11:AC:D8:80:39:F5:5D:C2:86:9D:33:3F:95:71:FA:58
ValidityMon, 19 Jun 2023 10:49:55 GMT - Sat, 20 Jul 2024 10:49:54 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
GET /adjson?tz=0&w=970&h=250&domain=&l=https%3A%2F%2Fhd.3lordserial.xyz%2F146-kasl-sv-13.html&s=38014&cur=RUB&bidid=8b8a24d87cb55e&transactionid=174fbc57-75eb-41e9-8828-401afda20858&auctionid=0b739fa1-abe8-42a0-9492-065d4090cb56&bidfloor=0 HTTP/1.1
Host: ssp.otm-r.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://hd.3lordserial.xyz
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: mpid=NjU2YTQ4MWYwNDc1NzJmNg==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.17.10
date: Fri, 01 Dec 2023 20:54:58 GMT
content-type: application/javascript
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://hd.3lordserial.xyz
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: mpid=NjU2YTQ4MWYwNDc1NzJmNg==; Path=/; Domain=otm-r.com; Max-Age=31536000; Secure; SameSite=None
vary: Origin
X-Firefox-Spdy: h2
cs.alfasense.com/p?ssp=um&id=987241e1-373a-40cf-b173-7f7696f4e2de
200 OK 35 B URL GET HTTP/1.1 cs.alfasense.com/p?ssp=um&id=987241e1-373a-40cf-b173-7f7696f4e2de
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.com
Fingerprint92:58:B8:97:87:98:3A:5B:01:DA:24:13:D3:B2:D4:AF:F5:07:AE:9E
ValiditySat, 10 Dec 2022 23:58:10 GMT - Thu, 11 Jan 2024 23:58:09 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /p?ssp=um&id=987241e1-373a-40cf-b173-7f7696f4e2de HTTP/1.1
Host: cs.alfasense.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: uuid=76165f9c-19c5-44f9-a939-d74d6f307d13
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 01 Dec 2023 20:54:58 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.100.20
Accept-Ranges: bytes
v.alfasrv.com/stats/2x2.png?s=104707&a=fallback&k1=1&k2=1&e=i&t=p&c=0
200 OK 95 B URL GET HTTP/1.1 v.alfasrv.com/stats/2x2.png?s=104707&a=fallback&k1=1&k2=1&e=i&t=p&c=0
IP
ASN #200350 Yandex.Cloud LLC
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasrv.com
Fingerprint4B:8A:22:65:23:10:74:25:5D:40:3B:78:20:8D:F8:82:A4:50:44:90
ValidityTue, 10 Oct 2023 09:20:49 GMT - Sun, 10 Nov 2024 09:20:48 GMT
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 9591c410148e6883727c5339fd1c02cd
3442a95fe890ce4769b36b2ecc611b801a54cfb5
cafbd551d674da240212f6c44988757a728b9dc8cbc2a6c8dcf53c0d9159c323
GET /stats/2x2.png?s=104707&a=fallback&k1=1&k2=1&e=i&t=p&c=0 HTTP/1.1
Host: v.alfasrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Fri, 01 Dec 2023 20:54:58 GMT
Content-Type: image/png
Content-Length: 95
Connection: keep-alive
Last-Modified: Friday, 01-Dec-2023 20:54:58 GMT
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
Accept-Ranges: bytes
s.alfasrv.com/events/1x1.png?s=104707&a=fallback&k1=1&k2=1&e=i&t=p&c=0
200 OK 95 B URL GET HTTP/2 s.alfasrv.com/events/1x1.png?s=104707&a=fallback&k1=1&k2=1&e=i&t=p&c=0
IP
ASN #200350 Yandex.Cloud LLC
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasrv.com
Fingerprint4B:8A:22:65:23:10:74:25:5D:40:3B:78:20:8D:F8:82:A4:50:44:90
ValidityTue, 10 Oct 2023 09:20:49 GMT - Sun, 10 Nov 2024 09:20:48 GMT
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 9591c410148e6883727c5339fd1c02cd
3442a95fe890ce4769b36b2ecc611b801a54cfb5
cafbd551d674da240212f6c44988757a728b9dc8cbc2a6c8dcf53c0d9159c323
GET /events/1x1.png?s=104707&a=fallback&k1=1&k2=1&e=i&t=p&c=0 HTTP/1.1
Host: s.alfasrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.24.0
date: Fri, 01 Dec 2023 20:54:58 GMT
content-type: image/png
content-length: 95
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,X-Original-Referer
access-control-allow-credentials: true
cache-control: no-cache,no-store
expires: Tue, 01 Jan 1980 1:00:00 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
ads.alfasense.net/adserver/www/delivery/asyncjs.php
200 OK 4.5 kB URL GET HTTP/2 ads.alfasense.net/adserver/www/delivery/asyncjs.php
IP
ASN #52000 Innovation IT Solutions LTD
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.net
Fingerprint15:61:D7:BD:E9:E1:37:36:5F:FD:47:F7:69:F7:5E:53:CD:95:A9:59
ValidityWed, 22 Nov 2023 16:23:03 GMT - Mon, 23 Dec 2024 16:23:02 GMT
Hash af3fd6ce3d0ba2a259bfea081b5061ac
d6a606f0259c131ceb69f21d57de7b4100575bf8
5ebf91f1c831cb62d77394fbbd238067a10a97763a7b8d7096ee4ca1405078b6
GET /adserver/www/delivery/asyncjs.php HTTP/1.1
Host: ads.alfasense.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 20:54:58 GMT
content-type: text/javascript;charset=UTF-8
etag: 1079f85a6f7f7d83640b17a26d3394d5
expire: Fri, 01 Dec 2023 21:54:58 GMT
cache-control: private, max-age=3600
p3p: CP="CUR ADM OUR NOR STA NID"
content-security-policy: frame-ancestors 'self';frame-src 'self';
cross-origin-embedder-policy: unsafe-none
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
permissions-policy: geolocation=(self), payment=(self)
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block;
set-cookie: SRVGROUP=common; path=/; Secure; HttpOnly
X-Firefox-Spdy: h2
www.acint.net/match?dp=129&euid=o17xs6vbph
200 OK 43 B URL GET HTTP/2 www.acint.net/match?dp=129&euid=o17xs6vbph
IP
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintD1:98:D5:B7:91:FF:E3:AC:0C:2E:5F:9E:20:DE:E5:45:A8:C2:0E:B1
ValidityTue, 31 Oct 2023 03:36:00 GMT - Mon, 29 Jan 2024 03:35:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=129&euid=o17xs6vbph HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWVqSB0n/jbru+FxAnBO9uArXikJ9bP7KWs+DcG51+8Z; cSyncDp14v4=1701464093; cSyncDp14v6=1701464093; cSyncDp17v2=1701464093; cSyncDp45v5=1701464093; cSyncDp53v5=1701464093; cSyncDp62v2=1701464093; cSyncDp67v3=1701464093; cSyncDp68v2=1701464093; cSyncDp71v2=1701464093; cSyncDp80v2=1701464093; cSyncDp85v2=1701464093; cSyncDp95v4=1701464093; cSyncDp98v3=1701464093; cSyncDp104v2=1701464093; cSyncDp107v2=1701464093; cSyncDp110v3=1701464093; cSyncDp125v4=1701464093; cSyncDp126v2=1701464093; cSyncDp127v2=1701464093; cSyncDp129v2=1701464093; cSyncDp136v3=1701464093; cSyncDp146v2=1701464093; cSyncDp148v2=1701464093; cSyncDp149v3=1701464093; cSyncDp151v2=1701464093; cSyncDp251v1=1701464093; cSyncDp186v2=1701464093; cSyncDp217v2=1701464093; cSyncDp221v2=1701464093; cSyncDp235v2=1701464093; cSyncDp239v2=1701464093; cSyncDp243v2=1701464093; cSyncDp260v2=1701464093; cSyncDp244v2=1701464093; cSyncDp248v2=1701464093; cSyncDp261v1=1701464093
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Fri, 01 Dec 2023 20:54:59 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
ads.alfasense.net/adserver/www/images/51832be0e461b298bd87a32e65215bee.jpg
200 OK 26 kB URL GET HTTP/2 ads.alfasense.net/adserver/www/images/51832be0e461b298bd87a32e65215bee.jpg
IP
ASN #52000 Innovation IT Solutions LTD
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.net
Fingerprint15:61:D7:BD:E9:E1:37:36:5F:FD:47:F7:69:F7:5E:53:CD:95:A9:59
ValidityWed, 22 Nov 2023 16:23:03 GMT - Mon, 23 Dec 2024 16:23:02 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 970x250, components 3\012- data
Hash 51832be0e461b298bd87a32e65215bee
f94e6e1bd4c7ccf06f09255011e4c94d8a0ed03f
ed94f56fea851ac27164ed90dd404a9c3ad04530b6139b1c46bc8240b4321e56
GET /adserver/www/images/51832be0e461b298bd87a32e65215bee.jpg HTTP/1.1
Host: ads.alfasense.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: OAID=01000111010001000101000001010010
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 20:54:58 GMT
content-type: image/jpeg
content-length: 26410
last-modified: Tue, 18 Jul 2023 14:36:01 GMT
etag: "64b6a351-672a"
content-security-policy: frame-ancestors 'self';frame-src 'self';
cross-origin-embedder-policy: unsafe-none
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
permissions-policy: geolocation=(self), payment=(self)
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block;
accept-ranges: bytes
set-cookie: SRVGROUP=common; path=/; Secure; HttpOnly
X-Firefox-Spdy: h2
api.strvid.ws/js/listen-player.js
200 OK 2.1 kB URL GET HTTP/1.1 api.strvid.ws/js/listen-player.js
IP
Requested by https://api.strvid.ws/embed/movie/455
Certificate IssuerSectigo Limited
Subjectapi.strvid.ws
Fingerprint03:16:4D:D3:51:3C:A4:93:A0:13:B4:36:B9:25:19:E7:D3:48:65:81
ValidityThu, 02 Mar 2023 00:00:00 GMT - Sat, 02 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (2282), with no line terminators
Hash dd228964deb72e0f6abf61ae20197b2f
4ef0421f17d9e38a3a847223821b7395a7f2578f
d55dd4224d39f78271f4c48d938582cab053992f4aa2986e1d032385fcb53ca2
GET /js/listen-player.js HTTP/1.1
Host: api.strvid.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://api.strvid.ws/embed/movie/455
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 01 Dec 2023 20:54:53 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: no-cache, no-store, must-revalidate
Expires: 1970-01-01 00:00:00
Last-Modified: Tue, 13 Sep 2022 16:24:06 GMT
Pragma: no-cache
Vary: *
Content-Encoding: gzip
hd.3lordserial.xyz/templates/lordfun/images/bg.jpg
200 OK 195 kB URL GET HTTP/3 hd.3lordserial.xyz/templates/lordfun/images/bg.jpg
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject3lordserial.xyz
Fingerprint55:F3:EC:F8:C5:A9:65:3A:AD:8F:B2:1A:59:6B:1A:41:7E:A0:65:DF
ValidityWed, 29 Nov 2023 21:49:20 GMT - Tue, 27 Feb 2024 21:49:19 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1400x488, components 3\012- data
Size 195 kB (195125 bytes)
Hash 2c6615789c683ee6f6018c445d2f002d
316e5bc3a50c2c8b302c7f9bce3420aa802c14ac
25cd2a918ff78890040a2c632b67914de4389fa33bf573b40f224293827b8259
GET /templates/lordfun/images/bg.jpg HTTP/1.1
Host: hd.3lordserial.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/templates/lordfun/style/full.css?v=2.6
Cookie: PHPSESSID=c0506767ddef664786c878030c4f8c6b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Dec 2023 20:54:52 GMT
content-type: image/jpeg
last-modified: Tue, 06 Sep 2022 06:42:38 GMT
vary: Accept-Encoding
etag: W/"6316ebde-2fa35"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4204
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b%2F7GlJwurAwm5tWTLr%2FE7%2FyWJsOvFK%2F%2FyjDV2JYlYiDm3GuHO4CcsyZlkeQG90%2FamBA61jN%2FQO3hcyNDshYliZYXrhBXLQu9QmaHzA6xG5iwjpZ%2BDyW%2BxfYrFlto%2FvyYB9tsVrc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82ee3a52ef1f56a8-OSL
alt-svc: h3=":443"; ma=86400
hd.3lordserial.xyz/engine/modules/antibot/antibot.php
200 OK 4.0 kB URL GET HTTP/3 hd.3lordserial.xyz/engine/modules/antibot/antibot.php
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject3lordserial.xyz
Fingerprint55:F3:EC:F8:C5:A9:65:3A:AD:8F:B2:1A:59:6B:1A:41:7E:A0:65:DF
ValidityWed, 29 Nov 2023 21:49:20 GMT - Tue, 27 Feb 2024 21:49:19 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 160x80, components 3\012- data
Hash 47274914fea8e08070184c53e4355ef8
d5742c7016847d01dbc3c043d3078135f828f288
dd425496d89338f8990487a8192f5a2cf8e8ee91501738da8876a99a672c8424
GET /engine/modules/antibot/antibot.php HTTP/1.1
Host: hd.3lordserial.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/146-kasl-sv-13.html
Cookie: PHPSESSID=c0506767ddef664786c878030c4f8c6b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Dec 2023 20:54:52 GMT
content-type: image/jpeg
vary: Accept-Encoding
x-powered-by: PHP/7.4.33
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rLg%2BKK44DMiNeJlPpl1UySJdtJZSAzAJo2mKiWziIH3cQCGH4Ixbc8DNMBYHHtwCVh4PBpDWsMwMRmKLcfvegNYY7POo9iD6fWZvVmBFwAy%2FSSavPVqM%2BPbSYXsm%2BSUuQ2Uy4lU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82ee3a521e7756a8-OSL
alt-svc: h3=":443"; ma=86400
code.moviead55.ru/go/bmap?v=647a534f9f5fb9ced25ee7db57ef9c72&sub_id=ap&fmt_id=4&pl_key=banner&testad=no&r=https%3A%2F%2Fhd.3lordserial.xyz%2F146-kasl-sv-13.html
200 OK 162 kB URL GET HTTP/2 code.moviead55.ru/go/bmap?v=647a534f9f5fb9ced25ee7db57ef9c72&sub_id=ap&fmt_id=4&pl_key=banner&testad=no&r=https%3A%2F%2Fhd.3lordserial.xyz%2F146-kasl-sv-13.html
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 162 kB (161508 bytes)
Hash 60ece98558c6ab4397737ba0d90293d7
931c41f9f9d479a66f1dbe61e2d418a8b3353f42
de318026b2f1a4c51b8d5e2cc2224c1ab0d9072a014257b3cb3cb32ed55ede35
GET /go/bmap?v=647a534f9f5fb9ced25ee7db57ef9c72&sub_id=ap&fmt_id=4&pl_key=banner&testad=no&r=https%3A%2F%2Fhd.3lordserial.xyz%2F146-kasl-sv-13.html HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 20:54:52 GMT
content-type: text/javascript;charset=UTF-8
vary: Accept-Encoding
x-movieads-udata: cache,parsed,8415
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
api.strvid.ws/cdn.js
200 OK 14 kB IP
Requested by https://api.strvid.ws/embed/movie/455
Certificate IssuerSectigo Limited
Subjectapi.strvid.ws
Fingerprint03:16:4D:D3:51:3C:A4:93:A0:13:B4:36:B9:25:19:E7:D3:48:65:81
ValidityThu, 02 Mar 2023 00:00:00 GMT - Sat, 02 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (14026), with no line terminators
Hash a81f8cb9127ebc541cfe5d8fa444dadb
be16ea0d77bd967771b6668970b9f66bb45daa21
71a2a5087e0df99887785f7890f0320446e336aa298211b5cf6ee5a151ef5091
GET /cdn.js HTTP/1.1
Host: api.strvid.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://api.strvid.ws/embed/movie/455
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 01 Dec 2023 20:54:53 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=3600
Last-Modified: Tue, 16 May 2023 12:42:04 GMT
Content-Encoding: gzip
vak345.com/cs/202312012354.js?v=647a534f9f5fb9ced25ee7db57ef9c72&_t=1701464097568.568
200 OK 63 kB URL GET HTTP/3 vak345.com/cs/202312012354.js?v=647a534f9f5fb9ced25ee7db57ef9c72&_t=1701464097568.568
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF4:50:2C:D7:5C:84:E6:10:5D:32:80:62:FC:FE:E8:A0:40:4B:99:C4
ValidityFri, 10 Mar 2023 00:00:00 GMT - Sat, 09 Mar 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cs/202312012354.js?v=647a534f9f5fb9ced25ee7db57ef9c72&_t=1701464097568.568 HTTP/1.1
Host: vak345.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Dec 2023 20:54:52 GMT
content-type: application/javascript;charset=UTF-8
vary: Accept-Encoding
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
x-movieads-udata: cache
x-yac-source: Yac
x-movieads-setup: combo
x-movieads-country: NO
cf-cache-status: BYPASS
set-cookie: sky_uuid=cd7d3bf6-47eb-4660-9e3e-e46e30bd98e3; expires=Sat, 30-Nov-2024 20:54:52 GMT; Max-Age=31536000; path=/; SameSite=None;Secure
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UmLQHx0VKuzX7lfMzRdRixq0N1dm4YMIy0LTtd01BsSRccBVUKpXb9QAx3CK0uVzIRDvE01JbdGPzDgk3TUbo7X%2BieBxOtEPW2YOtLQeFz1uK683DtaZRKFxF6Jm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82ee3a537ec4712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
s.myangular.life/ws?cdn
101 Switching Protocols 0 B IP
ASN #24940 Hetzner Online GmbH
Requested by https://api.strvid.ws/embed/movie/455
Certificate IssuerSectigo Limited
Subjects.myangular.life
Fingerprint3A:21:0F:72:24:43:49:14:06:28:C6:D0:A6:10:6B:D7:B2:EA:5A:66
ValidityTue, 04 Apr 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ws?cdn HTTP/1.1
Host: s.myangular.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://api.strvid.ws
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: gAK2lKKrkYYsTTz7YifqKQ==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Fri, 01 Dec 2023 20:54:53 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: tIrwdE+qj23Wa1hJaqKf58sj1B0=
lordserialx.xyz/146-kasl-81.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html
302 Found 58 kB URL User Request GET HTTP/2 lordserialx.xyz/146-kasl-81.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html
IP
Certificate IssuerLet's Encrypt
Subjectlordserialx.xyz
FingerprintAB:4D:22:F6:A1:E7:8B:F1:F7:83:18:7C:D4:11:CE:43:E7:EF:46:20
ValidityTue, 24 Oct 2023 10:43:43 GMT - Mon, 22 Jan 2024 10:43:42 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /146-kasl-81.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html HTTP/1.1
Host: lordserialx.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 01 Dec 2023 20:54:51 GMT
content-type: text/html; charset=UTF-8
location: https://hd.3lordserial.xyz/146-kasl-81.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=d0db07d0d4faaad7d6ce49b579b1187a; path=/; secure; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PmYK8zp5w3FJfAvUjXYiLMxsbBqSS8JCFe%2FnVypkze8%2FPRKO8nm%2FhO2BV%2FV%2FdaFmLUNnQjEMtX5%2FihvFoxCJOB6%2Bbu6zG11sK6P2qrmo2bSvDL940FCLElGdDT2CTILn7QQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82ee3a4c5b46b518-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
sync.opendsp.ru/match/Movieads?id=${UUID}
200 OK 43 B URL GET HTTP/2 sync.opendsp.ru/match/Movieads?id=${UUID}
IP
ASN #50340 OOO Network of data-centers Selectel
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.opendsp.ru
Fingerprint8E:F7:66:17:C0:94:EA:58:01:39:E4:C7:14:85:F8:A2:C2:22:F3:BA
ValidityFri, 14 Jul 2023 08:08:59 GMT - Wed, 14 Aug 2024 08:08:58 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/Movieads?id=${UUID} HTTP/1.1
Host: sync.opendsp.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 20:54:53 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
hd.3lordserial.xyz/templates/lordfun/images/ft-logo2.png
200 OK 1.7 kB URL GET HTTP/3 hd.3lordserial.xyz/templates/lordfun/images/ft-logo2.png
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject3lordserial.xyz
Fingerprint55:F3:EC:F8:C5:A9:65:3A:AD:8F:B2:1A:59:6B:1A:41:7E:A0:65:DF
ValidityWed, 29 Nov 2023 21:49:20 GMT - Tue, 27 Feb 2024 21:49:19 GMT
File type PNG image data, 180 x 70, 8-bit colormap, non-interlaced\012- data
Hash ef077755be2b48ef80cf8347a6d34405
60cac22bab1548eec86ee33aca2f10971128f204
4cc1ad38721d2a465b02ad8c9ad234ce2a9843dd8c56f79ceaece02b45df5e03
GET /templates/lordfun/images/ft-logo2.png HTTP/1.1
Host: hd.3lordserial.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/templates/lordfun/style/full.css?v=2.6
Cookie: PHPSESSID=c0506767ddef664786c878030c4f8c6b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Dec 2023 20:54:52 GMT
content-type: image/png
last-modified: Fri, 07 Jul 2023 00:28:51 GMT
vary: Accept-Encoding
etag: W/"64a75c43-6cb"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4202
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wd7ntQ4Q9ifCEZt9%2FIJp4%2Fw2W%2BFEdf0B4H%2FLDNP7OWh8MUYpX8glsqRnduQYW6yUnXtMyMXELfx1YIB9f6XN2XtPtl%2B3vXlhaPbSsW3HXySvQMlyEpSk6HG1VwpPAgdrB1NlsqU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82ee3a533f8756a8-OSL
alt-svc: h3=":443"; ma=86400
s.myangular.life/player?cat=support&hit=u8&description=yes
200 OK 0 B URL GET HTTP/1.1 s.myangular.life/player?cat=support&hit=u8&description=yes
IP
ASN #24940 Hetzner Online GmbH
Requested by https://api.strvid.ws/embed/movie/455
Certificate IssuerSectigo Limited
Subjects.myangular.life
Fingerprint3A:21:0F:72:24:43:49:14:06:28:C6:D0:A6:10:6B:D7:B2:EA:5A:66
ValidityTue, 04 Apr 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /player?cat=support&hit=u8&description=yes HTTP/1.1
Host: s.myangular.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://api.strvid.ws/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 01 Dec 2023 20:54:53 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
static.moviead55.ru/mp_dist/mstream2.js?v5646834026
200 OK 170 kB URL GET HTTP/2 static.moviead55.ru/mp_dist/mstream2.js?v5646834026
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGoogle Trust Services LLC
Subjectmoviead55.ru
Fingerprint97:2B:AC:BC:2D:E4:7C:FC:61:B0:3F:37:04:D9:9A:96:E1:03:56:22
ValidityFri, 17 Nov 2023 16:01:17 GMT - Thu, 15 Feb 2024 16:01:16 GMT
Size 170 kB (169672 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /mp_dist/mstream2.js?v5646834026 HTTP/1.1
Host: static.moviead55.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 20:54:53 GMT
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 19:14:25 GMT
vary: Accept-Encoding
etag: W/"65678d91-296c8"
x-movieads-country: LT
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-max-age: 1728000
cache-control: max-age=7200
cf-cache-status: HIT
age: 6002
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9tbyykk5D23A2xcAkYYIKN3zyEpJ7PQSny3NE6%2FM6Hr4xlBLVs5NvySjZ1m0r33ug2kfAAQE8TLxVrs5uGiVDxoUR9GzaM6TdM6VoOgvkh1sK1nxtLhZPsS%2B9xSafwHS4i4aolGs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82ee3a57ee22712a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
hd.3lordserial.xyz/ccdn.php
200 OK 11 B URL POST HTTP/3 hd.3lordserial.xyz/ccdn.php
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject3lordserial.xyz
Fingerprint55:F3:EC:F8:C5:A9:65:3A:AD:8F:B2:1A:59:6B:1A:41:7E:A0:65:DF
ValidityWed, 29 Nov 2023 21:49:20 GMT - Tue, 27 Feb 2024 21:49:19 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 023b66d077eec9336b21a3813defc22a
4d644f198bd706740dabf098ccf16a68f2c8a06d
dd1ac68a937ed14636599279bc971a1b4fc20df9aed5f29bc51a0c7449472fb6
POST /ccdn.php HTTP/1.1
Host: hd.3lordserial.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hd.3lordserial.xyz/146-kasl-sv-13.html
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 63
Origin: https://hd.3lordserial.xyz
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=c0506767ddef664786c878030c4f8c6b; _ma=96c8bcbc-89b2-47f3-b910-3f5529571cb5; viewed_ids=146; cf_clearance=SjvM46wFebm2OGS8wlR59lb_yUWbol9k9GkOmVkPp2M-1701464095-0-1-730ca2d2.73a07051.5b213570-0.2.1701464095; _pbjs_userid_consent_data=3524755945110770; "_pubcid"=ab26304a-9a68-40d3-8c6f-87110b8f5450; stableid=none; stableid_cd=1701464102612
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Dec 2023 20:54:59 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D%2BpSX0a3ze9qYtMk539cUcJKLqxuHxvhME1XqEL%2BVPJq%2B%2BKHbsONDxwLe1V%2Fk3NDt8I%2Fu%2BIEOMdezTROG%2FUX0SO2BjnKKE2UUxIcwrkCcOl2T7qjhZz3vgrdFBU5XceptXJMPTE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82ee3a7b4fee56a8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
hd.3lordserial.xyz/engine/classes/min/index.php?g=general&v=cbebf
200 OK 86 kB URL GET HTTP/3 hd.3lordserial.xyz/engine/classes/min/index.php?g=general&v=cbebf
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject3lordserial.xyz
Fingerprint55:F3:EC:F8:C5:A9:65:3A:AD:8F:B2:1A:59:6B:1A:41:7E:A0:65:DF
ValidityWed, 29 Nov 2023 21:49:20 GMT - Tue, 27 Feb 2024 21:49:19 GMT
File type ASCII text, with very long lines (32065), with CRLF line terminators
Hash 710458dd559c957714ac4a8e95357eb5
f694238d616f579a0690001f37984af430c19963
b409c14a10b4caad6b54844aa63a5faf748b83eecc2dd0d4fb1d913f8de55365
GET /engine/classes/min/index.php?g=general&v=cbebf HTTP/1.1
Host: hd.3lordserial.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/146-kasl-sv-13.html
Cookie: PHPSESSID=c0506767ddef664786c878030c4f8c6b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Dec 2023 20:54:53 GMT
content-type: application/x-javascript; charset=utf-8
x-powered-by: PHP/7.4.33
expires: Sat, 30 Nov 2024 20:54:53 GMT
vary: Accept-Encoding
cache-control: max-age=31536000
last-modified: Fri, 09 Dec 2022 04:42:50 GMT
etag: W/"pub1670560970;gz"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5bfiV9nQ9k%2BbVECMWHyvUT7WaCiUN7gBemZcustRi9q%2FcYfnvHnubJIGEOlQuoxkFcEegcEOdjNNa7zhVsv2AoIzaEclsEsSTtrLlTnmLNfTp3yyKibm8VrB%2BLGgKlAbelGKj%2BM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82ee3a521e7856a8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
s.myangular.life/player?cat=support&hit=weak-ref&description=yes
200 OK 0 B URL GET HTTP/1.1 s.myangular.life/player?cat=support&hit=weak-ref&description=yes
IP
ASN #24940 Hetzner Online GmbH
Requested by https://api.strvid.ws/embed/movie/455
Certificate IssuerSectigo Limited
Subjects.myangular.life
Fingerprint3A:21:0F:72:24:43:49:14:06:28:C6:D0:A6:10:6B:D7:B2:EA:5A:66
ValidityTue, 04 Apr 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /player?cat=support&hit=weak-ref&description=yes HTTP/1.1
Host: s.myangular.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://api.strvid.ws/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 01 Dec 2023 20:54:53 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
a.videohead.tech/sync?ssp=44
204 No Content 0 B URL GET HTTP/2 a.videohead.tech/sync?ssp=44
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGoogle Trust Services LLC
Subjectvideohead.tech
FingerprintAC:24:7F:38:6B:35:E3:94:CB:F9:41:85:4E:11:82:9B:AB:92:22:D2
ValiditySun, 26 Nov 2023 10:34:15 GMT - Sat, 24 Feb 2024 10:34:14 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=44 HTTP/1.1
Host: a.videohead.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Fri, 01 Dec 2023 20:54:53 GMT
content-type: text/plain
set-cookie: prevhead=1; Expires=Sun, 31 Dec 2023 20:54:53 GMT; Domain=videohead.tech; SameSite=None; Secure; Path=/
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bc0UFpQOOWDrI0rtQ%2F%2BNR82KFcG%2FefUGsF15sAohrYgYaPVDhSgY%2BPZ1XA4vPUGapSY9EbPQlfbPkHBZmFYszZz6ZwytwSxeX0NOFrPM%2BcNufEYtacoEsg4DVdKiLXReYtNX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82ee3a5a1ce05693-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
s.myangular.life/player?cat=support&hit=find&description=yes
200 OK 0 B URL GET HTTP/1.1 s.myangular.life/player?cat=support&hit=find&description=yes
IP
ASN #24940 Hetzner Online GmbH
Requested by https://api.strvid.ws/embed/movie/455
Certificate IssuerSectigo Limited
Subjects.myangular.life
Fingerprint3A:21:0F:72:24:43:49:14:06:28:C6:D0:A6:10:6B:D7:B2:EA:5A:66
ValidityTue, 04 Apr 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /player?cat=support&hit=find&description=yes HTTP/1.1
Host: s.myangular.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://api.strvid.ws/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 01 Dec 2023 20:54:53 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
hd.3lordserial.xyz/engine/ajax/controller.php?mod=adminfunction&id=146&action=newsread&user_hash=39adc8963e756445da4a3d85a1c7e3f098593a1d
200 OK 2 B URL GET HTTP/3 hd.3lordserial.xyz/engine/ajax/controller.php?mod=adminfunction&id=146&action=newsread&user_hash=39adc8963e756445da4a3d85a1c7e3f098593a1d
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject3lordserial.xyz
Fingerprint55:F3:EC:F8:C5:A9:65:3A:AD:8F:B2:1A:59:6B:1A:41:7E:A0:65:DF
ValidityWed, 29 Nov 2023 21:49:20 GMT - Tue, 27 Feb 2024 21:49:19 GMT
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
GET /engine/ajax/controller.php?mod=adminfunction&id=146&action=newsread&user_hash=39adc8963e756445da4a3d85a1c7e3f098593a1d HTTP/1.1
Host: hd.3lordserial.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hd.3lordserial.xyz/146-kasl-sv-13.html
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=c0506767ddef664786c878030c4f8c6b; _ma=96c8bcbc-89b2-47f3-b910-3f5529571cb5; viewed_ids=146; cf_clearance=SjvM46wFebm2OGS8wlR59lb_yUWbol9k9GkOmVkPp2M-1701464095-0-1-730ca2d2.73a07051.5b213570-0.2.1701464095; _pbjs_userid_consent_data=3524755945110770; "_pubcid"=ab26304a-9a68-40d3-8c6f-87110b8f5450; stableid=none; stableid_cd=1701464102612
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Dec 2023 20:54:58 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6Y5E1KTnM1TP7FBnIjItX2wnvr%2BILFIvaZODORnulYlJY%2BQAJdWfp3RWEC1HP6NzeXw9HPMTh4NkkY2XsoLkUTFD0z2EiU%2BGfVPru8h4sjLelKXXwabNSjGPOswYoDIt9UVxEm0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82ee3a7a3ef356a8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
vak345.com/s.js?v=647a534f9f5fb9ced25ee7db57ef9c72
200 OK 3.7 kB URL GET HTTP/2 vak345.com/s.js?v=647a534f9f5fb9ced25ee7db57ef9c72
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF4:50:2C:D7:5C:84:E6:10:5D:32:80:62:FC:FE:E8:A0:40:4B:99:C4
ValidityFri, 10 Mar 2023 00:00:00 GMT - Sat, 09 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (4106), with no line terminators
Hash fc6aa812e6664dca2b58a14b32508382
4bbeb2e29debe2c910250ddad661ea99d23f53f8
09039eeb3ce0f5a458c541608aeec8d754e7006476c6619860330f27763a1e27
GET /s.js?v=647a534f9f5fb9ced25ee7db57ef9c72 HTTP/1.1
Host: vak345.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 20:54:52 GMT
content-type: text/javascript;charset=UTF-8
vary: Accept-Encoding
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
x-movieads-country: NO
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9r60l5nOH8URXSOTRO4ZXnG5jvqLrbMMLSD0q9WF9IYdgk%2BPOvKQk7jC8c1kT4R4B1X7MSucSSfpqGXwSjYfSYECWjqfOjDZnDEyCa148VuFGR7jVVyC76Fyrqok"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82ee3a522cab56ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.filmskino.site/hls/trailers/arJIA_8cyT0.mp4/index.m3u8
200 OK 4.1 kB URL GET HTTP/1.1 static.filmskino.site/hls/trailers/arJIA_8cyT0.mp4/index.m3u8
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://videotoday.site/mp_dist/td/trhls.html?v5646834026
Certificate IssuerLet's Encrypt
Subjectstatic.filmskino.site
Fingerprint6E:8F:8F:89:03:E1:65:6F:AE:73:8A:6F:6B:A2:B1:02:C1:FE:D3:C7
ValidityMon, 02 Oct 2023 16:05:08 GMT - Sun, 31 Dec 2023 16:05:07 GMT
File type M3U playlist, ASCII text, with very long lines (4182), with no line terminators
Hash fd70b6d88d109c2dd9da13ed9e0ff0ab
a6d9fd27588f1770c52b6c3e485eaecb7a824362
14637bb13c262b9980d0378784cc3a9336f935fa17d1d4dd61904cac2a62b0c9
GET /hls/trailers/arJIA_8cyT0.mp4/index.m3u8 HTTP/1.1
Host: static.filmskino.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videotoday.site
DNT: 1
Connection: keep-alive
Referer: https://videotoday.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 01 Dec 2023 20:54:57 GMT
Content-Type: application/vnd.apple.mpegurl
Last-Modified: Sun, 19 Nov 2000 08:52:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"3a1794b0-ff7"
Expires: Sun, 10 Mar 2024 20:54:57 GMT
Cache-Control: max-age=8640000
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Origin: *
Content-Encoding: gzip
hd.3lordserial.xyz/cdn-cgi/challenge-platform/h/b/scripts/jsd/56d3063b/main.js
200 OK 7.4 kB URL GET HTTP/3 hd.3lordserial.xyz/cdn-cgi/challenge-platform/h/b/scripts/jsd/56d3063b/main.js
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject3lordserial.xyz
Fingerprint55:F3:EC:F8:C5:A9:65:3A:AD:8F:B2:1A:59:6B:1A:41:7E:A0:65:DF
ValidityWed, 29 Nov 2023 21:49:20 GMT - Tue, 27 Feb 2024 21:49:19 GMT
File type ASCII text, with very long lines (7380), with no line terminators
Hash 90e662b082584d531825b53957dce61a
e5dcfb30515606cb053c976c46c1560db3000459
ec0625ca374700cf49093d11da97702a896967f1156968c75523280e70dfdb81
GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/56d3063b/main.js HTTP/1.1
Host: hd.3lordserial.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=c0506767ddef664786c878030c4f8c6b; _ma=96c8bcbc-89b2-47f3-b910-3f5529571cb5; viewed_ids=146
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Dec 2023 20:54:54 GMT
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
vary: accept-encoding
cache-control: max-age=14400, public
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fn5a4hyjPOqd0SuIkLmoE0JaK%2Bbk9gWsSM%2BSj%2Fe%2FBFb2ULjwHigUw1HpaPVM%2FhVSPeFCVG18M6mfQe6X0fq3u%2Fe1qmkSTANHKL7ys%2F6MKWyUyDzvkI37t25asGC0%2F5zMliFoR7o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82ee3a604e1756a8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
a.videohead.tech/sync?ssp=42&skipme=76165f9c-19c5-44f9-a939-d74d6f307d13
302 Found 35 B URL GET HTTP/3 a.videohead.tech/sync?ssp=42&skipme=76165f9c-19c5-44f9-a939-d74d6f307d13
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGoogle Trust Services LLC
Subjectvideohead.tech
FingerprintAC:24:7F:38:6B:35:E3:94:CB:F9:41:85:4E:11:82:9B:AB:92:22:D2
ValiditySun, 26 Nov 2023 10:34:15 GMT - Sat, 24 Feb 2024 10:34:14 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=42&skipme=76165f9c-19c5-44f9-a939-d74d6f307d13 HTTP/1.1
Host: a.videohead.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: prevhead=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Fri, 01 Dec 2023 20:54:57 GMT
content-type: text/plain
location: https://cs.alfasense.com/p?ssp=vh&id=2ffec98b-851b-4a0e-8702-67f9b8c52227
set-cookie: prevhead=1; Max-Age=0; Domain=videohead.tech; SameSite=None; Secure; Path=/
vhead=4RH7ypXK2IddM_tU0Rs7jSqNX-kam66jI8uvDpJtF-dFG9cZjrPGO5KjopMgvrRspa8DKZEUqbS5KEDvncKCEw; Expires=Mon, 28 Nov 2033 20:54:57 GMT; Domain=videohead.tech; SameSite=None; Secure; Path=/
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K2kdkyLhlletHTO4OJkX2YpOWz2W9FGIt0EFMeELSeHpkoNNWzoz%2FRHvxOIBN1Da2qrtDKqbyGwREe5xxXKGSAXBJDlkI4Fw1rFlEQWa9kvMCohKKpGLpRweIcEpqDacuw9n"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82ee3a724cfe5685-OSL
alt-svc: h3=":443"; ma=86400
yandex.ru/ads/system/context.js
200 OK 338 kB URL GET HTTP/2 yandex.ru/ads/system/context.js
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.xn--d1acpjx3f.xn--p1ai
Fingerprint32:06:D7:FE:2B:30:18:07:53:C2:E3:A6:3D:59:A6:1F:72:9B:5B:7D
ValidityThu, 26 Oct 2023 17:49:59 GMT - Wed, 24 Apr 2024 20:59:59 GMT
File type ASCII text, with very long lines (65492)
Size 338 kB (338141 bytes)
Hash 82ac718a22a61160acc5991c4e0124d0
67c4ab56036cac8a9e4d860c23490f92735b3c03
10e65c872f3b3676db9fea4c93676792a17b5a574700fe74a517ddd99d4eea67
GET /ads/system/context.js HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
timing-allow-origin: *
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
x-content-type-options: nosniff
access-control-allow-origin: *
set-cookie: i=l9xckzu4kHN8aQZHeg04GWVEqz3WHDAsE/mTAU/gyGFfy9tH6YE5QDhN2y8P8947AXyDBModbn6b6g5A69torscGgiI=; Expires=Sun, 30-Nov-2025 20:54:54 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=7792233961701464094; Expires=Sun, 30-Nov-2025 20:54:54 GMT; Domain=.yandex.ru; Path=/; Secure; SameSite=None
yashr=7319738301701464094; Path=/; Domain=.yandex.ru; Expires=Sat, 30 Nov 2024 20:54:54 GMT; SameSite=None; Secure; HttpOnly
expires: Fri, 01 Dec 2023 21:54:54 GMT
x-yandex-req-id: 1701464094218563-6403295219179223396-balancer-l7leveler-kubr-yp-sas-77-BAL-2338
accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Platform, Sec-CH-UA-Full-Version, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
cache-control: private, max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
x-robots-tag: noindex, noarchive, nofollow
X-Firefox-Spdy: h2
hd.3lordserial.xyz/cdn-cgi/challenge-platform/h/b/jsd/r/82ee3a4f4a690b59
200 OK 0 B URL POST HTTP/3 hd.3lordserial.xyz/cdn-cgi/challenge-platform/h/b/jsd/r/82ee3a4f4a690b59
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject3lordserial.xyz
Fingerprint55:F3:EC:F8:C5:A9:65:3A:AD:8F:B2:1A:59:6B:1A:41:7E:A0:65:DF
ValidityWed, 29 Nov 2023 21:49:20 GMT - Tue, 27 Feb 2024 21:49:19 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/challenge-platform/h/b/jsd/r/82ee3a4f4a690b59 HTTP/1.1
Host: hd.3lordserial.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12217
Origin: https://hd.3lordserial.xyz
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/146-kasl-sv-13.html
Cookie: PHPSESSID=c0506767ddef664786c878030c4f8c6b; _ma=96c8bcbc-89b2-47f3-b910-3f5529571cb5; viewed_ids=146
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Dec 2023 20:54:55 GMT
content-type: text/plain; charset=UTF-8
set-cookie: cf_clearance=SjvM46wFebm2OGS8wlR59lb_yUWbol9k9GkOmVkPp2M-1701464095-0-1-730ca2d2.73a07051.5b213570-0.2.1701464095; path=/; expires=Sat, 30-Nov-24 20:54:55 GMT; domain=.3lordserial.xyz; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1GIb85bB5RXhn6A1UlJWOOAa7xMMz9SorSEpKmSeZz6B2ng7j5IXb%2FFG2g3JFmT8xAKO%2FtVaLeE6I%2FmUVKh5hTDesyPwdVwV2vQ5sMxN4fS3T5yTY7QZrmW4CkPjVj57shMXbLY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82ee3a659b7356a8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
img.imgilall.me/movies/video/3/9/0/3/9/6/0/0/0/0/800x450_390396.jpg?t=1648646685
200 OK 28 kB URL GET HTTP/2 img.imgilall.me/movies/video/3/9/0/3/9/6/0/0/0/0/800x450_390396.jpg?t=1648646685
IP
Requested by https://api.strvid.ws/embed/movie/455
Certificate IssuerLet's Encrypt
Subjectimgilall.me
Fingerprint98:E4:9B:8A:B0:87:12:C1:ED:11:CF:C5:25:B0:C9:44:46:81:F3:F5
ValiditySat, 14 Oct 2023 01:59:51 GMT - Fri, 12 Jan 2024 01:59:50 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 800x450, components 3\012- data
Hash 8f7677618651ffcaedee395638278613
95693404b713c983eb82b47e22fadc79ff07e53a
e53c24c6b9664f1b712edc257f9344f9bad73d8c82ee1d33519cd5459d736f16
GET /movies/video/3/9/0/3/9/6/0/0/0/0/800x450_390396.jpg?t=1648646685 HTTP/1.1
Host: img.imgilall.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://api.strvid.ws/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 20:54:54 GMT
content-type: image/jpeg
last-modified: Mon, 18 Jul 2022 12:20:27 GMT
vary: Accept-Encoding
etag: W/"62d5500b-6c5d"
expires: Tue, 19 Nov 2024 05:20:00 GMT
cache-control: max-age=31104000
access-control-allow-origin: *
cf-cache-status: HIT
age: 574494
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BLM1srJFwGJms9z0dxDu0mqJx7X3qA0sIOdKYQdkMIjV4WprrQmaLC7Sj6fHBizNAHEA%2BsTCA28s3FcjS4U0x6MnBLFfqPCHh9Y56IUCVXwcWatcKN8ZkNkxvWTavLSSdVw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82ee3a5cbbb6b521-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/920174/e26b550151ba5774984e.js
200 OK 24 kB URL GET HTTP/2 yastatic.net/partner-code-bundles/920174/e26b550151ba5774984e.js
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.yastatic-net.ru
FingerprintD9:64:E0:F2:39:AC:36:DB:9A:A3:3D:E4:27:E4:0B:F5:5B:5B:E3:A0
ValidityMon, 10 Jul 2023 13:25:28 GMT - Sun, 07 Jan 2024 20:59:59 GMT
File type ASCII text, with very long lines (24505)
Hash 52682127d88b3c7670e41fb45f74046f
2b6fff0fefd384b822fb0cab1fa720d6cb7bd10b
894011b120e45e61fe56cdbce595ded18fe55eaa35c9dadf11e640c1eabce8bd
GET /partner-code-bundles/920174/e26b550151ba5774984e.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd.3lordserial.xyz
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 01 Dec 2023 20:54:54 GMT
content-type: text/javascript; charset=utf-8
content-length: 7951
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "e74fe6a1eeb60c78ae82450e12560661"
expires: Mon, 01 Dec 2053 03:26:51 GMT
last-modified: Thu, 30 Nov 2023 18:32:44 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
hd.3lordserial.xyz/146-kasl-81.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html
301 Moved Permanently 58 kB URL User Request GET HTTP/2 hd.3lordserial.xyz/146-kasl-81.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html
IP
Certificate IssuerLet's Encrypt
Subject3lordserial.xyz
Fingerprint55:F3:EC:F8:C5:A9:65:3A:AD:8F:B2:1A:59:6B:1A:41:7E:A0:65:DF
ValidityWed, 29 Nov 2023 21:49:20 GMT - Tue, 27 Feb 2024 21:49:19 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /146-kasl-81.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html/146-kasl-sv-13.html HTTP/1.1
Host: hd.3lordserial.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Fri, 01 Dec 2023 20:54:52 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=c0506767ddef664786c878030c4f8c6b; path=/; secure; HttpOnly
location: /146-kasl-sv-13.html
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qKLmeaT71OBjqZMjen186SH8Cb%2BNZhNisXxABA28X1YP%2FQxWFujgTYTevkPq76qSssA3XnXr3uVHkTv%2BKMMPvcWGLbeZCSTPrkwyeKxBDIvxv1LStuiyVpsMLyFW%2B%2FjjDXKtFN4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82ee3a4e29a10b59-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cs.alfasense.com/p?ssp=bv&uid=3veqvg2yeg
200 OK 35 B URL GET HTTP/1.1 cs.alfasense.com/p?ssp=bv&uid=3veqvg2yeg
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.com
Fingerprint92:58:B8:97:87:98:3A:5B:01:DA:24:13:D3:B2:D4:AF:F5:07:AE:9E
ValiditySat, 10 Dec 2022 23:58:10 GMT - Thu, 11 Jan 2024 23:58:09 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /p?ssp=bv&uid=3veqvg2yeg HTTP/1.1
Host: cs.alfasense.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: uuid=76165f9c-19c5-44f9-a939-d74d6f307d13
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 01 Dec 2023 20:54:58 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.100.20
Accept-Ranges: bytes
cdn5.playmatic.video/public/playmatic_union.min.js
200 OK 41 kB URL GET HTTP/2 cdn5.playmatic.video/public/playmatic_union.min.js
IP
ASN #57416 LLC South Internet
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subjectcdn5.playmatic.video
Fingerprint83:D1:3D:F2:01:70:F1:21:98:AF:D2:CB:80:84:EF:F7:96:0A:E4:09
ValidityWed, 04 Oct 2023 07:49:05 GMT - Tue, 02 Jan 2024 07:49:04 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /public/playmatic_union.min.js HTTP/1.1
Host: cdn5.playmatic.video
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 20:54:52 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 07 Oct 2023 08:15:12 GMT
etag: W/"65211390-a00f"
content-encoding: gzip
cache: HIT
x-cached-since: 2023-11-28T17:07:28+00:00
x-node: fr5-up-gc15
X-Firefox-Spdy: h2
pix.bumlam.com/sync/sape/done
200 OK 43 B URL GET HTTP/1.1 pix.bumlam.com/sync/sape/done
IP
ASN #44066 diva-e Datacenters GmbH
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subject*.bumlam.com
Fingerprint08:E4:EB:78:69:AA:1C:77:24:F5:D4:0F:6C:52:FC:A6:D3:74:90:D0
ValidityMon, 16 Oct 2023 05:30:36 GMT - Sun, 14 Jan 2024 05:30:35 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /sync/sape/done HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiRlMTM4MzNjZS05MDhiLTExZWUtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 01 Dec 2023 20:54:56 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
ads.digitalcaramel.com/js/lordserial2.me.js?ts=1701464097406
200 OK 3.4 kB URL GET HTTP/2 ads.digitalcaramel.com/js/lordserial2.me.js?ts=1701464097406
IP
ASN #24940 Hetzner Online GmbH
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subjectdigitalcaramel.com
Fingerprint2E:22:56:4A:B4:36:55:CF:F5:24:6A:BF:6F:90:8F:29:B8:E7:C1:89
ValiditySun, 22 Oct 2023 03:56:43 GMT - Sat, 20 Jan 2024 03:56:42 GMT
File type ASCII text, with very long lines (3378), with no line terminators
Hash daa1b1e45481203befdf14221f98d768
6e581a38d3f6fccf5d321338c8ca60d9f356345b
67df4341900fd03de677206c8a4a75c9c2f5fa561e208c5e180bc9040a66664a
GET /js/lordserial2.me.js?ts=1701464097406 HTTP/1.1
Host: ads.digitalcaramel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 20:54:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 01 Nov 2023 06:44:57 GMT
vary: Accept-Encoding
etag: W/"6541f3e9-d32"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=15724800; includeSubdomains; preload
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
logger.moviead55.ru/logger.php?t=player_frame_loaded_new&c=805e1579-dbe0-4830-bffa-dd6b2459b8b3&a=&m=0&v=647a534f9f5fb9ced25ee7db57ef9c72&o=
200 OK 70 B URL GET HTTP/2 logger.moviead55.ru/logger.php?t=player_frame_loaded_new&c=805e1579-dbe0-4830-bffa-dd6b2459b8b3&a=&m=0&v=647a534f9f5fb9ced25ee7db57ef9c72&o=
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash b357a19c87624c7c4d131aeeb4ae677f
c7a9c45fd419815a5ab1998503a9f03514c0e229
497790947d4666760ce38f3c00e852c71fdb66cae849bae8e9ede352719e1581
GET /logger.php?t=player_frame_loaded_new&c=805e1579-dbe0-4830-bffa-dd6b2459b8b3&a=&m=0&v=647a534f9f5fb9ced25ee7db57ef9c72&o= HTTP/1.1
Host: logger.moviead55.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 20:54:53 GMT
content-type: Content-Type: image/png
vary: Accept-Encoding
x-movieads-le: true
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
hd.3lordserial.xyz/templates/lordfun/images/calendar.svg
200 OK 1.5 kB URL GET HTTP/3 hd.3lordserial.xyz/templates/lordfun/images/calendar.svg
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject3lordserial.xyz
Fingerprint55:F3:EC:F8:C5:A9:65:3A:AD:8F:B2:1A:59:6B:1A:41:7E:A0:65:DF
ValidityWed, 29 Nov 2023 21:49:20 GMT - Tue, 27 Feb 2024 21:49:19 GMT
File type HTML document text\012- exported SGML document, ASCII text, with very long lines (1547), with no line terminators
Hash afe20d6d7ce2f5ebc4475e27f8944250
a8324deeb02bde3cd492121d1b283a7242c9b6fd
535057257ba6206b89cd58f6abded23f7587fddd7ae854537e131a72ef4b7b81
GET /templates/lordfun/images/calendar.svg HTTP/1.1
Host: hd.3lordserial.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/templates/lordfun/style/full.css?v=2.6
Cookie: PHPSESSID=c0506767ddef664786c878030c4f8c6b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Dec 2023 20:54:52 GMT
content-type: image/svg+xml
last-modified: Thu, 06 Jul 2023 23:57:54 GMT
vary: Accept-Encoding
etag: W/"64a75502-5f4"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4204
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=auXDC9FZo1mjmOxPDdsb%2FU%2F51h6%2F0XwpXmp5PSA2p%2FWLwF6S9Hm461aQejBbySm%2F9Lu4DOSoP%2Fczt1Ax0xJTwK9xY%2BbX%2BqLbcacjhCWETOk40GHp6zkLT8pHKRMR5KN5E3hzuoM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82ee3a52ef2956a8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ads.alfasense.net/adserver/www/delivery/lg.php?bannerid=103&campaignid=15&zoneid=9&loc=https%3A%2F%2Fhd.3lordserial.xyz%2F146-kasl-sv-13.html&cb=aaf792d543&zones=9&xcampaigns=::between::getintent::vox::otm::alfasense::rtbsape::default-stub::&xsite=11072&xsitename=lordserial2.me
200 OK 43 B URL GET HTTP/2 ads.alfasense.net/adserver/www/delivery/lg.php?bannerid=103&campaignid=15&zoneid=9&loc=https%3A%2F%2Fhd.3lordserial.xyz%2F146-kasl-sv-13.html&cb=aaf792d543&zones=9&xcampaigns=::between::getintent::vox::otm::alfasense::rtbsape::default-stub::&xsite=11072&xsitename=lordserial2.me
IP
ASN #52000 Innovation IT Solutions LTD
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.net
Fingerprint15:61:D7:BD:E9:E1:37:36:5F:FD:47:F7:69:F7:5E:53:CD:95:A9:59
ValidityWed, 22 Nov 2023 16:23:03 GMT - Mon, 23 Dec 2024 16:23:02 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /adserver/www/delivery/lg.php?bannerid=103&campaignid=15&zoneid=9&loc=https%3A%2F%2Fhd.3lordserial.xyz%2F146-kasl-sv-13.html&cb=aaf792d543&zones=9&xcampaigns=::between::getintent::vox::otm::alfasense::rtbsape::default-stub::&xsite=11072&xsitename=lordserial2.me HTTP/1.1
Host: ads.alfasense.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: OAID=01000111010001000101000001010010
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 20:54:58 GMT
content-type: image/gif
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: 0
access-control-allow-origin: *
p3p: CP="CUR ADM OUR NOR STA NID"
content-security-policy: frame-ancestors 'self';frame-src 'self';
cross-origin-embedder-policy: unsafe-none
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
permissions-policy: geolocation=(self), payment=(self)
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block;
set-cookie: OAID=01000111010001000101000001010010; expires=Sat, 30-Nov-2024 20:54:58 GMT; Max-Age=31536000; path=/; secure; SameSite=none
SRVGROUP=common; path=/; Secure; HttpOnly
X-Firefox-Spdy: h2
hd.3lordserial.xyz/146-kasl-sv-13.html
200 OK 58 kB URL User Request GET HTTP/2 hd.3lordserial.xyz/146-kasl-sv-13.html
IP
Certificate IssuerLet's Encrypt
Subject3lordserial.xyz
Fingerprint55:F3:EC:F8:C5:A9:65:3A:AD:8F:B2:1A:59:6B:1A:41:7E:A0:65:DF
ValidityWed, 29 Nov 2023 21:49:20 GMT - Tue, 27 Feb 2024 21:49:19 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /146-kasl-sv-13.html HTTP/1.1
Host: hd.3lordserial.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=c0506767ddef664786c878030c4f8c6b
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 20:54:52 GMT
content-type: text/html; charset=utf-8
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hhdLRElCb4TeLnbjrxPg6tKvU4KM8gGdofmbKVv8VlRF9W6z2HDGcxBbQxKb0G3zohg6Zjl68j7na5XVc9URu7PMX6x9Rl%2BiuHQx0S6E2wfxsl9oVt8oUrnYIMxTWiT1Slc7%2B2E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82ee3a4f4a690b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.alfasense.net/js/ad_11072.js
200 OK 14 kB URL GET HTTP/2 cdn.alfasense.net/js/ad_11072.js
IP
ASN #52000 Innovation IT Solutions LTD
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.net
Fingerprint15:61:D7:BD:E9:E1:37:36:5F:FD:47:F7:69:F7:5E:53:CD:95:A9:59
ValidityWed, 22 Nov 2023 16:23:03 GMT - Mon, 23 Dec 2024 16:23:02 GMT
File type ASCII text, with very long lines (2743)
Hash 94250cdae3740b53fe64168d08306ba2
1add58902ba0257cafc92faa055dbd0e2069b999
7011bfb282414ff18e81196de933cb80a939daf27df745baaff40cb05cb128cc
GET /js/ad_11072.js HTTP/1.1
Host: cdn.alfasense.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 20:54:56 GMT
content-type: application/javascript
last-modified: Thu, 30 Nov 2023 04:12:57 GMT
etag: W/"65680bc9-35f8"
content-security-policy: frame-ancestors 'none';frame-src 'self';
cross-origin-embedder-policy: unsafe-none
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
permissions-policy: geolocation=(self), payment=(self)
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block;
cache-control: public, max-age=60
content-encoding: gzip
set-cookie: route=dd92c318b574e2af8018c0207c5098f9; Path=/
SRVGROUP=common; path=/; Secure; HttpOnly
X-Firefox-Spdy: h2
cs.alfasense.com/p?ssp=kd&uid=35MxOgkIKPcQzAWGlJYG
200 OK 35 B URL GET HTTP/1.1 cs.alfasense.com/p?ssp=kd&uid=35MxOgkIKPcQzAWGlJYG
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.com
Fingerprint92:58:B8:97:87:98:3A:5B:01:DA:24:13:D3:B2:D4:AF:F5:07:AE:9E
ValiditySat, 10 Dec 2022 23:58:10 GMT - Thu, 11 Jan 2024 23:58:09 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /p?ssp=kd&uid=35MxOgkIKPcQzAWGlJYG HTTP/1.1
Host: cs.alfasense.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: uuid=76165f9c-19c5-44f9-a939-d74d6f307d13
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 01 Dec 2023 20:54:57 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.100.20
Accept-Ranges: bytes
hd.3lordserial.xyz/templates/lordfun/js/libs.js?v=1.3
200 OK 12 kB URL GET HTTP/3 hd.3lordserial.xyz/templates/lordfun/js/libs.js?v=1.3
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject3lordserial.xyz
Fingerprint55:F3:EC:F8:C5:A9:65:3A:AD:8F:B2:1A:59:6B:1A:41:7E:A0:65:DF
ValidityWed, 29 Nov 2023 21:49:20 GMT - Tue, 27 Feb 2024 21:49:19 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /templates/lordfun/js/libs.js?v=1.3 HTTP/1.1
Host: hd.3lordserial.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/146-kasl-sv-13.html
Cookie: PHPSESSID=c0506767ddef664786c878030c4f8c6b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Dec 2023 20:54:52 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=14169
etag: W/"64a4a6e1-3759"
last-modified: Tue, 04 Jul 2023 23:10:25 GMT
vary: Accept-Encoding
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4205
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=80fTSgjo9UqjZa2YU1VVsspBHtf1KVmYFzTLgo0JYu9CUdVzhbYA7%2BxJM73ogvgtFfI4mClPZkCpJjp%2BG%2BEAb2VGSbNeHdCsb7fBtDSKT0HuLAXdnBv%2BBHgygH7XbiiHMTI9sus%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82ee3a521e7b56a8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
hd.3lordserial.xyz/cdn-cgi/challenge-platform/scripts/jsd/main.js
302 Found 7.4 kB URL GET HTTP/3 hd.3lordserial.xyz/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject3lordserial.xyz
Fingerprint55:F3:EC:F8:C5:A9:65:3A:AD:8F:B2:1A:59:6B:1A:41:7E:A0:65:DF
ValidityWed, 29 Nov 2023 21:49:20 GMT - Tue, 27 Feb 2024 21:49:19 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: hd.3lordserial.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=c0506767ddef664786c878030c4f8c6b; _ma=96c8bcbc-89b2-47f3-b910-3f5529571cb5; viewed_ids=146
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Fri, 01 Dec 2023 20:54:54 GMT
vary: accept-encoding
cache-control: max-age=300, public
access-control-allow-origin: *
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/56d3063b/main.js
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vMgoMvYo8We5OIjBbvxu2PvIrA8SkoF2SmWTVOlZ9k6z4oSi8jyD6mbeGbDZgFtGUDFuUoDAMVsaAWOuIDusWSkQANKELJoxazYhP9IyeZeiFLCc30UXqi6sSiU%2FUjZXgPgl6%2FI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82ee3a5cba8956a8-OSL
alt-svc: h3=":443"; ma=86400
code.moviead55.ru/go/cinit?cn=ohmybid&rnd=1701464093
301 Moved Permanently 0 B URL GET HTTP/2 code.moviead55.ru/go/cinit?cn=ohmybid&rnd=1701464093
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=ohmybid&rnd=1701464093 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 01 Dec 2023 20:54:53 GMT
content-length: 0
location: https://match.ohmy.bid/cm?ssp=skyadv&redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dohmybid%26bid%3D%24%7BUUID%7D
set-cookie: sky_uuid=8adb6661-5908-d990-7b0e-176943d62c7d; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
s.uuidksinc.net/match/396/?remote_uid=0100007F1D486A65EB36FE270271E1BB
302 Found 43 B URL GET HTTP/2 s.uuidksinc.net/match/396/?remote_uid=0100007F1D486A65EB36FE270271E1BB
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subjectuuidksinc.net
Fingerprint24:9D:6D:A2:89:55:7D:CD:A6:BD:59:A3:21:F2:65:41:A8:9D:38:99
ValidityThu, 09 Nov 2023 23:20:21 GMT - Wed, 07 Feb 2024 23:20:20 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/396/?remote_uid=0100007F1D486A65EB36FE270271E1BB HTTP/1.1
Host: s.uuidksinc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.23.2
date: Fri, 01 Dec 2023 20:54:54 GMT
content-length: 0
location: https://www.acint.net/match?dp=127&euid=35MxOgkIKPcQzAWGlJYG
set-cookie: jcsuuid=35MxOgkIKPcQzAWGlJYG; expires=Sat, 30 Nov 2024 20:54:54 GMT; domain=uuidksinc.net; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
miradres.com/met/409640
200 OK 158 B IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subjectmiradres.com
Fingerprint9C:FA:53:73:49:EB:CD:56:18:D7:6C:67:D4:AD:32:25:11:0A:6D:13
ValiditySat, 21 Oct 2023 07:24:42 GMT - Fri, 19 Jan 2024 07:24:41 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with no line terminators
Hash 4c9ea221577ac9d85e822737a07d4875
9a4f6fdd838434a83e9a72def2b0e10e8db006fe
11b8fcc98b8884ec4ccfd3510aa105860968be18575dbcf940babb258bba1077
GET /met/409640 HTTP/1.1
Host: miradres.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 20:54:52 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: PHPSESSID=ebe5v3fc35a33gco531c9s4td6; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: *
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
ads.alfasense.net/adserver/www/delivery/asyncspc.php?zones=9&prefix=revive-0-&xcampaigns=%3A%3Abetween%3A%3Agetintent%3A%3Avox%3A%3Aotm%3A%3Aalfasense%3A%3Artbsape%3A%3Adefault-stub%3A%3A&xsite=11072&xsitename=lordserial2.me&loc=https%3A%2F%2Fhd.3lordserial.xyz%2F146-kasl-sv-13.html
200 OK 1.2 kB URL GET HTTP/2 ads.alfasense.net/adserver/www/delivery/asyncspc.php?zones=9&prefix=revive-0-&xcampaigns=%3A%3Abetween%3A%3Agetintent%3A%3Avox%3A%3Aotm%3A%3Aalfasense%3A%3Artbsape%3A%3Adefault-stub%3A%3A&xsite=11072&xsitename=lordserial2.me&loc=https%3A%2F%2Fhd.3lordserial.xyz%2F146-kasl-sv-13.html
IP
ASN #52000 Innovation IT Solutions LTD
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.net
Fingerprint15:61:D7:BD:E9:E1:37:36:5F:FD:47:F7:69:F7:5E:53:CD:95:A9:59
ValidityWed, 22 Nov 2023 16:23:03 GMT - Mon, 23 Dec 2024 16:23:02 GMT
File type HTML document text\012- troff or preprocessor input, ASCII text, with very long lines (1224), with no line terminators
Hash fc38e7f1accf3867d963817aa2a8a116
4ead31df45e7464c4d77cef199f424a02e06c0f7
5787765c93c74a437e516c71de8dcd5b24ef1b12fd8830d8c3bb231ee7cb0ee0
GET /adserver/www/delivery/asyncspc.php?zones=9&prefix=revive-0-&xcampaigns=%3A%3Abetween%3A%3Agetintent%3A%3Avox%3A%3Aotm%3A%3Aalfasense%3A%3Artbsape%3A%3Adefault-stub%3A%3A&xsite=11072&xsitename=lordserial2.me&loc=https%3A%2F%2Fhd.3lordserial.xyz%2F146-kasl-sv-13.html HTTP/1.1
Host: ads.alfasense.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd.3lordserial.xyz
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 20:54:58 GMT
content-type: application/json
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: 0
p3p: CP="CUR ADM OUR NOR STA NID"
access-control-allow-origin: https://hd.3lordserial.xyz
access-control-allow-credentials: true
content-security-policy: frame-ancestors 'self';frame-src 'self';
cross-origin-embedder-policy: unsafe-none
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
permissions-policy: geolocation=(self), payment=(self)
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block;
set-cookie: OAID=01000111010001000101000001010010; expires=Sat, 30-Nov-2024 20:54:58 GMT; Max-Age=31536000; path=/; secure; SameSite=none
SRVGROUP=common; path=/; Secure; HttpOnly
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=otclkbid&rnd=1701464093
301 Moved Permanently 0 B URL GET HTTP/2 code.moviead55.ru/go/cinit?cn=otclkbid&rnd=1701464093
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=otclkbid&rnd=1701464093 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 01 Dec 2023 20:54:53 GMT
content-length: 0
location: https://otclick-adv.ru/core/match.gif?s=30&reference=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dotclkbid%26bid%3D%23%7BUID%7D
set-cookie: sky_uuid=c8846d2a-25fa-d831-bb0f-268eff4509cc; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
s.myangular.life/ws?ref_id=13098
101 Switching Protocols 0 B URL GET HTTP/1.1 s.myangular.life/ws?ref_id=13098
IP
ASN #24940 Hetzner Online GmbH
Requested by https://api.strvid.ws/embed/movie/455
Certificate IssuerSectigo Limited
Subjects.myangular.life
Fingerprint3A:21:0F:72:24:43:49:14:06:28:C6:D0:A6:10:6B:D7:B2:EA:5A:66
ValidityTue, 04 Apr 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ws?ref_id=13098 HTTP/1.1
Host: s.myangular.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://api.strvid.ws
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 30bfXbUnEJKKDus5cJ+hbw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Fri, 01 Dec 2023 20:54:55 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: TdrXL+QWaGwIB3Xg0Ym2N/dDyYg=
ssp.bidvol.com/usersync?dspcsid=135&redirect=1&id=76165f9c-19c5-44f9-a939-d74d6f307d13
302 Found 35 B URL GET HTTP/2 ssp.bidvol.com/usersync?dspcsid=135&redirect=1&id=76165f9c-19c5-44f9-a939-d74d6f307d13
IP
ASN #24940 Hetzner Online GmbH
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subjectssp.bidvol.com
Fingerprint40:DB:53:6B:41:DC:4B:32:C0:EE:F6:09:5C:13:AF:5C:EF:90:56:90
ValidityThu, 09 Nov 2023 10:21:37 GMT - Wed, 07 Feb 2024 10:21:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usersync?dspcsid=135&redirect=1&id=76165f9c-19c5-44f9-a939-d74d6f307d13 HTTP/1.1
Host: ssp.bidvol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Cookie: bvuid=3veqvg2yeg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.22.0
date: Fri, 01 Dec 2023 20:54:58 GMT
x-request-id: 7ca978b0-8b0c-4722-ab4f-e0f9a4a78a83
vary: Origin
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
pragma: no-cache
expires: 0
surrogate-control: no-store
set-cookie: bvuid=3veqvg2yeg; Max-Age=2147483647; Domain=.bidvol.com; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT; Secure; SameSite=None
bvuid2=3veqvg2yeg; Max-Age=2147483647; Domain=.bidvol.com; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT
location: https://cs.alfasense.com/p?ssp=bv&uid=3veqvg2yeg
X-Firefox-Spdy: h2
s.myangular.life/player?cat=frame&hit=embed&sub=embed&type=diff&label=other&host=3lordserial.xyz
200 OK 0 B URL GET HTTP/1.1 s.myangular.life/player?cat=frame&hit=embed&sub=embed&type=diff&label=other&host=3lordserial.xyz
IP
ASN #24940 Hetzner Online GmbH
Requested by https://api.strvid.ws/embed/movie/455
Certificate IssuerSectigo Limited
Subjects.myangular.life
Fingerprint3A:21:0F:72:24:43:49:14:06:28:C6:D0:A6:10:6B:D7:B2:EA:5A:66
ValidityTue, 04 Apr 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /player?cat=frame&hit=embed&sub=embed&type=diff&label=other&host=3lordserial.xyz HTTP/1.1
Host: s.myangular.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://api.strvid.ws/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 01 Dec 2023 20:54:54 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
cdn.alfasense.net/lib/alfadart.lib.min.js
200 OK 37 kB URL GET HTTP/2 cdn.alfasense.net/lib/alfadart.lib.min.js
IP
ASN #52000 Innovation IT Solutions LTD
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.alfasense.net
Fingerprint15:61:D7:BD:E9:E1:37:36:5F:FD:47:F7:69:F7:5E:53:CD:95:A9:59
ValidityWed, 22 Nov 2023 16:23:03 GMT - Mon, 23 Dec 2024 16:23:02 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /lib/alfadart.lib.min.js HTTP/1.1
Host: cdn.alfasense.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 20:54:56 GMT
content-type: application/javascript
last-modified: Thu, 19 Oct 2023 09:38:04 GMT
etag: W/"6530f8fc-911c"
content-security-policy: frame-ancestors 'none';frame-src 'self';
cross-origin-embedder-policy: unsafe-none
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
permissions-policy: geolocation=(self), payment=(self)
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block;
cache-control: public, max-age=60
content-encoding: gzip
set-cookie: route=e7a39e6e3385558e2f6a6a18cac7185b; Path=/
SRVGROUP=common; path=/; Secure; HttpOnly
X-Firefox-Spdy: h2
code.moviead55.ru/madstyle.css
200 OK 209 B URL GET HTTP/2 code.moviead55.ru/madstyle.css
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
File type ASCII text, with no line terminators
Hash 5c3b6979f309ba563a9adc7b2283a03d
d001e01a5b598cd4ad658e3d2181faca57828ab5
35ebbba68e6e9448d5cd60db423ce0b16456e85a0fdd70a2f4faf5bf98ef81ca
GET /madstyle.css HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 20:54:52 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
access-control-allow-origin: *
access-control-expose-headers: *
access-control-max-age: 86400
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin, Access-Control-Request-Headers, Access-Control-Request-Method
etag: W/"28021-7Ba9Gb9K6bwuIzasQJpQO7varK0"
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
t8.zcvh.net/v1/ws
101 Switching Protocols 0 B IP
ASN #24940 Hetzner Online GmbH
Requested by https://api.strvid.ws/embed/movie/455
Certificate IssuerLet's Encrypt
Subject*.zcvh.net
Fingerprint9F:09:BF:B0:10:B8:43:CC:8F:29:36:BC:BD:D2:2C:71:A7:7E:CA:9A
ValidityWed, 27 Sep 2023 04:02:29 GMT - Tue, 26 Dec 2023 04:02:28 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v1/ws HTTP/1.1
Host: t8.zcvh.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://api.strvid.ws
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: G/DHEiNaweyvBHvAV7ngLQ==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Fri, 01 Dec 2023 20:54:54 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: aWXqBQCj3HLjCCZrnPacfedp4wE=
www.acint.net/mc/?dp=167&tc=1
200 OK 5.6 kB URL GET HTTP/2 www.acint.net/mc/?dp=167&tc=1
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject*.acint.net
FingerprintD1:98:D5:B7:91:FF:E3:AC:0C:2E:5F:9E:20:DE:E5:45:A8:C2:0E:B1
ValidityTue, 31 Oct 2023 03:36:00 GMT - Mon, 29 Jan 2024 03:35:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5817), with no line terminators
Hash 257c4fd4a844b29e17e3719e36b6775e
d277638e64fe3375c73ba97e824fb4e0a220e1df
43c098f0b2036bf97a0eaef13a395f1f883c665cb0096b7dfdf2cd24e6601e90
GET /mc/?dp=167&tc=1 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hd.3lordserial.xyz/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWVqSB0n/jbru+FxAnBO9uArXikJ9bP7KWs+DcG51+8Z
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Fri, 01 Dec 2023 20:54:53 GMT
content-type: text/html
set-cookie: cSyncDp14v6=1701464093; expires=Sun, 31-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp17v2=1701464093; expires=Sun, 31-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp45v5=1701464093; expires=Sat, 02-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp53v5=1701464093; expires=Sun, 31-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp62v2=1701464093; expires=Sun, 31-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp67v3=1701464093; expires=Sun, 31-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp68v2=1701464093; expires=Sun, 31-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp71v2=1701464093; expires=Sun, 31-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp80v2=1701464093; expires=Sun, 31-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp85v2=1701464093; expires=Sun, 31-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp95v4=1701464093; expires=Sun, 31-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp98v3=1701464093; expires=Sun, 31-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp104v2=1701464093; expires=Fri, 15-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp107v2=1701464093; expires=Sun, 31-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp110v3=1701464093; expires=Sun, 31-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp125v4=1701464093; expires=Sat, 16-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp126v2=1701464093; expires=Sun, 31-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp127v2=1701464093; expires=Sun, 31-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp129v2=1701464093; expires=Sun, 31-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp136v3=1701464093; expires=Sun, 31-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp146v2=1701464093; expires=Sun, 31-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp148v2=1701464093; expires=Sun, 31-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp149v3=1701464093; expires=Sun, 31-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp151v2=1701464093; expires=Sun, 31-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp251v1=1701464093; expires=Sun, 31-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp186v2=1701464093; expires=Sun, 31-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp217v2=1701464093; expires=Sun, 31-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp221v2=1701464093; expires=Sun, 31-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp235v2=1701464093; expires=Sun, 31-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp239v2=1701464093; expires=Sun, 31-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp243v2=1701464093; expires=Sun, 31-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp260v2=1701464093; expires=Sun, 31-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp244v2=1701464093; expires=Sun, 31-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp248v2=1701464093; expires=Sun, 31-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp261v1=1701464093; expires=Sun, 31-Dec-23 20:54:53 GMT; path=/; Secure; SameSite=None; domain=.acint.net
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
content-encoding: gzip
X-Firefox-Spdy: h2
yandex.ru/ads/system/header-bidding.js
200 OK 114 kB URL GET HTTP/2 yandex.ru/ads/system/header-bidding.js
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGlobalSign nv-sa
Subject*.xn--d1acpjx3f.xn--p1ai
Fingerprint32:06:D7:FE:2B:30:18:07:53:C2:E3:A6:3D:59:A6:1F:72:9B:5B:7D
ValidityThu, 26 Oct 2023 17:49:59 GMT - Wed, 24 Apr 2024 20:59:59 GMT
File type ASCII text, with very long lines (65479)
Size 114 kB (113829 bytes)
Hash 6eb2010f1e842d03e7167914db48c26e
49fac5904a847b7f9cebc541d72261126289dc97
74410d6230a8d1db7fcd2110150d98bdc738f7a89d7c0efe8020a8815a83a386
GET /ads/system/header-bidding.js HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
timing-allow-origin: *
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
x-content-type-options: nosniff
access-control-allow-origin: *
set-cookie: i=Khwmc9cfAH9+B7+n1ALJI1KHS9OuUyx9G4lud7fWKYIPKsmqoQ+clDUldTTWPitm9/mi/3kpSFvlwOCnJ2n5uZMCNqc=; Expires=Sun, 30-Nov-2025 20:54:54 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=2671924391701464094; Expires=Sun, 30-Nov-2025 20:54:54 GMT; Domain=.yandex.ru; Path=/; Secure; SameSite=None
yashr=8480241631701464094; Path=/; Domain=.yandex.ru; Expires=Sat, 30 Nov 2024 20:54:54 GMT; SameSite=None; Secure; HttpOnly
expires: Fri, 01 Dec 2023 21:54:54 GMT
x-yandex-req-id: 1701464094223023-8418455546567192439-balancer-l7leveler-kubr-yp-sas-77-BAL-6424
accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Platform, Sec-CH-UA-Full-Version, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
cache-control: private, max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
x-robots-tag: noindex, noarchive, nofollow
X-Firefox-Spdy: h2
ssp.bidvol.com/usersync?dspcsid=8&redirect=1
302 Found 43 B URL GET HTTP/2 ssp.bidvol.com/usersync?dspcsid=8&redirect=1
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=167&tc=1
Certificate IssuerLet's Encrypt
Subjectssp.bidvol.com
Fingerprint40:DB:53:6B:41:DC:4B:32:C0:EE:F6:09:5C:13:AF:5C:EF:90:56:90
ValidityThu, 09 Nov 2023 10:21:37 GMT - Wed, 07 Feb 2024 10:21:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usersync?dspcsid=8&redirect=1 HTTP/1.1
Host: ssp.bidvol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.22.0
date: Fri, 01 Dec 2023 20:54:59 GMT
x-request-id: acb02835-9b4c-44bd-9e52-2e39b1ac89bb
vary: Origin
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
pragma: no-cache
expires: 0
surrogate-control: no-store
set-cookie: bvuid=o17xs6vbph; Max-Age=2147483647; Domain=.bidvol.com; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT; Secure; SameSite=None
bvuid2=o17xs6vbph; Max-Age=2147483647; Domain=.bidvol.com; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT
location: https://www.acint.net/match?dp=129&euid=o17xs6vbph
X-Firefox-Spdy: h2
videotoday.site/mp_dist/td/trhls.html?v5646834026
200 OK 9.1 kB URL GET HTTP/3 videotoday.site/mp_dist/td/trhls.html?v5646834026
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerGoogle Trust Services LLC
Subjectvideotoday.site
FingerprintA8:0A:0C:FF:C9:74:01:DA:F2:F4:6F:1A:46:B4:A3:2D:53:73:57:62
ValidityFri, 06 Oct 2023 02:55:12 GMT - Thu, 04 Jan 2024 02:55:11 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9275), with no line terminators
Hash e21934971bc64f6ad77228cab1e49713
c2eb29bd30c99c05e9fa9ee57d5294324bb71a89
f96d688f61c0d77e2ab27a63cab738fb9e85f7041e5d5a91287e6fa5a4792f9e
GET /mp_dist/td/trhls.html?v5646834026 HTTP/1.1
Host: videotoday.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Dec 2023 20:54:56 GMT
content-type: text/html
last-modified: Wed, 29 Nov 2023 19:14:25 GMT
vary: Accept-Encoding
x-movieads-country: NO
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-max-age: 1728000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ja7H0uUX4sOIjwzdCBGrRhph00EwoC3i3Im34vm9y57upSm6QRNfkF%2BsCirP8Rk1KjyEuPyX%2Bzn8kPfk7pfQW6xA2FDa%2Buvqn6SwWp3mBCLAEJVNgLLULfJK260TQ7zupVI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82ee3a6b4a1b56ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
static.filmskino.site/hls/trailers/arJIA_8cyT0.mp4/seg-3-v1-a1.ts
200 OK 334 kB URL GET HTTP/1.1 static.filmskino.site/hls/trailers/arJIA_8cyT0.mp4/seg-3-v1-a1.ts
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://videotoday.site/mp_dist/td/trhls.html?v5646834026
Certificate IssuerLet's Encrypt
Subjectstatic.filmskino.site
Fingerprint6E:8F:8F:89:03:E1:65:6F:AE:73:8A:6F:6B:A2:B1:02:C1:FE:D3:C7
ValidityMon, 02 Oct 2023 16:05:08 GMT - Sun, 31 Dec 2023 16:05:07 GMT
File type MPEG transport stream data\012- TeX font metric data (\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377)\012- data
Size 334 kB (334264 bytes)
Hash 2be0d0efd80daf6e4257c1c420cdffbc
e99c8bd48ff01056fe04fa600ad52f894e51c6d1
9305f23a37ed24b85c3dbca47a88c4fad77773946047a2f34134fb0fd490da98
GET /hls/trailers/arJIA_8cyT0.mp4/seg-3-v1-a1.ts HTTP/1.1
Host: static.filmskino.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videotoday.site
DNT: 1
Connection: keep-alive
Referer: https://videotoday.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 01 Dec 2023 20:54:57 GMT
Content-Type: video/MP2T
Content-Length: 334264
Last-Modified: Sun, 19 Nov 2000 08:52:00 GMT
Connection: keep-alive
ETag: "3a1794b0-519b8"
Expires: Sun, 10 Mar 2024 20:54:57 GMT
Cache-Control: max-age=8640000
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
hd.3lordserial.xyz/templates/lordfun/images/logo.png
200 OK 6.4 kB URL GET HTTP/3 hd.3lordserial.xyz/templates/lordfun/images/logo.png
IP
Requested by https://hd.3lordserial.xyz/146-kasl-sv-13.html
Certificate IssuerLet's Encrypt
Subject3lordserial.xyz
Fingerprint55:F3:EC:F8:C5:A9:65:3A:AD:8F:B2:1A:59:6B:1A:41:7E:A0:65:DF
ValidityWed, 29 Nov 2023 21:49:20 GMT - Tue, 27 Feb 2024 21:49:19 GMT
File type PNG image data, 180 x 70, 8-bit/color RGB, non-interlaced\012- data
Hash 98ae1617c9fc8aabc9fee2c4621af925
e735de62235735ff34da9065b5e69fb83286ded5
9639944058fef1f0d34f7a9ccab2ccc55a4f7915860014138d3b9f425ba90587
GET /templates/lordfun/images/logo.png HTTP/1.1
Host: hd.3lordserial.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.3lordserial.xyz/146-kasl-sv-13.html
Cookie: PHPSESSID=c0506767ddef664786c878030c4f8c6b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Dec 2023 20:54:52 GMT
content-type: image/png
last-modified: Tue, 06 Sep 2022 06:42:38 GMT
vary: Accept-Encoding
etag: W/"6316ebde-1902"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4205
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hebEp1MDC9rG%2BonqEJnbBo5PEysJ5jDvCahgI7b0H3APxePwUKfSxSNsc7otX20WtQ%2B46pfjaamAWyd5qe24zAhy1Zg628gBgM6gN2c1RMQOOI3yFjnmIvxAPcR%2FumCKXQpKN3o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82ee3a521e6e56a8-OSL
alt-svc: h3=":443"; ma=86400
188.114.96.1
77.88.55.88
5.61.53.63
144.76.108.50
146.59.111.187
172.64.99.14
104.21.41.144
188.42.105.236
5.183.209.191
139.45.228.135
0.0.0.0