newserial.biz/templates/newserial/fonts/SFUIDisplay-Regular.woff2
200 OK 43 kB URL GET HTTP/3 newserial.biz/templates/newserial/fonts/SFUIDisplay-Regular.woff2
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subjectnewserial.biz
Fingerprint84:60:F1:A3:B9:FA:9E:64:D4:8D:67:6F:BE:EC:EF:92:41:1E:B5:1E
ValidityTue, 24 Oct 2023 14:29:53 GMT - Mon, 22 Jan 2024 14:29:52 GMT
File type Web Open Font Format (Version 2), TrueType, length 42576, version 1.0\012- data
Hash 2a7d15a301e2045942980e8544ccfbb5
71adf9d8bcff90f86a96b1d21e847bf5d79b3c0e
474b4d7266171e03c8efcd904e8010bd8cb11a068d5e67b5450bc46d768a41e9
GET /templates/newserial/fonts/SFUIDisplay-Regular.woff2 HTTP/1.1
Host: newserial.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newserial.biz/4528-kobra-kaj-na12.html
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=6ft9vgdtn7uv3df82aji4oarbn
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 Nov 2023 23:49:45 GMT
content-type: application/octet-stream
content-length: 42576
last-modified: Wed, 04 Oct 2023 13:56:21 GMT
etag: "651d6f05-a650"
expires: Wed, 24 Apr 2024 13:17:27 GMT
cache-control: max-age=16070400
cf-cache-status: HIT
age: 469938
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RDjctdPpOcB46qXi%2FXefd07A5OnZUNS%2B1FiZa2P%2FGTchDN6w6detZkgSSBiyWFX%2FZJCAr7Cu5EbQy8gM73yyaDQ1W6xTp9bhu4%2FrYSvPERYr%2FG0ejyGVCpkG0uwTQr%2Fw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81f80941998d5687-OSL
alt-svc: h3=":443"; ma=86400
newserial.biz/templates/newserial/fonts/SFUIDisplay-Medium.woff2
200 OK 48 kB URL GET HTTP/3 newserial.biz/templates/newserial/fonts/SFUIDisplay-Medium.woff2
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subjectnewserial.biz
Fingerprint84:60:F1:A3:B9:FA:9E:64:D4:8D:67:6F:BE:EC:EF:92:41:1E:B5:1E
ValidityTue, 24 Oct 2023 14:29:53 GMT - Mon, 22 Jan 2024 14:29:52 GMT
File type Web Open Font Format (Version 2), TrueType, length 48000, version 1.0\012- data
Hash fff9ad598fca43db07a6b03a9a9e369c
42f2127dcaf9af6a00288dd6d1a858db7e1563be
d801fcf91879e859134661043f104f291c099d04a57d9f5ae6b781910aab8c97
GET /templates/newserial/fonts/SFUIDisplay-Medium.woff2 HTTP/1.1
Host: newserial.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newserial.biz/4528-kobra-kaj-na12.html
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=6ft9vgdtn7uv3df82aji4oarbn
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 Nov 2023 23:49:45 GMT
content-type: application/octet-stream
content-length: 48000
last-modified: Wed, 04 Oct 2023 13:56:21 GMT
etag: "651d6f05-bb80"
expires: Fri, 26 Apr 2024 18:40:09 GMT
cache-control: max-age=16070400
cf-cache-status: HIT
age: 277776
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SOiYd1ETtopCBQkV80FCzW4xRm8sL12LhVYWdVhRGwUUjfzvPLi6jK46ncbwjoBU0T42J1LX8ZzHpX7JwPlDlwmlKec8qXxyUzozkMd%2F7eHYk8rWugeu3J5Or7Mr6FGM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81f8094199905687-OSL
alt-svc: h3=":443"; ma=86400
newserial.biz/templates/newserial/fonts/SFUIDisplay-Semibold.woff2
200 OK 48 kB URL GET HTTP/3 newserial.biz/templates/newserial/fonts/SFUIDisplay-Semibold.woff2
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subjectnewserial.biz
Fingerprint84:60:F1:A3:B9:FA:9E:64:D4:8D:67:6F:BE:EC:EF:92:41:1E:B5:1E
ValidityTue, 24 Oct 2023 14:29:53 GMT - Mon, 22 Jan 2024 14:29:52 GMT
File type Web Open Font Format (Version 2), TrueType, length 48084, version 1.0\012- data
Hash 388bb08d52d8ac3d75df2ad19755c25a
7f1489938027543c81655470e0e9f5223aad2058
734cf6d1aa38cd2eb24caf2fbe90e9587ee756a3327559b880dcf01d64596a11
GET /templates/newserial/fonts/SFUIDisplay-Semibold.woff2 HTTP/1.1
Host: newserial.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newserial.biz/4528-kobra-kaj-na12.html
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=6ft9vgdtn7uv3df82aji4oarbn
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 Nov 2023 23:49:45 GMT
content-type: application/octet-stream
content-length: 48084
last-modified: Wed, 04 Oct 2023 13:56:21 GMT
etag: "651d6f05-bbd4"
expires: Wed, 24 Apr 2024 13:17:27 GMT
cache-control: max-age=16070400
cf-cache-status: HIT
age: 469938
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t0IzIikEFy8XRF3%2BBpgcNwLqI%2FTyp3n0tL2t7Mhp3D3DDMgcwZ9v4FbdpFGsRRPk25LzLXIlukhJ%2FfXJ2HEuHPyVhDCce%2BZ201qSTyZZDQpcekSiA1FasY1Xi%2F3nohIl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81f8094199925687-OSL
alt-svc: h3=":443"; ma=86400
newserial.biz/templates/newserial/webfonts/fa-light-300.woff2
200 OK 185 kB URL GET HTTP/3 newserial.biz/templates/newserial/webfonts/fa-light-300.woff2
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subjectnewserial.biz
Fingerprint84:60:F1:A3:B9:FA:9E:64:D4:8D:67:6F:BE:EC:EF:92:41:1E:B5:1E
ValidityTue, 24 Oct 2023 14:29:53 GMT - Mon, 22 Jan 2024 14:29:52 GMT
File type Web Open Font Format (Version 2), TrueType, length 185360, version 330.-16253\012- data
Size 185 kB (185360 bytes)
Hash 86683af0360cc024c998f00de4c43e9e
1fcee9aad4deb962910abe1db91dc02b822124b5
2dc0e215dc2374fc5cdacf24707fabeabc2e4193e12ec9c0203ac9a52a5daf3e
GET /templates/newserial/webfonts/fa-light-300.woff2 HTTP/1.1
Host: newserial.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newserial.biz/4528-kobra-kaj-na12.html
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=6ft9vgdtn7uv3df82aji4oarbn
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 Nov 2023 23:49:45 GMT
content-type: application/octet-stream
content-length: 185360
last-modified: Wed, 04 Oct 2023 13:56:21 GMT
etag: "651d6f05-2d410"
expires: Wed, 24 Apr 2024 13:17:27 GMT
cache-control: max-age=16070400
cf-cache-status: HIT
age: 469938
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U17qeEu4sne4s5QGVxnrocXCpMMLj2y%2BD5hT9BRdQmSUmsdVsxArbBBJENbajRgWtKupZg%2Fk%2BOHaG5o2zhU2Ijdndy0AMqPvKlSEiaYXCV5KdytIbLe4DQ6C2ihuzQCo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81f8094199955687-OSL
alt-svc: h3=":443"; ma=86400
newserial.biz/templates/newserial/webfonts/fa-solid-900.woff2
200 OK 138 kB URL GET HTTP/3 newserial.biz/templates/newserial/webfonts/fa-solid-900.woff2
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subjectnewserial.biz
Fingerprint84:60:F1:A3:B9:FA:9E:64:D4:8D:67:6F:BE:EC:EF:92:41:1E:B5:1E
ValidityTue, 24 Oct 2023 14:29:53 GMT - Mon, 22 Jan 2024 14:29:52 GMT
File type Web Open Font Format (Version 2), TrueType, length 137704, version 330.-16253\012- data
Size 138 kB (137704 bytes)
Hash e245d7d62db89a9912e17b02bc23e256
48d7c4e403b41453d2df167450e7bcb8cfe4f7cb
68eb827a2fa6f035eab41392f863522ae5dc0d4c0c31d5245362a7f1a5aed46a
GET /templates/newserial/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: newserial.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newserial.biz/4528-kobra-kaj-na12.html
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=6ft9vgdtn7uv3df82aji4oarbn
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 Nov 2023 23:49:45 GMT
content-type: application/octet-stream
content-length: 137704
last-modified: Wed, 04 Oct 2023 13:56:21 GMT
etag: "651d6f05-219e8"
expires: Fri, 26 Apr 2024 18:40:09 GMT
cache-control: max-age=16070400
cf-cache-status: HIT
age: 277776
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fyu6ZY%2F5707QBU2m514Rqftd1nOV3Q8m9vf1J6%2FALL7pyyXwa9FWvPQwfcbVqu4M1al2so1GqhOVpkLILsDV5H3P2vHzuun0z%2FNuqRgnahgmGKqjzxqK95sjpNikVmSf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81f8094199975687-OSL
alt-svc: h3=":443"; ma=86400
newserial.biz/uploads/posts/2022-11/1047617_1668449465.webp
200 OK 7.0 kB URL GET HTTP/3 newserial.biz/uploads/posts/2022-11/1047617_1668449465.webp
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subjectnewserial.biz
Fingerprint84:60:F1:A3:B9:FA:9E:64:D4:8D:67:6F:BE:EC:EF:92:41:1E:B5:1E
ValidityTue, 24 Oct 2023 14:29:53 GMT - Mon, 22 Jan 2024 14:29:52 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1fbdf443cd590cb08fe0ae247d6b3409
f26683baa330b6d738f4bbb9076f5532753a740f
f7fa3566987facf9e88344767a990a9bde2ec5419a1ae0cf2700d795046d0da1
GET /uploads/posts/2022-11/1047617_1668449465.webp HTTP/1.1
Host: newserial.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/4528-kobra-kaj-na12.html
Cookie: PHPSESSID=6ft9vgdtn7uv3df82aji4oarbn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 Nov 2023 23:49:45 GMT
content-type: image/webp
content-length: 6950
last-modified: Wed, 04 Oct 2023 13:56:22 GMT
etag: "651d6f06-1b26"
expires: Mon, 29 Apr 2024 00:25:47 GMT
cache-control: max-age=16070400
cf-cache-status: HIT
age: 84238
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CCxWlYeCqxxnyIukjW96pV14uJeTPGaplfBt0ivBQ9Tbsio8iqjQwmJSUmPpYZYTCeFMXALJsGDcjh2ZrN92FxE%2FvSHwIZbO4vSDk6oJH0xvav8Vu5XiUPUpALYPD2oo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81f80941a9a05687-OSL
alt-svc: h3=":443"; ma=86400
newserial.biz/uploads/posts/2022-10/161268_1666114246.webp
200 OK 21 kB URL GET HTTP/3 newserial.biz/uploads/posts/2022-10/161268_1666114246.webp
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subjectnewserial.biz
Fingerprint84:60:F1:A3:B9:FA:9E:64:D4:8D:67:6F:BE:EC:EF:92:41:1E:B5:1E
ValidityTue, 24 Oct 2023 14:29:53 GMT - Mon, 22 Jan 2024 14:29:52 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 929954db5a7c4634db31e92c630c6cf0
bf9f16f506c2f4698bf8a5c0cfbc7e66bf597fed
db53427ae7d9ed012d93b76741a494a9e1bd6449429b52f4ae0dca2c7b880d84
GET /uploads/posts/2022-10/161268_1666114246.webp HTTP/1.1
Host: newserial.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/4528-kobra-kaj-na12.html
Cookie: PHPSESSID=6ft9vgdtn7uv3df82aji4oarbn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 Nov 2023 23:49:46 GMT
content-type: image/webp
content-length: 20622
last-modified: Wed, 04 Oct 2023 13:56:29 GMT
etag: "651d6f0d-508e"
expires: Sun, 28 Apr 2024 16:05:13 GMT
cache-control: max-age=16070400
cf-cache-status: HIT
age: 114273
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RfF%2BhfbkT3Nd678ruRKzn8vVyUKqA0DLot%2FhhiNC0qx%2BVVXGx%2F1RZuErNwoQt%2FjjnVi6T76TMSXKDvXX3SFH5ytzxZOz57wtCqzlI2c78G6xKxN%2FnGo4n%2B%2FF9F87GigM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81f80943ca845687-OSL
alt-svc: h3=":443"; ma=86400
newserial.biz/uploads/posts/2022-11/1134829_1668449572.webp
200 OK 17 kB URL GET HTTP/3 newserial.biz/uploads/posts/2022-11/1134829_1668449572.webp
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subjectnewserial.biz
Fingerprint84:60:F1:A3:B9:FA:9E:64:D4:8D:67:6F:BE:EC:EF:92:41:1E:B5:1E
ValidityTue, 24 Oct 2023 14:29:53 GMT - Mon, 22 Jan 2024 14:29:52 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 151255655a023b065663c2b05a1ce225
2f4c3907b483ba04823388149e832ef10a615f39
c9325ad9b75bf523ac4802673a5b05f0728f05b52ead6d292c45b8418bcdf5ba
GET /uploads/posts/2022-11/1134829_1668449572.webp HTTP/1.1
Host: newserial.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/4528-kobra-kaj-na12.html
Cookie: PHPSESSID=6ft9vgdtn7uv3df82aji4oarbn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 Nov 2023 23:49:46 GMT
content-type: image/webp
content-length: 16908
last-modified: Wed, 04 Oct 2023 13:56:22 GMT
etag: "651d6f06-420c"
expires: Mon, 29 Apr 2024 23:49:42 GMT
cache-control: max-age=16070400
cf-cache-status: HIT
age: 4
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=whuTcIcthn1oTi5V3xTlQnAcwevRIT6yQtRL6L%2FyndVpyVUaE%2BypwpqthPb5JkcGbm7qPBEKEBRfwMrwdxjVoYrBRGxRZyjNXjIE%2ByAT0p0LggRrYNvhMthZf4%2FHp9z1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81f80943ca855687-OSL
alt-svc: h3=":443"; ma=86400
newserial.biz/uploads/posts/2022-12/4965009_1670440959.webp
200 OK 23 kB URL GET HTTP/3 newserial.biz/uploads/posts/2022-12/4965009_1670440959.webp
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subjectnewserial.biz
Fingerprint84:60:F1:A3:B9:FA:9E:64:D4:8D:67:6F:BE:EC:EF:92:41:1E:B5:1E
ValidityTue, 24 Oct 2023 14:29:53 GMT - Mon, 22 Jan 2024 14:29:52 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5cb6d6f9f7c1bdddfc5fd781d164fec2
ecbaa199d4c90a707ab58d54301fb12790b00a8d
d5228956b43983f3502e09891f57643d1358f19a4c61a756c9674a6d43060718
GET /uploads/posts/2022-12/4965009_1670440959.webp HTTP/1.1
Host: newserial.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/4528-kobra-kaj-na12.html
Cookie: PHPSESSID=6ft9vgdtn7uv3df82aji4oarbn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 Nov 2023 23:49:46 GMT
content-type: image/webp
content-length: 22852
last-modified: Wed, 04 Oct 2023 13:56:25 GMT
etag: "651d6f09-5944"
expires: Mon, 29 Apr 2024 23:49:42 GMT
cache-control: max-age=16070400
cf-cache-status: HIT
age: 4
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VVVhSpbMS94T7b8PsHRwZ4yurIp2hEGnvqW4qY525OEG%2BV53rVXalZTvdN93iHfATRC0FD1WnfZW2RQOkXCZHYfkRubhMyLQlUFfPaUhvheqLLUeU2ikL2uxvehsVfzc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81f80943ca865687-OSL
alt-svc: h3=":443"; ma=86400
newserial.biz/uploads/posts/2023-11/1698840276-hozyain.webp
200 OK 13 kB URL GET HTTP/3 newserial.biz/uploads/posts/2023-11/1698840276-hozyain.webp
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subjectnewserial.biz
Fingerprint84:60:F1:A3:B9:FA:9E:64:D4:8D:67:6F:BE:EC:EF:92:41:1E:B5:1E
ValidityTue, 24 Oct 2023 14:29:53 GMT - Mon, 22 Jan 2024 14:29:52 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8fcd5cea4f7f931546ce1d36c6f221d0
b41724400e08871d02416421d0c0e3593bb31704
0b47cb4ac753430ee0f83fddcbfd852df6f6436606aa54b4daccbc8f8a5e9deb
GET /uploads/posts/2023-11/1698840276-hozyain.webp HTTP/1.1
Host: newserial.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/4528-kobra-kaj-na12.html
Cookie: PHPSESSID=6ft9vgdtn7uv3df82aji4oarbn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 Nov 2023 23:49:46 GMT
content-type: image/webp
content-length: 13294
last-modified: Wed, 01 Nov 2023 12:04:19 GMT
etag: "65423ec3-33ee"
expires: Mon, 29 Apr 2024 23:49:42 GMT
cache-control: max-age=16070400
cf-cache-status: HIT
age: 4
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sULSnbBVVfamlL1Fpy%2FNMiTUFHP5schSuzYUnXBhIRHQBpXFNqyJbxzFMNgv5uB1eLDj9i8SS0lmo7cB%2F9BaD8aa4uade%2F3zCDYKypEjprEZpunJ3QnhKDST0dXkxhr9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81f80943ca875687-OSL
alt-svc: h3=":443"; ma=86400
newserial.biz/uploads/posts/2023-10/1697349660-messi-vstrechaet-ameriku.webp
200 OK 11 kB URL GET HTTP/3 newserial.biz/uploads/posts/2023-10/1697349660-messi-vstrechaet-ameriku.webp
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subjectnewserial.biz
Fingerprint84:60:F1:A3:B9:FA:9E:64:D4:8D:67:6F:BE:EC:EF:92:41:1E:B5:1E
ValidityTue, 24 Oct 2023 14:29:53 GMT - Mon, 22 Jan 2024 14:29:52 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash da8c1d60b1f6b32539d6314e941a30ab
47dd88175359f5271b31c214cc574e2999df0a2b
f10eafe773bad63a6f54f871b9ca37aa080ad3f5eab6b96e3e9834f6308ba231
GET /uploads/posts/2023-10/1697349660-messi-vstrechaet-ameriku.webp HTTP/1.1
Host: newserial.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/4528-kobra-kaj-na12.html
Cookie: PHPSESSID=6ft9vgdtn7uv3df82aji4oarbn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 Nov 2023 23:49:46 GMT
content-type: image/webp
content-length: 10564
last-modified: Sun, 15 Oct 2023 06:00:14 GMT
etag: "652b7fee-2944"
expires: Mon, 29 Apr 2024 11:29:33 GMT
cache-control: max-age=16070400
cf-cache-status: HIT
age: 44413
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i098sA5QPa8Bi%2F%2FTA847IM%2F%2FgpLIjTy2RxyipoORNqKZ6MCyT5em0mhi4Fpb%2BsjXJGcz4khj46Sv0u6ZgDrs2uTnkHxdb%2FZSWBPWsD94AFjH0QM1%2FwUPpoKYl7%2Fx2Pyo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81f80943ca885687-OSL
alt-svc: h3=":443"; ma=86400
newserial.biz/uploads/posts/2023-11/1698822848-slepye-pyatna.webp
200 OK 13 kB URL GET HTTP/3 newserial.biz/uploads/posts/2023-11/1698822848-slepye-pyatna.webp
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subjectnewserial.biz
Fingerprint84:60:F1:A3:B9:FA:9E:64:D4:8D:67:6F:BE:EC:EF:92:41:1E:B5:1E
ValidityTue, 24 Oct 2023 14:29:53 GMT - Mon, 22 Jan 2024 14:29:52 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9ed781964af9e00f1f4f204f4d2a62c1
e690249a92ac4449c1921235e75127a2f55dbc19
b3151cd2e7b85ede238f8b61b37bdf068ee30fff3a59a011c732a503bc9036b2
GET /uploads/posts/2023-11/1698822848-slepye-pyatna.webp HTTP/1.1
Host: newserial.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/4528-kobra-kaj-na12.html
Cookie: PHPSESSID=6ft9vgdtn7uv3df82aji4oarbn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 Nov 2023 23:49:46 GMT
content-type: image/webp
content-length: 13382
last-modified: Wed, 01 Nov 2023 07:13:47 GMT
etag: "6541faab-3446"
expires: Mon, 29 Apr 2024 11:29:33 GMT
cache-control: max-age=16070400
cf-cache-status: HIT
age: 44413
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H4xendPK0E0E9oMlpG6CovzhiCkr%2F4vQ5lb1qfv9dRLO2MlRuxjDORgvnvJh6PMv1diKWXhKRFP85tSfC%2FSMpeNNbl4AhGeHbxDQAnzli2Tme5h9hu8I45fVS5NP%2FrH5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81f80943da8b5687-OSL
alt-svc: h3=":443"; ma=86400
test.takedwn.ws/ping
200 OK 0 B IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerSectigo Limited
Subject*.takedwn.ws
Fingerprint10:FE:92:D9:53:67:C4:4D:D3:64:8C:31:29:59:C5:F4:1A:DC:AC:92
ValidityTue, 26 Sep 2023 00:00:00 GMT - Fri, 11 Oct 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /ping HTTP/1.1
Host: test.takedwn.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newserial.biz/
Origin: https://newserial.biz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Nov 2023 23:49:46 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
newserial.biz/templates/newserial/css/first.css?v1.1.8
200 OK 8.2 kB URL GET HTTP/3 newserial.biz/templates/newserial/css/first.css?v1.1.8
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subjectnewserial.biz
Fingerprint84:60:F1:A3:B9:FA:9E:64:D4:8D:67:6F:BE:EC:EF:92:41:1E:B5:1E
ValidityTue, 24 Oct 2023 14:29:53 GMT - Mon, 22 Jan 2024 14:29:52 GMT
File type ASCII text, with very long lines (31970), with no line terminators
Hash 8932b02682eb072129cc74dfe63d0aee
17270f6e7380d09682704c6a559b91fa86249f6a
1085db449aef3c20c73ca07e4a47234ec3c797c35915fc5152519ee4a1ff218e
GET /templates/newserial/css/first.css?v1.1.8 HTTP/1.1
Host: newserial.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/4528-kobra-kaj-na12.html
Cookie: PHPSESSID=6ft9vgdtn7uv3df82aji4oarbn
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 Nov 2023 23:49:45 GMT
content-type: text/css
cache-control: max-age=16070400
cf-bgj: minify
cf-polished: origSize=32137
etag: W/"6540cb40-7d89"
expires: Sun, 28 Apr 2024 10:27:57 GMT
last-modified: Tue, 31 Oct 2023 09:39:12 GMT
cf-cache-status: HIT
age: 134508
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Jk5pplhovRVy%2F1oiKS3fwbgeZO8d1cBsJMTxcK6eE28TStwbRZxnouGnAQTNSpYZjZHfXUbcyj3bcnrp%2F1wxvwIVGmTAUu7vLInKB8tzv8I9oQYi6MjocxFzWm4E6anT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81f8094199985687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
yandex.ru/ads/system/header-bidding.js
200 OK 36 kB URL GET HTTP/2 yandex.ru/ads/system/header-bidding.js
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerGlobalSign nv-sa
Subject*.xn--d1acpjx3f.xn--p1ai
FingerprintE4:BA:B2:7F:BF:93:B8:22:10:26:70:37:9C:03:1A:9D:FB:23:17:24
ValidityWed, 21 Jun 2023 13:42:48 GMT - Tue, 19 Dec 2023 20:59:59 GMT
File type ASCII text, with very long lines (65479)
Hash 4892fddb27a80253ff07e1d1b128a7bc
38f36cc8ccddda59b5b97849da0109a4579a31f4
97d49b3820b8b2b3e64e8f148613f5788a7c25a289112ef0847ec00097bc15ae
GET /ads/system/header-bidding.js HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
timing-allow-origin: *
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
x-content-type-options: nosniff
access-control-allow-origin: *
set-cookie: i=KWDdGrEST+2GJGEwv60PmGhQr1pDKhQl59oibwJec/5jWgyp++FSGfYW6nGe7HKmN8FGe47qNBOqwBiDakDra+COJDo=; Expires=Fri, 31-Oct-2025 23:49:47 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=2611034971698882587; Expires=Fri, 31-Oct-2025 23:49:47 GMT; Domain=.yandex.ru; Path=/; Secure; SameSite=None
yashr=1832753371698882587; Path=/; Domain=.yandex.ru; Expires=Thu, 31 Oct 2024 23:49:47 GMT; SameSite=None; Secure; HttpOnly
expires: Thu, 02 Nov 2023 00:49:47 GMT
x-yandex-req-id: 1698882587039193-14836104561761103497-balancer-l7leveler-kubr-yp-vla-146-BAL-6022
accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Platform, Sec-CH-UA-Full-Version, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
cache-control: private, max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
x-robots-tag: noindex, noarchive, nofollow
X-Firefox-Spdy: h2
cdn.adfinity.pro/code/newserial.run/adfinity.js
200 OK 36 kB URL GET HTTP/2 cdn.adfinity.pro/code/newserial.run/adfinity.js
IP
ASN #210756 G-Core Rus LLC
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerSectigo Limited
Subject*.adfinity.pro
FingerprintC8:80:11:60:8F:F8:44:5A:8E:B4:79:3F:2F:7A:D2:D7:9C:28:72:A8
ValidityFri, 09 Dec 2022 00:00:00 GMT - Sat, 16 Dec 2023 23:59:59 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash 75ce5284132cd7f80139fe20a2f668e3
63b2b20fdd1dc6fb3710a3692c495e12f7b1499b
3ad1f95fe1bc1ca5db982ed788690699561638d1de921d29e327bbb3f45a5425
GET /code/newserial.run/adfinity.js HTTP/1.1
Host: cdn.adfinity.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 01 Nov 2023 23:49:46 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 31 Oct 2023 13:51:55 GMT
etag: W/"6541067b-1cca9"
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
access-control-allow-origin: *
cache: HIT
x-cached-since: 2023-11-01T12:27:08+00:00
x-node: m9p-up-gc71
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.adfinity.pro/code/newserial.run/adfinity.js
200 OK 28 kB URL GET HTTP/2 cdn.adfinity.pro/code/newserial.run/adfinity.js
IP
ASN #210756 G-Core Rus LLC
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerSectigo Limited
Subject*.adfinity.pro
FingerprintC8:80:11:60:8F:F8:44:5A:8E:B4:79:3F:2F:7A:D2:D7:9C:28:72:A8
ValidityFri, 09 Dec 2022 00:00:00 GMT - Sat, 16 Dec 2023 23:59:59 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash 97cecf1bd9764093e3245792e108cc6b
5bcd06ff9471a7a1c0c4f5d833e6f9cc0a9a7d09
7d96fabb7809c8839533fd67b9f090c239dd8301ea71be35d7256746ff32cb6e
GET /code/newserial.run/adfinity.js HTTP/1.1
Host: cdn.adfinity.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 01 Nov 2023 23:49:46 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 31 Oct 2023 13:51:55 GMT
etag: W/"6541067b-1cca9"
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
access-control-allow-origin: *
cache: HIT
x-cached-since: 2023-11-01T12:27:08+00:00
x-node: m9p-up-gc71
content-encoding: gzip
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/900304/d9e41504e4802bcbbc52.js
200 OK 4.8 kB URL GET HTTP/2 yastatic.net/partner-code-bundles/900304/d9e41504e4802bcbbc52.js
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerGlobalSign nv-sa
Subject*.yastatic-net.ru
FingerprintD9:64:E0:F2:39:AC:36:DB:9A:A3:3D:E4:27:E4:0B:F5:5B:5B:E3:A0
ValidityMon, 10 Jul 2023 13:25:28 GMT - Sun, 07 Jan 2024 20:59:59 GMT
File type ASCII text, with very long lines (14274)
Hash 022a290982b8f00059304d17a6eddf98
872f3f3667d213aedcd4613a73f0e0c847d9b7c5
c366c5f656e6fd071f07bbf1077dcb19238ee673bf87c8c2fd2b09fc9b281e49
GET /partner-code-bundles/900304/d9e41504e4802bcbbc52.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://newserial.biz
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 01 Nov 2023 23:49:47 GMT
content-type: text/javascript; charset=utf-8
content-length: 4775
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "5c36f71814539991af77793f7ce62b28"
expires: Sat, 01 Nov 2053 06:22:28 GMT
last-modified: Tue, 31 Oct 2023 17:33:09 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/900304/e8a1463a27bfec015ece.js
200 OK 7.9 kB URL GET HTTP/2 yastatic.net/partner-code-bundles/900304/e8a1463a27bfec015ece.js
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerGlobalSign nv-sa
Subject*.yastatic-net.ru
FingerprintD9:64:E0:F2:39:AC:36:DB:9A:A3:3D:E4:27:E4:0B:F5:5B:5B:E3:A0
ValidityMon, 10 Jul 2023 13:25:28 GMT - Sun, 07 Jan 2024 20:59:59 GMT
File type ASCII text, with very long lines (24505)
Hash 4bb2d4366d81a8a00717c33f575690be
d8868175e3a7b43bd1a8429abd9c342af32af06c
83995c53b15484784b9cae39549276b1683191bf145a91a085b4e6de9a7316bb
GET /partner-code-bundles/900304/e8a1463a27bfec015ece.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://newserial.biz
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 01 Nov 2023 23:49:47 GMT
content-type: text/javascript; charset=utf-8
content-length: 7949
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "7848d9ec3ec3692635bbe8f84779dd5e"
expires: Sat, 01 Nov 2053 06:22:28 GMT
last-modified: Tue, 31 Oct 2023 17:33:09 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
newserial.biz/templates/newserial/images/logo.svg
200 OK 28 kB URL GET HTTP/3 newserial.biz/templates/newserial/images/logo.svg
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subjectnewserial.biz
Fingerprint84:60:F1:A3:B9:FA:9E:64:D4:8D:67:6F:BE:EC:EF:92:41:1E:B5:1E
ValidityTue, 24 Oct 2023 14:29:53 GMT - Mon, 22 Jan 2024 14:29:52 GMT
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (4150), with no line terminators
Hash 1bd214b41a0dd89b9331e78ceb99c12f
bdca834a86bc5b762e4c0ac4a59dcd10b55c6b24
40eade412d828a0538a36a3df169269983fb395147aa82e63f44afdbe8d2b20b
GET /templates/newserial/images/logo.svg HTTP/1.1
Host: newserial.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/4528-kobra-kaj-na12.html
Cookie: PHPSESSID=6ft9vgdtn7uv3df82aji4oarbn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 Nov 2023 23:49:45 GMT
content-type: image/svg+xml
last-modified: Wed, 04 Oct 2023 13:56:21 GMT
etag: W/"651d6f05-1046"
expires: Wed, 24 Apr 2024 13:17:27 GMT
cache-control: max-age=16070400
cf-cache-status: HIT
age: 469938
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sdyEWtv12Z14kb9YwjvwXJN13iVYOJvkCzE9HpW3jGz4nQ52GYloksOISpww0iY2g%2Fn33trhzAV7gror6tjxz1l8n47lzOSBAdE7mRZYv%2BcHu0NEXew%2ByGlml4IFYBoI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81f80941a99d5687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
yastatic.net/safeframe-bundles/0.83/host.js
200 OK 8.9 kB URL GET HTTP/2 yastatic.net/safeframe-bundles/0.83/host.js
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerGlobalSign nv-sa
Subject*.yastatic-net.ru
FingerprintD9:64:E0:F2:39:AC:36:DB:9A:A3:3D:E4:27:E4:0B:F5:5B:5B:E3:A0
ValidityMon, 10 Jul 2023 13:25:28 GMT - Sun, 07 Jan 2024 20:59:59 GMT
File type ASCII text, with very long lines (33703), with no line terminators
Hash 2435549eac66915d7464ee7b9efce038
e390598fb192583622a8ea079d5c96dffdb34fb5
34806ef573086241dd1a596a860b0295b51c24f1c37eab36eb9d0665683abb55
GET /safeframe-bundles/0.83/host.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://newserial.biz
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 01 Nov 2023 23:49:47 GMT
content-type: text/javascript; charset=utf-8
content-length: 8878
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "f80882bf67cf261aa08d636da095149a"
expires: Sat, 01 Nov 2053 06:24:03 GMT
last-modified: Wed, 03 Nov 2021 13:42:58 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/s3/home/fonts/ys/3/text-variable-full.woff2
200 OK 26 kB URL GET HTTP/2 yastatic.net/s3/home/fonts/ys/3/text-variable-full.woff2
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerGlobalSign nv-sa
Subject*.yastatic-net.ru
FingerprintD9:64:E0:F2:39:AC:36:DB:9A:A3:3D:E4:27:E4:0B:F5:5B:5B:E3:A0
ValidityMon, 10 Jul 2023 13:25:28 GMT - Sun, 07 Jan 2024 20:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 26004, version 1.0\012- data
Hash 7f0cdaf91230f9789ca4162aedff612e
965de571aa794dab64076c3cc64dc8894b843f23
033696b7f1ac04d1dcc102be84550e146236ceffc25a6cabc12aa51a6ee410b9
GET /s3/home/fonts/ys/3/text-variable-full.woff2 HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://newserial.biz/
Origin: https://newserial.biz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 01 Nov 2023 23:49:47 GMT
content-type: font/woff2
content-length: 26004
access-control-allow-origin: *
cache-control: public, max-age=31556952
etag: "7f0cdaf91230f9789ca4162aedff612e"
expires: Fri, 01 Nov 2024 05:37:15 GMT
last-modified: Mon, 25 Apr 2022 14:02:39 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-amz-meta-owner: {"role":"admin","login":"4eb0da"}
x-nginx-request-id: 3ebb48f6113e2bc6
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/900304/4d14bc8cde348615e28a.js
200 OK 15 kB URL GET HTTP/2 yastatic.net/partner-code-bundles/900304/4d14bc8cde348615e28a.js
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerGlobalSign nv-sa
Subject*.yastatic-net.ru
FingerprintD9:64:E0:F2:39:AC:36:DB:9A:A3:3D:E4:27:E4:0B:F5:5B:5B:E3:A0
ValidityMon, 10 Jul 2023 13:25:28 GMT - Sun, 07 Jan 2024 20:59:59 GMT
File type ASCII text, with very long lines (60210)
Hash 41251a28b2c64d4ff7035f5afbccadbf
69e056305a614159a8cd8ea32e446b045ccea1be
9596df5405908cd5638b84d7eb6388e4b34969b71b05a285fed1789aa0d9bed4
GET /partner-code-bundles/900304/4d14bc8cde348615e28a.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://newserial.biz
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 01 Nov 2023 23:49:47 GMT
content-type: text/javascript; charset=utf-8
content-length: 14846
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "c8dcd8f02347f5d455525d85917c1dd4"
expires: Sat, 01 Nov 2053 06:22:28 GMT
last-modified: Tue, 31 Oct 2023 17:33:09 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/900304/259332b44d63e258f911.js
200 OK 119 kB URL GET HTTP/2 yastatic.net/partner-code-bundles/900304/259332b44d63e258f911.js
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerGlobalSign nv-sa
Subject*.yastatic-net.ru
FingerprintD9:64:E0:F2:39:AC:36:DB:9A:A3:3D:E4:27:E4:0B:F5:5B:5B:E3:A0
ValidityMon, 10 Jul 2023 13:25:28 GMT - Sun, 07 Jan 2024 20:59:59 GMT
File type ASCII text, with very long lines (65497)
Size 119 kB (119280 bytes)
Hash 6882618ed68dfda75c7124b6b7111a1f
260cd9e66d6ad861778dc15e0dc227a7fb9d2ecc
9472e7e726a7bee8b774df8e0bbc108993b8be2b2f6a7b8bd4d8db836740e8a2
GET /partner-code-bundles/900304/259332b44d63e258f911.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://newserial.biz
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 01 Nov 2023 23:49:47 GMT
content-type: text/javascript; charset=utf-8
content-length: 119280
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "37ff1b414ee863252fecd660ecb814db"
expires: Sat, 01 Nov 2053 06:22:27 GMT
last-modified: Tue, 31 Oct 2023 17:33:09 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
acint.net/match?dp=14&euid=4502420A1BE442651C007A290229796C
302 Found 154 B URL GET HTTP/2 acint.net/match?dp=14&euid=4502420A1BE442651C007A290229796C
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint10:D0:B1:ED:4E:38:04:67:F3:89:8C:ED:7E:E6:3D:19:1C:1C:89:EB
ValidityWed, 11 Oct 2023 01:51:47 GMT - Tue, 09 Jan 2024 01:51:46 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /match?dp=14&euid=4502420A1BE442651C007A290229796C HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: openresty
date: Wed, 01 Nov 2023 23:49:47 GMT
content-type: text/html
content-length: 154
location: /match?dp=14&tc=1&euid=4502420A1BE442651C007A290229796C
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
set-cookie: test_cookie=CheckForPermission; path=/; Secure; SameSite=None; domain=.acint.net; expires=Wed, 01-Nov-23 23:59:47 GMT
aid=fwAAAWVC5BtBTiyfvEx9AkGe3lEwGknFO6bUfBanO7JuvMdG; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
acint.net/match?dp=14&tc=1&euid=4502420A1BE442651C007A290229796C
200 OK 43 B URL GET HTTP/2 acint.net/match?dp=14&tc=1&euid=4502420A1BE442651C007A290229796C
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint10:D0:B1:ED:4E:38:04:67:F3:89:8C:ED:7E:E6:3D:19:1C:1C:89:EB
ValidityWed, 11 Oct 2023 01:51:47 GMT - Tue, 09 Jan 2024 01:51:46 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=14&tc=1&euid=4502420A1BE442651C007A290229796C HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWVC5BtBTiyfvEx9AkGe3lEwGknFO6bUfBanO7JuvMdG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 01 Nov 2023 23:49:47 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
ssp-rtb.sape.ru/adfoxhb
200 OK 11 B IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subject*.sape.ru
FingerprintF9:61:5C:64:81:FD:57:C2:4A:BD:6B:12:D4:7E:02:5E:83:8E:3E:40
ValiditySun, 08 Oct 2023 01:41:50 GMT - Sat, 06 Jan 2024 01:41:49 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 9cc989d2e211083e0a170316914f1d06
392cd18d051f72b887529ac2998da54749f1338f
846949c5a40e3ffbb702473e54dfac0646541aa624a844369b6e24e51ddaf96b
POST /adfoxhb HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 466
Origin: https://newserial.biz
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Cookie: sspuid=CkICRWVC5BspegAcbHkpAipcS2t3eXfCfGO7Az+bxMkBRM+0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Wed, 01 Nov 2023 23:49:47 GMT
Content-Type: application/json
Content-Length: 11
Connection: keep-alive
Access-Control-Allow-Origin: https://newserial.biz
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST
X-YaRequestId: b063890038df4cb5adc3fc22ae1967a7
X-YaSpanId: 8b241096da35c9c5
X-YaTraceId: 437a47958f0f40f497d0704852b5a373
ssp.afp.ai/api/adfox/bids
200 OK 11 B URL POST HTTP/1.1 ssp.afp.ai/api/adfox/bids
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerSectigo Limited
Subject*.afp.ai
Fingerprint6D:78:55:60:8D:74:D7:2E:9F:A5:B1:56:72:76:A6:20:F9:7E:E4:4F
ValidityMon, 23 Oct 2023 00:00:00 GMT - Tue, 24 Sep 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 9cc989d2e211083e0a170316914f1d06
392cd18d051f72b887529ac2998da54749f1338f
846949c5a40e3ffbb702473e54dfac0646541aa624a844369b6e24e51ddaf96b
POST /api/adfox/bids HTTP/1.1
Host: ssp.afp.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 306
Origin: https://newserial.biz
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Wed, 01 Nov 2023 23:49:47 GMT
Content-Type: application/json
Content-Length: 11
Connection: keep-alive
Vary: Origin
Access-Control-Allow-Origin: https://newserial.biz
Access-Control-Allow-Credentials: true
ssp.bidvol.com/rtb/pl999
200 OK 11 B IP
ASN #24940 Hetzner Online GmbH
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subjectssp.bidvol.com
Fingerprint1E:CD:42:30:1C:AD:C5:0E:C0:5F:91:E2:B2:D9:7F:E3:C9:66:25:72
ValidityFri, 13 Oct 2023 12:30:07 GMT - Thu, 11 Jan 2024 12:30:06 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 9cc989d2e211083e0a170316914f1d06
392cd18d051f72b887529ac2998da54749f1338f
846949c5a40e3ffbb702473e54dfac0646541aa624a844369b6e24e51ddaf96b
POST /rtb/pl999 HTTP/1.1
Host: ssp.bidvol.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 464
Origin: https://newserial.biz
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Wed, 01 Nov 2023 23:49:47 GMT
content-type: application/json; charset=utf-8
content-length: 11
x-request-id: 2b85c729-f656-47c3-ad1c-69e71bc2e67a
access-control-allow-origin: https://newserial.biz
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
pragma: no-cache
expires: 0
surrogate-control: no-store
set-cookie: bvuid=j14y1jem1q; Max-Age=2147483647; Domain=.bidvol.com; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT; Secure; SameSite=None
bvuid2=j14y1jem1q; Max-Age=2147483647; Domain=.bidvol.com; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
yhb.p.otm-r.com/yhb
200 OK 11 B IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerGlobalSign nv-sa
Subject*.p.otm-r.com
FingerprintD6:A5:0F:D1:7C:BD:32:44:FA:DC:D7:1C:CE:C3:43:FB:5A:7B:F1:08
ValidityWed, 22 Feb 2023 14:51:57 GMT - Mon, 25 Mar 2024 14:51:56 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 9cc989d2e211083e0a170316914f1d06
392cd18d051f72b887529ac2998da54749f1338f
846949c5a40e3ffbb702473e54dfac0646541aa624a844369b6e24e51ddaf96b
POST /yhb HTTP/1.1
Host: yhb.p.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 464
Origin: https://newserial.biz
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.23.2
date: Wed, 01 Nov 2023 23:49:47 GMT
content-type: text/plain; charset=utf-8
content-length: 11
access-control-allow-credentials: true
access-control-allow-origin: https://newserial.biz
set-cookie: mpid=NjU0MmU0MWIwNTVkZWNmYQ==; Path=/; Domain=otm-r.com; Max-Age=31536000; Secure; SameSite=None
vary: Origin
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=vhd&rnd=1698882587
301 Moved Permanently 0 B URL GET HTTP/2 code.moviead55.ru/go/cinit?cn=vhd&rnd=1698882587
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=vhd&rnd=1698882587 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 01 Nov 2023 23:49:47 GMT
content-length: 0
location: https://a.videohead.tech/sync?ssp=44
set-cookie: sky_uuid=0589707e-d3fc-41eb-f062-5b7cb9e77a35; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
serieslife.online/frndnp.php?ver=1&autoplay=1&v=63474d77d7fcd56e8ed9848f509d1c60&cb=c2215dc5-d162-44eb-9465-d63316ab77d3&fclose=false&sub_id=base&testad=no&nomon=1&cdiv=211&r=https%3A%2F%2Fnewserial.biz%2F4528-kobra-kaj-na12.html&frnd=true&rnd=1698882587581
19 kB URL GET serieslife.online/frndnp.php?ver=1&autoplay=1&v=63474d77d7fcd56e8ed9848f509d1c60&cb=c2215dc5-d162-44eb-9465-d63316ab77d3&fclose=false&sub_id=base&testad=no&nomon=1&cdiv=211&r=https%3A%2F%2Fnewserial.biz%2F4528-kobra-kaj-na12.html&frnd=true&rnd=1698882587581
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBE:44:2C:25:3A:93:45:5F:7C:F1:FE:10:23:23:70:B9:DA:DF:D5:1B
ValidityThu, 26 Jan 2023 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type ASCII text, with very long lines (44473)
Hash f1756882d3485ed389c61969635c4f40
06d50b6d9fc4ecc491038bc6a23df13679d7ffec
a575584efc8a909c7bbc60c0807e0a657f598f650e068496c8c3ac93df9ba2c1
GET /frndnp.php?ver=1&autoplay=1&v=63474d77d7fcd56e8ed9848f509d1c60&cb=c2215dc5-d162-44eb-9465-d63316ab77d3&fclose=false&sub_id=base&testad=no&nomon=1&cdiv=211&r=https%3A%2F%2Fnewserial.biz%2F4528-kobra-kaj-na12.html&frnd=true&rnd=1698882587581 HTTP/1.1
Host: serieslife.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 01 Nov 2023 23:49:47 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-cache: Yac
x-movieads-country: NO
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fWMBxbSXf3pqlFWPhZvT8O150Q4ayGy77W4hCOig40Kf6VE5n5yhB5fpMwNUgEHDDR5bxXeMkPh3OKnTiIoZ1921G4nKINCVByMkYtr8Ff6GqihTg4mUpBzABbPUwXudZow5Ng%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81f8094d9b2a56c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
exchange.buzzoola.com/ssp/adfox
307 Temporary Redirect 0 B URL POST HTTP/2 exchange.buzzoola.com/ssp/adfox
IP
ASN #24940 Hetzner Online GmbH
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerSectigo Limited
Subject*.buzzoola.com
FingerprintE6:7F:94:98:CF:E4:CF:88:C7:8C:FC:16:A3:D7:D0:10:4E:EC:AB:F1
ValidityMon, 04 Sep 2023 00:00:00 GMT - Fri, 04 Oct 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ssp/adfox HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 468
Origin: https://newserial.biz
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 307 Temporary Redirect
server: nginx
date: Wed, 01 Nov 2023 23:49:43 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: Set-Cookie, X-Alt-Referer, X-First-Party-Cookie, If-None-Match
access-control-allow-origin: https://newserial.biz
access-control-expose-headers: Set-Cookie, Etag
location: /ssp/adfox?set_buzzoola_cookie=t
set-cookie: uuid=855751bb-74fd-4cc9-515d-db541d3605b3; Path=/; Domain=exchange.buzzoola.com; Expires=Fri, 01 Dec 2023 23:49:43 GMT; Max-Age=2592000; Secure; SameSite=None
serverid: TODO
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=solta&rnd=1698882587
301 Moved Permanently 0 B URL GET HTTP/2 code.moviead55.ru/go/cinit?cn=solta&rnd=1698882587
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=solta&rnd=1698882587 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 01 Nov 2023 23:49:47 GMT
content-length: 0
location: https://kimberlite.io/rtb/sync/skyadvert?u=2930ec4c-df73-0948-da9c-744b5c1e7d98
set-cookie: sky_uuid=2930ec4c-df73-0948-da9c-744b5c1e7d98; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=btwcookie&rnd=1698882587
301 Moved Permanently 0 B URL GET HTTP/2 code.moviead55.ru/go/cinit?cn=btwcookie&rnd=1698882587
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=btwcookie&rnd=1698882587 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 01 Nov 2023 23:49:48 GMT
content-length: 0
location: https://ads.betweendigital.com/match?bidder_id=34348&callback_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dbtwcookie%26bid%3D%24%7BUSER_ID%7D
set-cookie: sky_uuid=4175b870-cbe5-49ba-b92f-667738383d5a; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=ohmybid&rnd=1698882587
301 Moved Permanently 0 B URL GET HTTP/2 code.moviead55.ru/go/cinit?cn=ohmybid&rnd=1698882587
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=ohmybid&rnd=1698882587 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 01 Nov 2023 23:49:48 GMT
content-length: 0
location: https://match.ohmy.bid/cm?ssp=skyadv&redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dohmybid%26bid%3D%24%7BUUID%7D
set-cookie: sky_uuid=e7fa2d64-9a9b-02f6-3a32-ba60f8416f68; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=hbrdcookie2&rnd=1698882587
301 Moved Permanently 0 B URL GET HTTP/2 code.moviead55.ru/go/cinit?cn=hbrdcookie2&rnd=1698882587
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=hbrdcookie2&rnd=1698882587 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 01 Nov 2023 23:49:48 GMT
content-length: 0
location: https://dm-eu.hybrid.ai/match?id=185&burl=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dhbrdcookie2%26bid%3D%24%7BVID%7D
set-cookie: sky_uuid=aac1705a-787a-099b-41d5-15706eb78883; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=otmbid&rnd=1698882587
301 Moved Permanently 0 B URL GET HTTP/2 code.moviead55.ru/go/cinit?cn=otmbid&rnd=1698882587
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=otmbid&rnd=1698882587 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 01 Nov 2023 23:49:48 GMT
content-length: 0
location: https://sync.dmp.otm-r.com/match/skyadvert
set-cookie: sky_uuid=ae96241d-86e6-85ef-5ece-d679f9f481bb; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=bzcookie&rnd=1698882587
301 Moved Permanently 0 B URL GET HTTP/2 code.moviead55.ru/go/cinit?cn=bzcookie&rnd=1698882587
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=bzcookie&rnd=1698882587 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 01 Nov 2023 23:49:48 GMT
content-length: 0
location: https://exchange.buzzoola.com/cookiesync/redirect/skyadvert?redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dbzcookie%26bid%3D%24%7BUUID%7D
set-cookie: sky_uuid=174698ac-b9d6-fb98-f0b5-988663899ae7; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=gonetbid&rnd=1698882587
301 Moved Permanently 0 B URL GET HTTP/2 code.moviead55.ru/go/cinit?cn=gonetbid&rnd=1698882587
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=gonetbid&rnd=1698882587 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 01 Nov 2023 23:49:48 GMT
content-length: 0
location: https://sync.gonet-ads.com/match/SkyAdvert?id=e241f11a-3f95-69ea-3fba-ca1045e8f1d6
set-cookie: sky_uuid=e241f11a-3f95-69ea-3fba-ca1045e8f1d6; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=sapecookie&rnd=1698882587
301 Moved Permanently 0 B URL GET HTTP/2 code.moviead55.ru/go/cinit?cn=sapecookie&rnd=1698882587
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=sapecookie&rnd=1698882587 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 01 Nov 2023 23:49:48 GMT
content-length: 0
location: https://www.acint.net/rmatch?dp=167&euid=b5894ce1-2074-5cec-5e87-a530b4c43475&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D%24%7BUSER_ID%7D
set-cookie: sky_uuid=b5894ce1-2074-5cec-5e87-a530b4c43475; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
code.moviead55.ru/go/cinit?cn=otclkbid&rnd=1698882587
301 Moved Permanently 0 B URL GET HTTP/2 code.moviead55.ru/go/cinit?cn=otclkbid&rnd=1698882587
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=otclkbid&rnd=1698882587 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 01 Nov 2023 23:49:48 GMT
content-length: 0
location: https://otclick-adv.ru/core/match.gif?s=30&reference=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dotclkbid%26bid%3D%23%7BUID%7D
set-cookie: sky_uuid=eabf35c5-fe56-a849-d214-d377ed5aa8d3; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
www.acint.net/rmatch?dp=167&euid=b5894ce1-2074-5cec-5e87-a530b4c43475&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D%24%7BUSER_ID%7D
302 Found 154 B URL GET HTTP/2 www.acint.net/rmatch?dp=167&euid=b5894ce1-2074-5cec-5e87-a530b4c43475&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D%24%7BUSER_ID%7D
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint10:D0:B1:ED:4E:38:04:67:F3:89:8C:ED:7E:E6:3D:19:1C:1C:89:EB
ValidityWed, 11 Oct 2023 01:51:47 GMT - Tue, 09 Jan 2024 01:51:46 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=167&euid=b5894ce1-2074-5cec-5e87-a530b4c43475&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWVC5BtBTiyfvEx9AkGe3lEwGknFO6bUfBanO7JuvMdG; cSyncDp14v5=1698882588; cSyncDp17v2=1698882588; cSyncDp45v5=1698882588; cSyncDp53v5=1698882588; cSyncDp62v2=1698882588; cSyncDp67v3=1698882588; cSyncDp68v2=1698882588; cSyncDp71v2=1698882588; cSyncDp80v2=1698882588; cSyncDp85v2=1698882588; cSyncDp95v4=1698882588; cSyncDp98v3=1698882588; cSyncDp104v2=1698882588; cSyncDp107v2=1698882588; cSyncDp110v3=1698882588; cSyncDp125v4=1698882588; cSyncDp126v2=1698882588; cSyncDp127v2=1698882588; cSyncDp129v2=1698882588; cSyncDp136v3=1698882588; cSyncDp146v2=1698882588; cSyncDp148v2=1698882588; cSyncDp149v3=1698882588; cSyncDp151v2=1698882588; cSyncDp178v2=1698882588; cSyncDp186v2=1698882588; cSyncDp217v2=1698882588; cSyncDp221v2=1698882588; cSyncDp235v2=1698882588; cSyncDp239v2=1698882588; cSyncDp243v2=1698882588; cSyncDp260v2=1698882588; cSyncDp244v2=1698882588; cSyncDp248v2=1698882588; cSyncDp261v1=1698882588
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: text/html
content-length: 154
location: https://ssp-rtb.sape.ru/rmatch?r=https%3A%2F%2Facint.net%2Frmatch%3Fdp%3D14%26euid%3D$%7BUSER_ID%7D%26r%3Dhttps%253A%252F%252Fcode.moviead55.ru%252Fgo%252Fcsync%253Fcn%253Dsapecookie%2526bid%253D%2524%257BUSER_ID%257D&dp=14
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
set-cookie: cSyncDp14v4=1698882588; expires=Fri, 01-Dec-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
logger.moviead55.ru/logger.php?t=js_error_pl2&c=c2215dc5-d162-44eb-9465-d63316ab77d3&a=&m=%7B%22message%22%3A%7B%22isTrusted%22%3Atrue%7D%2C%22col%22%3A%22undefined%22%2C%22error%22%3A%22undefined%22%2C%22ua%22%3A%22Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0%22%7D&v=63474d77d7fcd56e8ed9848f509d1c60&o=
200 OK 207 B URL GET HTTP/2 logger.moviead55.ru/logger.php?t=js_error_pl2&c=c2215dc5-d162-44eb-9465-d63316ab77d3&a=&m=%7B%22message%22%3A%7B%22isTrusted%22%3Atrue%7D%2C%22col%22%3A%22undefined%22%2C%22error%22%3A%22undefined%22%2C%22ua%22%3A%22Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0%22%7D&v=63474d77d7fcd56e8ed9848f509d1c60&o=
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
File type gzip compressed data, from Unix\012- data
Hash c6fab5f4a58281aec21eff0da396489b
cd07f9c92ce8f24370d0a70118a1048642c3558c
dbd65be22e8406a76979933e7d80fb4b8a213c729b94004a0c1428e205c658fa
GET /logger.php?t=js_error_pl2&c=c2215dc5-d162-44eb-9465-d63316ab77d3&a=&m=%7B%22message%22%3A%7B%22isTrusted%22%3Atrue%7D%2C%22col%22%3A%22undefined%22%2C%22error%22%3A%22undefined%22%2C%22ua%22%3A%22Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0%22%7D&v=63474d77d7fcd56e8ed9848f509d1c60&o= HTTP/1.1
Host: logger.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: Content-Type: image/png
vary: Accept-Encoding
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
a.videohead.tech/sync?ssp=44
204 No Content 0 B URL GET HTTP/2 a.videohead.tech/sync?ssp=44
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerGoogle Trust Services LLC
Subjectvideohead.tech
Fingerprint83:BF:34:90:63:92:42:31:3C:8D:B3:1D:72:01:03:30:5F:31:85:F4
ValidityThu, 28 Sep 2023 11:14:34 GMT - Wed, 27 Dec 2023 11:14:33 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=44 HTTP/1.1
Host: a.videohead.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: text/plain
set-cookie: prevhead=1; Expires=Fri, 01 Dec 2023 23:49:48 GMT; Domain=videohead.tech; SameSite=None; Secure; Path=/
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jF5FISctqTcehcu08%2FhPqmveILbIjrHPOliutkvkWDoQVe5nZRmqu54GTpoxkK2J2eKYkusXMvvUGsngG%2B7VWs33%2B0n4t4V9%2FxFK%2FmdZCWbdhf0rVYfy6c2LD4TT75yrEIBI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81f80950ad0156c5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ssp-rtb.sape.ru/rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D
302 Moved Temporarily 142 B URL GET HTTP/1.1 ssp-rtb.sape.ru/rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D
IP
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerLet's Encrypt
Subject*.sape.ru
FingerprintF9:61:5C:64:81:FD:57:C2:4A:BD:6B:12:D4:7E:02:5E:83:8E:3E:40
ValiditySun, 08 Oct 2023 01:41:50 GMT - Sat, 06 Jan 2024 01:41:49 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Cookie: sspuid=CkICRWVC5BspegAcbHkpAipcS2t3eXfCfGO7Az+bxMkBRM+0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Wed, 01 Nov 2023 23:49:48 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
P3P: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Location: https://acint.net/match?dp=14&euid=4502420A1BE442651C007A290229796C
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
dm-eu.hybrid.ai/match?id=185&burl=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dhbrdcookie2%26bid%3D%24%7BVID%7D
302 Found 0 B URL GET HTTP/2 dm-eu.hybrid.ai/match?id=185&burl=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dhbrdcookie2%26bid%3D%24%7BVID%7D
IP
ASN #58272 LeaderTelecom B.V.
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerSectigo Limited
Subject*.hybrid.ai
Fingerprint40:F9:88:C5:EF:2B:26:9C:61:DC:CC:ED:B1:67:03:F4:E2:CC:B7:C8
ValidityThu, 14 Sep 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?id=185&burl=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dhbrdcookie2%26bid%3D%24%7BVID%7D HTTP/1.1
Host: dm-eu.hybrid.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Wed, 01 Nov 2023 23:49:48 GMT
content-length: 0
cache-control: no-cache, no-store
pragma: no-cache
expires: -1
location: https://code.moviead55.ru/go/csync?cn=hbrdcookie2&bid=2dbad00c49345906554d
set-cookie: vid=2dbad00c49345906554d; Expires=Thu, 31 Oct 2024 23:49:46 GMT; Domain=.hybrid.ai; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC"
x-mode: 531
x-xss-protection: 1; mode=block
access-control-allow-origin: https://newserial.biz
access-control-allow-credentials: true
server: Hybrid Web Server
X-Firefox-Spdy: h2
a.utraff.com/sync?ssp=8&id=0100007F1BE442659F2C4E41027D4CBC
204 No Content 0 B URL GET HTTP/2 a.utraff.com/sync?ssp=8&id=0100007F1BE442659F2C4E41027D4CBC
IP
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerGoogle Trust Services LLC
Subjectutraff.com
Fingerprint65:F0:CB:A7:9C:1E:18:8C:D9:DE:5B:4C:46:9E:79:3E:78:F1:B0:CD
ValidityThu, 12 Oct 2023 03:40:45 GMT - Wed, 10 Jan 2024 03:40:44 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=8&id=0100007F1BE442659F2C4E41027D4CBC HTTP/1.1
Host: a.utraff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: text/plain
set-cookie: preutid=1; Expires=Sat, 02 Dec 2023 00:49:48 GMT; Domain=.itraff.net; SameSite=None; Secure; Path=/
preutid=1; Expires=Sat, 02 Dec 2023 00:49:48 GMT; Domain=.utraff.com; SameSite=None; Secure; Path=/
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=feYhPJ8b4szZ2poUoCg7gvcT04GwKqbk2pWgHfIHnpqz4KGmwuYoqFUnXpXkVZFA7L%2Fv9J%2BG9txEyCuzHrYs%2FSMPwAFA9%2BeNxVRIMpKzS1cZwokfsFOGYFIwiL4ki%2F4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81f80951187c56c3-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.moviead55.ru/mp_dist/mstream2.js?v5426584485
200 OK 57 kB URL GET HTTP/2 static.moviead55.ru/mp_dist/mstream2.js?v5426584485
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerGoogle Trust Services LLC
Subjectmoviead55.ru
Fingerprint19:6B:41:0B:45:51:55:C3:C7:9D:31:5D:27:0C:80:2B:1D:67:1B:21
ValidityTue, 19 Sep 2023 16:04:48 GMT - Mon, 18 Dec 2023 16:04:47 GMT
File type Unicode text, UTF-8 text, with very long lines (65091), with no line terminators
Hash ec0cd83222fd0f5b7a626612ec4f49a8
9209ace22be1a57e2ef5d02f1ce7983da16fb760
a95d4de81a2bff5c41b023164fb88d1cd03245f2e475a2b8c516a86b94fecdb6
GET /mp_dist/mstream2.js?v5426584485 HTTP/1.1
Host: static.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: application/javascript
last-modified: Tue, 31 Oct 2023 13:56:45 GMT
vary: Accept-Encoding
etag: W/"6541079d-287fd"
x-movieads-country: LT
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-max-age: 1728000
cache-control: max-age=7200
cf-cache-status: HIT
age: 6765
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ixXutAsG7eKj8WKaireFvOOvE5WrxhfkqhDEF0PM43jpBBtThmFVlLhI456SVmPwVZDxLr9kgA8mnEkeEZDfo%2BS%2BFCDkn6EITaXfg4lXLiADaF2QqDFcBpYulfbJE%2B7tmcIejjK7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81f8094ffe5956aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
dm-eu.hybrid.ai/match?id=106&vid=0100007F1BE442659F2C4E41027D4CBC
204 No Content 0 B URL GET HTTP/2 dm-eu.hybrid.ai/match?id=106&vid=0100007F1BE442659F2C4E41027D4CBC
IP
ASN #58272 LeaderTelecom B.V.
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerSectigo Limited
Subject*.hybrid.ai
Fingerprint40:F9:88:C5:EF:2B:26:9C:61:DC:CC:ED:B1:67:03:F4:E2:CC:B7:C8
ValidityThu, 14 Sep 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?id=106&vid=0100007F1BE442659F2C4E41027D4CBC HTTP/1.1
Host: dm-eu.hybrid.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Wed, 01 Nov 2023 23:49:48 GMT
cache-control: no-cache, no-store
pragma: no-cache
expires: -1
set-cookie: vid=78e3ac7c1624eec76646; Expires=Thu, 31 Oct 2024 23:49:46 GMT; Domain=.hybrid.ai; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC"
x-mode: 522
x-xss-protection: 1; mode=block
access-control-allow-origin: https://www.acint.net
access-control-allow-credentials: true
server: Hybrid Web Server
X-Firefox-Spdy: h2
sync.dmp.otm-r.com/match/skyadvert
204 No Content 0 B URL GET HTTP/2 sync.dmp.otm-r.com/match/skyadvert
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerGlobalSign nv-sa
Subject*.dmp.otm-r.com
FingerprintC6:A2:9D:82:0D:D1:C1:2D:A4:ED:7F:05:13:52:5B:94:6B:10:58:D6
ValidityMon, 19 Jun 2023 10:50:51 GMT - Sat, 20 Jul 2024 10:50:50 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/skyadvert HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
server: nginx/1.23.2
date: Wed, 01 Nov 2023 23:49:48 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
sync.dmp.otm-r.com/match/sape?id=0100007F1BE442659F2C4E41027D4CBC
204 No Content 0 B URL GET HTTP/2 sync.dmp.otm-r.com/match/sape?id=0100007F1BE442659F2C4E41027D4CBC
IP
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerGlobalSign nv-sa
Subject*.dmp.otm-r.com
FingerprintC6:A2:9D:82:0D:D1:C1:2D:A4:ED:7F:05:13:52:5B:94:6B:10:58:D6
ValidityMon, 19 Jun 2023 10:50:51 GMT - Sat, 20 Jul 2024 10:50:50 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/sape?id=0100007F1BE442659F2C4E41027D4CBC HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: nginx/1.23.2
date: Wed, 01 Nov 2023 23:49:48 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
exchange.buzzoola.com/cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D
301 Moved Permanently 115 B URL GET HTTP/2 exchange.buzzoola.com/cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerSectigo Limited
Subject*.buzzoola.com
FingerprintE6:7F:94:98:CF:E4:CF:88:C7:8C:FC:16:A3:D7:D0:10:4E:EC:AB:F1
ValidityMon, 04 Sep 2023 00:00:00 GMT - Fri, 04 Oct 2024 23:59:59 GMT
File type HTML document, ASCII text
Hash 2964aa07556635003efc62fdb6f5a78f
deff606d78db7ca8ca5b4f786ae97a3f2c12ba82
4175b95e7aef9b4b3b9ec035df114d5fef4ab7f417fdc6cb47cb1f1835cb095b
GET /cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: text/html; charset=utf-8
content-length: 115
location: https://www.acint.net/match?dp=126&euid=8e2a50c7-58c1-4ba0-571c-13db4e79aaa9
serverid: TODO
X-Firefox-Spdy: h2
match.ohmy.bid/cm?ssp=sape&redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D217%26euid%3D%7Buid%7D
302 Found 0 B URL GET HTTP/2 match.ohmy.bid/cm?ssp=sape&redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D217%26euid%3D%7Buid%7D
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerLet's Encrypt
Subjectmatch.ohmy.bid
FingerprintDA:86:2D:C7:4E:FA:8F:4E:F9:AA:8D:53:23:CE:5A:22:F9:EC:94:A8
ValidityMon, 25 Sep 2023 15:58:46 GMT - Sun, 24 Dec 2023 15:58:45 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?ssp=sape&redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D217%26euid%3D%7Buid%7D HTTP/1.1
Host: match.ohmy.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Wed, 01 Nov 2023 23:49:48 GMT
content-length: 0
bidder: bid-02
location: https://www.acint.net/match?dp=217&euid=5482c8fe-1f2b-4759-a085-ae6d2bc5bef9
set-cookie: uid=5482c8fe-1f2b-4759-a085-ae6d2bc5bef9.6542e41c.b56e3ee5e79d57da; domain=.ohmy.bid; path=/; expires=Fri, 01-Dec-2023 23:49:48 GMT; SameSite=None; Secure;
access-control-allow-credentials: true
X-Firefox-Spdy: h2
match.ohmy.bid/cm?ssp=skyadv&redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dohmybid%26bid%3D%24%7BUUID%7D
302 Found 0 B URL GET HTTP/2 match.ohmy.bid/cm?ssp=skyadv&redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dohmybid%26bid%3D%24%7BUUID%7D
IP
ASN #24940 Hetzner Online GmbH
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subjectmatch.ohmy.bid
FingerprintDA:86:2D:C7:4E:FA:8F:4E:F9:AA:8D:53:23:CE:5A:22:F9:EC:94:A8
ValidityMon, 25 Sep 2023 15:58:46 GMT - Sun, 24 Dec 2023 15:58:45 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?ssp=skyadv&redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dohmybid%26bid%3D%24%7BUUID%7D HTTP/1.1
Host: match.ohmy.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Wed, 01 Nov 2023 23:49:48 GMT
content-length: 0
bidder: bid-15
location: https://code.moviead55.ru/go/csync?cn=ohmybid&bid=87f8ef00-ea27-4a04-841f-938cfbeaa703
set-cookie: uid=87f8ef00-ea27-4a04-841f-938cfbeaa703.6542e41c.e3a1ca559adb5a01; domain=.ohmy.bid; path=/; expires=Fri, 01-Dec-2023 23:49:48 GMT; SameSite=None; Secure;
access-control-allow-credentials: true
X-Firefox-Spdy: h2
s.ccsyncuuid.net/match/5/?remote_uid=0100007F1BE442659F2C4E41027D4CBC
302 Found 0 B URL GET HTTP/2 s.ccsyncuuid.net/match/5/?remote_uid=0100007F1BE442659F2C4E41027D4CBC
IP
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerLet's Encrypt
Subjectccsyncuuid.net
Fingerprint30:BF:5C:85:15:64:06:16:CF:28:48:B8:1C:30:7F:D5:A7:CD:67:7C
ValidityMon, 11 Sep 2023 06:10:10 GMT - Sun, 10 Dec 2023 06:10:09 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/5/?remote_uid=0100007F1BE442659F2C4E41027D4CBC HTTP/1.1
Host: s.ccsyncuuid.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Wed, 01 Nov 2023 23:49:48 GMT
content-length: 0
location: https://acint.net/match?dp=80&euid=FuPVF9gU4wC3GfMnDbTT
set-cookie: jcsuuid=FuPVF9gU4wC3GfMnDbTT; expires=Thu, 31 Oct 2024 23:49:48 GMT; domain=ccsyncuuid.net; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
ssp.afp.ai/api/sync/sape
302 Found 0 B IP
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerSectigo Limited
Subject*.afp.ai
Fingerprint6D:78:55:60:8D:74:D7:2E:9F:A5:B1:56:72:76:A6:20:F9:7E:E4:4F
ValidityMon, 23 Oct 2023 00:00:00 GMT - Tue, 24 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/sync/sape HTTP/1.1
Host: ssp.afp.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.20.1
Date: Wed, 01 Nov 2023 23:49:48 GMT
Content-Length: 0
Connection: keep-alive
Vary: Origin
Access-Control-Allow-Origin:
Access-Control-Allow-Credentials: true
Location: https://www.acint.net/match?dp=261&euid=9c74f253-449c-45c9-a803-17fccdc2e037
Set-Cookie: afp_cookie=gAAAAABlQuQcSayzEsHrgHZX1X5lRdUhlUhvb-i59tM1mS2RY_wtgR1o-Da15Tw7y1cB4A8B4d1RGaSvwjqanA6lmaN3gS7AyDo6pWk-3pLv9FA322IQ1pQ6EBFXIKOk_fuqhEvN8QilK3jAdgItlMbwjBKw1pXTXWOfRVjFgPjyJ45xx0qU8lilW6rSdIVyglJuBzQwcKjI$; expires=Fri, 01 Dec 2023 23:49:48 GMT; path=/; secure; SameSite=None
sync.adspend.space/sape?uid=0100007F1BE442659F2C4E41027D4CBC
302 Found 149 B URL GET HTTP/2 sync.adspend.space/sape?uid=0100007F1BE442659F2C4E41027D4CBC
IP
ASN #50340 OOO Network of data-centers Selectel
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerLet's Encrypt
Subject*.adspend.space
FingerprintD2:A9:45:D9:7D:4F:04:B2:D9:24:CC:62:7C:3B:4A:4E:C5:5C:CD:24
ValidityTue, 29 Aug 2023 13:03:53 GMT - Mon, 27 Nov 2023 13:03:52 GMT
File type HTML document, ASCII text
Hash aaefc15f0bc2a6db78d090fc0e92f08a
4fd4cdd590778e319e73226af066ac0415c3cc00
d33ac23c476cb400453a604cdc0dee61571d2e5474eef0ff5205d22b480ea600
GET /sape?uid=0100007F1BE442659F2C4E41027D4CBC HTTP/1.1
Host: sync.adspend.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.22.1
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: text/html; charset=utf-8
content-length: 149
location: https://sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3D5201228e-5a33-4049-836a-946fc728a817
set-cookie: as-user=5201228e-5a33-4049-836a-946fc728a817; Path=/; Max-Age=31536000; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
s.uuidksinc.net/match/396/?remote_uid=0100007F1BE442659F2C4E41027D4CBC
302 Found 0 B URL GET HTTP/2 s.uuidksinc.net/match/396/?remote_uid=0100007F1BE442659F2C4E41027D4CBC
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerLet's Encrypt
Subjectuuidksinc.net
Fingerprint1F:73:92:46:79:03:20:9A:6A:E0:6C:8D:59:77:57:10:54:4D:B7:10
ValiditySun, 10 Sep 2023 23:20:21 GMT - Sat, 09 Dec 2023 23:20:20 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/396/?remote_uid=0100007F1BE442659F2C4E41027D4CBC HTTP/1.1
Host: s.uuidksinc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.23.2
date: Wed, 01 Nov 2023 23:49:48 GMT
content-length: 0
location: https://www.acint.net/match?dp=127&euid=lT9wSLYCsP392SyVv65S
set-cookie: jcsuuid=lT9wSLYCsP392SyVv65S; expires=Thu, 31 Oct 2024 23:49:48 GMT; domain=uuidksinc.net; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
match.new-programmatic.com/userbind?src=sape&id=0100007F1BE442659F2C4E41027D4CBC
204 No Content 0 B URL GET HTTP/1.1 match.new-programmatic.com/userbind?src=sape&id=0100007F1BE442659F2C4E41027D4CBC
IP
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerLet's Encrypt
Subjectad.ad-blast.ru
FingerprintF3:B7:15:BC:2F:A8:7D:5A:73:CB:BC:43:B8:4C:EA:11:17:2B:7A:34
ValiditySat, 07 Oct 2023 18:59:50 GMT - Fri, 05 Jan 2024 18:59:49 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userbind?src=sape&id=0100007F1BE442659F2C4E41027D4CBC HTTP/1.1
Host: match.new-programmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.22.1
Date: Wed, 01 Nov 2023 23:49:48 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin
sync.bumlam.com/?src=sap1&uid=0100007F1BE442659F2C4E41027D4CBC
302 Moved Temporarily 0 B URL GET HTTP/1.1 sync.bumlam.com/?src=sap1&uid=0100007F1BE442659F2C4E41027D4CBC
IP
ASN #44066 diva-e Datacenters GmbH
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerLet's Encrypt
Subject*.bumlam.com
Fingerprint08:E4:EB:78:69:AA:1C:77:24:F5:D4:0F:6C:52:FC:A6:D3:74:90:D0
ValidityMon, 16 Oct 2023 05:30:36 GMT - Sun, 14 Jan 2024 05:30:35 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sap1&uid=0100007F1BE442659F2C4E41027D4CBC HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Wed, 01 Nov 2023 23:49:48 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiQ1NzhkOTJhZS03OTExLTExZWUtODZlMC0wMDI1OTBjMDY0N2M*; Path=/; Expires=Tue, 27 Oct 2043 23:49:48 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: //sync.bumlam.com/?src=sap1&s_data=CAIQARicyIuqBmIgMDEwMDAwN0YxQkU0NDI2NTlGMkM0RTQxMDI3RDRDQkOiARBXjZKueRER7obgACWQwGR8
ETag: 578d92ae-7911-11ee-86e0-002590c0647c
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
www.acint.net/mc/?dp=167
200 OK 1.4 kB IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint10:D0:B1:ED:4E:38:04:67:F3:89:8C:ED:7E:E6:3D:19:1C:1C:89:EB
ValidityWed, 11 Oct 2023 01:51:47 GMT - Tue, 09 Jan 2024 01:51:46 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 13cc427ab5fd0f1cd737fd0e852c9f4f
9445e11db8bdb062d80980b7f2cb2c6729c38e34
ada5dbf8884db6b965dd8e92a053becbfc18d1823e94789978c2a5be1115233a
GET /mc/?dp=167 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWVC5BtBTiyfvEx9AkGe3lEwGknFO6bUfBanO7JuvMdG
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: text/html
set-cookie: cSyncDp14v5=1698882588; expires=Fri, 01-Dec-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp17v2=1698882588; expires=Fri, 01-Dec-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp45v5=1698882588; expires=Thu, 02-Nov-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp53v5=1698882588; expires=Fri, 01-Dec-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp62v2=1698882588; expires=Fri, 01-Dec-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp67v3=1698882588; expires=Fri, 01-Dec-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp68v2=1698882588; expires=Fri, 01-Dec-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp71v2=1698882588; expires=Fri, 01-Dec-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp80v2=1698882588; expires=Fri, 01-Dec-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp85v2=1698882588; expires=Fri, 01-Dec-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp95v4=1698882588; expires=Fri, 01-Dec-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp98v3=1698882588; expires=Fri, 01-Dec-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp104v2=1698882588; expires=Wed, 15-Nov-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp107v2=1698882588; expires=Fri, 01-Dec-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp110v3=1698882588; expires=Fri, 01-Dec-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp125v4=1698882588; expires=Thu, 16-Nov-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp126v2=1698882588; expires=Fri, 01-Dec-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp127v2=1698882588; expires=Fri, 01-Dec-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp129v2=1698882588; expires=Fri, 01-Dec-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp136v3=1698882588; expires=Fri, 01-Dec-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp146v2=1698882588; expires=Fri, 01-Dec-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp148v2=1698882588; expires=Fri, 01-Dec-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp149v3=1698882588; expires=Fri, 01-Dec-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp151v2=1698882588; expires=Fri, 01-Dec-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp178v2=1698882588; expires=Fri, 01-Dec-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp186v2=1698882588; expires=Fri, 01-Dec-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp217v2=1698882588; expires=Fri, 01-Dec-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp221v2=1698882588; expires=Fri, 01-Dec-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp235v2=1698882588; expires=Fri, 01-Dec-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp239v2=1698882588; expires=Fri, 01-Dec-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp243v2=1698882588; expires=Fri, 01-Dec-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp260v2=1698882588; expires=Fri, 01-Dec-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp244v2=1698882588; expires=Fri, 01-Dec-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp248v2=1698882588; expires=Fri, 01-Dec-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp261v1=1698882588; expires=Fri, 01-Dec-23 23:49:48 GMT; path=/; Secure; SameSite=None; domain=.acint.net
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
content-encoding: gzip
X-Firefox-Spdy: h2
pix.bumlam.com/sync/sape/check?sspuid=0100007F1BE442659F2C4E41027D4CBC
302 Found 0 B URL GET HTTP/1.1 pix.bumlam.com/sync/sape/check?sspuid=0100007F1BE442659F2C4E41027D4CBC
IP
ASN #44066 diva-e Datacenters GmbH
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerLet's Encrypt
Subject*.bumlam.com
Fingerprint08:E4:EB:78:69:AA:1C:77:24:F5:D4:0F:6C:52:FC:A6:D3:74:90:D0
ValidityMon, 16 Oct 2023 05:30:36 GMT - Sun, 14 Jan 2024 05:30:35 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/sape/check?sspuid=0100007F1BE442659F2C4E41027D4CBC HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Wed, 01 Nov 2023 23:49:48 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://sync.bumlam.com/?src=sape
sync.upravel.com/sape/sync
302 Found 0 B URL GET HTTP/2 sync.upravel.com/sape/sync
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerGlobalSign nv-sa
Subject*.upravel.com
Fingerprint4C:ED:03:57:58:43:18:2C:CC:41:F3:3B:19:72:75:BD:29:C1:04:08
ValiditySat, 29 Apr 2023 07:48:21 GMT - Thu, 30 May 2024 07:48:20 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/sync HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: image/png
content-length: 0
location: https://sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
set-cookie: session_tptc=1698882588567;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
session_tptc-legacy=1698882588567;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
ssp-rtb.sape.ru/rmatch?r=https%3A%2F%2Facint.net%2Frmatch%3Fdp%3D14%26euid%3D$%7BUSER_ID%7D%26r%3Dhttps%253A%252F%252Fcode.moviead55.ru%252Fgo%252Fcsync%253Fcn%253Dsapecookie%2526bid%253D%2524%257BUSER_ID%257D&dp=14
302 Moved Temporarily 142 B URL GET HTTP/1.1 ssp-rtb.sape.ru/rmatch?r=https%3A%2F%2Facint.net%2Frmatch%3Fdp%3D14%26euid%3D$%7BUSER_ID%7D%26r%3Dhttps%253A%252F%252Fcode.moviead55.ru%252Fgo%252Fcsync%253Fcn%253Dsapecookie%2526bid%253D%2524%257BUSER_ID%257D&dp=14
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subject*.sape.ru
FingerprintF9:61:5C:64:81:FD:57:C2:4A:BD:6B:12:D4:7E:02:5E:83:8E:3E:40
ValiditySun, 08 Oct 2023 01:41:50 GMT - Sat, 06 Jan 2024 01:41:49 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /rmatch?r=https%3A%2F%2Facint.net%2Frmatch%3Fdp%3D14%26euid%3D$%7BUSER_ID%7D%26r%3Dhttps%253A%252F%252Fcode.moviead55.ru%252Fgo%252Fcsync%253Fcn%253Dsapecookie%2526bid%253D%2524%257BUSER_ID%257D&dp=14 HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Cookie: sspuid=CkICRWVC5BspegAcbHkpAipcS2t3eXfCfGO7Az+bxMkBRM+0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Wed, 01 Nov 2023 23:49:48 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
P3P: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Location: https://acint.net/rmatch?dp=14&euid=4502420A1BE442651C007A290229796C&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D%24%7BUSER_ID%7D
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
code.moviead55.ru/go/csync?cn=bzcookie&bid=e3aa4c19-2582-4638-4d1b-d01bf4449210
200 OK 0 B URL GET HTTP/2 code.moviead55.ru/go/csync?cn=bzcookie&bid=e3aa4c19-2582-4638-4d1b-d01bf4449210
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=bzcookie&bid=e3aa4c19-2582-4638-4d1b-d01bf4449210 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Cookie: sky_uuid=eabf35c5-fe56-a849-d214-d377ed5aa8d3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: image/jpeg
content-length: 0
set-cookie: bzcookie=e3aa4c19-2582-4638-4d1b-d01bf4449210; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
sync.programmatica.com/match/01
200 OK 43 B URL GET HTTP/2 sync.programmatica.com/match/01
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerGlobalSign nv-sa
Subject*.programmatica.com
FingerprintE4:B6:ED:A7:02:18:8C:3F:D0:A3:8D:04:EE:40:21:0A:0E:83:D1:D6
ValidityThu, 15 Dec 2022 17:05:13 GMT - Tue, 16 Jan 2024 17:05:12 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/01 HTTP/1.1
Host: sync.programmatica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
nr.bidderstack.com/sape/cm?user_id=0100007F1BE442659F2C4E41027D4CBC
302 Found 0 B URL GET HTTP/1.1 nr.bidderstack.com/sape/cm?user_id=0100007F1BE442659F2C4E41027D4CBC
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerGoDaddy.com, Inc.
Subject*.bidderstack.com
Fingerprint88:0D:CE:79:C4:DA:79:3B:37:94:98:4A:1A:FA:19:D3:62:A5:B9:84
ValiditySun, 20 Nov 2022 07:16:28 GMT - Sat, 18 Nov 2023 12:58:37 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/cm?user_id=0100007F1BE442659F2C4E41027D4CBC HTTP/1.1
Host: nr.bidderstack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Wed, 01 Nov 2023 23:49:48 GMT
Content-Length: 0
Connection: keep-alive
Location: /sape/cm?user_id=0100007F1BE442659F2C4E41027D4CBC&pupa=1
Set-Cookie: pupa=4096b3dc-c011-21bb-e069-92664b67f354; domain=.bidderstack.com; path=/; expires=Thu, 31-Oct-2024 23:49:48 GMT;
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
cs.agency2.ru/p?ssp=sp&uid=0100007F1BE442659F2C4E41027D4CBC
301 Moved Permanently 0 B URL GET HTTP/1.1 cs.agency2.ru/p?ssp=sp&uid=0100007F1BE442659F2C4E41027D4CBC
IP
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerLet's Encrypt
Subjectapi.agency2.ru
Fingerprint50:48:39:D7:EB:8F:8E:E7:36:A3:F3:08:25:93:84:7F:6B:36:24:95
ValidityMon, 16 Oct 2023 23:38:04 GMT - Sun, 14 Jan 2024 23:38:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=sp&uid=0100007F1BE442659F2C4E41027D4CBC HTTP/1.1
Host: cs.agency2.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Wed, 01 Nov 2023 23:49:48 GMT
Content-Length: 0
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://www.acint.net/match?dp=186&euid=b592523d-01c8-407c-8012-62a6c990dba2
Set-Cookie: uuid=b592523d-01c8-407c-8012-62a6c990dba2; expires=Tue, 22 Oct 2024 23:49:48 GMT; domain=agency2.ru; path=/; secure; SameSite=None
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.107.44
ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D
302 Found 74 B URL GET HTTP/2 ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D
IP
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerGlobalSign nv-sa
Subject*.bestssp.com
Fingerprint25:15:42:2E:1C:54:0F:74:CF:89:02:5A:5E:AC:98:DA:1C:34:B3:B3
ValidityMon, 24 Jul 2023 17:15:54 GMT - Sat, 24 Aug 2024 17:15:53 GMT
File type HTML document, ASCII text
Hash 6767bb6fe9d4d51b0a86fb8482d8c1fd
2a389840c4f389b34541a70cdc5f8158ed36ce3d
56187851ee4489312422cb4c48b54676443ba2131a976672cad2bb89581a4e07
GET /sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D HTTP/1.1
Host: ssp.bestssp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.22.0
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: text/html; charset=utf-8
content-length: 74
location: https://www.acint.net/match?dp=95&euid=OKZOKLHJ
set-cookie: uid=OKZOKLHJ; Expires=Sat, 29 Oct 2033 23:49:48 GMT
X-Firefox-Spdy: h2
sync.dsp.solta.io/match/sape?id=0100007F1BE442659F2C4E41027D4CBC
200 OK 43 B URL GET HTTP/2 sync.dsp.solta.io/match/sape?id=0100007F1BE442659F2C4E41027D4CBC
IP
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerGlobalSign nv-sa
Subject*.dsp.solta.io
Fingerprint6D:7F:91:92:30:E1:6A:A0:9B:86:49:7A:21:7F:5B:A4:23:8F:92:BC
ValidityWed, 02 Aug 2023 16:38:38 GMT - Mon, 02 Sep 2024 16:38:37 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/sape?id=0100007F1BE442659F2C4E41027D4CBC HTTP/1.1
Host: sync.dsp.solta.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
acint.net/match?dp=14&euid=4502420A1BE442651C007A290229796C
302 Found 43 B URL GET HTTP/2 acint.net/match?dp=14&euid=4502420A1BE442651C007A290229796C
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint10:D0:B1:ED:4E:38:04:67:F3:89:8C:ED:7E:E6:3D:19:1C:1C:89:EB
ValidityWed, 11 Oct 2023 01:51:47 GMT - Tue, 09 Jan 2024 01:51:46 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=14&euid=4502420A1BE442651C007A290229796C HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWVC5BtBTiyfvEx9AkGe3lEwGknFO6bUfBanO7JuvMdG; cSyncDp14v5=1698882588; cSyncDp17v2=1698882588; cSyncDp45v5=1698882588; cSyncDp53v5=1698882588; cSyncDp62v2=1698882588; cSyncDp67v3=1698882588; cSyncDp68v2=1698882588; cSyncDp71v2=1698882588; cSyncDp80v2=1698882588; cSyncDp85v2=1698882588; cSyncDp95v4=1698882588; cSyncDp98v3=1698882588; cSyncDp104v2=1698882588; cSyncDp107v2=1698882588; cSyncDp110v3=1698882588; cSyncDp125v4=1698882588; cSyncDp126v2=1698882588; cSyncDp127v2=1698882588; cSyncDp129v2=1698882588; cSyncDp136v3=1698882588; cSyncDp146v2=1698882588; cSyncDp148v2=1698882588; cSyncDp149v3=1698882588; cSyncDp151v2=1698882588; cSyncDp178v2=1698882588; cSyncDp186v2=1698882588; cSyncDp217v2=1698882588; cSyncDp221v2=1698882588; cSyncDp235v2=1698882588; cSyncDp239v2=1698882588; cSyncDp243v2=1698882588; cSyncDp260v2=1698882588; cSyncDp244v2=1698882588; cSyncDp248v2=1698882588; cSyncDp261v1=1698882588; cSyncDp14v4=1698882588
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
kimberlite.io/rtb/sync/sape2?u=0100007F1BE442659F2C4E41027D4CBC
307 Temporary Redirect 0 B URL GET HTTP/1.1 kimberlite.io/rtb/sync/sape2?u=0100007F1BE442659F2C4E41027D4CBC
IP
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerGlobalSign nv-sa
Subject*.kimberlite.io
Fingerprint94:44:D9:27:EE:9B:5F:DE:36:07:ED:BA:1A:1D:62:2A:31:B6:43:72
ValidityFri, 10 Mar 2023 07:40:01 GMT - Wed, 10 Apr 2024 07:40:00 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtb/sync/sape2?u=0100007F1BE442659F2C4E41027D4CBC HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Wed, 01 Nov 2023 23:49:48 GMT
Content-Length: 0
Connection: keep-alive
cache-control: no-store
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: u=ZULkHM-VQCU~1r7mwjcA1xjXBsY5bQw42pxGQTs; path=/; max-age=7776000; samesite=none; httponly; secure
as=OFrH4WVC5Bw; max-age=604800; samesite=none; httponly; secure
f=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D243%26euid%3DZULkHM-VQCU; max-age=30; samesite=none; httponly; secure
n=1; max-age=30; samesite=none; httponly; secure
location: https://sm.rtb.mts.ru/p?ssp=toptraffic&id=ZULkHM-VQCU
referrer-policy: no-referrer
server-timing: app;srv=9;dur=0.0003
adx.com.ru/sape-sync?uid=0100007F1BE442659F2C4E41027D4CBC
302 Found 85 B URL GET HTTP/2 adx.com.ru/sape-sync?uid=0100007F1BE442659F2C4E41027D4CBC
IP
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerGlobalSign nv-sa
Subject*.adx.com.ru
FingerprintB6:86:21:C8:F9:AF:00:9E:42:EC:E3:77:AC:A3:5B:2B:E7:C4:46:B3
ValidityFri, 26 May 2023 11:44:59 GMT - Wed, 26 Jun 2024 11:44:58 GMT
File type HTML document, ASCII text
Hash 3240177e1e32243d7ad2f06bfbcbb874
03fdf2fab530a348e97111443497d86193944c4d
711f5ef637e4d333340276d40a9a466794435175da942c616dec9efce1a33074
GET /sape-sync?uid=0100007F1BE442659F2C4E41027D4CBC HTTP/1.1
Host: adx.com.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.22.0
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: text/html; charset=utf-8
content-length: 85
cache-control: max-age=0, no-cache, no-store, must-revalidate, proxy-revalidate
location: /sync?sspKey=25&sspUserID=0100007F1BE442659F2C4E41027D4CBC
p3p: CP="adx.com.ru does not have a P3P policy"
set-cookie: user=6542e41cf0e01500015c9e3d; Path=/; Domain=adx.com.ru; Max-Age=31536000; HttpOnly; Secure; SameSite=None
X-Firefox-Spdy: h2
ssp.bidvol.com/usersync?dspcsid=8&redirect=1
302 Found 43 B URL GET HTTP/2 ssp.bidvol.com/usersync?dspcsid=8&redirect=1
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerLet's Encrypt
Subjectssp.bidvol.com
Fingerprint1E:CD:42:30:1C:AD:C5:0E:C0:5F:91:E2:B2:D9:7F:E3:C9:66:25:72
ValidityFri, 13 Oct 2023 12:30:07 GMT - Thu, 11 Jan 2024 12:30:06 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /usersync?dspcsid=8&redirect=1 HTTP/1.1
Host: ssp.bidvol.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Cookie: bvuid=j14y1jem1q
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx/1.22.0
date: Wed, 01 Nov 2023 23:49:48 GMT
x-request-id: c2c008be-0985-414b-8bfc-9cdfe3431b06
vary: Origin
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
pragma: no-cache
expires: 0
surrogate-control: no-store
set-cookie: bvuid=j14y1jem1q; Max-Age=2147483647; Domain=.bidvol.com; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT; Secure; SameSite=None
bvuid2=j14y1jem1q; Max-Age=2147483647; Domain=.bidvol.com; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT
location: https://www.acint.net/match?dp=129&euid=j14y1jem1q
X-Firefox-Spdy: h2
code.moviead55.ru/go/csync?cn=hbrdcookie2&bid=2dbad00c49345906554d
200 OK 0 B URL GET HTTP/2 code.moviead55.ru/go/csync?cn=hbrdcookie2&bid=2dbad00c49345906554d
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=hbrdcookie2&bid=2dbad00c49345906554d HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Cookie: sky_uuid=eabf35c5-fe56-a849-d214-d377ed5aa8d3; bzcookie=e3aa4c19-2582-4638-4d1b-d01bf4449210
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: image/jpeg
content-length: 0
set-cookie: hbrdcookie2=2dbad00c49345906554d; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
www.acint.net/match?dp=126&euid=8e2a50c7-58c1-4ba0-571c-13db4e79aaa9
200 OK 43 B URL GET HTTP/2 www.acint.net/match?dp=126&euid=8e2a50c7-58c1-4ba0-571c-13db4e79aaa9
IP
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint10:D0:B1:ED:4E:38:04:67:F3:89:8C:ED:7E:E6:3D:19:1C:1C:89:EB
ValidityWed, 11 Oct 2023 01:51:47 GMT - Tue, 09 Jan 2024 01:51:46 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=126&euid=8e2a50c7-58c1-4ba0-571c-13db4e79aaa9 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWVC5BtBTiyfvEx9AkGe3lEwGknFO6bUfBanO7JuvMdG; cSyncDp14v5=1698882588; cSyncDp17v2=1698882588; cSyncDp45v5=1698882588; cSyncDp53v5=1698882588; cSyncDp62v2=1698882588; cSyncDp67v3=1698882588; cSyncDp68v2=1698882588; cSyncDp71v2=1698882588; cSyncDp80v2=1698882588; cSyncDp85v2=1698882588; cSyncDp95v4=1698882588; cSyncDp98v3=1698882588; cSyncDp104v2=1698882588; cSyncDp107v2=1698882588; cSyncDp110v3=1698882588; cSyncDp125v4=1698882588; cSyncDp126v2=1698882588; cSyncDp127v2=1698882588; cSyncDp129v2=1698882588; cSyncDp136v3=1698882588; cSyncDp146v2=1698882588; cSyncDp148v2=1698882588; cSyncDp149v3=1698882588; cSyncDp151v2=1698882588; cSyncDp178v2=1698882588; cSyncDp186v2=1698882588; cSyncDp217v2=1698882588; cSyncDp221v2=1698882588; cSyncDp235v2=1698882588; cSyncDp239v2=1698882588; cSyncDp243v2=1698882588; cSyncDp260v2=1698882588; cSyncDp244v2=1698882588; cSyncDp248v2=1698882588; cSyncDp261v1=1698882588; cSyncDp14v4=1698882588
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
code.moviead55.ru/go/csync?cn=otclkbid&bid=VUgQTgRRFnkyR57
200 OK 0 B URL GET HTTP/2 code.moviead55.ru/go/csync?cn=otclkbid&bid=VUgQTgRRFnkyR57
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=otclkbid&bid=VUgQTgRRFnkyR57 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Cookie: sky_uuid=eabf35c5-fe56-a849-d214-d377ed5aa8d3; bzcookie=e3aa4c19-2582-4638-4d1b-d01bf4449210
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: image/jpeg
content-length: 0
set-cookie: otclkbid=VUgQTgRRFnkyR57; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
code.moviead55.ru/go/jmap?v=63474d77d7fcd56e8ed9848f509d1c60&sid=base&cp.referer=https%3A%2F%2Fnewserial.biz%2F4528-kobra-kaj-na12.html&it=1&tq=2&cp.cb=e4e3bfd8-2a69-6271-00cf-a910c67d07e8&session=c2215dc5-d162-44eb-9465-d63316ab77d3&position=pre&vt=100&ostream=true&isp=0&suri=https%3A%2F%2Fnewserial.biz%2F4528-kobra-kaj-na12.html&rnd=1698882589558&raw=yes
200 OK 2 B URL GET HTTP/2 code.moviead55.ru/go/jmap?v=63474d77d7fcd56e8ed9848f509d1c60&sid=base&cp.referer=https%3A%2F%2Fnewserial.biz%2F4528-kobra-kaj-na12.html&it=1&tq=2&cp.cb=e4e3bfd8-2a69-6271-00cf-a910c67d07e8&session=c2215dc5-d162-44eb-9465-d63316ab77d3&position=pre&vt=100&ostream=true&isp=0&suri=https%3A%2F%2Fnewserial.biz%2F4528-kobra-kaj-na12.html&rnd=1698882589558&raw=yes
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
GET /go/jmap?v=63474d77d7fcd56e8ed9848f509d1c60&sid=base&cp.referer=https%3A%2F%2Fnewserial.biz%2F4528-kobra-kaj-na12.html&it=1&tq=2&cp.cb=e4e3bfd8-2a69-6271-00cf-a910c67d07e8&session=c2215dc5-d162-44eb-9465-d63316ab77d3&position=pre&vt=100&ostream=true&isp=0&suri=https%3A%2F%2Fnewserial.biz%2F4528-kobra-kaj-na12.html&rnd=1698882589558&raw=yes HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://newserial.biz
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Cookie: sky_uuid=eabf35c5-fe56-a849-d214-d377ed5aa8d3; bzcookie=e3aa4c19-2582-4638-4d1b-d01bf4449210
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: application/json;charset=UTF-8
content-length: 2
x-movieads-cors-qex: Referer
x-movieads-path: /
access-control-allow-credentials: true
access-control-allow-origin: https://newserial.biz
x-go-country: NO
x-movieads-udata: cache,parsed,46136
x-movieads-plc: 0
x-movieads-ark: true
x-movieads-qmc: NO
x-movieads-alc: 2
x-movieads-ctvs: 2
server-timing: initBuilder;dur=0.0000, queuesMerge;dur=0.0000, getJson;dur=0.0000, getAnyQueue;dur=0.0000, buildTagsQueue;dur=0.0000, range_links;dur=0.0000, queueSort;dur=0.0000, jmapParams;dur=0.0000, corsParams;dur=0.0000, keyValidation;dur=0.0000, qManager;dur=0.0000, wmData;dur=0.0000, optProc;dur=0.0000, uData;dur=0.0000, getLinks;dur=0.0000, attachTracking;dur=0.0000
x-movieads-country: NO
X-Firefox-Spdy: h2
www.acint.net/match?dp=217&euid=5482c8fe-1f2b-4759-a085-ae6d2bc5bef9
200 OK 43 B URL GET HTTP/2 www.acint.net/match?dp=217&euid=5482c8fe-1f2b-4759-a085-ae6d2bc5bef9
IP
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint10:D0:B1:ED:4E:38:04:67:F3:89:8C:ED:7E:E6:3D:19:1C:1C:89:EB
ValidityWed, 11 Oct 2023 01:51:47 GMT - Tue, 09 Jan 2024 01:51:46 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=217&euid=5482c8fe-1f2b-4759-a085-ae6d2bc5bef9 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWVC5BtBTiyfvEx9AkGe3lEwGknFO6bUfBanO7JuvMdG; cSyncDp14v5=1698882588; cSyncDp17v2=1698882588; cSyncDp45v5=1698882588; cSyncDp53v5=1698882588; cSyncDp62v2=1698882588; cSyncDp67v3=1698882588; cSyncDp68v2=1698882588; cSyncDp71v2=1698882588; cSyncDp80v2=1698882588; cSyncDp85v2=1698882588; cSyncDp95v4=1698882588; cSyncDp98v3=1698882588; cSyncDp104v2=1698882588; cSyncDp107v2=1698882588; cSyncDp110v3=1698882588; cSyncDp125v4=1698882588; cSyncDp126v2=1698882588; cSyncDp127v2=1698882588; cSyncDp129v2=1698882588; cSyncDp136v3=1698882588; cSyncDp146v2=1698882588; cSyncDp148v2=1698882588; cSyncDp149v3=1698882588; cSyncDp151v2=1698882588; cSyncDp178v2=1698882588; cSyncDp186v2=1698882588; cSyncDp217v2=1698882588; cSyncDp221v2=1698882588; cSyncDp235v2=1698882588; cSyncDp239v2=1698882588; cSyncDp243v2=1698882588; cSyncDp260v2=1698882588; cSyncDp244v2=1698882588; cSyncDp248v2=1698882588; cSyncDp261v1=1698882588; cSyncDp14v4=1698882588
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
acint.net/match?dp=80&euid=FuPVF9gU4wC3GfMnDbTT
200 OK 43 B URL GET HTTP/2 acint.net/match?dp=80&euid=FuPVF9gU4wC3GfMnDbTT
IP
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint10:D0:B1:ED:4E:38:04:67:F3:89:8C:ED:7E:E6:3D:19:1C:1C:89:EB
ValidityWed, 11 Oct 2023 01:51:47 GMT - Tue, 09 Jan 2024 01:51:46 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=80&euid=FuPVF9gU4wC3GfMnDbTT HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWVC5BtBTiyfvEx9AkGe3lEwGknFO6bUfBanO7JuvMdG; cSyncDp14v5=1698882588; cSyncDp17v2=1698882588; cSyncDp45v5=1698882588; cSyncDp53v5=1698882588; cSyncDp62v2=1698882588; cSyncDp67v3=1698882588; cSyncDp68v2=1698882588; cSyncDp71v2=1698882588; cSyncDp80v2=1698882588; cSyncDp85v2=1698882588; cSyncDp95v4=1698882588; cSyncDp98v3=1698882588; cSyncDp104v2=1698882588; cSyncDp107v2=1698882588; cSyncDp110v3=1698882588; cSyncDp125v4=1698882588; cSyncDp126v2=1698882588; cSyncDp127v2=1698882588; cSyncDp129v2=1698882588; cSyncDp136v3=1698882588; cSyncDp146v2=1698882588; cSyncDp148v2=1698882588; cSyncDp149v3=1698882588; cSyncDp151v2=1698882588; cSyncDp178v2=1698882588; cSyncDp186v2=1698882588; cSyncDp217v2=1698882588; cSyncDp221v2=1698882588; cSyncDp235v2=1698882588; cSyncDp239v2=1698882588; cSyncDp243v2=1698882588; cSyncDp260v2=1698882588; cSyncDp244v2=1698882588; cSyncDp248v2=1698882588; cSyncDp261v1=1698882588; cSyncDp14v4=1698882588
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
www.acint.net/match?dp=261&euid=9c74f253-449c-45c9-a803-17fccdc2e037
200 OK 43 B URL GET HTTP/2 www.acint.net/match?dp=261&euid=9c74f253-449c-45c9-a803-17fccdc2e037
IP
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint10:D0:B1:ED:4E:38:04:67:F3:89:8C:ED:7E:E6:3D:19:1C:1C:89:EB
ValidityWed, 11 Oct 2023 01:51:47 GMT - Tue, 09 Jan 2024 01:51:46 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=261&euid=9c74f253-449c-45c9-a803-17fccdc2e037 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWVC5BtBTiyfvEx9AkGe3lEwGknFO6bUfBanO7JuvMdG; cSyncDp14v5=1698882588; cSyncDp17v2=1698882588; cSyncDp45v5=1698882588; cSyncDp53v5=1698882588; cSyncDp62v2=1698882588; cSyncDp67v3=1698882588; cSyncDp68v2=1698882588; cSyncDp71v2=1698882588; cSyncDp80v2=1698882588; cSyncDp85v2=1698882588; cSyncDp95v4=1698882588; cSyncDp98v3=1698882588; cSyncDp104v2=1698882588; cSyncDp107v2=1698882588; cSyncDp110v3=1698882588; cSyncDp125v4=1698882588; cSyncDp126v2=1698882588; cSyncDp127v2=1698882588; cSyncDp129v2=1698882588; cSyncDp136v3=1698882588; cSyncDp146v2=1698882588; cSyncDp148v2=1698882588; cSyncDp149v3=1698882588; cSyncDp151v2=1698882588; cSyncDp178v2=1698882588; cSyncDp186v2=1698882588; cSyncDp217v2=1698882588; cSyncDp221v2=1698882588; cSyncDp235v2=1698882588; cSyncDp239v2=1698882588; cSyncDp243v2=1698882588; cSyncDp260v2=1698882588; cSyncDp244v2=1698882588; cSyncDp248v2=1698882588; cSyncDp261v1=1698882588; cSyncDp14v4=1698882588
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
code.moviead55.ru/go/csync?cn=ohmybid&bid=87f8ef00-ea27-4a04-841f-938cfbeaa703
200 OK 0 B URL GET HTTP/2 code.moviead55.ru/go/csync?cn=ohmybid&bid=87f8ef00-ea27-4a04-841f-938cfbeaa703
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=ohmybid&bid=87f8ef00-ea27-4a04-841f-938cfbeaa703 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Cookie: sky_uuid=eabf35c5-fe56-a849-d214-d377ed5aa8d3; bzcookie=e3aa4c19-2582-4638-4d1b-d01bf4449210
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: image/jpeg
content-length: 0
set-cookie: ohmybid=87f8ef00-ea27-4a04-841f-938cfbeaa703; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
www.acint.net/match?dp=127&euid=lT9wSLYCsP392SyVv65S
200 OK 43 B URL GET HTTP/2 www.acint.net/match?dp=127&euid=lT9wSLYCsP392SyVv65S
IP
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint10:D0:B1:ED:4E:38:04:67:F3:89:8C:ED:7E:E6:3D:19:1C:1C:89:EB
ValidityWed, 11 Oct 2023 01:51:47 GMT - Tue, 09 Jan 2024 01:51:46 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=127&euid=lT9wSLYCsP392SyVv65S HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWVC5BtBTiyfvEx9AkGe3lEwGknFO6bUfBanO7JuvMdG; cSyncDp14v5=1698882588; cSyncDp17v2=1698882588; cSyncDp45v5=1698882588; cSyncDp53v5=1698882588; cSyncDp62v2=1698882588; cSyncDp67v3=1698882588; cSyncDp68v2=1698882588; cSyncDp71v2=1698882588; cSyncDp80v2=1698882588; cSyncDp85v2=1698882588; cSyncDp95v4=1698882588; cSyncDp98v3=1698882588; cSyncDp104v2=1698882588; cSyncDp107v2=1698882588; cSyncDp110v3=1698882588; cSyncDp125v4=1698882588; cSyncDp126v2=1698882588; cSyncDp127v2=1698882588; cSyncDp129v2=1698882588; cSyncDp136v3=1698882588; cSyncDp146v2=1698882588; cSyncDp148v2=1698882588; cSyncDp149v3=1698882588; cSyncDp151v2=1698882588; cSyncDp178v2=1698882588; cSyncDp186v2=1698882588; cSyncDp217v2=1698882588; cSyncDp221v2=1698882588; cSyncDp235v2=1698882588; cSyncDp239v2=1698882588; cSyncDp243v2=1698882588; cSyncDp260v2=1698882588; cSyncDp244v2=1698882588; cSyncDp248v2=1698882588; cSyncDp261v1=1698882588; cSyncDp14v4=1698882588
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3D5201228e-5a33-4049-836a-946fc728a817
302 Found 102 B URL GET HTTP/2 sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3D5201228e-5a33-4049-836a-946fc728a817
IP
ASN #50340 OOO Network of data-centers Selectel
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerLet's Encrypt
Subject*.adspend.space
FingerprintD2:A9:45:D9:7D:4F:04:B2:D9:24:CC:62:7C:3B:4A:4E:C5:5C:CD:24
ValidityTue, 29 Aug 2023 13:03:53 GMT - Mon, 27 Nov 2023 13:03:52 GMT
File type HTML document, ASCII text
Hash 14be759287d6383ffb34c538cb459534
2c3d828d158f6098a4bc1c16d508ff527db94227
46234b892990a6ed99b1f5d1f4a6563662ad1d08e2d7be51e48441e9f59e19cd
GET /check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3D5201228e-5a33-4049-836a-946fc728a817 HTTP/1.1
Host: sync.adspend.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: as-user=5201228e-5a33-4049-836a-946fc728a817
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx/1.22.1
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: text/html; charset=utf-8
content-length: 102
location: https://www.acint.net/match?dp=98&euid=5201228e-5a33-4049-836a-946fc728a817
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: PUT, GET, POST, OPTIONS
access-control-allow-headers: Content-Type, authorization
access-control-max-age: 1728000
X-Firefox-Spdy: h2
sync.bumlam.com/?src=sap1&s_data=CAIQARicyIuqBmIgMDEwMDAwN0YxQkU0NDI2NTlGMkM0RTQxMDI3RDRDQkOiARBXjZKueRER7obgACWQwGR8
200 OK 0 B URL GET HTTP/1.1 sync.bumlam.com/?src=sap1&s_data=CAIQARicyIuqBmIgMDEwMDAwN0YxQkU0NDI2NTlGMkM0RTQxMDI3RDRDQkOiARBXjZKueRER7obgACWQwGR8
IP
ASN #44066 diva-e Datacenters GmbH
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerLet's Encrypt
Subject*.bumlam.com
Fingerprint08:E4:EB:78:69:AA:1C:77:24:F5:D4:0F:6C:52:FC:A6:D3:74:90:D0
ValidityMon, 16 Oct 2023 05:30:36 GMT - Sun, 14 Jan 2024 05:30:35 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sap1&s_data=CAIQARicyIuqBmIgMDEwMDAwN0YxQkU0NDI2NTlGMkM0RTQxMDI3RDRDQkOiARBXjZKueRER7obgACWQwGR8 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiQ1NzhkOTJhZS03OTExLTExZWUtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Nov 2023 23:49:48 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiQ1NzhkOTJhZS03OTExLTExZWUtODZlMC0wMDI1OTBjMDY0N2M*; Path=/; Expires=Tue, 27 Oct 2043 23:49:48 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
acint.net/match?dp=110&euid=7d2f224b54eb4a1a9a236d8bfffcd0ef
200 OK 43 B URL GET HTTP/2 acint.net/match?dp=110&euid=7d2f224b54eb4a1a9a236d8bfffcd0ef
IP
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint10:D0:B1:ED:4E:38:04:67:F3:89:8C:ED:7E:E6:3D:19:1C:1C:89:EB
ValidityWed, 11 Oct 2023 01:51:47 GMT - Tue, 09 Jan 2024 01:51:46 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=110&euid=7d2f224b54eb4a1a9a236d8bfffcd0ef HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWVC5BtBTiyfvEx9AkGe3lEwGknFO6bUfBanO7JuvMdG; cSyncDp14v5=1698882588; cSyncDp17v2=1698882588; cSyncDp45v5=1698882588; cSyncDp53v5=1698882588; cSyncDp62v2=1698882588; cSyncDp67v3=1698882588; cSyncDp68v2=1698882588; cSyncDp71v2=1698882588; cSyncDp80v2=1698882588; cSyncDp85v2=1698882588; cSyncDp95v4=1698882588; cSyncDp98v3=1698882588; cSyncDp104v2=1698882588; cSyncDp107v2=1698882588; cSyncDp110v3=1698882588; cSyncDp125v4=1698882588; cSyncDp126v2=1698882588; cSyncDp127v2=1698882588; cSyncDp129v2=1698882588; cSyncDp136v3=1698882588; cSyncDp146v2=1698882588; cSyncDp148v2=1698882588; cSyncDp149v3=1698882588; cSyncDp151v2=1698882588; cSyncDp178v2=1698882588; cSyncDp186v2=1698882588; cSyncDp217v2=1698882588; cSyncDp221v2=1698882588; cSyncDp235v2=1698882588; cSyncDp239v2=1698882588; cSyncDp243v2=1698882588; cSyncDp260v2=1698882588; cSyncDp244v2=1698882588; cSyncDp248v2=1698882588; cSyncDp261v1=1698882588; cSyncDp14v4=1698882588
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
302 Found 0 B URL GET HTTP/2 sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerGlobalSign nv-sa
Subject*.upravel.com
Fingerprint4C:ED:03:57:58:43:18:2C:CC:41:F3:3B:19:72:75:BD:29:C1:04:08
ValiditySat, 29 Apr 2023 07:48:21 GMT - Thu, 30 May 2024 07:48:20 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0 HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: session_tptc=1698882588567
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: image/png
content-length: 0
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: user_id=4c68350f-aa2e-489c-ab2e-b191b583a34d;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
user_id-legacy=4c68350f-aa2e-489c-ab2e-b191b583a34d;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
location: https://www.acint.net/match?dp=71&euid=4c68350f-aa2e-489c-ab2e-b191b583a34d
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
sync.bumlam.com/?src=sape
302 Moved Temporarily 0 B URL GET HTTP/1.1 sync.bumlam.com/?src=sape
IP
ASN #44066 diva-e Datacenters GmbH
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerLet's Encrypt
Subject*.bumlam.com
Fingerprint08:E4:EB:78:69:AA:1C:77:24:F5:D4:0F:6C:52:FC:A6:D3:74:90:D0
ValidityMon, 16 Oct 2023 05:30:36 GMT - Sun, 14 Jan 2024 05:30:35 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sape HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiQ1NzhkOTJhZS03OTExLTExZWUtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Wed, 01 Nov 2023 23:49:48 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiQ1NzhkOTJhZS03OTExLTExZWUtODZlMC0wMDI1OTBjMDY0N2M*; Path=/; Expires=Tue, 27 Oct 2043 23:49:48 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: https://pix.bumlam.com/sync/sape/sync_ok?guid=578d92ae-7911-11ee-86e0-002590c0647c
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
Access-Control-Allow-Origin: https://acint.net
Access-Control-Allow-Credentials: true
acint.net/rmatch?dp=14&euid=4502420A1BE442651C007A290229796C&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D%24%7BUSER_ID%7D
302 Found 154 B URL GET HTTP/2 acint.net/rmatch?dp=14&euid=4502420A1BE442651C007A290229796C&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D%24%7BUSER_ID%7D
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint10:D0:B1:ED:4E:38:04:67:F3:89:8C:ED:7E:E6:3D:19:1C:1C:89:EB
ValidityWed, 11 Oct 2023 01:51:47 GMT - Tue, 09 Jan 2024 01:51:46 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=14&euid=4502420A1BE442651C007A290229796C&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWVC5BtBTiyfvEx9AkGe3lEwGknFO6bUfBanO7JuvMdG; cSyncDp14v5=1698882588; cSyncDp17v2=1698882588; cSyncDp45v5=1698882588; cSyncDp53v5=1698882588; cSyncDp62v2=1698882588; cSyncDp67v3=1698882588; cSyncDp68v2=1698882588; cSyncDp71v2=1698882588; cSyncDp80v2=1698882588; cSyncDp85v2=1698882588; cSyncDp95v4=1698882588; cSyncDp98v3=1698882588; cSyncDp104v2=1698882588; cSyncDp107v2=1698882588; cSyncDp110v3=1698882588; cSyncDp125v4=1698882588; cSyncDp126v2=1698882588; cSyncDp127v2=1698882588; cSyncDp129v2=1698882588; cSyncDp136v3=1698882588; cSyncDp146v2=1698882588; cSyncDp148v2=1698882588; cSyncDp149v3=1698882588; cSyncDp151v2=1698882588; cSyncDp178v2=1698882588; cSyncDp186v2=1698882588; cSyncDp217v2=1698882588; cSyncDp221v2=1698882588; cSyncDp235v2=1698882588; cSyncDp239v2=1698882588; cSyncDp243v2=1698882588; cSyncDp260v2=1698882588; cSyncDp244v2=1698882588; cSyncDp248v2=1698882588; cSyncDp261v1=1698882588; cSyncDp14v4=1698882588
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: text/html
content-length: 154
location: https://code.moviead55.ru/go/csync?cn=sapecookie&bid=0100007F1BE442659F2C4E41027D4CBC
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
code.moviead55.ru/go/csync?cn=solta&bid=ZULkHM9jaoU
200 OK 0 B URL GET HTTP/2 code.moviead55.ru/go/csync?cn=solta&bid=ZULkHM9jaoU
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=solta&bid=ZULkHM9jaoU HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: sky_uuid=eabf35c5-fe56-a849-d214-d377ed5aa8d3; bzcookie=e3aa4c19-2582-4638-4d1b-d01bf4449210
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: image/jpeg
content-length: 0
set-cookie: solta=ZULkHM9jaoU; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
nr.bidderstack.com/sape/cm?user_id=0100007F1BE442659F2C4E41027D4CBC&pupa=1
302 Found 0 B URL GET HTTP/1.1 nr.bidderstack.com/sape/cm?user_id=0100007F1BE442659F2C4E41027D4CBC&pupa=1
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerGoDaddy.com, Inc.
Subject*.bidderstack.com
Fingerprint88:0D:CE:79:C4:DA:79:3B:37:94:98:4A:1A:FA:19:D3:62:A5:B9:84
ValiditySun, 20 Nov 2022 07:16:28 GMT - Sat, 18 Nov 2023 12:58:37 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/cm?user_id=0100007F1BE442659F2C4E41027D4CBC&pupa=1 HTTP/1.1
Host: nr.bidderstack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Wed, 01 Nov 2023 23:49:48 GMT
Content-Length: 0
Connection: keep-alive
Location: https://dsp.mpartner.digital/dmp/syncsspdmp?sspid=8&4096b3dc-c011-21bb-e069-92664b67f354
Set-Cookie: pupa=4096b3dc-c011-21bb-e069-92664b67f354; domain=.bidderstack.com; path=/; expires=Thu, 31-Oct-2024 23:49:48 GMT;
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
www.acint.net/match?dp=186&euid=b592523d-01c8-407c-8012-62a6c990dba2
200 OK 43 B URL GET HTTP/2 www.acint.net/match?dp=186&euid=b592523d-01c8-407c-8012-62a6c990dba2
IP
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint10:D0:B1:ED:4E:38:04:67:F3:89:8C:ED:7E:E6:3D:19:1C:1C:89:EB
ValidityWed, 11 Oct 2023 01:51:47 GMT - Tue, 09 Jan 2024 01:51:46 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=186&euid=b592523d-01c8-407c-8012-62a6c990dba2 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWVC5BtBTiyfvEx9AkGe3lEwGknFO6bUfBanO7JuvMdG; cSyncDp14v5=1698882588; cSyncDp17v2=1698882588; cSyncDp45v5=1698882588; cSyncDp53v5=1698882588; cSyncDp62v2=1698882588; cSyncDp67v3=1698882588; cSyncDp68v2=1698882588; cSyncDp71v2=1698882588; cSyncDp80v2=1698882588; cSyncDp85v2=1698882588; cSyncDp95v4=1698882588; cSyncDp98v3=1698882588; cSyncDp104v2=1698882588; cSyncDp107v2=1698882588; cSyncDp110v3=1698882588; cSyncDp125v4=1698882588; cSyncDp126v2=1698882588; cSyncDp127v2=1698882588; cSyncDp129v2=1698882588; cSyncDp136v3=1698882588; cSyncDp146v2=1698882588; cSyncDp148v2=1698882588; cSyncDp149v3=1698882588; cSyncDp151v2=1698882588; cSyncDp178v2=1698882588; cSyncDp186v2=1698882588; cSyncDp217v2=1698882588; cSyncDp221v2=1698882588; cSyncDp235v2=1698882588; cSyncDp239v2=1698882588; cSyncDp243v2=1698882588; cSyncDp260v2=1698882588; cSyncDp244v2=1698882588; cSyncDp248v2=1698882588; cSyncDp261v1=1698882588; cSyncDp14v4=1698882588
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
www.acint.net/match?dp=95&euid=OKZOKLHJ
200 OK 43 B URL GET HTTP/2 www.acint.net/match?dp=95&euid=OKZOKLHJ
IP
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint10:D0:B1:ED:4E:38:04:67:F3:89:8C:ED:7E:E6:3D:19:1C:1C:89:EB
ValidityWed, 11 Oct 2023 01:51:47 GMT - Tue, 09 Jan 2024 01:51:46 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=95&euid=OKZOKLHJ HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWVC5BtBTiyfvEx9AkGe3lEwGknFO6bUfBanO7JuvMdG; cSyncDp14v5=1698882588; cSyncDp17v2=1698882588; cSyncDp45v5=1698882588; cSyncDp53v5=1698882588; cSyncDp62v2=1698882588; cSyncDp67v3=1698882588; cSyncDp68v2=1698882588; cSyncDp71v2=1698882588; cSyncDp80v2=1698882588; cSyncDp85v2=1698882588; cSyncDp95v4=1698882588; cSyncDp98v3=1698882588; cSyncDp104v2=1698882588; cSyncDp107v2=1698882588; cSyncDp110v3=1698882588; cSyncDp125v4=1698882588; cSyncDp126v2=1698882588; cSyncDp127v2=1698882588; cSyncDp129v2=1698882588; cSyncDp136v3=1698882588; cSyncDp146v2=1698882588; cSyncDp148v2=1698882588; cSyncDp149v3=1698882588; cSyncDp151v2=1698882588; cSyncDp178v2=1698882588; cSyncDp186v2=1698882588; cSyncDp217v2=1698882588; cSyncDp221v2=1698882588; cSyncDp235v2=1698882588; cSyncDp239v2=1698882588; cSyncDp243v2=1698882588; cSyncDp260v2=1698882588; cSyncDp244v2=1698882588; cSyncDp248v2=1698882588; cSyncDp261v1=1698882588; cSyncDp14v4=1698882588
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
www.acint.net/match?dp=98&euid=5201228e-5a33-4049-836a-946fc728a817
200 OK 43 B URL GET HTTP/2 www.acint.net/match?dp=98&euid=5201228e-5a33-4049-836a-946fc728a817
IP
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint10:D0:B1:ED:4E:38:04:67:F3:89:8C:ED:7E:E6:3D:19:1C:1C:89:EB
ValidityWed, 11 Oct 2023 01:51:47 GMT - Tue, 09 Jan 2024 01:51:46 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=98&euid=5201228e-5a33-4049-836a-946fc728a817 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWVC5BtBTiyfvEx9AkGe3lEwGknFO6bUfBanO7JuvMdG; cSyncDp14v5=1698882588; cSyncDp17v2=1698882588; cSyncDp45v5=1698882588; cSyncDp53v5=1698882588; cSyncDp62v2=1698882588; cSyncDp67v3=1698882588; cSyncDp68v2=1698882588; cSyncDp71v2=1698882588; cSyncDp80v2=1698882588; cSyncDp85v2=1698882588; cSyncDp95v4=1698882588; cSyncDp98v3=1698882588; cSyncDp104v2=1698882588; cSyncDp107v2=1698882588; cSyncDp110v3=1698882588; cSyncDp125v4=1698882588; cSyncDp126v2=1698882588; cSyncDp127v2=1698882588; cSyncDp129v2=1698882588; cSyncDp136v3=1698882588; cSyncDp146v2=1698882588; cSyncDp148v2=1698882588; cSyncDp149v3=1698882588; cSyncDp151v2=1698882588; cSyncDp178v2=1698882588; cSyncDp186v2=1698882588; cSyncDp217v2=1698882588; cSyncDp221v2=1698882588; cSyncDp235v2=1698882588; cSyncDp239v2=1698882588; cSyncDp243v2=1698882588; cSyncDp260v2=1698882588; cSyncDp244v2=1698882588; cSyncDp248v2=1698882588; cSyncDp261v1=1698882588; cSyncDp14v4=1698882588
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 01 Nov 2023 23:49:49 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
www.acint.net/match?dp=71&euid=4c68350f-aa2e-489c-ab2e-b191b583a34d
200 OK 43 B URL GET HTTP/2 www.acint.net/match?dp=71&euid=4c68350f-aa2e-489c-ab2e-b191b583a34d
IP
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint10:D0:B1:ED:4E:38:04:67:F3:89:8C:ED:7E:E6:3D:19:1C:1C:89:EB
ValidityWed, 11 Oct 2023 01:51:47 GMT - Tue, 09 Jan 2024 01:51:46 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=71&euid=4c68350f-aa2e-489c-ab2e-b191b583a34d HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWVC5BtBTiyfvEx9AkGe3lEwGknFO6bUfBanO7JuvMdG; cSyncDp14v5=1698882588; cSyncDp17v2=1698882588; cSyncDp45v5=1698882588; cSyncDp53v5=1698882588; cSyncDp62v2=1698882588; cSyncDp67v3=1698882588; cSyncDp68v2=1698882588; cSyncDp71v2=1698882588; cSyncDp80v2=1698882588; cSyncDp85v2=1698882588; cSyncDp95v4=1698882588; cSyncDp98v3=1698882588; cSyncDp104v2=1698882588; cSyncDp107v2=1698882588; cSyncDp110v3=1698882588; cSyncDp125v4=1698882588; cSyncDp126v2=1698882588; cSyncDp127v2=1698882588; cSyncDp129v2=1698882588; cSyncDp136v3=1698882588; cSyncDp146v2=1698882588; cSyncDp148v2=1698882588; cSyncDp149v3=1698882588; cSyncDp151v2=1698882588; cSyncDp178v2=1698882588; cSyncDp186v2=1698882588; cSyncDp217v2=1698882588; cSyncDp221v2=1698882588; cSyncDp235v2=1698882588; cSyncDp239v2=1698882588; cSyncDp243v2=1698882588; cSyncDp260v2=1698882588; cSyncDp244v2=1698882588; cSyncDp248v2=1698882588; cSyncDp261v1=1698882588; cSyncDp14v4=1698882588
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 01 Nov 2023 23:49:49 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
pix.bumlam.com/sync/sape/sync_ok?guid=578d92ae-7911-11ee-86e0-002590c0647c
302 Found 0 B URL GET HTTP/1.1 pix.bumlam.com/sync/sape/sync_ok?guid=578d92ae-7911-11ee-86e0-002590c0647c
IP
ASN #44066 diva-e Datacenters GmbH
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerLet's Encrypt
Subject*.bumlam.com
Fingerprint08:E4:EB:78:69:AA:1C:77:24:F5:D4:0F:6C:52:FC:A6:D3:74:90:D0
ValidityMon, 16 Oct 2023 05:30:36 GMT - Sun, 14 Jan 2024 05:30:35 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/sape/sync_ok?guid=578d92ae-7911-11ee-86e0-002590c0647c HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiQ1NzhkOTJhZS03OTExLTExZWUtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Wed, 01 Nov 2023 23:49:49 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://578d92ae-7911-11ee-86e0-002590c0647c.n1.sync.bumlam.com/?src=sape
code.moviead55.ru/go/csync?cn=sapecookie&bid=0100007F1BE442659F2C4E41027D4CBC
200 OK 0 B URL GET HTTP/2 code.moviead55.ru/go/csync?cn=sapecookie&bid=0100007F1BE442659F2C4E41027D4CBC
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=sapecookie&bid=0100007F1BE442659F2C4E41027D4CBC HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Cookie: sky_uuid=eabf35c5-fe56-a849-d214-d377ed5aa8d3; bzcookie=e3aa4c19-2582-4638-4d1b-d01bf4449210; hbrdcookie2=2dbad00c49345906554d; otclkbid=VUgQTgRRFnkyR57; ohmybid=87f8ef00-ea27-4a04-841f-938cfbeaa703; solta=ZULkHM9jaoU
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Nov 2023 23:49:49 GMT
content-type: image/jpeg
content-length: 0
set-cookie: sapecookie=0100007F1BE442659F2C4E41027D4CBC; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
adx.com.ru/sync?sspKey=25&sspUserID=0100007F1BE442659F2C4E41027D4CBC
302 Found 231 B URL GET HTTP/2 adx.com.ru/sync?sspKey=25&sspUserID=0100007F1BE442659F2C4E41027D4CBC
IP
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerGlobalSign nv-sa
Subject*.adx.com.ru
FingerprintB6:86:21:C8:F9:AF:00:9E:42:EC:E3:77:AC:A3:5B:2B:E7:C4:46:B3
ValidityFri, 26 May 2023 11:44:59 GMT - Wed, 26 Jun 2024 11:44:58 GMT
File type HTML document, ASCII text
Hash 0da25edb177ee8f22d846b12eae766a3
1a6dda8c71c9309fc8759b5bb8c06de3938528d0
a48af5cdabc860f1a52184cd9f4878f1d1771394e8bb667e527db3d00e0bd122
GET /sync?sspKey=25&sspUserID=0100007F1BE442659F2C4E41027D4CBC HTTP/1.1
Host: adx.com.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: user=6542e41cf0e01500015c9e3d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx/1.22.0
date: Wed, 01 Nov 2023 23:49:49 GMT
content-type: text/html; charset=utf-8
content-length: 231
cache-control: max-age=0, no-cache, no-store, must-revalidate, proxy-revalidate
location: https://redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fadx.com.ru%2Fweborama-sync%3Furl%3Dhttps%253A%252F%252Fprodmp.ru%252Fyabbi.gif%253Fuid%253D6542e41cf0e01500015c9e3d%2526r%253D%26webouid%3D{WEBO_CID}
p3p: CP="adx.com.ru does not have a P3P policy"
X-Firefox-Spdy: h2
dsp.mpartner.digital/dmp/syncsspdmp?sspid=8&4096b3dc-c011-21bb-e069-92664b67f354
301 Moved Permanently 117 B URL GET HTTP/2 dsp.mpartner.digital/dmp/syncsspdmp?sspid=8&4096b3dc-c011-21bb-e069-92664b67f354
IP
ASN #49505 OOO Network of data-centers Selectel
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerLet's Encrypt
Subjectdsp.mpartner.digital
Fingerprint1E:DB:46:60:A0:10:25:5F:25:1C:24:F7:86:A1:82:8C:8D:1C:6A:BF
ValiditySun, 22 Oct 2023 15:35:26 GMT - Sat, 20 Jan 2024 15:35:25 GMT
File type HTML document, ASCII text
Hash 6c6076ab79ac2d312cae7ab2ccaa2b9f
c3c3ea13820bc0bc14a5d03be56a492f2e21f27e
7431a1cc7a8d1808f108886c63da4469ea84fc615ef9390b9f01fcc2ff45e717
GET /dmp/syncsspdmp?sspid=8&4096b3dc-c011-21bb-e069-92664b67f354 HTTP/1.1
Host: dsp.mpartner.digital
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Wed, 01 Nov 2023 23:49:49 GMT
content-type: text/html; charset=utf-8
content-length: 117
location: https://nr.bidderstack.com/mediasurfer/cm?user_id=RyjDWGPZuBtNazTXbffOGtovnWsTNmSd
p3p: policyref="//dsp.mpartner.digital/w3c/p3p.xml", CP="NON DSP COR CURa ADMa DEVa OUR BUS UNI COM NAV INT STA"
set-cookie: dmp=RyjDWGPZuBtNazTXbffOGtovnWsTNmSd; Path=/; Domain=dsp.mpartner.digital; Expires=Thu, 31 Oct 2024 23:49:49 GMT; Secure; SameSite=None
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
nr.bidderstack.com/mediasurfer/cm?user_id=RyjDWGPZuBtNazTXbffOGtovnWsTNmSd
302 Found 0 B URL GET HTTP/1.1 nr.bidderstack.com/mediasurfer/cm?user_id=RyjDWGPZuBtNazTXbffOGtovnWsTNmSd
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerGoDaddy.com, Inc.
Subject*.bidderstack.com
Fingerprint88:0D:CE:79:C4:DA:79:3B:37:94:98:4A:1A:FA:19:D3:62:A5:B9:84
ValiditySun, 20 Nov 2022 07:16:28 GMT - Sat, 18 Nov 2023 12:58:37 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /mediasurfer/cm?user_id=RyjDWGPZuBtNazTXbffOGtovnWsTNmSd HTTP/1.1
Host: nr.bidderstack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Wed, 01 Nov 2023 23:49:49 GMT
Content-Length: 0
Connection: keep-alive
Location: /mediasurfer/cm?user_id=RyjDWGPZuBtNazTXbffOGtovnWsTNmSd&pupa=1
Set-Cookie: pupa=4096b3dc-c011-21bb-e069-92664b67f354; domain=.bidderstack.com; path=/; expires=Thu, 31-Oct-2024 23:49:49 GMT;
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
nr.bidderstack.com/mediasurfer/cm?user_id=RyjDWGPZuBtNazTXbffOGtovnWsTNmSd&pupa=1
200 OK 44 B URL GET HTTP/1.1 nr.bidderstack.com/mediasurfer/cm?user_id=RyjDWGPZuBtNazTXbffOGtovnWsTNmSd&pupa=1
IP
ASN #24940 Hetzner Online GmbH
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerGoDaddy.com, Inc.
Subject*.bidderstack.com
Fingerprint88:0D:CE:79:C4:DA:79:3B:37:94:98:4A:1A:FA:19:D3:62:A5:B9:84
ValiditySun, 20 Nov 2022 07:16:28 GMT - Sat, 18 Nov 2023 12:58:37 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash f9d60352c70a2ba15616d1c9421f3844
e9abc8bea7721a4b6a50295850d13c515006a95c
82cb517a8f80c91dfcec543c6d140deb3baaf463ea9e77655475096eba7bc7d9
GET /mediasurfer/cm?user_id=RyjDWGPZuBtNazTXbffOGtovnWsTNmSd&pupa=1 HTTP/1.1
Host: nr.bidderstack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Nov 2023 23:49:49 GMT
Content-Type: image/gif
Content-Length: 44
Connection: keep-alive
Set-Cookie: pupa=4096b3dc-c011-21bb-e069-92664b67f354; domain=.bidderstack.com; path=/; expires=Thu, 31-Oct-2024 23:49:49 GMT;
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
578d92ae-7911-11ee-86e0-002590c0647c.n1.sync.bumlam.com/?src=sape
302 Found 0 B URL GET HTTP/2 578d92ae-7911-11ee-86e0-002590c0647c.n1.sync.bumlam.com/?src=sape
IP
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerLet's Encrypt
Subject*.n0.sync.bumlam.com
Fingerprint99:77:61:BD:7C:71:52:75:4C:35:19:FA:21:42:A9:2E:BF:93:81:BF
ValidityTue, 19 Sep 2023 05:05:41 GMT - Mon, 18 Dec 2023 05:05:40 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sape HTTP/1.1
Host: 578d92ae-7911-11ee-86e0-002590c0647c.n1.sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiQ1NzhkOTJhZS03OTExLTExZWUtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.24.0
date: Wed, 01 Nov 2023 23:49:49 GMT
content-length: 0
location: https://pix.bumlam.com/sync/sape/done
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
X-Firefox-Spdy: h2
pix.bumlam.com/sync/sape/done
200 OK 43 B URL GET HTTP/1.1 pix.bumlam.com/sync/sape/done
IP
ASN #44066 diva-e Datacenters GmbH
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerLet's Encrypt
Subject*.bumlam.com
Fingerprint08:E4:EB:78:69:AA:1C:77:24:F5:D4:0F:6C:52:FC:A6:D3:74:90:D0
ValidityMon, 16 Oct 2023 05:30:36 GMT - Sun, 14 Jan 2024 05:30:35 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /sync/sape/done HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiQ1NzhkOTJhZS03OTExLTExZWUtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Nov 2023 23:49:49 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
static.filmskino.site/hls/trailers/ZoxJy7yXq84.mp4/index.m3u8
200 OK 339 B URL GET HTTP/1.1 static.filmskino.site/hls/trailers/ZoxJy7yXq84.mp4/index.m3u8
IP
ASN #208566 Rozetka Sp. z o.o.
Requested by https://videotoday.site/mp_dist/td/trhls.html?v5426584485
Certificate IssuerLet's Encrypt
Subjectstatic.filmskino.site
Fingerprint6E:8F:8F:89:03:E1:65:6F:AE:73:8A:6F:6B:A2:B1:02:C1:FE:D3:C7
ValidityMon, 02 Oct 2023 16:05:08 GMT - Sun, 31 Dec 2023 16:05:07 GMT
Hash 7cb53c5703f464ecaf46fc3d87112ab6
c109cb21cf0b98b3e1d1fb4ea37a4c0b6356bf48
c0112dbdac5a05b1865be84bc60024b296231dc07cf2172aee9c6a1f9d4cf205
GET /hls/trailers/ZoxJy7yXq84.mp4/index.m3u8 HTTP/1.1
Host: static.filmskino.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videotoday.site
DNT: 1
Connection: keep-alive
Referer: https://videotoday.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Nov 2023 23:49:50 GMT
Content-Type: application/vnd.apple.mpegurl
Last-Modified: Sun, 19 Nov 2000 08:52:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"3a1794b0-10ab"
Expires: Fri, 09 Feb 2024 23:49:50 GMT
Cache-Control: max-age=8640000
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Origin: *
Content-Encoding: gzip
logger.moviead55.ru/logger.php?t=player_frame_loaded_new&c=c2215dc5-d162-44eb-9465-d63316ab77d3&a=&m=0&v=63474d77d7fcd56e8ed9848f509d1c60&o=
200 OK 124 B URL GET HTTP/2 logger.moviead55.ru/logger.php?t=player_frame_loaded_new&c=c2215dc5-d162-44eb-9465-d63316ab77d3&a=&m=0&v=63474d77d7fcd56e8ed9848f509d1c60&o=
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
File type gzip compressed data, from Unix\012- data
Hash e6d6f4907343e3330ea58f856aae4fbe
90df69f99c92ff4b704dcda726fba9a849fd2853
23d07074c5f330dfee59fbe6d85d595326f7ba8b7c32e9287ec393b94771ec47
GET /logger.php?t=player_frame_loaded_new&c=c2215dc5-d162-44eb-9465-d63316ab77d3&a=&m=0&v=63474d77d7fcd56e8ed9848f509d1c60&o= HTTP/1.1
Host: logger.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: Content-Type: image/png
vary: Accept-Encoding
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
static.filmskino.site/hls/trailers/ZoxJy7yXq84.mp4/seg-1-v1-a1.ts
200 OK 280 kB URL GET HTTP/1.1 static.filmskino.site/hls/trailers/ZoxJy7yXq84.mp4/seg-1-v1-a1.ts
IP
ASN #208566 Rozetka Sp. z o.o.
Requested by https://videotoday.site/mp_dist/td/trhls.html?v5426584485
Certificate IssuerLet's Encrypt
Subjectstatic.filmskino.site
Fingerprint6E:8F:8F:89:03:E1:65:6F:AE:73:8A:6F:6B:A2:B1:02:C1:FE:D3:C7
ValidityMon, 02 Oct 2023 16:05:08 GMT - Sun, 31 Dec 2023 16:05:07 GMT
File type MPEG transport stream data\012- data
Size 280 kB (280120 bytes)
Hash 20d73abd5d9223272e437656db4b1aa3
d918924bbe2c65ea67357624bdc991d3351f2151
53ae7a8faf0e25a536747ea853791be1fc9520a05ddf807b2e171a0ba71379c7
GET /hls/trailers/ZoxJy7yXq84.mp4/seg-1-v1-a1.ts HTTP/1.1
Host: static.filmskino.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videotoday.site
DNT: 1
Connection: keep-alive
Referer: https://videotoday.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Nov 2023 23:49:50 GMT
Content-Type: video/MP2T
Content-Length: 280120
Last-Modified: Sun, 19 Nov 2000 08:52:00 GMT
Connection: keep-alive
ETag: "3a1794b0-44638"
Expires: Fri, 09 Feb 2024 23:49:50 GMT
Cache-Control: max-age=8640000
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
static.filmskino.site/hls/trailers/ZoxJy7yXq84.mp4/seg-2-v1-a1.ts
200 OK 178 kB URL GET HTTP/1.1 static.filmskino.site/hls/trailers/ZoxJy7yXq84.mp4/seg-2-v1-a1.ts
IP
ASN #208566 Rozetka Sp. z o.o.
Requested by https://videotoday.site/mp_dist/td/trhls.html?v5426584485
Certificate IssuerLet's Encrypt
Subjectstatic.filmskino.site
Fingerprint6E:8F:8F:89:03:E1:65:6F:AE:73:8A:6F:6B:A2:B1:02:C1:FE:D3:C7
ValidityMon, 02 Oct 2023 16:05:08 GMT - Sun, 31 Dec 2023 16:05:07 GMT
File type MPEG transport stream data\012- TeX font metric data (\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377)\012- data
Size 178 kB (177848 bytes)
Hash d36e94377ed8f6c6f4bfbc360ddbbe14
2b65f34b6fa6506d2a841eb933a5406a0d95b742
67a472955a6a8d23052b6c530f65f34dc0bc80e969d966b4fe35d64d134f52fe
GET /hls/trailers/ZoxJy7yXq84.mp4/seg-2-v1-a1.ts HTTP/1.1
Host: static.filmskino.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videotoday.site
DNT: 1
Connection: keep-alive
Referer: https://videotoday.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Nov 2023 23:49:50 GMT
Content-Type: video/MP2T
Content-Length: 177848
Last-Modified: Sun, 19 Nov 2000 08:52:00 GMT
Connection: keep-alive
ETag: "3a1794b0-2b6b8"
Expires: Fri, 09 Feb 2024 23:49:50 GMT
Cache-Control: max-age=8640000
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
static.filmskino.site/hls/trailers/ZoxJy7yXq84.mp4/seg-3-v1-a1.ts
200 OK 211 kB URL GET HTTP/1.1 static.filmskino.site/hls/trailers/ZoxJy7yXq84.mp4/seg-3-v1-a1.ts
IP
ASN #208566 Rozetka Sp. z o.o.
Requested by https://videotoday.site/mp_dist/td/trhls.html?v5426584485
Certificate IssuerLet's Encrypt
Subjectstatic.filmskino.site
Fingerprint6E:8F:8F:89:03:E1:65:6F:AE:73:8A:6F:6B:A2:B1:02:C1:FE:D3:C7
ValidityMon, 02 Oct 2023 16:05:08 GMT - Sun, 31 Dec 2023 16:05:07 GMT
File type MPEG transport stream data\012- TeX font metric data (\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377)\012- data
Size 211 kB (210936 bytes)
Hash 7a81abedfa0255f69aa03e056a0ae8b3
de73b2831be3cca7b4852aaaa961f5db4eeda96f
5c54892e6d3b2822cb3fd369c4951e8986d21417f2513378f8dfdb897c13274f
GET /hls/trailers/ZoxJy7yXq84.mp4/seg-3-v1-a1.ts HTTP/1.1
Host: static.filmskino.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videotoday.site
DNT: 1
Connection: keep-alive
Referer: https://videotoday.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Nov 2023 23:49:50 GMT
Content-Type: video/MP2T
Content-Length: 210936
Last-Modified: Sun, 19 Nov 2000 08:52:00 GMT
Connection: keep-alive
ETag: "3a1794b0-337f8"
Expires: Fri, 09 Feb 2024 23:49:50 GMT
Cache-Control: max-age=8640000
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
sync.gonet-ads.com/match/sape.js?id=0100007F1BE442659F2C4E41027D4CBC
200 OK 43 B URL GET HTTP/2 sync.gonet-ads.com/match/sape.js?id=0100007F1BE442659F2C4E41027D4CBC
IP
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerSectigo Limited
Subject*.gonet-ads.com
Fingerprint2B:BE:BF:75:0A:67:AA:2D:FA:0A:7F:92:F4:37:AE:9B:DD:47:68:2D
ValidityWed, 07 Jun 2023 00:00:00 GMT - Tue, 11 Jun 2024 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/sape.js?id=0100007F1BE442659F2C4E41027D4CBC HTTP/1.1
Host: sync.gonet-ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Nov 2023 23:49:53 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
logger.moviead55.ru/logger.php?t=target_country_load&c=c2215dc5-d162-44eb-9465-d63316ab77d3&a=&m=%7B%22browser%22%3A%22%7B%5C%22name%5C%22%3A%5C%22firefox%5C%22%2C%5C%22version%5C%22%3A%5C%22111%5C%22%7D%22%2C%22isMobile%22%3Afalse%2C%22format%22%3A%22new%22%7D&v=63474d77d7fcd56e8ed9848f509d1c60&o=
200 OK 70 B URL GET HTTP/2 logger.moviead55.ru/logger.php?t=target_country_load&c=c2215dc5-d162-44eb-9465-d63316ab77d3&a=&m=%7B%22browser%22%3A%22%7B%5C%22name%5C%22%3A%5C%22firefox%5C%22%2C%5C%22version%5C%22%3A%5C%22111%5C%22%7D%22%2C%22isMobile%22%3Afalse%2C%22format%22%3A%22new%22%7D&v=63474d77d7fcd56e8ed9848f509d1c60&o=
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash b357a19c87624c7c4d131aeeb4ae677f
c7a9c45fd419815a5ab1998503a9f03514c0e229
497790947d4666760ce38f3c00e852c71fdb66cae849bae8e9ede352719e1581
GET /logger.php?t=target_country_load&c=c2215dc5-d162-44eb-9465-d63316ab77d3&a=&m=%7B%22browser%22%3A%22%7B%5C%22name%5C%22%3A%5C%22firefox%5C%22%2C%5C%22version%5C%22%3A%5C%22111%5C%22%7D%22%2C%22isMobile%22%3Afalse%2C%22format%22%3A%22new%22%7D&v=63474d77d7fcd56e8ed9848f509d1c60&o= HTTP/1.1
Host: logger.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 01 Nov 2023 23:49:46 GMT
content-type: Content-Type: image/png
vary: Accept-Encoding
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
newserial.biz/engine/classes/min/index.php?f=engine/classes/js/jqueryui3.js,engine/classes/js/dle_js.js,engine/classes/js/lazyload.js&v=cef42
200 OK 169 kB URL GET HTTP/3 newserial.biz/engine/classes/min/index.php?f=engine/classes/js/jqueryui3.js,engine/classes/js/dle_js.js,engine/classes/js/lazyload.js&v=cef42
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subjectnewserial.biz
Fingerprint84:60:F1:A3:B9:FA:9E:64:D4:8D:67:6F:BE:EC:EF:92:41:1E:B5:1E
ValidityTue, 24 Oct 2023 14:29:53 GMT - Mon, 22 Jan 2024 14:29:52 GMT
File type ASCII text, with very long lines (32087), with CRLF line terminators
Size 169 kB (169096 bytes)
Hash be8b59461c536a6fec6c2a03b83264c6
eae0dce112796a8d3d12cc1f94d53e2b7a19c49d
3b6e6606b353a8885896fb5b2f727acdb14eac35ed7fad8b30260f402880d7a4
GET /engine/classes/min/index.php?f=engine/classes/js/jqueryui3.js,engine/classes/js/dle_js.js,engine/classes/js/lazyload.js&v=cef42 HTTP/1.1
Host: newserial.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/4528-kobra-kaj-na12.html
Cookie: PHPSESSID=6ft9vgdtn7uv3df82aji4oarbn
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 01 Nov 2023 23:49:46 GMT
content-type: application/x-javascript; charset=utf-8
expires: Thu, 31 Oct 2024 23:49:46 GMT
vary: Accept-Encoding
cache-control: max-age=31536000
last-modified: Wed, 04 Oct 2023 13:56:19 GMT
etag: W/"pub1696427779;gz"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vZRytIEhx4rplB4QKqhgRDqlKA9jMxPP9ZDF%2FvFQTyK9P6H2muAfSNsrwkfllha5zrZ7SHxaJKeyjYFnPq7uBI6iZm1zQrl94P43PJyrgjn3G66oonbF8NtUYbhfJDUz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81f809441aac5687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
newserial.biz/4528-kobra-kaj-na12.html
200 OK 41 kB URL User Request GET HTTP/2 newserial.biz/4528-kobra-kaj-na12.html
IP
Certificate IssuerLet's Encrypt
Subjectnewserial.biz
Fingerprint84:60:F1:A3:B9:FA:9E:64:D4:8D:67:6F:BE:EC:EF:92:41:1E:B5:1E
ValidityTue, 24 Oct 2023 14:29:53 GMT - Mon, 22 Jan 2024 14:29:52 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /4528-kobra-kaj-na12.html HTTP/1.1
Host: newserial.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=6ft9vgdtn7uv3df82aji4oarbn
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 01 Nov 2023 23:49:45 GMT
content-type: text/html; charset=utf-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CdIkvdAVUhN2n0XTbcZjf4OxBraao2lBTurw1l7i7lDqrYBpH8wGh8NHTKaEcVNGCBmuLCrWG6BSWD1f5TObpsKZLbiaUjGJrgyG21VkLZ4N3yMM24jiUu6Q9gx%2FrJhs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81f8093c7d431c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
newserial.biz/4528-kobra-kaj-nu9.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-na12.html/4528-kobra-kaj-na12.html/4528-kobra-kaj-na12.html/4528-kobra-kaj-na12.html/4528-kobra-kaj-na12.html
301 Moved Permanently 41 kB URL User Request GET HTTP/2 newserial.biz/4528-kobra-kaj-nu9.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-na12.html/4528-kobra-kaj-na12.html/4528-kobra-kaj-na12.html/4528-kobra-kaj-na12.html/4528-kobra-kaj-na12.html
IP
Certificate IssuerLet's Encrypt
Subjectnewserial.biz
Fingerprint84:60:F1:A3:B9:FA:9E:64:D4:8D:67:6F:BE:EC:EF:92:41:1E:B5:1E
ValidityTue, 24 Oct 2023 14:29:53 GMT - Mon, 22 Jan 2024 14:29:52 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /4528-kobra-kaj-nu9.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-np11.html/4528-kobra-kaj-na12.html/4528-kobra-kaj-na12.html/4528-kobra-kaj-na12.html/4528-kobra-kaj-na12.html/4528-kobra-kaj-na12.html HTTP/1.1
Host: newserial.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Wed, 01 Nov 2023 23:49:45 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=6ft9vgdtn7uv3df82aji4oarbn; path=/; secure; HttpOnly
location: /4528-kobra-kaj-na12.html
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dxO%2Fad0ESyOo9WUYJpKIB%2FsxiNaDskCJLYaLSime76dhgbS2dnGCojnLUJeOtsseS%2BUWR5CCbz%2Fkgc3TayBB5CCDQky9mk9jylKv1iBTHTEuTrU%2BHaLovz2WVRN9b7Lu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81f8093bed231c06-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
hbe199.hybrid.ai/adfoxhb
200 OK 0 B IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerSectigo Limited
Subject*.hybrid.ai
Fingerprint40:F9:88:C5:EF:2B:26:9C:61:DC:CC:ED:B1:67:03:F4:E2:CC:B7:C8
ValidityThu, 14 Sep 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /adfoxhb HTTP/1.1
Host: hbe199.hybrid.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 502
Origin: https://newserial.biz
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 01 Nov 2023 23:49:47 GMT
content-type: application/json; charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://newserial.biz
set-cookie: vid=ccf47aff262ce1f96044; expires=Thu, 31 Oct 2024 23:49:48 GMT; domain=hybrid.ai; secure; samesite=none
vary: Origin
p3p: CP='NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC'
server: Hybrid Web Server
content-encoding: br
X-Firefox-Spdy: h2
ads.adlook.me/csync?pid=sape&uid=0100007F1BE442659F2C4E41027D4CBC&url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D
302 Found 43 B URL GET HTTP/2 ads.adlook.me/csync?pid=sape&uid=0100007F1BE442659F2C4E41027D4CBC&url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D
IP
ASN #209974 Itglobalcom Rus LLC
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerGlobalSign nv-sa
Subject*.adlook.me
FingerprintBB:74:3B:09:F5:13:79:CE:CF:22:44:22:AD:AF:A7:74:23:4F:98:32
ValidityTue, 06 Jun 2023 15:02:11 GMT - Sun, 07 Jul 2024 15:02:10 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /csync?pid=sape&uid=0100007F1BE442659F2C4E41027D4CBC&url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D HTTP/1.1
Host: ads.adlook.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
location: https://acint.net/match?dp=110&euid=7d2f224b54eb4a1a9a236d8bfffcd0ef
server: Microsoft-IIS/10.0
set-cookie: adlm_userId=7d2f224b54eb4a1a9a236d8bfffcd0ef; expires=Thu, 31 Oct 2024 21:00:00 GMT; path=/; SameSite=None; secure; samesite=none
adlk_cmatch=sape%3A0100007F1BE442659F2C4E41027D4CBC; expires=Fri, 31 Dec 9999 20:59:59 GMT; path=/; SameSite=None; secure; samesite=none
date: Wed, 01 Nov 2023 23:49:48 GMT
X-Firefox-Spdy: h2
www.acint.net/match?dp=129&euid=j14y1jem1q
200 OK 43 B URL GET HTTP/2 www.acint.net/match?dp=129&euid=j14y1jem1q
IP
Requested by https://www.acint.net/mc/?dp=167
Certificate IssuerLet's Encrypt
Subject*.acint.net
Fingerprint10:D0:B1:ED:4E:38:04:67:F3:89:8C:ED:7E:E6:3D:19:1C:1C:89:EB
ValidityWed, 11 Oct 2023 01:51:47 GMT - Tue, 09 Jan 2024 01:51:46 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=129&euid=j14y1jem1q HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWVC5BtBTiyfvEx9AkGe3lEwGknFO6bUfBanO7JuvMdG; cSyncDp14v5=1698882588; cSyncDp17v2=1698882588; cSyncDp45v5=1698882588; cSyncDp53v5=1698882588; cSyncDp62v2=1698882588; cSyncDp67v3=1698882588; cSyncDp68v2=1698882588; cSyncDp71v2=1698882588; cSyncDp80v2=1698882588; cSyncDp85v2=1698882588; cSyncDp95v4=1698882588; cSyncDp98v3=1698882588; cSyncDp104v2=1698882588; cSyncDp107v2=1698882588; cSyncDp110v3=1698882588; cSyncDp125v4=1698882588; cSyncDp126v2=1698882588; cSyncDp127v2=1698882588; cSyncDp129v2=1698882588; cSyncDp136v3=1698882588; cSyncDp146v2=1698882588; cSyncDp148v2=1698882588; cSyncDp149v3=1698882588; cSyncDp151v2=1698882588; cSyncDp178v2=1698882588; cSyncDp186v2=1698882588; cSyncDp217v2=1698882588; cSyncDp221v2=1698882588; cSyncDp235v2=1698882588; cSyncDp239v2=1698882588; cSyncDp243v2=1698882588; cSyncDp260v2=1698882588; cSyncDp244v2=1698882588; cSyncDp248v2=1698882588; cSyncDp261v1=1698882588; cSyncDp14v4=1698882588
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
logger.moviead55.ru/logger.php?v=63474d77d7fcd56e8ed9848f509d1c60&c=c2215dc5-d162-44eb-9465-d63316ab77d3&t=player_loaded&a=&m=%7B%22loadTime%22%3A0.415%2C%22version%22%3A%221698760594099%22%2C%22vt%22%3A0%2C%22dh%22%3Afalse%7D&o=
200 OK 70 B URL GET HTTP/2 logger.moviead55.ru/logger.php?v=63474d77d7fcd56e8ed9848f509d1c60&c=c2215dc5-d162-44eb-9465-d63316ab77d3&t=player_loaded&a=&m=%7B%22loadTime%22%3A0.415%2C%22version%22%3A%221698760594099%22%2C%22vt%22%3A0%2C%22dh%22%3Afalse%7D&o=
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash b357a19c87624c7c4d131aeeb4ae677f
c7a9c45fd419815a5ab1998503a9f03514c0e229
497790947d4666760ce38f3c00e852c71fdb66cae849bae8e9ede352719e1581
GET /logger.php?v=63474d77d7fcd56e8ed9848f509d1c60&c=c2215dc5-d162-44eb-9465-d63316ab77d3&t=player_loaded&a=&m=%7B%22loadTime%22%3A0.415%2C%22version%22%3A%221698760594099%22%2C%22vt%22%3A0%2C%22dh%22%3Afalse%7D&o= HTTP/1.1
Host: logger.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: Content-Type: image/png
vary: Accept-Encoding
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/900304/7ae298709f5bbdda0568.js
200 OK 125 kB URL GET HTTP/2 yastatic.net/partner-code-bundles/900304/7ae298709f5bbdda0568.js
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerGlobalSign nv-sa
Subject*.yastatic-net.ru
FingerprintD9:64:E0:F2:39:AC:36:DB:9A:A3:3D:E4:27:E4:0B:F5:5B:5B:E3:A0
ValidityMon, 10 Jul 2023 13:25:28 GMT - Sun, 07 Jan 2024 20:59:59 GMT
File type ASCII text, with very long lines (65494)
Size 125 kB (125390 bytes)
Hash 77805f5695d3c7f57e1c3d05a7819f65
3d9314921630ebb0f747cf80799643b42c3e208e
28a3dfd047f2959bac9150a6545dc246aa2f5a9e8f972b832de7c447e900e9e4
GET /partner-code-bundles/900304/7ae298709f5bbdda0568.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://newserial.biz
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 01 Nov 2023 23:49:47 GMT
content-type: text/javascript; charset=utf-8
content-length: 26701
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "b02557040b88e274fa80a830a1b15ed2"
expires: Sat, 01 Nov 2053 06:22:28 GMT
last-modified: Tue, 31 Oct 2023 17:33:09 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
sync.gonet-ads.com/match/SkyAdvert?id=e241f11a-3f95-69ea-3fba-ca1045e8f1d6
200 OK 43 B URL GET HTTP/2 sync.gonet-ads.com/match/SkyAdvert?id=e241f11a-3f95-69ea-3fba-ca1045e8f1d6
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerSectigo Limited
Subject*.gonet-ads.com
Fingerprint2B:BE:BF:75:0A:67:AA:2D:FA:0A:7F:92:F4:37:AE:9B:DD:47:68:2D
ValidityWed, 07 Jun 2023 00:00:00 GMT - Tue, 11 Jun 2024 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/SkyAdvert?id=e241f11a-3f95-69ea-3fba-ca1045e8f1d6 HTTP/1.1
Host: sync.gonet-ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 01 Nov 2023 23:49:50 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
newserial.biz/templates/newserial/images/search-icon.svg
200 OK 231 B URL GET HTTP/3 newserial.biz/templates/newserial/images/search-icon.svg
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subjectnewserial.biz
Fingerprint84:60:F1:A3:B9:FA:9E:64:D4:8D:67:6F:BE:EC:EF:92:41:1E:B5:1E
ValidityTue, 24 Oct 2023 14:29:53 GMT - Mon, 22 Jan 2024 14:29:52 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash cbc4b422ff6bc289ae742ae6d7c937b8
3f9bb213bc8099483581a439179d5dd157457821
3be07b653d8213bcb714a942116068f0ca336b67a478de25bbee229dadbf663f
GET /templates/newserial/images/search-icon.svg HTTP/1.1
Host: newserial.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/templates/newserial/css/first.css?v1.1.8
Cookie: PHPSESSID=6ft9vgdtn7uv3df82aji4oarbn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 01 Nov 2023 23:49:46 GMT
content-type: image/svg+xml
last-modified: Wed, 04 Oct 2023 13:56:21 GMT
etag: W/"651d6f05-e7"
expires: Wed, 24 Apr 2024 13:17:27 GMT
cache-control: max-age=16070400
cf-cache-status: HIT
age: 469939
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RjvRbXgzUc3RLccntwL08Ju1Ep4vj3AMlRseijYYpqL06dLjZxKVvxHHi2J20RAXnTOCJ6iXm77SdsIj1jmlwOoanCAt3q0q%2BIdVbF5SEtOJ0y7soz7N5nrlNdn6A9LV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81f80942ca1d5687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
newserial.biz/templates/newserial/js/libs.js?v1.0.2
200 OK 53 kB URL GET HTTP/3 newserial.biz/templates/newserial/js/libs.js?v1.0.2
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subjectnewserial.biz
Fingerprint84:60:F1:A3:B9:FA:9E:64:D4:8D:67:6F:BE:EC:EF:92:41:1E:B5:1E
ValidityTue, 24 Oct 2023 14:29:53 GMT - Mon, 22 Jan 2024 14:29:52 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /templates/newserial/js/libs.js?v1.0.2 HTTP/1.1
Host: newserial.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/4528-kobra-kaj-na12.html
Cookie: PHPSESSID=6ft9vgdtn7uv3df82aji4oarbn
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 01 Nov 2023 23:49:46 GMT
content-type: application/javascript
cache-control: max-age=16070400
cf-bgj: minify
cf-polished: origSize=55323
etag: W/"651d6f05-d81b"
expires: Wed, 24 Apr 2024 13:17:27 GMT
last-modified: Wed, 04 Oct 2023 13:56:21 GMT
cf-cache-status: HIT
age: 469939
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8CKM2knH2Roz6B1BO6eN0vZhiCHo6spLPS3ZyzpH0EMO0uLg5Y1Z%2BpaFgB053iEaF6jxnHmypu8%2FsRk04ADVQbmioXMUlpIYUB4mV9wXw75IGdMt%2F6n5IC6G%2FvM44Zp%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81f809441aab5687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
vak345.com/cs/202311020249.js?v=63474d77d7fcd56e8ed9848f509d1c60&_t=1698882587337.337
200 OK 36 kB URL GET HTTP/3 vak345.com/cs/202311020249.js?v=63474d77d7fcd56e8ed9848f509d1c60&_t=1698882587337.337
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF4:50:2C:D7:5C:84:E6:10:5D:32:80:62:FC:FE:E8:A0:40:4B:99:C4
ValidityFri, 10 Mar 2023 00:00:00 GMT - Sat, 09 Mar 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cs/202311020249.js?v=63474d77d7fcd56e8ed9848f509d1c60&_t=1698882587337.337 HTTP/1.1
Host: vak345.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 01 Nov 2023 23:49:46 GMT
content-type: application/javascript;charset=UTF-8
vary: Accept-Encoding
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
x-movieads-udata: cache
x-yac-source: Yac
x-movieads-setup: base
x-movieads-country: NO
cf-cache-status: BYPASS
set-cookie: sky_uuid=e387ccb5-c432-482a-a7b8-132b6c824b93; expires=Thu, 31-Oct-2024 23:49:46 GMT; Max-Age=31536000; path=/; SameSite=None;Secure
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TQFjZb3RsQETsP7DG6Fi8nZC2QA0sFzSjE4XS1xfviLGClqV1gCl9l8o9MbSYSJFlM5h0cNBP7EK6GuFAHywwihtaIGdWLtDndPTEBVY9qJUDP7x5wa9P9f7QtDx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81f809456cdb1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
yastatic.net/partner-code-bundles/900304/ba5035acccea683c91e7.js
200 OK 31 kB URL GET HTTP/2 yastatic.net/partner-code-bundles/900304/ba5035acccea683c91e7.js
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerGlobalSign nv-sa
Subject*.yastatic-net.ru
FingerprintD9:64:E0:F2:39:AC:36:DB:9A:A3:3D:E4:27:E4:0B:F5:5B:5B:E3:A0
ValidityMon, 10 Jul 2023 13:25:28 GMT - Sun, 07 Jan 2024 20:59:59 GMT
File type ASCII text, with very long lines (31080)
Hash 149bf31947463ad8b0bc8ec89545deac
bd6422be28332488316abb1134b456c12f18047c
b41be7c79a3c9e1b10e78c40c158ad93710782a3ea33dd3687ec1b73ad02f50b
GET /partner-code-bundles/900304/ba5035acccea683c91e7.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://newserial.biz
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 01 Nov 2023 23:49:47 GMT
content-type: text/javascript; charset=utf-8
content-length: 8721
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "e9b085bdbfae32bf8d3650b7faa2c7a4"
expires: Sat, 01 Nov 2053 06:22:30 GMT
last-modified: Tue, 31 Oct 2023 17:33:09 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
newserial.biz/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
200 OK 12 kB URL GET HTTP/3 newserial.biz/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subjectnewserial.biz
Fingerprint84:60:F1:A3:B9:FA:9E:64:D4:8D:67:6F:BE:EC:EF:92:41:1E:B5:1E
ValidityTue, 24 Oct 2023 14:29:53 GMT - Mon, 22 Jan 2024 14:29:52 GMT
File type ASCII text, with very long lines (12331)
Hash 88a769d2fe35899fd45a332a0a032cc0
514c6c1d8475d17e412849a4c90159517d0fa10a
ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142
GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: newserial.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/4528-kobra-kaj-na12.html
Cookie: PHPSESSID=6ft9vgdtn7uv3df82aji4oarbn
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 01 Nov 2023 23:49:45 GMT
content-type: application/javascript
last-modified: Fri, 27 Oct 2023 14:30:26 GMT
etag: W/"653bc982-302c"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lo9BCqNvtmvVUem57hhmvZBXnR1croe3U54kkjoJ%2BLAO5nhytnY707qJh%2FZ3Q2vrQzqJKJPBoU36gjAUOtAbcOPG0AgrtPTuVubRCYpEdg9Z6BIiHYJSIp4KqOScrPXu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81f80941a99a5687-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Fri, 03 Nov 2023 23:49:45 GMT
cache-control: max-age=172800, public
content-encoding: gzip
newserial.biz/engine/modules/antibot/antibot.php
200 OK 5.2 kB URL GET HTTP/3 newserial.biz/engine/modules/antibot/antibot.php
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subjectnewserial.biz
Fingerprint84:60:F1:A3:B9:FA:9E:64:D4:8D:67:6F:BE:EC:EF:92:41:1E:B5:1E
ValidityTue, 24 Oct 2023 14:29:53 GMT - Mon, 22 Jan 2024 14:29:52 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 160x80, components 3\012- data
Hash 8b54b22611763c702f86909a106df51d
ae36437b76a232a8d3ea602bad85e5b95d9bb2d0
be0cbda8cb5f301bccd5b7418bea9d56d433b39d35eaba61a40492417908812b
GET /engine/modules/antibot/antibot.php HTTP/1.1
Host: newserial.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/4528-kobra-kaj-na12.html
Cookie: PHPSESSID=6ft9vgdtn7uv3df82aji4oarbn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 01 Nov 2023 23:49:45 GMT
content-type: image/jpeg
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BmMKSoVpthSpaj6Y%2FXVi9QA9M%2BPAD1kql3sqrmb4MCKQsspDerypYXFYSr3KiKVbviWzgs59k84BchTcK1lno6HyiYHrOFz21DFv8mwT0dy%2FxsD4fOiIfZadw34AabgC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81f80941a9a15687-OSL
alt-svc: h3=":443"; ma=86400
yastatic.net/partner-code-bundles/900304/0e934a972a9ae22a512a.js
200 OK 9.2 kB URL GET HTTP/2 yastatic.net/partner-code-bundles/900304/0e934a972a9ae22a512a.js
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerGlobalSign nv-sa
Subject*.yastatic-net.ru
FingerprintD9:64:E0:F2:39:AC:36:DB:9A:A3:3D:E4:27:E4:0B:F5:5B:5B:E3:A0
ValidityMon, 10 Jul 2023 13:25:28 GMT - Sun, 07 Jan 2024 20:59:59 GMT
File type ASCII text, with very long lines (9538), with no line terminators
Hash 8911694218cc223f12394e8bff1628a6
b5c9d403b1b524648f463e8da9852670d9413e1d
3aeabc21ea64b8ff5d7566804e75854456334030e864487f97cb437ae0c8ffe4
GET /partner-code-bundles/900304/0e934a972a9ae22a512a.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://newserial.biz
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 01 Nov 2023 23:49:47 GMT
content-type: text/javascript; charset=utf-8
content-length: 3558
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "eb310ffccd0cf096c267a787ab45c780"
expires: Sat, 01 Nov 2053 06:22:29 GMT
last-modified: Tue, 31 Oct 2023 17:33:09 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
vak345.com/s.js?v=63474d77d7fcd56e8ed9848f509d1c60
200 OK 3.7 kB URL GET HTTP/2 vak345.com/s.js?v=63474d77d7fcd56e8ed9848f509d1c60
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF4:50:2C:D7:5C:84:E6:10:5D:32:80:62:FC:FE:E8:A0:40:4B:99:C4
ValidityFri, 10 Mar 2023 00:00:00 GMT - Sat, 09 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (4096), with no line terminators
Hash 1e428756435170ae097b9d40caeea5c4
de8bd9b7477151c9174d86235f52a5534da44f16
ef0f3df7c797166ea66ce8e88616399eb880b5147ef7884b4f1c955bc30db4db
GET /s.js?v=63474d77d7fcd56e8ed9848f509d1c60 HTTP/1.1
Host: vak345.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 01 Nov 2023 23:49:46 GMT
content-type: text/javascript;charset=UTF-8
vary: Accept-Encoding
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
x-movieads-country: NO
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dFRIe0Jlw7qMqxgVWrMXF5Yn2HdVfnxTv9HJswRJv05T7jfJi6zurVBGsvrg3YlwbGqZ%2FAOoJ7amagLA5DV11C3Qw6bNoW1AI8stQwwzshxuBdtv9XI5ZlD9KEQo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81f809444f6e56c5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
newserial.biz/favicon.svg
200 OK 1.6 kB URL GET HTTP/3 newserial.biz/favicon.svg
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subjectnewserial.biz
Fingerprint84:60:F1:A3:B9:FA:9E:64:D4:8D:67:6F:BE:EC:EF:92:41:1E:B5:1E
ValidityTue, 24 Oct 2023 14:29:53 GMT - Mon, 22 Jan 2024 14:29:52 GMT
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (1611), with no line terminators
Hash db6a2ca3bbf6fee68a686aaea009b02d
1a1d1015d1dfac435e73fee07acb974d9f4a75e9
bf2cf8ca413461cb5ef185d464ed926ac859e3205d0e59c7c5df410094f5a187
GET /favicon.svg HTTP/1.1
Host: newserial.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/4528-kobra-kaj-na12.html
Cookie: PHPSESSID=6ft9vgdtn7uv3df82aji4oarbn; _ma=a99e34a9-0294-42eb-bc12-903f91c55c16
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 01 Nov 2023 23:49:46 GMT
content-type: image/svg+xml
last-modified: Wed, 04 Oct 2023 13:56:30 GMT
etag: W/"651d6f0e-61b"
expires: Wed, 24 Apr 2024 13:17:28 GMT
cache-control: max-age=16070400
cf-cache-status: HIT
age: 469938
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yQmvJpMqdfvQ4%2F44UQh41AdDECeFbCVNAAgpPH8vUyRaJbBJf%2B1bS%2BtKpaTrbEowkk4Yg94dQ4CPorHp3cgOqsgV04EtJvVrx3cSFzcGZYugw2pOfKNudtsTLglIunIa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81f809487c855687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
cdn.adfinity.pro/code/css/adfinity.css
200 OK 5.3 kB URL GET HTTP/2 cdn.adfinity.pro/code/css/adfinity.css
IP
ASN #210756 G-Core Rus LLC
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerSectigo Limited
Subject*.adfinity.pro
FingerprintC8:80:11:60:8F:F8:44:5A:8E:B4:79:3F:2F:7A:D2:D7:9C:28:72:A8
ValidityFri, 09 Dec 2022 00:00:00 GMT - Sat, 16 Dec 2023 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (5298), with no line terminators
Hash 0ff72185fa6e230a22f04769de7e3b97
9143aaa9888f50eaaafeb03c6c906be9e8ac3667
ad2b25c446d9f6cdcbdbdf1d98f5b7425cf4abec241d4f44ed0cd901d7c83bdd
GET /code/css/adfinity.css HTTP/1.1
Host: cdn.adfinity.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 01 Nov 2023 23:49:46 GMT
content-type: text/css
last-modified: Thu, 19 Oct 2023 12:36:25 GMT
etag: W/"653122c9-14b4"
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
access-control-allow-origin: *
cache: HIT
x-cached-since: 2023-11-01T12:27:02+00:00
x-node: m9p-up-gc31
content-encoding: gzip
X-Firefox-Spdy: h2
user91471.clients-cdnnow.ru/vp_dist/hls.js?v2
200 OK 337 kB URL GET HTTP/2 user91471.clients-cdnnow.ru/vp_dist/hls.js?v2
IP
Requested by https://videotoday.site/mp_dist/td/trhls.html?v5426584485
Certificate IssuerLet's Encrypt
Subject*.clients-cdnnow.ru
Fingerprint09:99:D9:5F:91:42:89:7C:FE:68:3E:50:33:71:AD:11:CA:A0:27:38
ValiditySun, 13 Aug 2023 22:22:56 GMT - Sat, 11 Nov 2023 22:22:55 GMT
Size 337 kB (336642 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /vp_dist/hls.js?v2 HTTP/1.1
Host: user91471.clients-cdnnow.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videotoday.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 01 Nov 2023 23:49:49 GMT
content-type: application/javascript
last-modified: Tue, 14 Feb 2023 08:10:38 GMT
vary: Accept-Encoding
etag: W/"63eb41fe-52302"
x-movieads-country: RU
content-encoding: gzip
x-edge-cache: HIT
x-edge-ip: 172.19.32.3
X-Firefox-Spdy: h2
exchange.buzzoola.com/cookiesync/redirect/skyadvert?redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dbzcookie%26bid%3D%24%7BUUID%7D
301 Moved Permanently 0 B URL GET HTTP/2 exchange.buzzoola.com/cookiesync/redirect/skyadvert?redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dbzcookie%26bid%3D%24%7BUUID%7D
IP
ASN #24940 Hetzner Online GmbH
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerSectigo Limited
Subject*.buzzoola.com
FingerprintE6:7F:94:98:CF:E4:CF:88:C7:8C:FC:16:A3:D7:D0:10:4E:EC:AB:F1
ValidityMon, 04 Sep 2023 00:00:00 GMT - Fri, 04 Oct 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cookiesync/redirect/skyadvert?redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dbzcookie%26bid%3D%24%7BUUID%7D HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: text/html; charset=utf-8
content-length: 126
location: https://code.moviead55.ru/go/csync?cn=bzcookie&bid=e3aa4c19-2582-4638-4d1b-d01bf4449210
serverid: TODO
X-Firefox-Spdy: h2
newserial.biz/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
200 OK 12 kB URL GET HTTP/3 newserial.biz/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subjectnewserial.biz
Fingerprint84:60:F1:A3:B9:FA:9E:64:D4:8D:67:6F:BE:EC:EF:92:41:1E:B5:1E
ValidityTue, 24 Oct 2023 14:29:53 GMT - Mon, 22 Jan 2024 14:29:52 GMT
File type ASCII text, with very long lines (12331)
Hash 88a769d2fe35899fd45a332a0a032cc0
514c6c1d8475d17e412849a4c90159517d0fa10a
ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142
GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: newserial.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/4528-kobra-kaj-na12.html
Cookie: PHPSESSID=6ft9vgdtn7uv3df82aji4oarbn
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 01 Nov 2023 23:49:46 GMT
content-type: application/javascript
last-modified: Fri, 27 Oct 2023 14:30:26 GMT
etag: W/"653bc982-302c"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zWIo6B%2Fy5ce8D749%2FehKmFXKH%2Bue61aDKtkhnywglaRsBzN3DBTfZJ4dG8dnIwIxY024tbOKTov48xgW6wcdweAFg%2FH8sl4sLC6uP%2BYLi08mfH6UwifOF9bm%2F9psqu8i"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81f80942ca1c5687-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Fri, 03 Nov 2023 23:49:46 GMT
cache-control: max-age=172800, public
content-encoding: gzip
miradres.com/lat/870
200 OK 158 B IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subjectmiradres.com
Fingerprint9C:FA:53:73:49:EB:CD:56:18:D7:6C:67:D4:AD:32:25:11:0A:6D:13
ValiditySat, 21 Oct 2023 07:24:42 GMT - Fri, 19 Jan 2024 07:24:41 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with no line terminators
Hash 4c9ea221577ac9d85e822737a07d4875
9a4f6fdd838434a83e9a72def2b0e10e8db006fe
11b8fcc98b8884ec4ccfd3510aa105860968be18575dbcf940babb258bba1077
GET /lat/870 HTTP/1.1
Host: miradres.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 01 Nov 2023 23:49:46 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: PHPSESSID=rk6f9eb712gu8d002up1k3jhe2; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: *
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
newserial.biz/ccdn.php
200 OK 11 B IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subjectnewserial.biz
Fingerprint84:60:F1:A3:B9:FA:9E:64:D4:8D:67:6F:BE:EC:EF:92:41:1E:B5:1E
ValidityTue, 24 Oct 2023 14:29:53 GMT - Mon, 22 Jan 2024 14:29:52 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 023b66d077eec9336b21a3813defc22a
4d644f198bd706740dabf098ccf16a68f2c8a06d
dd1ac68a937ed14636599279bc971a1b4fc20df9aed5f29bc51a0c7449472fb6
POST /ccdn.php HTTP/1.1
Host: newserial.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 68
Origin: https://newserial.biz
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/4528-kobra-kaj-na12.html
Cookie: PHPSESSID=6ft9vgdtn7uv3df82aji4oarbn
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 01 Nov 2023 23:49:46 GMT
content-type: application/json; charset=utf-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZXjP6ZNZFdwAPNZjL4LWd4P1SotT0DHnHnthzPtd2%2FjH8YjjF%2F0r6Pjt63TDWEvBA4DHwvFU3ec6EIGaecWdE24VicES7o1tVdNGkkWKOqXAgn8L%2FBBNvwV0phcy077B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81f809469ba25687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
code.moviead55.ru/madstyle.css
200 OK 209 B URL GET HTTP/2 code.moviead55.ru/madstyle.css
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
File type ASCII text, with no line terminators
Hash 5c29b4957c6d9aa93e854aff4c68abac
51490ba26c011830d821b5425e5611eba0738506
38b9141a498090410c160fa6727aff55cb5b0e9e6a89c506ec14ae78f438f31f
GET /madstyle.css HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 01 Nov 2023 23:49:46 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
access-control-allow-origin: *
access-control-expose-headers: *
access-control-max-age: 86400
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin, Access-Control-Request-Headers, Access-Control-Request-Method
etag: W/"28021-7Ba9Gb9K6bwuIzasQJpQO7varK0"
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
yandex.ru/ads/system/context.js
200 OK 326 kB URL GET HTTP/2 yandex.ru/ads/system/context.js
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerGlobalSign nv-sa
Subject*.xn--d1acpjx3f.xn--p1ai
FingerprintE4:BA:B2:7F:BF:93:B8:22:10:26:70:37:9C:03:1A:9D:FB:23:17:24
ValidityWed, 21 Jun 2023 13:42:48 GMT - Tue, 19 Dec 2023 20:59:59 GMT
File type ASCII text, with very long lines (65492)
Size 326 kB (325807 bytes)
Hash 832cdcfae0b29824d0a24c2b992e2370
9667ffca83bc50d7c58f2dd97f9156b16727830f
1e3afc46ea302244a0405cdd75307aa06fdfa6048cda10367cc133dddd562d70
GET /ads/system/context.js HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
timing-allow-origin: *
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
x-content-type-options: nosniff
access-control-allow-origin: *
set-cookie: i=v36QHZmKuU1+pdkHH+S/a2s0gX83KgV+0RBFUj4bnlrwzaBQzTwkAYyroQglf0hOuvNr2EUPS0ddJyUl5ilP1NcsHnI=; Expires=Fri, 31-Oct-2025 23:49:47 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=6413788231698882587; Expires=Fri, 31-Oct-2025 23:49:47 GMT; Domain=.yandex.ru; Path=/; Secure; SameSite=None
yashr=3660797491698882587; Path=/; Domain=.yandex.ru; Expires=Thu, 31 Oct 2024 23:49:47 GMT; SameSite=None; Secure; HttpOnly
expires: Thu, 02 Nov 2023 00:49:47 GMT
x-yandex-req-id: 1698882587066342-16806730147741378823-balancer-l7leveler-kubr-yp-vla-146-BAL-3274
accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Platform, Sec-CH-UA-Full-Version, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
cache-control: private, max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
x-robots-tag: noindex, noarchive, nofollow
X-Firefox-Spdy: h2
logger.moviead55.ru/logger.php?t=cdiv&c=c2215dc5-d162-44eb-9465-d63316ab77d3&a=&m=211&v=63474d77d7fcd56e8ed9848f509d1c60&o=
200 OK 70 B URL GET HTTP/2 logger.moviead55.ru/logger.php?t=cdiv&c=c2215dc5-d162-44eb-9465-d63316ab77d3&a=&m=211&v=63474d77d7fcd56e8ed9848f509d1c60&o=
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash b357a19c87624c7c4d131aeeb4ae677f
c7a9c45fd419815a5ab1998503a9f03514c0e229
497790947d4666760ce38f3c00e852c71fdb66cae849bae8e9ede352719e1581
GET /logger.php?t=cdiv&c=c2215dc5-d162-44eb-9465-d63316ab77d3&a=&m=211&v=63474d77d7fcd56e8ed9848f509d1c60&o= HTTP/1.1
Host: logger.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 01 Nov 2023 23:49:47 GMT
content-type: Content-Type: image/png
vary: Accept-Encoding
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
code.moviead55.ru/go/bmap?v=63474d77d7fcd56e8ed9848f509d1c60&sub_id=base&testad=no&r=https%3A%2F%2Fnewserial.biz%2F4528-kobra-kaj-na12.html
200 OK 162 kB URL GET HTTP/2 code.moviead55.ru/go/bmap?v=63474d77d7fcd56e8ed9848f509d1c60&sub_id=base&testad=no&r=https%3A%2F%2Fnewserial.biz%2F4528-kobra-kaj-na12.html
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 162 kB (161509 bytes)
Hash 42c3bc90dd3f4615c202ba801c3b4308
21c8e685bfccec7c220c0a678f238eab4c6f7648
27df9861a2dcd36b0a4f79ace3e4b2f834f713f97c864ad77414de460ed275bc
GET /go/bmap?v=63474d77d7fcd56e8ed9848f509d1c60&sub_id=base&testad=no&r=https%3A%2F%2Fnewserial.biz%2F4528-kobra-kaj-na12.html HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Cookie: sky_uuid=eabf35c5-fe56-a849-d214-d377ed5aa8d3; bzcookie=e3aa4c19-2582-4638-4d1b-d01bf4449210; hbrdcookie2=2dbad00c49345906554d; otclkbid=VUgQTgRRFnkyR57; ohmybid=87f8ef00-ea27-4a04-841f-938cfbeaa703
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 01 Nov 2023 23:49:48 GMT
content-type: text/javascript;charset=UTF-8
vary: Accept-Encoding
x-movieads-udata: cache,parsed,16788
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
newserial.biz/templates/newserial/css/style.css?v1.0.1
200 OK 34 kB URL GET HTTP/3 newserial.biz/templates/newserial/css/style.css?v1.0.1
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subjectnewserial.biz
Fingerprint84:60:F1:A3:B9:FA:9E:64:D4:8D:67:6F:BE:EC:EF:92:41:1E:B5:1E
ValidityTue, 24 Oct 2023 14:29:53 GMT - Mon, 22 Jan 2024 14:29:52 GMT
File type ASCII text, with very long lines (33758), with no line terminators
Hash dcf82543d54e063e9be1d05badd33613
d2baf5d626d3df79f149bd93f9d2aa6fe681c95b
ba5b10c92b9a5fb93e18580f6011d2cfe02be5c47faaca4b26bb322c621b25e2
GET /templates/newserial/css/style.css?v1.0.1 HTTP/1.1
Host: newserial.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/4528-kobra-kaj-na12.html
Cookie: PHPSESSID=6ft9vgdtn7uv3df82aji4oarbn
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 01 Nov 2023 23:49:45 GMT
content-type: text/css
cache-control: max-age=16070400
cf-bgj: minify
cf-polished: origSize=33774
etag: W/"651d6f05-83ee"
expires: Wed, 24 Apr 2024 13:17:27 GMT
last-modified: Wed, 04 Oct 2023 13:56:21 GMT
cf-cache-status: HIT
age: 469938
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RLj1U1iDwZKw9AXoByhbGur39TUFDxPinWabQZDrCY%2BIFeRjk%2FfPCfyHGoZWwrDMXz%2FmJvbULrohFkkNEMx3vcb4YLcytJaJfpLojdQCLu0aYK%2BxWuTr0UQJWVIFjFbN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81f80941a99c5687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
newserial.biz/engine/classes/min/index.php?g=general3&v=cef42
200 OK 90 kB URL GET HTTP/3 newserial.biz/engine/classes/min/index.php?g=general3&v=cef42
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subjectnewserial.biz
Fingerprint84:60:F1:A3:B9:FA:9E:64:D4:8D:67:6F:BE:EC:EF:92:41:1E:B5:1E
ValidityTue, 24 Oct 2023 14:29:53 GMT - Mon, 22 Jan 2024 14:29:52 GMT
File type ASCII text, with very long lines (65446), with CRLF line terminators
Hash 0732e3eabbf8aa7ce7f69eedbd07dfdd
4cd5ddc413b3024d7b56331c0d0d0b2bd933f27f
ce9d07500ad91ec2b524c270764ec4c9a33e78320d8d374ec400ede488f6251b
GET /engine/classes/min/index.php?g=general3&v=cef42 HTTP/1.1
Host: newserial.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/4528-kobra-kaj-na12.html
Cookie: PHPSESSID=6ft9vgdtn7uv3df82aji4oarbn
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 01 Nov 2023 23:49:46 GMT
content-type: application/x-javascript; charset=utf-8
expires: Thu, 31 Oct 2024 23:49:46 GMT
vary: Accept-Encoding
cache-control: max-age=31536000
last-modified: Wed, 04 Oct 2023 13:56:19 GMT
etag: W/"pub1696427779;gz"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SeGaFRxODjr%2B94qeXlq5ZqDtMpmmyJsGzIn0RXjre8sBufVzessxAfRk6eAPiodEyOJ2swq1Io1HaRUR4VjikiZVMGDkUCQJuktkBkhOD1O8PQs%2B6BDyy2rLsQOrA76N"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81f809441aad5687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
code.moviead55.ru/go/cinit?cn=gtnt&rnd=1698882587
301 Moved Permanently 0 B URL GET HTTP/2 code.moviead55.ru/go/cinit?cn=gtnt&rnd=1698882587
IP
ASN #6681 Rozetka Sp. z o.o.
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subject*.moviead55.ru
FingerprintCC:7F:33:36:EA:E9:74:E6:01:78:2B:3F:E0:D2:07:2E:0E:15:F4:6B
ValidityFri, 08 Sep 2023 12:23:14 GMT - Thu, 07 Dec 2023 12:23:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=gtnt&rnd=1698882587 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 01 Nov 2023 23:49:47 GMT
content-length: 0
location: https://px.adhigh.net/p/cm/skyadvert?u=2124d37a-e2b7-0070-0561-73df6ab3e466
set-cookie: sky_uuid=2124d37a-e2b7-0070-0561-73df6ab3e466; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
videotoday.site/mp_dist/td/trhls.html?v5426584485
200 OK 9.0 kB URL GET HTTP/2 videotoday.site/mp_dist/td/trhls.html?v5426584485
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerGoogle Trust Services LLC
Subjectvideotoday.site
FingerprintA8:0A:0C:FF:C9:74:01:DA:F2:F4:6F:1A:46:B4:A3:2D:53:73:57:62
ValidityFri, 06 Oct 2023 02:55:12 GMT - Thu, 04 Jan 2024 02:55:11 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9196), with no line terminators
Hash a38daf416b08e0889203b0b2d19e924e
cd4203f54bb4b679946add807a8c04f118ff2eae
557d1dc173dc9bc0aa5321fe90845f25a1f3325c8e57ba806843ec528481956e
GET /mp_dist/td/trhls.html?v5426584485 HTTP/1.1
Host: videotoday.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 01 Nov 2023 23:49:49 GMT
content-type: text/html
last-modified: Tue, 31 Oct 2023 13:56:46 GMT
vary: Accept-Encoding
x-movieads-country: NO
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-max-age: 1728000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mOqA1mjjB%2FRtptJrEXkEMNEmlN9NzfMnd2fpGOZQ%2FIb1sIQ58I3UgXW6K7BiU912Vzd6GmEe%2BCnLKs4HU5Txo6kbkJQ0G%2BEbhhkEO5Ybkd7ibIZTTgOKwaDHe1t8i%2FD2ds8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81f809557a3ab4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
otclick-adv.ru/core/match.gif?s=30&reference=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dotclkbid%26bid%3D%23%7BUID%7D
302 Found 0 B URL GET HTTP/2 otclick-adv.ru/core/match.gif?s=30&reference=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dotclkbid%26bid%3D%23%7BUID%7D
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerLet's Encrypt
Subjectotclick.ru
Fingerprint3A:7D:83:98:7E:DD:BF:D7:8A:A8:6E:FB:B0:9E:9F:DF:A9:37:C8:54
ValidityMon, 02 Oct 2023 16:11:22 GMT - Sun, 31 Dec 2023 16:11:21 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /core/match.gif?s=30&reference=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dotclkbid%26bid%3D%23%7BUID%7D HTTP/1.1
Host: otclick-adv.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.24.0
date: Wed, 01 Nov 2023 23:49:48 GMT
content-length: 124
location: https://code.moviead55.ru/go/csync?cn=otclkbid&bid=VUgQTgRRFnkyR57
p3p: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA
cache-control: no-cache, max-age=0, must-revalidate, no-store
pragma: no-cache
expires: Thursday, 01-Jan-1970 00:00:00 GMT
set-cookie: idntfy=VUgQTgRRFnkyR57; expires=Sat, 29-Oct-2033 23:49:48 GMT; domain=otclick-adv.ru; path=/core; SameSite=None; Secure
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s.myangular.life/player?hit=script&sub=actualize&host=newserial.biz
200 OK 0 B URL GET HTTP/1.1 s.myangular.life/player?hit=script&sub=actualize&host=newserial.biz
IP
ASN #24940 Hetzner Online GmbH
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerSectigo Limited
Subjects.myangular.life
Fingerprint3A:21:0F:72:24:43:49:14:06:28:C6:D0:A6:10:6B:D7:B2:EA:5A:66
ValidityTue, 04 Apr 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /player?hit=script&sub=actualize&host=newserial.biz HTTP/1.1
Host: s.myangular.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Nov 2023 23:49:46 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
kimberlite.io/rtb/sync/skyadvert?u=2930ec4c-df73-0948-da9c-744b5c1e7d98
307 Temporary Redirect 0 B URL GET HTTP/1.1 kimberlite.io/rtb/sync/skyadvert?u=2930ec4c-df73-0948-da9c-744b5c1e7d98
IP
Requested by https://newserial.biz/4528-kobra-kaj-na12.html
Certificate IssuerGlobalSign nv-sa
Subject*.kimberlite.io
Fingerprint94:44:D9:27:EE:9B:5F:DE:36:07:ED:BA:1A:1D:62:2A:31:B6:43:72
ValidityFri, 10 Mar 2023 07:40:01 GMT - Wed, 10 Apr 2024 07:40:00 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtb/sync/skyadvert?u=2930ec4c-df73-0948-da9c-744b5c1e7d98 HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newserial.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Wed, 01 Nov 2023 23:49:48 GMT
Content-Length: 0
Connection: keep-alive
cache-control: no-store
access-control-allow-credentials: true
access-control-allow-origin: *
location: https://code.moviead55.ru/go/csync?cn=solta&bid=ZULkHM9jaoU
set-cookie: u=ZULkHM9jaoU~oPvr1BQyW9cfnKus3UVrbCk0NFU; path=/; max-age=7776000; samesite=none; httponly; secure
n=; max-age=0; samesite=none; httponly; secure
referrer-policy: no-referrer
server-timing: app;srv=9;dur=0.0001
104.21.46.47
94.130.13.220
23.111.107.44
172.67.218.218
188.42.105.236
193.200.65.146
188.114.96.1
195.191.235.32
65.108.236.88
139.45.228.132
141.94.28.216
0.0.0.0