GET /43t3f/45y4g.exe HTTP/1.1
Host: palochusvet.szm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
|
85.248.228.58
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
Server: nginx
Date: Sat, 02 Jul 2022 17:00:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
|
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
54.230.111.35
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Content-Type, Alert, Backoff, Content-Length
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 02 Jul 2022 16:50:53 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: uSr8NYnzllW-WJ_GtlTYW-ZU-hgDjlprojjo6AtTKtPE-oYOAa5-BA==
Age: 575
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "8E263E6763753F5659AC0FC2D11DAF8ECE9720988153C38CB40631AF26C86575"
Last-Modified: Fri, 01 Jul 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4877
Expires: Sat, 02 Jul 2022 18:21:45 GMT
Date: Sat, 02 Jul 2022 17:00:28 GMT
Connection: keep-alive
|
GET /chains/remote-settings.content-signature.mozilla.org-2022-08-10-12-10-21.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
54.230.111.99
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Tue, 21 Jun 2022 12:10:22 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 02 Jul 2022 03:26:42 GMT
etag: "581454acdd98f34fd3fbabd0977ade29"
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Z1wbXiAnOegYXNeT5KMEMKwPoXmNpgiBiGfKkHWXXOTDWjLB9OM--g==
age: 48827
X-Firefox-Spdy: h2
|
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.117.237.239
HTTP/2 200 OK
server: nginx
date: Sat, 02 Jul 2022 17:00:28 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
104.18.20.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 02 Jul 2022 17:00:28 GMT
Content-Length: 1423
Connection: keep-alive
Expires: Wed, 06 Jul 2022 15:23:51 GMT
ETag: "48d4fef5237c5938bf63058df976df7e0384933f"
Last-Modified: Sat, 02 Jul 2022 15:23:51 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7248f0167c77b4ff-OSL
|
GET /reklamatr.phtml?URL=http://palochusvet.szm.com/43t3f/45y4g.exe HTTP/1.1
Host: szm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://palochusvet.szm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
85.248.228.115
HTTP/1.1 200 OK
Content-Type: text/javascript;charset=utf-8
Server: nginx
Date: Sat, 02 Jul 2022 17:00:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
|
GET /reklamafr.phtml?URL=http://palochusvet.szm.com/43t3f/45y4g.exe HTTP/1.1
Host: szm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://palochusvet.szm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
85.248.228.115
HTTP/1.1 200 OK
Content-Type: text/javascript;charset=utf-8
Server: nginx
Date: Sat, 02 Jul 2022 17:00:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
|
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
54.230.111.35
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sat, 02 Jul 2022 16:38:48 GMT
Expires: Sat, 02 Jul 2022 17:37:54 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: yPeMUtAsWmVBQnrgo9IjXjsQS4K5p3ZQa88-j9nYfqZ3M1izOjhaQg==
Age: 1301
|
GET /google-analytics.html HTTP/1.1
Host: szm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://palochusvet.szm.com/
Upgrade-Insecure-Requests: 1
|
85.248.228.115
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
Server: nginx
Date: Sat, 02 Jul 2022 17:00:29 GMT
Content-Length: 178
Connection: keep-alive
Location: https://szm.com/google-analytics.html
|
GET /reklama/adsense.phtml?URL=http%3A%2F%2Fpalochusvet.szm.com%2F43t3f%2F45y4g.exe HTTP/1.1
Host: szm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://palochusvet.szm.com/
Upgrade-Insecure-Requests: 1
|
85.248.228.115
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
Server: nginx
Date: Sat, 02 Jul 2022 17:00:29 GMT
Content-Length: 178
Connection: keep-alive
Location: https://szm.com/reklama/adsense.phtml?URL=http%3A%2F%2Fpalochusvet.szm.com%2F43t3f%2F45y4g.exe
|
GET /google-analytics.html HTTP/1.1
Host: szm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://palochusvet.szm.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
|
85.248.228.115
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Server: nginx
Date: Sat, 02 Jul 2022 17:00:29 GMT
Last-Modified: Sun, 24 Jan 2010 22:13:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"4b5cc60c-197"
Content-Encoding: gzip
|
GET /PIC/minilogoszm.gif HTTP/1.1
Host: img.szm.sk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://palochusvet.szm.com/
|
85.248.228.60
HTTP/1.1 200 OK
Content-Type: image/gif
Server: nginx
Date: Sat, 02 Jul 2022 17:00:29 GMT
Content-Length: 939
Last-Modified: Tue, 23 Jun 2020 10:27:26 GMT
Connection: keep-alive
ETag: "5ef1d90e-3ab"
Accept-Ranges: bytes
|
GET /PIC/zavriet.gif HTTP/1.1
Host: img.szm.sk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://palochusvet.szm.com/
|
85.248.228.60
HTTP/1.1 200 OK
Content-Type: image/gif
Server: nginx
Date: Sat, 02 Jul 2022 17:00:29 GMT
Content-Length: 107
Last-Modified: Tue, 23 Jun 2020 10:27:26 GMT
Connection: keep-alive
ETag: "5ef1d90e-6b"
Accept-Ranges: bytes
|
GET /PIC/reklama.gif HTTP/1.1
Host: img.szm.sk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://palochusvet.szm.com/
|
85.248.228.60
HTTP/1.1 200 OK
Content-Type: image/gif
Server: nginx
Date: Sat, 02 Jul 2022 17:00:29 GMT
Content-Length: 1216
Last-Modified: Tue, 23 Jun 2020 10:27:25 GMT
Connection: keep-alive
ETag: "5ef1d90d-4c0"
Accept-Ranges: bytes
|
GET /reklama/adsense.phtml?URL=http%3A%2F%2Fpalochusvet.szm.com%2F43t3f%2F45y4g.exe HTTP/1.1
Host: szm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://palochusvet.szm.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
|
85.248.228.115
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Server: nginx
Date: Sat, 02 Jul 2022 17:00:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
|
GET /favicon.ico HTTP/1.1
Host: palochusvet.szm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://palochusvet.szm.com/43t3f/45y4g.exe
|
85.248.228.58
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
Server: nginx
Date: Sat, 02 Jul 2022 17:00:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 5368
Cache-Control: 'max-age=158059'
Date: Sat, 02 Jul 2022 17:00:29 GMT
Last-Modified: Sat, 02 Jul 2022 15:31:01 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 02 Jul 2022 17:00:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /ga.js HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
142.250.74.72
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Sat, 02 Jul 2022 15:14:18 GMT
expires: Sat, 02 Jul 2022 17:14:18 GMT
cache-control: public, max-age=7200
age: 6371
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 02 Jul 2022 17:00:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1889573267&utmhn=szm.com&utmcs=UTF-8&utmsr=1280x1024&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmhid=1264071322&utmr=http%3A%2F%2Fpalochusvet.szm.com%2F&utmp=%2Fgoogle-analytics.html&utmht=1656781230567&utmac=UA-8813686-1&utmcc=__utma%3D126435663.572570764.1656781231.1656781231.1656781231.1%3B%2B__utmz%3D126435663.1656781231.1.1.utmcsr%3Dpalochusvet.szm.com%7Cutmccn%3D(referral)%7Cutmcmd%3Dreferral%7Cutmcct%3D%2F%3B&utmjid=732690127&utmredir=1&utmu=DAAAAAAAAAAAAAAAAAAAAAAE~ HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
142.250.74.72
HTTP/2 302 Found
location: https://stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-8813686-1&cid=572570764.1656781231&jid=732690127&_v=5.7.2&z=1889573267
access-control-allow-origin: *
date: Sat, 02 Jul 2022 17:00:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: Golfe2
content-length: 368
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 02 Jul 2022 17:00:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-8813686-1&cid=572570764.1656781231&jid=732690127&_v=5.7.2&z=1889573267 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://szm.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
173.194.222.156
HTTP/2 200 OK
access-control-allow-origin: *
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 02 Jul 2022 17:00:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
x-content-type-options: nosniff
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "0AF5C499BC19EDC846D2A7C82E4C0008518A7D67262071AD88997081B32BF110"
Last-Modified: Fri, 01 Jul 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18080
Expires: Sat, 02 Jul 2022 22:01:49 GMT
Date: Sat, 02 Jul 2022 17:00:29 GMT
Connection: keep-alive
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 02 Jul 2022 17:00:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: yFjPHqrTwiYW0kSsTdqt2g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
|
35.163.46.195
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Sa6fNReEFY6T72KaU4ex8SxmG04=
|
GET /generic/advert.php?g=ref:991,area:468x60,:,tabl:4,design_name:custom,border_color:ffffff,border_style:none,background_opacity:100,background_color:ffffff,hover_back:,title_color:cc0000,text_color:000000,url_color:0067d6,h_title_color:cc0000,h_text_color:000000,h_url_color:0067d6,freespace:0,logo_type:0,logo:0,title_underline:0,url_underline:0,h_title_underline:1,h_url_underline:1,nourl:,fsi:auto,font:verdana,require_login_pass:0,login_pass:,show_in_fb:,show_in_fb_text:,tt:0,q:https%3A%2F%2Fszm.com%2Freklama%2Fadsense.phtml%3FURL%3Dhttp%253A%252F%252Fpalochusvet.szm.com%252F43t3f%252F45y4g.exe HTTP/1.1
Host: sk.search.etargetnet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
195.168.10.172
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
Server: nginx
Date: Sat, 02 Jul 2022 17:00:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, must-revalidate
Pragma: no-cache
X-Protected-By: Bee/0.67
Set-Cookie: p=991; expires=Sat, 02-Jul-2022 18:00:29 GMT; Max-Age=3600; path=/; samesite=none; domain=.etargetnet.com; secure
euvh=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; samesite=none; domain=.etargetnet.com; secure
euvf=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; samesite=none; domain=.etargetnet.com; secure
euvf=512; expires=Sat, 16-Jul-2022 17:00:29 GMT; Max-Age=1209600; path=/; samesite=none; domain=.etargetnet.com; secure
euvh=J; expires=Tue, 02-Aug-2022 17:00:29 GMT; Max-Age=2678400; path=/; samesite=none; domain=.etargetnet.com; secure
ckf=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; samesite=none; domain=.etargetnet.com; secure
ckf=1; expires=Sun, 02-Jul-2023 17:00:29 GMT; Max-Age=31536000; path=/; samesite=none; domain=.etargetnet.com; secure
ecc[944]=3; expires=Sat, 02-Jul-2022 23:00:29 GMT; Max-Age=21600; path=/; samesite=none; domain=.etargetnet.com; secure
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM", policyref="/w3c/p3p.xml"
X-Powered-By: Queen/2.145
Access-Control-Allow-Origin: *
Y-Protected-By: Bulbasaur/search-blade2-07
Content-Encoding: gzip
|
GET /frontend/logos/sk/34848/34848_9-5.jpg HTTP/1.1
Host: etargetcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
104.26.7.217
HTTP/2 200 OK
date: Sat, 02 Jul 2022 17:00:29 GMT
content-type: image/jpeg
content-length: 19426
cf-bgj: imgq:100,h2pri
cf-polished: origSize=23419, status=webp_bigger
etag: "61994f86-5b7b"
last-modified: Sat, 20 Nov 2021 19:41:58 GMT
y-protected-by: Bulbasaur/mblade01-01-c
cache-control: max-age=14400
cf-cache-status: HIT
age: 6020
accept-ranges: bytes
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=itGpWrNEU0ifyervIzdDQxSkrNEDlSyVDtQs8YahYyEhMC33zYozREPj%2F405RzNJpSPfyR82mFJDMNJv0ZjzL%2FbA4frAhe1cOtS4CguuZPsmuXM6E3kkaVFq%2F3IeETwg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7248f01ecd1fb500-OSL
X-Firefox-Spdy: h2
|
GET /generic/advert.php?g=ref:991,area:468x60,:,tabl:4,design_name:custom,border_color:ffffff,border_style:none,background_opacity:100,background_color:ffffff,hover_back:,title_color:cc0000,text_color:000000,url_color:0067d6,h_title_color:cc0000,h_text_color:000000,h_url_color:0067d6,freespace:0,logo_type:0,logo:0,title_underline:0,url_underline:0,h_title_underline:1,h_url_underline:1,nourl:,fsi:auto,font:verdana,require_login_pass:0,login_pass:,show_in_fb:,show_in_fb_text:,tt:0,q:https%3A%2F%2Fszm.com%2Freklama%2Fadsense.phtml%3FURL%3Dhttp%253A%252F%252Fpalochusvet.szm.com%252F43t3f%252F45y4g.exe HTTP/1.1
Host: sk.search.etargetnet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
195.168.10.172
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
Server: nginx
Date: Sat, 02 Jul 2022 17:00:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, must-revalidate
Pragma: no-cache
X-Protected-By: Bee/0.67
Set-Cookie: p=991; expires=Sat, 02-Jul-2022 18:00:29 GMT; Max-Age=3600; path=/; samesite=none; domain=.etargetnet.com; secure
euvh=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; samesite=none; domain=.etargetnet.com; secure
euvf=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; samesite=none; domain=.etargetnet.com; secure
euvf=512; expires=Sat, 16-Jul-2022 17:00:29 GMT; Max-Age=1209600; path=/; samesite=none; domain=.etargetnet.com; secure
euvh=J; expires=Tue, 02-Aug-2022 17:00:29 GMT; Max-Age=2678400; path=/; samesite=none; domain=.etargetnet.com; secure
ckf=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; samesite=none; domain=.etargetnet.com; secure
ckf=1; expires=Sun, 02-Jul-2023 17:00:29 GMT; Max-Age=31536000; path=/; samesite=none; domain=.etargetnet.com; secure
ecc[944]=3; expires=Sat, 02-Jul-2022 23:00:29 GMT; Max-Age=21600; path=/; samesite=none; domain=.etargetnet.com; secure
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM", policyref="/w3c/p3p.xml"
X-Powered-By: Queen/2.143
Access-Control-Allow-Origin: *
Y-Protected-By: Bulbasaur/search-blade2-07
Content-Encoding: gzip
|
GET /img/sipka/sipka_C00.png HTTP/1.1
Host: sk.search.etargetnet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
195.168.10.172
HTTP/1.1 200 OK
Content-Type: image/png
Server: nginx
Date: Sat, 02 Jul 2022 17:00:29 GMT
Content-Length: 1228
Last-Modified: Fri, 06 Dec 2013 09:35:48 GMT
Connection: keep-alive
ETag: "52a19a74-4cc"
Expires: Sun, 03 Jul 2022 17:00:29 GMT
Cache-Control: max-age=86400
Vary: Origin
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Pragma: cache
Y-Protected-By: Bulbasaur/search-blade2-07
Accept-Ranges: bytes
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 02 Jul 2022 17:00:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /frontend/logos/sk/34848/34848_9-6.jpg HTTP/1.1
Host: etargetcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
104.26.7.217
HTTP/2 200 OK
date: Sat, 02 Jul 2022 17:00:29 GMT
content-type: image/jpeg
content-length: 15499
cf-bgj: imgq:100,h2pri
cf-polished: origSize=19220, status=webp_bigger
etag: "61ae33bf-4b14"
last-modified: Mon, 06 Dec 2021 16:01:03 GMT
y-protected-by: Bulbasaur/mblade01-01-b
cache-control: max-age=14400
cf-cache-status: HIT
age: 3224
accept-ranges: bytes
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sVZupA8xnJGD6zowHg8UClxmTw3QTU8JqdrLB944HwN0s0MGvhSANW7NSlzHypDk22qvjRD2d3qrDaola4YUJdGKFx3keAGuxMAizjRlSa3PWLCy3qlGyePnQN7p4o2c"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7248f01f2d89b500-OSL
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 02 Jul 2022 17:00:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /s/player/0e7373c2/www-widgetapi.vflset/www-widgetapi.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
216.58.207.206
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 51437
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 02 Jul 2022 12:56:46 GMT
expires: Sun, 02 Jul 2023 12:56:46 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 30 Jun 2022 00:22:13 GMT
content-type: text/javascript
age: 14623
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 02 Jul 2022 17:00:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "6A5A778D43315A5271676C21E94FE2E47FFB9D5A728168C1A9BE721D01576CE4"
Last-Modified: Sat, 02 Jul 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14021
Expires: Sat, 02 Jul 2022 20:54:11 GMT
Date: Sat, 02 Jul 2022 17:00:30 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "6A5A778D43315A5271676C21E94FE2E47FFB9D5A728168C1A9BE721D01576CE4"
Last-Modified: Sat, 02 Jul 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14021
Expires: Sat, 02 Jul 2022 20:54:11 GMT
Date: Sat, 02 Jul 2022 17:00:30 GMT
Connection: keep-alive
|
GET /embed/eplayaV5.32.js HTTP/1.1
Host: etargetcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
104.26.7.217
HTTP/2 200 OK
date: Sat, 02 Jul 2022 17:00:29 GMT
content-type: application/javascript
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Length,Content-Range
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=79702
etag: W/"610a490a-13756"
expires: Sat, 02 Jul 2022 21:34:52 GMT
last-modified: Wed, 04 Aug 2021 08:00:10 GMT
pragma: cache
vary: Accept-Encoding, Origin
y-protected-by: Bulbasaur/mblade01-01-b
cf-cache-status: HIT
age: 69937
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oKBRTxsm1K3bRVPKMMbos2V2QF0jeVYnMVTDDzns34eWJi3%2BOCB2qJwNfRJK1GSBOxKErFWU6NdmNfs8xc9er0f2zHg5W9zJx3lfX0Lr0eMzcwLJRhSFAym1NTCGC68W"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7248f01ecd0fb500-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "6A5A778D43315A5271676C21E94FE2E47FFB9D5A728168C1A9BE721D01576CE4"
Last-Modified: Sat, 02 Jul 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14021
Expires: Sat, 02 Jul 2022 20:54:11 GMT
Date: Sat, 02 Jul 2022 17:00:30 GMT
Connection: keep-alive
|
GET /dist/bundle.js HTTP/1.1
Host: tpx.tesseradigital.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
35.157.179.180
HTTP/2 200 OK
server: nginx
date: Sat, 02 Jul 2022 17:00:30 GMT
content-type: application/javascript
content-length: 26906
etag: "2fc2aa161c146a3e554f2b6932150776753f9c2f"
set-cookie: tpuuid=NRfjkzQv8GhDw01nMB8xeeUlpf1AIIBQC9WzAjxxTAOr; Domain=.tesseradigital.com; expires=Sun, 28 Jun 2037 17:00:30 GMT; Path=/; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "73B35E1142F56B80F8CCD3F5E75131E0C2862C08C708F14CC5EAC3E83672A5DA"
Last-Modified: Thu, 30 Jun 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16551
Expires: Sat, 02 Jul 2022 21:36:21 GMT
Date: Sat, 02 Jul 2022 17:00:30 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "73B35E1142F56B80F8CCD3F5E75131E0C2862C08C708F14CC5EAC3E83672A5DA"
Last-Modified: Thu, 30 Jun 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=152
Expires: Sat, 02 Jul 2022 17:03:02 GMT
Date: Sat, 02 Jul 2022 17:00:30 GMT
Connection: keep-alive
|
GET /dist/bundle.js HTTP/1.1
Host: tpx.tesseradigital.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
35.157.179.180
HTTP/2 200 OK
server: nginx
date: Sat, 02 Jul 2022 17:00:30 GMT
content-type: application/javascript
content-length: 26906
etag: "6b7d1e605ac52c54017f803df1b84212181edb1f"
set-cookie: tpuuid=Ng702y25inCBwM9MbCYPfPP1IMDUn5MGM3UvCvKu0ETH; Domain=.tesseradigital.com; expires=Sun, 28 Jun 2037 17:00:30 GMT; Path=/; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
|
GET /dist/bundle.js HTTP/1.1
Host: tpx.tesseradigital.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
35.157.179.180
HTTP/2 200 OK
server: nginx
date: Sat, 02 Jul 2022 17:00:30 GMT
content-type: application/javascript
content-length: 26906
etag: "34624de231481fddf25bdca0d77c80a41dd29ada"
set-cookie: tpuuid=WCeFACdLfGc6Tvzf3EdQl6wEOlPVFSb2GEBpsregw4kF; Domain=.tesseradigital.com; expires=Sun, 28 Jun 2037 17:00:30 GMT; Path=/; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
|
GET /dist/bundle.js HTTP/1.1
Host: tpx.tesseradigital.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
35.157.179.180
HTTP/2 200 OK
server: nginx
date: Sat, 02 Jul 2022 17:00:30 GMT
content-type: application/javascript
content-length: 26906
etag: "b6e7dff1c277e84c664a01264bd5a6250e090ace"
set-cookie: tpuuid=Z6cpaTUuq6PVldqCRM60iXjFKeD8BPMEZE0R00WnSlu7; Domain=.tesseradigital.com; expires=Sun, 28 Jun 2037 17:00:30 GMT; Path=/; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
|
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
216.58.207.206
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Sat, 02 Jul 2022 17:00:29 GMT
date: Sat, 02 Jul 2022 17:00:29 GMT
cache-control: private, max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000
critical-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=sJuLwI-oAHo; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=9QbRKfq78T4; Domain=.youtube.com; Expires=Thu, 29-Dec-2022 17:00:29 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+867; expires=Mon, 01-Jul-2024 17:00:29 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
GET /incoming?p=false&a=false&b=false HTTP/1.1
Host: tpx.tesseradigital.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Cookie: tpuuid=Ng702y25inCBwM9MbCYPfPP1IMDUn5MGM3UvCvKu0ETH
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
35.157.179.180
HTTP/2 204 No Content
server: nginx
date: Sat, 02 Jul 2022 17:00:30 GMT
last-modified: Saturday, 02-Jul-2022 17:00:30 GMT
X-Firefox-Spdy: h2
|
GET /PIC/reklama-horizontalna.gif HTTP/1.1
Host: img.szm.sk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://palochusvet.szm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
85.248.228.60
HTTP/1.1 200 OK
Content-Type: image/gif
Server: nginx
Date: Sat, 02 Jul 2022 17:00:30 GMT
Content-Length: 1251
Last-Modified: Tue, 23 Jun 2020 10:27:25 GMT
Connection: keep-alive
ETag: "5ef1d90d-4e3"
Accept-Ranges: bytes
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "F763D7576AAB81AE47F35FD4AFFB2D6BE29F421DA0A2F3607F966049C88AE66C"
Last-Modified: Thu, 30 Jun 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15255
Expires: Sat, 02 Jul 2022 21:14:45 GMT
Date: Sat, 02 Jul 2022 17:00:30 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "2041679030823F94512A4BEB0D43CC3BE0DCDA6C40A15C51F9AD1CDC548A89E7"
Last-Modified: Sat, 02 Jul 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14540
Expires: Sat, 02 Jul 2022 21:02:50 GMT
Date: Sat, 02 Jul 2022 17:00:30 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "2041679030823F94512A4BEB0D43CC3BE0DCDA6C40A15C51F9AD1CDC548A89E7"
Last-Modified: Sat, 02 Jul 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14855
Expires: Sat, 02 Jul 2022 21:08:05 GMT
Date: Sat, 02 Jul 2022 17:00:30 GMT
Connection: keep-alive
|
GET /imp.js?_pid=163594704&_ouuid=Ng702y25inCBwM9MbCYPfPP1IMDUn5MGM3UvCvKu0ETH&_oprio=0&_oref=https%3A%2F%2Fszm.com%2Freklama%2Fadsense.phtml%3FURL%3Dhttp%253A%252F%252Fpalochusvet.szm.com%252F43t3f%252F45y4g.exe HTTP/1.1
Host: fd.tesseradigital.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Cookie: tpuuid=Ng702y25inCBwM9MbCYPfPP1IMDUn5MGM3UvCvKu0ETH
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
18.196.91.239
HTTP/2 200 OK
server: nginx
date: Sat, 02 Jul 2022 16:54:56 GMT
content-type: text/html; charset=UTF-8
content-length: 0
etag: "da39a3ee5e6b4b0d3255bfef95601890afd80709"
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
last-modified: Saturday, 02-Jul-2022 16:54:56 GMT
X-Firefox-Spdy: h2
|
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
216.58.207.206
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Sat, 02 Jul 2022 17:00:29 GMT
date: Sat, 02 Jul 2022 17:00:29 GMT
cache-control: private, max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
critical-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=Q3Z5J5tKehI; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=9erO2zShiow; Domain=.youtube.com; Expires=Thu, 29-Dec-2022 17:00:29 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+303; expires=Mon, 01-Jul-2024 17:00:29 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
GET /imp.js?_pid=163594704&_ouuid=NRfjkzQv8GhDw01nMB8xeeUlpf1AIIBQC9WzAjxxTAOr&_oprio=0&_oref=https%3A%2F%2Fszm.com%2Freklama%2Fadsense.phtml%3FURL%3Dhttp%253A%252F%252Fpalochusvet.szm.com%252F43t3f%252F45y4g.exe HTTP/1.1
Host: fd.tesseradigital.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Cookie: tpuuid=NRfjkzQv8GhDw01nMB8xeeUlpf1AIIBQC9WzAjxxTAOr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
18.196.91.239
HTTP/2 200 OK
server: nginx
date: Sat, 02 Jul 2022 16:54:57 GMT
content-type: text/html; charset=UTF-8
content-length: 0
etag: "da39a3ee5e6b4b0d3255bfef95601890afd80709"
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
last-modified: Saturday, 02-Jul-2022 16:54:57 GMT
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 4922
Cache-Control: max-age=141357
Date: Sat, 02 Jul 2022 17:00:30 GMT
Etag: "62bfeba1-1d7"
Expires: Mon, 04 Jul 2022 08:16:27 GMT
Last-Modified: Sat, 02 Jul 2022 06:54:25 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
|
GET /www/images/85ebc45601450d75a4c0a72eb1f95988.jpg HTTP/1.1
Host: ad.novara.sk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.novara.sk/www/delivery/afr.php?zoneid=60&cb=367027
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
85.248.228.68
HTTP/1.1 200 OK
Content-Type: image/jpeg
Server: nginx
Date: Sat, 02 Jul 2022 17:00:30 GMT
Content-Length: 34478
Last-Modified: Thu, 26 Oct 2017 00:30:50 GMT
Connection: keep-alive
ETag: "59f12cba-86ae"
Accept-Ranges: bytes
|
GET /containr.js HTTP/1.1
Host: cdn.mookie1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
23.13.39.40
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Accept-Ranges: bytes
ETag: "6200df1a0ff97d44f843b0184fa20225:1599561740.987291"
Last-Modified: Tue, 08 Sep 2020 10:42:20 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=60
Expires: Sat, 02 Jul 2022 17:01:30 GMT
Date: Sat, 02 Jul 2022 17:00:30 GMT
Content-Length: 2941
Connection: keep-alive
Access-Control-Max-Age: 86400
Access-Control-Allow-Credentials: false
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET,POST
Access-Control-Allow-Origin: *
|
GET /imp.js?_pid=163594704&_ouuid=WCeFACdLfGc6Tvzf3EdQl6wEOlPVFSb2GEBpsregw4kF&_oprio=0&_oref=https%3A%2F%2Fszm.com%2Freklama%2Fadsense.phtml%3FURL%3Dhttp%253A%252F%252Fpalochusvet.szm.com%252F43t3f%252F45y4g.exe HTTP/1.1
Host: fd.tesseradigital.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Cookie: tpuuid=Z6cpaTUuq6PVldqCRM60iXjFKeD8BPMEZE0R00WnSlu7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
18.196.91.239
HTTP/2 200 OK
server: nginx
date: Sat, 02 Jul 2022 16:54:57 GMT
content-type: text/html; charset=UTF-8
content-length: 0
etag: "da39a3ee5e6b4b0d3255bfef95601890afd80709"
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
last-modified: Saturday, 02-Jul-2022 16:54:57 GMT
X-Firefox-Spdy: h2
|
GET /www/delivery/lg.php?bannerid=4130&campaignid=1689&zoneid=60&loc=http%3A%2F%2Fpalochusvet.szm.com%2F&cb=95965ea042 HTTP/1.1
Host: ad.novara.sk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.novara.sk/www/delivery/afr.php?zoneid=60&cb=367027
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
85.248.228.68
HTTP/1.1 200 OK
Content-Type: image/gif
Server: nginx
Date: Sat, 02 Jul 2022 17:00:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Access-Control-Allow-Origin: *
P3P: CP="CUR ADM OUR NOR STA NID"
Set-Cookie: OAGEO=NO%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C; path=/
OAID=a1e2de3e9495eb537e07277774f9c61f; expires=Sun, 02-Jul-2023 17:00:30 GMT; Max-Age=31536000; path=/
|
GET /imp.js?_pid=163594704&_ouuid=Z6cpaTUuq6PVldqCRM60iXjFKeD8BPMEZE0R00WnSlu7&_oprio=0&_oref=https%3A%2F%2Fszm.com%2Freklama%2Fadsense.phtml%3FURL%3Dhttp%253A%252F%252Fpalochusvet.szm.com%252F43t3f%252F45y4g.exe HTTP/1.1
Host: fd.tesseradigital.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Cookie: tpuuid=Z6cpaTUuq6PVldqCRM60iXjFKeD8BPMEZE0R00WnSlu7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
18.196.91.239
HTTP/2 200 OK
server: nginx
date: Sat, 02 Jul 2022 16:54:57 GMT
content-type: text/html; charset=UTF-8
content-length: 0
etag: "da39a3ee5e6b4b0d3255bfef95601890afd80709"
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
last-modified: Saturday, 02-Jul-2022 16:54:57 GMT
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "ED6C6F73611FB56DFA41FD028E23F0BC0470D319E51B212B8078C2C0DF8F4638"
Last-Modified: Fri, 01 Jul 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4670
Expires: Sat, 02 Jul 2022 18:18:20 GMT
Date: Sat, 02 Jul 2022 17:00:30 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "ED6C6F73611FB56DFA41FD028E23F0BC0470D319E51B212B8078C2C0DF8F4638"
Last-Modified: Fri, 01 Jul 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4670
Expires: Sat, 02 Jul 2022 18:18:20 GMT
Date: Sat, 02 Jul 2022 17:00:30 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "ED6C6F73611FB56DFA41FD028E23F0BC0470D319E51B212B8078C2C0DF8F4638"
Last-Modified: Fri, 01 Jul 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4670
Expires: Sat, 02 Jul 2022 18:18:20 GMT
Date: Sat, 02 Jul 2022 17:00:30 GMT
Connection: keep-alive
|
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
216.58.207.206
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Sat, 02 Jul 2022 17:00:29 GMT
date: Sat, 02 Jul 2022 17:00:29 GMT
cache-control: private, max-age=0
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-platform=*, ch-ua-platform-version=*
critical-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=HYxe5mwka6U; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=SiepY4WXVm4; Domain=.youtube.com; Expires=Thu, 29-Dec-2022 17:00:29 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+296; expires=Mon, 01-Jul-2024 17:00:29 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F155ff049-31ad-45db-b606-da7aae957a83.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
server: nginx
content-length: 7158
x-amzn-requestid: 39fb9806-1635-485f-a758-1a0777601251
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UePTkGHFIAMF2Fw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62bbf8e3-10aeadd66b2e052248e917db;Sampled=0
x-amzn-remapped-date: Wed, 29 Jun 2022 07:01:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3L2jmW37xsgzK8cVYPBFci7_UZlKVotBXfKrf0XKAa4NBRFT_DTfSQ==
via: 1.1 76dcc62b68091cc715d50b5017be77fc.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Sat, 02 Jul 2022 04:37:21 GMT
age: 44589
etag: "0ce665e95946e6d6af4731a3b8077395656643b6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5571171d-93e2-4135-8225-3bfc53bc48ac.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
server: nginx
content-length: 6736
x-amzn-requestid: 9e808fb4-bd09-40e9-91af-080ccdc93ee9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Um2BSE0ToAMFfag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62bf6a08-2a5ed3cb6402d1907c9656a8;Sampled=0
x-amzn-remapped-date: Fri, 01 Jul 2022 21:41:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: QsLGBz_oGZL0ZFz_WyunCdHOX7Rz5Q8HSmI4n6FmkqpeZiUGvl0fJQ==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Fri, 01 Jul 2022 21:46:17 GMT
age: 69253
etag: "a63b88bf7ec527ec4774676532c865a161533e4a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb68b83e0-72c7-49aa-9626-3d36db21293e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
server: nginx
content-length: 11496
x-amzn-requestid: 7254cb45-1ef0-478c-9910-beca727c109f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Um1yaEYPoAMFa-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62bf69a8-53e04a3858a351eb5debddac;Sampled=0
x-amzn-remapped-date: Fri, 01 Jul 2022 21:39:52 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: LBjt5A-YFURsNDOTGa5QHIe0degH2__ZL7JxCkKhs0b6hN5xahoEBg==
via: 1.1 bd6f70221217681265382902c6157c76.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Fri, 01 Jul 2022 21:47:59 GMT
age: 69151
etag: "c69cccbe6d0394d4b40bc350462da9bf00064e61"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdeb89745-bbbb-4235-9425-852f10044585.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
server: nginx
content-length: 11746
x-amzn-requestid: 9c689086-f3c0-4043-9905-c9580c6c3f51
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Uhif8EcIIAMF2_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62bd4acc-3417fb3956f99fcd714f562b;Sampled=0
x-amzn-remapped-date: Thu, 30 Jun 2022 07:03:40 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 9XejFfM4ZuBWhhC_Zr3-8hLl9GYl7FXlG9eqbZkzJpFNWKY2BlBA9w==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sat, 02 Jul 2022 05:29:06 GMT
age: 41484
etag: "20333be7fca4c09773321bec15ac65c18391fae0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1edb2a2-bd4b-4101-b70d-9136a59ce340.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
server: nginx
content-length: 8828
x-amzn-requestid: f38dcd2a-5fde-4373-b296-082dabd98c9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Um2B7GozIAMFdeA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62bf6a0c-211025f83d38b6c16a260502;Sampled=0
x-amzn-remapped-date: Fri, 01 Jul 2022 21:41:32 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: mrOMCP1V9xTT4WH71tBWEfdaHrOOgOvOZbCu74pZZ_N3_c-8jtPcTQ==
via: 1.1 f62c9ca47e35df5c65764381977823a6.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 01 Jul 2022 21:49:44 GMT
age: 69046
etag: "6809a6b6843631c3f0a2cf2f51e805166deb90ee"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2b693c9f-67be-4ac0-b261-907639467fd1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
server: nginx
content-length: 9986
x-amzn-requestid: b96951f0-f4c4-4f63-ba41-ba43c6a30e11
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Um1x6GWeIAMFXsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62bf69a5-04ea27df61b0abc76ec50b8a;Sampled=0
x-amzn-remapped-date: Fri, 01 Jul 2022 21:39:49 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: hNfdMvL0PbaHLqRYzZDAACAbAwDwzctEoB6b41DGooXqdl4tx_5dlA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 01 Jul 2022 21:41:44 GMT
age: 69526
etag: "06bd1f5a2f23819184eb44076b107f234f432081"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 4846
Cache-Control: 'max-age=158059'
Date: Sat, 02 Jul 2022 17:00:34 GMT
Last-Modified: Sat, 02 Jul 2022 15:39:48 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
|
GET /t/v2/learn?tagid=V2_291021&src.rand=1656781229&gdpr_err=NO_CMP&gdpr_consent=-1&depp=7.0.1-4-eu HTTP/1.1
Host: sk-gmtdmp.mookie1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
35.186.238.175
HTTP/2 200 OK
date: Sat, 02 Jul 2022 17:00:34 GMT
server: Apache
p3p: CP="NON DSP COR NID CURa PSAa PSDa OUR STP UNI COM NAV STA LOC OTC",policyref="/w3c/p3p.xml"
x-application-context: application
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-type: image/gif;charset=UTF-8
content-length: 43
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 4846
Cache-Control: 'max-age=158059'
Date: Sat, 02 Jul 2022 17:00:34 GMT
Last-Modified: Sat, 02 Jul 2022 15:39:48 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
|