Overview

URL palochusvet.szm.com/43t3f/45y4g.exe
IP85.248.228.58
ASNSWAN, a.s.
Location Slovakia
Report completed2022-07-02 17:00:41 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2022-07-02 2 palochusvet.szm.com/43t3f/45y4g.exe Malware
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (22)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
[Mnemonic Passive DNS] content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-07-02 05:33:42 UTC 54.230.111.99
[Mnemonic Passive DNS] ocsp2.globalsign.com (1) 1544 2012-05-21 07:12:19 UTC 2022-07-02 06:18:46 UTC 104.18.20.226
[Mnemonic Passive DNS] etargetcdn.com (3) 126528 No data No data 104.26.7.217
[Mnemonic Passive DNS] firefox.settings.services.mozilla.com (2) 867 2016-03-17 08:25:01 UTC 2020-05-25 20:01:47 UTC 54.230.111.35
[Mnemonic Passive DNS] ocsp.digicert.com (4) 86 2012-11-29 12:49:49 UTC 2022-07-02 12:46:10 UTC 93.184.220.29
[Mnemonic Passive DNS] ocsp.pki.goog (7) 175 2017-06-14 07:23:31 UTC 2022-07-02 05:05:05 UTC 142.250.74.3
[Mnemonic Passive DNS] push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2022-07-02 06:56:22 UTC 35.163.46.195
[Mnemonic Passive DNS] sk.search.etargetnet.com (3) 167949 2017-02-27 16:42:41 UTC 2022-04-17 17:40:26 UTC 195.168.10.172
[Mnemonic Passive DNS] www.youtube.com (4) 90 2017-01-30 05:00:06 UTC 2022-07-02 04:58:27 UTC 216.58.207.206
[Mnemonic Passive DNS] cdn.mookie1.com (1) 13056 2018-05-03 17:37:14 UTC 2022-07-02 11:13:53 UTC 23.13.39.40
[Mnemonic Passive DNS] sk-gmtdmp.mookie1.com (1) 225766 2015-12-15 14:26:44 UTC 2022-07-02 11:13:56 UTC 35.186.238.175
[Mnemonic Passive DNS] r3.o.lencr.org (13) 344 2020-12-02 08:52:13 UTC 2022-07-02 05:03:49 UTC 23.36.77.32
[Mnemonic Passive DNS] img.szm.sk (4) 0 No data No data 85.248.228.60 Unknown ranking
[Mnemonic Passive DNS] stats.g.doubleclick.net (1) 96 2017-01-30 04:59:59 UTC 2022-07-02 04:57:07 UTC 173.194.222.156
[Mnemonic Passive DNS] tpx.tesseradigital.com (5) 238888 No data No data 35.157.179.180
[Mnemonic Passive DNS] szm.com (6) 0 No data No data 85.248.228.115 Unknown ranking
[Mnemonic Passive DNS] contile.services.mozilla.com (1) 1114 No data No data 34.117.237.239
[Mnemonic Passive DNS] ssl.google-analytics.com (2) 275 2017-01-30 05:00:07 UTC 2022-07-02 05:20:08 UTC 142.250.74.72
[Mnemonic Passive DNS] fd.tesseradigital.com (4) 0 No data No data 18.196.91.239 Domain (tesseradigital.com) ranked at: 238882
[Mnemonic Passive DNS] ad.novara.sk (2) 0 No data No data 85.248.228.68 Unknown ranking
[Mnemonic Passive DNS] img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-07-02 15:26:32 UTC 34.120.237.76
[Mnemonic Passive DNS] palochusvet.szm.com (2) 0 No data No data 85.248.228.58 Unknown ranking


Recent reports on same IP/ASN/Domain

Last 2 reports on IP: 85.248.228.58

Date UQ / IDS / BL URL IP
2022-07-01 16:09:16 +0000
0 - 0 - 1 palochusvet.szm.com/43t3f/45y4g.exe 85.248.228.58
2022-06-30 17:48:28 +0000
0 - 0 - 1 palochusvet.szm.com/43t3f/45y4g.exe 85.248.228.58

Last 10 reports on ASN: SWAN, a.s.

Date UQ / IDS / BL URL IP
2022-08-10 11:16:12 +0000
0 - 0 - 4 dogsk.sk/juniorhandling/gallery/2008/bystrica (...) 213.215.124.60
2022-08-06 01:47:14 +0000
0 - 0 - 4 dogsk.sk/juniorhandling/gallery/2008/bystrica (...) 213.215.124.60
2022-08-02 21:32:46 +0000
0 - 0 - 2 f27szerviz.hu/upload/files/56488954650.pdf 85.248.130.113
2022-08-02 19:01:04 +0000
0 - 0 - 1 zamokugrofa.sk/admin/fckeditor/file/487337975 (...) 85.248.226.5
2022-08-02 16:42:32 +0000
0 - 0 - 1 topenglish.sk/app/webroot/gallery/files/81707 (...) 85.248.128.216
2022-08-02 16:23:44 +0000
0 - 0 - 1 slovbau.sk/test/userfiles/file/2555128274.pdf 213.215.124.60
2022-08-01 09:42:58 +0000
0 - 0 - 4 dogsk.sk/juniorhandling/gallery/2008/wieselbu (...) 213.215.124.60
2022-07-28 15:10:04 +0000
0 - 0 - 1 majstrissmt.eu/www-data/file/retaj.pdf 85.248.116.7
2022-07-26 10:01:12 +0000
0 - 0 - 21 www.beautysecret.sk/ 85.248.129.35
2022-07-23 22:25:09 +0000
0 - 0 - 4 dogsk.sk/juniorhandling/gallery/2008/padova08 (...) 213.215.124.60

No other reports on domain: szm.com



JavaScript

Executed Scripts (22)


Executed Evals (0)


Executed Writes (7)

#1 JavaScript::Write (size: 125, repeated: 1) - SHA256: e3fc402cd815d2d7aa3f0d12eece9347048b9cd41aa2cc0b61f081657a07a8f5

                                        < script src = "https://szm.com/reklamatr.phtml?URL=http://palochusvet.szm.com/43t3f/45y4g.exe"
type = "text/javascript" > < /script>
                                    

#2 JavaScript::Write (size: 125, repeated: 1) - SHA256: d87262ba50b590e8f2bfbb7ceca23b472d0fc4851aa2adc2d8bc506f5c50d333

                                        < script src = "https://szm.com/reklamafr.phtml?URL=http://palochusvet.szm.com/43t3f/45y4g.exe"
type = "text/javascript" > < /script>
                                    

#3 JavaScript::Write (size: 85, repeated: 1) - SHA256: 2f07f68c604449e8d89471efc2fea27e93365b3806d2494f6432b2e33d2fdf94

                                        < script src = 'https://ssl.google-analytics.com/ga.js'
type = 'text/javascript' > < /script>
                                    

#4 JavaScript::Write (size: 23610, repeated: 1) - SHA256: fede857579dfd6e6602ec6e8200c2ff8f327f768e03e055fb1830b4b02f34715

                                        < !DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" > < html > < head > < meta http - equiv = "content-type"
content = "text/html; charset=utf-8" > < title > ETARGET 4.2 < /title><style type="text/css
">html,body,div,span,applet,object,iframe,h1,h2,h3,h4,h5,h6,p,blockquote,pre,a,abbr,acronym,address,big,cite,code,del,dfn,em,font,img,ins,kbd,q,s,samp,small,strike,strong,sub,sup,tt,var,b,u,i,center,dl,dt,dd,ol,ul,li,fieldset,form,label,legend,table,caption,tbody,tfoot,thead,tr,th,td{margin:0;padding:0;border:0;outline:0;font-size:100%;/*vertical-align:baseline;*/background:transparent;}body{line-height:1;}ol,ul{list-style:none;}blockquote,q{quotes:none;}blockquote:before,blockquote:after,q:before,q:after{content:'';content: none;}:focus{outline:0;}ins{text-decoration:none;}del{text-decoration:line-through;}table{border-collapse:collapse;border-spacing:0;}body{border-width:0px;margin:0px;padding:0px;font-family:'trebuchetMS',arial,sans-serif;font-size:11px;line-height:13px;background-color:transparent;}div.header{text-align:left;}div.footer{width:0px !important;right:0px !important;left: auto !important;line-height:120%;text-align:right;overflow:visible;position:fixed !important; z-index:2; bottom:0px !important;display:block !important; visibility: visible !important;}div.url{}div.like{text-align:right;}div#hide{background-color:white;position:absolute;top:0px;left:0px;border-width:0px;}div.box div.inbox td.img{background-color:white;border-width:1px;border-color:#909090;border-style:solid;}div.shop{overflow:hidden;text-align:left;border-width:0px 0px 0px 0px;border-style:solid;border-color:#c00000;}div.top {border-radius:5px 5px 0px 0px;text-shadow: #7f7f7f 0.1em 0.1em 0.1em;box-shadow: inset 0px 0px 3px rgba(0, 0, 0, 0.5);}div.bot {border-radius:0px 0px 5px 5px;text-shadow: #7f7f7f 0.1em 0.1em 0.1em;box-shadow: inset 0px 0px 3px rgba(0, 0, 0, 0.5);}div.intop {border-radius:5px 5px 0px 0px;}div.inshop {border-radius:5px 5px 0px 0px;/*box-shadow: 0px 0px 6px rgba(0, 0, 0, 0.5);*/}div.inshop td img {box-shadow: 0px 0px 6px rgba(0, 0, 0, 0.5);}div.shop div.title{color:#c00000;text-decoration:underline;}div.shop div.inshop div.obr table.shoptab td.imgbox div.inbox div.title a{color:#c00000;text-decoration:none;}div.shop div.inshop div.obr table.shoptab td.imgbox div.inbox div.desc a{color:#000000;}div.shop div.inshop div.inbox div.title a{font-size:12px;line-height:13px;color:#c00000;text-decoration:none;}div.shop div.inshop div.inbox div.desc a{font-size:11px;line-height:12px;color:#000000;text-decoration:none;}div.shop div.inshop div.inbox div.btn a{font-size:12px;color:#000000;text-decoration:none;}div.shop div.inshop div.inbox div.btn3 a{font-size:12px;line-height:15px;color:#c00000;font-weight:bold;text-decoration:none;}div.shop div.inshop div.inbox div.btn4 a{font-size:10px;line-height:15px;color:#c00000;font-weight:bold;text-decoration:none;}div.shop div.inshop div.inbox div.title a:hover{color:#c00000;}div.shop div.inshop div.inbox div.desc a:hover{color:#000000;text-decoration:none;}div.shop div.inshop div.inbox div.btn3 a:hover{color:#c00000;}div.shop div.inshop div.inbox div.btn4 a:hover{color:#c00000;}div.shop div.top{font-size:13px;font-weight:bold;font-style:italic;color:white;background-color:#c00000;line-height:20px;height:20px;text-align:left;}div.shop div.intop{margin:0px 2px;text-align:left;}div.shop div.inshop{margin:0px 5px;background-color:#ffffff;}/*background-color:#f0f0f1;*/div.shop div.inbox{margin:0px 2px;}div.shop div.inshop table.shoptab{height:100px;}div.shop div.inshop td.btn{cursor:pointer;width:14px;}div.shop div.inshop td.img{background-color:white;border-width:1px;border-color:#909090;border-style:solid;}div.shop div.inshop div.btn{width:80px;height:40px;text-align:center;line-height:36px;background-image:url(//sk.search.etargetnet.com/images/detail_gray.gif);background-repeat:no-repeat;background-position:0%;float:left;overflow:hidden;position:relative;top:-5px;}div.shop div.inshop div.btn2{width:80px;height:26px;text-align:center;line-height:20px;background-image:url(//sk.search.etargetnet.com/images/detail_gray.gif);background-repeat:no-repeat;background-position:0%;float:left;overflow:hidden;position:relative;top:3px;}div.shop div.inshop div.btn3{font-size:12px;text-align:left;float:left;}div.shop div.inshop div.btn4{font-size:10px;text-align:left;float:left;}div.shop div.inshop div.btna{display:block;margin:0px;width:80px;height:40px;text-align:center;line-height:36px;cursor:pointer;color:black;text-decoration:none;font-size:11px;font-weight:bold;}div.shop div.inshop div.price{margin-top:7px;text-align:center;font-family:tahoma;}div.shop div.inshop div.prices{margin-top:3px;text-align:right;font-family:tahoma;}div.shop div.inshop div.pricez{text-align:right;font-family:tahoma;}div.shop div.inshop div.pricezz{text-align:right;font-family:tahoma;}div.shop div.inshop div.prices div.price1{color:#c00000;font-weight:bold;font-size:14px;}div.shop div.inshop div.pricez div.price1{color:#c00000;font-weight:bold;font-size:12px;}div.shop div.inshop div.pricezz div.price1{color:#c00000;font-weight:bold;font-size:10px;}div.shop div.inshop div.price div.price1{color:#c00000;font-weight:bold;font-size:14px;line-height:15px;}div.shop div.inshop div.price div.price2{font-size:12px;line-height:15px;}div.shop div.inshop div.pricez div.price1{font-size:13px;line-height:15px;}div.shop div.inshop div.pricez div.price2{font-size:12px;line-height:15px;}div.shop div.inshop .biz{line-height:10px;}div.shop div.inshop .pricing1 a{color:#000000;text-decoration:none;font-weight:normal;font-size:9px;line-height:10px;}div.shop div.inshop .pricing2{color:#000000;font-weight:normal;font-size:9px;line-height:10px;text-decoration:line-through;}div.shop div.inshop .pricing3 a{color:#c00000;text-decoration:none;font-weight:bold;font-size:10px;line-height:10px;}div.shop div.inshop .pricing4{color:#c00000;text-decoration:none;font-weight:bold;font-size:10px;line-height:10px;}div.shop div.inshop a .buynow{display:block;width:72px;height:20px;background-image:url(//sk.search.etargetnet.com/images/buynow_sk_btn.png);background-position:top;background-repeat:no-repeat;cursor:pointer;}div.shop div.inshop a:hover .buynow{background-position:bottom;}div.main{border-width:0px;border-style:solid;border-color:#d0d0d0;overflow:hidden;position:relative;width:468px;height:60px;line-height:14px;background-color:#ffffff;}div.inmain{line-height:12px;font-family:verdana, sans-serif;font-size:11px;line-height:14px;text-align:center;}div.inmain iframe{display:inline-block !important;}div.box {text-align:left;border-width:0px;border-style:solid;border-color:#d0d0d0;}div.inbox {margin:0px 10px;text-align:left;border-width:0px;border-style:solid;border-color:#d0d0d0;margin: 3px 5px;}div.box div.title a{font-weight:bold;color: #cc0000;font-size:105%;text-decoration:none;}div.box div.desc a{color: #000000;font-size:100%;text-decoration:none;}span.countlikes{font-family:'Lucida Grande',verdana,arial,sans-serif;font-size:9px;line-height:9px;color:#000000;opacity:0.66;letter-spacing:-0.05em;}div.box div.fblike div.countlikes{float:left;height:11px;text-align:left;margin:0px 0px 0px 0px;font-family:'Lucida Grande',verdana,arial,sans-serif;font-size:9px;line-height:9px;color:#000000;opacity:0.66;letter-spacing:-0.05em;border-width:0px;padding:0px;}div.box div.url a{color: #0067d6; font-size:90%;text-decoration:none;}div.box div.title a:hover{color: #cc0000;text-decoration:underline;}div.box div.desc a:hover{color: #000000;text-decoration:none;}div.box div.url a:hover{color: #0067d6;text-decoration:underline;}div.infooter{margin:0px 5px;text-align:right;height: 28px;overflow:hidden;line-height: 36px;}div.inheader{margin:0px 5px;height: 16px;line-height: 16px;}div.inheader a{color: #0067d6;text-decoration:none;position:relative;z-index:1;font-size: 90%;}div.inheader a:hover{color: #0067d6;text-decoration:underline;}div.infooter a{transition: width 0.2s;background-position: left center;background-repeat:no-repeat;background-size:auto 17px;bottom: 1;display: block;height: 20px;width: 14px;position: absolute;z-index: 1;right: 4;background-image:url(https://etargetcdn.com/img/logo/etarget_logo_dark_uni_small.png);}div.infooter a:hover{background-color:rgba(255,255,255,0.8);border-radius:5px 0px 0px;background-position: center center !important;right:1px;width: 108px;}a.etarget_sipka{display:block;border-width:0px;width:40px;height:40px;background-position:top;margin:auto;background-repeat:no-repeat;background-image:url(//sk.search.etargetnet.com/img/sipka/sipka_C00.png);}a.etarget_sipka.sme{background-image:url(//sk.search.etargetnet.com/img/sipka/sipka_sme.png);z-index:1;}a.etarget_sipka:hover{background-position:bottom;}table.imgtable {max-height:60px;}.imgwrapper table.imgtable{overflow:hidden;}.imgwrapper .imgtable img{max-width:254px;max-height:60px;}.box.version-1.pulse-1 > .inbox > .imgwrapper table.imgtable img{animation: logo-pulse-def 2s 0s infinite linear !important; left:-50% !important;}@keyframes logo-pulse-def{0%{transform:scale(1);}25%{transform:scale(1.1);}50%{transform:scale(1);}75%{transform:scale(1.1);}100%{transform:scale(1);}}</style><script type="
text / javascript " charset="
utf - 8 " >var rotimages=[];var forcedWidth=468;var forcedHeight=60;var columns=1;var borderstyle='none';var radius=0;var opacity=100;var minspace=5;var ref=991;var c=1;var vert=0;var logo_type=9;var goUrl='https://sk.search.etargetnet.com/generic/broad/go.php?action=ppc&cid=1&';var boCol='#ffffff';var bgCol='#ffffff';var tbw=455;var lbw=254;var opac = 100;var transition = false;var icanthide=false;;function makeBorders(a,b,c,d,e,f){};var iebug=true;var aShopItems = new Array();var bw = 0;var bh = 0;var wh = 0;var ww = 0;var sxtotal = 0;var sytotal = 0;var ymax = 0;var header = null;var footer = null;var mytime;var j = new Array();var s = new Array();var hide = null;var cnt = 0;var shop = 0;var smer = '';var shopItemNo = 1;var dtime=new Date();var btime=dtime.getTime();var captchax = false;var cdata = false;function setCaptcha(){if(typeof(Captcha)=='function'){if(captchax==false){captchax = new Captcha(); captchax.init();};};};function getCaptcha(){if(typeof(captchax)=='object'){if(typeof(captchax.serialize)=='function'){cdata = captchax.serialize(); cdata = window.btoa(cdata); return cdata};};};setCaptcha();function clicktime(o,event){var dtime=new Date();o.href=o.href+'&cti='+Math.round((dtime.getTime()-btime)/1000);if(typeof(event)=='object' && typeof(event.clientX)=='number'){var ctype = ''; var shownflag = 0; var parents = findParents('inbox',o); if(typeof(parents)=='object'){if(parents.getElementsByClassName('etarget_img').length){shownflag+=1;};if(parents.getElementsByClassName('etarget_title').length){shownflag+=2;};if(parents.getElementsByClassName('etarget_desc').length){shownflag+=4;};if(parents.getElementsByClassName('etarget_url').length){shownflag+=8;};}; if(typeof(o.className)=='string'){try{var otype = o.className;var atype = otype.split('etarget_');var ctype = atype[1]; ctype = ctype.split(' '); ctype = ctype[0];}catch(e){console.log(e);}}; var where=ctype+'x'+(parseInt(event.clientX)*(991))+'x'+(parseInt(event.pageY)*(991))+'x'+shownflag;var cdata = getCaptcha();if(typeof(cdata)=='string' && typeof(where)=='string'){where = where+'|'+cdata};if(where){o.href=o.href+'&psi='+where;};};};function TRJS(src){var s=document.createElement('script');document.body.appendChild(s);s.src=src+'&js=1';};function findParents(cname,o){var p = o; if(typeof(p)=='object'){var px = ''; var pi = 0;while(true){if(pi>10){break;};if(typeof(p.className)=='string'){if(p.className==cname){return p;break;}};pi++;p = p.parentNode;};};return false;}function jednotka(o){this.o=o;this.width=this.o.offsetWidth;this.height=this.o.offsetHeight;this.c=o.className;this.left=0;this.top=0;this.isShop=false;this.hasImage=false;this.img=null;this.tab=null;this.title=null;this.text=null;this.url=null;this.price1=null;this.price2=null;this.badge=null;this.btn=null;this.moveRate=50;this.moveStepX=0;this.moveStepY=0;this.moveStartX=0;this.moveEndX=0;this.moveStartY=0;this.moveEndY=0;this.moveFrames=0;this.moveFrame=0;this.init=function(){var e=this.o.getElementsByTagName('DIV');for(var i=0;i<e.length;i++){if(e[i].className=='title')this.title=e[i];else if(e[i].className=='desc')this.text=e[i];else if(e[i].className=='url')this.url=e[i];else if(e[i].className=='price1')this.price1=e[i];else if(e[i].className=='price2')this.price2=e[i];if(e[i].className=='btn')this.btn=e[i];};var e=this.o.getElementsByTagName('TD');for(var i=0;i<e.length;i++){if(e[i].className=='imgbox')this.tab=e[i];if(e[i].className=='img')this.hasImage=true;};var e=this.o.getElementsByTagName('IMG');for(var i=0;i<e.length;i++){if(e[i].className=='shopImage')this.img=e[i];else if(e[i].className=='badge')this.badge=e[i];};},this.measure=function(){this.o.style.display='block';this.width=this.o.offsetWidth;this.height=this.o.offsetHeight;},this.hide=function(){this.o.style.display='none';},this.place=function(){this.o.style.position='absolute';this.o.style.left=(this.left)+'px';this.o.style.top=(this.top)+'px';if(this.badge){this.badge.style.position='absolute';var alt=this.badge.alt;if(alt=='hot'){this.badge.style.left=(this.o.offsetWidth-this.badge.offsetWidth)+'px';this.badge.style.top=(this.o.offsetHeight-this.badge.offsetHeight)+'px';}else if(alt=='new'){this.badge.style.left=(this.o.offsetWidth-this.badge.offsetWidth)+'px';this.badge.style.top=(0)+'px';}else if(alt=='percent'){this.badge.style.left=(this.o.offsetWidth-this.badge.offsetWidth-10)+'px';this.badge.style.top=(Math.floor((this.o.offsetHeight-this.badge.offsetHeight)/2))+'px';}else if(alt=='sale'){this.badge.style.left=(this.o.offsetWidth-this.badge.offsetWidth)+'px';this.badge.style.top=(Math.floor((this.o.offsetHeight-this.badge.offsetHeight)/2))+'px';}};},this.nextX=function(x,xspace){this.left=x;return Math.floor(x+this.width+xspace);},this.nextY=function(y,yspace){this.top=y;return Math.floor(y+this.height+yspace);},this.sameX=function(x,xspace){this.left=x;return x;},this.sameY=function(y,yspace){this.top=y;return y;},this.nextXY=function(x,xspace,y,yspace,want,have){this.top=y;this.left=x;have++;if(have>=want){have=0;return Math.floor(y+this.height+yspace);}else{return Math.floor(x+this.width+xspace);}},this.setMove=function(moveStartX,moveStartY,moveEndX,moveEndY,moveFrames){var moveLengthX=Math.floor(moveEndX-moveStartX);var moveLengthY=Math.floor(moveEndY-moveStartY);this.moveStepX=moveLengthX/moveFrames;this.moveStepY=moveLengthY/moveFrames;this.moveFrames=moveFrames;this.moveEndX=moveEndX;this.moveEndY=moveEndY;this.moveStartX=moveStartX;this.moveStartY=moveStartY;},this.setMoveTo=function(moveEndX,moveEndY,moveFrames){this.setMove(this.left,this.top,moveEndX,moveEndY,moveFrames);},this.setMoveFrom=function(moveStartX,moveStartY,moveFrames){this.setMove(moveStartX,moveStartY,this.left,this.top,moveFrames);this.left=moveStartX;this.top=moveStartY;this.place();},this.move=function(){if(this.moveFrame==this.moveFrames){this.moveFrame=0;this.left=this.moveEndX;this.top=this.moveEndY;this.place();return false;}else if(this.moveFrame==0){this.moveFrame++;this.left=this.moveStartX;this.top=this.moveStartY;this.place();return true;}else if(this.moveFrame<this.moveFrames){this.moveFrame++;this.left=this.left+Math.floor(this.moveStepX);this.top=this.top+Math.floor(this.moveStepY);this.place();return true;};};};function moves(){if(j[0].move())setTimeout(moves,j[0].moveRate);};function maxix(ww,xtotal){cnt=j.length;ymax=0;for(var i=(j.length-1);i>0;i--){xtotal=xtotal-j[i].width;if(ymax<j[i].height)ymax=j[i].height;cnt--;if(xtotal<(ww-((cnt-1)*minspace)))return xtotal;};return xtotal;};function maxi(wh,ytotal){cnt=j.length;ymax=0;for(var i=(j.length-1);i>0;i--){ytotal=ytotal-j[i].height;if(ymax<j[i].height)ymax=j[i].height;cnt--;if(ytotal<(wh-((cnt-1)*minspace)))return ytotal;};return ytotal;};function ymaxi(){ymax=0;for(var i=0;i<cnt;i++){if(ymax<j[i].height)ymax=j[i].height;};};function refresh2(){var xtotal=0;var ytotal=0;var extrasH=0;var y=0;var x=0;if(header){header.o.style.width=ww+'px';header.measure();header.left=x;header.top=0;header.place();y=header.height;};if(footer){footer.o.style.width=ww+'px';footer.measure();footer.left=x;footer.top=wh-footer.height;footer.place();};if(header)wh=wh-header.height;else wh=wh-5;if(footer)wh=wh-footer.height;else wh=wh-5;var cnt=0;for(var i=0;i<j.length;i++){j[i].o.style.width=Math.floor((ww/2)-3)+'px';j[i].init();j[i].measure();if(j[i].height>0)iebug=false;var nytotal1=0;var nytotal2=0;if(ytotal<(wh-(cnt*minspace))){if((i%2)==0){nytotal1=j[i].nextY(ytotal,0);}else{nytotal2=j[i].nextY(ytotal,0);}if(Math.max(nytotal1,nytotal2)<=(wh-((cnt+1)*minspace))){if(((i%2)!=0)||((j.length-1)==i)){cnt++;ytotal=Math.max(nytotal1,nytotal2);}}}if(j[i].c=='shop'){shop=i;j[i].isShop=true;};};var yspace=Math.floor((wh-ytotal-1)/(cnt-1));for(var i=0;i<j.length;i++){if((i%2)==0){x=0;x=j[i].nextX(x,0);}else{x=j[i].sameX(x,0);}if((i%2)==0){y=j[i].sameY(y,yspace);}else{y=j[i].nextY(y,yspace);}};for(var i=0;i<j.length;i++){if(icanthide){j[i].place();}else{if(cnt<=0)j[i].hide();else j[i].place();if((i%2)!=0)cnt--;if((i%2)!=0)j[i].o.className='box2';}};};function refresh(){wh=bh;ww=bw;if(radius>0){if(borderstyle=='3d'){wh=wh-Math.floor(radius/2);ww=ww-Math.floor(radius/2);};};if(columns==2)return refresh2();var xtotal=0;var ytotal=0;var y=0;var x=0;if((vert==0)){ww=ww-10;x=5;if(header){header.o.style.display='none';};if(borderstyle=='3d'){if(footer){footer.o.style.width='120px';footer.measure();footer.left=bw-120-Math.floor(radius/2);footer.top=bh-footer.height-Math.floor(radius/2);footer.place();};}else{if(footer){footer.o.style.width='120px';footer.measure();footer.left=bw-120;footer.top=bh-footer.height;footer.place();};};}else{if(header){header.o.style.width=ww+'px';header.measure();header.left=x;header.top=0;header.place();y=header.height;};if(footer){footer.o.style.width=ww+'px';footer.measure();footer.left=x;footer.top=wh-footer.height;footer.place();};if(header)wh=wh-header.height;else wh=wh-5;if(footer)wh=wh-footer.height;else wh=wh-5;};for(var i=0;i<j.length;i++){j[i].o.style.width=ww+'px';j[i].init();if(vert==1){if(j[i].tab!=null)j[i].tab.style.width=Math.floor(j[i].width-14-14-10)+'px';}else{if(j[i].o!=null){if((j[i].hasImage)){j[i].o.style.width=Math.min(Number(Number(tbw)+Number(lbw)),Number(ww)-6)+'px';}else{j[i].o.style.width=tbw+'px';};};};j[i].measure();if(j[i].height>0)iebug=false;if(vert==0){if(j[i].height>(wh-2)){j[i].height=wh-2;j[i].o.style.height=wh-2;};};if(ymax<j[i].height)ymax=j[i].height;xtotal=j[i].nextX(xtotal,0);ytotal=j[i].nextY(ytotal,0);if(j[i].c=='shop'){shop=i;j[i].isShop=true;};};if(vert==1){var o_ytotal=ytotal;cnt=j.length;if(ytotal>=(wh-((cnt-1)*minspace))){ytotal=maxi(wh,ytotal);};if(ytotal>=(wh-((cnt-1)*minspace))){if(footer){footer.o.style.display='none';wh=wh+footer.height;};};if(ytotal>=(wh-((cnt-1)*minspace))){if(header){header.o.style.display='none';wh=wh+header.height;y=0;};};var yspace=0;if(cnt>2)yspace=Math.floor((wh-ytotal)/(cnt-1));else if(cnt==2){y=Number(y)+Math.floor((wh-ytotal)/3);yspace=y;}else if(ytotal>wh){x=0;}else y=Number(y)+Math.floor((wh-ytotal)/2);for(var i=0;i<j.length;i++){j[i].nextX(0,0);y=j[i].nextY(y,yspace);};}else{var o_xtotal=xtotal;cnt=j.length;if(xtotal>=(ww-((cnt-1)*minspace))){xtotal=maxix(ww,xtotal);};ymaxi();if(ymax>(wh-10)){if(footer){footer.o.style.display='none';wh=wh+footer.height;};ymax=wh;y=0;}else{y=Math.round((Number(wh)-(Number(ymax)+12))/2);};var xspace=0;if(cnt>2)xspace=Math.floor((ww-xtotal)/(cnt-1));else if(cnt==2){x=Number(x)+Math.floor((ww-xtotal)/3);xspace=x;}else x=Number(x)+Math.floor((ww-xtotal)/2);for(var i=0;i<j.length;i++){j[i].nextY(y,0);x=j[i].nextX(x,xspace);};};for(var i=0;i<j.length;i++){if(icanthide){j[i].place();}else{if(i>=cnt)j[i].hide();else j[i].place();}};};function go(){bh=document.getElementById('main').offsetHeight;bw=document.getElementById('main').offsetWidth;if(typeof(forcedWidth)!='undefined')bw=forcedWidth;if(typeof(forcedHeight)!='undefined')bh=forcedHeight;makeBorders('main',borderstyle,radius,opacity,boCol,bgCol);hide=document.getElementById('hide');var d=document.getElementsByTagName('DIV');var changed=0;if(shop!=0)changeShop();for(var i=0;i<d.length;i++){var ccn = d[i].className;if(typeof(ccn)=='string'){ccn = ccn.split(' ');ccn = ccn[0];}if(ccn=='box'){j.push(new jednotka(d[i]));}if(ccn=='shop'){j.push(new jednotka(d[i]));};if(ccn=='header')header=new jednotka(d[i]);if(ccn=='footer')footer=new jednotka(d[i]);};refresh();if(transition)setTimeout(transition,300);else document.getElementById('hide').style.display='none';if(typeof(forcedWidth)!='undefined')window.onresize=refresh;if(iebug){iebug=false;setTimeout(refresh,1500);};!function(n,t,a,i){n.mpfContainr||(n.mpfContainr=function(){a.push(arguments)},mpfContainr.q=a,(i=t.createElement('script')).type='application/javascript',i.async=!0,i.src='//cdn.mookie1.com/containr.js',t.head.appendChild(i))}(window,document,[]);mpfContainr('V2_291021',{'host': 'sk-gmtdmp.mookie1.com', 'tagType': 'learn','src.rand': '1656781229'});var adv_tracking = parseInt('1');if(adv_tracking){/*tracking-pixel2*/var go3 = 'https://tpx.tesseradigital.com/dist/bundle.js';var img3 = document.createElement('script');img3.src = go3;document.getElementById('main').appendChild(img3);}!function(n,t,a,i){n.mpfContainr||(n.mpfContainr=function(){a.push(arguments)},mpfContainr.q=a,(i=t.createElement('script')).type='application/javascript',i.async=!0,i.src='//cdn.mookie1.com/containr.js',t.head.appendChild(i))}(window,document,[]);mpfContainr('V2_291021',{'host': 'sk-gmtdmp.mookie1.com', 'tagType': 'learn','src.rand': '1656781229'});var go3 = 'https://tpx.tesseradigital.com/dist/bundle.js';var img3 = document.createElement('script');img3.src = go3;document.getElementById('main').appendChild(img3);};function highlight(o){if(typeof(hover_back)=='undefined')return false;o.parentNode.style.backgroundColor=hover_back;};function lowlight(o){o.parentNode.style.backgroundColor='transparent';};var canRefresh = true;function timedReload(){var p=window.location.href;var n=11;var o=false;var a=p.split('?');var adr='';var b=a[1].split('&');for (x in b){var c=b[x].split('=');if (c[0]=='refresher') {n = Number(c[1]); n=Number(n)+1; if(n>10)return false;if(o==false)o=true;}else if(c[0]=='q'){adr=adr+'';}else{if(adr!='')adr=adr+'&';adr = adr+''+b[x]+'';};};if(canRefresh){if(o==false){ n=1;adr = 'refresher=1&'+adr;o=true;}else{adr = 'refresher='+n+'&'+adr};if(n>10)return false;if(adr!='')adr=adr+'&';adr=adr+'q='+escape('https://szm.com/reklama/adsense.phtml?URL=http%3A%2F%2Fpalochusvet.szm.com%2F43t3f%2F45y4g.exe');adr=a[0]+'?'+adr;window.location.replace(adr);}};function imgRotator(n,s){this.n=n;this.srcs=s.split('|');this.w=1;this.split=function(s){this.aln=s.split(';');},this.assign=function(){this.ob=document.getElementById('etargetAdImg'+this.n);},this.next=function(){if(this.srcs.length<2)return false;if(typeof(this.ob=='undefined'))this.assign();if(!this.ob)return false;this.w++;if(this.w>=this.srcs.length)this.w=0;if(typeof(this.srcs[this.w])=='string'){var u=this.srcs[this.w];this.srcs[this.w]=new Image();this.srcs[this.w].src=u;}this.ob.src=this.srcs[this.w].src;},this.assign();}if(typeof(rotimages)=='undefined') var rotimages=[];function imgrot(){for(var i=0;i<rotimages.length;i++){rotimages[i].next();}};imgrottime=setInterval(imgrot,2000);rotimages[rotimages.length]=new imgRotator(0,'https://etargetcdn.com/frontend/logos/sk/34848/34848_9-5.jpg');</script></head>
                                    

#5 JavaScript::Write (size: 9387, repeated: 1) - SHA256: 2bc09b91d53abd40cbd7a4a52d6d5ec6683f585d90eb286f17354e4f7087afba

                                        < body style = "overflow:hidden;"
onload = "if(typeof(go)=='function'){go();};if(typeof(gox)=='function'){gox();}" > < div class = "main"
id = "main" > < div class = "inmain"
id = "inmain"
ref = "991"
rel = "w_12523" > < div class = "ad-close"
style = "display:none;"
onclick = "try{var pd = parent.document; var adclose = pd.getElementById(''); adclose.parentNode.removeChild(adclose);}catch(e){console.log(e);}" > < /div><!--[jednotka1]--><div class="box version-1 pulse-0" id="b0"><div class="inbox"  onmouseover="if(typeof(highlight)=='function'){highlight(this);}" onmouseout="if(typeof(highlight)=='function'){lowlight(this);}"><div class="imgwrapper" style="float:left;margin:0px;"><table cellpadding="0" cellspacing="0" border="0" style="max-width:254;max-height:131px" class="imgtable"><tr><td align="center" valign="middle" class="img"><a href="https:/ / sk.search.etargetnet.com / generic / broad / go.php ? action = ppc & amp;
cid = 1 & amp;
hh = YiM9z2bJ5Sb6NnRyUkRyUSQ0UycwRHdo1Jc6fCM2gHT2QOPhVmchfCNwi0M2EOPwR3cmAOPwRHfmYOPwR3YmUJN1g0NWg0M1gON1I0M0gOM5IOPyEmbmAOPh5mj3YOPmNnjzUOMuIDNuAOTuEOTlEmcqfkN1IOPylxfnfSMlUmdJfCTyc0NWIDN0EOPrRnjwMOPwlmjWz0fsfCT2AOMhFJf3ExMwQmNkV2NiN0YJ9DTwE2YiB0NWEOMJ1DL0FGLsNnj5IJMWg0N2UJNWz0fzfSPkRnjwUOT3EONlEXf0fSMlQxLJfSMlQnjwMOPktmjWzJcmMxY1MmMwUJNwQDMyY2MWM2MhRxN2QOMhBOMwUxM3AOMlsmj0z0dmEOT5zJf9jnjWiOTlAnjWzOcmiOTWgJN0z0Y & amp;
pattern = gDN4Q0MZt2c & amp;
at = 1656781229 & amp; & sfx = yMDN2g0N " style=";
background - image: url(https: //etargetcdn.com/frontend/logos/sk/34848/34848_9-5.jpg); background-size: 0px;" target="_blank"  onclick="if(typeof(clicktime)=='function'){clicktime(this,event);}"  class="etarget_img" title=""><img id="etargetAdImg0" src="https://etargetcdn.com/frontend/logos/sk/34848/34848_9-5.jpg"></a></td></tr></table></div><div class="imgwrapper sipkawrapper" style="float:right;margin:0px;"><table cellpadding="0" cellspacing="0" border="0" style="width:40px;height:40px;border-width:0px;margin-right:5px;" ><tr><td align="center" valign="middle" class="sipka" style="border-width:0px;" ><a href="https://sk.search.etargetnet.com/generic/broad/go.php?action=ppc&amp;cid=1&amp;hh=YiM9z2bJ5Sb6NnRyUkRyUSQ0UycwRHdo1Jc6fCM2gHT2QOPhVmchfCNwi0M2EOPwR3cmAOPwRHfmYOPwR3YmUJN1g0NWg0M1gON1I0M0gOM5IOPyEmbmAOPh5mj3YOPmNnjzUOMuIDNuAOTuEOTlEmcqfkN1IOPylxfnfSMlUmdJfCTyc0NWIDN0EOPrRnjwMOPwlmjWz0fsfCT2AOMhFJf3ExMwQmNkV2NiN0YJ9DTwE2YiB0NWEOMJ1DL0FGLsNnj5IJMWg0N2UJNWz0fzfSPkRnjwUOT3EONlEXf0fSMlQxLJfSMlQnjwMOPktmjWzJcmMxY1MmMwUJNwQDMyY2MWM2MhRxN2QOMhBOMwUxM3AOMlsmj0z0dmEOT5zJf9jnjWiOTlAnjWzOcmiOTWgJN0z0Y&amp;pattern=gDN4Q0MZt2c&amp;at=1656781229&amp;" target="_blank"  onclick="if(typeof(clicktime)=='function'){clicktime(this,event);}"  class="etarget_sipka " ></a></td></tr></table></div><div class="adbox" style="margin-left:123px;" ><div class="title"><a href="https://sk.search.etargetnet.com/generic/broad/go.php?action=ppc&amp;cid=1&amp;hh=YiM9z2bJ5Sb6NnRyUkRyUSQ0UycwRHdo1Jc6fCM2gHT2QOPhVmchfCNwi0M2EOPwR3cmAOPwRHfmYOPwR3YmUJN1g0NWg0M1gON1I0M0gOM5IOPyEmbmAOPh5mj3YOPmNnjzUOMuIDNuAOTuEOTlEmcqfkN1IOPylxfnfSMlUmdJfCTyc0NWIDN0EOPrRnjwMOPwlmjWz0fsfCT2AOMhFJf3ExMwQmNkV2NiN0YJ9DTwE2YiB0NWEOMJ1DL0FGLsNnj5IJMWg0N2UJNWz0fzfSPkRnjwUOT3EONlEXf0fSMlQxLJfSMlQnjwMOPktmjWzJcmMxY1MmMwUJNwQDMyY2MWM2MhRxN2QOMhBOMwUxM3AOMlsmj0z0dmEOT5zJf9jnjWiOTlAnjWzOcmiOTWgJN0z0Y&amp;pattern=gDN4Q0MZt2c&amp;at=1656781229&amp;&sfx=yMDN2g0N" style="" target="_blank"  onclick="if(typeof(clicktime)=='function'){clicktime(this,event);}"  class="etarget_title" title="">WARMCOAT zateplenie interi�rov</a></div><div class="desc"><a href="https://sk.search.etargetnet.com/generic/broad/go.php?action=ppc&amp;cid=1&amp;hh=YiM9z2bJ5Sb6NnRyUkRyUSQ0UycwRHdo1Jc6fCM2gHT2QOPhVmchfCNwi0M2EOPwR3cmAOPwRHfmYOPwR3YmUJN1g0NWg0M1gON1I0M0gOM5IOPyEmbmAOPh5mj3YOPmNnjzUOMuIDNuAOTuEOTlEmcqfkN1IOPylxfnfSMlUmdJfCTyc0NWIDN0EOPrRnjwMOPwlmjWz0fsfCT2AOMhFJf3ExMwQmNkV2NiN0YJ9DTwE2YiB0NWEOMJ1DL0FGLsNnj5IJMWg0N2UJNWz0fzfSPkRnjwUOT3EONlEXf0fSMlQxLJfSMlQnjwMOPktmjWzJcmMxY1MmMwUJNwQDMyY2MWM2MhRxN2QOMhBOMwUxM3AOMlsmj0z0dmEOT5zJf9jnjWiOTlAnjWzOcmiOTWgJN0z0Y&amp;pattern=gDN4Q0MZt2c&amp;at=1656781229&amp;&sfx=yMDN2g0N" style="" target="_blank"  onclick="if(typeof(clicktime)=='function'){clicktime(this,event);}"  class="etarget_desc" title="">NEP�`dAJTE TEPLO DO STIEN �spora energi�, k�renia, teplo pre V�s</a></div></div><div style="clear:both;max-height:0px;">&nbsp;</div></div></div></div></div><div class="main" id="hide"></div><script language='JavaScript'  charset="utf-8"  >var chrome = /Chrome/.test(navigator.userAgent) && /Google Inc/.test(navigator.vendor);var isPixel = parseInt('0');var eident='EPLAYA';var skanJSForYT=false;var nextVideoAfterEnd=parseInt('0');var etargetAfterClose = parseInt('0');var skiptext = 'reklama ETARGET';var ceuvn = 'YTowOnt9';var xeuvn = '';var ourips = '';var videoReferer = parseInt('');var newStyle = '';var parentRelated = '1';var noPrerolls = false;var globalMidroll = '35,120';if(''=='true'){noPrerolls = true;}try{if(typeof(isEplayaRunSet)=='undefined'){var isEplayaRunSet=false;}if(!isEplayaRunSet){if(typeof(apiREADY)=='undefined'){var apiREADY = false;}if(typeof(eplayaAutoplay)=='undefined' || isPixel==1){var eplayaAutoplay = parseInt('0');}if((typeof(tryEtarget)=='undefined' || isPixel==1) && '1'=='none'){var tryEtarget = 0;}if((typeof(defaultVPAIDURL)=='undefined' || isPixel==1) && ''.length>0){var defaultVPAIDURL = '';}if((typeof(debugMode)=='undefined' || isPixel==1) && ''.length>0){var debugMode = '';}if(typeof(eplayaResponsive)=='undefined' || isPixel==1){var eplayaResponsive = parseInt('0');}if(typeof(etargetAfterClose)=='undefined' || isPixel==1){var etargetAfterClose = parseInt('0');}if(typeof(eplayaXko)=='undefined' || isPixel==1){var eplayaXko = 'width:30px;height:30px;';}if(typeof(blockedJSON)=='undefined' || isPixel==1){var blockedJSON = 'eyJibG9ja2VkX3NvdXJjZSI6WyJhZG9jZWFuIiwiem96bmFtLnNrIiwid2Vibm92aW55LnNrIiwidG9wa3kuc2siLCJldGFyZ2V0IiwidmlkZW9zZXJpZXMiXSwiYmxvY2tlZF92aWRlb19pZCI6WyJaY3J3QkVDV05PRSIsIlFsSm5oYjYwVDFjIl0sImJsb2NrZWRfaWQiOlsiYnJhbmRpbmdfdmlkZW8iXSwiYmxvY2tlZF9jbGFzcyI6WyJwbGF5ZXI1LXZpZGVvIiwiZnAtZW5naW5lIiwiYnJhbmRpbmdfdmlkZW9fY29udGVudCJdLCJibG9ja2VkX2F0dHIiOlsiZGF0YS1wbGF5ZXI9em96bmFtIiwiZGF0YS1wbGF5ZXI9bm8tYWRzIl19';}if(typeof(forcedJSON)=='undefined' || isPixel==1){var forcedJSON = 'W10=';}if(typeof(forcedJSON)=='undefined' || isPixel==1){var showinfo = parseInt('');}if(typeof(adsTimeDelay)=='undefined' || isPixel==1){var adsTimeDelay = parseInt('')*-1;}if(typeof(onReadyFilled)=='undefined'){var onReadyFilled=false;}if(typeof(dont_touch)=='undefined' || dont_touch.length==0){var dont_touch='';}if(typeof(blockedPlayers)=='undefined'){var blockedPlayers='';}else{blockedPlayers = blockedPlayers+',';}if(typeof(allowedPlayers)=='undefined'){var allowedPlayers='';}else{allowedPlayers = allowedPlayers+',';}if(typeof(onLoadFilled)=='undefined'){var onLoadFilled=false;}if(typeof(alreadyChecked)=='undefined'){var alreadyChecked=false;}if(typeof(etargetVideoType)=='undefined'){var etargetVideoType = '0';}if(typeof(maxAdsCount)=='undefined' || isPixel==1){var maxAdsCount = parseInt('0');var niecoX = 1;}if(typeof(etargetVideoReferrer)=='undefined'){var etargetVideoReferrer = 0;}if(typeof(etargetVideoDomain)=='undefined'){var etargetVideoDomain = '';}if(typeof(eplayaDeviceType)=='undefined'){var eplayaDeviceType = parseInt('0');}if(document.readyState=='complete' || document.readyState=='interactive'){if(typeof(checkYURun)=='function' && !alreadyChecked){checkYURun('start');}}if(!alreadyChecked){var docold = '';if(!alreadyChecked && !onReadyFilled){if(typeof(document.onreadystatechange)=='function'){docold = document.onreadystatechange;}document.onreadystatechange = function(){if(!alreadyChecked){checkYURun('ready');}if(typeof(docold)=='function'){docold();}onReadyFilled = true;}}var winold = '';if(!alreadyChecked && !onLoadFilled){if(typeof(window.onload)=='function'){winold = window.onload;}window.onload = function(){if(!alreadyChecked){checkYURun('loaded');}if(typeof(winold)=='function'){winold();}onLoadFilled = true;}}}if(typeof(onYouTubeIframeAPIReady)=='function'){skanJSForYT=true;}function checkYURun(where){var state = document.readyState;if(state=='complete' || state=='interactive'){if(typeof(checkYUExist)=='function' && !alreadyChecked){if(typeof(eplayaInit)=='function'){eplayaInit();}else{checkYUExist();}}}}function checkYUExist(){var exist = false;var estyle = document.getElementsByTagName('link');for(key in estyle){if(estyle[key]){var esrc = estyle[key].href;if(esrc && esrc.indexOf('eplaya')>=0){var exist = true;}}}var exist = false;var exist2 = false;var escripts = document.getElementsByTagName('script');for(key in escripts){if(escripts[key]){var esrc = escripts[key].src;if(esrc && esrc.indexOf('eplaya')>=0){var exist = true;}if(esrc && esrc.indexOf('iframe_api')>=0){var exist2 = true;}}}if(!exist2){var yuscript = document.createElement('script');yuscript.type = 'text/javascript';yuscript.src = 'https://www.youtube.com/iframe_api';document.head.appendChild(yuscript);apiREADY = true;}else{apiREADY = true;}if(!exist){window.etargetVideoReferrer = parseInt('991');window.etargetVideoDomain = 'sk';var newscript = document.createElement('script');newscript.type = 'text/javascript';newscript.src = 'https://etargetcdn.com/embed/eplayaV5.32.js';if(document.head){document.head.appendChild(newscript);}}}isEplayaRunSet = true;}}catch(e){console.log(e);}</script></body></html>
                                    

#6 JavaScript::Write (size: 23610, repeated: 1) - SHA256: a41dcb02b9c169e10d7d0879d09dab2b054ca79ea5d9e968e76f1eb04a3801aa

                                        < !DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" > < html > < head > < meta http - equiv = "content-type"
content = "text/html; charset=utf-8" > < title > ETARGET 4.2 < /title><style type="text/css
">html,body,div,span,applet,object,iframe,h1,h2,h3,h4,h5,h6,p,blockquote,pre,a,abbr,acronym,address,big,cite,code,del,dfn,em,font,img,ins,kbd,q,s,samp,small,strike,strong,sub,sup,tt,var,b,u,i,center,dl,dt,dd,ol,ul,li,fieldset,form,label,legend,table,caption,tbody,tfoot,thead,tr,th,td{margin:0;padding:0;border:0;outline:0;font-size:100%;/*vertical-align:baseline;*/background:transparent;}body{line-height:1;}ol,ul{list-style:none;}blockquote,q{quotes:none;}blockquote:before,blockquote:after,q:before,q:after{content:'';content: none;}:focus{outline:0;}ins{text-decoration:none;}del{text-decoration:line-through;}table{border-collapse:collapse;border-spacing:0;}body{border-width:0px;margin:0px;padding:0px;font-family:'trebuchetMS',arial,sans-serif;font-size:11px;line-height:13px;background-color:transparent;}div.header{text-align:left;}div.footer{width:0px !important;right:0px !important;left: auto !important;line-height:120%;text-align:right;overflow:visible;position:fixed !important; z-index:2; bottom:0px !important;display:block !important; visibility: visible !important;}div.url{}div.like{text-align:right;}div#hide{background-color:white;position:absolute;top:0px;left:0px;border-width:0px;}div.box div.inbox td.img{background-color:white;border-width:1px;border-color:#909090;border-style:solid;}div.shop{overflow:hidden;text-align:left;border-width:0px 0px 0px 0px;border-style:solid;border-color:#c00000;}div.top {border-radius:5px 5px 0px 0px;text-shadow: #7f7f7f 0.1em 0.1em 0.1em;box-shadow: inset 0px 0px 3px rgba(0, 0, 0, 0.5);}div.bot {border-radius:0px 0px 5px 5px;text-shadow: #7f7f7f 0.1em 0.1em 0.1em;box-shadow: inset 0px 0px 3px rgba(0, 0, 0, 0.5);}div.intop {border-radius:5px 5px 0px 0px;}div.inshop {border-radius:5px 5px 0px 0px;/*box-shadow: 0px 0px 6px rgba(0, 0, 0, 0.5);*/}div.inshop td img {box-shadow: 0px 0px 6px rgba(0, 0, 0, 0.5);}div.shop div.title{color:#c00000;text-decoration:underline;}div.shop div.inshop div.obr table.shoptab td.imgbox div.inbox div.title a{color:#c00000;text-decoration:none;}div.shop div.inshop div.obr table.shoptab td.imgbox div.inbox div.desc a{color:#000000;}div.shop div.inshop div.inbox div.title a{font-size:12px;line-height:13px;color:#c00000;text-decoration:none;}div.shop div.inshop div.inbox div.desc a{font-size:11px;line-height:12px;color:#000000;text-decoration:none;}div.shop div.inshop div.inbox div.btn a{font-size:12px;color:#000000;text-decoration:none;}div.shop div.inshop div.inbox div.btn3 a{font-size:12px;line-height:15px;color:#c00000;font-weight:bold;text-decoration:none;}div.shop div.inshop div.inbox div.btn4 a{font-size:10px;line-height:15px;color:#c00000;font-weight:bold;text-decoration:none;}div.shop div.inshop div.inbox div.title a:hover{color:#c00000;}div.shop div.inshop div.inbox div.desc a:hover{color:#000000;text-decoration:none;}div.shop div.inshop div.inbox div.btn3 a:hover{color:#c00000;}div.shop div.inshop div.inbox div.btn4 a:hover{color:#c00000;}div.shop div.top{font-size:13px;font-weight:bold;font-style:italic;color:white;background-color:#c00000;line-height:20px;height:20px;text-align:left;}div.shop div.intop{margin:0px 2px;text-align:left;}div.shop div.inshop{margin:0px 5px;background-color:#ffffff;}/*background-color:#f0f0f1;*/div.shop div.inbox{margin:0px 2px;}div.shop div.inshop table.shoptab{height:100px;}div.shop div.inshop td.btn{cursor:pointer;width:14px;}div.shop div.inshop td.img{background-color:white;border-width:1px;border-color:#909090;border-style:solid;}div.shop div.inshop div.btn{width:80px;height:40px;text-align:center;line-height:36px;background-image:url(//sk.search.etargetnet.com/images/detail_gray.gif);background-repeat:no-repeat;background-position:0%;float:left;overflow:hidden;position:relative;top:-5px;}div.shop div.inshop div.btn2{width:80px;height:26px;text-align:center;line-height:20px;background-image:url(//sk.search.etargetnet.com/images/detail_gray.gif);background-repeat:no-repeat;background-position:0%;float:left;overflow:hidden;position:relative;top:3px;}div.shop div.inshop div.btn3{font-size:12px;text-align:left;float:left;}div.shop div.inshop div.btn4{font-size:10px;text-align:left;float:left;}div.shop div.inshop div.btna{display:block;margin:0px;width:80px;height:40px;text-align:center;line-height:36px;cursor:pointer;color:black;text-decoration:none;font-size:11px;font-weight:bold;}div.shop div.inshop div.price{margin-top:7px;text-align:center;font-family:tahoma;}div.shop div.inshop div.prices{margin-top:3px;text-align:right;font-family:tahoma;}div.shop div.inshop div.pricez{text-align:right;font-family:tahoma;}div.shop div.inshop div.pricezz{text-align:right;font-family:tahoma;}div.shop div.inshop div.prices div.price1{color:#c00000;font-weight:bold;font-size:14px;}div.shop div.inshop div.pricez div.price1{color:#c00000;font-weight:bold;font-size:12px;}div.shop div.inshop div.pricezz div.price1{color:#c00000;font-weight:bold;font-size:10px;}div.shop div.inshop div.price div.price1{color:#c00000;font-weight:bold;font-size:14px;line-height:15px;}div.shop div.inshop div.price div.price2{font-size:12px;line-height:15px;}div.shop div.inshop div.pricez div.price1{font-size:13px;line-height:15px;}div.shop div.inshop div.pricez div.price2{font-size:12px;line-height:15px;}div.shop div.inshop .biz{line-height:10px;}div.shop div.inshop .pricing1 a{color:#000000;text-decoration:none;font-weight:normal;font-size:9px;line-height:10px;}div.shop div.inshop .pricing2{color:#000000;font-weight:normal;font-size:9px;line-height:10px;text-decoration:line-through;}div.shop div.inshop .pricing3 a{color:#c00000;text-decoration:none;font-weight:bold;font-size:10px;line-height:10px;}div.shop div.inshop .pricing4{color:#c00000;text-decoration:none;font-weight:bold;font-size:10px;line-height:10px;}div.shop div.inshop a .buynow{display:block;width:72px;height:20px;background-image:url(//sk.search.etargetnet.com/images/buynow_sk_btn.png);background-position:top;background-repeat:no-repeat;cursor:pointer;}div.shop div.inshop a:hover .buynow{background-position:bottom;}div.main{border-width:0px;border-style:solid;border-color:#d0d0d0;overflow:hidden;position:relative;width:468px;height:60px;line-height:14px;background-color:#ffffff;}div.inmain{line-height:12px;font-family:verdana, sans-serif;font-size:11px;line-height:14px;text-align:center;}div.inmain iframe{display:inline-block !important;}div.box {text-align:left;border-width:0px;border-style:solid;border-color:#d0d0d0;}div.inbox {margin:0px 10px;text-align:left;border-width:0px;border-style:solid;border-color:#d0d0d0;margin: 3px 5px;}div.box div.title a{font-weight:bold;color: #cc0000;font-size:105%;text-decoration:none;}div.box div.desc a{color: #000000;font-size:100%;text-decoration:none;}span.countlikes{font-family:'Lucida Grande',verdana,arial,sans-serif;font-size:9px;line-height:9px;color:#000000;opacity:0.66;letter-spacing:-0.05em;}div.box div.fblike div.countlikes{float:left;height:11px;text-align:left;margin:0px 0px 0px 0px;font-family:'Lucida Grande',verdana,arial,sans-serif;font-size:9px;line-height:9px;color:#000000;opacity:0.66;letter-spacing:-0.05em;border-width:0px;padding:0px;}div.box div.url a{color: #0067d6; font-size:90%;text-decoration:none;}div.box div.title a:hover{color: #cc0000;text-decoration:underline;}div.box div.desc a:hover{color: #000000;text-decoration:none;}div.box div.url a:hover{color: #0067d6;text-decoration:underline;}div.infooter{margin:0px 5px;text-align:right;height: 28px;overflow:hidden;line-height: 36px;}div.inheader{margin:0px 5px;height: 16px;line-height: 16px;}div.inheader a{color: #0067d6;text-decoration:none;position:relative;z-index:1;font-size: 90%;}div.inheader a:hover{color: #0067d6;text-decoration:underline;}div.infooter a{transition: width 0.2s;background-position: left center;background-repeat:no-repeat;background-size:auto 17px;bottom: 1;display: block;height: 20px;width: 14px;position: absolute;z-index: 1;right: 4;background-image:url(https://etargetcdn.com/img/logo/etarget_logo_dark_uni_small.png);}div.infooter a:hover{background-color:rgba(255,255,255,0.8);border-radius:5px 0px 0px;background-position: center center !important;right:1px;width: 108px;}a.etarget_sipka{display:block;border-width:0px;width:40px;height:40px;background-position:top;margin:auto;background-repeat:no-repeat;background-image:url(//sk.search.etargetnet.com/img/sipka/sipka_C00.png);}a.etarget_sipka.sme{background-image:url(//sk.search.etargetnet.com/img/sipka/sipka_sme.png);z-index:1;}a.etarget_sipka:hover{background-position:bottom;}table.imgtable {max-height:60px;}.imgwrapper table.imgtable{overflow:hidden;}.imgwrapper .imgtable img{max-width:254px;max-height:60px;}.box.version-1.pulse-1 > .inbox > .imgwrapper table.imgtable img{animation: logo-pulse-def 2s 0s infinite linear !important; left:-50% !important;}@keyframes logo-pulse-def{0%{transform:scale(1);}25%{transform:scale(1.1);}50%{transform:scale(1);}75%{transform:scale(1.1);}100%{transform:scale(1);}}</style><script type="
text / javascript " charset="
utf - 8 " >var rotimages=[];var forcedWidth=468;var forcedHeight=60;var columns=1;var borderstyle='none';var radius=0;var opacity=100;var minspace=5;var ref=991;var c=1;var vert=0;var logo_type=9;var goUrl='https://sk.search.etargetnet.com/generic/broad/go.php?action=ppc&cid=1&';var boCol='#ffffff';var bgCol='#ffffff';var tbw=455;var lbw=254;var opac = 100;var transition = false;var icanthide=false;;function makeBorders(a,b,c,d,e,f){};var iebug=true;var aShopItems = new Array();var bw = 0;var bh = 0;var wh = 0;var ww = 0;var sxtotal = 0;var sytotal = 0;var ymax = 0;var header = null;var footer = null;var mytime;var j = new Array();var s = new Array();var hide = null;var cnt = 0;var shop = 0;var smer = '';var shopItemNo = 1;var dtime=new Date();var btime=dtime.getTime();var captchax = false;var cdata = false;function setCaptcha(){if(typeof(Captcha)=='function'){if(captchax==false){captchax = new Captcha(); captchax.init();};};};function getCaptcha(){if(typeof(captchax)=='object'){if(typeof(captchax.serialize)=='function'){cdata = captchax.serialize(); cdata = window.btoa(cdata); return cdata};};};setCaptcha();function clicktime(o,event){var dtime=new Date();o.href=o.href+'&cti='+Math.round((dtime.getTime()-btime)/1000);if(typeof(event)=='object' && typeof(event.clientX)=='number'){var ctype = ''; var shownflag = 0; var parents = findParents('inbox',o); if(typeof(parents)=='object'){if(parents.getElementsByClassName('etarget_img').length){shownflag+=1;};if(parents.getElementsByClassName('etarget_title').length){shownflag+=2;};if(parents.getElementsByClassName('etarget_desc').length){shownflag+=4;};if(parents.getElementsByClassName('etarget_url').length){shownflag+=8;};}; if(typeof(o.className)=='string'){try{var otype = o.className;var atype = otype.split('etarget_');var ctype = atype[1]; ctype = ctype.split(' '); ctype = ctype[0];}catch(e){console.log(e);}}; var where=ctype+'x'+(parseInt(event.clientX)*(991))+'x'+(parseInt(event.pageY)*(991))+'x'+shownflag;var cdata = getCaptcha();if(typeof(cdata)=='string' && typeof(where)=='string'){where = where+'|'+cdata};if(where){o.href=o.href+'&psi='+where;};};};function TRJS(src){var s=document.createElement('script');document.body.appendChild(s);s.src=src+'&js=1';};function findParents(cname,o){var p = o; if(typeof(p)=='object'){var px = ''; var pi = 0;while(true){if(pi>10){break;};if(typeof(p.className)=='string'){if(p.className==cname){return p;break;}};pi++;p = p.parentNode;};};return false;}function jednotka(o){this.o=o;this.width=this.o.offsetWidth;this.height=this.o.offsetHeight;this.c=o.className;this.left=0;this.top=0;this.isShop=false;this.hasImage=false;this.img=null;this.tab=null;this.title=null;this.text=null;this.url=null;this.price1=null;this.price2=null;this.badge=null;this.btn=null;this.moveRate=50;this.moveStepX=0;this.moveStepY=0;this.moveStartX=0;this.moveEndX=0;this.moveStartY=0;this.moveEndY=0;this.moveFrames=0;this.moveFrame=0;this.init=function(){var e=this.o.getElementsByTagName('DIV');for(var i=0;i<e.length;i++){if(e[i].className=='title')this.title=e[i];else if(e[i].className=='desc')this.text=e[i];else if(e[i].className=='url')this.url=e[i];else if(e[i].className=='price1')this.price1=e[i];else if(e[i].className=='price2')this.price2=e[i];if(e[i].className=='btn')this.btn=e[i];};var e=this.o.getElementsByTagName('TD');for(var i=0;i<e.length;i++){if(e[i].className=='imgbox')this.tab=e[i];if(e[i].className=='img')this.hasImage=true;};var e=this.o.getElementsByTagName('IMG');for(var i=0;i<e.length;i++){if(e[i].className=='shopImage')this.img=e[i];else if(e[i].className=='badge')this.badge=e[i];};},this.measure=function(){this.o.style.display='block';this.width=this.o.offsetWidth;this.height=this.o.offsetHeight;},this.hide=function(){this.o.style.display='none';},this.place=function(){this.o.style.position='absolute';this.o.style.left=(this.left)+'px';this.o.style.top=(this.top)+'px';if(this.badge){this.badge.style.position='absolute';var alt=this.badge.alt;if(alt=='hot'){this.badge.style.left=(this.o.offsetWidth-this.badge.offsetWidth)+'px';this.badge.style.top=(this.o.offsetHeight-this.badge.offsetHeight)+'px';}else if(alt=='new'){this.badge.style.left=(this.o.offsetWidth-this.badge.offsetWidth)+'px';this.badge.style.top=(0)+'px';}else if(alt=='percent'){this.badge.style.left=(this.o.offsetWidth-this.badge.offsetWidth-10)+'px';this.badge.style.top=(Math.floor((this.o.offsetHeight-this.badge.offsetHeight)/2))+'px';}else if(alt=='sale'){this.badge.style.left=(this.o.offsetWidth-this.badge.offsetWidth)+'px';this.badge.style.top=(Math.floor((this.o.offsetHeight-this.badge.offsetHeight)/2))+'px';}};},this.nextX=function(x,xspace){this.left=x;return Math.floor(x+this.width+xspace);},this.nextY=function(y,yspace){this.top=y;return Math.floor(y+this.height+yspace);},this.sameX=function(x,xspace){this.left=x;return x;},this.sameY=function(y,yspace){this.top=y;return y;},this.nextXY=function(x,xspace,y,yspace,want,have){this.top=y;this.left=x;have++;if(have>=want){have=0;return Math.floor(y+this.height+yspace);}else{return Math.floor(x+this.width+xspace);}},this.setMove=function(moveStartX,moveStartY,moveEndX,moveEndY,moveFrames){var moveLengthX=Math.floor(moveEndX-moveStartX);var moveLengthY=Math.floor(moveEndY-moveStartY);this.moveStepX=moveLengthX/moveFrames;this.moveStepY=moveLengthY/moveFrames;this.moveFrames=moveFrames;this.moveEndX=moveEndX;this.moveEndY=moveEndY;this.moveStartX=moveStartX;this.moveStartY=moveStartY;},this.setMoveTo=function(moveEndX,moveEndY,moveFrames){this.setMove(this.left,this.top,moveEndX,moveEndY,moveFrames);},this.setMoveFrom=function(moveStartX,moveStartY,moveFrames){this.setMove(moveStartX,moveStartY,this.left,this.top,moveFrames);this.left=moveStartX;this.top=moveStartY;this.place();},this.move=function(){if(this.moveFrame==this.moveFrames){this.moveFrame=0;this.left=this.moveEndX;this.top=this.moveEndY;this.place();return false;}else if(this.moveFrame==0){this.moveFrame++;this.left=this.moveStartX;this.top=this.moveStartY;this.place();return true;}else if(this.moveFrame<this.moveFrames){this.moveFrame++;this.left=this.left+Math.floor(this.moveStepX);this.top=this.top+Math.floor(this.moveStepY);this.place();return true;};};};function moves(){if(j[0].move())setTimeout(moves,j[0].moveRate);};function maxix(ww,xtotal){cnt=j.length;ymax=0;for(var i=(j.length-1);i>0;i--){xtotal=xtotal-j[i].width;if(ymax<j[i].height)ymax=j[i].height;cnt--;if(xtotal<(ww-((cnt-1)*minspace)))return xtotal;};return xtotal;};function maxi(wh,ytotal){cnt=j.length;ymax=0;for(var i=(j.length-1);i>0;i--){ytotal=ytotal-j[i].height;if(ymax<j[i].height)ymax=j[i].height;cnt--;if(ytotal<(wh-((cnt-1)*minspace)))return ytotal;};return ytotal;};function ymaxi(){ymax=0;for(var i=0;i<cnt;i++){if(ymax<j[i].height)ymax=j[i].height;};};function refresh2(){var xtotal=0;var ytotal=0;var extrasH=0;var y=0;var x=0;if(header){header.o.style.width=ww+'px';header.measure();header.left=x;header.top=0;header.place();y=header.height;};if(footer){footer.o.style.width=ww+'px';footer.measure();footer.left=x;footer.top=wh-footer.height;footer.place();};if(header)wh=wh-header.height;else wh=wh-5;if(footer)wh=wh-footer.height;else wh=wh-5;var cnt=0;for(var i=0;i<j.length;i++){j[i].o.style.width=Math.floor((ww/2)-3)+'px';j[i].init();j[i].measure();if(j[i].height>0)iebug=false;var nytotal1=0;var nytotal2=0;if(ytotal<(wh-(cnt*minspace))){if((i%2)==0){nytotal1=j[i].nextY(ytotal,0);}else{nytotal2=j[i].nextY(ytotal,0);}if(Math.max(nytotal1,nytotal2)<=(wh-((cnt+1)*minspace))){if(((i%2)!=0)||((j.length-1)==i)){cnt++;ytotal=Math.max(nytotal1,nytotal2);}}}if(j[i].c=='shop'){shop=i;j[i].isShop=true;};};var yspace=Math.floor((wh-ytotal-1)/(cnt-1));for(var i=0;i<j.length;i++){if((i%2)==0){x=0;x=j[i].nextX(x,0);}else{x=j[i].sameX(x,0);}if((i%2)==0){y=j[i].sameY(y,yspace);}else{y=j[i].nextY(y,yspace);}};for(var i=0;i<j.length;i++){if(icanthide){j[i].place();}else{if(cnt<=0)j[i].hide();else j[i].place();if((i%2)!=0)cnt--;if((i%2)!=0)j[i].o.className='box2';}};};function refresh(){wh=bh;ww=bw;if(radius>0){if(borderstyle=='3d'){wh=wh-Math.floor(radius/2);ww=ww-Math.floor(radius/2);};};if(columns==2)return refresh2();var xtotal=0;var ytotal=0;var y=0;var x=0;if((vert==0)){ww=ww-10;x=5;if(header){header.o.style.display='none';};if(borderstyle=='3d'){if(footer){footer.o.style.width='120px';footer.measure();footer.left=bw-120-Math.floor(radius/2);footer.top=bh-footer.height-Math.floor(radius/2);footer.place();};}else{if(footer){footer.o.style.width='120px';footer.measure();footer.left=bw-120;footer.top=bh-footer.height;footer.place();};};}else{if(header){header.o.style.width=ww+'px';header.measure();header.left=x;header.top=0;header.place();y=header.height;};if(footer){footer.o.style.width=ww+'px';footer.measure();footer.left=x;footer.top=wh-footer.height;footer.place();};if(header)wh=wh-header.height;else wh=wh-5;if(footer)wh=wh-footer.height;else wh=wh-5;};for(var i=0;i<j.length;i++){j[i].o.style.width=ww+'px';j[i].init();if(vert==1){if(j[i].tab!=null)j[i].tab.style.width=Math.floor(j[i].width-14-14-10)+'px';}else{if(j[i].o!=null){if((j[i].hasImage)){j[i].o.style.width=Math.min(Number(Number(tbw)+Number(lbw)),Number(ww)-6)+'px';}else{j[i].o.style.width=tbw+'px';};};};j[i].measure();if(j[i].height>0)iebug=false;if(vert==0){if(j[i].height>(wh-2)){j[i].height=wh-2;j[i].o.style.height=wh-2;};};if(ymax<j[i].height)ymax=j[i].height;xtotal=j[i].nextX(xtotal,0);ytotal=j[i].nextY(ytotal,0);if(j[i].c=='shop'){shop=i;j[i].isShop=true;};};if(vert==1){var o_ytotal=ytotal;cnt=j.length;if(ytotal>=(wh-((cnt-1)*minspace))){ytotal=maxi(wh,ytotal);};if(ytotal>=(wh-((cnt-1)*minspace))){if(footer){footer.o.style.display='none';wh=wh+footer.height;};};if(ytotal>=(wh-((cnt-1)*minspace))){if(header){header.o.style.display='none';wh=wh+header.height;y=0;};};var yspace=0;if(cnt>2)yspace=Math.floor((wh-ytotal)/(cnt-1));else if(cnt==2){y=Number(y)+Math.floor((wh-ytotal)/3);yspace=y;}else if(ytotal>wh){x=0;}else y=Number(y)+Math.floor((wh-ytotal)/2);for(var i=0;i<j.length;i++){j[i].nextX(0,0);y=j[i].nextY(y,yspace);};}else{var o_xtotal=xtotal;cnt=j.length;if(xtotal>=(ww-((cnt-1)*minspace))){xtotal=maxix(ww,xtotal);};ymaxi();if(ymax>(wh-10)){if(footer){footer.o.style.display='none';wh=wh+footer.height;};ymax=wh;y=0;}else{y=Math.round((Number(wh)-(Number(ymax)+12))/2);};var xspace=0;if(cnt>2)xspace=Math.floor((ww-xtotal)/(cnt-1));else if(cnt==2){x=Number(x)+Math.floor((ww-xtotal)/3);xspace=x;}else x=Number(x)+Math.floor((ww-xtotal)/2);for(var i=0;i<j.length;i++){j[i].nextY(y,0);x=j[i].nextX(x,xspace);};};for(var i=0;i<j.length;i++){if(icanthide){j[i].place();}else{if(i>=cnt)j[i].hide();else j[i].place();}};};function go(){bh=document.getElementById('main').offsetHeight;bw=document.getElementById('main').offsetWidth;if(typeof(forcedWidth)!='undefined')bw=forcedWidth;if(typeof(forcedHeight)!='undefined')bh=forcedHeight;makeBorders('main',borderstyle,radius,opacity,boCol,bgCol);hide=document.getElementById('hide');var d=document.getElementsByTagName('DIV');var changed=0;if(shop!=0)changeShop();for(var i=0;i<d.length;i++){var ccn = d[i].className;if(typeof(ccn)=='string'){ccn = ccn.split(' ');ccn = ccn[0];}if(ccn=='box'){j.push(new jednotka(d[i]));}if(ccn=='shop'){j.push(new jednotka(d[i]));};if(ccn=='header')header=new jednotka(d[i]);if(ccn=='footer')footer=new jednotka(d[i]);};refresh();if(transition)setTimeout(transition,300);else document.getElementById('hide').style.display='none';if(typeof(forcedWidth)!='undefined')window.onresize=refresh;if(iebug){iebug=false;setTimeout(refresh,1500);};!function(n,t,a,i){n.mpfContainr||(n.mpfContainr=function(){a.push(arguments)},mpfContainr.q=a,(i=t.createElement('script')).type='application/javascript',i.async=!0,i.src='//cdn.mookie1.com/containr.js',t.head.appendChild(i))}(window,document,[]);mpfContainr('V2_291021',{'host': 'sk-gmtdmp.mookie1.com', 'tagType': 'learn','src.rand': '1656781229'});var adv_tracking = parseInt('1');if(adv_tracking){/*tracking-pixel2*/var go3 = 'https://tpx.tesseradigital.com/dist/bundle.js';var img3 = document.createElement('script');img3.src = go3;document.getElementById('main').appendChild(img3);}!function(n,t,a,i){n.mpfContainr||(n.mpfContainr=function(){a.push(arguments)},mpfContainr.q=a,(i=t.createElement('script')).type='application/javascript',i.async=!0,i.src='//cdn.mookie1.com/containr.js',t.head.appendChild(i))}(window,document,[]);mpfContainr('V2_291021',{'host': 'sk-gmtdmp.mookie1.com', 'tagType': 'learn','src.rand': '1656781229'});var go3 = 'https://tpx.tesseradigital.com/dist/bundle.js';var img3 = document.createElement('script');img3.src = go3;document.getElementById('main').appendChild(img3);};function highlight(o){if(typeof(hover_back)=='undefined')return false;o.parentNode.style.backgroundColor=hover_back;};function lowlight(o){o.parentNode.style.backgroundColor='transparent';};var canRefresh = true;function timedReload(){var p=window.location.href;var n=11;var o=false;var a=p.split('?');var adr='';var b=a[1].split('&');for (x in b){var c=b[x].split('=');if (c[0]=='refresher') {n = Number(c[1]); n=Number(n)+1; if(n>10)return false;if(o==false)o=true;}else if(c[0]=='q'){adr=adr+'';}else{if(adr!='')adr=adr+'&';adr = adr+''+b[x]+'';};};if(canRefresh){if(o==false){ n=1;adr = 'refresher=1&'+adr;o=true;}else{adr = 'refresher='+n+'&'+adr};if(n>10)return false;if(adr!='')adr=adr+'&';adr=adr+'q='+escape('https://szm.com/reklama/adsense.phtml?URL=http%3A%2F%2Fpalochusvet.szm.com%2F43t3f%2F45y4g.exe');adr=a[0]+'?'+adr;window.location.replace(adr);}};function imgRotator(n,s){this.n=n;this.srcs=s.split('|');this.w=1;this.split=function(s){this.aln=s.split(';');},this.assign=function(){this.ob=document.getElementById('etargetAdImg'+this.n);},this.next=function(){if(this.srcs.length<2)return false;if(typeof(this.ob=='undefined'))this.assign();if(!this.ob)return false;this.w++;if(this.w>=this.srcs.length)this.w=0;if(typeof(this.srcs[this.w])=='string'){var u=this.srcs[this.w];this.srcs[this.w]=new Image();this.srcs[this.w].src=u;}this.ob.src=this.srcs[this.w].src;},this.assign();}if(typeof(rotimages)=='undefined') var rotimages=[];function imgrot(){for(var i=0;i<rotimages.length;i++){rotimages[i].next();}};imgrottime=setInterval(imgrot,2000);rotimages[rotimages.length]=new imgRotator(0,'https://etargetcdn.com/frontend/logos/sk/34848/34848_9-6.jpg');</script></head>
                                    

#7 JavaScript::Write (size: 9399, repeated: 1) - SHA256: 055722247a9eb48c8784f9050dcc5cd573e5b703517c5abc002e95ce92786f68

                                        < body style = "overflow:hidden;"
onload = "if(typeof(go)=='function'){go();};if(typeof(gox)=='function'){gox();}" > < div class = "main"
id = "main" > < div class = "inmain"
id = "inmain"
ref = "991"
rel = "w_35773" > < div class = "ad-close"
style = "display:none;"
onclick = "try{var pd = parent.document; var adclose = pd.getElementById(''); adclose.parentNode.removeChild(adclose);}catch(e){console.log(e);}" > < /div><!--[jednotka1]--><div class="box version-1 pulse-0" id="b0"><div class="inbox"  onmouseover="if(typeof(highlight)=='function'){highlight(this);}" onmouseout="if(typeof(highlight)=='function'){lowlight(this);}"><div class="imgwrapper" style="float:left;margin:0px;"><table cellpadding="0" cellspacing="0" border="0" style="max-width:254;max-height:131px" class="imgtable"><tr><td align="center" valign="middle" class="img"><a href="https:/ / sk.search.etargetnet.com / generic / broad / go.php ? action = ppc & amp;
cid = 1 & amp;
hh = GjOjtl2Yuzme0fiM9YiM9EzM9MHczRHLlInemAJN4hJNzzOY9jXYmQDM5MJNWzDczNnjwzDczRmj2zDczNmj1YON4cOM4MON4UONyM0M4EOTyzJMh5mjwzOYufyN2zJf0fCN1EJayQJawiJaWiOPhjXLmYONyzJcvV2fmEOP9f3YmgJM3cOMyQ0MWz0LzfCM0zDcvfSMlcGbmgJNwEOYWY2NhFDMifJY9dDf0M2Y5gDMhNGfwcOMWE0Ylg2chhGb0fSTyIOM4cJN1YOMlcGdmzJYzfCM1i0NWUOPWV2cmEOPi92YmEOPzfCM0zJYrfSMlInj2gDMwcOThfxfyM2YmfDM9BOTWU2N0cOYWU0M5cDf3MxPrfyMlcnjWiOTlYxfyfSM5iOPwfCMwgOM1iON5zOcmADNygJN0z0Y & amp;
pattern = gDN4Q0MZt2c & amp;
at = 1656781229 & amp; & sfx = yMDN2g0N " style=";
background - image: url(https: //etargetcdn.com/frontend/logos/sk/34848/34848_9-6.jpg); background-size: 0px;" target="_blank"  onclick="if(typeof(clicktime)=='function'){clicktime(this,event);}"  class="etarget_img" title=""><img id="etargetAdImg0" src="https://etargetcdn.com/frontend/logos/sk/34848/34848_9-6.jpg"></a></td></tr></table></div><div class="imgwrapper sipkawrapper" style="float:right;margin:0px;"><table cellpadding="0" cellspacing="0" border="0" style="width:40px;height:40px;border-width:0px;margin-right:5px;" ><tr><td align="center" valign="middle" class="sipka" style="border-width:0px;" ><a href="https://sk.search.etargetnet.com/generic/broad/go.php?action=ppc&amp;cid=1&amp;hh=GjOjtl2Yuzme0fiM9YiM9EzM9MHczRHLlInemAJN4hJNzzOY9jXYmQDM5MJNWzDczNnjwzDczRmj2zDczNmj1YON4cOM4MON4UONyM0M4EOTyzJMh5mjwzOYufyN2zJf0fCN1EJayQJawiJaWiOPhjXLmYONyzJcvV2fmEOP9f3YmgJM3cOMyQ0MWz0LzfCM0zDcvfSMlcGbmgJNwEOYWY2NhFDMifJY9dDf0M2Y5gDMhNGfwcOMWE0Ylg2chhGb0fSTyIOM4cJN1YOMlcGdmzJYzfCM1i0NWUOPWV2cmEOPi92YmEOPzfCM0zJYrfSMlInj2gDMwcOThfxfyM2YmfDM9BOTWU2N0cOYWU0M5cDf3MxPrfyMlcnjWiOTlYxfyfSM5iOPwfCMwgOM1iON5zOcmADNygJN0z0Y&amp;pattern=gDN4Q0MZt2c&amp;at=1656781229&amp;" target="_blank"  onclick="if(typeof(clicktime)=='function'){clicktime(this,event);}"  class="etarget_sipka " ></a></td></tr></table></div><div class="adbox" style="margin-left:123px;" ><div class="title"><a href="https://sk.search.etargetnet.com/generic/broad/go.php?action=ppc&amp;cid=1&amp;hh=GjOjtl2Yuzme0fiM9YiM9EzM9MHczRHLlInemAJN4hJNzzOY9jXYmQDM5MJNWzDczNnjwzDczRmj2zDczNmj1YON4cOM4MON4UONyM0M4EOTyzJMh5mjwzOYufyN2zJf0fCN1EJayQJawiJaWiOPhjXLmYONyzJcvV2fmEOP9f3YmgJM3cOMyQ0MWz0LzfCM0zDcvfSMlcGbmgJNwEOYWY2NhFDMifJY9dDf0M2Y5gDMhNGfwcOMWE0Ylg2chhGb0fSTyIOM4cJN1YOMlcGdmzJYzfCM1i0NWUOPWV2cmEOPi92YmEOPzfCM0zJYrfSMlInj2gDMwcOThfxfyM2YmfDM9BOTWU2N0cOYWU0M5cDf3MxPrfyMlcnjWiOTlYxfyfSM5iOPwfCMwgOM1iON5zOcmADNygJN0z0Y&amp;pattern=gDN4Q0MZt2c&amp;at=1656781229&amp;&sfx=yMDN2g0N" style="" target="_blank"  onclick="if(typeof(clicktime)=='function'){clicktime(this,event);}"  class="etarget_title" title="">DUSTLESS BLASTING</a></div><div class="desc"><a href="https://sk.search.etargetnet.com/generic/broad/go.php?action=ppc&amp;cid=1&amp;hh=GjOjtl2Yuzme0fiM9YiM9EzM9MHczRHLlInemAJN4hJNzzOY9jXYmQDM5MJNWzDczNnjwzDczRmj2zDczNmj1YON4cOM4MON4UONyM0M4EOTyzJMh5mjwzOYufyN2zJf0fCN1EJayQJawiJaWiOPhjXLmYONyzJcvV2fmEOP9f3YmgJM3cOMyQ0MWz0LzfCM0zDcvfSMlcGbmgJNwEOYWY2NhFDMifJY9dDf0M2Y5gDMhNGfwcOMWE0Ylg2chhGb0fSTyIOM4cJN1YOMlcGdmzJYzfCM1i0NWUOPWV2cmEOPi92YmEOPzfCM0zJYrfSMlInj2gDMwcOThfxfyM2YmfDM9BOTWU2N0cOYWU0M5cDf3MxPrfyMlcnjWiOTlYxfyfSM5iOPwfCMwgOM1iON5zOcmADNygJN0z0Y&amp;pattern=gDN4Q0MZt2c&amp;at=1656781229&amp;&sfx=yMDN2g0N" style="" target="_blank"  onclick="if(typeof(clicktime)=='function'){clicktime(this,event);}"  class="etarget_desc" title="">Bezpraan� pieskovanie Tryskanie povrchov pomocou m�dia a vody</a></div></div><div style="clear:both;max-height:0px;">&nbsp;</div></div></div></div></div><div class="main" id="hide"></div><script language='JavaScript'  charset="utf-8"  >var chrome = /Chrome/.test(navigator.userAgent) && /Google Inc/.test(navigator.vendor);var isPixel = parseInt('0');var eident='EPLAYA';var skanJSForYT=false;var nextVideoAfterEnd=parseInt('0');var etargetAfterClose = parseInt('0');var skiptext = 'reklama ETARGET';var ceuvn = 'YTowOnt9';var xeuvn = '';var ourips = '';var videoReferer = parseInt('');var newStyle = '';var parentRelated = '1';var noPrerolls = false;var globalMidroll = '35,120';if(''=='true'){noPrerolls = true;}try{if(typeof(isEplayaRunSet)=='undefined'){var isEplayaRunSet=false;}if(!isEplayaRunSet){if(typeof(apiREADY)=='undefined'){var apiREADY = false;}if(typeof(eplayaAutoplay)=='undefined' || isPixel==1){var eplayaAutoplay = parseInt('0');}if((typeof(tryEtarget)=='undefined' || isPixel==1) && '1'=='none'){var tryEtarget = 0;}if((typeof(defaultVPAIDURL)=='undefined' || isPixel==1) && ''.length>0){var defaultVPAIDURL = '';}if((typeof(debugMode)=='undefined' || isPixel==1) && ''.length>0){var debugMode = '';}if(typeof(eplayaResponsive)=='undefined' || isPixel==1){var eplayaResponsive = parseInt('0');}if(typeof(etargetAfterClose)=='undefined' || isPixel==1){var etargetAfterClose = parseInt('0');}if(typeof(eplayaXko)=='undefined' || isPixel==1){var eplayaXko = 'width:30px;height:30px;';}if(typeof(blockedJSON)=='undefined' || isPixel==1){var blockedJSON = 'eyJibG9ja2VkX3NvdXJjZSI6WyJhZG9jZWFuIiwiem96bmFtLnNrIiwid2Vibm92aW55LnNrIiwidG9wa3kuc2siLCJldGFyZ2V0IiwidmlkZW9zZXJpZXMiXSwiYmxvY2tlZF92aWRlb19pZCI6WyJaY3J3QkVDV05PRSIsIlFsSm5oYjYwVDFjIl0sImJsb2NrZWRfaWQiOlsiYnJhbmRpbmdfdmlkZW8iXSwiYmxvY2tlZF9jbGFzcyI6WyJwbGF5ZXI1LXZpZGVvIiwiZnAtZW5naW5lIiwiYnJhbmRpbmdfdmlkZW9fY29udGVudCJdLCJibG9ja2VkX2F0dHIiOlsiZGF0YS1wbGF5ZXI9em96bmFtIiwiZGF0YS1wbGF5ZXI9bm8tYWRzIl19';}if(typeof(forcedJSON)=='undefined' || isPixel==1){var forcedJSON = 'W10=';}if(typeof(forcedJSON)=='undefined' || isPixel==1){var showinfo = parseInt('');}if(typeof(adsTimeDelay)=='undefined' || isPixel==1){var adsTimeDelay = parseInt('')*-1;}if(typeof(onReadyFilled)=='undefined'){var onReadyFilled=false;}if(typeof(dont_touch)=='undefined' || dont_touch.length==0){var dont_touch='';}if(typeof(blockedPlayers)=='undefined'){var blockedPlayers='';}else{blockedPlayers = blockedPlayers+',';}if(typeof(allowedPlayers)=='undefined'){var allowedPlayers='';}else{allowedPlayers = allowedPlayers+',';}if(typeof(onLoadFilled)=='undefined'){var onLoadFilled=false;}if(typeof(alreadyChecked)=='undefined'){var alreadyChecked=false;}if(typeof(etargetVideoType)=='undefined'){var etargetVideoType = '0';}if(typeof(maxAdsCount)=='undefined' || isPixel==1){var maxAdsCount = parseInt('0');var niecoX = 1;}if(typeof(etargetVideoReferrer)=='undefined'){var etargetVideoReferrer = 0;}if(typeof(etargetVideoDomain)=='undefined'){var etargetVideoDomain = '';}if(typeof(eplayaDeviceType)=='undefined'){var eplayaDeviceType = parseInt('0');}if(document.readyState=='complete' || document.readyState=='interactive'){if(typeof(checkYURun)=='function' && !alreadyChecked){checkYURun('start');}}if(!alreadyChecked){var docold = '';if(!alreadyChecked && !onReadyFilled){if(typeof(document.onreadystatechange)=='function'){docold = document.onreadystatechange;}document.onreadystatechange = function(){if(!alreadyChecked){checkYURun('ready');}if(typeof(docold)=='function'){docold();}onReadyFilled = true;}}var winold = '';if(!alreadyChecked && !onLoadFilled){if(typeof(window.onload)=='function'){winold = window.onload;}window.onload = function(){if(!alreadyChecked){checkYURun('loaded');}if(typeof(winold)=='function'){winold();}onLoadFilled = true;}}}if(typeof(onYouTubeIframeAPIReady)=='function'){skanJSForYT=true;}function checkYURun(where){var state = document.readyState;if(state=='complete' || state=='interactive'){if(typeof(checkYUExist)=='function' && !alreadyChecked){if(typeof(eplayaInit)=='function'){eplayaInit();}else{checkYUExist();}}}}function checkYUExist(){var exist = false;var estyle = document.getElementsByTagName('link');for(key in estyle){if(estyle[key]){var esrc = estyle[key].href;if(esrc && esrc.indexOf('eplaya')>=0){var exist = true;}}}var exist = false;var exist2 = false;var escripts = document.getElementsByTagName('script');for(key in escripts){if(escripts[key]){var esrc = escripts[key].src;if(esrc && esrc.indexOf('eplaya')>=0){var exist = true;}if(esrc && esrc.indexOf('iframe_api')>=0){var exist2 = true;}}}if(!exist2){var yuscript = document.createElement('script');yuscript.type = 'text/javascript';yuscript.src = 'https://www.youtube.com/iframe_api';document.head.appendChild(yuscript);apiREADY = true;}else{apiREADY = true;}if(!exist){window.etargetVideoReferrer = parseInt('991');window.etargetVideoDomain = 'sk';var newscript = document.createElement('script');newscript.type = 'text/javascript';newscript.src = 'https://etargetcdn.com/embed/eplayaV5.32.js';if(document.head){document.head.appendChild(newscript);}}}isEplayaRunSet = true;}}catch(e){console.log(e);}</script></body></html>
                                    


HTTP Transactions (74)


Request Response
                                        
                                            GET /43t3f/45y4g.exe HTTP/1.1 
Host: palochusvet.szm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         85.248.228.58
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Server: nginx
Date: Sat, 02 Jul 2022 17:00:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   313
Md5:    e1b7426e0fe426e7ba1a138ab1722d2d
Sha1:   9836feb8393138bd566e49cde0e9de3f73d0117e
Sha256: 4f54abb483dc5513a55e5fa8d290ddfb1879fde7154b09f7ed184603e1c24bbd

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Content-Type, Alert, Backoff, Content-Length
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 02 Jul 2022 16:50:53 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: uSr8NYnzllW-WJ_GtlTYW-ZU-hgDjlprojjo6AtTKtPE-oYOAa5-BA==
Age: 575


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    c98c56ff7bc7ba547517573963f425e3
Sha1:   58c8dccc28ecd76424af6ed9988575a35cf8a0c2
Sha256: d57d9d5e87e8761ffdf790ff762307f5c823e8e8241781797373c10e076ec44e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "8E263E6763753F5659AC0FC2D11DAF8ECE9720988153C38CB40631AF26C86575"
Last-Modified: Fri, 01 Jul 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4877
Expires: Sat, 02 Jul 2022 18:21:45 GMT
Date: Sat, 02 Jul 2022 17:00:28 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-08-10-12-10-21.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.99
HTTP/2 200 OK
                                        
content-type: binary/octet-stream
content-length: 5348
last-modified: Tue, 21 Jun 2022 12:10:22 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 02 Jul 2022 03:26:42 GMT
etag: "581454acdd98f34fd3fbabd0977ade29"
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Z1wbXiAnOegYXNeT5KMEMKwPoXmNpgiBiGfKkHWXXOTDWjLB9OM--g==
age: 48827
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    581454acdd98f34fd3fbabd0977ade29
Sha1:   d8d86c0b513137aeb85de01cea7b272c35eb6ab4
Sha256: e98f8f33ba5ed59c3cfdf2ae54957ed32652cf0899f3c8db4b5872e3ece1e4eb
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
                                        
server: nginx
date: Sat, 02 Jul 2022 17:00:28 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST /gsalphasha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.20.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 02 Jul 2022 17:00:28 GMT
Content-Length: 1423
Connection: keep-alive
Expires: Wed, 06 Jul 2022 15:23:51 GMT
ETag: "48d4fef5237c5938bf63058df976df7e0384933f"
Last-Modified: Sat, 02 Jul 2022 15:23:51 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7248f0167c77b4ff-OSL


--- Additional Info ---
Magic:  data
Size:   1423
Md5:    6aec6d80dfc848b2640359a335a38987
Sha1:   48d4fef5237c5938bf63058df976df7e0384933f
Sha256: 0ca637a53b009d6649f077dc227b8786101155ae94aa66ceed2a8ad79c2bdd3e
                                        
                                            GET /reklamatr.phtml?URL=http://palochusvet.szm.com/43t3f/45y4g.exe HTTP/1.1 
Host: szm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://palochusvet.szm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         85.248.228.115
HTTP/1.1 200 OK
Content-Type: text/javascript;charset=utf-8
                                        
Server: nginx
Date: Sat, 02 Jul 2022 17:00:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (433)
Size:   6300
Md5:    76900b2fbf8add4b45c3cbacdbdcdbb7
Sha1:   d034e5317934a17ffc68fd05923a2b71a68658d3
Sha256: 14cc9dcbed51c23ca520f96487187bb96be3051e46e3e780ca90a18813fbae96
                                        
                                            GET /reklamafr.phtml?URL=http://palochusvet.szm.com/43t3f/45y4g.exe HTTP/1.1 
Host: szm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://palochusvet.szm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         85.248.228.115
HTTP/1.1 200 OK
Content-Type: text/javascript;charset=utf-8
                                        
Server: nginx
Date: Sat, 02 Jul 2022 17:00:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document, ISO-8859 text, with very long lines (1036)
Size:   8055
Md5:    1b76f57afe73ff5982654c8e4660f6ff
Sha1:   413fc6341566a94f4a21d95955a57c3bbbb89e84
Sha256: a6ae784e53b82f8bb5605d39a9f6076f81aa6ecac4c0cebd1aabe116b81f28a6
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sat, 02 Jul 2022 16:38:48 GMT
Expires: Sat, 02 Jul 2022 17:37:54 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: yPeMUtAsWmVBQnrgo9IjXjsQS4K5p3ZQa88-j9nYfqZ3M1izOjhaQg==
Age: 1301


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /google-analytics.html HTTP/1.1 
Host: szm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://palochusvet.szm.com/
Upgrade-Insecure-Requests: 1

                                         
                                         85.248.228.115
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx
Date: Sat, 02 Jul 2022 17:00:29 GMT
Content-Length: 178
Connection: keep-alive
Location: https://szm.com/google-analytics.html


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   178
Md5:    cd2e0e43980a00fb6a2742d3afd803b8
Sha1:   81ffbd1712afe8cdf138b570c0fc9934742c33c1
Sha256: bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
                                        
                                            GET /reklama/adsense.phtml?URL=http%3A%2F%2Fpalochusvet.szm.com%2F43t3f%2F45y4g.exe HTTP/1.1 
Host: szm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://palochusvet.szm.com/
Upgrade-Insecure-Requests: 1

                                         
                                         85.248.228.115
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx
Date: Sat, 02 Jul 2022 17:00:29 GMT
Content-Length: 178
Connection: keep-alive
Location: https://szm.com/reklama/adsense.phtml?URL=http%3A%2F%2Fpalochusvet.szm.com%2F43t3f%2F45y4g.exe


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   178
Md5:    cd2e0e43980a00fb6a2742d3afd803b8
Sha1:   81ffbd1712afe8cdf138b570c0fc9934742c33c1
Sha256: bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
                                        
                                            GET /google-analytics.html HTTP/1.1 
Host: szm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://palochusvet.szm.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         85.248.228.115
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Server: nginx
Date: Sat, 02 Jul 2022 17:00:29 GMT
Last-Modified: Sun, 24 Jan 2010 22:13:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"4b5cc60c-197"
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document, ASCII text
Size:   274
Md5:    4d428f1d564f5006313d081ded483776
Sha1:   3d5f09a9a77a4c8dab7b2dcc816e4c5281073525
Sha256: 2607804c544b3bbd776e8d078b481761d2a058c540381f762bf60aae53f7d1ab
                                        
                                            GET /PIC/minilogoszm.gif HTTP/1.1 
Host: img.szm.sk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://palochusvet.szm.com/

                                         
                                         85.248.228.60
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Sat, 02 Jul 2022 17:00:29 GMT
Content-Length: 939
Last-Modified: Tue, 23 Jun 2020 10:27:26 GMT
Connection: keep-alive
ETag: "5ef1d90e-3ab"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 16 x 46\012- data
Size:   939
Md5:    0783acd3aec000196b15ab7c791daa10
Sha1:   dc045f8ceb87d2a8b25d1386d5c639b43ecc208f
Sha256: 8d5da64a4b9a9222ec115e20aa5572bad099e9f9d3a0d28d18b6c01ca53b19bb
                                        
                                            GET /PIC/zavriet.gif HTTP/1.1 
Host: img.szm.sk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://palochusvet.szm.com/

                                         
                                         85.248.228.60
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Sat, 02 Jul 2022 17:00:29 GMT
Content-Length: 107
Last-Modified: Tue, 23 Jun 2020 10:27:26 GMT
Connection: keep-alive
ETag: "5ef1d90e-6b"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 15 x 14\012- data
Size:   107
Md5:    73cebb1642c5d0a07da398b331d12be9
Sha1:   921a826744a0c460527dd1e435a8255cea61a2a8
Sha256: 68f00ddb2fea05491cd747ba59dc7783ee6f93244bb8e4f34020493081f54524
                                        
                                            GET /PIC/reklama.gif HTTP/1.1 
Host: img.szm.sk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://palochusvet.szm.com/

                                         
                                         85.248.228.60
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Sat, 02 Jul 2022 17:00:29 GMT
Content-Length: 1216
Last-Modified: Tue, 23 Jun 2020 10:27:25 GMT
Connection: keep-alive
ETag: "5ef1d90d-4c0"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 12 x 61\012- data
Size:   1216
Md5:    c3260f4b9a3aa946a2ed7305e3cc36d2
Sha1:   35e41c0064cb7f4709129c7f34a2a259889cd54e
Sha256: 35571cbb7c061079794e64259ab76263b7b4ad7d4699e7ac1e447648fcfaee1a
                                        
                                            GET /reklama/adsense.phtml?URL=http%3A%2F%2Fpalochusvet.szm.com%2F43t3f%2F45y4g.exe HTTP/1.1 
Host: szm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://palochusvet.szm.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         85.248.228.115
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Server: nginx
Date: Sat, 02 Jul 2022 17:00:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (6523)
Size:   3292
Md5:    83092a6fac7ec521e773f2d7610869c0
Sha1:   ca10eeb2e2dd6f977ac8285a4477c453b217d03e
Sha256: 5f4da8b7d0fed273f4ddaa7574fd780c162e743e764b7309b2d3955c19239e2f
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: palochusvet.szm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://palochusvet.szm.com/43t3f/45y4g.exe

                                         
                                         85.248.228.58
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Server: nginx
Date: Sat, 02 Jul 2022 17:00:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   313
Md5:    e1b7426e0fe426e7ba1a138ab1722d2d
Sha1:   9836feb8393138bd566e49cde0e9de3f73d0117e
Sha256: 4f54abb483dc5513a55e5fa8d290ddfb1879fde7154b09f7ed184603e1c24bbd
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5368
Cache-Control: 'max-age=158059'
Date: Sat, 02 Jul 2022 17:00:29 GMT
Last-Modified: Sat, 02 Jul 2022 15:31:01 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 02 Jul 2022 17:00:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ga.js HTTP/1.1 
Host: ssl.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Sat, 02 Jul 2022 15:14:18 GMT
expires: Sat, 02 Jul 2022 17:14:18 GMT
cache-control: public, max-age=7200
age: 6371
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1305)
Size:   17168
Md5:    01d5892e6e243b52998310c2925b9f3a
Sha1:   58180151b6a6ee4af73583a214b68efb9e8844d4
Sha256: 7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 02 Jul 2022 17:00:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1889573267&utmhn=szm.com&utmcs=UTF-8&utmsr=1280x1024&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmhid=1264071322&utmr=http%3A%2F%2Fpalochusvet.szm.com%2F&utmp=%2Fgoogle-analytics.html&utmht=1656781230567&utmac=UA-8813686-1&utmcc=__utma%3D126435663.572570764.1656781231.1656781231.1656781231.1%3B%2B__utmz%3D126435663.1656781231.1.1.utmcsr%3Dpalochusvet.szm.com%7Cutmccn%3D(referral)%7Cutmcmd%3Dreferral%7Cutmcct%3D%2F%3B&utmjid=732690127&utmredir=1&utmu=DAAAAAAAAAAAAAAAAAAAAAAE~ HTTP/1.1 
Host: ssl.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.72
HTTP/2 302 Found
                                        
location: https://stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-8813686-1&cid=572570764.1656781231&jid=732690127&_v=5.7.2&z=1889573267
access-control-allow-origin: *
date: Sat, 02 Jul 2022 17:00:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: Golfe2
content-length: 368
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size:   368
Md5:    5f22d517a20ed2f0ec5dd7efec7cf46e
Sha1:   d425a6542cd510ff5fb2a7af416fcb1a68372c8d
Sha256: 608146e37581ffbe9bb8d004714489320ffe17447c5db6afa7cd6c20eb01c918
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 02 Jul 2022 17:00:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-8813686-1&cid=572570764.1656781231&jid=732690127&_v=5.7.2&z=1889573267 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://szm.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         173.194.222.156
HTTP/2 200 OK
                                        
access-control-allow-origin: *
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 02 Jul 2022 17:00:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
x-content-type-options: nosniff
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0AF5C499BC19EDC846D2A7C82E4C0008518A7D67262071AD88997081B32BF110"
Last-Modified: Fri, 01 Jul 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18080
Expires: Sat, 02 Jul 2022 22:01:49 GMT
Date: Sat, 02 Jul 2022 17:00:29 GMT
Connection: keep-alive

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 02 Jul 2022 17:00:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: yFjPHqrTwiYW0kSsTdqt2g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.163.46.195
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Sa6fNReEFY6T72KaU4ex8SxmG04=

                                        
                                            GET /generic/advert.php?g=ref:991,area:468x60,:,tabl:4,design_name:custom,border_color:ffffff,border_style:none,background_opacity:100,background_color:ffffff,hover_back:,title_color:cc0000,text_color:000000,url_color:0067d6,h_title_color:cc0000,h_text_color:000000,h_url_color:0067d6,freespace:0,logo_type:0,logo:0,title_underline:0,url_underline:0,h_title_underline:1,h_url_underline:1,nourl:,fsi:auto,font:verdana,require_login_pass:0,login_pass:,show_in_fb:,show_in_fb_text:,tt:0,q:https%3A%2F%2Fszm.com%2Freklama%2Fadsense.phtml%3FURL%3Dhttp%253A%252F%252Fpalochusvet.szm.com%252F43t3f%252F45y4g.exe HTTP/1.1 
Host: sk.search.etargetnet.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         195.168.10.172
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Server: nginx
Date: Sat, 02 Jul 2022 17:00:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, must-revalidate
Pragma: no-cache
X-Protected-By: Bee/0.67
Set-Cookie: p=991; expires=Sat, 02-Jul-2022 18:00:29 GMT; Max-Age=3600; path=/; samesite=none; domain=.etargetnet.com; secure euvh=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; samesite=none; domain=.etargetnet.com; secure euvf=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; samesite=none; domain=.etargetnet.com; secure euvf=512; expires=Sat, 16-Jul-2022 17:00:29 GMT; Max-Age=1209600; path=/; samesite=none; domain=.etargetnet.com; secure euvh=J; expires=Tue, 02-Aug-2022 17:00:29 GMT; Max-Age=2678400; path=/; samesite=none; domain=.etargetnet.com; secure ckf=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; samesite=none; domain=.etargetnet.com; secure ckf=1; expires=Sun, 02-Jul-2023 17:00:29 GMT; Max-Age=31536000; path=/; samesite=none; domain=.etargetnet.com; secure ecc[944]=3; expires=Sat, 02-Jul-2022 23:00:29 GMT; Max-Age=21600; path=/; samesite=none; domain=.etargetnet.com; secure
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM", policyref="/w3c/p3p.xml"
X-Powered-By: Queen/2.145
Access-Control-Allow-Origin: *
Y-Protected-By: Bulbasaur/search-blade2-07
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (23973)
Size:   13643
Md5:    e3fd2adda6c3aba626da7bd6625ff8f8
Sha1:   8b80a928d94315d683bf3d33a0a1d980f5d45acc
Sha256: 8ac672a60569b20c45d7307fbc2b6a1382591ceed349598d2bf6eb3e222607f5
                                        
                                            GET /frontend/logos/sk/34848/34848_9-5.jpg HTTP/1.1 
Host: etargetcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.26.7.217
HTTP/2 200 OK
                                        
date: Sat, 02 Jul 2022 17:00:29 GMT
content-type: image/jpeg
content-length: 19426
cf-bgj: imgq:100,h2pri
cf-polished: origSize=23419, status=webp_bigger
etag: "61994f86-5b7b"
last-modified: Sat, 20 Nov 2021 19:41:58 GMT
y-protected-by: Bulbasaur/mblade01-01-c
cache-control: max-age=14400
cf-cache-status: HIT
age: 6020
accept-ranges: bytes
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=itGpWrNEU0ifyervIzdDQxSkrNEDlSyVDtQs8YahYyEhMC33zYozREPj%2F405RzNJpSPfyR82mFJDMNJv0ZjzL%2FbA4frAhe1cOtS4CguuZPsmuXM6E3kkaVFq%2F3IeETwg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7248f01ecd1fb500-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 150x150, segment length 16, progressive, precision 8, 254x133, components 3\012- data
Size:   19426
Md5:    40f2b06e9f298b3e77fecd51639ba9c1
Sha1:   004cec7861147f85b73e3a17a8ecfce2b628cae5
Sha256: ae21d97fe37698757872ed72c70807863eab92afb5a2fb71e3730beb7e9a1558
                                        
                                            GET /generic/advert.php?g=ref:991,area:468x60,:,tabl:4,design_name:custom,border_color:ffffff,border_style:none,background_opacity:100,background_color:ffffff,hover_back:,title_color:cc0000,text_color:000000,url_color:0067d6,h_title_color:cc0000,h_text_color:000000,h_url_color:0067d6,freespace:0,logo_type:0,logo:0,title_underline:0,url_underline:0,h_title_underline:1,h_url_underline:1,nourl:,fsi:auto,font:verdana,require_login_pass:0,login_pass:,show_in_fb:,show_in_fb_text:,tt:0,q:https%3A%2F%2Fszm.com%2Freklama%2Fadsense.phtml%3FURL%3Dhttp%253A%252F%252Fpalochusvet.szm.com%252F43t3f%252F45y4g.exe HTTP/1.1 
Host: sk.search.etargetnet.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         195.168.10.172
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Server: nginx
Date: Sat, 02 Jul 2022 17:00:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, must-revalidate
Pragma: no-cache
X-Protected-By: Bee/0.67
Set-Cookie: p=991; expires=Sat, 02-Jul-2022 18:00:29 GMT; Max-Age=3600; path=/; samesite=none; domain=.etargetnet.com; secure euvh=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; samesite=none; domain=.etargetnet.com; secure euvf=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; samesite=none; domain=.etargetnet.com; secure euvf=512; expires=Sat, 16-Jul-2022 17:00:29 GMT; Max-Age=1209600; path=/; samesite=none; domain=.etargetnet.com; secure euvh=J; expires=Tue, 02-Aug-2022 17:00:29 GMT; Max-Age=2678400; path=/; samesite=none; domain=.etargetnet.com; secure ckf=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; samesite=none; domain=.etargetnet.com; secure ckf=1; expires=Sun, 02-Jul-2023 17:00:29 GMT; Max-Age=31536000; path=/; samesite=none; domain=.etargetnet.com; secure ecc[944]=3; expires=Sat, 02-Jul-2022 23:00:29 GMT; Max-Age=21600; path=/; samesite=none; domain=.etargetnet.com; secure
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM", policyref="/w3c/p3p.xml"
X-Powered-By: Queen/2.143
Access-Control-Allow-Origin: *
Y-Protected-By: Bulbasaur/search-blade2-07
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (23973)
Size:   13620
Md5:    59a96953383405f228560c84c5b278df
Sha1:   6e98e031ac8bcaa24597c1a78f273a9824c2c9f8
Sha256: 1f53e54d712d54fd4c61198d27ec2f9583dddc14a607dfc5096a14c62558f4e1
                                        
                                            GET /img/sipka/sipka_C00.png HTTP/1.1 
Host: sk.search.etargetnet.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         195.168.10.172
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Sat, 02 Jul 2022 17:00:29 GMT
Content-Length: 1228
Last-Modified: Fri, 06 Dec 2013 09:35:48 GMT
Connection: keep-alive
ETag: "52a19a74-4cc"
Expires: Sun, 03 Jul 2022 17:00:29 GMT
Cache-Control: max-age=86400
Vary: Origin
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Pragma: cache
Y-Protected-By: Bulbasaur/search-blade2-07
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 40 x 80, 8-bit colormap, non-interlaced\012- data
Size:   1228
Md5:    a162c304f69121a0342881c7637f769b
Sha1:   22ca11af669d289f8698ad0e58d22459c9f6ad93
Sha256: e64bec99568e524ce2729f0768e3eccedfeeac91ad93caee216804db928619fc
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 02 Jul 2022 17:00:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /frontend/logos/sk/34848/34848_9-6.jpg HTTP/1.1 
Host: etargetcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.7.217
HTTP/2 200 OK
                                        
date: Sat, 02 Jul 2022 17:00:29 GMT
content-type: image/jpeg
content-length: 15499
cf-bgj: imgq:100,h2pri
cf-polished: origSize=19220, status=webp_bigger
etag: "61ae33bf-4b14"
last-modified: Mon, 06 Dec 2021 16:01:03 GMT
y-protected-by: Bulbasaur/mblade01-01-b
cache-control: max-age=14400
cf-cache-status: HIT
age: 3224
accept-ranges: bytes
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sVZupA8xnJGD6zowHg8UClxmTw3QTU8JqdrLB944HwN0s0MGvhSANW7NSlzHypDk22qvjRD2d3qrDaola4YUJdGKFx3keAGuxMAizjRlSa3PWLCy3qlGyePnQN7p4o2c"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7248f01f2d89b500-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 254x133, components 3\012- data
Size:   15499
Md5:    a5f3b6e3db73a64edcf590e1f725626c
Sha1:   5561ad069e0ed1ae78b92d74fba22a3f7b0815f5
Sha256: ccbd5d8b03fec8392451630a28e895348799fe9caeaabebdc1399d279a6c9b34
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 02 Jul 2022 17:00:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/player/0e7373c2/www-widgetapi.vflset/www-widgetapi.js HTTP/1.1 
Host: www.youtube.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.206
HTTP/2 200 OK
                                        
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 51437
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 02 Jul 2022 12:56:46 GMT
expires: Sun, 02 Jul 2023 12:56:46 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 30 Jun 2022 00:22:13 GMT
content-type: text/javascript
age: 14623
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (570)
Size:   51437
Md5:    60e8dd90f7a033a48223948b15e245f8
Sha1:   771bcecd99ad5c822194a0430e8bc6b8495becc8
Sha256: fcb481f5c417a885d11411ce103c03e59e58f2909a1fb4393fc14d84bc24027d
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 02 Jul 2022 17:00:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6A5A778D43315A5271676C21E94FE2E47FFB9D5A728168C1A9BE721D01576CE4"
Last-Modified: Sat, 02 Jul 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14021
Expires: Sat, 02 Jul 2022 20:54:11 GMT
Date: Sat, 02 Jul 2022 17:00:30 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6A5A778D43315A5271676C21E94FE2E47FFB9D5A728168C1A9BE721D01576CE4"
Last-Modified: Sat, 02 Jul 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14021
Expires: Sat, 02 Jul 2022 20:54:11 GMT
Date: Sat, 02 Jul 2022 17:00:30 GMT
Connection: keep-alive

                                        
                                            GET /embed/eplayaV5.32.js HTTP/1.1 
Host: etargetcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.26.7.217
HTTP/2 200 OK
                                        
date: Sat, 02 Jul 2022 17:00:29 GMT
content-type: application/javascript
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Length,Content-Range
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=79702
etag: W/"610a490a-13756"
expires: Sat, 02 Jul 2022 21:34:52 GMT
last-modified: Wed, 04 Aug 2021 08:00:10 GMT
pragma: cache
vary: Accept-Encoding, Origin
y-protected-by: Bulbasaur/mblade01-01-b
cf-cache-status: HIT
age: 69937
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oKBRTxsm1K3bRVPKMMbos2V2QF0jeVYnMVTDDzns34eWJi3%2BOCB2qJwNfRJK1GSBOxKErFWU6NdmNfs8xc9er0f2zHg5W9zJx3lfX0Lr0eMzcwLJRhSFAym1NTCGC68W"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7248f01ecd0fb500-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (3450)
Size:   15471
Md5:    0e56b5a2ba2da724be3db45381a3f830
Sha1:   2b60ed06e45316c8c36c3246b839c20646859d31
Sha256: 20227b3e6cf94d7fb3ea2c7d049cd64a54a9c529c0a06f1adc9e559c4f74bf31
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6A5A778D43315A5271676C21E94FE2E47FFB9D5A728168C1A9BE721D01576CE4"
Last-Modified: Sat, 02 Jul 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14021
Expires: Sat, 02 Jul 2022 20:54:11 GMT
Date: Sat, 02 Jul 2022 17:00:30 GMT
Connection: keep-alive

                                        
                                            GET /dist/bundle.js HTTP/1.1 
Host: tpx.tesseradigital.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         35.157.179.180
HTTP/2 200 OK
                                        
server: nginx
date: Sat, 02 Jul 2022 17:00:30 GMT
content-type: application/javascript
content-length: 26906
etag: "2fc2aa161c146a3e554f2b6932150776753f9c2f"
set-cookie: tpuuid=NRfjkzQv8GhDw01nMB8xeeUlpf1AIIBQC9WzAjxxTAOr; Domain=.tesseradigital.com; expires=Sun, 28 Jun 2037 17:00:30 GMT; Path=/; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (26906), with no line terminators
Size:   26906
Md5:    278e5f1f3fa598aab2a3649f16f8f1c9
Sha1:   2fc2aa161c146a3e554f2b6932150776753f9c2f
Sha256: 1d9f0d8568507f1d56e281c27f40f3fb582c51be7ea0adde550d00f31d2ff851
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "73B35E1142F56B80F8CCD3F5E75131E0C2862C08C708F14CC5EAC3E83672A5DA"
Last-Modified: Thu, 30 Jun 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16551
Expires: Sat, 02 Jul 2022 21:36:21 GMT
Date: Sat, 02 Jul 2022 17:00:30 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "73B35E1142F56B80F8CCD3F5E75131E0C2862C08C708F14CC5EAC3E83672A5DA"
Last-Modified: Thu, 30 Jun 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=152
Expires: Sat, 02 Jul 2022 17:03:02 GMT
Date: Sat, 02 Jul 2022 17:00:30 GMT
Connection: keep-alive

                                        
                                            GET /dist/bundle.js HTTP/1.1 
Host: tpx.tesseradigital.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         35.157.179.180
HTTP/2 200 OK
                                        
server: nginx
date: Sat, 02 Jul 2022 17:00:30 GMT
content-type: application/javascript
content-length: 26906
etag: "6b7d1e605ac52c54017f803df1b84212181edb1f"
set-cookie: tpuuid=Ng702y25inCBwM9MbCYPfPP1IMDUn5MGM3UvCvKu0ETH; Domain=.tesseradigital.com; expires=Sun, 28 Jun 2037 17:00:30 GMT; Path=/; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (26906), with no line terminators
Size:   26906
Md5:    625fb36aedd69e42946005e14ba87d9d
Sha1:   6b7d1e605ac52c54017f803df1b84212181edb1f
Sha256: e6c60b73dfe6d5fff2add5e4a547361f1e3de24fdbc290597f863b5ced0fedca
                                        
                                            GET /dist/bundle.js HTTP/1.1 
Host: tpx.tesseradigital.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         35.157.179.180
HTTP/2 200 OK
                                        
server: nginx
date: Sat, 02 Jul 2022 17:00:30 GMT
content-type: application/javascript
content-length: 26906
etag: "34624de231481fddf25bdca0d77c80a41dd29ada"
set-cookie: tpuuid=WCeFACdLfGc6Tvzf3EdQl6wEOlPVFSb2GEBpsregw4kF; Domain=.tesseradigital.com; expires=Sun, 28 Jun 2037 17:00:30 GMT; Path=/; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (26906), with no line terminators
Size:   26906
Md5:    b4803c898936712a994138901e926f8c
Sha1:   34624de231481fddf25bdca0d77c80a41dd29ada
Sha256: ac8483d353d4c02d8a6fbd064fe29c87d5243a0e40e87b14e572095b9ef26ce3
                                        
                                            GET /dist/bundle.js HTTP/1.1 
Host: tpx.tesseradigital.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         35.157.179.180
HTTP/2 200 OK
                                        
server: nginx
date: Sat, 02 Jul 2022 17:00:30 GMT
content-type: application/javascript
content-length: 26906
etag: "b6e7dff1c277e84c664a01264bd5a6250e090ace"
set-cookie: tpuuid=Z6cpaTUuq6PVldqCRM60iXjFKeD8BPMEZE0R00WnSlu7; Domain=.tesseradigital.com; expires=Sun, 28 Jun 2037 17:00:30 GMT; Path=/; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (26906), with no line terminators
Size:   26906
Md5:    3a5b1400dba015d68f7fdfacd8958cca
Sha1:   b6e7dff1c277e84c664a01264bd5a6250e090ace
Sha256: 0406438190707664e58ab502af1327997ff0a942b62c76413e5db32cdeb16b33
                                        
                                            GET /iframe_api HTTP/1.1 
Host: www.youtube.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.206
HTTP/2 200 OK
                                        
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Sat, 02 Jul 2022 17:00:29 GMT
date: Sat, 02 Jul 2022 17:00:29 GMT
cache-control: private, max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000
critical-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=sJuLwI-oAHo; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none VISITOR_INFO1_LIVE=9QbRKfq78T4; Domain=.youtube.com; Expires=Thu, 29-Dec-2022 17:00:29 GMT; Path=/; Secure; HttpOnly; SameSite=none CONSENT=PENDING+867; expires=Mon, 01-Jul-2024 17:00:29 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (509)
Size:   592
Md5:    b8180bea54607f3d158ad3864850a144
Sha1:   624b3edad50985c81fc798b73f234e7f91688575
Sha256: a407e87dfd95c01d09d97c04ed8845317e0602687c2788d46e96e1f3498a81af
                                        
                                            GET /incoming?p=false&a=false&b=false HTTP/1.1 
Host: tpx.tesseradigital.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Cookie: tpuuid=Ng702y25inCBwM9MbCYPfPP1IMDUn5MGM3UvCvKu0ETH
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         35.157.179.180
HTTP/2 204 No Content
                                        
server: nginx
date: Sat, 02 Jul 2022 17:00:30 GMT
last-modified: Saturday, 02-Jul-2022 17:00:30 GMT
X-Firefox-Spdy: h2

                                        
                                            GET /PIC/reklama-horizontalna.gif HTTP/1.1 
Host: img.szm.sk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://palochusvet.szm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         85.248.228.60
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Sat, 02 Jul 2022 17:00:30 GMT
Content-Length: 1251
Last-Modified: Tue, 23 Jun 2020 10:27:25 GMT
Connection: keep-alive
ETag: "5ef1d90d-4e3"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 61 x 12\012- data
Size:   1251
Md5:    a49ad5ae145f1d611ef5bae605889f06
Sha1:   9632a30c2c4f29de66b570c095ad5032df357d5a
Sha256: 3f061b3425b4ce73a0029131e7eaf6ab1daa7e92947fb76daef7380e9d3ebbb8
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F763D7576AAB81AE47F35FD4AFFB2D6BE29F421DA0A2F3607F966049C88AE66C"
Last-Modified: Thu, 30 Jun 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15255
Expires: Sat, 02 Jul 2022 21:14:45 GMT
Date: Sat, 02 Jul 2022 17:00:30 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "2041679030823F94512A4BEB0D43CC3BE0DCDA6C40A15C51F9AD1CDC548A89E7"
Last-Modified: Sat, 02 Jul 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14540
Expires: Sat, 02 Jul 2022 21:02:50 GMT
Date: Sat, 02 Jul 2022 17:00:30 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "2041679030823F94512A4BEB0D43CC3BE0DCDA6C40A15C51F9AD1CDC548A89E7"
Last-Modified: Sat, 02 Jul 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14855
Expires: Sat, 02 Jul 2022 21:08:05 GMT
Date: Sat, 02 Jul 2022 17:00:30 GMT
Connection: keep-alive

                                        
                                            GET /imp.js?_pid=163594704&_ouuid=Ng702y25inCBwM9MbCYPfPP1IMDUn5MGM3UvCvKu0ETH&_oprio=0&_oref=https%3A%2F%2Fszm.com%2Freklama%2Fadsense.phtml%3FURL%3Dhttp%253A%252F%252Fpalochusvet.szm.com%252F43t3f%252F45y4g.exe HTTP/1.1 
Host: fd.tesseradigital.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Cookie: tpuuid=Ng702y25inCBwM9MbCYPfPP1IMDUn5MGM3UvCvKu0ETH
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         18.196.91.239
HTTP/2 200 OK
                                        
server: nginx
date: Sat, 02 Jul 2022 16:54:56 GMT
content-type: text/html; charset=UTF-8
content-length: 0
etag: "da39a3ee5e6b4b0d3255bfef95601890afd80709"
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
last-modified: Saturday, 02-Jul-2022 16:54:56 GMT
X-Firefox-Spdy: h2

                                        
                                            GET /iframe_api HTTP/1.1 
Host: www.youtube.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.206
HTTP/2 200 OK
                                        
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Sat, 02 Jul 2022 17:00:29 GMT
date: Sat, 02 Jul 2022 17:00:29 GMT
cache-control: private, max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
critical-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=Q3Z5J5tKehI; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none VISITOR_INFO1_LIVE=9erO2zShiow; Domain=.youtube.com; Expires=Thu, 29-Dec-2022 17:00:29 GMT; Path=/; Secure; HttpOnly; SameSite=none CONSENT=PENDING+303; expires=Mon, 01-Jul-2024 17:00:29 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (509)
Size:   1137
Md5:    b97c50d724e4e6aa77cee107fe220a12
Sha1:   cbe2e4e803f2281a86db1ec59f889a2e91bb9dae
Sha256: c50b28d724bd454713773643434e7deebe59e939af38aacca0968ca96a2887a0
                                        
                                            GET /imp.js?_pid=163594704&_ouuid=NRfjkzQv8GhDw01nMB8xeeUlpf1AIIBQC9WzAjxxTAOr&_oprio=0&_oref=https%3A%2F%2Fszm.com%2Freklama%2Fadsense.phtml%3FURL%3Dhttp%253A%252F%252Fpalochusvet.szm.com%252F43t3f%252F45y4g.exe HTTP/1.1 
Host: fd.tesseradigital.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Cookie: tpuuid=NRfjkzQv8GhDw01nMB8xeeUlpf1AIIBQC9WzAjxxTAOr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         18.196.91.239
HTTP/2 200 OK
                                        
server: nginx
date: Sat, 02 Jul 2022 16:54:57 GMT
content-type: text/html; charset=UTF-8
content-length: 0
etag: "da39a3ee5e6b4b0d3255bfef95601890afd80709"
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
last-modified: Saturday, 02-Jul-2022 16:54:57 GMT
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4922
Cache-Control: max-age=141357
Date: Sat, 02 Jul 2022 17:00:30 GMT
Etag: "62bfeba1-1d7"
Expires: Mon, 04 Jul 2022 08:16:27 GMT
Last-Modified: Sat, 02 Jul 2022 06:54:25 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /www/images/85ebc45601450d75a4c0a72eb1f95988.jpg HTTP/1.1 
Host: ad.novara.sk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.novara.sk/www/delivery/afr.php?zoneid=60&cb=367027
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         85.248.228.68
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Sat, 02 Jul 2022 17:00:30 GMT
Content-Length: 34478
Last-Modified: Thu, 26 Oct 2017 00:30:50 GMT
Connection: keep-alive
ETag: "59f12cba-86ae"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 120x600, components 3\012- data
Size:   34478
Md5:    85ebc45601450d75a4c0a72eb1f95988
Sha1:   b5da0f677377647adc5584b3e05e8ab54017f69b
Sha256: ace6cc45873b82fb762fd66ea94bf46569cdd5da4fc887231404ca80c2744ac9
                                        
                                            GET /containr.js HTTP/1.1 
Host: cdn.mookie1.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.13.39.40
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Accept-Ranges: bytes
ETag: "6200df1a0ff97d44f843b0184fa20225:1599561740.987291"
Last-Modified: Tue, 08 Sep 2020 10:42:20 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=60
Expires: Sat, 02 Jul 2022 17:01:30 GMT
Date: Sat, 02 Jul 2022 17:00:30 GMT
Content-Length: 2941
Connection: keep-alive
Access-Control-Max-Age: 86400
Access-Control-Allow-Credentials: false
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET,POST
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (8911), with no line terminators
Size:   2941
Md5:    7ffd4fb7e1453522a471c78427da2ae1
Sha1:   ffd31aaa4c68ff2d09b295092cabf335b3657d4a
Sha256: 38d3be2ed4b565fd170f63bd420ef939e1b565ef30d461341986c505d84833ed
                                        
                                            GET /imp.js?_pid=163594704&_ouuid=WCeFACdLfGc6Tvzf3EdQl6wEOlPVFSb2GEBpsregw4kF&_oprio=0&_oref=https%3A%2F%2Fszm.com%2Freklama%2Fadsense.phtml%3FURL%3Dhttp%253A%252F%252Fpalochusvet.szm.com%252F43t3f%252F45y4g.exe HTTP/1.1 
Host: fd.tesseradigital.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Cookie: tpuuid=Z6cpaTUuq6PVldqCRM60iXjFKeD8BPMEZE0R00WnSlu7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         18.196.91.239
HTTP/2 200 OK
                                        
server: nginx
date: Sat, 02 Jul 2022 16:54:57 GMT
content-type: text/html; charset=UTF-8
content-length: 0
etag: "da39a3ee5e6b4b0d3255bfef95601890afd80709"
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
last-modified: Saturday, 02-Jul-2022 16:54:57 GMT
X-Firefox-Spdy: h2

                                        
                                            GET /www/delivery/lg.php?bannerid=4130&campaignid=1689&zoneid=60&loc=http%3A%2F%2Fpalochusvet.szm.com%2F&cb=95965ea042 HTTP/1.1 
Host: ad.novara.sk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.novara.sk/www/delivery/afr.php?zoneid=60&cb=367027
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         85.248.228.68
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Sat, 02 Jul 2022 17:00:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Access-Control-Allow-Origin: *
P3P: CP="CUR ADM OUR NOR STA NID"
Set-Cookie: OAGEO=NO%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C; path=/ OAID=a1e2de3e9495eb537e07277774f9c61f; expires=Sun, 02-Jul-2023 17:00:30 GMT; Max-Age=31536000; path=/


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    b4491705564909da7f9eaf749dbbfbb1
Sha1:   279315d507855c6a4351e1e2c2f39dd9cd2fccd8
Sha256: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
                                        
                                            GET /imp.js?_pid=163594704&_ouuid=Z6cpaTUuq6PVldqCRM60iXjFKeD8BPMEZE0R00WnSlu7&_oprio=0&_oref=https%3A%2F%2Fszm.com%2Freklama%2Fadsense.phtml%3FURL%3Dhttp%253A%252F%252Fpalochusvet.szm.com%252F43t3f%252F45y4g.exe HTTP/1.1 
Host: fd.tesseradigital.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Cookie: tpuuid=Z6cpaTUuq6PVldqCRM60iXjFKeD8BPMEZE0R00WnSlu7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         18.196.91.239
HTTP/2 200 OK
                                        
server: nginx
date: Sat, 02 Jul 2022 16:54:57 GMT
content-type: text/html; charset=UTF-8
content-length: 0
etag: "da39a3ee5e6b4b0d3255bfef95601890afd80709"
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
last-modified: Saturday, 02-Jul-2022 16:54:57 GMT
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "ED6C6F73611FB56DFA41FD028E23F0BC0470D319E51B212B8078C2C0DF8F4638"
Last-Modified: Fri, 01 Jul 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4670
Expires: Sat, 02 Jul 2022 18:18:20 GMT
Date: Sat, 02 Jul 2022 17:00:30 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "ED6C6F73611FB56DFA41FD028E23F0BC0470D319E51B212B8078C2C0DF8F4638"
Last-Modified: Fri, 01 Jul 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4670
Expires: Sat, 02 Jul 2022 18:18:20 GMT
Date: Sat, 02 Jul 2022 17:00:30 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "ED6C6F73611FB56DFA41FD028E23F0BC0470D319E51B212B8078C2C0DF8F4638"
Last-Modified: Fri, 01 Jul 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4670
Expires: Sat, 02 Jul 2022 18:18:20 GMT
Date: Sat, 02 Jul 2022 17:00:30 GMT
Connection: keep-alive

                                        
                                            GET /iframe_api HTTP/1.1 
Host: www.youtube.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.206
HTTP/2 200 OK
                                        
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Sat, 02 Jul 2022 17:00:29 GMT
date: Sat, 02 Jul 2022 17:00:29 GMT
cache-control: private, max-age=0
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-platform=*, ch-ua-platform-version=*
critical-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=HYxe5mwka6U; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none VISITOR_INFO1_LIVE=SiepY4WXVm4; Domain=.youtube.com; Expires=Thu, 29-Dec-2022 17:00:29 GMT; Path=/; Secure; HttpOnly; SameSite=none CONSENT=PENDING+296; expires=Mon, 01-Jul-2024 17:00:29 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (509)
Size:   988
Md5:    fe67ff94a9f8c9a8a7c1899c01dcd958
Sha1:   32443ff255feb8fbe3adf46a880465241de629f5
Sha256: 249f774893c52a01303dcb3166f45a0dc7a318dc99a2fd40e3597a5b80011549
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F155ff049-31ad-45db-b606-da7aae957a83.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 7158
x-amzn-requestid: 39fb9806-1635-485f-a758-1a0777601251
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UePTkGHFIAMF2Fw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62bbf8e3-10aeadd66b2e052248e917db;Sampled=0
x-amzn-remapped-date: Wed, 29 Jun 2022 07:01:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3L2jmW37xsgzK8cVYPBFci7_UZlKVotBXfKrf0XKAa4NBRFT_DTfSQ==
via: 1.1 76dcc62b68091cc715d50b5017be77fc.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Sat, 02 Jul 2022 04:37:21 GMT
age: 44589
etag: "0ce665e95946e6d6af4731a3b8077395656643b6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7158
Md5:    fe1ed276b7cf8b0bb3cb9c3d89b638df
Sha1:   0ce665e95946e6d6af4731a3b8077395656643b6
Sha256: 19ca3b0e9ec5edb5eda793c407e8a71ba7e154d011955b43ca007b75ef045140
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5571171d-93e2-4135-8225-3bfc53bc48ac.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 6736
x-amzn-requestid: 9e808fb4-bd09-40e9-91af-080ccdc93ee9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Um2BSE0ToAMFfag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62bf6a08-2a5ed3cb6402d1907c9656a8;Sampled=0
x-amzn-remapped-date: Fri, 01 Jul 2022 21:41:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: QsLGBz_oGZL0ZFz_WyunCdHOX7Rz5Q8HSmI4n6FmkqpeZiUGvl0fJQ==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Fri, 01 Jul 2022 21:46:17 GMT
age: 69253
etag: "a63b88bf7ec527ec4774676532c865a161533e4a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6736
Md5:    0ace558e62edc260cee8891548c0621d
Sha1:   a63b88bf7ec527ec4774676532c865a161533e4a
Sha256: 1fb21b28c0480725834b801307a5fff6b62d1a9c2495b901217fff6f5617059f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb68b83e0-72c7-49aa-9626-3d36db21293e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 11496
x-amzn-requestid: 7254cb45-1ef0-478c-9910-beca727c109f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Um1yaEYPoAMFa-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62bf69a8-53e04a3858a351eb5debddac;Sampled=0
x-amzn-remapped-date: Fri, 01 Jul 2022 21:39:52 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: LBjt5A-YFURsNDOTGa5QHIe0degH2__ZL7JxCkKhs0b6hN5xahoEBg==
via: 1.1 bd6f70221217681265382902c6157c76.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Fri, 01 Jul 2022 21:47:59 GMT
age: 69151
etag: "c69cccbe6d0394d4b40bc350462da9bf00064e61"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11496
Md5:    524069fd1931d39f6c9f106be7c29e3c
Sha1:   c69cccbe6d0394d4b40bc350462da9bf00064e61
Sha256: ba7d5c6f33a49f80db9eec2634fcfc3fd5261bdf4932bce7bc70b54c02d6cc66
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdeb89745-bbbb-4235-9425-852f10044585.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 11746
x-amzn-requestid: 9c689086-f3c0-4043-9905-c9580c6c3f51
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Uhif8EcIIAMF2_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62bd4acc-3417fb3956f99fcd714f562b;Sampled=0
x-amzn-remapped-date: Thu, 30 Jun 2022 07:03:40 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 9XejFfM4ZuBWhhC_Zr3-8hLl9GYl7FXlG9eqbZkzJpFNWKY2BlBA9w==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sat, 02 Jul 2022 05:29:06 GMT
age: 41484
etag: "20333be7fca4c09773321bec15ac65c18391fae0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11746
Md5:    1b628b3028c285be25c17f5665f4b727
Sha1:   20333be7fca4c09773321bec15ac65c18391fae0
Sha256: 56d7c15b78a6fd9e5b16c6e59981ba3d68839a6ad840f06ce2910b18495a38cd
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1edb2a2-bd4b-4101-b70d-9136a59ce340.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 8828
x-amzn-requestid: f38dcd2a-5fde-4373-b296-082dabd98c9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Um2B7GozIAMFdeA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62bf6a0c-211025f83d38b6c16a260502;Sampled=0
x-amzn-remapped-date: Fri, 01 Jul 2022 21:41:32 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: mrOMCP1V9xTT4WH71tBWEfdaHrOOgOvOZbCu74pZZ_N3_c-8jtPcTQ==
via: 1.1 f62c9ca47e35df5c65764381977823a6.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 01 Jul 2022 21:49:44 GMT
age: 69046
etag: "6809a6b6843631c3f0a2cf2f51e805166deb90ee"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8828
Md5:    8760265218db4424cf9d0cda9cc7e7df
Sha1:   6809a6b6843631c3f0a2cf2f51e805166deb90ee
Sha256: 4e4399d233c3a721e2d4def6cddfca03b4e43d4122428a503e27aa7527b1cfff
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2b693c9f-67be-4ac0-b261-907639467fd1.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 9986
x-amzn-requestid: b96951f0-f4c4-4f63-ba41-ba43c6a30e11
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Um1x6GWeIAMFXsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62bf69a5-04ea27df61b0abc76ec50b8a;Sampled=0
x-amzn-remapped-date: Fri, 01 Jul 2022 21:39:49 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: hNfdMvL0PbaHLqRYzZDAACAbAwDwzctEoB6b41DGooXqdl4tx_5dlA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 01 Jul 2022 21:41:44 GMT
age: 69526
etag: "06bd1f5a2f23819184eb44076b107f234f432081"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9986
Md5:    423b835cc7c59b9ae5e054bea9b5a350
Sha1:   06bd1f5a2f23819184eb44076b107f234f432081
Sha256: 7b3a9e9f2cced74e0e018f5174c93dda41b95b2a5fa5aaabe933481d0a53ebde
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4846
Cache-Control: 'max-age=158059'
Date: Sat, 02 Jul 2022 17:00:34 GMT
Last-Modified: Sat, 02 Jul 2022 15:39:48 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /t/v2/learn?tagid=V2_291021&src.rand=1656781229&gdpr_err=NO_CMP&gdpr_consent=-1&depp=7.0.1-4-eu HTTP/1.1 
Host: sk-gmtdmp.mookie1.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://szm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         35.186.238.175
HTTP/2 200 OK
                                        
date: Sat, 02 Jul 2022 17:00:34 GMT
server: Apache
p3p: CP="NON DSP COR NID CURa PSAa PSDa OUR STP UNI COM NAV STA LOC OTC",policyref="/w3c/p3p.xml"
x-application-context: application
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-type: image/gif;charset=UTF-8
content-length: 43
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    07fff40b5dd495aca2ac4e1c3fbc60aa
Sha1:   e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
Sha256: a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4846
Cache-Control: 'max-age=158059'
Date: Sat, 02 Jul 2022 17:00:34 GMT
Last-Modified: Sat, 02 Jul 2022 15:39:48 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471