Report - 1g0v.site/?id=3527430

Report Overview

Submitted URL
1g0v.site/?id=3527430
IP
66.29.153.49
ASN
#22612 NAMECHEAP-NET
Submitted
2022-11-12 20:25:15
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
6

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-10T14:35:32Z	680 B	1.9 kB	172.64.155.188
www.opera.com	62688	2012-05-21T18:16:56Z	2023-03-10T09:50:23Z	807 B	21 kB	18.195.10.182
cdn-production-opera-website.operacdn.com	98972	2019-10-15T16:44:48Z	2023-03-09T18:13:49Z	24 kB	2.5 MB	23.32.85.11
adservice.google.no	96969	2018-06-20T01:38:38Z	2023-03-10T05:19:42Z	625 B	1.2 kB	142.250.74.66
region1.analytics.google.com	unknown	2022-03-17T12:26:33Z	2023-03-10T05:19:42Z	675 B	560 B	216.239.32.36
s.amazon-adsystem.com	283	2012-05-21T10:26:27Z	2023-03-10T16:10:02Z	1.5 kB	1.5 kB	52.46.151.131
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-10T05:10:00Z	782 B	2.4 kB	34.102.187.140
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-10T05:11:10Z	5.8 kB	12 kB	142.250.74.35
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-10T14:37:36Z	982 B	20 kB	216.58.207.195
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-10T12:25:49Z	416 B	1.7 kB	142.250.74.10
blue.redredirector.com	unknown	2022-06-07T09:21:37Z	2023-03-09T18:13:48Z	507 B	423 B	34.141.179.97
trc.taboola.com	602	2012-12-27T12:54:42Z	2023-03-10T09:42:15Z	1.2 kB	554 B	151.101.85.44
gov4.site	unknown	2022-08-25T19:40:31Z	2023-02-21T02:00:22Z	444 B	1.1 kB	31.170.164.241
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-10T13:03:15Z	758 B	171 kB	142.250.74.168
cdn.taboola.com	1040	2013-07-20T01:48:03Z	2023-03-10T11:40:01Z	375 B	19 kB	151.101.85.44
vars.hotjar.com	1014	2020-11-05T11:13:14Z	2023-03-09T18:15:23Z	503 B	1.7 kB	54.230.111.71
www.google.com	7	2015-05-10T13:11:19Z	2023-03-10T12:19:40Z	514 B	694 B	142.250.74.164
static.hotjar.com	641	2014-11-01T06:14:27Z	2023-03-10T09:34:35Z	374 B	632 B	54.230.111.8
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-10T05:10:04Z	3.2 kB	48 kB	34.120.237.76
www.getgx.net	unknown	2022-06-02T15:52:22Z	2023-03-09T18:13:48Z	852 B	524 B	107.21.163.80
connect.facebook.net	139	2012-05-22T04:51:28Z	2023-03-10T05:15:22Z	371 B	29 kB	31.13.72.12
s.yimg.com	375	2012-05-21T00:45:00Z	2023-03-10T13:12:29Z	747 B	1.6 kB	188.125.94.204
stats.g.doubleclick.net	96	2013-06-10T22:21:11Z	2023-03-10T12:41:09Z	601 B	708 B	142.251.1.157
trc-events.taboola.com	1779	2020-06-09T15:52:57Z	2023-03-10T11:40:03Z	638 B	362 B	141.226.228.48
www.google.no	25607	2016-04-05T21:50:59Z	2023-03-10T07:09:08Z	478 B	694 B	142.250.74.35
www.googleadservices.com	107	2012-06-26T16:53:06Z	2023-03-10T16:05:03Z	1.4 kB	20 kB	142.250.74.34
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-10T05:12:35Z	413 B	5.9 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-10T05:10:00Z	333 B	229 B	34.117.237.239
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-10T05:10:02Z	606 B	127 B	44.237.239.70
www.arabs4.net	unknown	2022-07-02T03:07:29Z	2022-11-26T08:03:30Z	697 B	929 B	92.205.12.81
11442918.fls.doubleclick.net	151784	2021-11-12T19:37:19Z	2023-03-08T14:50:40Z	628 B	1.2 kB	142.250.74.70
adservice.google.com	76	2021-02-20T17:10:48Z	2023-03-10T15:48:12Z	634 B	922 B	142.250.74.98
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-10T13:49:44Z	2.0 kB	4.2 kB	93.184.220.29
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	350 B	1.0 kB	54.230.245.39
smrturl.co	299580	2019-02-01T22:57:30Z	2023-03-10T07:10:10Z	478 B	20 kB	172.67.197.247
bat.bing.com	387	2014-04-08T11:23:16Z	2023-03-10T09:34:35Z	1.4 kB	14 kB	204.79.197.200
www.facebook.com	99	2012-05-21T02:23:41Z	2021-02-04T00:31:35Z	582 B	349 B	31.13.72.36
sp.analytics.yahoo.com	816	2014-01-31T21:48:24Z	2023-03-10T05:19:44Z	573 B	949 B	212.82.100.181
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-10T13:35:34Z	370 B	21 kB	142.250.74.174
alb.reddit.com	1521	2017-06-15T07:33:56Z	2023-03-10T11:40:01Z	652 B	276 B	151.101.85.140
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-10T05:09:10Z	2.0 kB	5.3 kB	23.36.76.226
1g0v.site	unknown	2022-11-03T16:48:06Z	2023-03-07T22:21:16Z	1.3 kB	2.1 kB	66.29.153.49
arabs4.net	unknown	2022-07-02T03:07:29Z	2023-03-05T22:37:04Z	347 B	313 B	92.205.12.81
script.hotjar.com	887	2020-11-05T17:23:46Z	2023-03-10T15:35:05Z	382 B	69 kB	54.230.111.44
googleads.g.doubleclick.net	42	2021-02-20T16:43:32Z	2023-03-10T16:21:16Z	1.1 kB	1.6 kB	142.250.74.66

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-12	medium	gov4.site/a/?eg	Phishing
2022-11-12	medium	www.arabs4.net/pc	Malware
2022-11-12	medium	www.arabs4.net/pc/	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (35)

	URL	Size	First Seen	Last Seen
	www.opera.com/gx	452 B	2023-03-07	2023-12-07
Pretty URL www.opera.com/gx IP 18.195.10.182 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2023-12-07 00:03:33 Times Seen113 Hash ea851aaa49b13578ff5c5e50a48cdb5d 0c28bff9ed59248c78451d4167d5a0ef142bd9e4 5e9c4dcec163b9a531c2d5e8f6ff96b33e67e86fb3ab3a2ed74ad16051007eaf Loading...

	vars.hotjar.com/box-c6ca1c87e308a39aabb76b56ba54398b.html	2.3 kB	2023-03-10	2023-03-17
Pretty URL vars.hotjar.com/box-c6ca1c87e308a39aabb76b56ba54398b.html IP 54.230.111.71 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 00:23:49 Last Seen2023-03-17 21:22:49 Times Seen1 Hash 34086a2f3d61b9a459a6141d1343ece0 ae09be0d58acca43ea80769df13cbbfea21a9ccb f639e1347dd440a977783f03b6524b2deda7b39daa1060b3519c64c337c6ae55 Loading...

	www.arabs4.net/pc/	97 B	2023-03-07	2023-03-17
Pretty URL www.arabs4.net/pc/ IP 92.205.12.81 ASN #21499 Host Europe GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:52 Last Seen2023-03-17 12:26:45 Times Seen1 Hash 6ffe84233c232e2ccb501bb35d023a81 cd1c4276e504823215879a2650a233c61ffc4860 2535618b64ed7a5302afa89aa7ed7b1b141d85d71fc378248b3c6a0c8e710102 Loading...

	connect.facebook.net/signals/config/1123357797681867?v=2.9.89&r=stable	301 kB	2023-03-11	2023-03-11
Pretty URL connect.facebook.net/signals/config/1123357797681867?v=2.9.89&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 11:32:51 Last Seen2023-03-11 11:32:51 Times Seen1 Hash 2ee324a40cd1ee262497dbfcc90d8cf9 b2ad4723072b008c5667fcc235a593a313527c3b 9c37fa1931d2cafc83ffd0e59d8d691d8897ddf902bd8d3a44cd456320614788 Loading...

	trc.taboola.com/1410119/trc/3/json?tim=1668284709175&data=%7B%22id%22%3A88%2C%22ii%22%3A%22%2Fgx%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1668284709164%2C%22cv%22%3A%2220221106-3-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.opera.com%2Fgx%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Doperasoftwarees-operasoftwarees-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1668284709175%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.opera.com%2Fgx%22%2C%22tos%22%3A4%2C%22ssd%22%3A1%2C%22scd%22%3A4%2C%22supv%22%3Atrue%7D%7D&pubit=i	2.5 kB	2023-03-11	2023-03-11
Pretty URL trc.taboola.com/1410119/trc/3/json?tim=1668284709175&data=%7B%22id%22%3A88%2C%22ii%22%3A%22%2Fgx%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1668284709164%2C%22cv%22%3A%2220221106-3-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.opera.com%2Fgx%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Doperasoftwarees-operasoftwarees-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1668284709175%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.opera.com%2Fgx%22%2C%22tos%22%3A4%2C%22ssd%22%3A1%2C%22scd%22%3A4%2C%22supv%22%3Atrue%7D%7D&pubit=i IP 151.101.85.44 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 11:32:51 Last Seen2023-03-11 11:32:51 Times Seen1 Hash ff2515a15c22dfe3ad0ab0ecd2bc2355 45db35b625d00b4d3a025d237ce65f5815587018 5baf3ffed6002f35d1961768ca98ac68b98ba98b006837a2454bd3723dd6c3df Loading...

	11442918.fls.doubleclick.net/ddm/fls/r/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=2537862686255;gtm=2wgb90;auiddc=1896603554.1668284709;~oref=https%3A%2F%2Fwww.opera.com%2Fgx	211 B	2023-03-07	2023-03-11
Pretty URL 11442918.fls.doubleclick.net/ddm/fls/r/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=2537862686255;gtm=2wgb90;auiddc=1896603554.1668284709;~oref=https%3A%2F%2Fwww.opera.com%2Fgx IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2023-03-11 21:00:46 Times Seen1 Hash 145a86b05d5d23a0457e4d04d7414f6b b9c5bd648296302344b234dc52669b473f076378 1487253ac00cdb9bce5db8331567b3ab87d98eed981f396602ed00bd648a6d7a Loading...

	s.yimg.com/wi/ytc.js	17 kB	2023-03-07	2024-03-04
Pretty URL s.yimg.com/wi/ytc.js IP 188.125.94.204 ASN #10310 YAHOO-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:36 Last Seen2024-03-04 14:29:23 Times Seen1244 Hash 6a624022b5d271dcefb070b0b6670abc e9a0a059a5cefc0cd9e6cc0e8d7bd8d64c23936b 249c4eba880cfb74e1b6e1d1048def310636dc3b1ce5b3fe525703fd4025238f Loading...

	unknown	0 B	2023-03-07	2024-05-11
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-11 05:45:07 Times Seen37535204 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	11442918.fls.doubleclick.net/ddm/fls/r/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=2537862686255;gtm=2wgb90;auiddc=1896603554.1668284709;~oref=https%3A%2F%2Fwww.opera.com%2Fgx	659 B	2023-03-07	2023-03-11
Pretty URL 11442918.fls.doubleclick.net/ddm/fls/r/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=2537862686255;gtm=2wgb90;auiddc=1896603554.1668284709;~oref=https%3A%2F%2Fwww.opera.com%2Fgx IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2023-03-11 21:00:46 Times Seen1 Hash 526b1641a89304d842ff0805cae98078 7a5d59cae78e114b9aecd1968d5cece8c0fab5fa 9b8d1014b62f337dfdc2809825c29bdb7c352757adafba9c188bff2c57708bbd Loading...

	www.googletagmanager.com/gtm.js?id=GTM-PRBZ42F	398 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-PRBZ42F IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 11:32:51 Last Seen2023-03-11 11:32:51 Times Seen1 Hash 597b485e2ee952ac559e4e954582cefc ee1f0d0dd4ffa2140d3abeeaa3bec39e378c24f0 665f45b38d3b57d2d2efc38800a2ff559e85edfc1dea4818a0659d3fb99e8b67 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-N7XDW7Z	174 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-N7XDW7Z IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 11:32:51 Last Seen2023-03-11 11:32:51 Times Seen1 Hash 34c949d86a7cfb30541aff6d49b7fea0 f4e2c9f27b3678507967f40cd8fea5a719cb0730 8ecc169b0e830e6d985bb42cefc4e318b8243dbcb842d605b22fb3543344eea0 Loading...

	www.opera.com/gx	422 B	2023-03-07	2023-03-11
Pretty URL www.opera.com/gx IP 18.195.10.182 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2023-03-11 21:00:46 Times Seen1 Hash 846d2d8a8578b9aac137f995f553608c 79d1416e95ca129d7a2ea5189e6390b252352a6c f5492473c4fd71e86d2bace91b88788f022a6c4efc24071ffcb38076e5a65d04 Loading...

	www.opera.com/gx	496 B	2023-03-07	2024-02-21
Pretty URL www.opera.com/gx IP 18.195.10.182 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2024-02-21 04:57:48 Times Seen239 Hash 2ec3ab2ea7d6e84feaede3f316e542e6 4c0a9224d011d729f351a9f6a1c9ff9ba1b379a2 3e8f56032190bf6c992040243294c0438637ca75545775b62d90aa91ff927aa6 Loading...

	www.opera.com/gx	423 B	2023-03-07	2024-05-01
Pretty URL www.opera.com/gx IP 18.195.10.182 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2024-05-01 10:23:47 Times Seen241 Hash 234b023c7a26bfe71d0f9f640ede91f4 504a7bade784175003b440859140c4792b755a89 a9f9adf2eef26b4c41a6f824bb23a100ad0f438971e584859754bdb2b6eb422e Loading...

	bat.bing.com/bat.js	39 kB	2023-03-08	2023-12-01
Pretty URL bat.bing.com/bat.js IP 204.79.197.200 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:44 Last Seen2023-12-01 19:12:11 Times Seen33 Hash 4ffa93c7b72214cba0395e236738648c 89a3b99eebfa5ebcea11ba92e0e3e63f0007b6f9 492f3de5b6bff06f8b26f61d37e2e565f8f31e00315600c73d9caa85713e8c29 Loading...

	www.opera.com/gx	21 B	2023-03-07	2024-04-25
Pretty URL www.opera.com/gx IP 18.195.10.182 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:18:43 Last Seen2024-04-25 17:32:42 Times Seen548 Hash c499adcb8b93574828ea9ee76f39278f 729be93800ec88aeb5c94d1e1d5558eb0ee7605c 53c7b7488f8e6625f123eef988f95d9268c7b673501f465712561ea83d77bd78 Loading...

	www.googleadservices.com/pagead/conversion.js	46 kB	2023-03-11	2023-03-11
Pretty URL www.googleadservices.com/pagead/conversion.js IP 142.250.74.34 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 10:34:45 Last Seen2023-03-11 12:48:53 Times Seen1 Hash 316a2a1e360d0fbd4de8112945d2478c f353607de5b73d4f428a38ffe90c942a3d9bdb42 17bcafaa9b8aa4e9a351dd1fade8e49e63ab09fc2653f5b384bb05c8660ff765 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-05-10
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-05-10 19:48:26 Times Seen1646 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	www.opera.com/gx	3.6 kB	2023-03-07	2023-04-02
Pretty URL www.opera.com/gx IP 18.195.10.182 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2023-04-02 21:30:09 Times Seen2 Hash f1607c87893064f9fd1d5f505d7dbcc8 10b206a1ae8a48e68abf99b9fb1450f37659e732 892ce543fa97bf9c420515828355b0cfc2948137a1c435eb613c082076ff73ce Loading...

	connect.facebook.net/en_US/fbevents.js	105 kB	2023-03-10	2023-10-31
Pretty URL connect.facebook.net/en_US/fbevents.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 17:19:33 Last Seen2023-10-31 18:18:05 Times Seen6 Hash 8938d4fc65afd3422bf533482ca33a53 2d92351d88fc6fd59cdac7d801753ac64ba52277 f896040524443394b8b1ba4fbd1de94be74378ab901e53b3b40c1323d1735143 Loading...

	www.redditstatic.com/ads/pixel.js	25 kB	2023-03-08	2023-12-01
Pretty URL www.redditstatic.com/ads/pixel.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:55 Last Seen2023-12-01 19:12:11 Times Seen28 Hash c1c34430d39fb43c9612aebe7ab8a9db 4d7f5cb7b29685a3a5a51c140288465e9553a0a7 4b4e80032e1c164685d3ff6eb4c606785ebaebaa648d3984478b0cc8d114190b Loading...

	cdn.taboola.com/libtrc/unip/1410119/tfa.js	59 kB	2023-03-10	2023-03-11
Pretty URL cdn.taboola.com/libtrc/unip/1410119/tfa.js IP 151.101.85.44 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 22:38:27 Last Seen2023-03-11 11:32:51 Times Seen1 Hash 67c01e0531d7acdc10c15b0a8104a52f c0b10f7f9fb262efec04aea38bedbcf059f513e3 09309f01f4e6374ac013729c6c9df4c53cb372f4b53896f808c76b14be1934d0 Loading...

	www.googleadservices.com/pagead/conversion/10840821485/?random=1668284709465&cv=9&fst=1668284709465&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D2537862686255%3Bgtm%3D2wgb90%3Bauiddc%3D1896603554.1668284709%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4	2.0 kB	2023-03-11	2023-03-11
Pretty URL www.googleadservices.com/pagead/conversion/10840821485/?random=1668284709465&cv=9&fst=1668284709465&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D2537862686255%3Bgtm%3D2wgb90%3Bauiddc%3D1896603554.1668284709%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4 IP 142.250.74.34 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 11:32:51 Last Seen2023-03-11 11:32:51 Times Seen1 Hash cf0d7f3a9f441f032cebccbf2108f720 d987e69b3444ef5f57ad50327bc2f7e13af36169 e69076c6f89bdf3c5e253b24a560657cb700b13ad9b19f3d5e543d8cb39aef8f Loading...

	www.opera.com/gx	3.0 kB	2023-03-07	2024-01-24
Pretty URL www.opera.com/gx IP 18.195.10.182 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:52:36 Last Seen2024-01-24 11:43:10 Times Seen40 Hash f5a6286eaa45f9aeec04e007cba1bb23 7befd217059157b76809d13ec6d10de6876dcf63 5a4f3f5fd8c3b346d408e183af42f942607054fba180e00cab4addede2fe35c6 Loading...

	www.getgx.net/cmp/TXP7QH/P6QLHR/?sub1=150_2476&sub2=6370012326821d0001447e70	43 B	2023-03-07	2023-03-13
Pretty URL www.getgx.net/cmp/TXP7QH/P6QLHR/?sub1=150_2476&sub2=6370012326821d0001447e70 IP 107.21.163.80 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:30:01 Last Seen2023-03-13 18:10:15 Times Seen1 Hash 770cdcd5df08c6dc5f51adaa151a6311 fffae52deabfbb50c67b94dbb8e60ec288815e00 c36c9b040f29c2a27a30f35abf51e56bfbd0bb3f836a233ba97c4a32a421e22e Loading...

	www.opera.com/gx	357 B	2023-03-07	2023-12-11
Pretty URL www.opera.com/gx IP 18.195.10.182 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2023-12-11 07:58:14 Times Seen128 Hash c8983d66f6c0fbf9def38ba1b59df5af 009b5d6d8879bd1faacb02b043067118429663c7 2e0527064a429e3c5e7e271e512b940b81d95422281c3704987e8f17c2f9bd85 Loading...

	www.opera.com/gx	417 B	2023-03-07	2024-05-01
Pretty URL www.opera.com/gx IP 18.195.10.182 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2024-05-01 10:23:48 Times Seen242 Hash 782f224163a456df194b6bbb5c7b218d bf1522d204081c55a699d7d830e8c1777a386ad3 9ea3fb367657f27631a01f5c2dda2dfdb0c06c21309c71eaaf0aeef899f47098 Loading...

	www.opera.com/gx	422 B	2023-03-07	2024-05-10
Pretty URL www.opera.com/gx IP 18.195.10.182 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:19:46 Last Seen2024-05-10 18:52:12 Times Seen340 Hash b5ee7dff028e43c08940f369ad5a8963 c27d7438dd40365520cf79fb2293417b8609b06f 586cd59bc3f88355b1fb5d2010a6e3325cac2414e351956550fa3fd35f467d24 Loading...

	static.hotjar.com/c/hotjar-445451.js?sv=7	31 kB	2023-03-11	2023-03-11
Pretty URL static.hotjar.com/c/hotjar-445451.js?sv=7 IP 54.230.111.8 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 11:32:51 Last Seen2023-03-11 11:32:51 Times Seen1 Hash 37d61575535ec03bbb7175b9bb3b2bc8 dfc3491c3b85c28ea7839faff606d02e96b3ccfc 2e7d0f6b6fff52069833735f04f3c416712f2efb25e65c2601d31f9ff414d7b5 Loading...

	1g0v.site/ar/?red	221 B	2023-03-10	2023-03-11
Pretty URL 1g0v.site/ar/?red IP 66.29.153.49 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 19:53:55 Last Seen2023-03-11 20:32:16 Times Seen1 Hash 38f1afcb781060dd8a4d190a9c3255cb 6cbb46cf5aab80059d275cb2caa50e5a82419768 80f97ff6e46516a64a2333127f908731b3697778fa30e0b6b61aa1ae9d823e43 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 07d92edebeabb51cdb2b014d262f0886	100 B	2023-03-07	2023-03-11
Pretty Observations First Seen2023-03-07 15:20:29 Last Seen2023-03-11 20:32:16 Times Seen1 Hash 07d92edebeabb51cdb2b014d262f0886 077109d9565b2457d08b4147343f5e9d3331bc9b 49fd1cff4f3e7739532abfb43fb18207a4bcd1dc9eb8b4a503f02be3c640c63a Loading...

	#2 Eval - c9c654616521bfc7e50e42b4037f0b9e	100 B	2023-03-07	2023-04-02
Pretty Observations First Seen2023-03-07 15:20:29 Last Seen2023-04-02 21:30:09 Times Seen2 Hash c9c654616521bfc7e50e42b4037f0b9e 8b5075274f8d3e5259745b4e7172bc22f84d0bb7 310442179c33b2c11f96e621dac0c97db1cd18804aea3d7aa7e3ebd758159ef5 Loading...

	#3 Eval - 1c30f655754855af2dfa537d38d042d2	37 B	2023-03-07	2024-05-01
Pretty Observations First Seen2023-03-07 15:20:29 Last Seen2024-05-01 10:23:48 Times Seen242 Hash 1c30f655754855af2dfa537d38d042d2 0a510f5532f622e1514177e8a1c64daf50099825 f565fc57576629933f18b2a6c27826541e67444f7c01e64b35d3a281caa02eba Loading...

	#4 Eval - fd9a6ad8235a5b1f8291a0f682c4e641	60 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 12:57:29 Last Seen2024-05-10 14:41:53 Times Seen393 Hash fd9a6ad8235a5b1f8291a0f682c4e641 68be4f3dee54bfba9dbb673003d30cbc4c2663ae a5febe3286b6a155c7ff728e6cdac57d3cd37b93db132ec24e8f6e78c24e64a1 Loading...

		Size	First Seen	Last Seen
	#1 Write - d41d8cd98f00b204e9800998ecf8427e	0 B	2023-03-07	2024-05-11
Pretty Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-11 05:45:07 Times Seen37535204 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (137)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3d0727e32cd103ddd4b73f28c81758aa
197a7bf43d63723fc532c23c6dced68d5cc36652
d3f75d03561d6a47d19370292e821a86e58381466f0c69386a21175de55882ff

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D3F75D03561D6A47D19370292E821A86E58381466F0C69386A21175DE55882FF"
Last-Modified: Fri, 11 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20025
Expires: Sun, 13 Nov 2022 01:58:49 GMT
Date: Sat, 12 Nov 2022 20:25:04 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
de470c6bab46e7c4b7cc69f392900fe7
189e4dcc4c2b8bf1f050e06bd68bce8a99618918
86f57134ddebd23a25615dc4d59c4b1ca8919e3e0495e1f006cbe7c0f39aa27e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5020
Cache-Control: max-age=142191
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 20:25:04 GMT
Etag: "636f75f3-1d7"
Expires: Mon, 14 Nov 2022 11:54:55 GMT
Last-Modified: Sat, 12 Nov 2022 10:31:15 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471

1g0v.site/?id=3527430

66.29.153.49

301 Moved Permanently

707 B

URL HTTP/1.1
1g0v.site/?id=3527430
IP
66.29.153.49:0
ASN
#22612 NAMECHEAP-NET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
707 B (707 bytes)
Hash
1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

HTTP Headers

GET /?id=3527430 HTTP/1.1
Host: 1g0v.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
keep-alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Sat, 12 Nov 2022 20:25:04 GMT
server: LiteSpeed
location: https://1g0v.site/?id=3527430
x-turbo-charged-by: LiteSpeed

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Backoff, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 12 Nov 2022 19:44:14 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2450
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5076aaa9f4ccd602540286ce0590cb9a
bbf7936a8413a564478971d9e19beb6338cbc869
00e3b967c579b0ccf709b78d497a43d95646b16eb50925fef1e2694c58f290b2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "00E3B967C579B0CCF709B78D497A43D95646B16EB50925FEF1E2694C58F290B2"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7174
Expires: Sat, 12 Nov 2022 22:24:38 GMT
Date: Sat, 12 Nov 2022 20:25:04 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: r24U3FzUqNGyGDMuPWn0IrKWg51lA9p/IWf/r4SxUbaBVOS8toOLktrKYn0nw2pSHzkqX2bUokXlIJo/hiEpnA==
x-amz-request-id: 31PECRQGAEFKG9E2
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 12 Nov 2022 20:13:07 GMT
age: 717
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 12 Nov 2022 20:25:04 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Cache-Control, Retry-After, Content-Length, Expires, ETag, Pragma, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 12 Nov 2022 19:44:48 GMT
cache-control: public,max-age=3600
age: 2416
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
ae51f1958554de4457c22a7d5a9ba8b6
173e90a8c6ee36b7ec569dbea47436a90d7e7c76
dc43a04e1e26243f63a8e628f2ebcb23a9527fd4bc40dc6d1d61879b0f95bb21

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2394
Cache-Control: max-age=134502
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 20:25:04 GMT
Etag: "636f622c-1d7"
Expires: Mon, 14 Nov 2022 09:46:46 GMT
Last-Modified: Sat, 12 Nov 2022 09:06:52 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471

ocsp.sectigo.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
539e7914a9142a0f853ba5c9a2706efd
b6a8a62181109b86928700608b2fbca41b77f7bc
3abcaaa3844c04bed38d38777a1bc1dc29eba44b7c958bf17f2b0fc4e3105779

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 20:25:05 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 10 Nov 2022 13:24:56 GMT
Expires: Thu, 17 Nov 2022 13:24:55 GMT
Etag: "b6a8a62181109b86928700608b2fbca41b77f7bc"
Cache-Control: max-age=406189,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7691fead5a08b4f3-OSL

push.services.mozilla.com/

44.237.239.70

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
44.237.239.70:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: kN5qxzcp6LN6ZII+mTbcYw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: c3QoCyrGiPkaeiQcgp1EX+u+0UM=

1g0v.site/?id=3527430

66.29.153.49

302 Found

6 B

URL HTTP/2
1g0v.site/?id=3527430
IP
66.29.153.49:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text
Size
6 B (6 bytes)
Hash
0c62159b45dd1d29ea34d66363b4de98
14c69bba982a75174b4507f9cb7a96928ee549fd
d9e5116a6aed991df10689feb0bdcbe433c4fa53e9d934c101c6c95ffce0faeb

HTTP Headers

GET /?id=3527430 HTTP/1.1
Host: 1g0v.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 302 Found
x-powered-by: PHP/7.4.33
location: https://gov4.site/a/?eg
content-type: text/html; charset=UTF-8
content-length: 6
content-encoding: br
vary: Accept-Encoding
date: Sat, 12 Nov 2022 20:25:05 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

gov4.site/a/?eg

31.170.164.241

301 Moved Permanently

707 B

URL HTTP/2
gov4.site/a/?eg
IP
31.170.164.241:0
ASN
#47583 Hostinger International Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
707 B (707 bytes)
Hash
1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /a/?eg HTTP/1.1
Host: gov4.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 301 Moved Permanently
content-type: text/html
content-length: 707
date: Sat, 12 Nov 2022 20:25:05 GMT
server: LiteSpeed
location: http://arabs4.net/?aca/
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

arabs4.net/?aca/

92.205.12.81

302 Moved Temporarily

1 B

URL HTTP/1.1
arabs4.net/?aca/
IP
92.205.12.81:0
ASN
#21499 Host Europe GmbH

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
68b329da9893e34099c7d8ad5cb9c940
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b

HTTP Headers

GET /?aca/ HTTP/1.1
Host: arabs4.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Moved Temporarily
Date: Sat, 12 Nov 2022 20:25:05 GMT
Server: Apache
X-Powered-By: PHP/7.4.32
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://1g0v.site/ar/?red
Vary: Accept-Encoding
Keep-Alive: timeout=5
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

1g0v.site/ar/?red

66.29.153.49

200 OK

505 B

URL HTTP/2
1g0v.site/ar/?red
IP
66.29.153.49:0
ASN
#22612 NAMECHEAP-NET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
505 B (505 bytes)
Hash
dc68f050d9235b5b638c8271a21c5161
b21eeb9a564f2359c1859e519421281e3dd916b3
724221d67f787aeaff045665a2f3b08b9bac4e296106879c9994cdb5be0c721d

HTTP Headers

GET /ar/?red HTTP/1.1
Host: 1g0v.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

HTTP/2 200 OK
x-powered-by: PHP/7.4.33
content-type: text/html; charset=UTF-8
content-length: 505
content-encoding: br
vary: Accept-Encoding
date: Sat, 12 Nov 2022 20:25:06 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.arabs4.net/pc

92.205.12.81

301 Moved Permanently

233 B

URL HTTP/1.1
www.arabs4.net/pc
IP
92.205.12.81:0
ASN
#21499 Host Europe GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
233 B (233 bytes)
Hash
f85d543d9124c1b8ca22e11804f239b2
fa9168b4477350ee26dc73caee38ee8d8d9b204f
955046e60db3e2b5f70cc80a9315b8396ae8f16f104ba0d1507b1a9a877f71bb

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /pc HTTP/1.1
Host: www.arabs4.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Sat, 12 Nov 2022 20:25:06 GMT
Server: Apache
Location: http://www.arabs4.net/pc/
Content-Length: 233
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fb29db48daab83bcaed56b72093619cc
e0e0a09d729ffb1c41411419768896f1e1eb3346
08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9142
Expires: Sat, 12 Nov 2022 22:57:28 GMT
Date: Sat, 12 Nov 2022 20:25:06 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fb29db48daab83bcaed56b72093619cc
e0e0a09d729ffb1c41411419768896f1e1eb3346
08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9142
Expires: Sat, 12 Nov 2022 22:57:28 GMT
Date: Sat, 12 Nov 2022 20:25:06 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fb29db48daab83bcaed56b72093619cc
e0e0a09d729ffb1c41411419768896f1e1eb3346
08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9142
Expires: Sat, 12 Nov 2022 22:57:28 GMT
Date: Sat, 12 Nov 2022 20:25:06 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fb29db48daab83bcaed56b72093619cc
e0e0a09d729ffb1c41411419768896f1e1eb3346
08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9142
Expires: Sat, 12 Nov 2022 22:57:28 GMT
Date: Sat, 12 Nov 2022 20:25:06 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6f7d2f5-4807-4bbd-a3db-7a239962aca5.jpeg

34.120.237.76

200 OK

5.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6f7d2f5-4807-4bbd-a3db-7a239962aca5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.6 kB (5583 bytes)
Hash
85c6f450b38f41a2fb924d6d9a9cbff8
691f59b65ca9fde4f59bbf96b37071e07351f190
c8f877488a2cf65f0d9829384fd4113847722a1b4df94b6b1d5788699689722c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6f7d2f5-4807-4bbd-a3db-7a239962aca5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5583
x-amzn-requestid: e844f42a-e87e-4e61-8c97-137c07c5ae28
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bNeQ9Ho7IAMF5_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63687739-62c44d2f7d23632e74895bd8;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 03:10:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: FWEdPT057SMVCBc7ZYbPnfW1z5mB7iubIXzrj3HlctKtwRx2PuncSA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 08:39:57 GMT
age: 42309
etag: "691f59b65ca9fde4f59bbf96b37071e07351f190"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Facfcee70-832e-4f2d-8fc7-55d2bfff651e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.6 kB (8633 bytes)
Hash
eac2ed4bece6282c8273a58a88371e2e
2d90ff66079e8ffbaaa367a6bfc08927e7cc424d
aea97fd7d90302edcb3e0c08507d682e02166e8ddd4d082fc4f5435af438594c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Facfcee70-832e-4f2d-8fc7-55d2bfff651e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8633
x-amzn-requestid: 8bdfbfbb-5193-4c62-ba1b-c906f7548676
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhSEC1oAMF8tw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-39b4c2954dbc8e4c40a2c9d8;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: lxrfhO5oOGvECIrlZYKsfXOTZZksAIIHAafyRM-FdRXAaBVZs5cEQA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 22:04:43 GMT
age: 80423
etag: "2d90ff66079e8ffbaaa367a6bfc08927e7cc424d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9f88d70-47ed-4a86-9b90-ea63f189df00.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.9 kB (5902 bytes)
Hash
94a390953f36bf9902cb9f04007c36c1
13535f16f207d4c19c1b6019757f6739a4531eeb
37d73300955a979e5b9d3dabc6e924c4e9734c6c63d92c42c709f8cb0d5aeabb

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9f88d70-47ed-4a86-9b90-ea63f189df00.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5902
x-amzn-requestid: 9c8be25c-9c96-4861-89c8-8b7bf06ffc16
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdNBrH2DoAMFqbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec20a-6c770a86581d1f7f4599684f;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:43:38 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: T6_3oJ8lEFeYF3wFDvIVfSRZbILHdbpDuAd50fwkzcYji2yVLUQkmQ==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 21:44:57 GMT
age: 81609
etag: "13535f16f207d4c19c1b6019757f6739a4531eeb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F073ec866-b693-4f96-82bf-76ba051797c9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.6 kB (6577 bytes)
Hash
faa8e3cf2ab3c1d53a1735def5bb7476
ccc1ec5ebb5090c6255dcb1e8899e95cdd91e12f
e81a8fa312ec478871427f1d04ba7fe563573c683809153f75dec8df979d6efe

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F073ec866-b693-4f96-82bf-76ba051797c9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6577
x-amzn-requestid: b4587cfb-6041-453c-9e74-fa35ecd31448
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMjIGHRoAMF26g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec147-29e7ec741b0e6f6f674aef75;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 2y97S3ITb7MLXuIIAQfCCKjgvOXisdCT5mod7OD588LOhPCy_OrUXQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 22:02:21 GMT
age: 80565
etag: "ccc1ec5ebb5090c6255dcb1e8899e95cdd91e12f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe8955e1-907b-43ed-a437-d4ad1f5fe742.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.5 kB (5478 bytes)
Hash
38e32fc94c445ff47da5d2907e61e3a4
c76588ccaf97fdfd6e73833083200cb49a01a4af
e4e3947b2248206c9dacfd35ff5619ca3b3ae56a7bcd565d40ed048839ffa075

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe8955e1-907b-43ed-a437-d4ad1f5fe742.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5478
x-amzn-requestid: c06e47c6-da2a-4a70-af2a-c1268557b913
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdM67FEEIAMF-pA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec1df-0628d00244323ddf727e0b80;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:42:55 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 3zeJU6wVmWDIbVDBlTYvTh8e78isxbmNC0GKWdKqdI5abbdERoyzpA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 22:23:30 GMT
age: 79296
etag: "c76588ccaf97fdfd6e73833083200cb49a01a4af"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.arabs4.net/pc/

92.205.12.81

200 OK

145 B

URL HTTP/1.1
www.arabs4.net/pc/
IP
92.205.12.81:0
ASN
#21499 Host Europe GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
145 B (145 bytes)
Hash
960be881f98ea294ec62bd81c77d2dfe
b0162dde6c1346bf8a9b0185ed56c05ee22daeda
c3f7b2ba43b5ee8e6031e316d5f94c7a1d2fe3cc8aef2851a648af4f92b028c0

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /pc/ HTTP/1.1
Host: www.arabs4.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 20:25:06 GMT
Server: Apache
Last-Modified: Fri, 26 Aug 2022 20:50:22 GMT
ETag: "c63c23-da-5e72b100b171b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 145
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/html

34.120.237.76

200 OK

9.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d4e929-d0bb-41b7-bdcd-0e67258b428a.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.0 kB (9012 bytes)
Hash
516f1bfefb1c1a737ea2441f85343b32
0cc22d7bf9092fb30f31e2ca8f242c197b891669
733824d4f6f7c5b54ce4e02ecaf152cfc1e10f3f6a801d7e2c55a02460e40087

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d4e929-d0bb-41b7-bdcd-0e67258b428a.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9012
x-amzn-requestid: 83eac9e7-5387-4e11-9769-182fa3f7fffb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdNC6FxzoAMF80w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec212-5ca277b90a5a9a4c437edc1e;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:43:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 7wqdiuomEgaQlE1P5gopDGXbAkmh3ohPXYDcBWczuYFEcj8nczk9_w==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 21:52:57 GMT
age: 81129
etag: "0cc22d7bf9092fb30f31e2ca8f242c197b891669"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
7dd18d843737847b055768ffa76b1657
a5091c4fa52e2fb285fce3f5f25c9dc006a16cf6
a3d9dda0f720726f9dee35b722ffa65d80cfc3c6190efea4b92d403733cfd254

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=146508
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 20:25:06 GMT
Etag: "636f9a6e-118"
Expires: Mon, 14 Nov 2022 13:06:54 GMT
Last-Modified: Sat, 12 Nov 2022 13:06:54 GMT
Server: nginx
Content-Length: 280

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
7dd18d843737847b055768ffa76b1657
a5091c4fa52e2fb285fce3f5f25c9dc006a16cf6
a3d9dda0f720726f9dee35b722ffa65d80cfc3c6190efea4b92d403733cfd254

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: max-age=146508
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 20:25:07 GMT
Etag: "636f9a6e-118"
Expires: Mon, 14 Nov 2022 13:06:55 GMT
Last-Modified: Sat, 12 Nov 2022 13:06:54 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 280

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
34472f17f9cd23793867a086b79123eb
99d1c5daa2df47b411e7f16887631328f39f394c
50f4641840cc3bba519e64b10aec8e24471d4f090c9723aae1a04c9a157c1422

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 20:25:07 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 10 Nov 2022 20:58:29 GMT
Expires: Thu, 17 Nov 2022 20:58:28 GMT
Etag: "99d1c5daa2df47b411e7f16887631328f39f394c"
Cache-Control: max-age=433400,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7691febf9c6fb4f3-OSL

ocsp.sca1b.amazontrust.com/

54.230.245.39

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.39:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
5045b6d3220ad4b56c3ba9088794adb1
a9b1fb7b722374e6b5cb75ba23d61285b3ec703a
724011da950a4cc0cc51b160d3117c03d9b16361d3b64b1fc25ab4a9c269078a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=128849
Date: Sat, 12 Nov 2022 20:25:08 GMT
Etag: "636f3c41-1d7"
Expires: Mon, 14 Nov 2022 08:12:37 GMT
Last-Modified: Sat, 12 Nov 2022 06:25:05 GMT
Server: ECS (nyb/1D35)
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: YTFbNrESRC_AzYL0j78G9xjl9bnmwgSUp27e-kWzMKXU05qyv4zCBg==
Age: 6452

www.getgx.net/cmp/TXP7QH/P6QLHR/?sub1=150_2476&sub2=6370012326821d0001447e70

107.21.163.80

200 OK

239 B

URL HTTP/2
www.getgx.net/cmp/TXP7QH/P6QLHR/?sub1=150_2476&sub2=6370012326821d0001447e70
IP
107.21.163.80:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with no line terminators
Size
239 B (239 bytes)
Hash
60d833dccf5db20a57556756d45883e7
5d4ec5ced3350083f1d6d2001306aaee336fa3a4
fb51d2c9c72c9b3fa15d489a3e68afb2a79e95ed0827f33d108cfd31ecbc9400

HTTP Headers

GET /cmp/TXP7QH/P6QLHR/?sub1=150_2476&sub2=6370012326821d0001447e70 HTTP/1.1
Host: www.getgx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 12 Nov 2022 20:25:08 GMT
content-type: text/html
content-length: 239
apigw-requestid: bgUduhQ-oAMEMDg=
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

313 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
313 B (313 bytes)
Hash
2dd168688eb3ec6e97a9ecb33db47919
7f21c9ed4502d4495b91dec7cea8fed5239dbbbe
1af63f5b14f53ce42eabe5aa57855fdec487d50523869457721345521bfe56c6

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5470
Cache-Control: max-age=113092
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 20:25:08 GMT
Etag: "636f028a-139"
Expires: Mon, 14 Nov 2022 03:50:00 GMT
Last-Modified: Sat, 12 Nov 2022 02:18:50 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 313

www.getgx.net/favicon.ico

107.21.163.80

204 No Content

17 B

URL HTTP/2
www.getgx.net/favicon.ico
IP
107.21.163.80:0
ASN
#14618 AMAZON-AES

File type
data
Size
17 B (17 bytes)
Hash
3db26952f71c1cd38df98a484aad1e1b
f95a4e246f8a99f28bf15be35fd7e8523a04a906
0e03964f971278af77c7bd792993940f5c2417a3c0568523ba8b9a46e78ae071

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.getgx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 204 No Content
date: Sat, 12 Nov 2022 20:25:08 GMT
apigw-requestid: bgUdygYRIAMEMDA=
X-Firefox-Spdy: h2

www.opera.com/gx

18.195.10.182

200 OK

20 kB

URL HTTP/2
www.opera.com/gx
IP
18.195.10.182:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2474)
Size
20 kB (20177 bytes)
Hash
6a1fce02892096b83753204a382c0af2
b79994abbf97cbc24ae352d720d9326762e0406a
621feff1b34979f0eed4497de3dabd52cecb10c8ea7e355ff3c3ce4599a6aa3c

HTTP Headers

GET /gx HTTP/1.1
Host: www.opera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 12 Nov 2022 20:25:08 GMT
content-type: text/html; charset=utf-8
content-length: 20177
content-language: en
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=3600
content-encoding: gzip
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=63072000; includeSubdomains; preload
content-security-policy: frame-ancestors 'self' https://*.opera.com; upgrade-insecure-requests;
accept-ranges: bytes
X-Firefox-Spdy: h2

smrturl.co/o/2476/53263332?s1=

172.67.197.247

200 OK

19 kB

URL HTTP/2
smrturl.co/o/2476/53263332?s1=
IP
172.67.197.247:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
19 kB (18996 bytes)
Hash
2b70eeda6373472425fba73b521d4224
05f81b0b13125659ea6be3b39d05f233e24d888a
a7752b21f8e6ff40e0eb329b93d3343edd738fb26118103e8d563f838d8f89fd

HTTP Headers

GET /o/2476/53263332?s1= HTTP/1.1
Host: smrturl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.arabs4.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 12 Nov 2022 20:25:07 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.11
set-cookie: dynamo_v_id=Vdb3f9bf9e3901; expires=Sun, 13-Nov-2022 20:25:06 GMT; Max-Age=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UJjb0xr%2FrcmavRm811uRAqoFUH6v1VzVArROqC5sy3wfgv1IBtIWEZu92Rpk0KHjX%2FaUCHaS6lqrXDAeLch3fA8bIh4eW1WCKdfMsMw5dCKTpjdUNfLXS9vAjWeD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7691feb83b021c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4b46bbcd35c85c4678b0e3e409bba3bc
bb0705335e28414345ad5fcdd61104cf2fbbbbc4
6c3df7e6d0a8491fe24c03df2ccba059ba2f84155a680a4a22f217d3870cff95

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 20:25:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--gx-cleaner@2x.43ff34bf1a7b.webp

23.32.85.11

200 OK

82 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--gx-cleaner@2x.43ff34bf1a7b.webp
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
RIFF (little-endian) data, Web/P image\012- data
Size
82 kB (82120 bytes)
Hash
43ff34bf1a7b9da9262052869fdfe267
4aef7aae9d6e65cb7388c988e9512f23fc651b47
55e8eb06cf3783ccd1956b633b8758dff5f61edc5c3adb7ae784506205b29bdc

HTTP Headers

GET /staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--gx-cleaner@2x.43ff34bf1a7b.webp HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: 1KEcHiawXRZLSEyw3YZd0EM/2+E7mj8j8bW3YmRHByyrGmV2HcVCDlf6gS0HPiNCptyXTnioTug=
x-amz-request-id: ZNQSVW4NPYA4Q6FR
last-modified: Thu, 10 Nov 2022 14:43:16 GMT
etag: "43ff34bf1a7b9da9262052869fdfe267"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: binary/octet-stream
server: AmazonS3
content-length: 82120
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx-mobile__android-iOS@2x.d190a54a25f9.webp

23.32.85.11

200 OK

113 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx-mobile__android-iOS@2x.d190a54a25f9.webp
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
RIFF (little-endian) data, Web/P image\012- data
Size
113 kB (112954 bytes)
Hash
d190a54a25f96e1356a94e2a868bd5be
2b5014cd95340eeee12f0759f94e47669a4616d9
20d4625716519bb627af5c27bc73dbcc630509a1052b9b3cc2cbcfbf5da9e7f7

HTTP Headers

GET /staticfiles/assets/images/sections/2021/hero-top/gx/gx-mobile__android-iOS@2x.d190a54a25f9.webp HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: RxK7x236nhJw8twoGOm6ISsVsThtvorhucHsKfW7N6KhH4xCmhXJDETAkklwwn0ykVODctfEHVY=
x-amz-request-id: 9F6G127PSYFDJ3HN
last-modified: Thu, 10 Nov 2022 14:43:16 GMT
etag: "d190a54a25f96e1356a94e2a868bd5be"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: binary/octet-stream
server: AmazonS3
content-length: 112954
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/logo/logo-o.64d9b43037de.svg

23.32.85.11

200 OK

2.0 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/logo/logo-o.64d9b43037de.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (583)
Size
2.0 kB (2001 bytes)
Hash
64d9b43037de76c75fa0a1a04d91f14e
6ddd1a7e4c4737f3cd4b3bbdb0ad2a4a435db36f
1ca4940630392e48936d86cddf6b9825123b775009c5e7451529a51939d9a2cc

HTTP Headers

GET /staticfiles/assets/images/logo/logo-o.64d9b43037de.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: vF0q3Gi/8zdewxLETU6igr0r4G7YGSEfdE1IY4PzV2xp+Evr3qcuRqqqrdytBOtTXqXAB9E0Oo4=
x-amz-request-id: 6R6NE5WT6WR9JA9H
last-modified: Thu, 10 Nov 2022 14:41:36 GMT
etag: "64d9b43037de76c75fa0a1a04d91f14e"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 2001
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/1x1px.91e42db1c66c.png

23.32.85.11

200 OK

68 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/1x1px.91e42db1c66c.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Size
68 B (68 bytes)
Hash
91e42db1c66c0b276abf6234dc50b2eb
c1986af3c26609b8b7d8933f99c51c1a89e9ea6b
63ef318d96b5d0d0ceba6e04a4e622b1158335cdc67c49e27839132c6f655058

HTTP Headers

GET /staticfiles/assets/images/1x1px.91e42db1c66c.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: MSDjvfi+rHtpYV2GrEXZop59X3Tz7Tz4bZCeHMGIreO5r4mgGhrks2NaHspjTprmT3KSw1/UfwQ=
x-amz-request-id: 6R6VPPC8HV138WDQ
last-modified: Thu, 10 Nov 2022 14:41:20 GMT
etag: "91e42db1c66c0b276abf6234dc50b2eb"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 68
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/components/download/googleplay/google-play--en.80d509fddb21.png

23.32.85.11

200 OK

4.1 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/components/download/googleplay/google-play--en.80d509fddb21.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 135 x 40, 8-bit/color RGBA, non-interlaced\012- data
Size
4.1 kB (4081 bytes)
Hash
80d509fddb2182e2f1ae810d1564350b
cf381f6397eaeee67de0c7688331df84de75ab94
c8b642906fd17e091c989e97daba4b86535f767b626985defa590ee16a9eeb30

HTTP Headers

GET /staticfiles/assets/images/components/download/googleplay/google-play--en.80d509fddb21.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: rAe7VEAFNteEG0UC0QOtVPzkF8njt/DD6wr2wHis1ES7bNEIJB52IgdzhTfvDcD05OlDGGTug20=
x-amz-request-id: 97WBG5QQN7KVRQ51
last-modified: Thu, 10 Nov 2022 14:41:24 GMT
etag: "80d509fddb2182e2f1ae810d1564350b"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 4081
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/components/download/appstore/app-store--en.b9be99738278.png

23.32.85.11

200 OK

2.1 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/components/download/appstore/app-store--en.b9be99738278.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 120 x 40, 8-bit/color RGBA, non-interlaced\012- data
Size
2.1 kB (2088 bytes)
Hash
b9be99738278f7a8b013b95357c44e41
0135cd915eb68954555be69a104f315715c4623e
c121fc6ebe5cfeb37fecb1da325083b1883f23f943dbcaef899fcc70d96be6e7

HTTP Headers

GET /staticfiles/assets/images/components/download/appstore/app-store--en.b9be99738278.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: eIsUnQpPorGWQROLZFxbTxumunvhN9PiiWrGyhhYdLORRWqxSCLZIGGNSrX7Bdohx245s71DvzU=
x-amz-request-id: BWN9VAS675P8JS68
last-modified: Thu, 10 Nov 2022 14:41:23 GMT
etag: "b9be99738278f7a8b013b95357c44e41"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 2088
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-corner.d792a0b181e4.svg

23.32.85.11

200 OK

812 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-corner.d792a0b181e4.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (450)
Size
812 B (812 bytes)
Hash
d792a0b181e44d9775e447f0d7e7d275
775d998808bbe5089dc8c42d1e6a372ffb0e0989
143f96acaffbd6ba05c61b7d02f01f7d330711f608a3f13f17b07a4c11542c8f

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-corner.d792a0b181e4.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: rAKQriIMCyetumSb/j0nMlOrAJyedyfYuiLoGYGl5fQVTLxZDKRr57D0WPt6dDjDa298r7LH6pw=
x-amz-request-id: 9F6XBJB3DNPG658P
last-modified: Thu, 10 Nov 2022 14:43:01 GMT
etag: "d792a0b181e44d9775e447f0d7e7d275"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 812
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-twitch.1294239c3c6e.svg

23.32.85.11

200 OK

1.3 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-twitch.1294239c3c6e.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1170)
Size
1.3 kB (1329 bytes)
Hash
1294239c3c6e1ec6e7dbe8e97c202db1
889e5cad02c367442a6bdb831905cf8f731b1fab
682faa2826cf95b7245ee2d7cbd878e1146a77a25db9eb93308417386734ecbe

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-twitch.1294239c3c6e.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: BIT6qmOTmfRrG8TzVHPMqG+1oSqEuzbjak7hCIFWhr8pcaOCS7xKDMHarcEGnANIcj7Y0tNeJ4A=
x-amz-request-id: 9F6S37ZH8CVMJNN1
last-modified: Thu, 10 Nov 2022 14:43:02 GMT
etag: "1294239c3c6e1ec6e7dbe8e97c202db1"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 1329
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/feature-promo/awesome-features--gx.572511a1be17.jpg

23.32.85.11

200 OK

165 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/feature-promo/awesome-features--gx.572511a1be17.jpg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2732x1356, components 3\012- data
Size
165 kB (165152 bytes)
Hash
572511a1be17382b08d59dad1b7ab48b
a3aa662de9020b5e33d032e8652ab9762ecf207c
6b543e1ea575c545cd5e940afc7197583cd0862c4c34c75175cf5a61fc0d5997

HTTP Headers

GET /staticfiles/assets/images/sections/2021/feature-promo/awesome-features--gx.572511a1be17.jpg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: nVT+wZUC0hJADdi5mobQEBCZ8SfsYOOICqcr7fF9cmQ7DLCa6ss+tHpqrI84MI3fxshcmiJJlrU=
x-amz-request-id: ZNQWHEA31SFHMT8Q
last-modified: Thu, 10 Nov 2022 14:43:00 GMT
etag: "572511a1be17382b08d59dad1b7ab48b"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 165152
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--mobile@2x.dad38e627140.webp

23.32.85.11

200 OK

48 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--mobile@2x.dad38e627140.webp
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
RIFF (little-endian) data, Web/P image\012- data
Size
48 kB (47722 bytes)
Hash
dad38e627140ad0b2d578c37f20e2421
8acbfdfaec92bbc532540419c342b68eec9b9f69
154dc8f94994a9e922c00c3b7d2edc875e0a37810db8366754eabdb2cb92aae9

HTTP Headers

GET /staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--mobile@2x.dad38e627140.webp HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: P08dhIjCXGC/XLaSHjB+omnFgGzgna7J9DCCu1Lwi3SS3VxcEFoRcDX7xfZvs49s0JV9J2gj4O4=
x-amz-request-id: 9F6WVHPC3E73PPY7
last-modified: Thu, 10 Nov 2022 14:43:17 GMT
etag: "dad38e627140ad0b2d578c37f20e2421"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: binary/octet-stream
server: AmazonS3
content-length: 47722
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--home.a3a32725c8c8.webp

23.32.85.11

200 OK

42 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--home.a3a32725c8c8.webp
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
RIFF (little-endian) data, Web/P image\012- data
Size
42 kB (42264 bytes)
Hash
a3a32725c8c8d27c18b89017f2e0689c
74ec7afc3cff917b2e4d48065d076d301fc2855a
1ba8613ae178fe9531ce8879e1a79af856a03ffe30b83b0d4c6c4812a61098c1

HTTP Headers

GET /staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--home.a3a32725c8c8.webp HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: WlVGViW/bjgEUmom6h5sr4AeXvYn27OE6D36UKPk6pipecqmQTqYPKpQqxH//8DFdULHRJKIwdU=
x-amz-request-id: E8ESG58SC6AGD96K
last-modified: Thu, 10 Nov 2022 14:43:16 GMT
etag: "a3a32725c8c8d27c18b89017f2e0689c"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: binary/octet-stream
server: AmazonS3
content-length: 42264
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--gx-mobile@2x.4aa1a438e946.webp

23.32.85.11

200 OK

38 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--gx-mobile@2x.4aa1a438e946.webp
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
RIFF (little-endian) data, Web/P image\012- data
Size
38 kB (37600 bytes)
Hash
4aa1a438e946907970930b7f2e04f644
77e2db6095a0b0491a3bd61b927b2cf8d7c6d523
5c0be912ca6292ddb33b0e5a4afcd89c8c9dd32026d77327944939e4bebfb4e0

HTTP Headers

GET /staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--gx-mobile@2x.4aa1a438e946.webp HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: Tce0RK7R2J0NjffcXiT9qQNnNSGEfv88D0gZbBbIpr/M7mxSh+LuJh/B+IBpfRNBqqfifJ+U36Q=
x-amz-request-id: 9F6Q2XZZTWTQCBCZ
last-modified: Thu, 10 Nov 2022 14:43:16 GMT
etag: "4aa1a438e946907970930b7f2e04f644"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: binary/octet-stream
server: AmazonS3
content-length: 37600
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__mobile--hero-section@2x.105801afec18.webp

23.32.85.11

200 OK

110 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__mobile--hero-section@2x.105801afec18.webp
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
RIFF (little-endian) data, Web/P image\012- data
Size
110 kB (109740 bytes)
Hash
105801afec185e88bf124ad6d2618d02
2ff3cf42a92114f07d5db760caadb27e55bd42f8
12aefc6c5ebb73b66b498923fa49c4e6682c74008a0ac39b15cd8ba77c71f562

HTTP Headers

GET /staticfiles/assets/images/sections/2021/hero-top/gx/gx__mobile--hero-section@2x.105801afec18.webp HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: cRlmtbzmajnFjs7C7tgkban9teP0s9nqXSxCKYoxfgAH6Wz451tEAbaJ5ogqiKvOGv9EWPnkBOY=
x-amz-request-id: KD3R0TTY41E2GFCR
last-modified: Thu, 10 Nov 2022 14:43:17 GMT
etag: "105801afec185e88bf124ad6d2618d02"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: binary/octet-stream
server: AmazonS3
content-length: 109740
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--light-mode.8bc14025ea3a.png

23.32.85.11

200 OK

89 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--light-mode.8bc14025ea3a.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1189 x 724, 8-bit colormap, non-interlaced\012- data
Size
89 kB (89267 bytes)
Hash
8bc14025ea3a0ab18e7a17f14d5ade40
a2e6cbac201d150b15f720843c46e6c517cdd7ab
aa70e36bc8059277ec3ca5d0686e2203a59d9757dfc081a588fed56673021220

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--light-mode.8bc14025ea3a.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: QxemNhNRfjs6OJIHUrlpPHa78Gn0sv+eM9akgv9MMtMRl9T/TwO5Yb3fLVSxaPPBtpl+RtvbBSg=
x-amz-request-id: ZNQG6JHBDARF51A5
last-modified: Thu, 10 Nov 2022 14:43:02 GMT
etag: "8bc14025ea3a0ab18e7a17f14d5ade40"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 89267
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-discord.b89c9e46e12b.svg

23.32.85.11

200 OK

3.0 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-discord.b89c9e46e12b.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2837)
Size
3.0 kB (2996 bytes)
Hash
b89c9e46e12b6b665b21a72981cef30e
d66d0535175370c5c09f2c625bfa9c85ae43bcad
b661b7660ce27ff5cec761f127d54e55407a4c0fa077e2aa3144038162c76328

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-discord.b89c9e46e12b.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: L3woBPV+esXSoSbw2xQqMw0ogpjc5/SYk/+Yty7YOtC4Q8x3fG5lskZI4zAUx+vhIU83NQsWQRk=
x-amz-request-id: P71XC9C3C6Z8E96X
last-modified: Thu, 10 Nov 2022 14:43:01 GMT
etag: "b89c9e46e12b6b665b21a72981cef30e"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 2996
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-player.a42c0ae4ed76.svg

23.32.85.11

200 OK

761 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-player.a42c0ae4ed76.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (348)
Size
761 B (761 bytes)
Hash
a42c0ae4ed762da17de858861b96bef8
1018ab188a623312eaceed0424273677076847d8
be0f6f54d74b85baee6b555db2d5712e03777398321179218d910aac37ad9626

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-player.a42c0ae4ed76.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: S1ipjZgtj8nvseCJEX93tLXyAos+NKA+8i4ofA0kQqLNLE7Uk1sudpYgDxiSGfKnkajSt2LwJcU=
x-amz-request-id: ZNQZGAAP9ZTFYV4V
last-modified: Thu, 10 Nov 2022 14:43:02 GMT
etag: "a42c0ae4ed762da17de858861b96bef8"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 761
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-messengers.6397357cb14f.svg

23.32.85.11

200 OK

1.7 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-messengers.6397357cb14f.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1511)
Size
1.7 kB (1669 bytes)
Hash
6397357cb14fcdfab3ffce4f712eb9ba
71154708c7b40499ecfb9ba7862b8622c64a0557
06339aa8c2995d399d0638b013663a45ef5832894fd867309d80123f907ba431

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-messengers.6397357cb14f.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: Bs3zq1tKtlj8viDtYRL/00iZSp4js1JqNBHl2BVs1K+xmvKKBubGsks/b3k7Cnly9vr35D9NU6M=
x-amz-request-id: ZNQNEV490S8PBKYP
last-modified: Thu, 10 Nov 2022 14:43:01 GMT
etag: "6397357cb14fcdfab3ffce4f712eb9ba"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 1669
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-pinboards.48f6e4ad3256.svg

23.32.85.11

200 OK

761 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-pinboards.48f6e4ad3256.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (348)
Size
761 B (761 bytes)
Hash
48f6e4ad32561fcb78f69310bda2c451
4cefcfeea8cd1d479d20a81265f3a7a5166fd861
894a71dc143541bb1971f445b5ffbe414a6afe148d60a1f610d85275a7217cf8

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-pinboards.48f6e4ad3256.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: wKQTnQHzh/utbcWCOc9ezdqyJi/sqPSLjxodlPqiV6DA9e3h5XlCxkSaWXlrKz43l6oYSYrt6FE=
x-amz-request-id: 9F6NPCB5H62TKVGP
last-modified: Thu, 10 Nov 2022 14:43:02 GMT
etag: "48f6e4ad32561fcb78f69310bda2c451"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 761
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-flow.9d1657372a18.svg

23.32.85.11

200 OK

316 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-flow.9d1657372a18.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
316 B (316 bytes)
Hash
9d1657372a18e601386840f55c06e0f7
effbda84c00b1fd5654d795029d5b2f750ebe5ee
f86719fdf19a15f80113732351a1821ec88695b7b72fde2d81b384cfd04c5147

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-flow.9d1657372a18.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: 29YdQ+VWOaSm9fmcxVn0llxryqU7R8PkcBPpeYOp0AcmKTY0N7ej9nacm5Pzf/8zJTZYlxS5UwM=
x-amz-request-id: NSG7A56DXBY5DSE7
last-modified: Thu, 10 Nov 2022 14:43:02 GMT
etag: "9d1657372a18e601386840f55c06e0f7"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 316
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-fast-navigation.15eab96ff33c.svg

23.32.85.11

200 OK

280 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-fast-navigation.15eab96ff33c.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
280 B (280 bytes)
Hash
15eab96ff33c8893e11fe42ba67692dc
6362ed9717ec730eb7b457ada3f2b0163cf90256
9df873830d74272e4435fadd4e2294712c3dd24c0d19adb86d10bde656ac991a

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-fast-navigation.15eab96ff33c.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: NEy3H1Yry+AKSGD586KcjABPvzDCzEOe4Hq5BrmdLOBKOgFFAztmlDJvWo0rKEva5JR9j0kNm9k=
x-amz-request-id: ZNQHHMCBQFQ73D3H
last-modified: Thu, 10 Nov 2022 14:43:01 GMT
etag: "15eab96ff33c8893e11fe42ba67692dc"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 280
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/logo/logo-and-name-negative.26081e42aa65.png

23.32.85.11

200 OK

12 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/logo/logo-and-name-negative.26081e42aa65.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 306 x 112, 8-bit/color RGBA, non-interlaced\012- data
Size
12 kB (12047 bytes)
Hash
26081e42aa65653accb46cf13eb880fe
cb89731851ed916c2e163620e99cd38e7943cc73
3cae222117086f887f9dbc3b04681ce01873749a9a55806cb8685af6b9ef14b5

HTTP Headers

GET /staticfiles/assets/images/logo/logo-and-name-negative.26081e42aa65.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: nNqQ9KjRrIdSO++F8zlAOnbt/mmUzzRGUTdKJRqaHb13GmFmMMDQr/JiBE30wtc+ZSxPwKvmKu4=
x-amz-request-id: KQT4MXBT6S4SHGJG
last-modified: Thu, 10 Nov 2022 14:41:36 GMT
etag: "26081e42aa65653accb46cf13eb880fe"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 12047
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--fast-navigation.c8d3273a941b.png

23.32.85.11

200 OK

46 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--fast-navigation.c8d3273a941b.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 732 x 666, 8-bit colormap, non-interlaced\012- data
Size
46 kB (46294 bytes)
Hash
c8d3273a941bb6d86cdcb4715d51d316
054a7d9eb88f0320a4ff768e271f7a42869883e9
d27e3d8d8edd6429733970d55a75621bca7fdcde185e3a37729952db85fce496

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--fast-navigation.c8d3273a941b.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: E5wN8M3vZaxvEYKT6/aPWsEUAnbeYuhOsJitnmicsQZ8nCZxV+TXejrXFnMxXQtmtK/Mbu5WIX4=
x-amz-request-id: BWN7DAARZRJFQ6A5
last-modified: Thu, 10 Nov 2022 14:43:02 GMT
etag: "c8d3273a941bb6d86cdcb4715d51d316"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 46294
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/theme-switcher/gx__color-theme--classic.27f61f65b2ce.png

23.32.85.11

200 OK

412 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/theme-switcher/gx__color-theme--classic.27f61f65b2ce.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 2378 x 1448, 8-bit colormap, non-interlaced\012- data
Size
412 kB (412407 bytes)
Hash
27f61f65b2ce85586550fe592d0f21e0
494849ea227b3c3e9b24729617c9d481ce91f603
117771cf06f8c025e2f67a556b3428758b3e7a2dc468d715efa4961cad92e052

HTTP Headers

GET /staticfiles/assets/images/sections/2021/theme-switcher/gx__color-theme--classic.27f61f65b2ce.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: WfPY06NK/EXzoZ0EZ51D/daOA4Z3kne+QidQNMkkeUj/qeJmdsD12nEW1PwJzypYwpo+t5IvhRI=
x-amz-request-id: C3YSH01F483Q5QM6
last-modified: Thu, 10 Nov 2022 14:43:53 GMT
etag: "27f61f65b2ce85586550fe592d0f21e0"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 412407
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--gx-corner.e3f653e6eafc.png

23.32.85.11

200 OK

146 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--gx-corner.e3f653e6eafc.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1189 x 724, 8-bit colormap, non-interlaced\012- data
Size
146 kB (145852 bytes)
Hash
e3f653e6eafc96fee812c59429064dbb
4573c82a833ddb3c7ab5da3d1392ccc36d4fed1c
57a65439c5b71c3f0c3036eaa550ddf46451bec1f5165a1a7b29b275975c45f6

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--gx-corner.e3f653e6eafc.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: XtlOfjnEyoEXFVwk/zNVERqMt+5zDxPVsmOJt2B+6bQhePh33RAfwrYp227KOtYOanOEVrcXm/I=
x-amz-request-id: ZNQMTMRC7ECN3Z2Q
last-modified: Thu, 10 Nov 2022 14:43:02 GMT
etag: "e3f653e6eafc96fee812c59429064dbb"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 145852
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--twitch.4f18d26dbbfe.png

23.32.85.11

200 OK

67 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--twitch.4f18d26dbbfe.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1177 x 675, 8-bit colormap, non-interlaced\012- data
Size
67 kB (67044 bytes)
Hash
4f18d26dbbfea1c39bcc4790d3ba5361
7f6b3efba188bcc2db3b8fb59d6c72f4d2d911dc
f7ea6f8265c161c9b37b13af614fc34e71788179269f89b55f5b556b1e8d479e

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--twitch.4f18d26dbbfe.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: UGKyYQ0w+QH++aUNCF+x9b+tXvLqvpbfD0kNC9ad4xBs7HWwLd2715Uf/vTTRfp69fzkBaB9kQY=
x-amz-request-id: ZNQRKD8MARY41D6D
last-modified: Thu, 10 Nov 2022 14:43:03 GMT
etag: "4f18d26dbbfea1c39bcc4790d3ba5361"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 67044
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--discord.98f286b87cb3.png

23.32.85.11

200 OK

94 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--discord.98f286b87cb3.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1177 x 675, 8-bit colormap, non-interlaced\012- data
Size
94 kB (93820 bytes)
Hash
98f286b87cb36972083556679bd4ffb5
be31174905eb26c710792e5a42c3e0f4993f990c
ac40791b94a635950ec28cf246b5400c9188f2b95a0962d1e757633a60e3e1ec

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--discord.98f286b87cb3.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: YvX6EDErHGFzzUWaJL04l6EoYepWjm/59bIi7TCVYoNMORXgGwhh7SrZLD5lAIt+gfo26/I8dzk=
x-amz-request-id: P71ZBPAGM9PJHPA8
last-modified: Thu, 10 Nov 2022 14:43:02 GMT
etag: "98f286b87cb36972083556679bd4ffb5"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 93820
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--player.2d9730bcfc30.png

23.32.85.11

200 OK

70 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--player.2d9730bcfc30.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1177 x 675, 8-bit colormap, non-interlaced\012- data
Size
70 kB (70255 bytes)
Hash
2d9730bcfc30c45ee308e90b3b771f40
21cf5ed07ced3485c712f851a089a2e868d1807b
e13f1ebc277bdba152bb58e35a06682fe279a003aaf65315754ffa406aa52866

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--player.2d9730bcfc30.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: LlCHiq918YcfnBihsU5G0hxxJzScP8PUnjTg1yrfAGpAn92bHWl+DaNATf4XmfOk3JwMrgmo0rI=
x-amz-request-id: ZNQMFYYWJX1KCW3W
last-modified: Thu, 10 Nov 2022 14:43:03 GMT
etag: "2d9730bcfc30c45ee308e90b3b771f40"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 70255
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--messengers.d391f6cb6597.png

23.32.85.11

200 OK

62 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--messengers.d391f6cb6597.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1177 x 675, 8-bit colormap, non-interlaced\012- data
Size
62 kB (61583 bytes)
Hash
d391f6cb6597d71c6c59b50e4394594d
58898cb99301582c6ce30a8e38d7571575a6978b
00faaec247f4770836b845e7762535d4f66cb60cf79f608ce3ea11fd07be5d02

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--messengers.d391f6cb6597.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: PyD9Pj6LMzjxuKI3L4kcbUyrHWLSCthxWilEz9rK31Lpv67eJ7LxDH5RXUR7vo/kENGBYAjAeHQ=
x-amz-request-id: ZNQKPWRNWVBDJVP3
last-modified: Thu, 10 Nov 2022 14:43:02 GMT
etag: "d391f6cb6597d71c6c59b50e4394594d"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 61583
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--pinboards.e847bc384832.png

23.32.85.11

200 OK

115 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--pinboards.e847bc384832.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1177 x 675, 8-bit colormap, non-interlaced\012- data
Size
115 kB (115233 bytes)
Hash
e847bc384832792e93dccddf207f36ff
427c93356999dcf880951de0b5a3302748e8829f
7e08599def8a28a43b66943f7312c7d82f560eeeb1800ddf1865ebb507e5e2b4

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--pinboards.e847bc384832.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: w1Bs+YMbwtoQtvIBj7LXrSmB4uIiFLYy1GNnI9aInQpzdpXeMxOtRNjE9uhV2EsFYBf0vYZpUh8=
x-amz-request-id: ZNQWJFRRBR0F1YCA
last-modified: Thu, 10 Nov 2022 14:43:03 GMT
etag: "e847bc384832792e93dccddf207f36ff"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 115233
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--flow.b1416d774518.png

23.32.85.11

200 OK

92 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--flow.b1416d774518.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1177 x 697, 8-bit colormap, non-interlaced\012- data
Size
92 kB (91594 bytes)
Hash
b1416d77451842f5032b85c1c0edd933
ad576628be2723b4c5af04246f4438080dff70cb
5fd825ff2dfdf8a427c53a0548b5d730413e6357e2847038ca298d40c18a349d

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--flow.b1416d774518.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: JyFYT+rIWFjfmWhboeRwqGbUXZaW3b1IPasXJyKzN3o/5CnoxyG8Np3IExvEY6y7JTHp8N8n/Rg=
x-amz-request-id: 75B8RCYN4YN2QZKG
last-modified: Thu, 10 Nov 2022 14:43:02 GMT
etag: "b1416d77451842f5032b85c1c0edd933"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 91594
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/pages/gx2021/gaming-inspired-features-bg.71e6e11009a1.jpg

23.32.85.11

200 OK

331 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/pages/gx2021/gaming-inspired-features-bg.71e6e11009a1.jpg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1366x678, components 3\012- data
Size
331 kB (330707 bytes)
Hash
71e6e11009a13616c07acd52708a42c0
bca22f04ba54d8002c18bebaf97125ef04d9de1c
2b830c1c722fc8fda761975eb666574f5eb29958c502b614b32a2501ab564071

HTTP Headers

GET /staticfiles/assets/images/pages/gx2021/gaming-inspired-features-bg.71e6e11009a1.jpg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: iU/6HBrie+ZcYw80zW5VQ4wZmeDXCBTukxdevCSDt1xHFTr4lnROc+RZ6Na2oNxSJX7OOSjmLvw=
x-amz-request-id: BWN14GM86DJY66PE
last-modified: Thu, 10 Nov 2022 14:42:42 GMT
etag: "71e6e11009a13616c07acd52708a42c0"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 330707
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-light-mode.308d4dc03c30.svg

23.32.85.11

200 OK

471 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-light-mode.308d4dc03c30.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
data
Size
471 B (471 bytes)
Hash
e7dc2623cb841be51d3e8857e015d8e1
cbfdb2a7b965598de893fef89d47e17763501acf
df1fc0809a603469e6abcf1f07a13d792550d68c862f80e38c00e47e9b233a5b

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-light-mode.308d4dc03c30.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: bl86x/+pXaIcYzoK8LR7PMB2rjTGAz92R2X6VzMecA1HI6ShrS+hxb5vfltknIf9GiGuxfyQhCI=
x-amz-request-id: P71MXZ7SKPZF5AQS
last-modified: Thu, 10 Nov 2022 14:43:02 GMT
etag: "308d4dc03c30da17a579ca9db9fac5ac"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 477
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e7dc2623cb841be51d3e8857e015d8e1
cbfdb2a7b965598de893fef89d47e17763501acf
df1fc0809a603469e6abcf1f07a13d792550d68c862f80e38c00e47e9b233a5b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 20:25:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/feature-promo/awesome-features--gx__mobile.c8ecc394b852.jpg

23.32.85.11

200 OK

333 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/feature-promo/awesome-features--gx__mobile.c8ecc394b852.jpg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=5894, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2736], baseline, precision 8, 2736x5894, components 3\012- data
Size
333 kB (332762 bytes)
Hash
44f63b5fe738bac08e1875c4602f5935
c36e3472261e19c4230dbedf1d39d3d1b20fbf82
13d50a7dd51b4d53ae7759d813c86633727115e086af563dbd9c3b978eb54d6e

HTTP Headers

GET /staticfiles/assets/images/sections/2021/feature-promo/awesome-features--gx__mobile.c8ecc394b852.jpg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: P+F+pc4zTq/mDrwEXUdROPShV9uyukHf4vyuBdRgfERd0G5ikS2XGI4v4NXts8iDJum6Ay0WiHg=
x-amz-request-id: 9F6SQNPNXP28QCRQ
last-modified: Thu, 10 Nov 2022 14:43:00 GMT
etag: "c8ecc394b852869c3f8d196e06a15b44"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 64529
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/098459c4b473cf0b98bd.ff298eae6d4b.svg?28626ed59467

23.32.85.11

200 OK

903 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/098459c4b473cf0b98bd.ff298eae6d4b.svg?28626ed59467
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (631)
Size
903 B (903 bytes)
Hash
ff298eae6d4b58dd53105f5934057dfd
3d8e26c3a460aca357ff6fe0576d6d986f257fd6
5c38b1f4d4183c82ef0f20b45ec1179853cd0a5edc8f28d7fa22c38e30e1aa34

HTTP Headers

GET /staticfiles/098459c4b473cf0b98bd.ff298eae6d4b.svg?28626ed59467 HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.ec56733d9f05.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: W66DrUjEUjulnkJEpWJ8M6voAeaEp9ySPQubsPYMUi2RDi8A/PGDUSTMT74eR8Bnmy79IF4GXbM=
x-amz-request-id: 6Z0ZQQATJMXXD4A8
last-modified: Thu, 10 Nov 2022 14:40:39 GMT
etag: "ff298eae6d4b58dd53105f5934057dfd"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 903
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-N7XDW7Z

142.250.74.168

200 OK

62 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-N7XDW7Z
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (6239)
Size
62 kB (62236 bytes)
Hash
7e827be0bc418e7bcc3399faedb228f5
53e19e89e2a3babfa1e8f4a2976407c427a74801
23dbc4ef9b0f605ea11ca11d51fe1ff124488c9a20c4f0b0b0244ca903b7bc45

HTTP Headers

GET /gtm.js?id=GTM-N7XDW7Z HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 12 Nov 2022 20:25:09 GMT
expires: Sat, 12 Nov 2022 20:25:09 GMT
cache-control: private, max-age=900
last-modified: Sat, 12 Nov 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 62236
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4b46bbcd35c85c4678b0e3e409bba3bc
bb0705335e28414345ad5fcdd61104cf2fbbbbc4
6c3df7e6d0a8491fe24c03df2ccba059ba2f84155a680a4a22f217d3870cff95

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 20:25:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn-production-opera-website.operacdn.com/staticfiles/ceea05a3b44c58dc8922.bf6c5c46bc1d.svg?28626ed59467

23.32.85.11

200 OK

215 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/ceea05a3b44c58dc8922.bf6c5c46bc1d.svg?28626ed59467
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
215 B (215 bytes)
Hash
bf6c5c46bc1d32ae585d861b5242624a
c8d345b01e92b22f0af5666f44517dac62881cac
f4b0be45725dbe8fce1e9a3fe3863017751932a3d146caf8eeb623e0c26c0f3f

HTTP Headers

GET /staticfiles/ceea05a3b44c58dc8922.bf6c5c46bc1d.svg?28626ed59467 HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.ec56733d9f05.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: nsqer3uit31LACezSPeJquqNIPicO+Q6SePU3nGAGRz81Wj4GaidvROJruwNEvvLBm44q0OI2HA=
x-amz-request-id: 6Z0YATJT1M1NHVMV
last-modified: Thu, 10 Nov 2022 14:44:05 GMT
etag: "bf6c5c46bc1d32ae585d861b5242624a"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 215
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/0e22678c7dcde0767402.00fd023076a3.svg?e1aebb513472

23.32.85.11

200 OK

314 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/0e22678c7dcde0767402.00fd023076a3.svg?e1aebb513472
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
314 B (314 bytes)
Hash
00fd023076a318efa2524ed7e8749adf
78505b0f17acdce6e50f56d12194644dcdd2f1e7
25167a3893b9f0d9945ae401c2f1a39def06a7e8fa7b69adb9b69ff588f6a6b3

HTTP Headers

GET /staticfiles/0e22678c7dcde0767402.00fd023076a3.svg?e1aebb513472 HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.ec56733d9f05.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: blWLrXGXcpIyfZ+da80Dk1BLvnkvx6f2wsi9z5dPRZAMRLea2MoQwkm2m4iv2d+oiDtzE83F090=
x-amz-request-id: 6Z0H6YK7A8DM3BT5
last-modified: Thu, 10 Nov 2022 14:40:39 GMT
etag: "00fd023076a318efa2524ed7e8749adf"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 314
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/e3dd22e17cfd6b5c8151.17a59627c976.svg?0c037d2e1607

23.32.85.11

200 OK

1.6 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/e3dd22e17cfd6b5c8151.17a59627c976.svg?0c037d2e1607
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1443)
Size
1.6 kB (1595 bytes)
Hash
17a59627c976f0dd4c1a65023f677bcc
1a92c5ce81718a9a62ca46e71f2285523315e886
8b3de6575e969b75d53638e8d40717fa73ad85ef2ebc6ad04080116060a52a7b

HTTP Headers

GET /staticfiles/e3dd22e17cfd6b5c8151.17a59627c976.svg?0c037d2e1607 HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.ec56733d9f05.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: EIfFnuyz/8kEFu2v3BY3MUL2ikv8gIzV/DRfpEZ9iY8O2aErSUqfj9RQ1ia9VEhGtKBqHcLHZQI=
x-amz-request-id: 6Z0XGGQ5G6ZNYF4R
last-modified: Thu, 10 Nov 2022 14:44:06 GMT
etag: "17a59627c976f0dd4c1a65023f677bcc"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 1595
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/18c29e0508b0f594389b.7624d1fea1cc.svg?e1aebb513472

23.32.85.11

200 OK

720 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/18c29e0508b0f594389b.7624d1fea1cc.svg?e1aebb513472
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (538)
Size
720 B (720 bytes)
Hash
7624d1fea1cce77c2ee117b788b03e1a
060ed0a46d61ee5311bd51e33d2626b619f43eb2
e4cffcca8616bcbebc274b51458e235f7b15cfceb6bc6ee0997e3d506e14a99a

HTTP Headers

GET /staticfiles/18c29e0508b0f594389b.7624d1fea1cc.svg?e1aebb513472 HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.ec56733d9f05.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: +YmXE9lM0RJ1jrgKelsQ2yya3VVT8NENL6TGdpHt3wD+aqDiyCbq22p+zRqY/NWV8uYFLQvc4uI=
x-amz-request-id: 6Z0Q6C9326CP54SF
last-modified: Thu, 10 Nov 2022 14:40:40 GMT
etag: "7624d1fea1cce77c2ee117b788b03e1a"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 720
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/d9a4f53cf4619114d575.dc9f0582852c.svg?e1aebb513472

23.32.85.11

200 OK

199 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/d9a4f53cf4619114d575.dc9f0582852c.svg?e1aebb513472
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
199 B (199 bytes)
Hash
dc9f0582852c528b15eec2d982b7950c
1a0223d7da92444083348e54ff06e8d8a16ccd7f
cc982158f436a87b02539669d4e03e6d7eb408d633d98ced5a0de2d025421d94

HTTP Headers

GET /staticfiles/d9a4f53cf4619114d575.dc9f0582852c.svg?e1aebb513472 HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.ec56733d9f05.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: d7TgSuHCxZ2FT1Yx/Ij/MIm9xQaEey053hOU8z1CTY7v3N8P8peasY3SWnt4hujy7bQZl7JxIiA=
x-amz-request-id: 6Z0H6PZNPP12XZ1M
last-modified: Thu, 10 Nov 2022 14:44:06 GMT
etag: "dc9f0582852c528b15eec2d982b7950c"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 199
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/6ac3b1b2384a16da6bd0.797bada37d41.svg?28626ed59467

23.32.85.11

200 OK

289 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/6ac3b1b2384a16da6bd0.797bada37d41.svg?28626ed59467
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
289 B (289 bytes)
Hash
797bada37d414f7af636e9a9b3c565fa
7327310da6b0ba6ae8557196f7d020abba58a0f9
8f1fb4db42c83907bd12f03f51431a402a70e8fa2a18efe3285ad61c39e2412a

HTTP Headers

GET /staticfiles/6ac3b1b2384a16da6bd0.797bada37d41.svg?28626ed59467 HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.ec56733d9f05.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: rBb1uuwEi4fya26Xh6TDh+EyzhOsKw1wu5SfLj3tHPf+XlS871HazbC1XG6NClVOJZVAaXMKTC4=
x-amz-request-id: 6Z0Q0BDXHGK4G0S7
last-modified: Thu, 10 Nov 2022 14:40:45 GMT
etag: "797bada37d414f7af636e9a9b3c565fa"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 289
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/c2a2cff7f6d5729f28f4.75084611d5e1.svg?e1aebb513472

23.32.85.11

200 OK

288 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/c2a2cff7f6d5729f28f4.75084611d5e1.svg?e1aebb513472
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
288 B (288 bytes)
Hash
75084611d5e1fb181a82b45ef0611a23
a11d0d14b3358250a1e1d47356fd921c2220f1c1
1b1d5a0dcc955ba923b5c5606b37bef48356ef93f3e0c1ca875f6b32aba99ece

HTTP Headers

GET /staticfiles/c2a2cff7f6d5729f28f4.75084611d5e1.svg?e1aebb513472 HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.ec56733d9f05.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: gxXsFTR3fvsyFCB0M+KRWwcNkm+8Pg4sKKMoP/rcoT0n1UeUbKl7oVl5UDggWCfaJDpD7+ODmp0=
x-amz-request-id: 6Z0PYBN6JZEHXAPA
last-modified: Thu, 10 Nov 2022 14:44:05 GMT
etag: "75084611d5e1fb181a82b45ef0611a23"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 288
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/ca10b4ba81ca6a0ecbfc.1ca90acc4730.svg?28626ed59467

23.32.85.11

200 OK

317 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/ca10b4ba81ca6a0ecbfc.1ca90acc4730.svg?28626ed59467
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
317 B (317 bytes)
Hash
1ca90acc4730203b0ef170a977a1c637
5163f7e10d7bd1b408022aeb65bf8d6436e8ebb5
51ce7c5980ff8bd3f3864c3eaaacb00c2a54d12e4dd16b2dd360554f0f3c1256

HTTP Headers

GET /staticfiles/ca10b4ba81ca6a0ecbfc.1ca90acc4730.svg?28626ed59467 HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.ec56733d9f05.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: NOIwBxV0pmcX2BVQC/3CUJpn+jJXgmsappP+TdYQJQypa+mI+jdaUFAJPsLe/66lqPzXOHWptP4=
x-amz-request-id: 6Z0Q8F9BRBQ3PE26
last-modified: Thu, 10 Nov 2022 14:44:05 GMT
etag: "1ca90acc4730203b0ef170a977a1c637"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 317
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/48f02833f0ae8d75d392.dae9ad1b8182.svg?e1aebb513472

23.32.85.11

200 OK

812 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/48f02833f0ae8d75d392.dae9ad1b8182.svg?e1aebb513472
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (649)
Size
812 B (812 bytes)
Hash
dae9ad1b81823c9cd4280d89b21c7d61
db3ddc56a61d39b4097dc6cbf73ea9b771a08e46
50923adbf480507f490a925bb589fe9389d3865ca40d15bc4a5ffb96e27df210

HTTP Headers

GET /staticfiles/48f02833f0ae8d75d392.dae9ad1b8182.svg?e1aebb513472 HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.ec56733d9f05.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: ungoXq6lu6+DQPP3kDvNQHHWaRiYR1KHFVcOZRQnZX8E+RrTPhrPlq/KPTh/g2xeWCrLb9Kz0k4=
x-amz-request-id: 6Z0M5HARWT9MTFVA
last-modified: Thu, 10 Nov 2022 14:40:42 GMT
etag: "dae9ad1b81823c9cd4280d89b21c7d61"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 812
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/cca288e4bb33a3c6dec1.dab90a462c49.svg?28626ed59467

23.32.85.11

200 OK

176 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/cca288e4bb33a3c6dec1.dab90a462c49.svg?28626ed59467
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
176 B (176 bytes)
Hash
dab90a462c4945afb54399ed84a34ba2
ff9049f42ac86fda9608f8c94c61d754994d0976
ea2eb115d15d9c1b853ed968d6591f07f0c5d4b2dd1f2621a3999015d746b215

HTTP Headers

GET /staticfiles/cca288e4bb33a3c6dec1.dab90a462c49.svg?28626ed59467 HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.ec56733d9f05.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: 98MjDyw5xJNk5cp8FL5bnGsZkTJfkY5Q9MJxtREfU9DeRoOmXlTTH+5ED0zaQ9IGvKTENY2wNVA=
x-amz-request-id: 6Z0R0Q6KEH23F00M
last-modified: Thu, 10 Nov 2022 14:44:05 GMT
etag: "dab90a462c4945afb54399ed84a34ba2"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 176
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-PRBZ42F

142.250.74.168

200 OK

108 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-PRBZ42F
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (50672)
Size
108 kB (107649 bytes)
Hash
897b7c7a24579439bf69d124ec4459db
f1c6d7067dd7eda4288562c4f72b5985e5ab597a
e9118d1ba26da0c00b7c7fd59f0299462444018bb762e9184a906fd0c95c0ecb

HTTP Headers

GET /gtm.js?id=GTM-PRBZ42F HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 12 Nov 2022 20:25:09 GMT
expires: Sat, 12 Nov 2022 20:25:09 GMT
cache-control: private, max-age=900
last-modified: Sat, 12 Nov 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 107649
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/4c15b45e6b34651fef8a.3dc055b4d554.svg?28626ed59467

23.32.85.11

200 OK

176 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/4c15b45e6b34651fef8a.3dc055b4d554.svg?28626ed59467
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
176 B (176 bytes)
Hash
3dc055b4d554da5ab1c7a7e324a5897e
00e912ee8e024c83c09f58ce845b1905a521cca2
dcdc184e3e1f5efa0479c60dc714a8d04d54d72a39ac34815a36dc4c60c9739d

HTTP Headers

GET /staticfiles/4c15b45e6b34651fef8a.3dc055b4d554.svg?28626ed59467 HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.ec56733d9f05.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: UUzMjGZ9gBjjE2FRio6u7zI/wUHqAbImP9//O1Uv8BVPsC4cDKoy4SIoH1wE6RFFf6ylrCiwspg=
x-amz-request-id: 6Z0R36SH0Z20H7D2
last-modified: Thu, 10 Nov 2022 14:40:43 GMT
etag: "3dc055b4d554da5ab1c7a7e324a5897e"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 176
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e7dc2623cb841be51d3e8857e015d8e1
cbfdb2a7b965598de893fef89d47e17763501acf
df1fc0809a603469e6abcf1f07a13d792550d68c862f80e38c00e47e9b233a5b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 20:25:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.opera.com/api/geolocation/

18.195.10.182

200 OK

102 B

URL HTTP/2
www.opera.com/api/geolocation/
IP
18.195.10.182:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with no line terminators
Size
102 B (102 bytes)
Hash
8fddccad2d167f151cd234c5a572ea01
bb0b117d1117b73618c11e7bd511669ea6d78f45
da74941bee8050c64caa54baecf586a091fc35299055bb14d1869d5f18501aff

HTTP Headers

GET /api/geolocation/ HTTP/1.1
Host: www.opera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/gx
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 12 Nov 2022 20:25:09 GMT
content-type: application/json
content-length: 102
content-language: en
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=3600
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=63072000; includeSubdomains; preload
content-security-policy: frame-ancestors 'self' https://*.opera.com; upgrade-insecure-requests;
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e3f9965225cba49c71506d7dee4c1647
d1d30248236cfe679fa182860d69634d30f5b0ca
8a2641a2fa1026f8893b4acf7f7c78c633a1408779f3063c87ad292729300d97

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 20:25:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/chakrapetch/v9/cIflMapbsEk7TDLdtEz1BwkeJI91R5_F.woff2

216.58.207.195

200 OK

9.0 kB

URL HTTP/2
fonts.gstatic.com/s/chakrapetch/v9/cIflMapbsEk7TDLdtEz1BwkeJI91R5_F.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 8992, version 1.0\012- data
Size
9.0 kB (8992 bytes)
Hash
5ff3f8c069d7462a62ef1dada9c1406e
b3fbc64d485f06dfda7f1de61b0abd523f48a315
c6ccbd16dfaa5c559bd468ff0cca14f38e37100e35419a49cf4d3c6c23d2d163

HTTP Headers

GET /s/chakrapetch/v9/cIflMapbsEk7TDLdtEz1BwkeJI91R5_F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.opera.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8992
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Nov 2022 21:50:31 GMT
expires: Fri, 10 Nov 2023 21:50:31 GMT
cache-control: public, max-age=31536000
age: 167678
last-modified: Thu, 21 Apr 2022 18:18:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e3f9965225cba49c71506d7dee4c1647
d1d30248236cfe679fa182860d69634d30f5b0ca
8a2641a2fa1026f8893b4acf7f7c78c633a1408779f3063c87ad292729300d97

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 20:25:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/chakrapetch/v9/cIf6MapbsEk7TDLdtEz1BwkWn6pg.woff2

216.58.207.195

200 OK

8.9 kB

URL HTTP/2
fonts.gstatic.com/s/chakrapetch/v9/cIf6MapbsEk7TDLdtEz1BwkWn6pg.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 8912, version 1.0\012- data
Size
8.9 kB (8912 bytes)
Hash
8e4d50afa8b6e0eaa0aa76d40d4e92fa
73e1c8cde3ddef7eaa9feab943b749d7f3eba058
5452b4581af8fa4aa927665a835708f6298f75bfabeb99813ec585ec6bcfc494

HTTP Headers

GET /s/chakrapetch/v9/cIf6MapbsEk7TDLdtEz1BwkWn6pg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.opera.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8912
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Nov 2022 16:50:59 GMT
expires: Fri, 10 Nov 2023 16:50:59 GMT
cache-control: public, max-age=31536000
age: 185650
last-modified: Thu, 21 Apr 2022 18:53:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e3f9965225cba49c71506d7dee4c1647
d1d30248236cfe679fa182860d69634d30f5b0ca
8a2641a2fa1026f8893b4acf7f7c78c633a1408779f3063c87ad292729300d97

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 20:25:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/pages/client/welcomeGx/favicon/apple-touch-icon.cd7f66e4edc9.png

23.32.85.11

200 OK

4.7 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/pages/client/welcomeGx/favicon/apple-touch-icon.cd7f66e4edc9.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 180 x 180, 8-bit colormap, non-interlaced\012- data
Size
4.7 kB (4721 bytes)
Hash
cd7f66e4edc9eee902af0f50c1ca0236
031020df2108deb05f30a1dee9896dda7d39032b
026e5234ac8b8a77d9c322532e7beb3e91a8b5b2bb2ac1a17b9d2f0b45bae42a

HTTP Headers

GET /staticfiles/assets/images/pages/client/welcomeGx/favicon/apple-touch-icon.cd7f66e4edc9.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: lkzJPzZEawQ7R9TmwwNrss6MU1LE+MSDopIDahGjYAMoVDe5FfgY5oWsh3bnnx9y12fHwzp+dqg=
x-amz-request-id: 0GCCF6MEQXK9BB84
last-modified: Thu, 10 Nov 2022 14:42:34 GMT
etag: "cd7f66e4edc9eee902af0f50c1ca0236"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 4721
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/pages/client/welcomeGx/favicon/favicon-16x16.134fa45a8400.png

23.32.85.11

200 OK

1.0 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/pages/client/welcomeGx/favicon/favicon-16x16.134fa45a8400.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Size
1.0 kB (1015 bytes)
Hash
134fa45a8400d2f7246272b06d9b10de
3a9322216d1515d83b775510df41b2fd10e9d896
8abf10dee661f501e90bec03ec4501be24ca7a5a946b2e5658c8881fca6c5d46

HTTP Headers

GET /staticfiles/assets/images/pages/client/welcomeGx/favicon/favicon-16x16.134fa45a8400.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: NZ9m3zRkJ64nN7YFIeGDKLSmwCsDifB3x9gmQOBCmCs1WgTw2N9tSqnkDVW/rvRR44z5uhRLqBA=
x-amz-request-id: BWNE93J4AGS2GP2J
last-modified: Thu, 10 Nov 2022 14:42:35 GMT
etag: "134fa45a8400d2f7246272b06d9b10de"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 1015
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Chakra+Petch:400,700&subset=latin-ext

142.250.74.10

200 OK

961 B

URL HTTP/2
fonts.googleapis.com/css?family=Chakra+Petch:400,700&subset=latin-ext
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
961 B (961 bytes)
Hash
d10235df6dd197504f1f2d988db66194
b66fcd1d82e3dff81528e48f8362664c80b76ad4
94aa474ef1d594a90a8ef73ccf7aa81b24d4b276a613cbdabd156857e5e5f510

HTTP Headers

GET /css?family=Chakra+Petch:400,700&subset=latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 12 Nov 2022 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
825b44d24d8bc851404dded7ee683a42
2887c729f065c930e405c4d2a39132e4716701c0
09076a8b67da7f3a4fc47d793de28b62433a97dd68d9b1ffb27355c27fad9b14

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 20:25:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

connect.facebook.net/en_US/fbevents.js

31.13.72.12

200 OK

27 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64348)
Size
27 kB (27337 bytes)
Hash
0ac10debd3a9ea8147a26d045bb93e6e
ff45f3442508e8695f2303701682ebdb6e016464
5dee7b453b2c72c07ff1d62432493a044507835a8031ea62edf2fa7cc26219b9

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: PdKa79kzzhjp2QTaS0aQ7JSBuFhidA8IhqlKAJonEAWpahmfF6FukG/M/Wo3ZhMRwoMgLgqPxeOZEv+SRy9gxw==
content-length: 27337
x-fb-trip-id: 1904183273
date: Sat, 12 Nov 2022 20:25:09 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

11442918.fls.doubleclick.net/activityi;src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=2537862686255;gtm=2wgb90;auiddc=1896603554.1668284709;~oref=https%3A%2F%2Fwww.opera.com%2Fgx?

142.250.74.70

200 OK

241 B

URL HTTP/2
11442918.fls.doubleclick.net/activityi;src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=2537862686255;gtm=2wgb90;auiddc=1896603554.1668284709;~oref=https%3A%2F%2Fwww.opera.com%2Fgx?
IP
142.250.74.70:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (457), with no line terminators
Size
241 B (241 bytes)
Hash
f75d91ee77e0f7d75d1633c8bb79ce08
9f509c033fe2746e90f547d1036aa8cb3894672d
df40c0e6c4b6cdf226c109c04ee82a2b353b511d232b83730e841741af942944

HTTP Headers

GET /activityi;src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=2537862686255;gtm=2wgb90;auiddc=1896603554.1668284709;~oref=https%3A%2F%2Fwww.opera.com%2Fgx? HTTP/1.1
Host: 11442918.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 12 Nov 2022 20:25:09 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 241
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 12-Nov-2022 20:40:09 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
125323db3ff29b80f81fae08e2d58df6
5a407fed4d6d43f2a4ccc6d5168f147d7f2af4a2
6e100312be7aa9f36164adeb96b6cead8685c4c0a1d950334128f598b17a945b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3904
Cache-Control: max-age=132756
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 20:25:09 GMT
Etag: "636f5579-1d7"
Expires: Mon, 14 Nov 2022 09:17:45 GMT
Last-Modified: Sat, 12 Nov 2022 08:12:41 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sat, 12 Nov 2022 18:41:09 GMT
expires: Sat, 12 Nov 2022 20:41:09 GMT
cache-control: public, max-age=7200
age: 6240
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
825b44d24d8bc851404dded7ee683a42
2887c729f065c930e405c4d2a39132e4716701c0
09076a8b67da7f3a4fc47d793de28b62433a97dd68d9b1ffb27355c27fad9b14

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 20:25:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn.taboola.com/libtrc/unip/1410119/tfa.js

151.101.85.44

200 OK

18 kB

URL HTTP/2
cdn.taboola.com/libtrc/unip/1410119/tfa.js
IP
151.101.85.44:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (58535)
Size
18 kB (17961 bytes)
Hash
3ce6d3fe89cf73c7e3011d26d287f612
12fb58f8ebe9bcbe2994e353aca0848cc1ba1452
e085e820cf4e18ea8e0874fc76ad9e333242796f464658216f859964ff902be2

HTTP Headers

GET /libtrc/unip/1410119/tfa.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: oSgff0NiG/fA6ITJUsUdBOLpzqqFrUqsRsjjop4dkai13idZDCoNYsE7P6BDYRC4cSP1vSEzuS0=
x-amz-request-id: H4M4B1WVBQ3DSQ5Y
x-amz-replication-status: PENDING
last-modified: Sun, 06 Nov 2022 11:16:35 GMT
etag: "67c01e0531d7acdc10c15b0a8104a52f"
x-amz-version-id: 4h6KiFd_QpRExGFUDAlraCYHIHjLvk9l
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Sat, 12 Nov 2022 20:25:09 GMT
via: 1.1 varnish
age: 111
x-served-by: cache-bma1661-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1668284710.919681,VS0,VE0
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 2
content-length: 17961
X-Firefox-Spdy: h2

bat.bing.com/bat.js

204.79.197.200

200 OK

11 kB

URL HTTP/2
bat.bing.com/bat.js
IP
204.79.197.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type
Unicode text, UTF-8 text, with very long lines (39007), with no line terminators
Size
11 kB (11421 bytes)
Hash
22e2e3226eb5ada04929a2e43307eeda
04615fa88f80567974bdeb0f103ca5909746ebd7
41feebdfb0b03cd7fee2eb886adef6f3f1f85d3f14215e9a388d2a50e42efb9b

HTTP Headers

GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11421
content-type: application/javascript
content-encoding: gzip
last-modified: Wed, 09 Nov 2022 21:23:50 GMT
accept-ranges: bytes
etag: "077538f81f4d81:0"
vary: Accept-Encoding
set-cookie: MUID=2546B2A9E4C56AD814B9A0F3E5306B9C; domain=.bing.com; expires=Thu, 07-Dec-2023 20:25:09 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: BBBA2B5AB5A84833AA34688DB3819DD7 Ref B: OSL30EDGE0117 Ref C: 2022-11-12T20:25:09Z
date: Sat, 12 Nov 2022 20:25:09 GMT
X-Firefox-Spdy: h2

adservice.google.com/ddm/fls/i/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=2537862686255;gtm=2wgb90;auiddc=1896603554.1668284709;~oref=https%3A%2F%2Fwww.opera.com%2Fgx

142.250.74.98

200 OK

242 B

URL HTTP/2
adservice.google.com/ddm/fls/i/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=2537862686255;gtm=2wgb90;auiddc=1896603554.1668284709;~oref=https%3A%2F%2Fwww.opera.com%2Fgx
IP
142.250.74.98:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (456), with no line terminators
Size
242 B (242 bytes)
Hash
6e743cf5b7d14c63628570115759bac0
70ed5c17a2ec1dc0335246893b291bf13a68cf39
eee2d46bf8f9475b0be975628e671b0d85d0bec07ae8d71c2bd365220a2b2116

HTTP Headers

GET /ddm/fls/i/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=2537862686255;gtm=2wgb90;auiddc=1896603554.1668284709;~oref=https%3A%2F%2Fwww.opera.com%2Fgx HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11442918.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 12 Nov 2022 20:25:09 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 242
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
7178c97c15d49f214dd4e238628d8123
60c15885ccb9910621dd369fc0578a344bdab734
c668912ace8d705981ac3a28ffef7075f373ef1352b58d6384f44aae1c386baf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 20:25:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

script.hotjar.com/modules.b738078c6419b4df4360.js

54.230.111.44

200 OK

68 kB

URL HTTP/2
script.hotjar.com/modules.b738078c6419b4df4360.js
IP
54.230.111.44:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text, with very long lines (48714)
Size
68 kB (68482 bytes)
Hash
8f0c4297c2d458710337dddf28967bf3
d08ccfbb3663051f6b4c9cb5e04b545832d77906
4ad2290f9d61995edab85f4a0ac65d3134b6cba364b18b7f3047a939f3a775d3

HTTP Headers

GET /modules.b738078c6419b4df4360.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
content-length: 68482
date: Fri, 11 Nov 2022 12:14:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "8f0c4297c2d458710337dddf28967bf3"
last-modified: Fri, 11 Nov 2022 12:13:35 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KLOGNxVGa2FacVFFKleykTEKcMqHsFjRSSkzVPdzOA3uXzBBeNTPDQ==
age: 115864
X-Firefox-Spdy: h2

bat.bing.com/p/action/5063952.js

204.79.197.200

204 No Content

0 B

URL HTTP/2
bat.bing.com/p/action/5063952.js
IP
204.79.197.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /p/action/5063952.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=37A5862F73E16D3A38AA947572146C37; domain=.bing.com; expires=Thu, 07-Dec-2023 20:25:10 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-powered-by: ARR/3.0
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 8176F1CC8F6B42278B53946F3C39D265 Ref B: OSL30EDGE0117 Ref C: 2022-11-12T20:25:09Z
date: Sat, 12 Nov 2022 20:25:09 GMT
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-T18E1GTPQG&cid=1196647320.1668284709&gtm=2oeb90&aip=1&z=33725275

142.250.74.35

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-T18E1GTPQG&cid=1196647320.1668284709&gtm=2oeb90&aip=1&z=33725275
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-T18E1GTPQG&cid=1196647320.1668284709&gtm=2oeb90&aip=1&z=33725275 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 12 Nov 2022 20:25:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

bat.bing.com/action/0?ti=5063952&Ver=2&mid=175227a2-015d-4ee9-b283-675ed7fd29b9&sid=1a3c34e062c811ed83faab6c759c530d&vid=1a3c1bb062c811eda64f1dd9e6c04e55&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&p=https%3A%2F%2Fwww.opera.com%2Fgx&r=&lt=1051&evt=pageLoad&sv=1&rn=270743

204.79.197.200

204 No Content

0 B

URL HTTP/2
bat.bing.com/action/0?ti=5063952&Ver=2&mid=175227a2-015d-4ee9-b283-675ed7fd29b9&sid=1a3c34e062c811ed83faab6c759c530d&vid=1a3c1bb062c811eda64f1dd9e6c04e55&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&p=https%3A%2F%2Fwww.opera.com%2Fgx&r=&lt=1051&evt=pageLoad&sv=1&rn=270743
IP
204.79.197.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /action/0?ti=5063952&Ver=2&mid=175227a2-015d-4ee9-b283-675ed7fd29b9&sid=1a3c34e062c811ed83faab6c759c530d&vid=1a3c1bb062c811eda64f1dd9e6c04e55&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&p=https%3A%2F%2Fwww.opera.com%2Fgx&r=&lt=1051&evt=pageLoad&sv=1&rn=270743 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=0479F954402D676C3865EB0E41D866A9; domain=.bing.com; expires=Thu, 07-Dec-2023 20:25:10 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 99F5500E8CAD446092832B39FE5C277C Ref B: OSL30EDGE0117 Ref C: 2022-11-12T20:25:10Z
date: Sat, 12 Nov 2022 20:25:09 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e569acd833d180f3c2fba0919fbeb704
60a3121c9bf8e08a8a7fe70001c24b6f8c9981f5
994bee0670c93479c3e835985d24d7ce41fbc0a3013e173d79ea1ea5f63ac85c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 20:25:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

alb.reddit.com/rp.gif?ts=1668284709020&id=t2_378pcjv6&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=91ab9771-3ed6-49dc-ab8f-ac861d52d92a&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8

151.101.85.140

200 OK

42 B

URL HTTP/2
alb.reddit.com/rp.gif?ts=1668284709020&id=t2_378pcjv6&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=91ab9771-3ed6-49dc-ab8f-ac861d52d92a&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8
IP
151.101.85.140:0
ASN
#54113 FASTLY

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /rp.gif?ts=1668284709020&id=t2_378pcjv6&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=91ab9771-3ed6-49dc-ab8f-ac861d52d92a&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8 HTTP/1.1
Host: alb.reddit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Varnish
retry-after: 0
cross-origin-resource-policy: cross-origin
content-type: image/gif
accept-ranges: bytes
date: Sat, 12 Nov 2022 20:25:10 GMT
via: 1.1 varnish
content-length: 42
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
7178c97c15d49f214dd4e238628d8123
60c15885ccb9910621dd369fc0578a344bdab734
c668912ace8d705981ac3a28ffef7075f373ef1352b58d6384f44aae1c386baf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 20:25:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

vars.hotjar.com/box-c6ca1c87e308a39aabb76b56ba54398b.html

54.230.111.71

200 OK

1.0 kB

URL HTTP/2
vars.hotjar.com/box-c6ca1c87e308a39aabb76b56ba54398b.html
IP
54.230.111.71:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Size
1.0 kB (1035 bytes)
Hash
b6d25d1350d6a014d80689f389e76f97
a957e3d99790759f71a4d9e2fdaf819f60e8c569
fb2a1528b99d3eb4c9374642b5045efaf6e06666fdd48a55560a375449b01079

HTTP Headers

GET /box-c6ca1c87e308a39aabb76b56ba54398b.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Fri, 04 Nov 2022 12:22:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "b6d25d1350d6a014d80689f389e76f97"
last-modified: Fri, 04 Nov 2022 12:21:18 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Q4L8YsbCTWB6gYgd7yTpZfjJWytvafukFLjeCRpDzK1B8EWAAjKIsQ==
age: 720184
X-Firefox-Spdy: h2

www.facebook.com/tr/?id=471443751186133&ev=PageView&dl=https%3A%2F%2Fwww.opera.com%2Fgx&rl=&if=false&ts=1668284709197&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1668284709196.55805637&it=1668284709038&coo=false&rqm=GET

31.13.72.36

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=471443751186133&ev=PageView&dl=https%3A%2F%2Fwww.opera.com%2Fgx&rl=&if=false&ts=1668284709197&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1668284709196.55805637&it=1668284709038&coo=false&rqm=GET
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=471443751186133&ev=PageView&dl=https%3A%2F%2Fwww.opera.com%2Fgx&rl=&if=false&ts=1668284709197&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1668284709196.55805637&it=1668284709038&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 12 Nov 2022 20:25:10 GMT
X-Firefox-Spdy: h2

adservice.google.no/ddm/fls/i/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=2537862686255;gtm=2wgb90;auiddc=1896603554.1668284709;~oref=https%3A%2F%2Fwww.opera.com%2Fgx

142.250.74.66

302 Found

0 B

URL HTTP/2
adservice.google.no/ddm/fls/i/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=2537862686255;gtm=2wgb90;auiddc=1896603554.1668284709;~oref=https%3A%2F%2Fwww.opera.com%2Fgx
IP
142.250.74.66:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ddm/fls/i/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=2537862686255;gtm=2wgb90;auiddc=1896603554.1668284709;~oref=https%3A%2F%2Fwww.opera.com%2Fgx HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 12 Nov 2022 20:25:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://11442918.fls.doubleclick.net/ddm/fls/r/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=2537862686255;gtm=2wgb90;auiddc=1896603554.1668284709;~oref=https%3A%2F%2Fwww.opera.com%2Fgx
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

s.yimg.com/wi/config/10176867.json

188.125.94.204

200 OK

2 B

URL HTTP/2
s.yimg.com/wi/config/10176867.json
IP
188.125.94.204:0
ASN
#10310 YAHOO-1

File type
JSON data\012- , ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

HTTP Headers

GET /wi/config/10176867.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Origin: https://www.opera.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: G3F6GRSWV7AXY7EM
x-amz-id-2: pkHyRUxSGSY/LBeGa9ZhWY8yhHnWPQrIzQGSQf6Fxx6P3MPWcCziNm2eHCz18+BFOs/n1TDR4fg=
content-type: application/json
date: Sat, 12 Nov 2022 19:29:04 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
cache-control: public,max-age=3600
content-length: 2
age: 3366
strict-transport-security: max-age=15552000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
23dd8b12572b78e5d32d491b3d0d9d32
718c3e3abcc55c295c72e5ee4e5441fe5acc1363
f72c359246ea96d4f28bbc5aee8d4d24fcba9f47dfc691693f6c49e370d9b103

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 20:25:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-4118503-39&cid=1196647320.1668284709&jid=179938605&gjid=105743394&_gid=1334462777.1668284709&_u=YADAAEAAAAAAACAAI~&z=1953094396

142.251.1.157

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-4118503-39&cid=1196647320.1668284709&jid=179938605&gjid=105743394&_gid=1334462777.1668284709&_u=YADAAEAAAAAAACAAI~&z=1953094396
IP
142.251.1.157:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-4118503-39&cid=1196647320.1668284709&jid=179938605&gjid=105743394&_gid=1334462777.1668284709&_u=YADAAEAAAAAAACAAI~&z=1953094396 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Content-Type: text/plain
Content-Length: 0
Origin: https://www.opera.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://www.opera.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 12 Nov 2022 20:25:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
23dd8b12572b78e5d32d491b3d0d9d32
718c3e3abcc55c295c72e5ee4e5441fe5acc1363
f72c359246ea96d4f28bbc5aee8d4d24fcba9f47dfc691693f6c49e370d9b103

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 20:25:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
86d1ab5f5a5b326dd100a4bfcda8ceed
ed17be3586e93321dd2ab1a340ae41d6f86e293d
db7591e84a7adaa4ff3ddd38458e379bbb15751e31a10937c6202cba94a8c602

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 20:25:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-4118503-39&cid=1196647320.1668284709&jid=179938605&_u=YADAAEAAAAAAACAAI~&z=2140302401

142.250.74.164

200 OK

42 B

URL HTTP/2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-4118503-39&cid=1196647320.1668284709&jid=179938605&_u=YADAAEAAAAAAACAAI~&z=2140302401
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-4118503-39&cid=1196647320.1668284709&jid=179938605&_u=YADAAEAAAAAAACAAI~&z=2140302401 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 12 Nov 2022 20:25:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
56f73d46671416e78467be58979f7379
d62eaf6b5abdd80f083040cc09137b7236826f82
00d6cdaa9edd0ed41b8ec324c862bb270a5dd578315c1aa3d59ba8e5f03dc31b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 20:25:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googleadservices.com/pagead/conversion.js

142.250.74.34

200 OK

17 kB

URL HTTP/2
www.googleadservices.com/pagead/conversion.js
IP
142.250.74.34:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2772)
Size
17 kB (16828 bytes)
Hash
080101c86034190429b3ccd1331e0fb2
deb8f3401da26ea98e71b66054e7bb94ed121f2b
b39b03e064f4b2d9244e2a5bc28799b3e44e4b922a6fd94223140b6423576f81

HTTP Headers

GET /pagead/conversion.js HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11442918.fls.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sat, 12 Nov 2022 20:25:10 GMT
expires: Sat, 12 Nov 2022 20:25:10 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 8569919312416379547
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 16828
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
c7532175bdda623cb1f7d83c236772d4
71a1540c0d3e9acb10807b74b44228af537c6785
fba2db2a9be13aebe95a85d8c7086b97794e4ebc19781a967c4d157f78c4626a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 20:25:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googleadservices.com/pagead/conversion/10840821485/?random=1668284709465&cv=9&fst=1668284709465&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D2537862686255%3Bgtm%3D2wgb90%3Bauiddc%3D1896603554.1668284709%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4

142.250.74.34

200 OK

1.2 kB

URL HTTP/2
www.googleadservices.com/pagead/conversion/10840821485/?random=1668284709465&cv=9&fst=1668284709465&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D2537862686255%3Bgtm%3D2wgb90%3Bauiddc%3D1896603554.1668284709%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4
IP
142.250.74.34:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1970), with no line terminators
Size
1.2 kB (1157 bytes)
Hash
1e32a061809b7f3581c0ec27820214fc
c90f4c4c662c2893cf2eee4ef73d8d8da1ee6ea8
3b1fec96343b84d8b88458fa1b9d8813891f6463847aec01ea828b8dac51153e

HTTP Headers

GET /pagead/conversion/10840821485/?random=1668284709465&cv=9&fst=1668284709465&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D2537862686255%3Bgtm%3D2wgb90%3Bauiddc%3D1896603554.1668284709%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4 HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11442918.fls.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 12 Nov 2022 20:25:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1157
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

googleads.g.doubleclick.net/pagead/viewthroughconversion/10840821485/?random=1100885454&cv=9&fst=1668284709465&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D2537862686255%3Bgtm%3D2wgb90%3Bauiddc%3D1896603554.1668284709%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=JgFwY4f_E4G16wSKp59o&sscte=1&crd=

142.250.74.66

302 Found

42 B

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/10840821485/?random=1100885454&cv=9&fst=1668284709465&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D2537862686255%3Bgtm%3D2wgb90%3Bauiddc%3D1896603554.1668284709%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=JgFwY4f_E4G16wSKp59o&sscte=1&crd=
IP
142.250.74.66:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/viewthroughconversion/10840821485/?random=1100885454&cv=9&fst=1668284709465&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D2537862686255%3Bgtm%3D2wgb90%3Bauiddc%3D1896603554.1668284709%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=JgFwY4f_E4G16wSKp59o&sscte=1&crd= HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11442918.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 12 Nov 2022 20:25:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://www.google.com/pagead/1p-conversion/10840821485/?random=1100885454&cv=9&fst=1668284709465&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D2537862686255%3Bgtm%3D2wgb90%3Bauiddc%3D1896603554.1668284709%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=JgFwY4f_E4G16wSKp59o&random=735124682&resp=GooglemKTybQhCsO
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 12-Nov-2022 20:40:10 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

sp.analytics.yahoo.com/sp.pl?a=10000&d=Sat%2C%2012%20Nov%202022%2020%3A25%3A09%20GMT&n=0&b=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&.yp=10176867&f=https%3A%2F%2Fwww.opera.com%2Fgx&enc=UTF-8&yv=1.13.0&tagmgr=gtm

212.82.100.181

200 OK

43 B

URL HTTP/2
sp.analytics.yahoo.com/sp.pl?a=10000&d=Sat%2C%2012%20Nov%202022%2020%3A25%3A09%20GMT&n=0&b=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&.yp=10176867&f=https%3A%2F%2Fwww.opera.com%2Fgx&enc=UTF-8&yv=1.13.0&tagmgr=gtm
IP
212.82.100.181:0
ASN
#34010 Yahoo! UK Services Limited

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
bff56ce49dd485d195fdfa0a02342568
74fb4071deab7d3ab083562067b735df32c43397
0e4b1e428a2198ef747010c094101c257b568a97cdcc0f31ed5e9868cc835b39

HTTP Headers

GET /sp.pl?a=10000&d=Sat%2C%2012%20Nov%202022%2020%3A25%3A09%20GMT&n=0&b=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&.yp=10176867&f=https%3A%2F%2Fwww.opera.com%2Fgx&enc=UTF-8&yv=1.13.0&tagmgr=gtm HTTP/1.1
Host: sp.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 12 Nov 2022 20:25:10 GMT
expires: Sat, 12 Nov 2022 20:25:10 GMT
pragma: no-cache
cache-control: no-cache, private, must-revalidate
content-type: image/gif
accept-ranges: bytes
content-length: 43
server: ATS
age: 0
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: sandbox; default-src 'self'; script-src 'none'; object-src 'none'; report-uri http://csp.yahoo.com/beacon/csp?src=generic
set-cookie: A3=d=AQABBCYBcGMCEODwT65qXSYQJD8W-cHI1s0FEgEBAQFScWN5YwAAAAAA_eMAAA&S=AQAAAieCG3Em1BqDNR4uP64ZDzQ; Expires=Mon, 13 Nov 2023 02:25:10 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-T18E1GTPQG&gtm=2oeb90&_p=2111909517&_gaz=1&cid=1196647320.1668284709&ul=en-us&sr=1280x1024&_s=1&sid=1668284709&sct=1&seg=0&dl=https%3A%2F%2Fwww.opera.com%2Fgx&dt=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&en=page_view&_fv=1&_nsi=1&_ss=1

216.239.32.36

204 No Content

0 B

URL HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-T18E1GTPQG&gtm=2oeb90&_p=2111909517&_gaz=1&cid=1196647320.1668284709&ul=en-us&sr=1280x1024&_s=1&sid=1668284709&sct=1&seg=0&dl=https%3A%2F%2Fwww.opera.com%2Fgx&dt=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&en=page_view&_fv=1&_nsi=1&_ss=1
IP
216.239.32.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-T18E1GTPQG&gtm=2oeb90&_p=2111909517&_gaz=1&cid=1196647320.1668284709&ul=en-us&sr=1280x1024&_s=1&sid=1668284709&sct=1&seg=0&dl=https%3A%2F%2Fwww.opera.com%2Fgx&dt=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Origin: https://www.opera.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://www.opera.com
date: Sat, 12 Nov 2022 20:25:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3D6307d578-1bcb-d937-d114-a076ed15412b%26type%3D55%26m%3D7&ex-fch=416613&ex-src=https://www.opera.com/gx&ex-hargs=v%3D1.0%3Bc%3D586912600239599593%3Bp%3D6307D578-1BCB-D937-D114-A076ED15412B&cb=318435618792238460

52.46.151.131

302 Found

0 B

URL HTTP/1.1
s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3D6307d578-1bcb-d937-d114-a076ed15412b%26type%3D55%26m%3D7&ex-fch=416613&ex-src=https://www.opera.com/gx&ex-hargs=v%3D1.0%3Bc%3D586912600239599593%3Bp%3D6307D578-1BCB-D937-D114-A076ED15412B&cb=318435618792238460
IP
52.46.151.131:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /iu3?d=generic&ex-fargs=%3Fid%3D6307d578-1bcb-d937-d114-a076ed15412b%26type%3D55%26m%3D7&ex-fch=416613&ex-src=https://www.opera.com/gx&ex-hargs=v%3D1.0%3Bc%3D586912600239599593%3Bp%3D6307D578-1BCB-D937-D114-A076ED15412B&cb=318435618792238460 HTTP/1.1
Host: s.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11442918.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Server: Server
Date: Sat, 12 Nov 2022 20:25:10 GMT
Content-Length: 0
Connection: keep-alive
x-amz-rid: VDN85HZMQ5MT7RB090BK
Set-Cookie: ad-id=A52nezlHuUG2mJBLnhddIGA|t; Domain=.amazon-adsystem.com; Expires=Sat, 01-Jul-2023 20:25:10 GMT; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Location: https://s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3D6307d578-1bcb-d937-d114-a076ed15412b%26type%3D55%26m%3D7&ex-fch=416613&ex-src=https://www.opera.com/gx&ex-hargs=v%3D1.0%3Bc%3D586912600239599593%3Bp%3D6307D578-1BCB-D937-D114-A076ED15412B&cb=318435618792238460&dcc=t
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload

52.46.151.131

200 OK

65 B

URL HTTP/1.1
s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3D6307d578-1bcb-d937-d114-a076ed15412b%26type%3D55%26m%3D7&ex-fch=416613&ex-src=https://www.opera.com/gx&ex-hargs=v%3D1.0%3Bc%3D586912600239599593%3Bp%3D6307D578-1BCB-D937-D114-A076ED15412B&cb=318435618792238460&dcc=t
IP
52.46.151.131:0
ASN
#16509 AMAZON-02

File type
HTML document, ASCII text
Size
65 B (65 bytes)
Hash
22fdf49482d8200e8f305bbe262eff14
f254bd4053267c2cf46675613e689016d8b7f775
115d83ece49fd1c5769409aab9d78572eed86cd38a0556b4cdeeac82c83091d3

HTTP Headers

GET /iu3?d=generic&ex-fargs=%3Fid%3D6307d578-1bcb-d937-d114-a076ed15412b%26type%3D55%26m%3D7&ex-fch=416613&ex-src=https://www.opera.com/gx&ex-hargs=v%3D1.0%3Bc%3D586912600239599593%3Bp%3D6307D578-1BCB-D937-D114-A076ED15412B&cb=318435618792238460&dcc=t HTTP/1.1
Host: s.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://11442918.fls.doubleclick.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Server
Date: Sat, 12 Nov 2022 20:25:10 GMT
Content-Type: text/html;charset=ISO-8859-1
Content-Length: 65
Connection: keep-alive
x-amz-rid: 82MB6SJKS2P503SQN9VJ
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload

trc-events.taboola.com/1410119/log/3/unip?en=pre_d_eng_tb&tos=1568&scd=4&ssd=1&est=1668284709166&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1668284710739&vi=1668284709164&ri=dcbfcfef38ac8fadc69e6695e38ecc19&ref=null&cv=20221106-3-RELEASE&item-url=https%3A%2F%2Fwww.opera.com%2Fgx

141.226.228.48

204 No Content

0 B

URL HTTP/2
trc-events.taboola.com/1410119/log/3/unip?en=pre_d_eng_tb&tos=1568&scd=4&ssd=1&est=1668284709166&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1668284710739&vi=1668284709164&ri=dcbfcfef38ac8fadc69e6695e38ecc19&ref=null&cv=20221106-3-RELEASE&item-url=https%3A%2F%2Fwww.opera.com%2Fgx
IP
141.226.228.48:0
ASN
#200478 Taboola.com ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /1410119/log/3/unip?en=pre_d_eng_tb&tos=1568&scd=4&ssd=1&est=1668284709166&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1668284710739&vi=1668284709164&ri=dcbfcfef38ac8fadc69e6695e38ecc19&ref=null&cv=20221106-3-RELEASE&item-url=https%3A%2F%2Fwww.opera.com%2Fgx HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Origin: https://www.opera.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
server: nginx
date: Sat, 12 Nov 2022 20:25:11 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.opera.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2

static.hotjar.com/c/hotjar-445451.js?sv=7

54.230.111.8

200 OK

0 B

URL HTTP/2
static.hotjar.com/c/hotjar-445451.js?sv=7
IP
54.230.111.8:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /c/hotjar-445451.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Sat, 12 Nov 2022 20:25:09 GMT
cache-control: max-age=60
etag: W/37d61575535ec03bbb7175b9bb3b2bc8
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: I7ksyW7hqgK-nbjt-Lo02hfLzwFvkHFDDEnzRgOAj2S-ByXemjEXLw==
age: 14
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/CACHE/js/output.4eed9e3a0ded.js

23.32.85.11

200 OK

0 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/CACHE/js/output.4eed9e3a0ded.js
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /staticfiles/CACHE/js/output.4eed9e3a0ded.js HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: TduQ3U3hqYdg6hPNQtqQ6kmFYQVr4v8fvFGMwCgA3cnf3C59NStS1SfJq8UL3mi5WW6FT06hwcw=
x-amz-request-id: NA9PW36QQ330QK76
last-modified: Thu, 10 Nov 2022 14:41:17 GMT
etag: "6627048db830a186c56fdf21a66afe36"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 20:25:09 GMT
date: Sat, 12 Nov 2022 20:25:09 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

blue.redredirector.com/click?pid=150&offer_id=12346&sub1=Cdb78f95019192&sub2=150_2476&sub4=0

34.141.179.97

200 OK

0 B

URL HTTP/2
blue.redredirector.com/click?pid=150&offer_id=12346&sub1=Cdb78f95019192&sub2=150_2476&sub4=0
IP
34.141.179.97:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /click?pid=150&offer_id=12346&sub1=Cdb78f95019192&sub2=150_2476&sub4=0 HTTP/1.1
Host: blue.redredirector.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 12 Nov 2022 20:25:08 GMT
content-type: text/html; charset=utf-8
x-adjust-use-original-forwarded-for: 1
set-cookie: afclick=6370012326821d0001447e70; expires=Sun, 12 Nov 2023 20:25:08 GMT; secure; SameSite=None
afoffers={"12346":1668284708}; expires=Sun, 12 Nov 2023 20:25:08 GMT; secure; SameSite=None
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

s.yimg.com/wi/ytc.js

188.125.94.204

200 OK

0 B

URL HTTP/2
s.yimg.com/wi/ytc.js
IP
188.125.94.204:0
ASN
#10310 YAHOO-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: mu7M4dAK5u8o9wbhWB1m6zEzNUUs5GLEQDwzdXPPYvdBkDsrHgJjmvwm/kuhEPPi3ONIcRrRIZE=
x-amz-request-id: 1WVQDYCJGFK664WX
date: Sat, 12 Nov 2022 20:17:09 GMT
last-modified: Tue, 14 Jun 2022 12:21:31 GMT
x-amz-expiration: expiry-date="Thu, 20 Jul 2023 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "6a624022b5d271dcefb070b0b6670abc-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: .QD3nDfK79S8_ikLSJXTL23Tdis9tg0C
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 482
content-encoding: gzip
strict-transport-security: max-age=15552000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2

trc.taboola.com/1410119/trc/3/json?tim=1668284709175&data=%7B%22id%22%3A88%2C%22ii%22%3A%22%2Fgx%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1668284709164%2C%22cv%22%3A%2220221106-3-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.opera.com%2Fgx%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Doperasoftwarees-operasoftwarees-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1668284709175%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.opera.com%2Fgx%22%2C%22tos%22%3A4%2C%22ssd%22%3A1%2C%22scd%22%3A4%2C%22supv%22%3Atrue%7D%7D&pubit=i

151.101.85.44

200 OK

0 B

URL HTTP/2
trc.taboola.com/1410119/trc/3/json?tim=1668284709175&data=%7B%22id%22%3A88%2C%22ii%22%3A%22%2Fgx%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1668284709164%2C%22cv%22%3A%2220221106-3-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.opera.com%2Fgx%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Doperasoftwarees-operasoftwarees-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1668284709175%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.opera.com%2Fgx%22%2C%22tos%22%3A4%2C%22ssd%22%3A1%2C%22scd%22%3A4%2C%22supv%22%3Atrue%7D%7D&pubit=i
IP
151.101.85.44:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /1410119/trc/3/json?tim=1668284709175&data=%7B%22id%22%3A88%2C%22ii%22%3A%22%2Fgx%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1668284709164%2C%22cv%22%3A%2220221106-3-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.opera.com%2Fgx%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Doperasoftwarees-operasoftwarees-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1668284709175%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.opera.com%2Fgx%22%2C%22tos%22%3A4%2C%22ssd%22%3A1%2C%22scd%22%3A4%2C%22supv%22%3Atrue%7D%7D&pubit=i HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Sat, 12 Nov 2022 20:25:10 GMT
via: 1.1 varnish
x-served-by: cache-bma1661-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1668284710.055470,VS0,VE113
vary: Accept-Encoding
x-vcl-time-ms: 113
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (35)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP