Report - 1g0v.site/ar/?id=9510589

Report Overview

Submitted URL
1g0v.site/ar/?id=9510589
IP
66.29.153.49
ASN
#22612 NAMECHEAP-NET
Submitted
2022-11-18 05:56:51
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www.google.no	25607	2016-04-05T21:50:59Z	2023-03-10T07:09:08Z	479 B	694 B	142.250.74.35
www.facebook.com	99	2012-05-21T02:23:41Z	2021-02-04T00:31:35Z	755 B	349 B	31.13.72.36
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-10T12:25:49Z	416 B	746 B	142.250.74.10
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-10T05:12:35Z	413 B	5.8 kB	34.160.144.191
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-10T14:35:32Z	680 B	1.9 kB	104.18.32.68
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-10T13:03:15Z	758 B	171 kB	142.250.74.168
cdn.taboola.com	1040	2013-07-20T01:48:03Z	2023-03-10T11:40:01Z	375 B	19 kB	151.101.85.44
smrturl.co	299580	2019-02-01T22:57:30Z	2023-03-10T07:10:10Z	478 B	1.5 kB	172.67.197.247
region1.analytics.google.com	unknown	2022-03-17T12:26:33Z	2023-03-10T05:19:42Z	844 B	560 B	216.239.34.36
adservice.google.com	76	2021-02-20T17:10:48Z	2023-03-10T15:48:12Z	803 B	1.0 kB	142.250.74.162
trc-events.taboola.com	1779	2020-06-09T15:52:57Z	2023-03-10T11:40:03Z	818 B	362 B	141.226.228.48
www.redditstatic.com	1440	2012-06-30T14:33:28Z	2023-03-10T11:40:01Z	366 B	8.5 kB	151.101.85.140
connect.facebook.net	139	2012-05-22T04:51:28Z	2023-03-10T05:15:22Z	371 B	29 kB	31.13.72.12
vars.hotjar.com	1014	2020-11-05T11:13:14Z	2023-03-09T18:15:23Z	503 B	1.7 kB	143.204.55.118
stats.g.doubleclick.net	96	2013-06-10T22:21:11Z	2023-03-10T12:41:09Z	602 B	708 B	142.250.150.154
bat.bing.com	387	2014-04-08T11:23:16Z	2023-03-10T09:34:35Z	1.6 kB	14 kB	13.107.21.200
static.hotjar.com	641	2014-11-01T06:14:27Z	2023-03-10T09:34:35Z	374 B	9.3 kB	54.230.111.8
www.google.com	7	2015-05-10T13:11:19Z	2023-03-10T12:19:40Z	515 B	694 B	142.250.74.164
s.yimg.com	375	2012-05-21T00:45:00Z	2023-03-10T13:12:29Z	353 B	7.3 kB	188.125.94.204
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-10T05:10:02Z	606 B	127 B	54.186.209.73
cdn-production-opera-website.operacdn.com	98972	2019-10-15T16:44:48Z	2023-03-09T18:13:49Z	26 kB	2.3 MB	23.32.85.11
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-10T14:37:36Z	982 B	20 kB	216.58.207.195
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-10T13:35:34Z	370 B	21 kB	216.239.38.178
www.googleadservices.com	107	2012-06-26T16:53:06Z	2023-03-10T16:05:03Z	1.6 kB	20 kB	142.250.74.162
blue.redredirector.com	unknown	2022-06-07T09:21:37Z	2023-03-09T18:13:48Z	507 B	423 B	34.141.179.97
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-10T05:10:00Z	782 B	2.4 kB	34.102.187.140
www.getgx.net	unknown	2022-06-02T15:52:22Z	2023-03-09T18:13:48Z	491 B	684 B	34.200.173.39
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-10T05:11:10Z	7.2 kB	15 kB	142.250.74.35
script.hotjar.com	887	2020-11-05T17:23:46Z	2023-03-10T15:35:05Z	382 B	69 kB	54.230.111.44
alb.reddit.com	1521	2017-06-15T07:33:56Z	2023-03-10T11:40:01Z	652 B	276 B	151.101.85.140
sp.analytics.yahoo.com	816	2014-01-31T21:48:24Z	2023-03-10T05:19:44Z	743 B	949 B	212.82.100.181
googleads.g.doubleclick.net	42	2021-02-20T16:43:32Z	2023-03-10T16:21:16Z	1.3 kB	1.8 kB	142.250.74.130
s.amazon-adsystem.com	283	2012-05-21T10:26:27Z	2023-03-10T16:10:02Z	1.5 kB	1.5 kB	52.46.143.56
1g0v.site	unknown	2022-11-03T16:48:06Z	2023-03-07T22:21:16Z	808 B	1.7 kB	66.29.153.49
www.arabs4.net	unknown	2022-07-02T03:07:29Z	2022-11-26T08:03:30Z	697 B	929 B	92.205.12.81
www.opera.com	62688	2012-05-21T18:16:56Z	2023-03-10T09:50:23Z	1.1 kB	22 kB	18.158.18.209
11442918.fls.doubleclick.net	151784	2021-11-12T19:37:19Z	2023-03-08T14:50:40Z	797 B	1.3 kB	142.250.74.70
adservice.google.no	96969	2018-06-20T01:38:38Z	2023-03-10T05:19:42Z	794 B	1.4 kB	142.250.74.162
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-10T05:09:10Z	2.4 kB	6.2 kB	23.36.76.226
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-10T13:49:44Z	2.4 kB	4.8 kB	93.184.220.29
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-10T05:10:00Z	333 B	229 B	34.117.237.239
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-10T05:10:04Z	3.8 kB	61 kB	34.120.237.76

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-18	medium	www.arabs4.net/pc	Malware
2022-11-18	medium	www.arabs4.net/pc/	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (37)

	URL	Size	First Seen	Last Seen
	www.opera.com/gx?utm_content=1596_wtugWWw3ex0TlUvQQ5bV&utm_medium=pa&utm_campaign=PWN_NO&utm_id=0fc2a6cfcd6744fe8ebb5ae505aab3cd&utm_source=PWNgames&edition=std-1	422 B	2023-03-07	2023-03-11
Pretty URL www.opera.com/gx?utm_content=1596_wtugWWw3ex0TlUvQQ5bV&utm_medium=pa&utm_campaign=PWN_NO&utm_id=0fc2a6cfcd6744fe8ebb5ae505aab3cd&utm_source=PWNgames&edition=std-1 IP 18.158.18.209 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2023-03-11 21:00:46 Times Seen1 Hash 846d2d8a8578b9aac137f995f553608c 79d1416e95ca129d7a2ea5189e6390b252352a6c f5492473c4fd71e86d2bace91b88788f022a6c4efc24071ffcb38076e5a65d04 Loading...

	www.googletagmanager.com/gtag/js?id=G-T18E1GTPQG&l=dataLayer&cx=c	231 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtag/js?id=G-T18E1GTPQG&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 13:49:55 Last Seen2023-03-11 13:49:55 Times Seen1 Hash 15f22c8183decc7817c8acffdd22601d f56673271b76953d8377ed135f26376e123711f2 ce66176ded7182de2a578eb368180d9ca5fef3db277f0854dbf28b08cdc6a7ef Loading...

	www.opera.com/gx?utm_content=1596_wtugWWw3ex0TlUvQQ5bV&utm_medium=pa&utm_campaign=PWN_NO&utm_id=0fc2a6cfcd6744fe8ebb5ae505aab3cd&utm_source=PWNgames&edition=std-1	496 B	2023-03-07	2024-02-21
Pretty URL www.opera.com/gx?utm_content=1596_wtugWWw3ex0TlUvQQ5bV&utm_medium=pa&utm_campaign=PWN_NO&utm_id=0fc2a6cfcd6744fe8ebb5ae505aab3cd&utm_source=PWNgames&edition=std-1 IP 18.158.18.209 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2024-02-21 04:57:48 Times Seen239 Hash 2ec3ab2ea7d6e84feaede3f316e542e6 4c0a9224d011d729f351a9f6a1c9ff9ba1b379a2 3e8f56032190bf6c992040243294c0438637ca75545775b62d90aa91ff927aa6 Loading...

	www.opera.com/gx?utm_content=1596_wtugWWw3ex0TlUvQQ5bV&utm_medium=pa&utm_campaign=PWN_NO&utm_id=0fc2a6cfcd6744fe8ebb5ae505aab3cd&utm_source=PWNgames&edition=std-1	423 B	2023-03-07	2024-03-23
Pretty URL www.opera.com/gx?utm_content=1596_wtugWWw3ex0TlUvQQ5bV&utm_medium=pa&utm_campaign=PWN_NO&utm_id=0fc2a6cfcd6744fe8ebb5ae505aab3cd&utm_source=PWNgames&edition=std-1 IP 18.158.18.209 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2024-03-23 17:52:27 Times Seen240 Hash 234b023c7a26bfe71d0f9f640ede91f4 504a7bade784175003b440859140c4792b755a89 a9f9adf2eef26b4c41a6f824bb23a100ad0f438971e584859754bdb2b6eb422e Loading...

	unknown	0 B	2023-03-07	2024-04-24
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-24 14:09:38 Times Seen37039540 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	vars.hotjar.com/box-c6ca1c87e308a39aabb76b56ba54398b.html	2.3 kB	2023-03-10	2023-03-17
Pretty URL vars.hotjar.com/box-c6ca1c87e308a39aabb76b56ba54398b.html IP 143.204.55.118 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 00:23:49 Last Seen2023-03-17 21:22:49 Times Seen1 Hash 34086a2f3d61b9a459a6141d1343ece0 ae09be0d58acca43ea80769df13cbbfea21a9ccb f639e1347dd440a977783f03b6524b2deda7b39daa1060b3519c64c337c6ae55 Loading...

	11442918.fls.doubleclick.net/ddm/fls/r/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=8117816489487;gtm=2wgb90;auiddc=180804668.1668751003;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1596_wtugWWw3ex0TlUvQQ5bV%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D0fc2a6cfcd6744fe8ebb5ae505aab3cd%26utm_source%3DPWNgames%26edition%3Dstd-1	211 B	2023-03-07	2023-03-11
Pretty URL 11442918.fls.doubleclick.net/ddm/fls/r/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=8117816489487;gtm=2wgb90;auiddc=180804668.1668751003;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1596_wtugWWw3ex0TlUvQQ5bV%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D0fc2a6cfcd6744fe8ebb5ae505aab3cd%26utm_source%3DPWNgames%26edition%3Dstd-1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2023-03-11 21:00:46 Times Seen1 Hash 145a86b05d5d23a0457e4d04d7414f6b b9c5bd648296302344b234dc52669b473f076378 1487253ac00cdb9bce5db8331567b3ab87d98eed981f396602ed00bd648a6d7a Loading...

	www.opera.com/gx?utm_content=1596_wtugWWw3ex0TlUvQQ5bV&utm_medium=pa&utm_campaign=PWN_NO&utm_id=0fc2a6cfcd6744fe8ebb5ae505aab3cd&utm_source=PWNgames&edition=std-1	417 B	2023-03-07	2024-03-23
Pretty URL www.opera.com/gx?utm_content=1596_wtugWWw3ex0TlUvQQ5bV&utm_medium=pa&utm_campaign=PWN_NO&utm_id=0fc2a6cfcd6744fe8ebb5ae505aab3cd&utm_source=PWNgames&edition=std-1 IP 18.158.18.209 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2024-03-23 17:52:27 Times Seen241 Hash 782f224163a456df194b6bbb5c7b218d bf1522d204081c55a699d7d830e8c1777a386ad3 9ea3fb367657f27631a01f5c2dda2dfdb0c06c21309c71eaaf0aeef899f47098 Loading...

	www.opera.com/gx?utm_content=1596_wtugWWw3ex0TlUvQQ5bV&utm_medium=pa&utm_campaign=PWN_NO&utm_id=0fc2a6cfcd6744fe8ebb5ae505aab3cd&utm_source=PWNgames&edition=std-1	422 B	2023-03-07	2024-03-24
Pretty URL www.opera.com/gx?utm_content=1596_wtugWWw3ex0TlUvQQ5bV&utm_medium=pa&utm_campaign=PWN_NO&utm_id=0fc2a6cfcd6744fe8ebb5ae505aab3cd&utm_source=PWNgames&edition=std-1 IP 18.158.18.209 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:19:46 Last Seen2024-03-24 20:42:12 Times Seen336 Hash b5ee7dff028e43c08940f369ad5a8963 c27d7438dd40365520cf79fb2293417b8609b06f 586cd59bc3f88355b1fb5d2010a6e3325cac2414e351956550fa3fd35f467d24 Loading...

	connect.facebook.net/signals/config/471443751186133?v=2.9.89&r=stable	300 kB	2023-03-11	2023-03-11
Pretty URL connect.facebook.net/signals/config/471443751186133?v=2.9.89&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 13:49:55 Last Seen2023-03-11 13:49:55 Times Seen1 Hash 5c19706aa4d9605c377f376d972c7acf 1852291ae6b424288c075c81d3fcac673dbd2bb4 3708774c3cec2370bb4e30a6418d543c71d5b0c008c1f3c7c3a98d8fb6c4c389 Loading...

	www.opera.com/gx?utm_content=1596_wtugWWw3ex0TlUvQQ5bV&utm_medium=pa&utm_campaign=PWN_NO&utm_id=0fc2a6cfcd6744fe8ebb5ae505aab3cd&utm_source=PWNgames&edition=std-1	452 B	2023-03-07	2023-12-07
Pretty URL www.opera.com/gx?utm_content=1596_wtugWWw3ex0TlUvQQ5bV&utm_medium=pa&utm_campaign=PWN_NO&utm_id=0fc2a6cfcd6744fe8ebb5ae505aab3cd&utm_source=PWNgames&edition=std-1 IP 18.158.18.209 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2023-12-07 00:03:33 Times Seen113 Hash ea851aaa49b13578ff5c5e50a48cdb5d 0c28bff9ed59248c78451d4167d5a0ef142bd9e4 5e9c4dcec163b9a531c2d5e8f6ff96b33e67e86fb3ab3a2ed74ad16051007eaf Loading...

	connect.facebook.net/signals/config/1123357797681867?v=2.9.89&r=stable	300 kB	2023-03-11	2023-03-11
Pretty URL connect.facebook.net/signals/config/1123357797681867?v=2.9.89&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 13:49:55 Last Seen2023-03-11 13:49:55 Times Seen1 Hash 7a889123cc147ec5b571493a0f024e75 0b47a3cf67e69c4349d920ffcbeb4c3e8657c126 78800f2cb9b53de88ced5736450c3882334ef63a0e96d5aa338f136fcee96418 Loading...

	www.opera.com/gx?utm_content=1596_wtugWWw3ex0TlUvQQ5bV&utm_medium=pa&utm_campaign=PWN_NO&utm_id=0fc2a6cfcd6744fe8ebb5ae505aab3cd&utm_source=PWNgames&edition=std-1	3.0 kB	2023-03-07	2024-01-24
Pretty URL www.opera.com/gx?utm_content=1596_wtugWWw3ex0TlUvQQ5bV&utm_medium=pa&utm_campaign=PWN_NO&utm_id=0fc2a6cfcd6744fe8ebb5ae505aab3cd&utm_source=PWNgames&edition=std-1 IP 18.158.18.209 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:52:36 Last Seen2024-01-24 11:43:10 Times Seen40 Hash f5a6286eaa45f9aeec04e007cba1bb23 7befd217059157b76809d13ec6d10de6876dcf63 5a4f3f5fd8c3b346d408e183af42f942607054fba180e00cab4addede2fe35c6 Loading...

	www.opera.com/gx?utm_content=1596_wtugWWw3ex0TlUvQQ5bV&utm_medium=pa&utm_campaign=PWN_NO&utm_id=0fc2a6cfcd6744fe8ebb5ae505aab3cd&utm_source=PWNgames&edition=std-1	3.6 kB	2023-03-07	2023-04-02
Pretty URL www.opera.com/gx?utm_content=1596_wtugWWw3ex0TlUvQQ5bV&utm_medium=pa&utm_campaign=PWN_NO&utm_id=0fc2a6cfcd6744fe8ebb5ae505aab3cd&utm_source=PWNgames&edition=std-1 IP 18.158.18.209 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2023-04-02 21:30:09 Times Seen2 Hash f1607c87893064f9fd1d5f505d7dbcc8 10b206a1ae8a48e68abf99b9fb1450f37659e732 892ce543fa97bf9c420515828355b0cfc2948137a1c435eb613c082076ff73ce Loading...

	static.hotjar.com/c/hotjar-445451.js?sv=7	31 kB	2023-03-11	2023-03-11
Pretty URL static.hotjar.com/c/hotjar-445451.js?sv=7 IP 54.230.111.8 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 13:49:55 Last Seen2023-03-11 13:49:55 Times Seen1 Hash 65ba1abbd623718a24a4dacc2c2fc749 78d38caf53b2ac7c5749130bccea41c994d17ba4 fdb63776de079b42e6aaef5f09deeb85a2d498a3fc290478f970bf61335a125c Loading...

	www.opera.com/gx?utm_content=1596_wtugWWw3ex0TlUvQQ5bV&utm_medium=pa&utm_campaign=PWN_NO&utm_id=0fc2a6cfcd6744fe8ebb5ae505aab3cd&utm_source=PWNgames&edition=std-1	21 B	2023-03-07	2024-04-21
Pretty URL www.opera.com/gx?utm_content=1596_wtugWWw3ex0TlUvQQ5bV&utm_medium=pa&utm_campaign=PWN_NO&utm_id=0fc2a6cfcd6744fe8ebb5ae505aab3cd&utm_source=PWNgames&edition=std-1 IP 18.158.18.209 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:18:43 Last Seen2024-04-21 15:49:35 Times Seen547 Hash c499adcb8b93574828ea9ee76f39278f 729be93800ec88aeb5c94d1e1d5558eb0ee7605c 53c7b7488f8e6625f123eef988f95d9268c7b673501f465712561ea83d77bd78 Loading...

	cdn-production-opera-website.operacdn.com/staticfiles/CACHE/js/output.eb7ef37247a9.js	337 kB	2023-03-11	2023-03-11
Pretty URL cdn-production-opera-website.operacdn.com/staticfiles/CACHE/js/output.eb7ef37247a9.js IP 23.32.85.11 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 13:49:55 Last Seen2023-03-11 13:49:55 Times Seen1 Hash b97a7dfd40d792e8cbaf61c1d0ea1893 17b18cadb2d3b28c782809f11513167f631a494e eb7ef37247a9ca5398b5a58630ba7fc32e995a8d820e0efd9db19c34d8e7c785 Loading...

	trc.taboola.com/1410119/trc/3/json?tim=1668751003668&data=%7B%22id%22%3A182%2C%22ii%22%3A%22%2Fgx%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1668751003658%2C%22cv%22%3A%2220221113-4-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.opera.com%2Fgx%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Futm_content%3D1596_wtugWWw3ex0TlUvQQ5bV%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D0fc2a6cfcd6744fe8ebb5ae505aab3cd%26utm_source%3DPWNgames%26edition%3Dstd-1%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Doperasoftwarees-operasoftwarees-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1668751003667%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1596_wtugWWw3ex0TlUvQQ5bV%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D0fc2a6cfcd6744fe8ebb5ae505aab3cd%26utm_source%3DPWNgames%26edition%3Dstd-1%22%2C%22tos%22%3A2%2C%22ssd%22%3A1%2C%22scd%22%3A4%2C%22ler%22%3A%22other%22%2C%22supv%22%3Atrue%7D%7D&pubit=i	2.4 kB	2023-03-11	2023-03-11
Pretty URL trc.taboola.com/1410119/trc/3/json?tim=1668751003668&data=%7B%22id%22%3A182%2C%22ii%22%3A%22%2Fgx%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1668751003658%2C%22cv%22%3A%2220221113-4-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.opera.com%2Fgx%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Futm_content%3D1596_wtugWWw3ex0TlUvQQ5bV%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D0fc2a6cfcd6744fe8ebb5ae505aab3cd%26utm_source%3DPWNgames%26edition%3Dstd-1%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Doperasoftwarees-operasoftwarees-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1668751003667%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1596_wtugWWw3ex0TlUvQQ5bV%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D0fc2a6cfcd6744fe8ebb5ae505aab3cd%26utm_source%3DPWNgames%26edition%3Dstd-1%22%2C%22tos%22%3A2%2C%22ssd%22%3A1%2C%22scd%22%3A4%2C%22ler%22%3A%22other%22%2C%22supv%22%3Atrue%7D%7D&pubit=i IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 13:49:55 Last Seen2023-03-11 13:49:55 Times Seen1 Hash 100026bd0279ee6f673f0e6c4e4138d8 ae812cbf71eead5c15e4a6290e3bcba86e6693a4 c35bf8b0ee8f100e2025479c2846854865edec33e8668b76474536a9d1c9c249 Loading...

	www.opera.com/gx?utm_content=1596_wtugWWw3ex0TlUvQQ5bV&utm_medium=pa&utm_campaign=PWN_NO&utm_id=0fc2a6cfcd6744fe8ebb5ae505aab3cd&utm_source=PWNgames&edition=std-1	357 B	2023-03-07	2023-12-11
Pretty URL www.opera.com/gx?utm_content=1596_wtugWWw3ex0TlUvQQ5bV&utm_medium=pa&utm_campaign=PWN_NO&utm_id=0fc2a6cfcd6744fe8ebb5ae505aab3cd&utm_source=PWNgames&edition=std-1 IP 18.158.18.209 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2023-12-11 07:58:14 Times Seen128 Hash c8983d66f6c0fbf9def38ba1b59df5af 009b5d6d8879bd1faacb02b043067118429663c7 2e0527064a429e3c5e7e271e512b940b81d95422281c3704987e8f17c2f9bd85 Loading...

	www.redditstatic.com/ads/pixel.js	25 kB	2023-03-08	2023-12-01
Pretty URL www.redditstatic.com/ads/pixel.js IP 151.101.85.140 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:55 Last Seen2023-12-01 19:12:11 Times Seen28 Hash c1c34430d39fb43c9612aebe7ab8a9db 4d7f5cb7b29685a3a5a51c140288465e9553a0a7 4b4e80032e1c164685d3ff6eb4c606785ebaebaa648d3984478b0cc8d114190b Loading...

	11442918.fls.doubleclick.net/ddm/fls/r/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=8117816489487;gtm=2wgb90;auiddc=180804668.1668751003;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1596_wtugWWw3ex0TlUvQQ5bV%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D0fc2a6cfcd6744fe8ebb5ae505aab3cd%26utm_source%3DPWNgames%26edition%3Dstd-1	659 B	2023-03-07	2023-03-11
Pretty URL 11442918.fls.doubleclick.net/ddm/fls/r/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=8117816489487;gtm=2wgb90;auiddc=180804668.1668751003;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1596_wtugWWw3ex0TlUvQQ5bV%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D0fc2a6cfcd6744fe8ebb5ae505aab3cd%26utm_source%3DPWNgames%26edition%3Dstd-1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2023-03-11 21:00:46 Times Seen1 Hash 526b1641a89304d842ff0805cae98078 7a5d59cae78e114b9aecd1968d5cece8c0fab5fa 9b8d1014b62f337dfdc2809825c29bdb7c352757adafba9c188bff2c57708bbd Loading...

	www.googleadservices.com/pagead/conversion.js	46 kB	2023-03-08	2023-11-03
Pretty URL www.googleadservices.com/pagead/conversion.js IP 142.250.74.162 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26:58 Last Seen2023-11-03 22:15:30 Times Seen3 Hash d6c8b769f77ac1adb13dca78fe1ad0f6 e030a3b320db3d7b059af408d32a7a3d26c12859 3bd916949aeea3ea0d8c943ffe67060a38c2902c9533a94d36650bc176e322af Loading...

	www.getgx.net/cmp/TXP7QH/P6QLHR/?sub1=150_2476&sub2=63771e9b3b2eb90001fe86da	189 B	2023-03-11	2023-03-11
Pretty URL www.getgx.net/cmp/TXP7QH/P6QLHR/?sub1=150_2476&sub2=63771e9b3b2eb90001fe86da IP 34.200.173.39 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 13:49:55 Last Seen2023-03-11 13:49:55 Times Seen1 Hash fbc2b87ecefca25988464252fc2bf5a2 012e8991514752407749facd4b34604afc349407 a0fb12a0013f33af20c5bb15a78eaa8eaaf77219f31be0dcd966c1f5b0ac9bdb Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-20
Pretty URL www.google-analytics.com/analytics.js IP 216.239.38.178 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-20 17:36:09 Times Seen1522 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	connect.facebook.net/en_US/fbevents.js	105 kB	2023-03-08	2023-11-28
Pretty URL connect.facebook.net/en_US/fbevents.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:10 Last Seen2023-11-28 17:55:58 Times Seen32 Hash a6ef7927128284961f4cadd572969f09 57e21033749687e69de710a0be6d4244edf1fe51 d5c905d7ce4679b183eb11f7c6811682ddffbf0f037590360ae2b1a84a51ef1b Loading...

	www.googleadservices.com/pagead/conversion/10840821485/?random=1668751004170&cv=9&fst=1668751004170&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D8117816489487%3Bgtm%3D2wgb90%3Bauiddc%3D180804668.1668751003%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx%253Futm_content%253D1596_wtugWWw3ex0TlUvQQ5bV%2526utm_medium%253Dpa%2526utm_campaign%253DPWN_NO%2526utm_id%253D0fc2a6cfcd6744fe8ebb5ae505aab3cd%2526utm_source%253DPWNgames%2526edition%253Dstd-1&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4	2.2 kB	2023-03-11	2023-03-11
Pretty URL www.googleadservices.com/pagead/conversion/10840821485/?random=1668751004170&cv=9&fst=1668751004170&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D8117816489487%3Bgtm%3D2wgb90%3Bauiddc%3D180804668.1668751003%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx%253Futm_content%253D1596_wtugWWw3ex0TlUvQQ5bV%2526utm_medium%253Dpa%2526utm_campaign%253DPWN_NO%2526utm_id%253D0fc2a6cfcd6744fe8ebb5ae505aab3cd%2526utm_source%253DPWNgames%2526edition%253Dstd-1&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4 IP 142.250.74.162 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 13:49:55 Last Seen2023-03-11 13:49:55 Times Seen1 Hash 5c90002a4c9bbad82cef5b04a9605b8b 9ea2229a60d770e25ffe369b2dfa41c690067b2e e7ed9dfb600c1b94a2aa3f3dac98d58cd766af139045fdaab74d4558c38a9edb Loading...

	1g0v.site/ar/?id=9510589	221 B	2023-03-10	2023-03-11
Pretty URL 1g0v.site/ar/?id=9510589 IP 66.29.153.49 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 19:53:55 Last Seen2023-03-11 20:32:16 Times Seen1 Hash 38f1afcb781060dd8a4d190a9c3255cb 6cbb46cf5aab80059d275cb2caa50e5a82419768 80f97ff6e46516a64a2333127f908731b3697778fa30e0b6b61aa1ae9d823e43 Loading...

	www.arabs4.net/pc/	97 B	2023-03-07	2023-03-17
Pretty URL www.arabs4.net/pc/ IP 92.205.12.81 ASN #21499 Host Europe GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:52 Last Seen2023-03-17 12:26:45 Times Seen1 Hash 6ffe84233c232e2ccb501bb35d023a81 cd1c4276e504823215879a2650a233c61ffc4860 2535618b64ed7a5302afa89aa7ed7b1b141d85d71fc378248b3c6a0c8e710102 Loading...

	cdn.taboola.com/libtrc/unip/1410119/tfa.js	59 kB	2023-03-11	2023-03-11
Pretty URL cdn.taboola.com/libtrc/unip/1410119/tfa.js IP 151.101.85.44 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 13:49:55 Last Seen2023-03-11 13:49:55 Times Seen1 Hash 0736e0723506a0c08c9b8dd51a632b41 fca94f86b9d0009b657efa6c4964ade393aa0a5b 0a70fd435d8e34cd9a2f94f4e280c186a0ca826f5908f72b92685e39b69dc267 Loading...

	bat.bing.com/bat.js	39 kB	2023-03-08	2023-12-01
Pretty URL bat.bing.com/bat.js IP 13.107.21.200 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:44 Last Seen2023-12-01 19:12:11 Times Seen33 Hash 4ffa93c7b72214cba0395e236738648c 89a3b99eebfa5ebcea11ba92e0e3e63f0007b6f9 492f3de5b6bff06f8b26f61d37e2e565f8f31e00315600c73d9caa85713e8c29 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-N7XDW7Z	174 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-N7XDW7Z IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 13:49:55 Last Seen2023-03-11 13:49:55 Times Seen1 Hash a2eedd3d18aa3ae4dd675b3f92919868 1074830045372884eee6e63690e16853e8eadb32 4364b1ef0e43f49dee2bc073fadd3afc15ccda97c7f08a41ad5022ca5151fbf5 Loading...

	s.yimg.com/wi/ytc.js	17 kB	2023-03-07	2024-03-04
Pretty URL s.yimg.com/wi/ytc.js IP 188.125.94.204 ASN #10310 YAHOO-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:36 Last Seen2024-03-04 14:29:23 Times Seen1244 Hash 6a624022b5d271dcefb070b0b6670abc e9a0a059a5cefc0cd9e6cc0e8d7bd8d64c23936b 249c4eba880cfb74e1b6e1d1048def310636dc3b1ce5b3fe525703fd4025238f Loading...

		Size	First Seen	Last Seen
	#1 Eval - 1c30f655754855af2dfa537d38d042d2	37 B	2023-03-07	2024-03-23
Pretty Observations First Seen2023-03-07 15:20:29 Last Seen2024-03-23 17:52:27 Times Seen241 Hash 1c30f655754855af2dfa537d38d042d2 0a510f5532f622e1514177e8a1c64daf50099825 f565fc57576629933f18b2a6c27826541e67444f7c01e64b35d3a281caa02eba Loading...

	#2 Eval - fd9a6ad8235a5b1f8291a0f682c4e641	60 B	2023-03-07	2024-03-23
Pretty Observations First Seen2023-03-07 12:57:29 Last Seen2024-03-23 17:52:27 Times Seen385 Hash fd9a6ad8235a5b1f8291a0f682c4e641 68be4f3dee54bfba9dbb673003d30cbc4c2663ae a5febe3286b6a155c7ff728e6cdac57d3cd37b93db132ec24e8f6e78c24e64a1 Loading...

	#3 Eval - 6e63a506e87de35176cd451ea1193fb8	100 B	2023-03-07	2023-03-11
Pretty Observations First Seen2023-03-07 15:57:22 Last Seen2023-03-11 21:00:46 Times Seen1 Hash 6e63a506e87de35176cd451ea1193fb8 b3e5b8294157af47acac8d74a32dd1b08990fbcd 7b2749c3f5994c76cccdc773db226b1cad94ae4585fab7d2aa76b928ee1401da Loading...

	#4 Eval - 16289d8ad87f2a2581d09109fd2f3a12	100 B	2023-03-07	2023-03-11
Pretty Observations First Seen2023-03-07 15:57:22 Last Seen2023-03-11 21:00:46 Times Seen1 Hash 16289d8ad87f2a2581d09109fd2f3a12 973b8584ccc6ca9e34e20ad5d86a7d9ed5724f7b adae4d85afbf9185eefe0cd153c119efede60016548210e19c8f534f8a10a98e Loading...

		Size	First Seen	Last Seen
	#1 Write - d41d8cd98f00b204e9800998ecf8427e	0 B	2023-03-07	2024-04-24
Pretty Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-24 14:09:38 Times Seen37039540 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (140)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
30c30d01178fc74ac5266ee64c3ee85b
c0c2af8a864c00aa85a8775d55f85ab107150a3b
c15644f69fbfeb99074c7e9711dfc9452ee164fa78eb981b6bae4fb7e3585f2a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C15644F69FBFEB99074C7E9711DFC9452EE164FA78EB981B6BAE4FB7E3585F2A"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14725
Expires: Fri, 18 Nov 2022 10:02:05 GMT
Date: Fri, 18 Nov 2022 05:56:40 GMT
Connection: keep-alive

1g0v.site/ar/?id=9510589

66.29.153.49

301 Moved Permanently

707 B

URL HTTP/1.1
1g0v.site/ar/?id=9510589
IP
66.29.153.49:0
ASN
#22612 NAMECHEAP-NET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
707 B (707 bytes)
Hash
1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

HTTP Headers

GET /ar/?id=9510589 HTTP/1.1
Host: 1g0v.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
keep-alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Fri, 18 Nov 2022 05:56:39 GMT
server: LiteSpeed
location: https://1g0v.site/ar/?id=9510589
x-turbo-charged-by: LiteSpeed

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
be1be806b5dca7facbb45a6c3db44652
7ae9380a2f3eca959fe6ff6b3832a17cffd12cf4
1f3338058f8e9cae5c9fdd733c74564312726b01c6efdcd628d851d0c99876b0

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4303
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:56:40 GMT
Last-Modified: Fri, 18 Nov 2022 04:44:57 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 18 Nov 2022 05:45:01 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 699
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3a38b6dd8a4cc335c026aebf2ed348b6
8a386e0ccb0ca4dc502746c45b2ebc3aa3f83cf8
8b4040a645cec1841a00a22765eb3a74978559daf15c54bd4b41b6b48aab7f95

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B4040A645CEC1841A00A22765EB3A74978559DAF15C54BD4B41B6B48AAB7F95"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18395
Expires: Fri, 18 Nov 2022 11:03:15 GMT
Date: Fri, 18 Nov 2022 05:56:40 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: xitXkir93/kzOelClol3yAinzE/DdHIqA3Vbiy5zCnmGT80aYSSASLUOgfzLnMuGsg+TPqo3958=
x-amz-request-id: 1V54YY10Z9VBFNDM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 18 Nov 2022 05:15:28 GMT
age: 2472
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 05:56:40 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
1c406589d004ddf7d11df6599d7c7f44
17ca5847ad5dd1d26bda8246fcbcfe49aaa7d315
b9bacd49685f50f13e78268e1017935f2904b3ccaa23ba98db485f6c3e81269f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:56:40 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 17 Nov 2022 13:25:21 GMT
Expires: Thu, 24 Nov 2022 13:25:20 GMT
Etag: "17ca5847ad5dd1d26bda8246fcbcfe49aaa7d315"
Cache-Control: max-age=544719,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76be76d8df3db523-OSL

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 18 Nov 2022 05:25:01 GMT
cache-control: public,max-age=3600
age: 1899
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
c10055ce87434f700ff8b20e3be1f919
477b3c9f1da0c464282bb54572737e76b6e346da
4d78eb296876122e5ff40fcd7667adf1bf8a4b1ee4c8203c88a63ce8d7910a57

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3126
Cache-Control: max-age=100941
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:56:40 GMT
Etag: "6375f9af-1d7"
Expires: Sat, 19 Nov 2022 09:59:01 GMT
Last-Modified: Thu, 17 Nov 2022 09:06:55 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

54.186.209.73

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.186.209.73:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: n9ULZz2vA+W5RfR6Xv8hkQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: FzNpu/RtmwUcDfMFTL6CeLYzU3E=

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
17af07b019100dc8adb529ce85f827bd
602adaa722e9a3ee89600ebe40cea7033c435483
aec801578f867078e0a82d90e78290f0a3ef4f1f4936eb763801b869e0fae747

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AEC801578F867078E0A82D90E78290F0A3EF4F1F4936EB763801B869E0FAE747"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2778
Expires: Fri, 18 Nov 2022 06:42:59 GMT
Date: Fri, 18 Nov 2022 05:56:41 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
17af07b019100dc8adb529ce85f827bd
602adaa722e9a3ee89600ebe40cea7033c435483
aec801578f867078e0a82d90e78290f0a3ef4f1f4936eb763801b869e0fae747

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AEC801578F867078E0A82D90E78290F0A3EF4F1F4936EB763801B869E0FAE747"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2778
Expires: Fri, 18 Nov 2022 06:42:59 GMT
Date: Fri, 18 Nov 2022 05:56:41 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
17af07b019100dc8adb529ce85f827bd
602adaa722e9a3ee89600ebe40cea7033c435483
aec801578f867078e0a82d90e78290f0a3ef4f1f4936eb763801b869e0fae747

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AEC801578F867078E0A82D90E78290F0A3EF4F1F4936EB763801B869E0FAE747"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2778
Expires: Fri, 18 Nov 2022 06:42:59 GMT
Date: Fri, 18 Nov 2022 05:56:41 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
17af07b019100dc8adb529ce85f827bd
602adaa722e9a3ee89600ebe40cea7033c435483
aec801578f867078e0a82d90e78290f0a3ef4f1f4936eb763801b869e0fae747

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AEC801578F867078E0A82D90E78290F0A3EF4F1F4936EB763801B869E0FAE747"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2778
Expires: Fri, 18 Nov 2022 06:42:59 GMT
Date: Fri, 18 Nov 2022 05:56:41 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
17af07b019100dc8adb529ce85f827bd
602adaa722e9a3ee89600ebe40cea7033c435483
aec801578f867078e0a82d90e78290f0a3ef4f1f4936eb763801b869e0fae747

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AEC801578F867078E0A82D90E78290F0A3EF4F1F4936EB763801B869E0FAE747"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2778
Expires: Fri, 18 Nov 2022 06:42:59 GMT
Date: Fri, 18 Nov 2022 05:56:41 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38915691-004a-4ae6-a5c6-fd071040ffba.jpeg

34.120.237.76

200 OK

6.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38915691-004a-4ae6-a5c6-fd071040ffba.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.3 kB (6339 bytes)
Hash
4998f097d23ee5f19cae27d5b938e5fc
4369c8ebe61b9944e639bb2731feb51c5a758fe7
5691c66766c9578e9c4aa71240608653821162c668abc63ee40e553ede2450e0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38915691-004a-4ae6-a5c6-fd071040ffba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6339
x-amzn-requestid: 0be5dee5-272d-4577-ba55-5cdb7935ea60
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-MCExBoAMFz6Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376aa4c-15fd613336aa6fcb165d0b26;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:40:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: NYs-Nf0PzWqhXP5nkvanTjhJ6vfwRIU--YD06RFIGPEuwDCu6fvEPg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:52:40 GMT
age: 29041
etag: "4369c8ebe61b9944e639bb2731feb51c5a758fe7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.8 kB (3759 bytes)
Hash
5d0b6106f00f9fd8b89c2d484a559a1a
399ac393209dcdac7d2188d7aa8d95f04570ef7c
5d8151c9eb558f4a2b8bd2952c6845606ddb0c27e36f6e49aca7e60908cd9fe4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3759
x-amzn-requestid: 8c91ac59-89dc-4218-b69f-0cebb29f301b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-wJHgxoAMF-hQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab33-4dac305614a92bc52c038222;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:44:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Mb2-PTjNmt06Wd5jOjQ5WoLY-0NgI80CKPXtwgzBt4n5km8Pu_WN0Q==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:50:49 GMT
age: 29152
etag: "399ac393209dcdac7d2188d7aa8d95f04570ef7c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F484ffe7b-1073-4220-bf53-ccbfc7e9654e.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8884 bytes)
Hash
14649d486602810c1b218b96b27b2cc4
96c6cbfe31e7247c64dfa8c3759967627f8c6286
80f5d7573fd2bf4e6a6038ebf1335d159ad37c391ee539918455963d6ee88654

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F484ffe7b-1073-4220-bf53-ccbfc7e9654e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8884
x-amzn-requestid: 3739b8f5-bb0c-4798-a931-e955dd6df81d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-MiGFxoAMFlxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376aa50-74c24a2f737634b655a5b47c;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:40:32 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: d_bLYyZzi1phYwQ2e5uvUmzO0GuvNu9Ubi2PQ0ChilQJegKr3uUiRw==
via: 1.1 79880188a81becf1687ba18c0e064230.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:55:53 GMT
etag: "96c6cbfe31e7247c64dfa8c3759967627f8c6286"
content-type: image/jpeg
age: 28848
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11667 bytes)
Hash
032386e5c9dffff1ba1ee5e8a322d438
dd4fd6c803a9b333bace9a541c6bd183d0c56bb9
0e9f559a0aa7e114c5810a27ba243c0da7b44dc0bf7aec2b7ab32b8f0e2b536c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11667
x-amzn-requestid: ae092a0a-1709-4497-9f07-0348a28d2491
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bqZOIEN7oAMFlaA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637408c0-5ac595df302a8f1d3703ad8d;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 21:46:40 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: c_SJMaV3uYSUysTSOFV--jQqDUxw-fBp8cXWWUZw9vUjt0d6PsOpxA==
via: 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 18:45:44 GMT
age: 40257
etag: "dd4fd6c803a9b333bace9a541c6bd183d0c56bb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffad6fa40-abda-4ea3-b899-aef6906a01e1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.2 kB (5198 bytes)
Hash
93b326374b3808d0af42e295643cdc14
dd691328acf190c745465208f18a41a75878df18
224ac3995e2e78ee5fcc6c5c3d5fb1f4b0ceca1c42b7a1a493c756aa199bf75f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffad6fa40-abda-4ea3-b899-aef6906a01e1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5198
x-amzn-requestid: ba4e00c8-a996-41f3-b15a-1e304907ca2a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw9UpH1ioAMF6ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376a8ea-2f9f794c4de03f8b212e072f;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:34:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: LPflGHjoeNg1X5EszKAaziaZsKFf5hT6LeNPpZQriZ5H1z7Zhh86Ow==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:55:57 GMT
age: 28844
etag: "dd691328acf190c745465208f18a41a75878df18"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20ddb38f-d459-45e6-9351-068a5306b3a1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10349 bytes)
Hash
7d16e5ff718353c095d266b080fe547f
fa7c5c9a1d16355859196271f3d13f3850931888
9a94d8eb20cc56d0898b1e2b80c0006ebbef75c15ad94e907050c5be4e19a960

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20ddb38f-d459-45e6-9351-068a5306b3a1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10349
x-amzn-requestid: fc85e078-a81a-4fed-899e-15249961f59c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-7tHGLIAMF00Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab7d-4224d193517794684fcdc0ad;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:45:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UK-XD_8EcfPwfLb-QVwfLr8aG-sqVBoUJcbPb5hKAlQS68eOxdgM5g==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:03:27 GMT
age: 28394
etag: "fa7c5c9a1d16355859196271f3d13f3850931888"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

1g0v.site/ar/?id=9510589

66.29.153.49

200 OK

505 B

URL HTTP/2
1g0v.site/ar/?id=9510589
IP
66.29.153.49:0
ASN
#22612 NAMECHEAP-NET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
505 B (505 bytes)
Hash
dc68f050d9235b5b638c8271a21c5161
b21eeb9a564f2359c1859e519421281e3dd916b3
724221d67f787aeaff045665a2f3b08b9bac4e296106879c9994cdb5be0c721d

HTTP Headers

GET /ar/?id=9510589 HTTP/1.1
Host: 1g0v.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
x-powered-by: PHP/7.4.33
content-type: text/html; charset=UTF-8
content-length: 505
content-encoding: br
vary: Accept-Encoding
date: Fri, 18 Nov 2022 05:56:41 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.arabs4.net/pc

92.205.12.81

301 Moved Permanently

233 B

URL HTTP/1.1
www.arabs4.net/pc
IP
92.205.12.81:0
ASN
#21499 Host Europe GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
233 B (233 bytes)
Hash
f85d543d9124c1b8ca22e11804f239b2
fa9168b4477350ee26dc73caee38ee8d8d9b204f
955046e60db3e2b5f70cc80a9315b8396ae8f16f104ba0d1507b1a9a877f71bb

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /pc HTTP/1.1
Host: www.arabs4.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Fri, 18 Nov 2022 05:56:41 GMT
Server: Apache
Location: http://www.arabs4.net/pc/
Content-Length: 233
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.arabs4.net/pc/

92.205.12.81

200 OK

145 B

URL HTTP/1.1
www.arabs4.net/pc/
IP
92.205.12.81:0
ASN
#21499 Host Europe GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
145 B (145 bytes)
Hash
960be881f98ea294ec62bd81c77d2dfe
b0162dde6c1346bf8a9b0185ed56c05ee22daeda
c3f7b2ba43b5ee8e6031e316d5f94c7a1d2fe3cc8aef2851a648af4f92b028c0

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /pc/ HTTP/1.1
Host: www.arabs4.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:56:41 GMT
Server: Apache
Last-Modified: Fri, 26 Aug 2022 20:50:22 GMT
ETag: "c63c23-da-5e72b100b171b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 145
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/html

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
2859d15a04c46ee2608edba50d2f7363
e74e2cdb27326a92fd9216f3e7ccaa960632d0fc
f1bc7616a7d583ff184f1b2d7db7ea1f3a1b0d067f5f0575e9e15272042670a0

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=112214
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:56:41 GMT
Etag: "637631ef-116"
Expires: Sat, 19 Nov 2022 13:06:55 GMT
Last-Modified: Thu, 17 Nov 2022 13:06:55 GMT
Server: nginx
Content-Length: 278

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
2859d15a04c46ee2608edba50d2f7363
e74e2cdb27326a92fd9216f3e7ccaa960632d0fc
f1bc7616a7d583ff184f1b2d7db7ea1f3a1b0d067f5f0575e9e15272042670a0

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: max-age=112214
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:56:42 GMT
Etag: "637631ef-116"
Expires: Sat, 19 Nov 2022 13:06:56 GMT
Last-Modified: Thu, 17 Nov 2022 13:06:55 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 278

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
7d66462c1da77109881ac5d79dfe79fa
22ff626eebea8425a55ecb1a672490593b6e29bd
3bdf3e79e15a28989ed39f776a0a34049e2dbe957e4403e7b7a97912fe1663be

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:56:43 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 17 Nov 2022 20:58:30 GMT
Expires: Thu, 24 Nov 2022 20:58:29 GMT
Etag: "22ff626eebea8425a55ecb1a672490593b6e29bd"
Cache-Control: max-age=571905,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76be76ea3c31b523-OSL

smrturl.co/o/2476/53263332?s1=

172.67.197.247

200 OK

766 B

URL HTTP/2
smrturl.co/o/2476/53263332?s1=
IP
172.67.197.247:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
766 B (766 bytes)
Hash
6a44b13916a87553618c0e9de8ef8c2d
82139ca6536c626109682b46051c6e515d27c800
9739e7e9c292046656b3d0c2464061a90702f41b9c478d24d202030909d529e1

HTTP Headers

GET /o/2476/53263332?s1= HTTP/1.1
Host: smrturl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.arabs4.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 18 Nov 2022 05:56:42 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.11
set-cookie: dynamo_v_id=Vdb58e470b7ceb; expires=Sat, 19-Nov-2022 05:56:42 GMT; Max-Age=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c1EyWdtJGE4E9WvmnxKAyZ6%2FJVuw1I4U%2BbEE%2FJcuDIQxgXAczqqoyXfZPEQ9oh68Y7VPhM%2BvOTvQ7g7NblNd%2FoLmyGi3TJcgkae%2BMs5ETo%2FrL%2F6ytYnyx%2BuVZs3I"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76be76e2adb6b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.getgx.net/cmp/TXP7QH/P6QLHR/?sub1=150_2476&sub2=63771e9b3b2eb90001fe86da

34.200.173.39

200 OK

531 B

URL HTTP/2
www.getgx.net/cmp/TXP7QH/P6QLHR/?sub1=150_2476&sub2=63771e9b3b2eb90001fe86da
IP
34.200.173.39:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (531), with no line terminators
Size
531 B (531 bytes)
Hash
7db236d840309a40a1f67513a8fb2b81
e70a12c859fe3901909d8e31a9f2665cda13de39
8cc7d106c027f2f9cee234aff7fae7daf660d95309c0c10c6b5edaad7ebc52f2

HTTP Headers

GET /cmp/TXP7QH/P6QLHR/?sub1=150_2476&sub2=63771e9b3b2eb90001fe86da HTTP/1.1
Host: www.getgx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 18 Nov 2022 05:56:43 GMT
content-type: text/html
content-length: 531
apigw-requestid: byG4YigjIAMEM1w=
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

314 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
314 B (314 bytes)
Hash
6b8b71149e3d304650499105edddb859
9175c527b8c629e512d77af3acc881bba2624bf6
a8e941d3b49cbe9d5677cc29740c52a3180bce388e5b97db9258c3bfe5ebd783

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1412
Cache-Control: max-age=161133
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:56:44 GMT
Etag: "6376eb85-13a"
Expires: Sun, 20 Nov 2022 02:42:17 GMT
Last-Modified: Fri, 18 Nov 2022 02:18:45 GMT
Server: ECS (amb/6B98)
X-Cache: HIT
Content-Length: 314

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-pinboards.48f6e4ad3256.svg

23.32.85.11

200 OK

761 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-pinboards.48f6e4ad3256.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (348)
Size
761 B (761 bytes)
Hash
48f6e4ad32561fcb78f69310bda2c451
4cefcfeea8cd1d479d20a81265f3a7a5166fd861
894a71dc143541bb1971f445b5ffbe414a6afe148d60a1f610d85275a7217cf8

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-pinboards.48f6e4ad3256.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: 9w4UD2hDuEtZvKvjIecsKjcrvGjSc/GHZxdoINkrZy7RYvqVZLVVjKvwNepFE713GAk5RjVq4RU=
x-amz-request-id: T726YX818RMN02W8
last-modified: Thu, 17 Nov 2022 13:24:29 GMT
etag: "48f6e4ad32561fcb78f69310bda2c451"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 761
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-flow.9d1657372a18.svg

23.32.85.11

200 OK

316 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-flow.9d1657372a18.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
316 B (316 bytes)
Hash
9d1657372a18e601386840f55c06e0f7
effbda84c00b1fd5654d795029d5b2f750ebe5ee
f86719fdf19a15f80113732351a1821ec88695b7b72fde2d81b384cfd04c5147

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-flow.9d1657372a18.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: OeRfHphFY7o3VuqnV3z/b4UQ1T8Ju9uKHLZzt3ZfO1AIvLQTtZA7pQnO/Yf2bT63+jwSbfA7Npc=
x-amz-request-id: PZW6HHVHRHA2EWGR
last-modified: Thu, 17 Nov 2022 13:24:29 GMT
etag: "9d1657372a18e601386840f55c06e0f7"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 316
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

www.opera.com/gx?utm_content=1596_wtugWWw3ex0TlUvQQ5bV&utm_medium=pa&utm_campaign=PWN_NO&utm_id=0fc2a6cfcd6744fe8ebb5ae505aab3cd&utm_source=PWNgames&edition=std-1

18.158.18.209

200 OK

21 kB

URL HTTP/2
www.opera.com/gx?utm_content=1596_wtugWWw3ex0TlUvQQ5bV&utm_medium=pa&utm_campaign=PWN_NO&utm_id=0fc2a6cfcd6744fe8ebb5ae505aab3cd&utm_source=PWNgames&edition=std-1
IP
18.158.18.209:0
ASN
#16509 AMAZON-02

File type
data
Size
21 kB (21153 bytes)
Hash
a24be04151d51d40c7894e738f08aba2
f9218b2f542f24bc3145d73013d4db526d0fbed3
65b127ad0f61be80152cec5874f0e5408a54918e03551eadff5a0e80a63d141d

HTTP Headers

GET /gx?utm_content=1596_wtugWWw3ex0TlUvQQ5bV&utm_medium=pa&utm_campaign=PWN_NO&utm_id=0fc2a6cfcd6744fe8ebb5ae505aab3cd&utm_source=PWNgames&edition=std-1 HTTP/1.1
Host: www.opera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 18 Nov 2022 05:56:44 GMT
content-type: text/html; charset=utf-8
content-language: en
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=3600
content-encoding: gzip
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=63072000; includeSubdomains; preload
content-security-policy: frame-ancestors 'self' https://*.opera.com; upgrade-insecure-requests;
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
feaeba711c7421b074e726f89ff34e0b
c590c0b76a7a78ab51a4dabcd8f20a1b172b02fb
ebe6e312ea7116713547fbd756805843b1c242ad22269158a79305f1819fa990

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:56:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.b31004795d0c.css

23.32.85.11

200 OK

20 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.b31004795d0c.css
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (65536), with no line terminators
Size
20 kB (19629 bytes)
Hash
85789e1aad39c3bef4f419436eb99753
3fa32f5e1b017f8c0b8822860688f7df29c4b532
949ee4d226268af073e95d9031538db345f0c597059c5b457c86e0929852fb26

HTTP Headers

GET /staticfiles/CACHE/css/output.b31004795d0c.css HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 7I7OgiZsOa1Ths9rEJabY8qdzvg8ESBMXXU2piWfUsAWYyiuswpj6hj5xoTAElvpKXQAdztJEq0=
x-amz-request-id: Q6G9KYC6NSXNEHE9
last-modified: Thu, 17 Nov 2022 13:22:49 GMT
etag: "d42f222ecb386d3c89b86fb11a6735ba"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: text/css
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
content-length: 19629
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/logo/logo-and-name--white.2236bc548f38.svg

23.32.85.11

200 OK

6.4 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/logo/logo-and-name--white.2236bc548f38.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (880)
Size
6.4 kB (6414 bytes)
Hash
2236bc548f38c1160fede16371d814c6
5960b6b68cc3f62dec9eb637613237859640a72a
48980a330e25e389278204845da2bcff73d54e9496fd49e82b1266325aa1658d

HTTP Headers

GET /staticfiles/assets/images/logo/logo-and-name--white.2236bc548f38.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: z5tqq83XiTxDhrWi2nj+y9X7vXrZguIPyDfTZ+07bWouVslYZjBZMFPswjlZ+cLCJTkcqsouH4E=
x-amz-request-id: 7XZQHMH4VWJD0FHT
last-modified: Thu, 17 Nov 2022 13:23:16 GMT
etag: "2236bc548f38c1160fede16371d814c6"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 6414
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/components/download/appstore/app-store--en.b9be99738278.png

23.32.85.11

200 OK

2.1 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/components/download/appstore/app-store--en.b9be99738278.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 120 x 40, 8-bit/color RGBA, non-interlaced\012- data
Size
2.1 kB (2088 bytes)
Hash
b9be99738278f7a8b013b95357c44e41
0135cd915eb68954555be69a104f315715c4623e
c121fc6ebe5cfeb37fecb1da325083b1883f23f943dbcaef899fcc70d96be6e7

HTTP Headers

GET /staticfiles/assets/images/components/download/appstore/app-store--en.b9be99738278.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: w8HmQSRJBYh4GpYGAleqNLjqpiusOg8W9Bacim0+OzsQT39+MRH/SVNCzJUeZyKZtAAxDxIAw34=
x-amz-request-id: F5XYQYH6ZPX9M4ND
last-modified: Thu, 17 Nov 2022 13:23:02 GMT
etag: "b9be99738278f7a8b013b95357c44e41"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 2088
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/1x1px.91e42db1c66c.png

23.32.85.11

200 OK

68 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/1x1px.91e42db1c66c.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Size
68 B (68 bytes)
Hash
91e42db1c66c0b276abf6234dc50b2eb
c1986af3c26609b8b7d8933f99c51c1a89e9ea6b
63ef318d96b5d0d0ceba6e04a4e622b1158335cdc67c49e27839132c6f655058

HTTP Headers

GET /staticfiles/assets/images/1x1px.91e42db1c66c.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: 2ugog988NqwKWahHs+JwbDU8Df4KmKJnEd50Kf4P9JNqpZTfQsRZ5lNQ9cjYeUY8LpNvqBK/EGM=
x-amz-request-id: QWQQCFYWRXXR3XFZ
last-modified: Thu, 17 Nov 2022 13:23:01 GMT
etag: "91e42db1c66c0b276abf6234dc50b2eb"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 68
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/components/download/googleplay/google-play--en.80d509fddb21.png

23.32.85.11

200 OK

4.1 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/components/download/googleplay/google-play--en.80d509fddb21.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 135 x 40, 8-bit/color RGBA, non-interlaced\012- data
Size
4.1 kB (4081 bytes)
Hash
80d509fddb2182e2f1ae810d1564350b
cf381f6397eaeee67de0c7688331df84de75ab94
c8b642906fd17e091c989e97daba4b86535f767b626985defa590ee16a9eeb30

HTTP Headers

GET /staticfiles/assets/images/components/download/googleplay/google-play--en.80d509fddb21.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: L61rpTKYqPyhPT8w5scjpCzpB45cQl8Kky8p59C0qMlwwaQ/1nss6l0yIc0iZQGVVyGJDaEDSh8=
x-amz-request-id: YB8QM8RN74GZ1HQX
last-modified: Thu, 17 Nov 2022 10:03:57 GMT
etag: "80d509fddb2182e2f1ae810d1564350b"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 4081
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-light-mode.308d4dc03c30.svg

23.32.85.11

200 OK

477 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-light-mode.308d4dc03c30.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (320)
Size
477 B (477 bytes)
Hash
308d4dc03c30da17a579ca9db9fac5ac
1d57cb4a2f025bc48673a022ab58436c0edbdbb1
714bfd0ae2a42800162c5cd9c8f55c05f6694384f88d75316631ddc8d2310dca

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-light-mode.308d4dc03c30.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: wFr7IDe7YFKD7pGXOgbrmhauA7M0Jzg+ohosfSpNIeuQXGsxJ2rK7h1mis3UOquYb1EaomicvQo=
x-amz-request-id: SS0D80FRWZHX53KY
last-modified: Thu, 17 Nov 2022 13:24:29 GMT
etag: "308d4dc03c30da17a579ca9db9fac5ac"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 477
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-corner.d792a0b181e4.svg

23.32.85.11

200 OK

812 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-corner.d792a0b181e4.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (450)
Size
812 B (812 bytes)
Hash
d792a0b181e44d9775e447f0d7e7d275
775d998808bbe5089dc8c42d1e6a372ffb0e0989
143f96acaffbd6ba05c61b7d02f01f7d330711f608a3f13f17b07a4c11542c8f

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-corner.d792a0b181e4.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: mPGBJjMpIqnPS46q49jVEnpp+9CURcO2Gx6s89pxIW6CChygOS7CiSLrUAhH7K9CWI1Wh3ylA6c=
x-amz-request-id: WD6RM7EC18ZMSNFY
last-modified: Thu, 17 Nov 2022 13:24:29 GMT
etag: "d792a0b181e44d9775e447f0d7e7d275"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 812
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--home.a3a32725c8c8.webp

23.32.85.11

200 OK

42 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--home.a3a32725c8c8.webp
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
RIFF (little-endian) data, Web/P image\012- data
Size
42 kB (42264 bytes)
Hash
a3a32725c8c8d27c18b89017f2e0689c
74ec7afc3cff917b2e4d48065d076d301fc2855a
1ba8613ae178fe9531ce8879e1a79af856a03ffe30b83b0d4c6c4812a61098c1

HTTP Headers

GET /staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--home.a3a32725c8c8.webp HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: GKHCdSGzvSDBA1uB2RCJqBSgELfIRCu4rfK8b6h8sqS86Sds5gkuZIMk8nuyA4EplS9u6CHhfyI=
x-amz-request-id: E1GXCAN5WM6V9565
last-modified: Thu, 17 Nov 2022 13:24:42 GMT
etag: "a3a32725c8c8d27c18b89017f2e0689c"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: binary/octet-stream
server: AmazonS3
content-length: 42264
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--messengers.d391f6cb6597.png

23.32.85.11

200 OK

62 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--messengers.d391f6cb6597.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1177 x 675, 8-bit colormap, non-interlaced\012- data
Size
62 kB (61583 bytes)
Hash
d391f6cb6597d71c6c59b50e4394594d
58898cb99301582c6ce30a8e38d7571575a6978b
00faaec247f4770836b845e7762535d4f66cb60cf79f608ce3ea11fd07be5d02

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--messengers.d391f6cb6597.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: +eo3iqWq0JHKpEEWMX7UFinPSqYt8Wptx6L/8GkUW8XHPlrewEtiOXMvxljPv+hL8ExIGJgmZ3E=
x-amz-request-id: XHYNB70MK8MK4SW3
last-modified: Thu, 17 Nov 2022 10:05:33 GMT
etag: "d391f6cb6597d71c6c59b50e4394594d"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 61583
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-twitch.1294239c3c6e.svg

23.32.85.11

200 OK

1.3 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-twitch.1294239c3c6e.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1170)
Size
1.3 kB (1329 bytes)
Hash
1294239c3c6e1ec6e7dbe8e97c202db1
889e5cad02c367442a6bdb831905cf8f731b1fab
682faa2826cf95b7245ee2d7cbd878e1146a77a25db9eb93308417386734ecbe

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-twitch.1294239c3c6e.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: GSunP5KxKv6yMgZjRnNAaPd+1sCfW0m/Gc76XsquLIPpbZd1eHqIsWHxcqDmULFM86Awsg0Hozo=
x-amz-request-id: WD6WQ6VH6WBYS4DB
last-modified: Thu, 17 Nov 2022 13:24:29 GMT
etag: "1294239c3c6e1ec6e7dbe8e97c202db1"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 1329
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--gx-mobile@2x.4aa1a438e946.webp

23.32.85.11

200 OK

38 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--gx-mobile@2x.4aa1a438e946.webp
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
RIFF (little-endian) data, Web/P image\012- data
Size
38 kB (37600 bytes)
Hash
4aa1a438e946907970930b7f2e04f644
77e2db6095a0b0491a3bd61b927b2cf8d7c6d523
5c0be912ca6292ddb33b0e5a4afcd89c8c9dd32026d77327944939e4bebfb4e0

HTTP Headers

GET /staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--gx-mobile@2x.4aa1a438e946.webp HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: QQUhCmQQYn4GHrfepo0Mi/3HJzwHVYNmCz5d7seYycP7R3F6bktPrnjWpnDtzr4KkD4IPwoOC/k=
x-amz-request-id: T729XA0GG3459ZVW
last-modified: Thu, 17 Nov 2022 13:24:42 GMT
etag: "4aa1a438e946907970930b7f2e04f644"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: binary/octet-stream
server: AmazonS3
content-length: 37600
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-player.a42c0ae4ed76.svg

23.32.85.11

200 OK

761 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-player.a42c0ae4ed76.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (348)
Size
761 B (761 bytes)
Hash
a42c0ae4ed762da17de858861b96bef8
1018ab188a623312eaceed0424273677076847d8
be0f6f54d74b85baee6b555db2d5712e03777398321179218d910aac37ad9626

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-player.a42c0ae4ed76.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: RPmO4VMEfC/NDuHejABIbicdUv+l2Wnvb9NfHlXffFhcPmNsHi0XoLZz7yhImDMI9v8Fdzi8U7U=
x-amz-request-id: XHYX5HTMPCNJAMCN
last-modified: Thu, 17 Nov 2022 10:05:33 GMT
etag: "a42c0ae4ed762da17de858861b96bef8"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 761
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-discord.b89c9e46e12b.svg

23.32.85.11

200 OK

3.0 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-discord.b89c9e46e12b.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2837)
Size
3.0 kB (2996 bytes)
Hash
b89c9e46e12b6b665b21a72981cef30e
d66d0535175370c5c09f2c625bfa9c85ae43bcad
b661b7660ce27ff5cec761f127d54e55407a4c0fa077e2aa3144038162c76328

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-discord.b89c9e46e12b.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: PXVUUaPJjbPRKo0OuUbVpOLEa8NSxAEMykmquDdbT5MhNd4Rvgt0EwNgXMHsB9lDj5lNrVdpzaM=
x-amz-request-id: SS0AV8VBKJH3M6G9
last-modified: Thu, 17 Nov 2022 13:24:29 GMT
etag: "b89c9e46e12b6b665b21a72981cef30e"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 2996
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-messengers.6397357cb14f.svg

23.32.85.11

200 OK

1.7 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-messengers.6397357cb14f.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1511)
Size
1.7 kB (1669 bytes)
Hash
6397357cb14fcdfab3ffce4f712eb9ba
71154708c7b40499ecfb9ba7862b8622c64a0557
06339aa8c2995d399d0638b013663a45ef5832894fd867309d80123f907ba431

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-messengers.6397357cb14f.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: yfHX9evG/by+zGrZ1NsvM1ts4ALeVDDBhW1vSQVXC8/Od+Rs/yNA0yOW7tKl1aNhyHT+AGTsqOU=
x-amz-request-id: XHYP9CVPV068JA73
last-modified: Thu, 17 Nov 2022 10:05:33 GMT
etag: "6397357cb14fcdfab3ffce4f712eb9ba"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 1669
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-fast-navigation.15eab96ff33c.svg

23.32.85.11

200 OK

280 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-fast-navigation.15eab96ff33c.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
280 B (280 bytes)
Hash
15eab96ff33c8893e11fe42ba67692dc
6362ed9717ec730eb7b457ada3f2b0163cf90256
9df873830d74272e4435fadd4e2294712c3dd24c0d19adb86d10bde656ac991a

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-fast-navigation.15eab96ff33c.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: Sr2yBHLxDtem/7RuyOCulQkfVbcM03aZHc5aNpcq+X6rfSDPGvm7+QinI4Z/PHXbnHBLkxCrXmw=
x-amz-request-id: XHYSA95ZXHGQR9PF
last-modified: Thu, 17 Nov 2022 10:05:33 GMT
etag: "15eab96ff33c8893e11fe42ba67692dc"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 280
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/logo/logo-and-name-negative.26081e42aa65.png

23.32.85.11

200 OK

12 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/logo/logo-and-name-negative.26081e42aa65.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 306 x 112, 8-bit/color RGBA, non-interlaced\012- data
Size
12 kB (12047 bytes)
Hash
26081e42aa65653accb46cf13eb880fe
cb89731851ed916c2e163620e99cd38e7943cc73
3cae222117086f887f9dbc3b04681ce01873749a9a55806cb8685af6b9ef14b5

HTTP Headers

GET /staticfiles/assets/images/logo/logo-and-name-negative.26081e42aa65.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: 1/kJ89zlRfHM533Jvigx31VNjxUWT2k/2syeWtIHl1asFKKZKkNL7fiHKs049YU1ZrGW0L2Yd0Q=
x-amz-request-id: YC13Q6CA29XGP4DP
last-modified: Thu, 17 Nov 2022 13:23:16 GMT
etag: "26081e42aa65653accb46cf13eb880fe"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 12047
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--mobile@2x.dad38e627140.webp

23.32.85.11

200 OK

48 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--mobile@2x.dad38e627140.webp
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
RIFF (little-endian) data, Web/P image\012- data
Size
48 kB (47722 bytes)
Hash
dad38e627140ad0b2d578c37f20e2421
8acbfdfaec92bbc532540419c342b68eec9b9f69
154dc8f94994a9e922c00c3b7d2edc875e0a37810db8366754eabdb2cb92aae9

HTTP Headers

GET /staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--mobile@2x.dad38e627140.webp HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: XlVFeTrxLhatdD281WNm/so2spnQH46jn0uvR5okc5YCPvnzWmqYdOqVJkQphNoceh6K23JCzfs=
x-amz-request-id: T729ENVJF73K1JMS
last-modified: Thu, 17 Nov 2022 13:24:42 GMT
etag: "dad38e627140ad0b2d578c37f20e2421"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: binary/octet-stream
server: AmazonS3
content-length: 47722
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--pinboards.e847bc384832.png

23.32.85.11

200 OK

115 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--pinboards.e847bc384832.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1177 x 675, 8-bit colormap, non-interlaced\012- data
Size
115 kB (115233 bytes)
Hash
e847bc384832792e93dccddf207f36ff
427c93356999dcf880951de0b5a3302748e8829f
7e08599def8a28a43b66943f7312c7d82f560eeeb1800ddf1865ebb507e5e2b4

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--pinboards.e847bc384832.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: gd/kdI3ZFollPD61h9bZrc614lU/Fto2TY1xl7oq3llJYUwLrEIZFmpG7GiQ63n/Sadr606Vt5I=
x-amz-request-id: XHYMHQ4GDKRZE4C0
last-modified: Thu, 17 Nov 2022 10:05:33 GMT
etag: "e847bc384832792e93dccddf207f36ff"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 115233
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--fast-navigation.c8d3273a941b.png

23.32.85.11

200 OK

46 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--fast-navigation.c8d3273a941b.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 732 x 666, 8-bit colormap, non-interlaced\012- data
Size
46 kB (46294 bytes)
Hash
c8d3273a941bb6d86cdcb4715d51d316
054a7d9eb88f0320a4ff768e271f7a42869883e9
d27e3d8d8edd6429733970d55a75621bca7fdcde185e3a37729952db85fce496

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--fast-navigation.c8d3273a941b.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: whVqdfOQPsO5jpjdIi+7v0gpL21fKexwmAlFPpyA9hsnt/4ZQJSfvnwaarAudmCL2OTu549ANlQ=
x-amz-request-id: 7CCRFGNC3H83DA90
last-modified: Thu, 17 Nov 2022 13:24:29 GMT
etag: "c8d3273a941bb6d86cdcb4715d51d316"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 46294
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/feature-promo/awesome-features--gx__mobile.c8ecc394b852.jpg

23.32.85.11

200 OK

64 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/feature-promo/awesome-features--gx__mobile.c8ecc394b852.jpg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 764x1356, components 3\012- data
Size
64 kB (64529 bytes)
Hash
c8ecc394b852869c3f8d196e06a15b44
f9476573123f0969aaf4d9d14d99fa422345a433
06ccc3052896eeb9cb55bcf12d97ce90c374089838d698317e8a4bc9d25c0631

HTTP Headers

GET /staticfiles/assets/images/sections/2021/feature-promo/awesome-features--gx__mobile.c8ecc394b852.jpg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: BT4KFO/cTz5MLIAMFTjCzKoUfLgH/TC+dW1WZcu20pRQn4ez/JAf/rPSaFT+nSPN4iSuylW+MSk=
x-amz-request-id: T729S7C9DQ2V69DX
last-modified: Thu, 17 Nov 2022 13:24:28 GMT
etag: "c8ecc394b852869c3f8d196e06a15b44"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 64529
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--gx-cleaner@2x.43ff34bf1a7b.webp

23.32.85.11

200 OK

82 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--gx-cleaner@2x.43ff34bf1a7b.webp
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
RIFF (little-endian) data, Web/P image\012- data
Size
82 kB (82120 bytes)
Hash
43ff34bf1a7b9da9262052869fdfe267
4aef7aae9d6e65cb7388c988e9512f23fc651b47
55e8eb06cf3783ccd1956b633b8758dff5f61edc5c3adb7ae784506205b29bdc

HTTP Headers

GET /staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--gx-cleaner@2x.43ff34bf1a7b.webp HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: 9ZoBYqbV57fRmVJrvgf+bsi7NmcGFs7l4ncFQEEvRKD24BXHWMRhpjT6xdBX/r7zNQrJZb4OqF8=
x-amz-request-id: X7RH1BDAJNJ9XA8T
last-modified: Thu, 17 Nov 2022 10:05:45 GMT
etag: "43ff34bf1a7b9da9262052869fdfe267"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: binary/octet-stream
server: AmazonS3
content-length: 82120
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--light-mode.8bc14025ea3a.png

23.32.85.11

200 OK

89 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--light-mode.8bc14025ea3a.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1189 x 724, 8-bit colormap, non-interlaced\012- data
Size
89 kB (89267 bytes)
Hash
8bc14025ea3a0ab18e7a17f14d5ade40
a2e6cbac201d150b15f720843c46e6c517cdd7ab
aa70e36bc8059277ec3ca5d0686e2203a59d9757dfc081a588fed56673021220

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--light-mode.8bc14025ea3a.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: q00LkgADSQxuKb6ZqIiO9U83L263Fgsf1gB35eeZjNLI+t/RggospyQxmCBk+RwKHi7vGBZnDf4=
x-amz-request-id: XHYY6P5C8AEB9BG1
last-modified: Thu, 17 Nov 2022 10:05:33 GMT
etag: "8bc14025ea3a0ab18e7a17f14d5ade40"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 89267
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__mobile--hero-section@2x.105801afec18.webp

23.32.85.11

200 OK

110 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__mobile--hero-section@2x.105801afec18.webp
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
RIFF (little-endian) data, Web/P image\012- data
Size
110 kB (109740 bytes)
Hash
105801afec185e88bf124ad6d2618d02
2ff3cf42a92114f07d5db760caadb27e55bd42f8
12aefc6c5ebb73b66b498923fa49c4e6682c74008a0ac39b15cd8ba77c71f562

HTTP Headers

GET /staticfiles/assets/images/sections/2021/hero-top/gx/gx__mobile--hero-section@2x.105801afec18.webp HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: Um2N73BqdT/ogbUwnVxCAm8uWyHlB0eq6erFi80nCGFk9qgx/pGrD8ZWYLVZttOfDc23ODmQ+n8=
x-amz-request-id: GK3F93RSE8CZR3W8
last-modified: Thu, 17 Nov 2022 13:24:42 GMT
etag: "105801afec185e88bf124ad6d2618d02"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: binary/octet-stream
server: AmazonS3
content-length: 109740
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--twitch.4f18d26dbbfe.png

23.32.85.11

200 OK

67 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--twitch.4f18d26dbbfe.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1177 x 675, 8-bit colormap, non-interlaced\012- data
Size
67 kB (67044 bytes)
Hash
4f18d26dbbfea1c39bcc4790d3ba5361
7f6b3efba188bcc2db3b8fb59d6c72f4d2d911dc
f7ea6f8265c161c9b37b13af614fc34e71788179269f89b55f5b556b1e8d479e

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--twitch.4f18d26dbbfe.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: jVLI+hTV9VccoHWwFzajO2R51VuFibgksN4+9QFbYKjb3NmNX7djV6V2KWZLl+KxJw8OPg3Sz1k=
x-amz-request-id: XHYVY3NRAA9CRGM5
last-modified: Thu, 17 Nov 2022 10:05:33 GMT
etag: "4f18d26dbbfea1c39bcc4790d3ba5361"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 67044
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--discord.98f286b87cb3.png

23.32.85.11

200 OK

94 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--discord.98f286b87cb3.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1177 x 675, 8-bit colormap, non-interlaced\012- data
Size
94 kB (93820 bytes)
Hash
98f286b87cb36972083556679bd4ffb5
be31174905eb26c710792e5a42c3e0f4993f990c
ac40791b94a635950ec28cf246b5400c9188f2b95a0962d1e757633a60e3e1ec

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--discord.98f286b87cb3.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: sPZDswGIKn3ZJkz7hE08trM+qkpIS0QO4Y/bTpmEZqsPeqNOPFSF9IJIy4kl0+/bSYGOzbFkjXM=
x-amz-request-id: R7VHCSAPZ3RB4CM6
last-modified: Thu, 17 Nov 2022 13:24:29 GMT
etag: "98f286b87cb36972083556679bd4ffb5"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 93820
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--player.2d9730bcfc30.png

23.32.85.11

200 OK

70 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--player.2d9730bcfc30.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1177 x 675, 8-bit colormap, non-interlaced\012- data
Size
70 kB (70255 bytes)
Hash
2d9730bcfc30c45ee308e90b3b771f40
21cf5ed07ced3485c712f851a089a2e868d1807b
e13f1ebc277bdba152bb58e35a06682fe279a003aaf65315754ffa406aa52866

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--player.2d9730bcfc30.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: tyhVVKGr7zfar+hJOMcGFNvQ9vMOuCfHOtw2QVT2p1iRQubmaHPsCkM7fBpfyyC9lDZaor0IY5I=
x-amz-request-id: XHYGHZRTS92F5W1W
last-modified: Thu, 17 Nov 2022 10:05:33 GMT
etag: "2d9730bcfc30c45ee308e90b3b771f40"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 70255
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--flow.b1416d774518.png

23.32.85.11

200 OK

92 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--flow.b1416d774518.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1177 x 697, 8-bit colormap, non-interlaced\012- data
Size
92 kB (91594 bytes)
Hash
b1416d77451842f5032b85c1c0edd933
ad576628be2723b4c5af04246f4438080dff70cb
5fd825ff2dfdf8a427c53a0548b5d730413e6357e2847038ca298d40c18a349d

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--flow.b1416d774518.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: oWKTTdMMtylFGSVbhQ9A5G+nnxss+k7a0pxZvXZzGj4kcCwqPXUjUa5idi6EiGAXl/LYqdJDzzU=
x-amz-request-id: R7VGES9WA7XK4MB9
last-modified: Thu, 17 Nov 2022 13:24:29 GMT
etag: "b1416d77451842f5032b85c1c0edd933"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 91594
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
16bbadb18616687351d4047aedc2ab45
979123c7ad6726befbbab2c07b50ecca31aa2d18
de8231c6ee426b7a76ebf574998dec11ce908efc0a745c2182fb7b61c5915e9a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:56:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx-mobile__android-iOS@2x.d190a54a25f9.webp

23.32.85.11

200 OK

113 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx-mobile__android-iOS@2x.d190a54a25f9.webp
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
RIFF (little-endian) data, Web/P image\012- data
Size
113 kB (112954 bytes)
Hash
d190a54a25f96e1356a94e2a868bd5be
2b5014cd95340eeee12f0759f94e47669a4616d9
20d4625716519bb627af5c27bc73dbcc630509a1052b9b3cc2cbcfbf5da9e7f7

HTTP Headers

GET /staticfiles/assets/images/sections/2021/hero-top/gx/gx-mobile__android-iOS@2x.d190a54a25f9.webp HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: KkDhG4w0qkMAAx19fGQr1SKm6J7RwnohD6BhnWwllYyyvdffHM0u7+/dFXfpQNrJbNiEUC0ohoI=
x-amz-request-id: T72DFABD8B77HV89
last-modified: Thu, 17 Nov 2022 13:24:41 GMT
etag: "d190a54a25f96e1356a94e2a868bd5be"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: binary/octet-stream
server: AmazonS3
content-length: 112954
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--gx-corner.e3f653e6eafc.png

23.32.85.11

200 OK

146 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--gx-corner.e3f653e6eafc.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1189 x 724, 8-bit colormap, non-interlaced\012- data
Size
146 kB (145852 bytes)
Hash
e3f653e6eafc96fee812c59429064dbb
4573c82a833ddb3c7ab5da3d1392ccc36d4fed1c
57a65439c5b71c3f0c3036eaa550ddf46451bec1f5165a1a7b29b275975c45f6

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--gx-corner.e3f653e6eafc.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: TkgRG5v3Q+D1fRxlQ66OtmwzOJr0u1H0r1HK1WxxRcuXZThkZTg2i0knIYn0kStddW1d79r15MQ=
x-amz-request-id: XHYNCE9X1D3NDEEQ
last-modified: Thu, 17 Nov 2022 10:05:33 GMT
etag: "e3f653e6eafc96fee812c59429064dbb"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 145852
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
16bbadb18616687351d4047aedc2ab45
979123c7ad6726befbbab2c07b50ecca31aa2d18
de8231c6ee426b7a76ebf574998dec11ce908efc0a745c2182fb7b61c5915e9a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:56:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/feature-promo/awesome-features--gx.572511a1be17.jpg

23.32.85.11

200 OK

165 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/feature-promo/awesome-features--gx.572511a1be17.jpg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2732x1356, components 3\012- data
Size
165 kB (165152 bytes)
Hash
572511a1be17382b08d59dad1b7ab48b
a3aa662de9020b5e33d032e8652ab9762ecf207c
6b543e1ea575c545cd5e940afc7197583cd0862c4c34c75175cf5a61fc0d5997

HTTP Headers

GET /staticfiles/assets/images/sections/2021/feature-promo/awesome-features--gx.572511a1be17.jpg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: 9KOA9N/Ori6Otq3hDhmyNFwytksBR376MxTJ5bkCoO7wNPk9reDngLhtbQXvrc8OosUBFJM1dwo=
x-amz-request-id: XHYT8BXJMZKC7EYR
last-modified: Thu, 17 Nov 2022 10:05:31 GMT
etag: "572511a1be17382b08d59dad1b7ab48b"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 165152
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/pages/gx2021/gaming-inspired-features-bg.71e6e11009a1.jpg

23.32.85.11

200 OK

331 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/pages/gx2021/gaming-inspired-features-bg.71e6e11009a1.jpg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1366x678, components 3\012- data
Size
331 kB (330707 bytes)
Hash
71e6e11009a13616c07acd52708a42c0
bca22f04ba54d8002c18bebaf97125ef04d9de1c
2b830c1c722fc8fda761975eb666574f5eb29958c502b614b32a2501ab564071

HTTP Headers

GET /staticfiles/assets/images/pages/gx2021/gaming-inspired-features-bg.71e6e11009a1.jpg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: irYyrfgJ2DvqX+9qxCDDZaFEVYKNwiGciONU1AuBHCzLQvHlEOBPvobNt5FZVixGy9Z7a6kr9T8=
x-amz-request-id: QQV1J6AMSC2E3A1V
last-modified: Thu, 17 Nov 2022 13:24:13 GMT
etag: "71e6e11009a13616c07acd52708a42c0"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 330707
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/theme-switcher/gx__color-theme--classic.27f61f65b2ce.png

23.32.85.11

200 OK

412 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/theme-switcher/gx__color-theme--classic.27f61f65b2ce.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 2378 x 1448, 8-bit colormap, non-interlaced\012- data
Size
412 kB (412407 bytes)
Hash
27f61f65b2ce85586550fe592d0f21e0
494849ea227b3c3e9b24729617c9d481ce91f603
117771cf06f8c025e2f67a556b3428758b3e7a2dc468d715efa4961cad92e052

HTTP Headers

GET /staticfiles/assets/images/sections/2021/theme-switcher/gx__color-theme--classic.27f61f65b2ce.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: pnqFDJym0COqSB/f8gwURkabqZYrKnQC5gmQdwV4P3Ac1iJWsutRjR+1PP3rWKJyPeWxeCyyz10=
x-amz-request-id: HYS7G4Y0HT30WWV0
last-modified: Wed, 16 Nov 2022 14:47:33 GMT
etag: "27f61f65b2ce85586550fe592d0f21e0"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 412407
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
feaeba711c7421b074e726f89ff34e0b
c590c0b76a7a78ab51a4dabcd8f20a1b172b02fb
ebe6e312ea7116713547fbd756805843b1c242ad22269158a79305f1819fa990

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:56:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn-production-opera-website.operacdn.com/staticfiles/098459c4b473cf0b98bd.ff298eae6d4b.svg?ac7cbb4bda0a

23.32.85.11

200 OK

903 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/098459c4b473cf0b98bd.ff298eae6d4b.svg?ac7cbb4bda0a
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (631)
Size
903 B (903 bytes)
Hash
ff298eae6d4b58dd53105f5934057dfd
3d8e26c3a460aca357ff6fe0576d6d986f257fd6
5c38b1f4d4183c82ef0f20b45ec1179853cd0a5edc8f28d7fa22c38e30e1aa34

HTTP Headers

GET /staticfiles/098459c4b473cf0b98bd.ff298eae6d4b.svg?ac7cbb4bda0a HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.b31004795d0c.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: wJiMp+mNBYvkKlaGcbgAt6FVuEywCCxPPaB0rAbShW0Dq6U5ETTRk9k1Wy1v7aRVPXhTUH/5ZhY=
x-amz-request-id: Q6G5ZNSHF73SYBCT
last-modified: Thu, 17 Nov 2022 13:22:21 GMT
etag: "ff298eae6d4b58dd53105f5934057dfd"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 903
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/18c29e0508b0f594389b.7624d1fea1cc.svg?6ea62f010616

23.32.85.11

200 OK

720 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/18c29e0508b0f594389b.7624d1fea1cc.svg?6ea62f010616
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (538)
Size
720 B (720 bytes)
Hash
7624d1fea1cce77c2ee117b788b03e1a
060ed0a46d61ee5311bd51e33d2626b619f43eb2
e4cffcca8616bcbebc274b51458e235f7b15cfceb6bc6ee0997e3d506e14a99a

HTTP Headers

GET /staticfiles/18c29e0508b0f594389b.7624d1fea1cc.svg?6ea62f010616 HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.b31004795d0c.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: DyvexXSoo52/qDCjsz1hvzw4CX2scyzCqcWN217NYj5eYjr6Rkq/xF+dIr39WqPmge8Iap6kYdY=
x-amz-request-id: Q6G0J6AM23BMDV8C
last-modified: Thu, 17 Nov 2022 13:22:22 GMT
etag: "7624d1fea1cce77c2ee117b788b03e1a"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 720
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:56:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn-production-opera-website.operacdn.com/staticfiles/7df98da1cf2f6ee9cd94.6c7243090568.svg?6ea62f010616

23.32.85.11

200 OK

313 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/7df98da1cf2f6ee9cd94.6c7243090568.svg?6ea62f010616
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
313 B (313 bytes)
Hash
6c7243090568377d3fd0a1617ff6f9e8
ed4c277780b619caadbe445920bd117c19f11d61
ca4349d4affc66594ee57eaafdc0cc0f2c86893cda82bcb29d80031a08560001

HTTP Headers

GET /staticfiles/7df98da1cf2f6ee9cd94.6c7243090568.svg?6ea62f010616 HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.b31004795d0c.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: lB0AlNYYuzU2d5/VQX6WHOJf5MULt07D2nst/xIitNkRuGp/16d5BXWjTIsrOSuSLVd8RFgppfQ=
x-amz-request-id: Q6G41NDJAT48ETEK
last-modified: Thu, 17 Nov 2022 13:22:28 GMT
etag: "6c7243090568377d3fd0a1617ff6f9e8"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 313
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/d9a4f53cf4619114d575.dc9f0582852c.svg?6ea62f010616

23.32.85.11

200 OK

199 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/d9a4f53cf4619114d575.dc9f0582852c.svg?6ea62f010616
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
199 B (199 bytes)
Hash
dc9f0582852c528b15eec2d982b7950c
1a0223d7da92444083348e54ff06e8d8a16ccd7f
cc982158f436a87b02539669d4e03e6d7eb408d633d98ced5a0de2d025421d94

HTTP Headers

GET /staticfiles/d9a4f53cf4619114d575.dc9f0582852c.svg?6ea62f010616 HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.b31004795d0c.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: WKDqreHRUYrm6CJ/o/WoKDxD+MJ31Awiu1GWdGj0TtiSfTtBZHwCsw1zbzA6fqPW74KpiNT7uOk=
x-amz-request-id: Q6G85WSS3R6PEFB7
last-modified: Thu, 17 Nov 2022 13:25:32 GMT
etag: "dc9f0582852c528b15eec2d982b7950c"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 199
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-PRBZ42F

142.250.74.168

200 OK

108 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-PRBZ42F
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (50672)
Size
108 kB (107650 bytes)
Hash
fed7c17f51412f1c7554686f3fa769fc
12f39ff3f9f8ee3faf6ecac59dfb8bfedbe0bd40
4bf88c391d19e9e32314606bde553eb53308fb3ed55551b8359422d4e1ff4bac

HTTP Headers

GET /gtm.js?id=GTM-PRBZ42F HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 18 Nov 2022 05:56:44 GMT
expires: Fri, 18 Nov 2022 05:56:44 GMT
cache-control: private, max-age=900
last-modified: Fri, 18 Nov 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 107650
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-N7XDW7Z

142.250.74.168

200 OK

62 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-N7XDW7Z
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (6239)
Size
62 kB (62229 bytes)
Hash
afc5d75dca8e7149909dc5b7995315a9
9e1bbfcb1bc4a84fd72d6fb5cfefa6896dc403c5
0ce95babe94edcee956fa4b3dcbf41ffcd99642bde3ebe754a85d378666fd19d

HTTP Headers

GET /gtm.js?id=GTM-N7XDW7Z HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 18 Nov 2022 05:56:44 GMT
expires: Fri, 18 Nov 2022 05:56:44 GMT
cache-control: private, max-age=900
last-modified: Fri, 18 Nov 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 62229
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/cca288e4bb33a3c6dec1.dab90a462c49.svg?6ea62f010616

23.32.85.11

200 OK

176 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/cca288e4bb33a3c6dec1.dab90a462c49.svg?6ea62f010616
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
176 B (176 bytes)
Hash
dab90a462c4945afb54399ed84a34ba2
ff9049f42ac86fda9608f8c94c61d754994d0976
ea2eb115d15d9c1b853ed968d6591f07f0c5d4b2dd1f2621a3999015d746b215

HTTP Headers

GET /staticfiles/cca288e4bb33a3c6dec1.dab90a462c49.svg?6ea62f010616 HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.b31004795d0c.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: LRuPidGUMNb42R5Pni9jGtozILjO6uEvXnnnbC+B0rpRvNQ2cl7AtGSK8ElzZi0gZhA4okt4cU0=
x-amz-request-id: Q6G3RYG0PV3PVY3J
last-modified: Thu, 17 Nov 2022 13:25:32 GMT
etag: "dab90a462c4945afb54399ed84a34ba2"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 176
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:56:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn-production-opera-website.operacdn.com/staticfiles/0e22678c7dcde0767402.00fd023076a3.svg?6ea62f010616

23.32.85.11

200 OK

314 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/0e22678c7dcde0767402.00fd023076a3.svg?6ea62f010616
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
314 B (314 bytes)
Hash
00fd023076a318efa2524ed7e8749adf
78505b0f17acdce6e50f56d12194644dcdd2f1e7
25167a3893b9f0d9945ae401c2f1a39def06a7e8fa7b69adb9b69ff588f6a6b3

HTTP Headers

GET /staticfiles/0e22678c7dcde0767402.00fd023076a3.svg?6ea62f010616 HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.b31004795d0c.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: v7631NWZeB/+xR+wx0WTv93FSb9ixmEv0SJvgwbB5A77d+re/ondUlQDNebRV7aB2AhgIaPXZ+s=
x-amz-request-id: Q6GDFP1W0CNDTFTW
last-modified: Thu, 17 Nov 2022 13:22:21 GMT
etag: "00fd023076a318efa2524ed7e8749adf"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 314
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/48f02833f0ae8d75d392.dae9ad1b8182.svg?6ea62f010616

23.32.85.11

200 OK

812 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/48f02833f0ae8d75d392.dae9ad1b8182.svg?6ea62f010616
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (649)
Size
812 B (812 bytes)
Hash
dae9ad1b81823c9cd4280d89b21c7d61
db3ddc56a61d39b4097dc6cbf73ea9b771a08e46
50923adbf480507f490a925bb589fe9389d3865ca40d15bc4a5ffb96e27df210

HTTP Headers

GET /staticfiles/48f02833f0ae8d75d392.dae9ad1b8182.svg?6ea62f010616 HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.b31004795d0c.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: VD/BYVeaGojPYn429pgr0mxK/ceSesQvusQvQUG7pKMHo3JfDBe3/kUtHPs10w7lSG/TNp4RF50=
x-amz-request-id: Q6G4JV0M2CTYM3N2
last-modified: Thu, 17 Nov 2022 13:22:24 GMT
etag: "dae9ad1b81823c9cd4280d89b21c7d61"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 812
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/4c15b45e6b34651fef8a.3dc055b4d554.svg?6ea62f010616

23.32.85.11

200 OK

176 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/4c15b45e6b34651fef8a.3dc055b4d554.svg?6ea62f010616
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
176 B (176 bytes)
Hash
3dc055b4d554da5ab1c7a7e324a5897e
00e912ee8e024c83c09f58ce845b1905a521cca2
dcdc184e3e1f5efa0479c60dc714a8d04d54d72a39ac34815a36dc4c60c9739d

HTTP Headers

GET /staticfiles/4c15b45e6b34651fef8a.3dc055b4d554.svg?6ea62f010616 HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.b31004795d0c.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: zMntGDV146Uu5thlXWI2tbN9u41VhJpPIS1x80g6UBBD3f3WL+QrEs3S63Yft0eIBjucH2kMEcg=
x-amz-request-id: Q6G7GSGF1TPFCR10
last-modified: Thu, 17 Nov 2022 13:22:24 GMT
etag: "3dc055b4d554da5ab1c7a7e324a5897e"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 176
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/c2a2cff7f6d5729f28f4.75084611d5e1.svg?6ea62f010616

23.32.85.11

200 OK

288 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/c2a2cff7f6d5729f28f4.75084611d5e1.svg?6ea62f010616
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
288 B (288 bytes)
Hash
75084611d5e1fb181a82b45ef0611a23
a11d0d14b3358250a1e1d47356fd921c2220f1c1
1b1d5a0dcc955ba923b5c5606b37bef48356ef93f3e0c1ca875f6b32aba99ece

HTTP Headers

GET /staticfiles/c2a2cff7f6d5729f28f4.75084611d5e1.svg?6ea62f010616 HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.b31004795d0c.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: pU9IUaeN7qamzyKyrfMxdT6mStI0T7bmBCnYa13GCvz7D033R/ElmPSZ1GU1w7sX7VEjApX4Lxo=
x-amz-request-id: Q6G30K7JF94JM8GR
last-modified: Thu, 17 Nov 2022 13:25:31 GMT
etag: "75084611d5e1fb181a82b45ef0611a23"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 288
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/ca10b4ba81ca6a0ecbfc.1ca90acc4730.svg?6ea62f010616

23.32.85.11

200 OK

317 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/ca10b4ba81ca6a0ecbfc.1ca90acc4730.svg?6ea62f010616
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
317 B (317 bytes)
Hash
1ca90acc4730203b0ef170a977a1c637
5163f7e10d7bd1b408022aeb65bf8d6436e8ebb5
51ce7c5980ff8bd3f3864c3eaaacb00c2a54d12e4dd16b2dd360554f0f3c1256

HTTP Headers

GET /staticfiles/ca10b4ba81ca6a0ecbfc.1ca90acc4730.svg?6ea62f010616 HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.b31004795d0c.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: NoAvITRoUyV9gGQMxmO/uJDPFPDlM0v7C272Vsy9B5TmxdeZK5N+vnMrnFVL66x55obMR5OjUGA=
x-amz-request-id: Q6G9K24DFN5EY6YM
last-modified: Thu, 17 Nov 2022 13:25:31 GMT
etag: "1ca90acc4730203b0ef170a977a1c637"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 317
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/e3dd22e17cfd6b5c8151.17a59627c976.svg?6ea62f010616

23.32.85.11

200 OK

1.6 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/e3dd22e17cfd6b5c8151.17a59627c976.svg?6ea62f010616
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1443)
Size
1.6 kB (1595 bytes)
Hash
17a59627c976f0dd4c1a65023f677bcc
1a92c5ce81718a9a62ca46e71f2285523315e886
8b3de6575e969b75d53638e8d40717fa73ad85ef2ebc6ad04080116060a52a7b

HTTP Headers

GET /staticfiles/e3dd22e17cfd6b5c8151.17a59627c976.svg?6ea62f010616 HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.b31004795d0c.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: S4SX5ahJYkFrXffwdoM+FHvYkLJTZY569x98CYRfGzLkx/r9pLF3miCgK95pU0Z4zlSHiUEHaFE=
x-amz-request-id: Q6G3S3CNZDV6PFV1
last-modified: Thu, 17 Nov 2022 13:25:33 GMT
etag: "17a59627c976f0dd4c1a65023f677bcc"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 1595
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/6ac3b1b2384a16da6bd0.797bada37d41.svg?6ea62f010616

23.32.85.11

200 OK

289 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/6ac3b1b2384a16da6bd0.797bada37d41.svg?6ea62f010616
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
289 B (289 bytes)
Hash
797bada37d414f7af636e9a9b3c565fa
7327310da6b0ba6ae8557196f7d020abba58a0f9
8f1fb4db42c83907bd12f03f51431a402a70e8fa2a18efe3285ad61c39e2412a

HTTP Headers

GET /staticfiles/6ac3b1b2384a16da6bd0.797bada37d41.svg?6ea62f010616 HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.b31004795d0c.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: rY6MkA++qwnY8AYT8yI/kyjauxsfdFRl1S/U1sPnibHMQasN/kQcGAVuDG0YPYQVF2O81/+1M80=
x-amz-request-id: Q6G3P5FHT7J780TM
last-modified: Thu, 17 Nov 2022 13:22:26 GMT
etag: "797bada37d414f7af636e9a9b3c565fa"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 289
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

fonts.gstatic.com/s/chakrapetch/v9/cIflMapbsEk7TDLdtEz1BwkeJI91R5_F.woff2

216.58.207.195

200 OK

9.0 kB

URL HTTP/2
fonts.gstatic.com/s/chakrapetch/v9/cIflMapbsEk7TDLdtEz1BwkeJI91R5_F.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 8992, version 1.0\012- data
Size
9.0 kB (8992 bytes)
Hash
5ff3f8c069d7462a62ef1dada9c1406e
b3fbc64d485f06dfda7f1de61b0abd523f48a315
c6ccbd16dfaa5c559bd468ff0cca14f38e37100e35419a49cf4d3c6c23d2d163

HTTP Headers

GET /s/chakrapetch/v9/cIflMapbsEk7TDLdtEz1BwkeJI91R5_F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.opera.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8992
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 21:50:34 GMT
expires: Fri, 17 Nov 2023 21:50:34 GMT
cache-control: public, max-age=31536000
age: 29170
last-modified: Thu, 21 Apr 2022 18:18:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/chakrapetch/v9/cIf6MapbsEk7TDLdtEz1BwkWn6pg.woff2

216.58.207.195

200 OK

8.9 kB

URL HTTP/2
fonts.gstatic.com/s/chakrapetch/v9/cIf6MapbsEk7TDLdtEz1BwkWn6pg.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 8912, version 1.0\012- data
Size
8.9 kB (8912 bytes)
Hash
8e4d50afa8b6e0eaa0aa76d40d4e92fa
73e1c8cde3ddef7eaa9feab943b749d7f3eba058
5452b4581af8fa4aa927665a835708f6298f75bfabeb99813ec585ec6bcfc494

HTTP Headers

GET /s/chakrapetch/v9/cIf6MapbsEk7TDLdtEz1BwkWn6pg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.opera.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8912
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 16:50:59 GMT
expires: Fri, 17 Nov 2023 16:50:59 GMT
cache-control: public, max-age=31536000
age: 47145
last-modified: Thu, 21 Apr 2022 18:53:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
16bbadb18616687351d4047aedc2ab45
979123c7ad6726befbbab2c07b50ecca31aa2d18
de8231c6ee426b7a76ebf574998dec11ce908efc0a745c2182fb7b61c5915e9a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:56:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:56:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.opera.com/api/geolocation/

18.158.18.209

200 OK

102 B

URL HTTP/2
www.opera.com/api/geolocation/
IP
18.158.18.209:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with no line terminators
Size
102 B (102 bytes)
Hash
8fddccad2d167f151cd234c5a572ea01
bb0b117d1117b73618c11e7bd511669ea6d78f45
da74941bee8050c64caa54baecf586a091fc35299055bb14d1869d5f18501aff

HTTP Headers

GET /api/geolocation/ HTTP/1.1
Host: www.opera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/gx?utm_content=1596_wtugWWw3ex0TlUvQQ5bV&utm_medium=pa&utm_campaign=PWN_NO&utm_id=0fc2a6cfcd6744fe8ebb5ae505aab3cd&utm_source=PWNgames&edition=std-1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 18 Nov 2022 05:56:44 GMT
content-type: application/json
content-length: 102
content-language: en
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=3600
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=63072000; includeSubdomains; preload
content-security-policy: frame-ancestors 'self' https://*.opera.com; upgrade-insecure-requests;
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/pages/client/welcomeGx/favicon/apple-touch-icon.cd7f66e4edc9.png

23.32.85.11

200 OK

4.7 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/pages/client/welcomeGx/favicon/apple-touch-icon.cd7f66e4edc9.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 180 x 180, 8-bit colormap, non-interlaced\012- data
Size
4.7 kB (4721 bytes)
Hash
cd7f66e4edc9eee902af0f50c1ca0236
031020df2108deb05f30a1dee9896dda7d39032b
026e5234ac8b8a77d9c322532e7beb3e91a8b5b2bb2ac1a17b9d2f0b45bae42a

HTTP Headers

GET /staticfiles/assets/images/pages/client/welcomeGx/favicon/apple-touch-icon.cd7f66e4edc9.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: ca8Wl0EmvtA4lv5PujARq8wnf436FNM4gCXBpM/D9yz89rHcVPhbTIsqlTaxoJF6s9wXXEP5e6M=
x-amz-request-id: 0NGJD5C3XX0SQP36
last-modified: Thu, 17 Nov 2022 10:05:10 GMT
etag: "cd7f66e4edc9eee902af0f50c1ca0236"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 4721
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/pages/client/welcomeGx/favicon/favicon-16x16.134fa45a8400.png

23.32.85.11

200 OK

1.0 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/pages/client/welcomeGx/favicon/favicon-16x16.134fa45a8400.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Size
1.0 kB (1015 bytes)
Hash
134fa45a8400d2f7246272b06d9b10de
3a9322216d1515d83b775510df41b2fd10e9d896
8abf10dee661f501e90bec03ec4501be24ca7a5a946b2e5658c8881fca6c5d46

HTTP Headers

GET /staticfiles/assets/images/pages/client/welcomeGx/favicon/favicon-16x16.134fa45a8400.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: kGtcMJaEd5GBHbX1TyQgIajHgGyY9Ut/Mg5vXUoa7oBEUYc3QV4acipEnE8oUDu83/A/fOvrxLU=
x-amz-request-id: FKYWBYQNGFF5Y7R1
last-modified: Thu, 17 Nov 2022 13:24:08 GMT
etag: "134fa45a8400d2f7246272b06d9b10de"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 1015
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

www.redditstatic.com/ads/pixel.js

151.101.85.140

200 OK

7.7 kB

URL HTTP/2
www.redditstatic.com/ads/pixel.js
IP
151.101.85.140:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (25224)
Size
7.7 kB (7722 bytes)
Hash
3528fd00b652f61a266eb584d96f4fcc
d89e16aa1323c6c4f1ed3941122020684a599361
77efa9f2ddfdca7a45df37bbcd22fdaeb7b97161a2acd87e21eb78bdeaad1332

HTTP Headers

GET /ads/pixel.js HTTP/1.1
Host: www.redditstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 16:45:46 GMT
etag: "3528fd00b652f61a266eb584d96f4fcc"
cache-control: public, max-age=60
content-encoding: gzip
content-type: application/javascript
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 18 Nov 2022 05:56:45 GMT
vary: Accept-Encoding,Origin
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true,  "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
content-length: 7722
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
4bf9d7f716bc1adeca873e97debe0555
3b3fed135b3a3c3d485e6ec86a12c0de80822430
c0b75f37ec5d15fd96047d4f0b5dbafb6636b4f8adfa39dd5b84465925d83dce

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2460
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:56:45 GMT
Last-Modified: Fri, 18 Nov 2022 05:15:45 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471

cdn.taboola.com/libtrc/unip/1410119/tfa.js

151.101.85.44

200 OK

18 kB

URL HTTP/2
cdn.taboola.com/libtrc/unip/1410119/tfa.js
IP
151.101.85.44:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (58535)
Size
18 kB (17961 bytes)
Hash
aac79ebcef76a279bedaf6989445099e
b5d61e5cfb96fc2ca354b28e6e9a1bd559a1ecd4
337d2bf68088f6f95e1f1f269a9ca89533a52887788f913a9339549d37974809

HTTP Headers

GET /libtrc/unip/1410119/tfa.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: tQrEZuln7WfxLkm0YZ3p57hVmBFL6u7+FXeTsQJfBeR662vVDgoTYSRQ09DJiWa9DmBzSjblMrY=
x-amz-request-id: E46G2AMAPJVMM2FP
x-amz-replication-status: PENDING
last-modified: Sun, 13 Nov 2022 11:33:49 GMT
etag: "0736e0723506a0c08c9b8dd51a632b41"
x-amz-version-id: Az2Xg4L7YnuQ1t5b9E8SPf32Daoo_K1V
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Fri, 18 Nov 2022 05:56:45 GMT
via: 1.1 varnish
age: 8
x-served-by: cache-bma1660-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1668751005.133202,VS0,VE1
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 15
content-length: 17961
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

216.239.38.178

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
216.239.38.178:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 18 Nov 2022 04:41:09 GMT
expires: Fri, 18 Nov 2022 06:41:09 GMT
cache-control: public, max-age=7200
age: 4536
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4ec62279c2b0171ab1d12d11e38a8bb1
a95c73a838695ebad74025f9841f44c67af18454
0582eb214cb1fe089cb4b5e5ba41545fe7e15212282588bf711494d165e88506

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:56:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

connect.facebook.net/en_US/fbevents.js

31.13.72.12

200 OK

27 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64348)
Size
27 kB (27340 bytes)
Hash
44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: MDRfh5Ugrlv7KoGkYS0fAkPp/ClAYlBal6AP8GNwyKJel76ga8Zl4wyMyWVOB5GVm+nvroxsF50tuC93hUQ+Rw==
priority: u=3,i
content-length: 27340
x-fb-trip-id: 1904183273
date: Fri, 18 Nov 2022 05:56:45 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

bat.bing.com/bat.js

13.107.21.200

200 OK

11 kB

URL HTTP/2
bat.bing.com/bat.js
IP
13.107.21.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type
Unicode text, UTF-8 text, with very long lines (39007), with no line terminators
Size
11 kB (11421 bytes)
Hash
22e2e3226eb5ada04929a2e43307eeda
04615fa88f80567974bdeb0f103ca5909746ebd7
41feebdfb0b03cd7fee2eb886adef6f3f1f85d3f14215e9a388d2a50e42efb9b

HTTP Headers

GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11421
content-type: application/javascript
content-encoding: gzip
last-modified: Wed, 09 Nov 2022 21:23:50 GMT
accept-ranges: bytes
etag: "077538f81f4d81:0"
vary: Accept-Encoding
set-cookie: MUID=1DDC3294E93B6BB926F820F4E8CE6A76; domain=.bing.com; expires=Wed, 13-Dec-2023 05:56:45 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 9F34733A011449A89274ECC0C354F254 Ref B: OSL30EDGE0508 Ref C: 2022-11-18T05:56:45Z
date: Fri, 18 Nov 2022 05:56:45 GMT
X-Firefox-Spdy: h2

11442918.fls.doubleclick.net/activityi;src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=8117816489487;gtm=2wgb90;auiddc=180804668.1668751003;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1596_wtugWWw3ex0TlUvQQ5bV%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D0fc2a6cfcd6744fe8ebb5ae505aab3cd%26utm_source%3DPWNgames%26edition%3Dstd-1?

142.250.74.70

200 OK

354 B

URL HTTP/2
11442918.fls.doubleclick.net/activityi;src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=8117816489487;gtm=2wgb90;auiddc=180804668.1668751003;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1596_wtugWWw3ex0TlUvQQ5bV%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D0fc2a6cfcd6744fe8ebb5ae505aab3cd%26utm_source%3DPWNgames%26edition%3Dstd-1?
IP
142.250.74.70:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (626), with no line terminators
Size
354 B (354 bytes)
Hash
9a3ae41fa90d06a86980b455cf426975
440c7f9ad0873055e2029836482d07a74d30bb1a
1577aba7949c366b6cf61430daa34269efdb8f07593bc521a1d8bbce999b3e87

HTTP Headers

GET /activityi;src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=8117816489487;gtm=2wgb90;auiddc=180804668.1668751003;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1596_wtugWWw3ex0TlUvQQ5bV%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D0fc2a6cfcd6744fe8ebb5ae505aab3cd%26utm_source%3DPWNgames%26edition%3Dstd-1? HTTP/1.1
Host: 11442918.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 18 Nov 2022 05:56:45 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 354
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 18-Nov-2022 06:11:45 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
4bf9d7f716bc1adeca873e97debe0555
3b3fed135b3a3c3d485e6ec86a12c0de80822430
c0b75f37ec5d15fd96047d4f0b5dbafb6636b4f8adfa39dd5b84465925d83dce

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2460
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:56:45 GMT
Last-Modified: Fri, 18 Nov 2022 05:15:45 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4ec62279c2b0171ab1d12d11e38a8bb1
a95c73a838695ebad74025f9841f44c67af18454
0582eb214cb1fe089cb4b5e5ba41545fe7e15212282588bf711494d165e88506

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:56:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8bd74b7ad2725f15396907ce2070e9a9
c624c31552aeb494b5a630db33054ad03cbd5a0e
a20baa5c9be0ccc20d8bcd78680101f96dc0f6a69427bd9f56436982288b72f6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:56:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

script.hotjar.com/modules.55241fd65a1af5a1837b.js

54.230.111.44

200 OK

69 kB

URL HTTP/2
script.hotjar.com/modules.55241fd65a1af5a1837b.js
IP
54.230.111.44:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text, with very long lines (48714)
Size
69 kB (68617 bytes)
Hash
5f82b1a8e62b6a241154cb066c4d1ad8
942982f722f180cb3eac787f0f5edb1f3927696a
36a9999c741ee16ea1337a713b13a62f7e368a437ebe9581c487d42b7c7fe50b

HTTP Headers

GET /modules.55241fd65a1af5a1837b.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
content-length: 68617
date: Thu, 17 Nov 2022 11:06:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "5f82b1a8e62b6a241154cb066c4d1ad8"
last-modified: Thu, 17 Nov 2022 11:05:52 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qSZpBaQR8rWaVVnxvb2-ka7Koomzq9CY_oIRlRSy1obZMmyxlYpvTg==
age: 67839
X-Firefox-Spdy: h2

alb.reddit.com/rp.gif?ts=1668751003490&id=t2_378pcjv6&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=b96db4fa-b649-455d-902d-a62d1bd03450&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8

151.101.85.140

200 OK

42 B

URL HTTP/2
alb.reddit.com/rp.gif?ts=1668751003490&id=t2_378pcjv6&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=b96db4fa-b649-455d-902d-a62d1bd03450&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8
IP
151.101.85.140:0
ASN
#54113 FASTLY

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /rp.gif?ts=1668751003490&id=t2_378pcjv6&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=b96db4fa-b649-455d-902d-a62d1bd03450&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8 HTTP/1.1
Host: alb.reddit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Varnish
retry-after: 0
cross-origin-resource-policy: cross-origin
content-type: image/gif
accept-ranges: bytes
date: Fri, 18 Nov 2022 05:56:45 GMT
via: 1.1 varnish
content-length: 42
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-T18E1GTPQG&cid=1342590316.1668751004&gtm=2oeb90&aip=1&z=424855081

142.250.74.35

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-T18E1GTPQG&cid=1342590316.1668751004&gtm=2oeb90&aip=1&z=424855081
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-T18E1GTPQG&cid=1342590316.1668751004&gtm=2oeb90&aip=1&z=424855081 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 18 Nov 2022 05:56:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

vars.hotjar.com/box-c6ca1c87e308a39aabb76b56ba54398b.html

143.204.55.118

200 OK

1.0 kB

URL HTTP/2
vars.hotjar.com/box-c6ca1c87e308a39aabb76b56ba54398b.html
IP
143.204.55.118:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Size
1.0 kB (1035 bytes)
Hash
b6d25d1350d6a014d80689f389e76f97
a957e3d99790759f71a4d9e2fdaf819f60e8c569
fb2a1528b99d3eb4c9374642b5045efaf6e06666fdd48a55560a375449b01079

HTTP Headers

GET /box-c6ca1c87e308a39aabb76b56ba54398b.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Fri, 04 Nov 2022 12:22:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "b6d25d1350d6a014d80689f389e76f97"
last-modified: Fri, 04 Nov 2022 12:21:18 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7TAKPwVS2M95q8-vi1pKeUsyAlZYUb6MXSKPeiKNQU2iQlnzyq5sgg==
age: 1186479
X-Firefox-Spdy: h2

bat.bing.com/action/0?ti=5063952&Ver=2&mid=18259858-b5b9-46a7-8254-3d8b298c5788&sid=c771fc40670511edac4bd53d47d9ccb0&vid=c77224e0670511edb688ad60a9debd84&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&p=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1596_wtugWWw3ex0TlUvQQ5bV%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D0fc2a6cfcd6744fe8ebb5ae505aab3cd%26utm_source%3DPWNgames%26edition%3Dstd-1&r=&lt=920&evt=pageLoad&sv=1&rn=831663

13.107.21.200

204 No Content

0 B

URL HTTP/2
bat.bing.com/action/0?ti=5063952&Ver=2&mid=18259858-b5b9-46a7-8254-3d8b298c5788&sid=c771fc40670511edac4bd53d47d9ccb0&vid=c77224e0670511edb688ad60a9debd84&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&p=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1596_wtugWWw3ex0TlUvQQ5bV%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D0fc2a6cfcd6744fe8ebb5ae505aab3cd%26utm_source%3DPWNgames%26edition%3Dstd-1&r=&lt=920&evt=pageLoad&sv=1&rn=831663
IP
13.107.21.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /action/0?ti=5063952&Ver=2&mid=18259858-b5b9-46a7-8254-3d8b298c5788&sid=c771fc40670511edac4bd53d47d9ccb0&vid=c77224e0670511edb688ad60a9debd84&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&p=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1596_wtugWWw3ex0TlUvQQ5bV%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D0fc2a6cfcd6744fe8ebb5ae505aab3cd%26utm_source%3DPWNgames%26edition%3Dstd-1&r=&lt=920&evt=pageLoad&sv=1&rn=831663 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=1DB34F44D058638C3F9A5D24D1AD62A2; domain=.bing.com; expires=Wed, 13-Dec-2023 05:56:45 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 61E28A94C1674454B5A318F0B31A1F5C Ref B: OSL30EDGE0508 Ref C: 2022-11-18T05:56:45Z
date: Fri, 18 Nov 2022 05:56:45 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8bd74b7ad2725f15396907ce2070e9a9
c624c31552aeb494b5a630db33054ad03cbd5a0e
a20baa5c9be0ccc20d8bcd78680101f96dc0f6a69427bd9f56436982288b72f6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:56:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5d0f26aabc1e6822799c7b2a0088c7c8
1fe0c1482425fd80388943a097e4bedd549cba84
2f946e377939664b21778a7453b114262582cca8484d148a16c24ca1710370fa

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:56:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c15be7bf1c6987951ddd348d6f6b4db1
9faac1fb81abc8fce6d4ae81777c76b8bc11e9b0
7f1d01e3fc0b69e331fd30326ea8fd9b1e3e06a0a93ae4768e7addd03a121025

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:56:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

bat.bing.com/p/action/5063952.js

13.107.21.200

204 No Content

0 B

URL HTTP/2
bat.bing.com/p/action/5063952.js
IP
13.107.21.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /p/action/5063952.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=24C96D382FF460C51A2D7F582E0161A0; domain=.bing.com; expires=Wed, 13-Dec-2023 05:56:45 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 06E6B7C6FBCE4925B1573E5E3D30AECF Ref B: OSL30EDGE0508 Ref C: 2022-11-18T05:56:45Z
date: Fri, 18 Nov 2022 05:56:45 GMT
X-Firefox-Spdy: h2

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-4118503-39&cid=1342590316.1668751004&jid=1380918128&gjid=1707774983&_gid=386102972.1668751004&_u=YADAAEAAAAAAACAAI~&z=1541339634

142.250.150.154

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-4118503-39&cid=1342590316.1668751004&jid=1380918128&gjid=1707774983&_gid=386102972.1668751004&_u=YADAAEAAAAAAACAAI~&z=1541339634
IP
142.250.150.154:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-4118503-39&cid=1342590316.1668751004&jid=1380918128&gjid=1707774983&_gid=386102972.1668751004&_u=YADAAEAAAAAAACAAI~&z=1541339634 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Content-Type: text/plain
Content-Length: 0
Origin: https://www.opera.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://www.opera.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 18 Nov 2022 05:56:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

adservice.google.com/ddm/fls/i/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=8117816489487;gtm=2wgb90;auiddc=180804668.1668751003;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1596_wtugWWw3ex0TlUvQQ5bV%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D0fc2a6cfcd6744fe8ebb5ae505aab3cd%26utm_source%3DPWNgames%26edition%3Dstd-1

142.250.74.162

200 OK

355 B

URL HTTP/2
adservice.google.com/ddm/fls/i/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=8117816489487;gtm=2wgb90;auiddc=180804668.1668751003;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1596_wtugWWw3ex0TlUvQQ5bV%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D0fc2a6cfcd6744fe8ebb5ae505aab3cd%26utm_source%3DPWNgames%26edition%3Dstd-1
IP
142.250.74.162:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (625), with no line terminators
Size
355 B (355 bytes)
Hash
6d8670720f85d1c275f5bf03bd191ace
d9939e62f1aa34099d3ae05f2ed7169936609e50
516135da4aedd5d9b8585fac57cb1d591326696c417c453b76b4cfcde3197ba2

HTTP Headers

GET /ddm/fls/i/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=8117816489487;gtm=2wgb90;auiddc=180804668.1668751003;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1596_wtugWWw3ex0TlUvQQ5bV%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D0fc2a6cfcd6744fe8ebb5ae505aab3cd%26utm_source%3DPWNgames%26edition%3Dstd-1 HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11442918.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 18 Nov 2022 05:56:45 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 355
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d3ba0eba720a8e5904bee6e804873c24
df1f9c79e39f777ab12225af0af60b9f26af6485
76500b32cbac4ad40e3f42c7dfd46832f3854ba88c3a6d5a9d2b5633e8e1f27b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:56:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5d0f26aabc1e6822799c7b2a0088c7c8
1fe0c1482425fd80388943a097e4bedd549cba84
2f946e377939664b21778a7453b114262582cca8484d148a16c24ca1710370fa

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:56:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

static.hotjar.com/c/hotjar-445451.js?sv=7

54.230.111.8

200 OK

8.7 kB

URL HTTP/2
static.hotjar.com/c/hotjar-445451.js?sv=7
IP
54.230.111.8:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text, with very long lines (26856)
Size
8.7 kB (8698 bytes)
Hash
e8ff8b01c23724288b5e718c2844cfc9
d88184a2bbdeab10a63c0bb90c93f52d2f4191c7
a155a1de163ccd5695de050a036491d95501b7ff5f04d260dfbbc5cac60e61a1

HTTP Headers

GET /c/hotjar-445451.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Fri, 18 Nov 2022 05:56:07 GMT
cache-control: max-age=60
etag: W/65ba1abbd623718a24a4dacc2c2fc749
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: I33AUXw_YDbL_mrmkA5yYl7tSaainsDIQ-Aj7UXjz0Kx2yiN4M-kNQ==
age: 38
X-Firefox-Spdy: h2

www.facebook.com/tr/?id=1123357797681867&ev=PageView&dl=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1596_wtugWWw3ex0TlUvQQ5bV%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D0fc2a6cfcd6744fe8ebb5ae505aab3cd%26utm_source%3DPWNgames%26edition%3Dstd-1&rl=&if=false&ts=1668751003876&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1668751003875.1642188792&it=1668751003730&coo=false&rqm=GET

31.13.72.36

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=1123357797681867&ev=PageView&dl=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1596_wtugWWw3ex0TlUvQQ5bV%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D0fc2a6cfcd6744fe8ebb5ae505aab3cd%26utm_source%3DPWNgames%26edition%3Dstd-1&rl=&if=false&ts=1668751003876&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1668751003875.1642188792&it=1668751003730&coo=false&rqm=GET
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=1123357797681867&ev=PageView&dl=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1596_wtugWWw3ex0TlUvQQ5bV%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D0fc2a6cfcd6744fe8ebb5ae505aab3cd%26utm_source%3DPWNgames%26edition%3Dstd-1&rl=&if=false&ts=1668751003876&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1668751003875.1642188792&it=1668751003730&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 18 Nov 2022 05:56:45 GMT
X-Firefox-Spdy: h2

www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-4118503-39&cid=1342590316.1668751004&jid=1380918128&_u=YADAAEAAAAAAACAAI~&z=1120127774

142.250.74.164

200 OK

42 B

URL HTTP/2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-4118503-39&cid=1342590316.1668751004&jid=1380918128&_u=YADAAEAAAAAAACAAI~&z=1120127774
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-4118503-39&cid=1342590316.1668751004&jid=1380918128&_u=YADAAEAAAAAAACAAI~&z=1120127774 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 18 Nov 2022 05:56:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

sp.analytics.yahoo.com/sp.pl?a=10000&d=Fri%2C%2018%20Nov%202022%2005%3A56%3A43%20GMT&n=0&b=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&.yp=10176867&f=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1596_wtugWWw3ex0TlUvQQ5bV%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D0fc2a6cfcd6744fe8ebb5ae505aab3cd%26utm_source%3DPWNgames%26edition%3Dstd-1&enc=UTF-8&yv=1.13.0&tagmgr=gtm

212.82.100.181

200 OK

43 B

URL HTTP/2
sp.analytics.yahoo.com/sp.pl?a=10000&d=Fri%2C%2018%20Nov%202022%2005%3A56%3A43%20GMT&n=0&b=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&.yp=10176867&f=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1596_wtugWWw3ex0TlUvQQ5bV%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D0fc2a6cfcd6744fe8ebb5ae505aab3cd%26utm_source%3DPWNgames%26edition%3Dstd-1&enc=UTF-8&yv=1.13.0&tagmgr=gtm
IP
212.82.100.181:0
ASN
#34010 Yahoo! UK Services Limited

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
bff56ce49dd485d195fdfa0a02342568
74fb4071deab7d3ab083562067b735df32c43397
0e4b1e428a2198ef747010c094101c257b568a97cdcc0f31ed5e9868cc835b39

HTTP Headers

GET /sp.pl?a=10000&d=Fri%2C%2018%20Nov%202022%2005%3A56%3A43%20GMT&n=0&b=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&.yp=10176867&f=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1596_wtugWWw3ex0TlUvQQ5bV%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D0fc2a6cfcd6744fe8ebb5ae505aab3cd%26utm_source%3DPWNgames%26edition%3Dstd-1&enc=UTF-8&yv=1.13.0&tagmgr=gtm HTTP/1.1
Host: sp.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 18 Nov 2022 05:56:45 GMT
expires: Fri, 18 Nov 2022 05:56:45 GMT
pragma: no-cache
cache-control: no-cache, private, must-revalidate
content-type: image/gif
accept-ranges: bytes
content-length: 43
server: ATS
age: 0
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: sandbox; default-src 'self'; script-src 'none'; object-src 'none'; report-uri http://csp.yahoo.com/beacon/csp?src=generic
set-cookie: A3=d=AQABBJ0ed2MCEDLSMOXko1RV87MXEgGHfiAFEgEBAQFweGOBYwAAAAAA_eMAAA&S=AQAAAihTbZYw_0X8hDhTdOLJ9EE; Expires=Sat, 18 Nov 2023 11:56:45 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
eb5405ca08a5b1038b26ae8f2e3788f3
3341c3d5bed51686ed6c8d85aa59c59a27c652a3
6ffea4a38a9fc074321b874bce4a78eefbf657f1f2a05897fb32d0a9bffa08a1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:56:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

adservice.google.no/ddm/fls/i/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=8117816489487;gtm=2wgb90;auiddc=180804668.1668751003;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1596_wtugWWw3ex0TlUvQQ5bV%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D0fc2a6cfcd6744fe8ebb5ae505aab3cd%26utm_source%3DPWNgames%26edition%3Dstd-1

142.250.74.162

302 Found

0 B

URL HTTP/2
adservice.google.no/ddm/fls/i/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=8117816489487;gtm=2wgb90;auiddc=180804668.1668751003;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1596_wtugWWw3ex0TlUvQQ5bV%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D0fc2a6cfcd6744fe8ebb5ae505aab3cd%26utm_source%3DPWNgames%26edition%3Dstd-1
IP
142.250.74.162:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ddm/fls/i/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=8117816489487;gtm=2wgb90;auiddc=180804668.1668751003;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1596_wtugWWw3ex0TlUvQQ5bV%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D0fc2a6cfcd6744fe8ebb5ae505aab3cd%26utm_source%3DPWNgames%26edition%3Dstd-1 HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 18 Nov 2022 05:56:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://11442918.fls.doubleclick.net/ddm/fls/r/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=8117816489487;gtm=2wgb90;auiddc=180804668.1668751003;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1596_wtugWWw3ex0TlUvQQ5bV%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D0fc2a6cfcd6744fe8ebb5ae505aab3cd%26utm_source%3DPWNgames%26edition%3Dstd-1
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

s.yimg.com/wi/ytc.js

188.125.94.204

200 OK

6.4 kB

URL HTTP/2
s.yimg.com/wi/ytc.js
IP
188.125.94.204:0
ASN
#10310 YAHOO-1

File type
data
Size
6.4 kB (6400 bytes)
Hash
670e08389ec13c356d9b037a2a892f70
f71fd417647d6192ab434557cdb0232f579f0e01
77cdb0b948947c3f0fa128faa93141c99f46899390c6a4261db91b71d04fe590

HTTP Headers

GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: lX6oLutUHmwBvYahDoDr/h22WUpiHUiUPL7BgYYR5epZ39QeMUVmkbb+BaFkuW2WYC5rprVj7hA=
x-amz-request-id: KT4Y2JNA5YKJ0N9Y
date: Fri, 18 Nov 2022 05:34:07 GMT
last-modified: Tue, 14 Jun 2022 12:21:31 GMT
x-amz-expiration: expiry-date="Thu, 20 Jul 2023 00:00:00 GMT", rule-id="oath-standard-lifecycle"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: .QD3nDfK79S8_ikLSJXTL23Tdis9tg0C
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
etag: "6a624022b5d271dcefb070b0b6670abc-df"
age: 1359
content-encoding: gzip
strict-transport-security: max-age=15552000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a03b2d2c5cbb2fbdbd454ff14f82b551
e5cd7d1a450fcf5bec5b44e51286b5291f944649
781b73eeff77025ef757ecc8ea2762cbe7563f563a433678ce0e06ea1e533324

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:56:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googleadservices.com/pagead/conversion.js

142.250.74.162

200 OK

17 kB

URL HTTP/2
www.googleadservices.com/pagead/conversion.js
IP
142.250.74.162:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2772)
Size
17 kB (16827 bytes)
Hash
ac7574cbc5b2e85b7ddfa76b8657e59d
2bbeec5531576d6352b1c2b74e0e05c1ea10251d
bdf1e52afba9d671ea698707f97e8609de6360c502dc7b6eed2f40f979e08387

HTTP Headers

GET /pagead/conversion.js HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11442918.fls.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 18 Nov 2022 05:56:45 GMT
expires: Fri, 18 Nov 2022 05:56:45 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 16359567893097152046
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 16827
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2763bec344cb95973157cf6c9cf07ee4
ce65e30fd5b73cb79d01fab7072d53aa60b873a2
6856e1f453e9660a823ccd084229268b257c8f86af7c0962ed751e8b175afc6c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:56:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googleadservices.com/pagead/conversion/10840821485/?random=1668751004170&cv=9&fst=1668751004170&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D8117816489487%3Bgtm%3D2wgb90%3Bauiddc%3D180804668.1668751003%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx%253Futm_content%253D1596_wtugWWw3ex0TlUvQQ5bV%2526utm_medium%253Dpa%2526utm_campaign%253DPWN_NO%2526utm_id%253D0fc2a6cfcd6744fe8ebb5ae505aab3cd%2526utm_source%253DPWNgames%2526edition%253Dstd-1&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4

142.250.74.162

200 OK

1.2 kB

URL HTTP/2
www.googleadservices.com/pagead/conversion/10840821485/?random=1668751004170&cv=9&fst=1668751004170&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D8117816489487%3Bgtm%3D2wgb90%3Bauiddc%3D180804668.1668751003%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx%253Futm_content%253D1596_wtugWWw3ex0TlUvQQ5bV%2526utm_medium%253Dpa%2526utm_campaign%253DPWN_NO%2526utm_id%253D0fc2a6cfcd6744fe8ebb5ae505aab3cd%2526utm_source%253DPWNgames%2526edition%253Dstd-1&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4
IP
142.250.74.162:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2163), with no line terminators
Size
1.2 kB (1248 bytes)
Hash
3df524d3afaa221d72a56a28e2e959ca
4ae0e4ee8909b7dba329a9b491811ee5dc4b180e
a8de6961c1127442ec1278e1913b5186584aa34984ba3c8dd5ab0256f2bb9976

HTTP Headers

GET /pagead/conversion/10840821485/?random=1668751004170&cv=9&fst=1668751004170&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D8117816489487%3Bgtm%3D2wgb90%3Bauiddc%3D180804668.1668751003%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx%253Futm_content%253D1596_wtugWWw3ex0TlUvQQ5bV%2526utm_medium%253Dpa%2526utm_campaign%253DPWN_NO%2526utm_id%253D0fc2a6cfcd6744fe8ebb5ae505aab3cd%2526utm_source%253DPWNgames%2526edition%253Dstd-1&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4 HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11442918.fls.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 18 Nov 2022 05:56:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1248
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
eaa6a3200eda9bf5788df6d9eb04d84c
12efbb66692df6d76c1103b152808d751c0e49f1
6d815027ae40ea2603c0ed5adac0821cd5526f11c2eeb0ada5294b6f2ec3492d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:56:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

region1.analytics.google.com/g/collect?v=2&tid=G-T18E1GTPQG&gtm=2oeb90&_p=527133241&_gaz=1&cid=1342590316.1668751004&ul=en-us&sr=1280x1024&_s=1&sid=1668751003&sct=1&seg=0&dl=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1596_wtugWWw3ex0TlUvQQ5bV%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D0fc2a6cfcd6744fe8ebb5ae505aab3cd%26utm_source%3DPWNgames%26edition%3Dstd-1&dt=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&en=page_view&_fv=1&_nsi=1&_ss=1

216.239.34.36

204 No Content

0 B

URL HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-T18E1GTPQG&gtm=2oeb90&_p=527133241&_gaz=1&cid=1342590316.1668751004&ul=en-us&sr=1280x1024&_s=1&sid=1668751003&sct=1&seg=0&dl=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1596_wtugWWw3ex0TlUvQQ5bV%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D0fc2a6cfcd6744fe8ebb5ae505aab3cd%26utm_source%3DPWNgames%26edition%3Dstd-1&dt=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&en=page_view&_fv=1&_nsi=1&_ss=1
IP
216.239.34.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-T18E1GTPQG&gtm=2oeb90&_p=527133241&_gaz=1&cid=1342590316.1668751004&ul=en-us&sr=1280x1024&_s=1&sid=1668751003&sct=1&seg=0&dl=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1596_wtugWWw3ex0TlUvQQ5bV%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D0fc2a6cfcd6744fe8ebb5ae505aab3cd%26utm_source%3DPWNgames%26edition%3Dstd-1&dt=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Origin: https://www.opera.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://www.opera.com
date: Fri, 18 Nov 2022 05:56:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

googleads.g.doubleclick.net/pagead/viewthroughconversion/10840821485/?random=1819473872&cv=9&fst=1668751004170&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D8117816489487%3Bgtm%3D2wgb90%3Bauiddc%3D180804668.1668751003%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx%253Futm_content%253D1596_wtugWWw3ex0TlUvQQ5bV%2526utm_medium%253Dpa%2526utm_campaign%253DPWN_NO%2526utm_id%253D0fc2a6cfcd6744fe8ebb5ae505aab3cd%2526utm_source%253DPWNgames%2526edition%253Dstd-1&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=nR53Y7mXLpfIZbztmeAK&sscte=1&crd=

142.250.74.130

302 Found

42 B

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/10840821485/?random=1819473872&cv=9&fst=1668751004170&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D8117816489487%3Bgtm%3D2wgb90%3Bauiddc%3D180804668.1668751003%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx%253Futm_content%253D1596_wtugWWw3ex0TlUvQQ5bV%2526utm_medium%253Dpa%2526utm_campaign%253DPWN_NO%2526utm_id%253D0fc2a6cfcd6744fe8ebb5ae505aab3cd%2526utm_source%253DPWNgames%2526edition%253Dstd-1&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=nR53Y7mXLpfIZbztmeAK&sscte=1&crd=
IP
142.250.74.130:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/viewthroughconversion/10840821485/?random=1819473872&cv=9&fst=1668751004170&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D8117816489487%3Bgtm%3D2wgb90%3Bauiddc%3D180804668.1668751003%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx%253Futm_content%253D1596_wtugWWw3ex0TlUvQQ5bV%2526utm_medium%253Dpa%2526utm_campaign%253DPWN_NO%2526utm_id%253D0fc2a6cfcd6744fe8ebb5ae505aab3cd%2526utm_source%253DPWNgames%2526edition%253Dstd-1&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=nR53Y7mXLpfIZbztmeAK&sscte=1&crd= HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11442918.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 18 Nov 2022 05:56:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://www.google.com/pagead/1p-conversion/10840821485/?random=1819473872&cv=9&fst=1668751004170&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D8117816489487%3Bgtm%3D2wgb90%3Bauiddc%3D180804668.1668751003%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx%253Futm_content%253D1596_wtugWWw3ex0TlUvQQ5bV%2526utm_medium%253Dpa%2526utm_campaign%253DPWN_NO%2526utm_id%253D0fc2a6cfcd6744fe8ebb5ae505aab3cd%2526utm_source%253DPWNgames%2526edition%253Dstd-1&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=nR53Y7mXLpfIZbztmeAK&random=3346180438&resp=GooglemKTybQhCsO
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 18-Nov-2022 06:11:45 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
eaa6a3200eda9bf5788df6d9eb04d84c
12efbb66692df6d76c1103b152808d751c0e49f1
6d815027ae40ea2603c0ed5adac0821cd5526f11c2eeb0ada5294b6f2ec3492d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:56:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3D6307d578-1bcb-d937-d114-a076ed15412b%26type%3D55%26m%3D7&ex-fch=416613&ex-src=https://www.opera.com/gx&ex-hargs=v%3D1.0%3Bc%3D586912600239599593%3Bp%3D6307D578-1BCB-D937-D114-A076ED15412B&cb=532060511420280000

52.46.143.56

302 Found

0 B

URL HTTP/1.1
s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3D6307d578-1bcb-d937-d114-a076ed15412b%26type%3D55%26m%3D7&ex-fch=416613&ex-src=https://www.opera.com/gx&ex-hargs=v%3D1.0%3Bc%3D586912600239599593%3Bp%3D6307D578-1BCB-D937-D114-A076ED15412B&cb=532060511420280000
IP
52.46.143.56:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /iu3?d=generic&ex-fargs=%3Fid%3D6307d578-1bcb-d937-d114-a076ed15412b%26type%3D55%26m%3D7&ex-fch=416613&ex-src=https://www.opera.com/gx&ex-hargs=v%3D1.0%3Bc%3D586912600239599593%3Bp%3D6307D578-1BCB-D937-D114-A076ED15412B&cb=532060511420280000 HTTP/1.1
Host: s.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11442918.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Server: Server
Date: Fri, 18 Nov 2022 05:56:46 GMT
Content-Length: 0
Connection: keep-alive
x-amz-rid: KBP0RGS87QKPZ75SY2RT
Set-Cookie: ad-id=A0jSBwtHDEzKkLfbDtaAlxk|t; Domain=.amazon-adsystem.com; Expires=Sat, 01-Jul-2023 05:56:46 GMT; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Location: https://s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3D6307d578-1bcb-d937-d114-a076ed15412b%26type%3D55%26m%3D7&ex-fch=416613&ex-src=https://www.opera.com/gx&ex-hargs=v%3D1.0%3Bc%3D586912600239599593%3Bp%3D6307D578-1BCB-D937-D114-A076ED15412B&cb=532060511420280000&dcc=t
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload

52.46.143.56

200 OK

65 B

URL HTTP/1.1
s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3D6307d578-1bcb-d937-d114-a076ed15412b%26type%3D55%26m%3D7&ex-fch=416613&ex-src=https://www.opera.com/gx&ex-hargs=v%3D1.0%3Bc%3D586912600239599593%3Bp%3D6307D578-1BCB-D937-D114-A076ED15412B&cb=532060511420280000&dcc=t
IP
52.46.143.56:0
ASN
#16509 AMAZON-02

File type
HTML document, ASCII text
Size
65 B (65 bytes)
Hash
22fdf49482d8200e8f305bbe262eff14
f254bd4053267c2cf46675613e689016d8b7f775
115d83ece49fd1c5769409aab9d78572eed86cd38a0556b4cdeeac82c83091d3

HTTP Headers

GET /iu3?d=generic&ex-fargs=%3Fid%3D6307d578-1bcb-d937-d114-a076ed15412b%26type%3D55%26m%3D7&ex-fch=416613&ex-src=https://www.opera.com/gx&ex-hargs=v%3D1.0%3Bc%3D586912600239599593%3Bp%3D6307D578-1BCB-D937-D114-A076ED15412B&cb=532060511420280000&dcc=t HTTP/1.1
Host: s.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://11442918.fls.doubleclick.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Server
Date: Fri, 18 Nov 2022 05:56:46 GMT
Content-Type: text/html;charset=ISO-8859-1
Content-Length: 65
Connection: keep-alive
x-amz-rid: FZNJDJ489WHCBYC2EBYX
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload

trc-events.taboola.com/1410119/log/3/unip?en=pre_d_eng_tb&tos=1570&scd=4&ssd=1&est=1668751003663&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1668751005236&vi=1668751003658&ri=a05353ab454834c0113c2b430b2a047b&ref=null&cv=20221113-4-RELEASE&item-url=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1596_wtugWWw3ex0TlUvQQ5bV%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D0fc2a6cfcd6744fe8ebb5ae505aab3cd%26utm_source%3DPWNgames%26edition%3Dstd-1&ler=other

141.226.228.48

204 No Content

0 B

URL HTTP/2
trc-events.taboola.com/1410119/log/3/unip?en=pre_d_eng_tb&tos=1570&scd=4&ssd=1&est=1668751003663&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1668751005236&vi=1668751003658&ri=a05353ab454834c0113c2b430b2a047b&ref=null&cv=20221113-4-RELEASE&item-url=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1596_wtugWWw3ex0TlUvQQ5bV%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D0fc2a6cfcd6744fe8ebb5ae505aab3cd%26utm_source%3DPWNgames%26edition%3Dstd-1&ler=other
IP
141.226.228.48:0
ASN
#200478 Taboola.com ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /1410119/log/3/unip?en=pre_d_eng_tb&tos=1570&scd=4&ssd=1&est=1668751003663&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1668751005236&vi=1668751003658&ri=a05353ab454834c0113c2b430b2a047b&ref=null&cv=20221113-4-RELEASE&item-url=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1596_wtugWWw3ex0TlUvQQ5bV%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D0fc2a6cfcd6744fe8ebb5ae505aab3cd%26utm_source%3DPWNgames%26edition%3Dstd-1&ler=other HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Origin: https://www.opera.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
server: nginx
date: Fri, 18 Nov 2022 05:56:46 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.opera.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7631 bytes)
Hash
b2b393e36ee2c9649d90db136aa49542
e88c5832ff0c49bab181d948c3a510d88343bb6f
8b524701df43bff56ac52a021ff0fbd964e06f00e84b4861aa557ec6ae6b4ffd

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 7631
x-amzn-requestid: b47e545d-1fb6-4a62-ab45-28cdb9d3f0b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-vQE0XoAMFS3w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab2e-56365eed3d4c082c53b172b3;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:44:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qpoQa1Lhe-h27dGooXDCtujesSTg7Tb0Ov-PNLnUP0288ZofwHxkhQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:52:40 GMT
age: 29048
etag: "e88c5832ff0c49bab181d948c3a510d88343bb6f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/CACHE/js/output.eb7ef37247a9.js

23.32.85.11

200 OK

0 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/CACHE/js/output.eb7ef37247a9.js
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /staticfiles/CACHE/js/output.eb7ef37247a9.js HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: ueTnwT4JbOeUOpoWRn5opKmrPnBAzJoal2htKroHvTwQFa2BA9t9831WJQWD3ITysy0kVxcaplw=
x-amz-request-id: 0ECACZRN1508A1VX
last-modified: Thu, 17 Nov 2022 10:03:53 GMT
etag: "b97a7dfd40d792e8cbaf61c1d0ea1893"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

blue.redredirector.com/click?pid=150&offer_id=12346&sub1=Cdb8b89612a1ee&sub2=150_2476&sub4=0

34.141.179.97

200 OK

0 B

URL HTTP/2
blue.redredirector.com/click?pid=150&offer_id=12346&sub1=Cdb8b89612a1ee&sub2=150_2476&sub4=0
IP
34.141.179.97:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /click?pid=150&offer_id=12346&sub1=Cdb8b89612a1ee&sub2=150_2476&sub4=0 HTTP/1.1
Host: blue.redredirector.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 05:56:43 GMT
content-type: text/html; charset=utf-8
x-adjust-use-original-forwarded-for: 1
set-cookie: afclick=63771e9b3b2eb90001fe86da; expires=Sat, 18 Nov 2023 05:56:43 GMT; secure; SameSite=None
afoffers={"12346":1668751003}; expires=Sat, 18 Nov 2023 05:56:43 GMT; secure; SameSite=None
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Chakra+Petch:400,700&subset=latin-ext

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Chakra+Petch:400,700&subset=latin-ext
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Chakra+Petch:400,700&subset=latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 18 Nov 2022 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/3580eabc7ffc8362ce3e.44f63b5fe738.jpg?6ea62f010616

23.32.85.11

200 OK

0 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/3580eabc7ffc8362ce3e.44f63b5fe738.jpg?6ea62f010616
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /staticfiles/3580eabc7ffc8362ce3e.44f63b5fe738.jpg?6ea62f010616 HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.b31004795d0c.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: tV8V6hEmfWE9RnjYZ4LA82vmlaEAsZn/+o2sP6yk1ksbFDXdcINs8oJ34FpRkE/Y0zZsfqmDZxA=
x-amz-request-id: Q6GABFZQJHSKNVDP
last-modified: Thu, 17 Nov 2022 13:22:23 GMT
etag: "44f63b5fe738bac08e1875c4602f5935"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 332762
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 05:56:44 GMT
date: Fri, 18 Nov 2022 05:56:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (37)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP