Report - en-gv.site/ma=24287

Report Overview

Submitted URL
en-gv.site/ma=24287
IP
31.170.164.241
ASN
#47583 Hostinger International Limited
Submitted
2022-12-09 16:16:41
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	514 B	694 B	142.250.74.132
sp.analytics.yahoo.com	816	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	743 B	948 B	212.82.100.181
www.facebook.com	99	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	753 B	349 B	157.240.221.35
region1.analytics.google.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	843 B	560 B	216.239.34.36
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.82.221.194
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	982 B	20 kB	216.58.207.227
bat.bing.com	387	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	14 kB	13.107.21.200
s.yimg.com	375	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	747 B	1.6 kB	87.248.119.252
trc-events.taboola.com	1779	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	724 B	141.226.228.48
trc.taboola.com	602	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	552 B	151.101.65.44
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	3.0 kB	93.184.220.29
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	600 B	708 B	108.177.14.156
smrturl.co	299580	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	474 B	695 B	172.67.197.247
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	416 B	746 B	142.250.74.106
www.googleoptimize.com	1604	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	382 B	44 kB	142.250.74.46
alb.reddit.com	1521	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	652 B	276 B	151.101.1.140
vars.hotjar.com	1014	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	503 B	1.7 kB	143.204.55.118
www.googleadservices.com	107	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	20 kB	216.58.207.194
en-gv.site	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	798 B	2.2 kB	31.170.164.241
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	44 kB	34.120.237.76
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	7.9 kB	16 kB	142.250.74.131
cdn.taboola.com	1040	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	375 B	19 kB	151.101.65.44
blue.redredirector.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	507 B	48 kB	34.91.234.242
www.redditstatic.com	1440	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	366 B	8.5 kB	151.101.1.140
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
2gov.site	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	454 B	758 B	66.29.153.49
www.getgx.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	491 B	684 B	52.45.44.207
cdn-production-opera-website.operacdn.com	98972	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	24 kB	2.7 MB	23.32.85.11
googleads.g.doubleclick.net	42	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	1.8 kB	142.250.74.34
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	6.2 kB	23.36.77.32
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.9 kB	34.160.144.191
www.opera.com	62688	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	40 kB	3.74.184.43
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	370 B	21 kB	216.58.207.206
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	772 B	157 kB	142.250.74.168
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	371 B	29 kB	157.240.221.16
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	480 B	694 B	142.250.74.163
script.hotjar.com	887	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	382 B	69 kB	143.204.55.68
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	680 B	1.9 kB	104.18.32.68
arabs4.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	345 B	487 B	92.205.12.81
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	350 B	944 B	54.230.245.110
adservice.google.com	76	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	804 B	1.0 kB	142.250.74.130
adservice.google.no	96969	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	795 B	1.4 kB	172.217.21.162
s.amazon-adsystem.com	283	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	1.5 kB	52.46.128.147
static.hotjar.com	641	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	374 B	632 B	54.230.111.66

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-09	medium	2gov.site/cup22/?ma=24287	Malware
2022-12-09	medium	arabs4.net/pc/	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (38)

	URL	Size	First Seen	Last Seen
	www.opera.com/gx?utm_content=1461_CY4SBNzRUT1GJLOYP6RK&utm_medium=pa&utm_campaign=PWN_NO&utm_id=d1f2baa003384319b78714fcb887f746&utm_source=PWNgames&edition=std-1	423 B	2023-03-07	2024-03-23
Pretty URL www.opera.com/gx?utm_content=1461_CY4SBNzRUT1GJLOYP6RK&utm_medium=pa&utm_campaign=PWN_NO&utm_id=d1f2baa003384319b78714fcb887f746&utm_source=PWNgames&edition=std-1 IP 3.74.184.43 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2024-03-23 17:52:27 Times Seen240 Hash 234b023c7a26bfe71d0f9f640ede91f4 504a7bade784175003b440859140c4792b755a89 a9f9adf2eef26b4c41a6f824bb23a100ad0f438971e584859754bdb2b6eb422e Loading...

	www.opera.com/gx?utm_content=1461_CY4SBNzRUT1GJLOYP6RK&utm_medium=pa&utm_campaign=PWN_NO&utm_id=d1f2baa003384319b78714fcb887f746&utm_source=PWNgames&edition=std-1	422 B	2023-03-07	2023-03-11
Pretty URL www.opera.com/gx?utm_content=1461_CY4SBNzRUT1GJLOYP6RK&utm_medium=pa&utm_campaign=PWN_NO&utm_id=d1f2baa003384319b78714fcb887f746&utm_source=PWNgames&edition=std-1 IP 3.74.184.43 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2023-03-11 21:00:46 Times Seen1 Hash 846d2d8a8578b9aac137f995f553608c 79d1416e95ca129d7a2ea5189e6390b252352a6c f5492473c4fd71e86d2bace91b88788f022a6c4efc24071ffcb38076e5a65d04 Loading...

	www.opera.com/gx?utm_content=1461_CY4SBNzRUT1GJLOYP6RK&utm_medium=pa&utm_campaign=PWN_NO&utm_id=d1f2baa003384319b78714fcb887f746&utm_source=PWNgames&edition=std-1	357 B	2023-03-07	2023-12-11
Pretty URL www.opera.com/gx?utm_content=1461_CY4SBNzRUT1GJLOYP6RK&utm_medium=pa&utm_campaign=PWN_NO&utm_id=d1f2baa003384319b78714fcb887f746&utm_source=PWNgames&edition=std-1 IP 3.74.184.43 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2023-12-11 07:58:14 Times Seen128 Hash c8983d66f6c0fbf9def38ba1b59df5af 009b5d6d8879bd1faacb02b043067118429663c7 2e0527064a429e3c5e7e271e512b940b81d95422281c3704987e8f17c2f9bd85 Loading...

	www.opera.com/gx?utm_content=1461_CY4SBNzRUT1GJLOYP6RK&utm_medium=pa&utm_campaign=PWN_NO&utm_id=d1f2baa003384319b78714fcb887f746&utm_source=PWNgames&edition=std-1	496 B	2023-03-07	2024-02-21
Pretty URL www.opera.com/gx?utm_content=1461_CY4SBNzRUT1GJLOYP6RK&utm_medium=pa&utm_campaign=PWN_NO&utm_id=d1f2baa003384319b78714fcb887f746&utm_source=PWNgames&edition=std-1 IP 3.74.184.43 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2024-02-21 04:57:48 Times Seen239 Hash 2ec3ab2ea7d6e84feaede3f316e542e6 4c0a9224d011d729f351a9f6a1c9ff9ba1b379a2 3e8f56032190bf6c992040243294c0438637ca75545775b62d90aa91ff927aa6 Loading...

	vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html	2.3 kB	2023-03-08	2023-03-26
Pretty URL vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html IP 143.204.55.118 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:11 Last Seen2023-03-26 01:38:12 Times Seen2 Hash 2ab04d2242413cc15369fa816e1a02f8 8ff148dd539f0fff0892dcc2075839c315cb8642 fe51660a3d21efbefab64694f51d02f2bcee4e82c324895e93c78ba6179508a3 Loading...

	www.opera.com/gx?utm_content=1461_CY4SBNzRUT1GJLOYP6RK&utm_medium=pa&utm_campaign=PWN_NO&utm_id=d1f2baa003384319b78714fcb887f746&utm_source=PWNgames&edition=std-1	452 B	2023-03-07	2023-12-07
Pretty URL www.opera.com/gx?utm_content=1461_CY4SBNzRUT1GJLOYP6RK&utm_medium=pa&utm_campaign=PWN_NO&utm_id=d1f2baa003384319b78714fcb887f746&utm_source=PWNgames&edition=std-1 IP 3.74.184.43 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2023-12-07 00:03:33 Times Seen113 Hash ea851aaa49b13578ff5c5e50a48cdb5d 0c28bff9ed59248c78451d4167d5a0ef142bd9e4 5e9c4dcec163b9a531c2d5e8f6ff96b33e67e86fb3ab3a2ed74ad16051007eaf Loading...

	www.opera.com/gx?utm_content=1461_CY4SBNzRUT1GJLOYP6RK&utm_medium=pa&utm_campaign=PWN_NO&utm_id=d1f2baa003384319b78714fcb887f746&utm_source=PWNgames&edition=std-1	422 B	2023-03-07	2024-03-24
Pretty URL www.opera.com/gx?utm_content=1461_CY4SBNzRUT1GJLOYP6RK&utm_medium=pa&utm_campaign=PWN_NO&utm_id=d1f2baa003384319b78714fcb887f746&utm_source=PWNgames&edition=std-1 IP 3.74.184.43 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:19:46 Last Seen2024-03-24 20:42:12 Times Seen336 Hash b5ee7dff028e43c08940f369ad5a8963 c27d7438dd40365520cf79fb2293417b8609b06f 586cd59bc3f88355b1fb5d2010a6e3325cac2414e351956550fa3fd35f467d24 Loading...

	connect.facebook.net/en_US/fbevents.js	105 kB	2023-03-08	2023-11-28
Pretty URL connect.facebook.net/en_US/fbevents.js IP 157.240.221.16 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:10 Last Seen2023-11-28 17:55:58 Times Seen32 Hash a6ef7927128284961f4cadd572969f09 57e21033749687e69de710a0be6d4244edf1fe51 d5c905d7ce4679b183eb11f7c6811682ddffbf0f037590360ae2b1a84a51ef1b Loading...

	connect.facebook.net/signals/config/1123357797681867?v=2.9.89&r=stable	300 kB	2023-03-09	2023-03-09
Pretty URL connect.facebook.net/signals/config/1123357797681867?v=2.9.89&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 00:07:45 Last Seen2023-03-09 00:07:45 Times Seen1 Hash a511f0a0c20303eebf56b5a2036f2a2c 808214bf92e4723df20a481a3f6e88fe1ad86527 3513e6ab80f45649986358952a499807d6a3186cb6aca5ea8df472201ae37db4 Loading...

	11442918.fls.doubleclick.net/ddm/fls/r/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=6767635973938;gtm=2wgbu0;auiddc=1895569026.1670602593;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1	211 B	2023-03-07	2023-03-11
Pretty URL 11442918.fls.doubleclick.net/ddm/fls/r/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=6767635973938;gtm=2wgbu0;auiddc=1895569026.1670602593;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2023-03-11 21:00:46 Times Seen1 Hash 145a86b05d5d23a0457e4d04d7414f6b b9c5bd648296302344b234dc52669b473f076378 1487253ac00cdb9bce5db8331567b3ab87d98eed981f396602ed00bd648a6d7a Loading...

	www.googleadservices.com/pagead/conversion.js	46 kB	2023-03-08	2023-03-12
Pretty URL www.googleadservices.com/pagead/conversion.js IP 216.58.207.194 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:59:43 Last Seen2023-03-12 14:32:57 Times Seen1 Hash 9cdfece004275f945b074de4b8a0700c ede6c2b945f396ddadd66798b2936724f9529062 ebcd43274f956ef6d5c0f690695cc56c35a3a77180c9d1b80791febe4e27f601 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-PRBZ42F	398 kB	2023-03-08	2023-03-09
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-PRBZ42F IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:56:13 Last Seen2023-03-09 00:08:33 Times Seen1 Hash 7435abbd86d1e8e1ec8640fa14544304 47afa76d9a5911c4d61e47be7603e381ccc9f82d 8adf92689bc35202a786472e6bcc7d0ac2532470f97f1c7c1b7edd550cb547bc Loading...

	www.googletagmanager.com/gtag/js?id=G-T18E1GTPQG&l=dataLayer&cx=c	233 kB	2023-03-09	2023-03-09
Pretty URL www.googletagmanager.com/gtag/js?id=G-T18E1GTPQG&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 00:07:45 Last Seen2023-03-09 00:07:45 Times Seen1 Hash a7f213539f7c44dd312c5b5c743d2b2a c12886f8309098db755a1a9bc3998b7ce482c673 1b2b69c1a008ecf6981c6960973a5a781b5fa64800c0c93b7137f255bc2ac106 Loading...

	connect.facebook.net/signals/config/471443751186133?v=2.9.89&r=stable	300 kB	2023-03-08	2023-03-11
Pretty URL connect.facebook.net/signals/config/471443751186133?v=2.9.89&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:28:46 Last Seen2023-03-11 21:00:46 Times Seen1 Hash 4137f9b5607bf5c60ba5f43921cf2b24 6530ef9aebd7bb5e1eea29448e2ddf4524b47f37 e066c0bba2f009f5385f5ab6ffaed823ea32c7feae29420fec665e9b0a7e8160 Loading...

	11442918.fls.doubleclick.net/ddm/fls/r/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=6767635973938;gtm=2wgbu0;auiddc=1895569026.1670602593;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1	659 B	2023-03-07	2023-03-11
Pretty URL 11442918.fls.doubleclick.net/ddm/fls/r/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=6767635973938;gtm=2wgbu0;auiddc=1895569026.1670602593;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2023-03-11 21:00:46 Times Seen1 Hash 526b1641a89304d842ff0805cae98078 7a5d59cae78e114b9aecd1968d5cece8c0fab5fa 9b8d1014b62f337dfdc2809825c29bdb7c352757adafba9c188bff2c57708bbd Loading...

	www.googleadservices.com/pagead/conversion/10840821485/?random=1670602593769&cv=9&fst=1670602593769&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D6767635973938%3Bgtm%3D2wgbu0%3Bauiddc%3D1895569026.1670602593%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx%253Futm_content%253D1461_CY4SBNzRUT1GJLOYP6RK%2526utm_medium%253Dpa%2526utm_campaign%253DPWN_NO%2526utm_id%253Dd1f2baa003384319b78714fcb887f746%2526utm_source%253DPWNgames%2526edition%253Dstd-1&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4	2.2 kB	2023-03-09	2023-03-09
Pretty URL www.googleadservices.com/pagead/conversion/10840821485/?random=1670602593769&cv=9&fst=1670602593769&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D6767635973938%3Bgtm%3D2wgbu0%3Bauiddc%3D1895569026.1670602593%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx%253Futm_content%253D1461_CY4SBNzRUT1GJLOYP6RK%2526utm_medium%253Dpa%2526utm_campaign%253DPWN_NO%2526utm_id%253Dd1f2baa003384319b78714fcb887f746%2526utm_source%253DPWNgames%2526edition%253Dstd-1&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4 IP 216.58.207.194 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 00:07:45 Last Seen2023-03-09 00:07:45 Times Seen1 Hash 624619ba628cb9543e812ec52d067087 8fe00e787c4b4ab6965dadf830f2de0160ac9656 6fecd89666318645b3b1c1eeab1432cf793a9e7965ac3f6a79de053285463f66 Loading...

	arabs4.net/pc/	97 B	2023-03-07	2023-03-17
Pretty URL arabs4.net/pc/ IP 92.205.12.81 ASN #21499 Host Europe GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:52 Last Seen2023-03-17 12:26:45 Times Seen1 Hash 6ffe84233c232e2ccb501bb35d023a81 cd1c4276e504823215879a2650a233c61ffc4860 2535618b64ed7a5302afa89aa7ed7b1b141d85d71fc378248b3c6a0c8e710102 Loading...

	cdn.taboola.com/libtrc/unip/1410119/tfa.js	59 kB	2023-03-08	2023-03-09
Pretty URL cdn.taboola.com/libtrc/unip/1410119/tfa.js IP 151.101.65.44 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 22:11:01 Last Seen2023-03-09 02:53:37 Times Seen1 Hash 83a3d6fa0b67e981939547ebc6181c5e 8b43455f2ed043c6b7eef45cf27262f314930606 cfe9b943cc4fea6884e81cbfe79771df3ccb0e739a9615276550d36fff60b529 Loading...

	bat.bing.com/bat.js	39 kB	2023-03-08	2024-01-01
Pretty URL bat.bing.com/bat.js IP 13.107.21.200 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:52:15 Last Seen2024-01-01 05:01:16 Times Seen16 Hash 258ac0be54e333a28d69bfd394fcde90 daecd0687e8b00f5d67a7732ccbe9174326821d9 f2c4b7d20ff42a433d0c76631c460cd75128f8f0436d052ce2cf79dc4fa6a244 Loading...

	s.yimg.com/wi/ytc.js	17 kB	2023-03-07	2024-03-04
Pretty URL s.yimg.com/wi/ytc.js IP 87.248.119.252 ASN #203220 Yahoo! UK Services Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:36 Last Seen2024-03-04 14:29:23 Times Seen1244 Hash 6a624022b5d271dcefb070b0b6670abc e9a0a059a5cefc0cd9e6cc0e8d7bd8d64c23936b 249c4eba880cfb74e1b6e1d1048def310636dc3b1ce5b3fe525703fd4025238f Loading...

	2gov.site/cup22/?ma=24287	218 B	2023-03-07	2023-03-17
Pretty URL 2gov.site/cup22/?ma=24287 IP 66.29.153.49 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:52 Last Seen2023-03-17 12:26:45 Times Seen1 Hash f0ba7a095b0d184be2e29c86d1c75937 7d566b921cfaa5b46653bae1f047729696be67f7 88cdac010f7a0480ee0070e872b9ddf29c574f6c9aa113738efb6dc4d314f78e Loading...

	www.opera.com/gx?utm_content=1461_CY4SBNzRUT1GJLOYP6RK&utm_medium=pa&utm_campaign=PWN_NO&utm_id=d1f2baa003384319b78714fcb887f746&utm_source=PWNgames&edition=std-1	417 B	2023-03-07	2024-03-23
Pretty URL www.opera.com/gx?utm_content=1461_CY4SBNzRUT1GJLOYP6RK&utm_medium=pa&utm_campaign=PWN_NO&utm_id=d1f2baa003384319b78714fcb887f746&utm_source=PWNgames&edition=std-1 IP 3.74.184.43 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2024-03-23 17:52:27 Times Seen241 Hash 782f224163a456df194b6bbb5c7b218d bf1522d204081c55a699d7d830e8c1777a386ad3 9ea3fb367657f27631a01f5c2dda2dfdb0c06c21309c71eaaf0aeef899f47098 Loading...

	www.opera.com/gx?utm_content=1461_CY4SBNzRUT1GJLOYP6RK&utm_medium=pa&utm_campaign=PWN_NO&utm_id=d1f2baa003384319b78714fcb887f746&utm_source=PWNgames&edition=std-1	3.0 kB	2023-03-07	2024-01-24
Pretty URL www.opera.com/gx?utm_content=1461_CY4SBNzRUT1GJLOYP6RK&utm_medium=pa&utm_campaign=PWN_NO&utm_id=d1f2baa003384319b78714fcb887f746&utm_source=PWNgames&edition=std-1 IP 3.74.184.43 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:52:36 Last Seen2024-01-24 11:43:10 Times Seen40 Hash f5a6286eaa45f9aeec04e007cba1bb23 7befd217059157b76809d13ec6d10de6876dcf63 5a4f3f5fd8c3b346d408e183af42f942607054fba180e00cab4addede2fe35c6 Loading...

	www.opera.com/gx?utm_content=1461_CY4SBNzRUT1GJLOYP6RK&utm_medium=pa&utm_campaign=PWN_NO&utm_id=d1f2baa003384319b78714fcb887f746&utm_source=PWNgames&edition=std-1	3.6 kB	2023-03-07	2023-04-02
Pretty URL www.opera.com/gx?utm_content=1461_CY4SBNzRUT1GJLOYP6RK&utm_medium=pa&utm_campaign=PWN_NO&utm_id=d1f2baa003384319b78714fcb887f746&utm_source=PWNgames&edition=std-1 IP 3.74.184.43 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2023-04-02 21:30:09 Times Seen2 Hash f1607c87893064f9fd1d5f505d7dbcc8 10b206a1ae8a48e68abf99b9fb1450f37659e732 892ce543fa97bf9c420515828355b0cfc2948137a1c435eb613c082076ff73ce Loading...

	www.redditstatic.com/ads/pixel.js	25 kB	2023-03-08	2023-12-01
Pretty URL www.redditstatic.com/ads/pixel.js IP 151.101.1.140 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:55 Last Seen2023-12-01 19:12:11 Times Seen28 Hash c1c34430d39fb43c9612aebe7ab8a9db 4d7f5cb7b29685a3a5a51c140288465e9553a0a7 4b4e80032e1c164685d3ff6eb4c606785ebaebaa648d3984478b0cc8d114190b Loading...

	trc.taboola.com/1410119/trc/3/json?tim=1670602593019&data=%7B%22id%22%3A815%2C%22ii%22%3A%22%2Fgx%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1670602593011%2C%22cv%22%3A%2220221206-9-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.opera.com%2Fgx%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Doperasoftwarees-operasoftwarees-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1670602593019%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1%22%2C%22tos%22%3A1%2C%22ssd%22%3A1%2C%22scd%22%3A4%2C%22ler%22%3A%22other%22%2C%22supv%22%3Atrue%7D%7D&pubit=i	2.5 kB	2023-03-09	2023-03-09
Pretty URL trc.taboola.com/1410119/trc/3/json?tim=1670602593019&data=%7B%22id%22%3A815%2C%22ii%22%3A%22%2Fgx%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1670602593011%2C%22cv%22%3A%2220221206-9-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.opera.com%2Fgx%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Doperasoftwarees-operasoftwarees-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1670602593019%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1%22%2C%22tos%22%3A1%2C%22ssd%22%3A1%2C%22scd%22%3A4%2C%22ler%22%3A%22other%22%2C%22supv%22%3Atrue%7D%7D&pubit=i IP 151.101.65.44 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 00:07:45 Last Seen2023-03-09 00:07:45 Times Seen1 Hash 2dab7696d653e1f8e8180575719bbad5 025e2fd0171136fdbb92f0af92621de75b041614 35aada3970cc4d335bffae4f53959f1c3577f485f54db1377c43e9ccd6248ed9 Loading...

	unknown	0 B	2023-03-07	2024-04-23
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-23 12:18:19 Times Seen37019092 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	static.hotjar.com/c/hotjar-445451.js?sv=7	33 kB	2023-03-09	2023-03-09
Pretty URL static.hotjar.com/c/hotjar-445451.js?sv=7 IP 54.230.111.66 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 00:07:45 Last Seen2023-03-09 00:07:45 Times Seen1 Hash 66bc9747e443c1c10d36ffecac7408bc a2f3a1d104eb9640f39d6dd004367233d4966988 5f4b61349c1d8dff2b7f1f618093788464fea2f5285ecb806001db4fe6c0b78d Loading...

	www.getgx.net/cmp/TXP7QH/P6QLHR/?sub1=150_2476&sub2=63935f6004e8ba0001949b7f	189 B	2023-03-09	2023-03-09
Pretty URL www.getgx.net/cmp/TXP7QH/P6QLHR/?sub1=150_2476&sub2=63935f6004e8ba0001949b7f IP 52.45.44.207 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 00:07:45 Last Seen2023-03-09 00:07:45 Times Seen1 Hash 9738ef39f3194f6be89eeb864cd9cbae fdf592dfed7888428d80cb72ec501f8f88a07d77 270fe4255f0859fab6e61ef51f09846c3f7cb2027eddafd1535e5336c131b917 Loading...

	www.googleoptimize.com/optimize.js?id=GTM-5HKZ2H4	110 kB	2023-03-08	2023-03-09
Pretty URL www.googleoptimize.com/optimize.js?id=GTM-5HKZ2H4 IP 142.250.74.46 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:56:13 Last Seen2023-03-09 04:18:47 Times Seen1 Hash 11b6d3c7754847d62eb6f01359a5bfb8 85e43bd62193e43532b589b1a70661a4d3bda5b8 99feba1e7f5ad22a1cd4fdd156cc7eb40bdac428d99197a7936990e3f09f64b9 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-N7XDW7Z	127 kB	2023-03-09	2023-03-09
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-N7XDW7Z IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 00:07:45 Last Seen2023-03-09 00:07:45 Times Seen1 Hash 1ee2fb7d8f66650c2f5d3d06541481a5 cb81999ad91070906bee855371d8bd6d311dd763 757810ceda589823efa5f1952a560b0743c80f42d0ce7f17086951a074a25bf3 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-20
Pretty URL www.google-analytics.com/analytics.js IP 216.58.207.206 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-20 17:36:09 Times Seen1522 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	www.opera.com/gx?utm_content=1461_CY4SBNzRUT1GJLOYP6RK&utm_medium=pa&utm_campaign=PWN_NO&utm_id=d1f2baa003384319b78714fcb887f746&utm_source=PWNgames&edition=std-1	21 B	2023-03-07	2024-04-21
Pretty URL www.opera.com/gx?utm_content=1461_CY4SBNzRUT1GJLOYP6RK&utm_medium=pa&utm_campaign=PWN_NO&utm_id=d1f2baa003384319b78714fcb887f746&utm_source=PWNgames&edition=std-1 IP 3.74.184.43 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:18:43 Last Seen2024-04-21 15:49:35 Times Seen547 Hash c499adcb8b93574828ea9ee76f39278f 729be93800ec88aeb5c94d1e1d5558eb0ee7605c 53c7b7488f8e6625f123eef988f95d9268c7b673501f465712561ea83d77bd78 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 1c30f655754855af2dfa537d38d042d2	37 B	2023-03-07	2024-03-23
Pretty Observations First Seen2023-03-07 15:20:29 Last Seen2024-03-23 17:52:27 Times Seen241 Hash 1c30f655754855af2dfa537d38d042d2 0a510f5532f622e1514177e8a1c64daf50099825 f565fc57576629933f18b2a6c27826541e67444f7c01e64b35d3a281caa02eba Loading...

	#2 Eval - fd9a6ad8235a5b1f8291a0f682c4e641	60 B	2023-03-07	2024-03-23
Pretty Observations First Seen2023-03-07 12:57:29 Last Seen2024-03-23 17:52:27 Times Seen385 Hash fd9a6ad8235a5b1f8291a0f682c4e641 68be4f3dee54bfba9dbb673003d30cbc4c2663ae a5febe3286b6a155c7ff728e6cdac57d3cd37b93db132ec24e8f6e78c24e64a1 Loading...

	#3 Eval - c9c654616521bfc7e50e42b4037f0b9e	100 B	2023-03-07	2023-04-02
Pretty Observations First Seen2023-03-07 15:20:29 Last Seen2023-04-02 21:30:09 Times Seen2 Hash c9c654616521bfc7e50e42b4037f0b9e 8b5075274f8d3e5259745b4e7172bc22f84d0bb7 310442179c33b2c11f96e621dac0c97db1cd18804aea3d7aa7e3ebd758159ef5 Loading...

	#4 Eval - 6b801ce5ac9f7cd1268e9f07479f2103	100 B	2023-03-08	2023-04-02
Pretty Observations First Seen2023-03-08 23:56:14 Last Seen2023-04-02 21:30:09 Times Seen2 Hash 6b801ce5ac9f7cd1268e9f07479f2103 0a479aa033ab804b9d969fce32618543ad6ccba2 d8270678e0791e0fc5c3c3baf72b59c126d2f55cada4d9ef1a7269d8587f4a6c Loading...

		Size	First Seen	Last Seen
	#1 Write - d41d8cd98f00b204e9800998ecf8427e	0 B	2023-03-07	2024-04-23
Pretty Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-23 12:18:19 Times Seen37019092 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (140)

URL IP Response Size

en-gv.site/ma=24287

31.170.164.241

301 Moved Permanently

707 B

URL HTTP/1.1
en-gv.site/ma=24287
IP
31.170.164.241:0
ASN
#47583 Hostinger International Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
707 B (707 bytes)
Hash
1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

HTTP Headers

GET /ma=24287 HTTP/1.1
Host: en-gv.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Fri, 09 Dec 2022 16:16:29 GMT
server: LiteSpeed
location: https://en-gv.site/ma=24287
platform: hostinger
content-security-policy: upgrade-insecure-requests

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aea93551fa9deb76ae49a3b4019d64fe
e3b8862057ebe839959228e42246d7b1807fc90c
7e210f03b140418085e94ec20c1d27d6ecf7a404cbd323e16476ae5ae95d6dac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7E210F03B140418085E94EC20C1D27D6ECF7A404CBD323E16476AE5AE95D6DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8979
Expires: Fri, 09 Dec 2022 18:46:08 GMT
Date: Fri, 09 Dec 2022 16:16:29 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f2acd891dc6eb1f09f57a2b086791781
1e2088306501a61edcca1ade62c4d54f23b3b083
51148fed95cc00d60dc3640350f135b1b2763ff0e3cfbffc40f0948317894be9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "51148FED95CC00D60DC3640350F135B1B2763FF0E3CFBFFC40F0948317894BE9"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15389
Expires: Fri, 09 Dec 2022 20:32:58 GMT
Date: Fri, 09 Dec 2022 16:16:29 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
b44c4b5daa307a355e7bab1c83c1ca82
dbd14cd873f1dd4502f277b3f51cb7bc8da0c080
fd4604461cfa002c8a261bb14eb8dda56817db231b9012b2eb38d6dbc2674df5

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Alert, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 09 Dec 2022 16:08:19 GMT
content-type: application/json
age: 490
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4ee537977be9c03702f8ffe0025bf1fe
21637881c4aa34c4add703f8bff4eff573159f45
4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6312
Expires: Fri, 09 Dec 2022 18:01:41 GMT
Date: Fri, 09 Dec 2022 16:16:29 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: sqBLr4lDGT8sV9uHAfyao5OQmN1Rnw0gLJWk2f2E3jIzAqdX+vNfBdnVXsa+uTgus83n2QALecFvKCLa+DJPbQ==
x-amz-request-id: GRAB8FAMVHFB9DT6
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 09 Dec 2022 15:50:19 GMT
age: 1570
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

en-gv.site/ma=24287

31.170.164.241

301 Moved Permanently

707 B

URL HTTP/2
en-gv.site/ma=24287
IP
31.170.164.241:0
ASN
#47583 Hostinger International Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
707 B (707 bytes)
Hash
1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

HTTP Headers

GET /ma=24287 HTTP/1.1
Host: en-gv.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 301 Moved Permanently
content-type: text/html
content-length: 707
date: Fri, 09 Dec 2022 16:16:29 GMT
server: LiteSpeed
location: https://2gov.site/cup22/?ma=24287
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 16:16:29 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Last-Modified, ETag, Cache-Control, Alert, Content-Length, Pragma, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 09 Dec 2022 16:07:55 GMT
age: 515
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
2cec4ce99aa94e7221073b44b3773528
ab7b43c16ce87b595ff59e8e5fb4169790b5b447
72764441940de8e1f4f9c42449ad606526941d03c4152408fc33e6c632dd0066

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 16:16:30 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 08 Dec 2022 01:06:20 GMT
Expires: Thu, 15 Dec 2022 01:06:19 GMT
Etag: "ab7b43c16ce87b595ff59e8e5fb4169790b5b447"
Cache-Control: max-age=463188,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776f0bacbbc3b515-OSL

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
e6be4d2155028ffff5d01ab6e7edf6da
07172071b5cf43c4cd7d7930b4ad8518ec1e32e9
4d8a5fa2362fd0910babd6d128d850d4460829468eb23d34ee5ee6eaa42d5a38

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2048
Cache-Control: max-age=149073
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:16:30 GMT
Etag: "6392faaf-1d7"
Expires: Sun, 11 Dec 2022 09:41:03 GMT
Last-Modified: Fri, 09 Dec 2022 09:06:55 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471

2gov.site/cup22/?ma=24287

66.29.153.49

200 OK

504 B

URL HTTP/2
2gov.site/cup22/?ma=24287
IP
66.29.153.49:0
ASN
#22612 NAMECHEAP-NET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
504 B (504 bytes)
Hash
89fe1b539d3eac8ce6bf5c8962f8f589
9df7961ff1c4713fe707d9aeddfe539b2b4432dd
edb1d347b9116a5112f2bd3665a91d3c9e9ad1e791815065cee8c822ddea0794

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /cup22/?ma=24287 HTTP/1.1
Host: 2gov.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
x-powered-by: PHP/7.4.33
content-type: text/html; charset=UTF-8
content-length: 504
content-encoding: br
vary: Accept-Encoding
date: Fri, 09 Dec 2022 16:16:30 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

push.services.mozilla.com/

35.82.221.194

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.82.221.194:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: R0FTJB4+9oScGTYJuAPFog==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Qw4wSSun65bG9OxzoYtBvkeM+1M=

arabs4.net/pc/

92.205.12.81

200 OK

145 B

URL HTTP/1.1
arabs4.net/pc/
IP
92.205.12.81:0
ASN
#21499 Host Europe GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
145 B (145 bytes)
Hash
960be881f98ea294ec62bd81c77d2dfe
b0162dde6c1346bf8a9b0185ed56c05ee22daeda
c3f7b2ba43b5ee8e6031e316d5f94c7a1d2fe3cc8aef2851a648af4f92b028c0

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /pc/ HTTP/1.1
Host: arabs4.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 16:16:12 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 26 Aug 2022 20:50:22 GMT
ETag: "c63c23-da-5e72b100b171b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 145
Keep-Alive: timeout=5
Content-Type: text/html

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10947
Expires: Fri, 09 Dec 2022 19:18:58 GMT
Date: Fri, 09 Dec 2022 16:16:31 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10947
Expires: Fri, 09 Dec 2022 19:18:58 GMT
Date: Fri, 09 Dec 2022 16:16:31 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10947
Expires: Fri, 09 Dec 2022 19:18:58 GMT
Date: Fri, 09 Dec 2022 16:16:31 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10947
Expires: Fri, 09 Dec 2022 19:18:58 GMT
Date: Fri, 09 Dec 2022 16:16:31 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg

34.120.237.76

200 OK

6.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.6 kB (6578 bytes)
Hash
8546542f00ea29ef4df6ab8d3c7c2164
5c8ffe91490006a9890188b53f875568c2b6bd8f
7fb11750ac339ac283da62fd370862c6b95a103a585ca5dd8c90038718d818a1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6578
x-amzn-requestid: 6392feb9-e33e-42fa-bc10-b5e31e654c9b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cw4beGG7oAMF8hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63903aaf-2c890b7b0a16617346a0f7e7;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 07:03:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: H067kZXU_djWxbWO34bYMqa0xZ-WF9ntEBhZ-kV_TDoJFXQL_J1hqQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 03:34:27 GMT
age: 45724
etag: "5c8ffe91490006a9890188b53f875568c2b6bd8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.2 kB (5188 bytes)
Hash
fba9a3854df65740512f96efe7442e58
8fbff7725c842d70e047c635a725723a9dc9c55a
6e639298ebc82343cee9267d2910d15735af55f910e2c3de9218266b7c6fffc9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5188
x-amzn-requestid: afb8cbd2-3674-4dac-9cd9-9ff83618ac0a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ck2-5G9joAMFlPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638b6b92-2979ff216b9028aa70baef8b;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 15:30:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7Dp35PIr_WYUI1bBa21AvmCMEPi0d3jnhuS8eEk3Q3CXRcGWAnkD8g==
via: 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 17:01:04 GMT
age: 83727
etag: "8fbff7725c842d70e047c635a725723a9dc9c55a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.9 kB (7897 bytes)
Hash
8c3214044657f3b876d1f1848bca5684
7558222788f06623ddae6e883413e38e1146281e
e1f9c9c445bba7765f371dbb655cab43c1e12de7cbd015f8034c494118f7f708

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7897
x-amzn-requestid: 032fd8ae-b7e9-4e12-8546-838191a73688
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwVM_F51IAMFunw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900252-345ae6cd107d207f5dbe29a8;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: N-zFZ8yeL7RrOZ5xfqvfBaE3zcXWecvr6Jd-93nKiUZlCXp2n2_Bgw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 03:41:46 GMT
age: 45285
etag: "7558222788f06623ddae6e883413e38e1146281e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7557 bytes)
Hash
5de5d319f43d9c9c641419d96655541f
cde4c7fa0145d3645af17e34c83c63c08f76a076
fdb114eb142f035c7a54195d16af51b5b423642c312f4bccc0f407d8fcc245aa

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7557
x-amzn-requestid: 400d1465-ecbf-4d95-8aa8-4dce5dca0716
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctluwGo4oAMFhTg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ee991-6dba29ae7065d5347a1a420d;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 07:04:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Lazl-stakC-31gMuQ2WzH9uFkIb0g7HaaM3xkwSFdFJMWKTaKqrBEQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 04:07:07 GMT
age: 43764
etag: "cde4c7fa0145d3645af17e34c83c63c08f76a076"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2654f7a6-bd8b-4c13-9c46-9b7582ba979a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.2 kB (5169 bytes)
Hash
06514ce96ae21cb01f526a5febdcbeb4
ebb97e5b97f394e8c67098f55581d5329ce819a2
4099a2fb6ddc4feaa30f357a180d64aeb7c9fc73f115fc762d5fe5c221d2e89e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2654f7a6-bd8b-4c13-9c46-9b7582ba979a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5169
x-amzn-requestid: 277a1b04-4e19-4313-8aac-5f9ab9076305
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctEdkFGrIAMFvHg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638eb456-5b21edd57297665012d536cc;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 03:17:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Xi-bshsYa4LlKbJgAt0h-lPnB_5uQbqln5JGBRE8io2Fp1y41cS9xg==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 04:08:48 GMT
age: 43663
etag: "ebb97e5b97f394e8c67098f55581d5329ce819a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49a0678c-8bda-434a-a337-63696994d79c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.5 kB (5530 bytes)
Hash
a22fc7807fb3337f0af5e546c7ad366a
0d5969394b370a5c77c53ed58f55e5f8a45da3ab
98b4f4fd27dc036697fb0328083bce6e691b7493428f3a54991087d9d1165d97

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49a0678c-8bda-434a-a337-63696994d79c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5530
x-amzn-requestid: adecbb8c-cec3-46a0-b32c-0026b8421fe5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cw4d8Fg6IAMF61g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63903abf-4bcb385f27cb438c36a2cd5e;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 07:03:27 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UDD0v-1I1sFVMsJl64nQDe_hHExMrSLXPrbou_J79YEQf3YwS2oklA==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 06:50:54 GMT
age: 33937
etag: "0d5969394b370a5c77c53ed58f55e5f8a45da3ab"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
3648f3958144d464d6f6a17cb3f0dd3f
23f5de1580f58a61821d005adeca52baf2ac80b7
3d7d8114305b0eaeca0ba994848c48ed5f2cd7dbc3cc53837fcb5f333af5546a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 16:16:31 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 08 Dec 2022 20:58:30 GMT
Expires: Thu, 15 Dec 2022 20:58:29 GMT
Etag: "23f5de1580f58a61821d005adeca52baf2ac80b7"
Cache-Control: max-age=534717,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776f0bb79b87b515-OSL

ocsp.sca1b.amazontrust.com/

54.230.245.110

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.110:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
92e543da8aa989d862fb4cd34ff33490
2ca5f109733bc473a9ebc74a174fb3af0a3ee68b
7771296fedd3c757b92a5276bdedd2d8c8c5608b7aca3c473418ea650dece9a9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 09 Dec 2022 16:16:32 GMT
Last-Modified: Fri, 09 Dec 2022 15:44:06 GMT
Server: ECS (nyb/1D20)
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 20HUqnmp2BtAk7BqAX1QpuIyrQE84hTJVU6bs2h4GO29T9qPe3mpcg==
Age: 1946

www.getgx.net/cmp/TXP7QH/P6QLHR/?sub1=150_2476&sub2=63935f6004e8ba0001949b7f

52.45.44.207

200 OK

531 B

URL HTTP/2
www.getgx.net/cmp/TXP7QH/P6QLHR/?sub1=150_2476&sub2=63935f6004e8ba0001949b7f
IP
52.45.44.207:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (531), with no line terminators
Size
531 B (531 bytes)
Hash
6740299860e0f687d5e6910abd7e462f
b767112d2ba39d8e2f5792d4597b939e0456be5b
b53cf8e7f6f19421906412612c807c32a7c2b8e57b3417d1392ddc7ebee53522

HTTP Headers

GET /cmp/TXP7QH/P6QLHR/?sub1=150_2476&sub2=63935f6004e8ba0001949b7f HTTP/1.1
Host: www.getgx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 09 Dec 2022 16:16:32 GMT
content-type: text/html
content-length: 531
apigw-requestid: c4vXGimTIAMEM_A=
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

313 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
313 B (313 bytes)
Hash
e0bef91226e32ee05ed9ece8fce7fefd
aa4894a7f3c62675a18078c9f330dce2c66b022a
16507ccd8f0ec63631cafc9a2e7cd55b908931f0d53546ec6a701afe27c3321d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1487
Cache-Control: max-age=124022
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:16:32 GMT
Etag: "63929b07-139"
Expires: Sun, 11 Dec 2022 02:43:34 GMT
Last-Modified: Fri, 09 Dec 2022 02:18:47 GMT
Server: ECS (amb/6B9A)
X-Cache: HIT
Content-Length: 313

www.opera.com/gx?utm_content=1461_CY4SBNzRUT1GJLOYP6RK&utm_medium=pa&utm_campaign=PWN_NO&utm_id=d1f2baa003384319b78714fcb887f746&utm_source=PWNgames&edition=std-1

3.74.184.43

200 OK

39 kB

URL HTTP/2
www.opera.com/gx?utm_content=1461_CY4SBNzRUT1GJLOYP6RK&utm_medium=pa&utm_campaign=PWN_NO&utm_id=d1f2baa003384319b78714fcb887f746&utm_source=PWNgames&edition=std-1
IP
3.74.184.43:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
39 kB (38996 bytes)
Hash
ddbb85e822f33d1a9b3050fd16b88688
a32cd69e6fbfa6c59fb4710a429a5efab5d2a3c7
7827c8cd1aee097e8dbf0f1e0b6c9e15c84652797c186c0f7a1019fca18d24ef

HTTP Headers

GET /gx?utm_content=1461_CY4SBNzRUT1GJLOYP6RK&utm_medium=pa&utm_campaign=PWN_NO&utm_id=d1f2baa003384319b78714fcb887f746&utm_source=PWNgames&edition=std-1 HTTP/1.1
Host: www.opera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 09 Dec 2022 16:16:32 GMT
content-type: text/html; charset=utf-8
content-language: en
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=3600
content-encoding: gzip
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=63072000; includeSubdomains; preload
content-security-policy: frame-ancestors 'self' https://*.opera.com; upgrade-insecure-requests;
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
bf8858fa52de668b0013cf9ce66d290c
9c319173ee6a48c6e717e9e8764008564aabe7ba
93df528ead5887cbbcf51f83c9e6ffa451861ae3145296ab3dfc269067080933

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:16:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx-mobile__android-iOS@2x.d190a54a25f9.webp

23.32.85.11

200 OK

113 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx-mobile__android-iOS@2x.d190a54a25f9.webp
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
RIFF (little-endian) data, Web/P image\012- data
Size
113 kB (112954 bytes)
Hash
d190a54a25f96e1356a94e2a868bd5be
2b5014cd95340eeee12f0759f94e47669a4616d9
20d4625716519bb627af5c27bc73dbcc630509a1052b9b3cc2cbcfbf5da9e7f7

HTTP Headers

GET /staticfiles/assets/images/sections/2021/hero-top/gx/gx-mobile__android-iOS@2x.d190a54a25f9.webp HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: sKHFCrammoEHKaBa++0s1RjnNyVEfo353kSE774LgIJ6tTG+o37Ijn1SVTjjZsCXl85b/P+TApU=
x-amz-request-id: 0SREX2JRCAA66ZG9
last-modified: Wed, 07 Dec 2022 15:30:17 GMT
etag: "d190a54a25f96e1356a94e2a868bd5be"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: binary/octet-stream
server: AmazonS3
content-length: 112954
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/feature-promo/awesome-features--gx__mobile.c8ecc394b852.jpg

23.32.85.11

200 OK

64 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/feature-promo/awesome-features--gx__mobile.c8ecc394b852.jpg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 764x1356, components 3\012- data
Size
64 kB (64529 bytes)
Hash
c8ecc394b852869c3f8d196e06a15b44
f9476573123f0969aaf4d9d14d99fa422345a433
06ccc3052896eeb9cb55bcf12d97ce90c374089838d698317e8a4bc9d25c0631

HTTP Headers

GET /staticfiles/assets/images/sections/2021/feature-promo/awesome-features--gx__mobile.c8ecc394b852.jpg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: Ci1ItWpcYJOEK+6V08hk8JvK+F2Ut2pN+FArBzeED68hvDssL839SzrKntG9cbXjL7EtLhhiEpg=
x-amz-request-id: 0SR3DSNT05Q3KJBV
last-modified: Wed, 07 Dec 2022 15:30:04 GMT
etag: "c8ecc394b852869c3f8d196e06a15b44"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 64529
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d61883097c47c0fcb4a15cafc5bdbdfc
54411aba43093cafd1cb2acea7c2b4c69184611f
0aef2b974544f530bd591dd0201909a9c2a6b3f4451c69288bafc126d9a37e2c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:16:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-twitch.1294239c3c6e.svg

23.32.85.11

200 OK

1.3 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-twitch.1294239c3c6e.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1170)
Size
1.3 kB (1329 bytes)
Hash
1294239c3c6e1ec6e7dbe8e97c202db1
889e5cad02c367442a6bdb831905cf8f731b1fab
682faa2826cf95b7245ee2d7cbd878e1146a77a25db9eb93308417386734ecbe

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-twitch.1294239c3c6e.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: kZneVkXj/tKDIRZE6J2LXTKHcqMyf3WibSvl25YSbGBjqsKOGC2FpB6XMK2DuONd37nmdo6kfa0=
x-amz-request-id: 74H8EEP1XVH3WT9Z
last-modified: Wed, 07 Dec 2022 15:30:05 GMT
etag: "1294239c3c6e1ec6e7dbe8e97c202db1"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 1329
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-discord.b89c9e46e12b.svg

23.32.85.11

200 OK

3.0 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-discord.b89c9e46e12b.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2837)
Size
3.0 kB (2996 bytes)
Hash
b89c9e46e12b6b665b21a72981cef30e
d66d0535175370c5c09f2c625bfa9c85ae43bcad
b661b7660ce27ff5cec761f127d54e55407a4c0fa077e2aa3144038162c76328

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-discord.b89c9e46e12b.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: 89hfuYkliQT69RM0VqZEgkeHQqxl+mzObL2CIefxosGad+AXcOGR69ghzd789stnc0+Ejs3/Htw=
x-amz-request-id: F6SAHG0QYQVRS7CF
last-modified: Wed, 07 Dec 2022 15:30:05 GMT
etag: "b89c9e46e12b6b665b21a72981cef30e"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 2996
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/logo/logo-o.64d9b43037de.svg

23.32.85.11

200 OK

2.0 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/logo/logo-o.64d9b43037de.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (583)
Size
2.0 kB (2001 bytes)
Hash
64d9b43037de76c75fa0a1a04d91f14e
6ddd1a7e4c4737f3cd4b3bbdb0ad2a4a435db36f
1ca4940630392e48936d86cddf6b9825123b775009c5e7451529a51939d9a2cc

HTTP Headers

GET /staticfiles/assets/images/logo/logo-o.64d9b43037de.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: bMclH8vnkDs0YcYpKfpyHBeqbuH6KXEbh6LAsAt1/19mHtbrCZ0Z6KgPVXR5KMiWb1fb5fMyluI=
x-amz-request-id: JZQCWF5B2BAY7VQF
last-modified: Wed, 07 Dec 2022 15:28:40 GMT
etag: "64d9b43037de76c75fa0a1a04d91f14e"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 2001
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/logo/logo-and-name--white.2236bc548f38.svg

23.32.85.11

200 OK

6.4 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/logo/logo-and-name--white.2236bc548f38.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (880)
Size
6.4 kB (6414 bytes)
Hash
2236bc548f38c1160fede16371d814c6
5960b6b68cc3f62dec9eb637613237859640a72a
48980a330e25e389278204845da2bcff73d54e9496fd49e82b1266325aa1658d

HTTP Headers

GET /staticfiles/assets/images/logo/logo-and-name--white.2236bc548f38.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: KDwYDXE/ZEb3vCmOsut1R8GIs189uOoODweQDFxhbwknLl2l/9Dd0gV5L98jzRByf20B6uOWki4=
x-amz-request-id: KSSM1CZZ3GAADZ9H
last-modified: Wed, 07 Dec 2022 15:28:40 GMT
etag: "2236bc548f38c1160fede16371d814c6"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 6414
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-player.a42c0ae4ed76.svg

23.32.85.11

200 OK

761 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-player.a42c0ae4ed76.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (348)
Size
761 B (761 bytes)
Hash
a42c0ae4ed762da17de858861b96bef8
1018ab188a623312eaceed0424273677076847d8
be0f6f54d74b85baee6b555db2d5712e03777398321179218d910aac37ad9626

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-player.a42c0ae4ed76.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: PqBHwJ03QWP8kE3u49Q3N0aNmRV+gSrW1u4toy6dkHRFFDmVhFokDgAUkn5QYaDv3j53QFnVxI8=
x-amz-request-id: X9R3ECSHNNBMGC2Z
last-modified: Wed, 07 Dec 2022 15:30:06 GMT
etag: "a42c0ae4ed762da17de858861b96bef8"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 761
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--light-mode.8bc14025ea3a.png

23.32.85.11

200 OK

89 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--light-mode.8bc14025ea3a.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1189 x 724, 8-bit colormap, non-interlaced\012- data
Size
89 kB (89267 bytes)
Hash
8bc14025ea3a0ab18e7a17f14d5ade40
a2e6cbac201d150b15f720843c46e6c517cdd7ab
aa70e36bc8059277ec3ca5d0686e2203a59d9757dfc081a588fed56673021220

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--light-mode.8bc14025ea3a.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: su//1D2XeooDZempJDGWvTri191hhwxi42cXLv7HRTmPs8yXnFEjA1AI9EYviLcBZQ9GXbO62Hk=
x-amz-request-id: MXP174KZMMTRRNBC
last-modified: Wed, 07 Dec 2022 15:30:06 GMT
etag: "8bc14025ea3a0ab18e7a17f14d5ade40"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 89267
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-messengers.6397357cb14f.svg

23.32.85.11

200 OK

1.7 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-messengers.6397357cb14f.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1511)
Size
1.7 kB (1669 bytes)
Hash
6397357cb14fcdfab3ffce4f712eb9ba
71154708c7b40499ecfb9ba7862b8622c64a0557
06339aa8c2995d399d0638b013663a45ef5832894fd867309d80123f907ba431

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-messengers.6397357cb14f.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: 9SqMWSGTGk/+NwoCWjOY4YAtPkN2Ox2H0VJrUEBlxknu0F1zvJqLJn7QTTrcwPvBsIwbv9f3Vow=
x-amz-request-id: X9RDRECGG9ZWN26M
last-modified: Wed, 07 Dec 2022 15:30:05 GMT
etag: "6397357cb14fcdfab3ffce4f712eb9ba"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 1669
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-pinboards.48f6e4ad3256.svg

23.32.85.11

200 OK

761 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-pinboards.48f6e4ad3256.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (348)
Size
761 B (761 bytes)
Hash
48f6e4ad32561fcb78f69310bda2c451
4cefcfeea8cd1d479d20a81265f3a7a5166fd861
894a71dc143541bb1971f445b5ffbe414a6afe148d60a1f610d85275a7217cf8

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-pinboards.48f6e4ad3256.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: 0Op2HJxtXOedgxYhnQhfNqtgBGxIV3n6GkuiC37TbbnRGujtQ8EZkQ43i7pFD2MrIPhgRT1J39c=
x-amz-request-id: 74HBQMQWRFYTR9XT
last-modified: Wed, 07 Dec 2022 15:30:06 GMT
etag: "48f6e4ad32561fcb78f69310bda2c451"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 761
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-flow.9d1657372a18.svg

23.32.85.11

200 OK

316 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-flow.9d1657372a18.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
316 B (316 bytes)
Hash
9d1657372a18e601386840f55c06e0f7
effbda84c00b1fd5654d795029d5b2f750ebe5ee
f86719fdf19a15f80113732351a1821ec88695b7b72fde2d81b384cfd04c5147

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-flow.9d1657372a18.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: UpeOeiIwSvuBs/+EYj1Bx/cQ0iS1HKVaVQ8B037G7eKltgBaaIILo9/SgqJfT1mO8dy+7E/9/Ls=
x-amz-request-id: AMMB7C2V06F6QD6A
last-modified: Fri, 09 Dec 2022 15:02:55 GMT
etag: "9d1657372a18e601386840f55c06e0f7"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 316
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/1x1px.91e42db1c66c.png

23.32.85.11

200 OK

68 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/1x1px.91e42db1c66c.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Size
68 B (68 bytes)
Hash
91e42db1c66c0b276abf6234dc50b2eb
c1986af3c26609b8b7d8933f99c51c1a89e9ea6b
63ef318d96b5d0d0ceba6e04a4e622b1158335cdc67c49e27839132c6f655058

HTTP Headers

GET /staticfiles/assets/images/1x1px.91e42db1c66c.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: RMqfNwAOreaNSPLvFh7AU9lBmIznacBqhz+s7nt9R8bnhHBMBTNjNV9Nuwy9Okue/ZhwraYYq30=
x-amz-request-id: FSRHS0V7S8FG65MK
last-modified: Wed, 07 Dec 2022 15:28:23 GMT
etag: "91e42db1c66c0b276abf6234dc50b2eb"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 68
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/components/download/googleplay/google-play--en.80d509fddb21.png

23.32.85.11

200 OK

4.1 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/components/download/googleplay/google-play--en.80d509fddb21.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 135 x 40, 8-bit/color RGBA, non-interlaced\012- data
Size
4.1 kB (4081 bytes)
Hash
80d509fddb2182e2f1ae810d1564350b
cf381f6397eaeee67de0c7688331df84de75ab94
c8b642906fd17e091c989e97daba4b86535f767b626985defa590ee16a9eeb30

HTTP Headers

GET /staticfiles/assets/images/components/download/googleplay/google-play--en.80d509fddb21.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: lZwV5qBZk+zFq7/yB2JGb8Pwb0aWhwxlxc6Oy1i/7GC4bwkxCCkLaKjhlBIBDWH5e9s5l39IvCU=
x-amz-request-id: EKN4NCNR311RWPRE
last-modified: Wed, 07 Dec 2022 15:28:26 GMT
etag: "80d509fddb2182e2f1ae810d1564350b"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 4081
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/components/download/appstore/app-store--en.b9be99738278.png

23.32.85.11

200 OK

2.1 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/components/download/appstore/app-store--en.b9be99738278.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 120 x 40, 8-bit/color RGBA, non-interlaced\012- data
Size
2.1 kB (2088 bytes)
Hash
b9be99738278f7a8b013b95357c44e41
0135cd915eb68954555be69a104f315715c4623e
c121fc6ebe5cfeb37fecb1da325083b1883f23f943dbcaef899fcc70d96be6e7

HTTP Headers

GET /staticfiles/assets/images/components/download/appstore/app-store--en.b9be99738278.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: w7DTJNxylx+yFmkKWdvdnmZ5kPJMhMyZ8Q3CJRJfUXJh3PA2yl9XVLNQj5bwTOD8L2o6A+1tcDA=
x-amz-request-id: SHSK89Y11C6ZK4ZT
last-modified: Fri, 09 Dec 2022 09:05:51 GMT
etag: "b9be99738278f7a8b013b95357c44e41"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 2088
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/feature-promo/awesome-features--gx.572511a1be17.jpg

23.32.85.11

200 OK

165 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/feature-promo/awesome-features--gx.572511a1be17.jpg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2732x1356, components 3\012- data
Size
165 kB (165152 bytes)
Hash
572511a1be17382b08d59dad1b7ab48b
a3aa662de9020b5e33d032e8652ab9762ecf207c
6b543e1ea575c545cd5e940afc7197583cd0862c4c34c75175cf5a61fc0d5997

HTTP Headers

GET /staticfiles/assets/images/sections/2021/feature-promo/awesome-features--gx.572511a1be17.jpg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: pLRdg5rBnX4qTPEmMaizScmLLBtt0I61a5O4tw+11TxGN+uXHtJdFu8BikY8z75Ps5Xl5cVmrG8=
x-amz-request-id: MXPF9GSD5NFP3372
last-modified: Wed, 07 Dec 2022 15:30:04 GMT
etag: "572511a1be17382b08d59dad1b7ab48b"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 165152
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--twitch.4f18d26dbbfe.png

23.32.85.11

200 OK

67 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--twitch.4f18d26dbbfe.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1177 x 675, 8-bit colormap, non-interlaced\012- data
Size
67 kB (67044 bytes)
Hash
4f18d26dbbfea1c39bcc4790d3ba5361
7f6b3efba188bcc2db3b8fb59d6c72f4d2d911dc
f7ea6f8265c161c9b37b13af614fc34e71788179269f89b55f5b556b1e8d479e

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--twitch.4f18d26dbbfe.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: OZ/pBk+hSBKhXACcVbaU1SH8S9MHLQo0aZemZLhqj47Qf1mNZ8Y4QPF/Vsx26UDC1V84p6fnceE=
x-amz-request-id: MXP46NWRV7VC37CB
last-modified: Wed, 07 Dec 2022 15:30:06 GMT
etag: "4f18d26dbbfea1c39bcc4790d3ba5361"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 67044
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--discord.98f286b87cb3.png

23.32.85.11

200 OK

94 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--discord.98f286b87cb3.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1177 x 675, 8-bit colormap, non-interlaced\012- data
Size
94 kB (93820 bytes)
Hash
98f286b87cb36972083556679bd4ffb5
be31174905eb26c710792e5a42c3e0f4993f990c
ac40791b94a635950ec28cf246b5400c9188f2b95a0962d1e757633a60e3e1ec

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--discord.98f286b87cb3.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: Iijk1O5w9Y4FwwDRvMaiXbUgfexvc2p9gpMV6HRsa2LkTpnHvOoNOaiAKzzxgBO3YGxHx1Pbqco=
x-amz-request-id: F6SFC5H2VBY4NV1D
last-modified: Wed, 07 Dec 2022 15:30:06 GMT
etag: "98f286b87cb36972083556679bd4ffb5"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 93820
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

blue.redredirector.com/click?pid=150&offer_id=12346&sub1=Cdbd962aa2fddb&sub2=150_2476&sub4=0

34.91.234.242

200 OK

48 kB

URL HTTP/2
blue.redredirector.com/click?pid=150&offer_id=12346&sub1=Cdbd962aa2fddb&sub2=150_2476&sub4=0
IP
34.91.234.242:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
data
Size
48 kB (47912 bytes)
Hash
25a27f80333e7e099c8d4438b08956b0
ce684a3378c1e32148aa08b36dfbfa6a14482508
6e537047acf7f96d2222ad2a4b02ceceb52a38b0eadd5df10b076e236421abed

HTTP Headers

GET /click?pid=150&offer_id=12346&sub1=Cdbd962aa2fddb&sub2=150_2476&sub4=0 HTTP/1.1
Host: blue.redredirector.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 16:16:32 GMT
content-type: text/html; charset=utf-8
x-adjust-use-original-forwarded-for: 1
set-cookie: afclick=63935f6004e8ba0001949b7f; expires=Sat, 09 Dec 2023 16:16:32 GMT; secure; SameSite=None
afoffers={"12346":1670602592}; expires=Sat, 09 Dec 2023 16:16:32 GMT; secure; SameSite=None
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--player.2d9730bcfc30.png

23.32.85.11

200 OK

70 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--player.2d9730bcfc30.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1177 x 675, 8-bit colormap, non-interlaced\012- data
Size
70 kB (70255 bytes)
Hash
2d9730bcfc30c45ee308e90b3b771f40
21cf5ed07ced3485c712f851a089a2e868d1807b
e13f1ebc277bdba152bb58e35a06682fe279a003aaf65315754ffa406aa52866

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--player.2d9730bcfc30.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: VfdKE+Vl9sTBFKt831YU1qzgFRNyhShtLM6BFdL1AxdGPw1c207S6GpKOJWAwntAbqwJLnU2MEg=
x-amz-request-id: MXPD8QND22T3Y19C
last-modified: Wed, 07 Dec 2022 15:30:06 GMT
etag: "2d9730bcfc30c45ee308e90b3b771f40"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 70255
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--messengers.d391f6cb6597.png

23.32.85.11

200 OK

62 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--messengers.d391f6cb6597.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1177 x 675, 8-bit colormap, non-interlaced\012- data
Size
62 kB (61583 bytes)
Hash
d391f6cb6597d71c6c59b50e4394594d
58898cb99301582c6ce30a8e38d7571575a6978b
00faaec247f4770836b845e7762535d4f66cb60cf79f608ce3ea11fd07be5d02

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--messengers.d391f6cb6597.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: oRHO+pPrW0IfuDAPY/x8PxCICorHT4PNqZ+wflky2q42Vbt7A/gTn3jSdRimjqFJPcAv4V5w80Y=
x-amz-request-id: MXP3BMQ0CCYBM41K
last-modified: Wed, 07 Dec 2022 15:30:06 GMT
etag: "d391f6cb6597d71c6c59b50e4394594d"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 61583
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--flow.b1416d774518.png

23.32.85.11

200 OK

92 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--flow.b1416d774518.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1177 x 697, 8-bit colormap, non-interlaced\012- data
Size
92 kB (91594 bytes)
Hash
b1416d77451842f5032b85c1c0edd933
ad576628be2723b4c5af04246f4438080dff70cb
5fd825ff2dfdf8a427c53a0548b5d730413e6357e2847038ca298d40c18a349d

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--flow.b1416d774518.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: /dPjCG9f70r24crSLhXZEzpzYCIkKcgDBK45oID224PyoN9HN927szsRoUut1hf37EsFF00r71I=
x-amz-request-id: 5229P9CHFMZ3MSB7
last-modified: Fri, 09 Dec 2022 15:02:56 GMT
etag: "b1416d77451842f5032b85c1c0edd933"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 91594
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--home.a3a32725c8c8.webp

23.32.85.11

200 OK

42 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--home.a3a32725c8c8.webp
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
RIFF (little-endian) data, Web/P image\012- data
Size
42 kB (42264 bytes)
Hash
a3a32725c8c8d27c18b89017f2e0689c
74ec7afc3cff917b2e4d48065d076d301fc2855a
1ba8613ae178fe9531ce8879e1a79af856a03ffe30b83b0d4c6c4812a61098c1

HTTP Headers

GET /staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--home.a3a32725c8c8.webp HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: BuY6m+wKW89rVLrRppzSPOeAb8QilyQQIFPoKILOWVQPF/c1EWAk5rxJOUh7zxXc35Tm7KMs7JM=
x-amz-request-id: EJMNQ94JG0GPM7S8
last-modified: Wed, 07 Dec 2022 15:30:17 GMT
etag: "a3a32725c8c8d27c18b89017f2e0689c"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: binary/octet-stream
server: AmazonS3
content-length: 42264
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--gx-mobile@2x.4aa1a438e946.webp

23.32.85.11

200 OK

38 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--gx-mobile@2x.4aa1a438e946.webp
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
RIFF (little-endian) data, Web/P image\012- data
Size
38 kB (37600 bytes)
Hash
4aa1a438e946907970930b7f2e04f644
77e2db6095a0b0491a3bd61b927b2cf8d7c6d523
5c0be912ca6292ddb33b0e5a4afcd89c8c9dd32026d77327944939e4bebfb4e0

HTTP Headers

GET /staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--gx-mobile@2x.4aa1a438e946.webp HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: Os/W1AyANgEJH1W6/tn/S9bmcx2BCchVupTQLOlvYdksiekSAGuIUYBflsJShXJ4rI7L7G6vsl8=
x-amz-request-id: 0SR6EG3DFZESR56Z
last-modified: Wed, 07 Dec 2022 15:30:17 GMT
etag: "4aa1a438e946907970930b7f2e04f644"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: binary/octet-stream
server: AmazonS3
content-length: 37600
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-fast-navigation.15eab96ff33c.svg

23.32.85.11

200 OK

280 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-fast-navigation.15eab96ff33c.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
280 B (280 bytes)
Hash
15eab96ff33c8893e11fe42ba67692dc
6362ed9717ec730eb7b457ada3f2b0163cf90256
9df873830d74272e4435fadd4e2294712c3dd24c0d19adb86d10bde656ac991a

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-fast-navigation.15eab96ff33c.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: KGYFn1DyvWIwr3hJ+u4X/L6pQ9g1pH8LPb2KgCvCzV6BbKt4TJi7hJWEG5uI+NRbx+PMkxbX7hw=
x-amz-request-id: MXPA61JZ3VA6475F
last-modified: Wed, 07 Dec 2022 15:30:05 GMT
etag: "15eab96ff33c8893e11fe42ba67692dc"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 280
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--gx-corner.e3f653e6eafc.png

23.32.85.11

200 OK

146 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--gx-corner.e3f653e6eafc.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1189 x 724, 8-bit colormap, non-interlaced\012- data
Size
146 kB (145852 bytes)
Hash
e3f653e6eafc96fee812c59429064dbb
4573c82a833ddb3c7ab5da3d1392ccc36d4fed1c
57a65439c5b71c3f0c3036eaa550ddf46451bec1f5165a1a7b29b275975c45f6

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--gx-corner.e3f653e6eafc.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: zixrNYpBh9CBv64Tx+NiQRq0l3LGxQZ8ZpnrVPDwxs6Ai6+9XzRqkTfkyfakJs8HqLNJL0rexy4=
x-amz-request-id: NCXV361RM6WVXXYK
last-modified: Wed, 07 Dec 2022 15:30:06 GMT
etag: "e3f653e6eafc96fee812c59429064dbb"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 145852
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--pinboards.e847bc384832.png

23.32.85.11

200 OK

115 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--pinboards.e847bc384832.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1177 x 675, 8-bit colormap, non-interlaced\012- data
Size
115 kB (115233 bytes)
Hash
e847bc384832792e93dccddf207f36ff
427c93356999dcf880951de0b5a3302748e8829f
7e08599def8a28a43b66943f7312c7d82f560eeeb1800ddf1865ebb507e5e2b4

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--pinboards.e847bc384832.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: GRROJRAon5GQgOrt/8E2pN0bFo5P8vfmdeCbn6p2UYbP50hsUZQOs45Yp96KHM3zVjPBYqjnLNE=
x-amz-request-id: NCXWSG0BFPZ5ZMMC
last-modified: Wed, 07 Dec 2022 15:30:06 GMT
etag: "e847bc384832792e93dccddf207f36ff"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 115233
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__mobile--hero-section@2x.105801afec18.webp

23.32.85.11

200 OK

110 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__mobile--hero-section@2x.105801afec18.webp
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
RIFF (little-endian) data, Web/P image\012- data
Size
110 kB (109740 bytes)
Hash
105801afec185e88bf124ad6d2618d02
2ff3cf42a92114f07d5db760caadb27e55bd42f8
12aefc6c5ebb73b66b498923fa49c4e6682c74008a0ac39b15cd8ba77c71f562

HTTP Headers

GET /staticfiles/assets/images/sections/2021/hero-top/gx/gx__mobile--hero-section@2x.105801afec18.webp HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: CWCWro6zuRxg8vsmQf0+pHNokJ/cCutxiEjh7mfrio7IYs9XyNh+slhH7CXN3hU6jVR+Oft8EYw=
x-amz-request-id: D3JBYZ5RX47DY5FV
last-modified: Fri, 09 Dec 2022 09:07:34 GMT
etag: "105801afec185e88bf124ad6d2618d02"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: binary/octet-stream
server: AmazonS3
content-length: 109740
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--fast-navigation.c8d3273a941b.png

23.32.85.11

200 OK

46 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--fast-navigation.c8d3273a941b.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 732 x 666, 8-bit colormap, non-interlaced\012- data
Size
46 kB (46294 bytes)
Hash
c8d3273a941bb6d86cdcb4715d51d316
054a7d9eb88f0320a4ff768e271f7a42869883e9
d27e3d8d8edd6429733970d55a75621bca7fdcde185e3a37729952db85fce496

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--fast-navigation.c8d3273a941b.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: taAp1m7klto24gs9du9Mg6y9rWPkgkIXAncN8vo7Vxt3+cDod27vWu7tEt3uS6TvGhnNeJUqfZ8=
x-amz-request-id: NFYKFPS9QYPB5VX6
last-modified: Fri, 09 Dec 2022 09:07:21 GMT
etag: "c8d3273a941bb6d86cdcb4715d51d316"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 46294
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/logo/logo-and-name-negative.26081e42aa65.png

23.32.85.11

200 OK

12 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/logo/logo-and-name-negative.26081e42aa65.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 306 x 112, 8-bit/color RGBA, non-interlaced\012- data
Size
12 kB (12047 bytes)
Hash
26081e42aa65653accb46cf13eb880fe
cb89731851ed916c2e163620e99cd38e7943cc73
3cae222117086f887f9dbc3b04681ce01873749a9a55806cb8685af6b9ef14b5

HTTP Headers

GET /staticfiles/assets/images/logo/logo-and-name-negative.26081e42aa65.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: WIyYzXGecs8Jv50gFgAJTRdLGDtPvkv0B1E73gZcEqIlq0DW1J/N4+L9Lp2VDJRA9ovXFglfNQ0=
x-amz-request-id: AMM0MXD2T49XGBXK
last-modified: Fri, 09 Dec 2022 15:01:39 GMT
etag: "26081e42aa65653accb46cf13eb880fe"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 12047
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

www.googleoptimize.com/optimize.js?id=GTM-5HKZ2H4

142.250.74.46

200 OK

43 kB

URL HTTP/2
www.googleoptimize.com/optimize.js?id=GTM-5HKZ2H4
IP
142.250.74.46:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1921)
Size
43 kB (42967 bytes)
Hash
519bd11c7d4e428cdc16636625a47cbb
108a5fcd60f2efcce2e9bedf82bb617575815b89
aa8e39c25a36f5889621b3f7d1a96871edca8920d6538568ba6d09a3aad671c0

HTTP Headers

GET /optimize.js?id=GTM-5HKZ2H4 HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 09 Dec 2022 16:16:33 GMT
expires: Fri, 09 Dec 2022 16:16:33 GMT
cache-control: private, max-age=900
last-modified: Fri, 09 Dec 2022 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42967
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-light-mode.308d4dc03c30.svg

23.32.85.11

200 OK

471 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-light-mode.308d4dc03c30.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
data
Size
471 B (471 bytes)
Hash
795e67bdfadc3c890a663080413b56b7
fdefde3befb6aceac3c337c34c8d738f5091908c
8375b55cfc13989b0cf96293b7bead2ce5811a993b3445da1776ca7015c36985

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-light-mode.308d4dc03c30.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: nHqqtQoGkLYIvUVoN6v+sL7M5AsMNezmpPDZhtgQjZErYFygnpudHyOFBk4dk0X1oCYwmcPS/Rg=
x-amz-request-id: Z3J36W465CK8952R
last-modified: Wed, 07 Dec 2022 15:30:05 GMT
etag: "308d4dc03c30da17a579ca9db9fac5ac"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 477
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--gx-cleaner@2x.43ff34bf1a7b.webp

23.32.85.11

200 OK

82 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--gx-cleaner@2x.43ff34bf1a7b.webp
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
RIFF (little-endian) data, Web/P image\012- data
Size
82 kB (82120 bytes)
Hash
43ff34bf1a7b9da9262052869fdfe267
4aef7aae9d6e65cb7388c988e9512f23fc651b47
55e8eb06cf3783ccd1956b633b8758dff5f61edc5c3adb7ae784506205b29bdc

HTTP Headers

GET /staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--gx-cleaner@2x.43ff34bf1a7b.webp HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: FLwrbZpqqK/LdIYutEbUXAE0we4+A06JSDTfGIFVL9TOiEVumrIm5DyoT6jtYUZqL3VyMohLK48=
x-amz-request-id: RCW5KY5KDRSSENV9
last-modified: Wed, 07 Dec 2022 15:30:17 GMT
etag: "43ff34bf1a7b9da9262052869fdfe267"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: binary/octet-stream
server: AmazonS3
content-length: 82120
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/theme-switcher/gx__color-theme--classic.27f61f65b2ce.png

23.32.85.11

200 OK

412 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/theme-switcher/gx__color-theme--classic.27f61f65b2ce.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 2378 x 1448, 8-bit colormap, non-interlaced\012- data
Size
412 kB (412407 bytes)
Hash
27f61f65b2ce85586550fe592d0f21e0
494849ea227b3c3e9b24729617c9d481ce91f603
117771cf06f8c025e2f67a556b3428758b3e7a2dc468d715efa4961cad92e052

HTTP Headers

GET /staticfiles/assets/images/sections/2021/theme-switcher/gx__color-theme--classic.27f61f65b2ce.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: ISlylPGs/cq4eUxPB1Rprlg4GVRwcwOXizUfv8lXFx0aSQPst9VoA4guvynvPSFMMDTaJG1lifQ=
x-amz-request-id: MY5FBPZXF213B7K6
last-modified: Wed, 07 Dec 2022 15:30:53 GMT
etag: "27f61f65b2ce85586550fe592d0f21e0"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 412407
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/pages/gx2021/gaming-inspired-features-bg.71e6e11009a1.jpg

23.32.85.11

200 OK

331 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/pages/gx2021/gaming-inspired-features-bg.71e6e11009a1.jpg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1366x678, components 3\012- data
Size
331 kB (330707 bytes)
Hash
71e6e11009a13616c07acd52708a42c0
bca22f04ba54d8002c18bebaf97125ef04d9de1c
2b830c1c722fc8fda761975eb666574f5eb29958c502b614b32a2501ab564071

HTTP Headers

GET /staticfiles/assets/images/pages/gx2021/gaming-inspired-features-bg.71e6e11009a1.jpg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: dhKfcWq9XlwbJ4eAcr4Lfc8d4sco69eLZfD4B/Tk5F6Kp/6JA/JaPaQeonbkL1EhDhci9tRva88=
x-amz-request-id: NFYT3CWNQ4E55BWW
last-modified: Fri, 09 Dec 2022 09:07:04 GMT
etag: "71e6e11009a13616c07acd52708a42c0"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 330707
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
bf8858fa52de668b0013cf9ce66d290c
9c319173ee6a48c6e717e9e8764008564aabe7ba
93df528ead5887cbbcf51f83c9e6ffa451861ae3145296ab3dfc269067080933

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:16:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d61883097c47c0fcb4a15cafc5bdbdfc
54411aba43093cafd1cb2acea7c2b4c69184611f
0aef2b974544f530bd591dd0201909a9c2a6b3f4451c69288bafc126d9a37e2c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:16:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtm.js?id=GTM-PRBZ42F

142.250.74.168

200 OK

108 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-PRBZ42F
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (50672)
Size
108 kB (107952 bytes)
Hash
7fc6a282ba4951bc3154780144154e57
6649cdda95566dff050dc62051f09b419bcc4686
42a549729fbcd250801c0f5550f7e61e13279cb599811781daa5a31bc120a1a0

HTTP Headers

GET /gtm.js?id=GTM-PRBZ42F HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 09 Dec 2022 16:16:33 GMT
expires: Fri, 09 Dec 2022 16:16:33 GMT
cache-control: private, max-age=900
last-modified: Fri, 09 Dec 2022 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 107952
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-N7XDW7Z

142.250.74.168

200 OK

48 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-N7XDW7Z
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (5298)
Size
48 kB (47966 bytes)
Hash
29c8467fc8bcaaba06676127b5e7117b
433973b0349038acd5ff92fffd03b251d2f1fac5
3ce60e8c4d08b7afab6103cc7e51c47160603a2703e40dc241eea380da5850d8

HTTP Headers

GET /gtm.js?id=GTM-N7XDW7Z HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 09 Dec 2022 16:16:33 GMT
expires: Fri, 09 Dec 2022 16:16:33 GMT
cache-control: private, max-age=900
last-modified: Fri, 09 Dec 2022 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 47966
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/098459c4b473cf0b98bd.ff298eae6d4b.svg?c2271d47b96e

23.32.85.11

200 OK

903 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/098459c4b473cf0b98bd.ff298eae6d4b.svg?c2271d47b96e
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (631)
Size
903 B (903 bytes)
Hash
ff298eae6d4b58dd53105f5934057dfd
3d8e26c3a460aca357ff6fe0576d6d986f257fd6
5c38b1f4d4183c82ef0f20b45ec1179853cd0a5edc8f28d7fa22c38e30e1aa34

HTTP Headers

GET /staticfiles/098459c4b473cf0b98bd.ff298eae6d4b.svg?c2271d47b96e HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.f6936dd37310.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: +re6bMlFQ2cyI2K9HMDHmqI5SwRlSeeJg030znKyE45jlsQbvKsNJy4RmC+R+aXh2NUmMc7Jnho=
x-amz-request-id: Z6Y8ZZEHAEDG5KGG
last-modified: Fri, 09 Dec 2022 15:00:39 GMT
etag: "ff298eae6d4b58dd53105f5934057dfd"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 903
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-corner.d792a0b181e4.svg

23.32.85.11

200 OK

313 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-corner.d792a0b181e4.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
313 B (313 bytes)
Hash
6c7243090568377d3fd0a1617ff6f9e8
ed4c277780b619caadbe445920bd117c19f11d61
ca4349d4affc66594ee57eaafdc0cc0f2c86893cda82bcb29d80031a08560001

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-corner.d792a0b181e4.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: SOZhSRCSmnaQ1F6zQ7tDcugz4hS41+E/2+13rT2UHQ18WYsy+pPBgF3HGG24DiTYYhQ449WTnKU=
x-amz-request-id: 0SR4KDPF32VTHRDS
last-modified: Wed, 07 Dec 2022 15:30:05 GMT
etag: "d792a0b181e44d9775e447f0d7e7d275"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 812
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/3580eabc7ffc8362ce3e.44f63b5fe738.jpg?10bab98e7fe6

23.32.85.11

200 OK

333 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/3580eabc7ffc8362ce3e.44f63b5fe738.jpg?10bab98e7fe6
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=5894, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2736], baseline, precision 8, 2736x5894, components 3\012- data
Size
333 kB (332762 bytes)
Hash
44f63b5fe738bac08e1875c4602f5935
c36e3472261e19c4230dbedf1d39d3d1b20fbf82
13d50a7dd51b4d53ae7759d813c86633727115e086af563dbd9c3b978eb54d6e

HTTP Headers

GET /staticfiles/3580eabc7ffc8362ce3e.44f63b5fe738.jpg?10bab98e7fe6 HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.f6936dd37310.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: gmYmEIgiCqy5ZemNa4xFJYUUx92LTccV+8AayZqto4yQtxQujhGQ0bv5ma+zrMCrPUss/n/yI5I=
x-amz-request-id: Z6YDK5109898MG96
last-modified: Fri, 09 Dec 2022 15:00:42 GMT
etag: "44f63b5fe738bac08e1875c4602f5935"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 332762
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
795e67bdfadc3c890a663080413b56b7
fdefde3befb6aceac3c337c34c8d738f5091908c
8375b55cfc13989b0cf96293b7bead2ce5811a993b3445da1776ca7015c36985

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:16:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn-production-opera-website.operacdn.com/staticfiles/0e22678c7dcde0767402.00fd023076a3.svg?10bab98e7fe6

23.32.85.11

200 OK

314 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/0e22678c7dcde0767402.00fd023076a3.svg?10bab98e7fe6
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
314 B (314 bytes)
Hash
00fd023076a318efa2524ed7e8749adf
78505b0f17acdce6e50f56d12194644dcdd2f1e7
25167a3893b9f0d9945ae401c2f1a39def06a7e8fa7b69adb9b69ff588f6a6b3

HTTP Headers

GET /staticfiles/0e22678c7dcde0767402.00fd023076a3.svg?10bab98e7fe6 HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.f6936dd37310.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: /NKR+VdMIu9NGIIor/gWmMbklTFShVVivnFOU/32pE6i60/daQupaoCfp/jTpQDLf/8EliCVAHo=
x-amz-request-id: HSZEY1JZBQSKVQXS
last-modified: Fri, 09 Dec 2022 15:00:39 GMT
etag: "00fd023076a318efa2524ed7e8749adf"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 314
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/e3dd22e17cfd6b5c8151.17a59627c976.svg?c2271d47b96e

23.32.85.11

200 OK

1.6 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/e3dd22e17cfd6b5c8151.17a59627c976.svg?c2271d47b96e
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1443)
Size
1.6 kB (1595 bytes)
Hash
17a59627c976f0dd4c1a65023f677bcc
1a92c5ce81718a9a62ca46e71f2285523315e886
8b3de6575e969b75d53638e8d40717fa73ad85ef2ebc6ad04080116060a52a7b

HTTP Headers

GET /staticfiles/e3dd22e17cfd6b5c8151.17a59627c976.svg?c2271d47b96e HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.f6936dd37310.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: k0W702kDlZUjNLdU/6aw1r1Zu24+JJaW7HvohV5PBPrzcDhLRI6GE+euw0VLTnI0oAihxMZr5N0=
x-amz-request-id: HSZBHAZQTNREXMV0
last-modified: Fri, 09 Dec 2022 15:03:57 GMT
etag: "17a59627c976f0dd4c1a65023f677bcc"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 1595
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/18c29e0508b0f594389b.7624d1fea1cc.svg?c2271d47b96e

23.32.85.11

200 OK

720 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/18c29e0508b0f594389b.7624d1fea1cc.svg?c2271d47b96e
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (538)
Size
720 B (720 bytes)
Hash
7624d1fea1cce77c2ee117b788b03e1a
060ed0a46d61ee5311bd51e33d2626b619f43eb2
e4cffcca8616bcbebc274b51458e235f7b15cfceb6bc6ee0997e3d506e14a99a

HTTP Headers

GET /staticfiles/18c29e0508b0f594389b.7624d1fea1cc.svg?c2271d47b96e HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.f6936dd37310.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: hqHoj7fuW7rNShcDh4B7jSnQYxUuTFgeFnXey5d5pL9OudEIPaMFnqxpv5VmSOCFD9081P3VzKo=
x-amz-request-id: HSZD99HMEVX412JH
last-modified: Fri, 09 Dec 2022 15:00:40 GMT
etag: "7624d1fea1cce77c2ee117b788b03e1a"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 720
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/d9a4f53cf4619114d575.dc9f0582852c.svg?c2271d47b96e

23.32.85.11

200 OK

199 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/d9a4f53cf4619114d575.dc9f0582852c.svg?c2271d47b96e
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
199 B (199 bytes)
Hash
dc9f0582852c528b15eec2d982b7950c
1a0223d7da92444083348e54ff06e8d8a16ccd7f
cc982158f436a87b02539669d4e03e6d7eb408d633d98ced5a0de2d025421d94

HTTP Headers

GET /staticfiles/d9a4f53cf4619114d575.dc9f0582852c.svg?c2271d47b96e HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.f6936dd37310.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: sA5PNM+7y9rVbTf53PTWOhM0lPwNHKFfRLasuGU/pgO/L7cCxfxHpTwWpgB/jSeMcEmmxUIwcmA=
x-amz-request-id: HSZ2X687EX9BW4Y6
last-modified: Fri, 09 Dec 2022 15:03:57 GMT
etag: "dc9f0582852c528b15eec2d982b7950c"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 199
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/6ac3b1b2384a16da6bd0.797bada37d41.svg?10bab98e7fe6

23.32.85.11

200 OK

289 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/6ac3b1b2384a16da6bd0.797bada37d41.svg?10bab98e7fe6
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
289 B (289 bytes)
Hash
797bada37d414f7af636e9a9b3c565fa
7327310da6b0ba6ae8557196f7d020abba58a0f9
8f1fb4db42c83907bd12f03f51431a402a70e8fa2a18efe3285ad61c39e2412a

HTTP Headers

GET /staticfiles/6ac3b1b2384a16da6bd0.797bada37d41.svg?10bab98e7fe6 HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.f6936dd37310.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: dZ2PnHShp5GaiS2GIqgYGGC2cve4ZM0rNZUTwX58zatO6J6NxyidaQKSOEqdiUQtGZ7PfzFP6VY=
x-amz-request-id: 53QDD25YAFYP1X4N
last-modified: Fri, 09 Dec 2022 15:00:46 GMT
etag: "797bada37d414f7af636e9a9b3c565fa"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 289
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/c2a2cff7f6d5729f28f4.75084611d5e1.svg?10bab98e7fe6

23.32.85.11

200 OK

288 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/c2a2cff7f6d5729f28f4.75084611d5e1.svg?10bab98e7fe6
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
288 B (288 bytes)
Hash
75084611d5e1fb181a82b45ef0611a23
a11d0d14b3358250a1e1d47356fd921c2220f1c1
1b1d5a0dcc955ba923b5c5606b37bef48356ef93f3e0c1ca875f6b32aba99ece

HTTP Headers

GET /staticfiles/c2a2cff7f6d5729f28f4.75084611d5e1.svg?10bab98e7fe6 HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.f6936dd37310.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: qdLl5of8PRSVAQR6Fp2iulWIVLOHiJ2h2yrN7FRZyjXySfQtk6HfTlXp3u1Qhtb++SlkgS1OwGM=
x-amz-request-id: 53Q0KJZDKF8KX65F
last-modified: Fri, 09 Dec 2022 15:03:56 GMT
etag: "75084611d5e1fb181a82b45ef0611a23"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 288
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/ca10b4ba81ca6a0ecbfc.1ca90acc4730.svg?c2271d47b96e

23.32.85.11

200 OK

317 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/ca10b4ba81ca6a0ecbfc.1ca90acc4730.svg?c2271d47b96e
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
317 B (317 bytes)
Hash
1ca90acc4730203b0ef170a977a1c637
5163f7e10d7bd1b408022aeb65bf8d6436e8ebb5
51ce7c5980ff8bd3f3864c3eaaacb00c2a54d12e4dd16b2dd360554f0f3c1256

HTTP Headers

GET /staticfiles/ca10b4ba81ca6a0ecbfc.1ca90acc4730.svg?c2271d47b96e HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.f6936dd37310.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: QZnIoAqBkQcrgDJttx28ZkPC2P/ADPVR/zHMChGjTrgQOJKyepPybHbMYKnZS1Cs9bRlnVjIRVw=
x-amz-request-id: HSZE9Y20EWHBERV2
last-modified: Fri, 09 Dec 2022 15:03:56 GMT
etag: "1ca90acc4730203b0ef170a977a1c637"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 317
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/48f02833f0ae8d75d392.dae9ad1b8182.svg?c2271d47b96e

23.32.85.11

200 OK

812 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/48f02833f0ae8d75d392.dae9ad1b8182.svg?c2271d47b96e
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (649)
Size
812 B (812 bytes)
Hash
dae9ad1b81823c9cd4280d89b21c7d61
db3ddc56a61d39b4097dc6cbf73ea9b771a08e46
50923adbf480507f490a925bb589fe9389d3865ca40d15bc4a5ffb96e27df210

HTTP Headers

GET /staticfiles/48f02833f0ae8d75d392.dae9ad1b8182.svg?c2271d47b96e HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.f6936dd37310.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: naBSrocGDi2pIFTWErf4bWFT49KB4Q6g4Y1EF8a0R9DzmDT0z1gMUstMqJkR8H32CqqQW6FYPUk=
x-amz-request-id: HSZFR64G9EVBDFVE
last-modified: Fri, 09 Dec 2022 15:00:43 GMT
etag: "dae9ad1b81823c9cd4280d89b21c7d61"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 812
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/cca288e4bb33a3c6dec1.dab90a462c49.svg?c2271d47b96e

23.32.85.11

200 OK

176 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/cca288e4bb33a3c6dec1.dab90a462c49.svg?c2271d47b96e
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
176 B (176 bytes)
Hash
dab90a462c4945afb54399ed84a34ba2
ff9049f42ac86fda9608f8c94c61d754994d0976
ea2eb115d15d9c1b853ed968d6591f07f0c5d4b2dd1f2621a3999015d746b215

HTTP Headers

GET /staticfiles/cca288e4bb33a3c6dec1.dab90a462c49.svg?c2271d47b96e HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.f6936dd37310.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: tloXB9UQ39XPPw986Eh0rt7x51hZphf//NqxpY9hKgbml8GThJ4+l78DmrqBKZwy0ZhNGBylmFg=
x-amz-request-id: HSZ2DEHTQHK3HG70
last-modified: Fri, 09 Dec 2022 15:03:56 GMT
etag: "dab90a462c4945afb54399ed84a34ba2"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 176
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/4c15b45e6b34651fef8a.3dc055b4d554.svg?c2271d47b96e

23.32.85.11

200 OK

176 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/4c15b45e6b34651fef8a.3dc055b4d554.svg?c2271d47b96e
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
176 B (176 bytes)
Hash
3dc055b4d554da5ab1c7a7e324a5897e
00e912ee8e024c83c09f58ce845b1905a521cca2
dcdc184e3e1f5efa0479c60dc714a8d04d54d72a39ac34815a36dc4c60c9739d

HTTP Headers

GET /staticfiles/4c15b45e6b34651fef8a.3dc055b4d554.svg?c2271d47b96e HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.f6936dd37310.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: vLOm/aY+l6ZUm9ZS1RB0LYv+njp+nT2bcvQ/Z2aYv8HW2U/nq/1vSm4uyitDrmccryq3UOJrBkk=
x-amz-request-id: HSZ4H9FEHZCWJRSM
last-modified: Fri, 09 Dec 2022 15:00:43 GMT
etag: "3dc055b4d554da5ab1c7a7e324a5897e"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 176
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8f6ab0debac98d11413e20fa98ba8286
e63543ba0f3a685edf4d8fee3f587efd5417015f
fe6bc081b1963c61a3af1ab7b7b1213ae5bc7b962c5474d8f6fe123547d5d309

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:16:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8f6ab0debac98d11413e20fa98ba8286
e63543ba0f3a685edf4d8fee3f587efd5417015f
fe6bc081b1963c61a3af1ab7b7b1213ae5bc7b962c5474d8f6fe123547d5d309

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:16:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/chakrapetch/v9/cIf6MapbsEk7TDLdtEz1BwkWn6pg.woff2

216.58.207.227

200 OK

8.9 kB

URL HTTP/2
fonts.gstatic.com/s/chakrapetch/v9/cIf6MapbsEk7TDLdtEz1BwkWn6pg.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 8912, version 1.0\012- data
Size
8.9 kB (8912 bytes)
Hash
8e4d50afa8b6e0eaa0aa76d40d4e92fa
73e1c8cde3ddef7eaa9feab943b749d7f3eba058
5452b4581af8fa4aa927665a835708f6298f75bfabeb99813ec585ec6bcfc494

HTTP Headers

GET /s/chakrapetch/v9/cIf6MapbsEk7TDLdtEz1BwkWn6pg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.opera.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8912
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Dec 2022 13:33:19 GMT
expires: Sat, 09 Dec 2023 13:33:19 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 21 Apr 2022 18:53:31 GMT
content-type: font/woff2
age: 9794
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/chakrapetch/v9/cIflMapbsEk7TDLdtEz1BwkeJI91R5_F.woff2

216.58.207.227

200 OK

9.0 kB

URL HTTP/2
fonts.gstatic.com/s/chakrapetch/v9/cIflMapbsEk7TDLdtEz1BwkeJI91R5_F.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 8992, version 1.0\012- data
Size
9.0 kB (8992 bytes)
Hash
5ff3f8c069d7462a62ef1dada9c1406e
b3fbc64d485f06dfda7f1de61b0abd523f48a315
c6ccbd16dfaa5c559bd468ff0cca14f38e37100e35419a49cf4d3c6c23d2d163

HTTP Headers

GET /s/chakrapetch/v9/cIflMapbsEk7TDLdtEz1BwkeJI91R5_F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.opera.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8992
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Dec 2022 13:33:19 GMT
expires: Sat, 09 Dec 2023 13:33:19 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 21 Apr 2022 18:18:58 GMT
content-type: font/woff2
age: 9794
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.opera.com/api/geolocation/

3.74.184.43

200 OK

102 B

URL HTTP/2
www.opera.com/api/geolocation/
IP
3.74.184.43:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with no line terminators
Size
102 B (102 bytes)
Hash
8fddccad2d167f151cd234c5a572ea01
bb0b117d1117b73618c11e7bd511669ea6d78f45
da74941bee8050c64caa54baecf586a091fc35299055bb14d1869d5f18501aff

HTTP Headers

GET /api/geolocation/ HTTP/1.1
Host: www.opera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/gx?utm_content=1461_CY4SBNzRUT1GJLOYP6RK&utm_medium=pa&utm_campaign=PWN_NO&utm_id=d1f2baa003384319b78714fcb887f746&utm_source=PWNgames&edition=std-1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 09 Dec 2022 16:16:33 GMT
content-type: application/json
content-length: 102
content-language: en
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=3600
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=63072000; includeSubdomains; preload
content-security-policy: frame-ancestors 'self' https://*.opera.com; upgrade-insecure-requests;
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8f6ab0debac98d11413e20fa98ba8286
e63543ba0f3a685edf4d8fee3f587efd5417015f
fe6bc081b1963c61a3af1ab7b7b1213ae5bc7b962c5474d8f6fe123547d5d309

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:16:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/pages/client/welcomeGx/favicon/apple-touch-icon.cd7f66e4edc9.png

23.32.85.11

200 OK

4.7 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/pages/client/welcomeGx/favicon/apple-touch-icon.cd7f66e4edc9.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 180 x 180, 8-bit colormap, non-interlaced\012- data
Size
4.7 kB (4721 bytes)
Hash
cd7f66e4edc9eee902af0f50c1ca0236
031020df2108deb05f30a1dee9896dda7d39032b
026e5234ac8b8a77d9c322532e7beb3e91a8b5b2bb2ac1a17b9d2f0b45bae42a

HTTP Headers

GET /staticfiles/assets/images/pages/client/welcomeGx/favicon/apple-touch-icon.cd7f66e4edc9.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: +QPkdrYMHkOEsNjHbTfy3vhg3RDM+o2dBs3GgL0lKEgzhikOuHEBgDrlC3lKh3jXXFy8vLcITNU=
x-amz-request-id: W01P8KMRZ0EV25WX
last-modified: Wed, 07 Dec 2022 15:29:42 GMT
etag: "cd7f66e4edc9eee902af0f50c1ca0236"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 4721
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/pages/client/welcomeGx/favicon/favicon-16x16.134fa45a8400.png

23.32.85.11

200 OK

1.0 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/pages/client/welcomeGx/favicon/favicon-16x16.134fa45a8400.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Size
1.0 kB (1015 bytes)
Hash
134fa45a8400d2f7246272b06d9b10de
3a9322216d1515d83b775510df41b2fd10e9d896
8abf10dee661f501e90bec03ec4501be24ca7a5a946b2e5658c8881fca6c5d46

HTTP Headers

GET /staticfiles/assets/images/pages/client/welcomeGx/favicon/favicon-16x16.134fa45a8400.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: /zhyfzBw5aGYI3NlP3tTdFjOS7s8frZlGUTkrU7ZSz3QvbGJWTSyHhfvf85LyriSL+WLIjzD4PY=
x-amz-request-id: 3Y5AE5SEP2AQBC3A
last-modified: Wed, 07 Dec 2022 15:29:42 GMT
etag: "134fa45a8400d2f7246272b06d9b10de"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 1015
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d24e15e93677ed06f26535ac266c6047
17aa02c1d08e0381eaa87de26682b1125c04023b
1be6e71808c7721b25c06cf135befbca1086d49238323ea3fa1cad73c8770c0d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:16:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.redditstatic.com/ads/pixel.js

151.101.1.140

200 OK

7.7 kB

URL HTTP/2
www.redditstatic.com/ads/pixel.js
IP
151.101.1.140:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (25224)
Size
7.7 kB (7722 bytes)
Hash
3528fd00b652f61a266eb584d96f4fcc
d89e16aa1323c6c4f1ed3941122020684a599361
77efa9f2ddfdca7a45df37bbcd22fdaeb7b97161a2acd87e21eb78bdeaad1332

HTTP Headers

GET /ads/pixel.js HTTP/1.1
Host: www.redditstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 16:45:46 GMT
etag: "3528fd00b652f61a266eb584d96f4fcc"
cache-control: public, max-age=60
content-encoding: gzip
content-type: application/javascript
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 09 Dec 2022 16:16:33 GMT
vary: Accept-Encoding,Origin
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true,  "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
content-length: 7722
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
615fddb7dcff0826f0a7dd4140f370b6
06d26c99fcf20516839a656c4c5b023088eb4eaa
f561bef7be5b58a820d37e40135c8bc83511ae9298e6317bf1761f7cc24941bf

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 457
Cache-Control: max-age=87370
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:16:33 GMT
Etag: "63920fe2-1d7"
Expires: Sat, 10 Dec 2022 16:32:43 GMT
Last-Modified: Thu, 08 Dec 2022 16:25:06 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471

cdn.taboola.com/libtrc/unip/1410119/tfa.js

151.101.65.44

200 OK

18 kB

URL HTTP/2
cdn.taboola.com/libtrc/unip/1410119/tfa.js
IP
151.101.65.44:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (58978)
Size
18 kB (18122 bytes)
Hash
ddda71fb8a2434542fa54ba245e8e8ee
d494235fc03564df5e4d37cca98994d72c4597de
e5dd0f8a47ea38cdb02cff11166caf7688bcd61d2a5ea7c471ec89782447338d

HTTP Headers

GET /libtrc/unip/1410119/tfa.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: SKSlleC6WikSSlUfA8Ce1Rdn/Zne8tKcUcGEID7xWdqo71GN00UzfNLMhbcj6u3ZyNuTBpSwVBg=
x-amz-request-id: CJ6TTQ695AB65ERC
x-amz-replication-status: PENDING
last-modified: Tue, 06 Dec 2022 12:52:00 GMT
etag: "83a3d6fa0b67e981939547ebc6181c5e"
x-amz-version-id: vi.7S8JnkETg8sjunw3hdoNR166zFawX
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Fri, 09 Dec 2022 16:16:33 GMT
via: 1.1 varnish
age: 9
x-served-by: cache-bma1666-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670602594.926324,VS0,VE1
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 47
content-length: 18122
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

216.58.207.206

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
216.58.207.206:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 09 Dec 2022 14:41:08 GMT
expires: Fri, 09 Dec 2022 16:41:08 GMT
cache-control: public, max-age=7200
age: 5725
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

bat.bing.com/bat.js

13.107.21.200

200 OK

12 kB

URL HTTP/2
bat.bing.com/bat.js
IP
13.107.21.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type
Unicode text, UTF-8 text, with very long lines (39124), with no line terminators
Size
12 kB (11460 bytes)
Hash
d925a898de26295fdebfc90203ef46fa
77dd3f5893b76530e08058d50e8f9aef017e80c7
8f4a413fec7e48f5ac290f4596fef33b6396e7fb31080ec0203a5ec817d140c8

HTTP Headers

GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11460
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 05 Dec 2022 17:15:50 GMT
accept-ranges: bytes
etag: "027e538cd8d91:0"
vary: Accept-Encoding
set-cookie: MUID=04B7C6D71F816BD720CAD4A21ED66A6C; domain=.bing.com; expires=Wed, 03-Jan-2024 16:16:33 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: FE5FB4284B3A41CCA695AAE9A717E03B Ref B: OSL30EDGE0311 Ref C: 2022-12-09T16:16:33Z
date: Fri, 09 Dec 2022 16:16:33 GMT
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/CACHE/js/output.12fc4e34ca68.js

23.32.85.11

200 OK

116 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/CACHE/js/output.12fc4e34ca68.js
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
data
Size
116 kB (115488 bytes)
Hash
7c52bf31ece78db827c84e5411aad98e
5ba4e9aa314b114298292326aa19ed7ce70cf9a4
6bc1a7756ca77e878ad29fec5ac59908ca8fa98e727919865385874b56d6b70b

HTTP Headers

GET /staticfiles/CACHE/js/output.12fc4e34ca68.js HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: ahelBAu96GtTz7cL+aANM5axrlMZKp+xv1v4fJNTctnIiyPMxDybzBvrWNb0Od+Hkqsn+iPaByA=
x-amz-request-id: V4XBY6MG9D50H6WE
last-modified: Fri, 09 Dec 2022 09:05:46 GMT
etag: "6871ee67a40ba101c7e05549b99273e1"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

connect.facebook.net/en_US/fbevents.js

157.240.221.16

200 OK

27 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
157.240.221.16:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64348)
Size
27 kB (27340 bytes)
Hash
44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: Leag5r+VUUslY82llWHbh948DkOBRve0yyc3GfFjhlZ4W2FtfaVS5WwpWDnDAxsdf+3i8YcODactsHIydChv+g==
content-length: 27340
x-fb-trip-id: 1679558926
date: Fri, 09 Dec 2022 16:16:33 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
615fddb7dcff0826f0a7dd4140f370b6
06d26c99fcf20516839a656c4c5b023088eb4eaa
f561bef7be5b58a820d37e40135c8bc83511ae9298e6317bf1761f7cc24941bf

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 458
Cache-Control: max-age=87370
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:16:34 GMT
Etag: "63920fe2-1d7"
Expires: Sat, 10 Dec 2022 16:32:44 GMT
Last-Modified: Thu, 08 Dec 2022 16:25:06 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d24e15e93677ed06f26535ac266c6047
17aa02c1d08e0381eaa87de26682b1125c04023b
1be6e71808c7721b25c06cf135befbca1086d49238323ea3fa1cad73c8770c0d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:16:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
32d90ff0cc366730c3633c1201b4c058
f4175292b607197a15085e14bf69df301dff6706
b4b2f80fbe9b02f3d54dc35a3738c31a4d7cb5a5e528fcbce50263d8c458231a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:16:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

bat.bing.com/p/action/5063952.js

13.107.21.200

204 No Content

0 B

URL HTTP/2
bat.bing.com/p/action/5063952.js
IP
13.107.21.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /p/action/5063952.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=1ECB5406F0366DC939524673F1616CF6; domain=.bing.com; expires=Wed, 03-Jan-2024 16:16:34 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: EF151CD6F9384F239B087AC4A3E57A61 Ref B: OSL30EDGE0311 Ref C: 2022-12-09T16:16:34Z
date: Fri, 09 Dec 2022 16:16:33 GMT
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-T18E1GTPQG&cid=1936055661.1670602593&gtm=2oebu0&aip=1&z=1149761582

142.250.74.163

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-T18E1GTPQG&cid=1936055661.1670602593&gtm=2oebu0&aip=1&z=1149761582
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-T18E1GTPQG&cid=1936055661.1670602593&gtm=2oebu0&aip=1&z=1149761582 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Dec 2022 16:16:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

bat.bing.com/action/0?ti=5063952&Ver=2&mid=a2462464-4d12-4cfa-a7d4-cb4ec19ca6cc&sid=d8b1ab0077dc11ed9cd631cbb36fbb22&vid=d8b1c1b077dc11ed95838bbb119d0a8d&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&p=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1&r=&lt=1094&evt=pageLoad&sv=1&rn=458274

13.107.21.200

204 No Content

0 B

URL HTTP/2
bat.bing.com/action/0?ti=5063952&Ver=2&mid=a2462464-4d12-4cfa-a7d4-cb4ec19ca6cc&sid=d8b1ab0077dc11ed9cd631cbb36fbb22&vid=d8b1c1b077dc11ed95838bbb119d0a8d&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&p=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1&r=&lt=1094&evt=pageLoad&sv=1&rn=458274
IP
13.107.21.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /action/0?ti=5063952&Ver=2&mid=a2462464-4d12-4cfa-a7d4-cb4ec19ca6cc&sid=d8b1ab0077dc11ed9cd631cbb36fbb22&vid=d8b1c1b077dc11ed95838bbb119d0a8d&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&p=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1&r=&lt=1094&evt=pageLoad&sv=1&rn=458274 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=2245BE78E0996F622425AC0DE1CE6E4F; domain=.bing.com; expires=Wed, 03-Jan-2024 16:16:34 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 1ABCA0BBF1E24A3988C9BD5530B42E57 Ref B: OSL30EDGE0311 Ref C: 2022-12-09T16:16:34Z
date: Fri, 09 Dec 2022 16:16:33 GMT
X-Firefox-Spdy: h2

alb.reddit.com/rp.gif?ts=1670602592924&id=t2_378pcjv6&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=6f4c4183-5985-483e-8a3f-3409bb15c3bc&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8

151.101.1.140

200 OK

42 B

URL HTTP/2
alb.reddit.com/rp.gif?ts=1670602592924&id=t2_378pcjv6&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=6f4c4183-5985-483e-8a3f-3409bb15c3bc&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8
IP
151.101.1.140:0
ASN
#54113 FASTLY

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /rp.gif?ts=1670602592924&id=t2_378pcjv6&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=6f4c4183-5985-483e-8a3f-3409bb15c3bc&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8 HTTP/1.1
Host: alb.reddit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Varnish
retry-after: 0
cross-origin-resource-policy: cross-origin
content-type: image/gif
accept-ranges: bytes
date: Fri, 09 Dec 2022 16:16:34 GMT
via: 1.1 varnish
content-length: 42
X-Firefox-Spdy: h2

script.hotjar.com/modules.bc0a4c72d88d266f15af.js

143.204.55.68

200 OK

69 kB

URL HTTP/2
script.hotjar.com/modules.bc0a4c72d88d266f15af.js
IP
143.204.55.68:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text, with very long lines (48638)
Size
69 kB (68590 bytes)
Hash
2375e31c5dc0ca09d740bee5c1486c2b
d68ad5ffd79e99af40377945f2f41db8b6f00ad0
2197593e6c85391abbb9c0cba866862dc84bad91aedbe5d90d374e413504f5cb

HTTP Headers

GET /modules.bc0a4c72d88d266f15af.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
content-length: 68590
date: Wed, 07 Dec 2022 14:35:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "2375e31c5dc0ca09d740bee5c1486c2b"
last-modified: Wed, 07 Dec 2022 14:34:24 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rvAFGUbcCMWY6Y28uf7pEPXbbd1snOZe2OWCyfTbkEvCE4aNN_mIfg==
age: 178888
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
32d90ff0cc366730c3633c1201b4c058
f4175292b607197a15085e14bf69df301dff6706
b4b2f80fbe9b02f3d54dc35a3738c31a4d7cb5a5e528fcbce50263d8c458231a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:16:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html

143.204.55.118

200 OK

1.0 kB

URL HTTP/2
vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html
IP
143.204.55.118:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Size
1.0 kB (1035 bytes)
Hash
e0652b84b7b3b650769c759fc520c3f8
0b55d6e28613350c7f41b88f19e726e6751ad03b
94b4c240f83065223dcacdd3f8b69cb229d0616edc3e2041eef3e270d859fc3d

HTTP Headers

GET /box-5e66f98b4ee957db209dc6f63e3d59dd.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Wed, 23 Nov 2022 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "e0652b84b7b3b650769c759fc520c3f8"
last-modified: Wed, 23 Nov 2022 13:09:18 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vWpHiHfuN9IyB0cWEYR3j1FDR-ike9EBm38mvscW3HLl1PBRS1Fv5A==
age: 1393588
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8105b33e4e3af998e9d016e156205c22
dfa2f5cecd72be8ec63d5f833b82cd993a5ce8b9
4a682a72e5d599d48706927cbc0852df5ac36dbb57747681cc2ee91c719c7ccf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:16:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a0905812e8498e6c5c0a9b4b584b972f
039b784fd1e0152ec7f49a54ba027f0b2bd1e833
ee3531ef0f334dcd73a86b1e4365a020d5db69ff7b82bad136eaf1a8e9d3b47f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:16:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-4118503-39&cid=1936055661.1670602593&jid=509341556&gjid=226667227&_gid=1330646688.1670602593&_u=YADAAEAAAAAAACAAI~&z=344633044

108.177.14.156

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-4118503-39&cid=1936055661.1670602593&jid=509341556&gjid=226667227&_gid=1330646688.1670602593&_u=YADAAEAAAAAAACAAI~&z=344633044
IP
108.177.14.156:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-4118503-39&cid=1936055661.1670602593&jid=509341556&gjid=226667227&_gid=1330646688.1670602593&_u=YADAAEAAAAAAACAAI~&z=344633044 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Content-Type: text/plain
Content-Length: 0
Origin: https://www.opera.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://www.opera.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 09 Dec 2022 16:16:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

s.yimg.com/wi/config/10176867.json

87.248.119.252

200 OK

2 B

URL HTTP/2
s.yimg.com/wi/config/10176867.json
IP
87.248.119.252:0
ASN
#203220 Yahoo! UK Services Limited

File type
JSON data\012- , ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

HTTP Headers

GET /wi/config/10176867.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Origin: https://www.opera.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: J0G4E3YDXD7ST1GM
x-amz-id-2: r0nM3I+3elJ1tnNe3RXi0dk1FR/BhYt2ZrnaXWLJj+GPr/cWKJRcLXzvw1WxZl64RdH81q3UQso=
content-type: application/json
date: Fri, 09 Dec 2022 16:16:05 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
cache-control: public,max-age=3600
content-length: 2
age: 29
strict-transport-security: max-age=15552000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2556512b197b09798af71bea10bb4bbb
23b647aca5f8294ae82fa8cc7e2215ebe3347b60
3b5bd592342d978bcf8919d1a1e2f87295e2e4af5b5b266e6017b7a25725d08d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:16:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a49ab5ecc317aa7e4724050053737549
3ffff77715bf8c5dbcbb5e17abbbc2c683c36f60
844f25237f9906c3fb977d58259e132c41dacbbe546adc8b45e9992e6ee711c0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:16:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-4118503-39&cid=1936055661.1670602593&jid=509341556&_u=YADAAEAAAAAAACAAI~&z=1368987510

142.250.74.132

200 OK

42 B

URL HTTP/2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-4118503-39&cid=1936055661.1670602593&jid=509341556&_u=YADAAEAAAAAAACAAI~&z=1368987510
IP
142.250.74.132:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-4118503-39&cid=1936055661.1670602593&jid=509341556&_u=YADAAEAAAAAAACAAI~&z=1368987510 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Dec 2022 16:16:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

adservice.google.com/ddm/fls/i/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=6767635973938;gtm=2wgbu0;auiddc=1895569026.1670602593;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1

142.250.74.130

200 OK

357 B

URL HTTP/2
adservice.google.com/ddm/fls/i/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=6767635973938;gtm=2wgbu0;auiddc=1895569026.1670602593;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1
IP
142.250.74.130:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (626), with no line terminators
Size
357 B (357 bytes)
Hash
1e43759568256146bcb861a8e4d879c1
1594d601671000dc3d673e0e664e72e30c8cb64e
e66681fbf8d97c7c4bba78c3408cd0cc1d2c95f3f20d19c9aa35c274da12a9e6

HTTP Headers

GET /ddm/fls/i/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=6767635973938;gtm=2wgbu0;auiddc=1895569026.1670602593;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1 HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11442918.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Dec 2022 16:16:34 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 357
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a0905812e8498e6c5c0a9b4b584b972f
039b784fd1e0152ec7f49a54ba027f0b2bd1e833
ee3531ef0f334dcd73a86b1e4365a020d5db69ff7b82bad136eaf1a8e9d3b47f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:16:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a0905812e8498e6c5c0a9b4b584b972f
039b784fd1e0152ec7f49a54ba027f0b2bd1e833
ee3531ef0f334dcd73a86b1e4365a020d5db69ff7b82bad136eaf1a8e9d3b47f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:16:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

sp.analytics.yahoo.com/sp.pl?a=10000&d=Fri%2C%2009%20Dec%202022%2016%3A16%3A33%20GMT&n=0&b=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&.yp=10176867&f=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1&enc=UTF-8&yv=1.13.0&tagmgr=gtm

212.82.100.181

200 OK

43 B

URL HTTP/2
sp.analytics.yahoo.com/sp.pl?a=10000&d=Fri%2C%2009%20Dec%202022%2016%3A16%3A33%20GMT&n=0&b=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&.yp=10176867&f=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1&enc=UTF-8&yv=1.13.0&tagmgr=gtm
IP
212.82.100.181:0
ASN
#34010 Yahoo! UK Services Limited

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
bff56ce49dd485d195fdfa0a02342568
74fb4071deab7d3ab083562067b735df32c43397
0e4b1e428a2198ef747010c094101c257b568a97cdcc0f31ed5e9868cc835b39

HTTP Headers

GET /sp.pl?a=10000&d=Fri%2C%2009%20Dec%202022%2016%3A16%3A33%20GMT&n=0&b=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&.yp=10176867&f=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1&enc=UTF-8&yv=1.13.0&tagmgr=gtm HTTP/1.1
Host: sp.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 09 Dec 2022 16:16:34 GMT
expires: Fri, 09 Dec 2022 16:16:34 GMT
pragma: no-cache
cache-control: no-cache, private, must-revalidate
content-type: image/gif
accept-ranges: bytes
content-length: 43
server: ATS
age: 0
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: sandbox; default-src 'self'; script-src 'none'; object-src 'none'; report-uri http://csp.yahoo.com/beacon/csp?src=generic
set-cookie: A3=d=AQABBGJfk2MCENILXZctxAUITiwefp8slkcFEgEBAQGwlGOdYwAAAAAA_eMAAA&S=AQAAAkU0KPblzGKJzitT2emKRSs; Expires=Sat, 9 Dec 2023 22:16:34 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2

www.facebook.com/tr/?id=471443751186133&ev=PageView&dl=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1&rl=&if=false&ts=1670602593258&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1670602593256.604543383&it=1670602593063&coo=false&rqm=GET

157.240.221.35

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=471443751186133&ev=PageView&dl=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1&rl=&if=false&ts=1670602593258&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1670602593256.604543383&it=1670602593063&coo=false&rqm=GET
IP
157.240.221.35:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=471443751186133&ev=PageView&dl=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1&rl=&if=false&ts=1670602593258&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1670602593256.604543383&it=1670602593063&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 09 Dec 2022 16:16:34 GMT
X-Firefox-Spdy: h2

adservice.google.no/ddm/fls/i/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=6767635973938;gtm=2wgbu0;auiddc=1895569026.1670602593;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1

172.217.21.162

302 Found

0 B

URL HTTP/2
adservice.google.no/ddm/fls/i/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=6767635973938;gtm=2wgbu0;auiddc=1895569026.1670602593;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1
IP
172.217.21.162:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ddm/fls/i/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=6767635973938;gtm=2wgbu0;auiddc=1895569026.1670602593;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1 HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Dec 2022 16:16:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://11442918.fls.doubleclick.net/ddm/fls/r/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=6767635973938;gtm=2wgbu0;auiddc=1895569026.1670602593;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
48487c86e61361cb1055f9ab315d3b4e
8bb6ce1c9bbd0315b9bf8173ba6d2c21f2c120ef
9899e720c3cf6f0b777190c161de072637351830d45236355ae08db668a98eba

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:16:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

region1.analytics.google.com/g/collect?v=2&tid=G-T18E1GTPQG&gtm=2oebu0&_p=44581333&_gaz=1&cid=1936055661.1670602593&ul=en-us&sr=1280x1024&_s=1&sid=1670602592&sct=1&seg=0&dl=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1&dt=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&en=page_view&_fv=1&_nsi=1&_ss=1

216.239.34.36

204 No Content

0 B

URL HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-T18E1GTPQG&gtm=2oebu0&_p=44581333&_gaz=1&cid=1936055661.1670602593&ul=en-us&sr=1280x1024&_s=1&sid=1670602592&sct=1&seg=0&dl=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1&dt=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&en=page_view&_fv=1&_nsi=1&_ss=1
IP
216.239.34.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-T18E1GTPQG&gtm=2oebu0&_p=44581333&_gaz=1&cid=1936055661.1670602593&ul=en-us&sr=1280x1024&_s=1&sid=1670602592&sct=1&seg=0&dl=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1&dt=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Origin: https://www.opera.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://www.opera.com
date: Fri, 09 Dec 2022 16:16:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0cebd64f3cc6e31256edf36b4a7860db
504aefa17e04f1aa1dbd510329a38011e39044bd
77875cca2f0ec6888d3dd8e917d1f9a795053826e64527d2041a18ee093b92d1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:16:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googleadservices.com/pagead/conversion.js

216.58.207.194

200 OK

17 kB

URL HTTP/2
www.googleadservices.com/pagead/conversion.js
IP
216.58.207.194:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2772)
Size
17 kB (16823 bytes)
Hash
b7bfb38de42aafcf20ec09cb43f51b2e
2329a485f1e5f5a2fdd8158d335fdd5a2683be55
6391614bdd92fbab896b523130690059cea5159fb598ae07fd89e5c46a2a2da0

HTTP Headers

GET /pagead/conversion.js HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11442918.fls.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 09 Dec 2022 16:16:34 GMT
expires: Fri, 09 Dec 2022 16:16:34 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 6351308751113588399
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 16823
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
fad3aad026642e03afb91e1601fe6a04
70a45feb3e1c3ecb3da7cb691e78fb8fbb48196d
d82121b58bd9b1eb7be444118410509c951c1d132acd489933de17916b79061c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:16:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googleadservices.com/pagead/conversion/10840821485/?random=1670602593769&cv=9&fst=1670602593769&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D6767635973938%3Bgtm%3D2wgbu0%3Bauiddc%3D1895569026.1670602593%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx%253Futm_content%253D1461_CY4SBNzRUT1GJLOYP6RK%2526utm_medium%253Dpa%2526utm_campaign%253DPWN_NO%2526utm_id%253Dd1f2baa003384319b78714fcb887f746%2526utm_source%253DPWNgames%2526edition%253Dstd-1&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4

216.58.207.194

200 OK

1.3 kB

URL HTTP/2
www.googleadservices.com/pagead/conversion/10840821485/?random=1670602593769&cv=9&fst=1670602593769&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D6767635973938%3Bgtm%3D2wgbu0%3Bauiddc%3D1895569026.1670602593%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx%253Futm_content%253D1461_CY4SBNzRUT1GJLOYP6RK%2526utm_medium%253Dpa%2526utm_campaign%253DPWN_NO%2526utm_id%253Dd1f2baa003384319b78714fcb887f746%2526utm_source%253DPWNgames%2526edition%253Dstd-1&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4
IP
216.58.207.194:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2167), with no line terminators
Size
1.3 kB (1253 bytes)
Hash
dc5bf6c768500ce0e827154fb7c95c2b
d01d5609ca43bd181de82a6eec468a56cd37fea8
f34a09e64395a9fc5580beed09d3a664f0c519113cdd28679a7b8b9052f84ef3

HTTP Headers

GET /pagead/conversion/10840821485/?random=1670602593769&cv=9&fst=1670602593769&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D6767635973938%3Bgtm%3D2wgbu0%3Bauiddc%3D1895569026.1670602593%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx%253Futm_content%253D1461_CY4SBNzRUT1GJLOYP6RK%2526utm_medium%253Dpa%2526utm_campaign%253DPWN_NO%2526utm_id%253Dd1f2baa003384319b78714fcb887f746%2526utm_source%253DPWNgames%2526edition%253Dstd-1&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4 HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11442918.fls.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Dec 2022 16:16:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1253
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e3b657ebd655fbfa5f10c01c775f2aa0
2478fd171e6791a10d83b2bad9de0165d268db7e
2d91737e61e5338bc24c7df4aa36b1c20d9f79fe8ea4bb4914fd2c15e99a7ee3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:16:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

googleads.g.doubleclick.net/pagead/viewthroughconversion/10840821485/?random=1004960990&cv=9&fst=1670602593769&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D6767635973938%3Bgtm%3D2wgbu0%3Bauiddc%3D1895569026.1670602593%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx%253Futm_content%253D1461_CY4SBNzRUT1GJLOYP6RK%2526utm_medium%253Dpa%2526utm_campaign%253DPWN_NO%2526utm_id%253Dd1f2baa003384319b78714fcb887f746%2526utm_source%253DPWNgames%2526edition%253Dstd-1&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=Yl-TY6uwLqiQ78EPt_2m-Ao&sscte=1&crd=

142.250.74.34

302 Found

42 B

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/10840821485/?random=1004960990&cv=9&fst=1670602593769&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D6767635973938%3Bgtm%3D2wgbu0%3Bauiddc%3D1895569026.1670602593%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx%253Futm_content%253D1461_CY4SBNzRUT1GJLOYP6RK%2526utm_medium%253Dpa%2526utm_campaign%253DPWN_NO%2526utm_id%253Dd1f2baa003384319b78714fcb887f746%2526utm_source%253DPWNgames%2526edition%253Dstd-1&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=Yl-TY6uwLqiQ78EPt_2m-Ao&sscte=1&crd=
IP
142.250.74.34:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/viewthroughconversion/10840821485/?random=1004960990&cv=9&fst=1670602593769&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D6767635973938%3Bgtm%3D2wgbu0%3Bauiddc%3D1895569026.1670602593%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx%253Futm_content%253D1461_CY4SBNzRUT1GJLOYP6RK%2526utm_medium%253Dpa%2526utm_campaign%253DPWN_NO%2526utm_id%253Dd1f2baa003384319b78714fcb887f746%2526utm_source%253DPWNgames%2526edition%253Dstd-1&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=Yl-TY6uwLqiQ78EPt_2m-Ao&sscte=1&crd= HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11442918.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Dec 2022 16:16:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://www.google.com/pagead/1p-conversion/10840821485/?random=1004960990&cv=9&fst=1670602593769&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D6767635973938%3Bgtm%3D2wgbu0%3Bauiddc%3D1895569026.1670602593%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx%253Futm_content%253D1461_CY4SBNzRUT1GJLOYP6RK%2526utm_medium%253Dpa%2526utm_campaign%253DPWN_NO%2526utm_id%253Dd1f2baa003384319b78714fcb887f746%2526utm_source%253DPWNgames%2526edition%253Dstd-1&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=Yl-TY6uwLqiQ78EPt_2m-Ao&random=2009213420&resp=GooglemKTybQhCsO
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 09-Dec-2022 16:31:34 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e3b657ebd655fbfa5f10c01c775f2aa0
2478fd171e6791a10d83b2bad9de0165d268db7e
2d91737e61e5338bc24c7df4aa36b1c20d9f79fe8ea4bb4914fd2c15e99a7ee3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:16:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3D6307d578-1bcb-d937-d114-a076ed15412b%26type%3D55%26m%3D7&ex-fch=416613&ex-src=https://www.opera.com/gx&ex-hargs=v%3D1.0%3Bc%3D586912600239599593%3Bp%3D6307D578-1BCB-D937-D114-A076ED15412B&cb=348308259476628350

52.46.128.147

302 Found

0 B

URL HTTP/1.1
s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3D6307d578-1bcb-d937-d114-a076ed15412b%26type%3D55%26m%3D7&ex-fch=416613&ex-src=https://www.opera.com/gx&ex-hargs=v%3D1.0%3Bc%3D586912600239599593%3Bp%3D6307D578-1BCB-D937-D114-A076ED15412B&cb=348308259476628350
IP
52.46.128.147:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /iu3?d=generic&ex-fargs=%3Fid%3D6307d578-1bcb-d937-d114-a076ed15412b%26type%3D55%26m%3D7&ex-fch=416613&ex-src=https://www.opera.com/gx&ex-hargs=v%3D1.0%3Bc%3D586912600239599593%3Bp%3D6307D578-1BCB-D937-D114-A076ED15412B&cb=348308259476628350 HTTP/1.1
Host: s.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11442918.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Server: Server
Date: Fri, 09 Dec 2022 16:16:35 GMT
Content-Length: 0
Connection: keep-alive
x-amz-rid: FAVD1X0ZDXEARBGVWGPS
Set-Cookie: ad-id=A2Ti8g6C8kjxmlFNBmd-6JY|t; Domain=.amazon-adsystem.com; Expires=Sat, 01-Jul-2023 16:16:35 GMT; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Location: https://s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3D6307d578-1bcb-d937-d114-a076ed15412b%26type%3D55%26m%3D7&ex-fch=416613&ex-src=https://www.opera.com/gx&ex-hargs=v%3D1.0%3Bc%3D586912600239599593%3Bp%3D6307D578-1BCB-D937-D114-A076ED15412B&cb=348308259476628350&dcc=t
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload

52.46.128.147

200 OK

65 B

URL HTTP/1.1
s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3D6307d578-1bcb-d937-d114-a076ed15412b%26type%3D55%26m%3D7&ex-fch=416613&ex-src=https://www.opera.com/gx&ex-hargs=v%3D1.0%3Bc%3D586912600239599593%3Bp%3D6307D578-1BCB-D937-D114-A076ED15412B&cb=348308259476628350&dcc=t
IP
52.46.128.147:0
ASN
#16509 AMAZON-02

File type
HTML document, ASCII text
Size
65 B (65 bytes)
Hash
22fdf49482d8200e8f305bbe262eff14
f254bd4053267c2cf46675613e689016d8b7f775
115d83ece49fd1c5769409aab9d78572eed86cd38a0556b4cdeeac82c83091d3

HTTP Headers

GET /iu3?d=generic&ex-fargs=%3Fid%3D6307d578-1bcb-d937-d114-a076ed15412b%26type%3D55%26m%3D7&ex-fch=416613&ex-src=https://www.opera.com/gx&ex-hargs=v%3D1.0%3Bc%3D586912600239599593%3Bp%3D6307D578-1BCB-D937-D114-A076ED15412B&cb=348308259476628350&dcc=t HTTP/1.1
Host: s.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://11442918.fls.doubleclick.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Server
Date: Fri, 09 Dec 2022 16:16:35 GMT
Content-Type: text/html;charset=ISO-8859-1
Content-Length: 65
Connection: keep-alive
x-amz-rid: 3RHRVXSMC690300FD3R2
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload

trc-events.taboola.com/1410119/log/3/unip?en=pre_d_eng_tb&tos=1554&scd=4&ssd=1&est=1670602593016&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1670602594572&vi=1670602593011&ri=d17cbed26dc0762ee27e96279e4b6849&ref=null&cv=20221206-9-RELEASE&item-url=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1&ler=other

141.226.228.48

204 No Content

0 B

URL HTTP/2
trc-events.taboola.com/1410119/log/3/unip?en=pre_d_eng_tb&tos=1554&scd=4&ssd=1&est=1670602593016&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1670602594572&vi=1670602593011&ri=d17cbed26dc0762ee27e96279e4b6849&ref=null&cv=20221206-9-RELEASE&item-url=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1&ler=other
IP
141.226.228.48:0
ASN
#200478 Taboola.com ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /1410119/log/3/unip?en=pre_d_eng_tb&tos=1554&scd=4&ssd=1&est=1670602593016&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1670602594572&vi=1670602593011&ri=d17cbed26dc0762ee27e96279e4b6849&ref=null&cv=20221206-9-RELEASE&item-url=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1&ler=other HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Origin: https://www.opera.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
server: nginx
date: Fri, 09 Dec 2022 16:16:35 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.opera.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2

trc-events.taboola.com/1410119/log/3/unip?en=pre_d_eng_tb&tos=4556&scd=4&ssd=1&est=1670602593016&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1670602597573&vi=1670602593011&ri=d17cbed26dc0762ee27e96279e4b6849&ref=null&cv=20221206-9-RELEASE&item-url=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1&ler=other

141.226.228.48

204 No Content

0 B

URL HTTP/2
trc-events.taboola.com/1410119/log/3/unip?en=pre_d_eng_tb&tos=4556&scd=4&ssd=1&est=1670602593016&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1670602597573&vi=1670602593011&ri=d17cbed26dc0762ee27e96279e4b6849&ref=null&cv=20221206-9-RELEASE&item-url=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1&ler=other
IP
141.226.228.48:0
ASN
#200478 Taboola.com ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /1410119/log/3/unip?en=pre_d_eng_tb&tos=4556&scd=4&ssd=1&est=1670602593016&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1670602597573&vi=1670602593011&ri=d17cbed26dc0762ee27e96279e4b6849&ref=null&cv=20221206-9-RELEASE&item-url=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1&ler=other HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Origin: https://www.opera.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: nginx
date: Fri, 09 Dec 2022 16:16:38 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.opera.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2

trc.taboola.com/1410119/trc/3/json?tim=1670602593019&data=%7B%22id%22%3A815%2C%22ii%22%3A%22%2Fgx%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1670602593011%2C%22cv%22%3A%2220221206-9-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.opera.com%2Fgx%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Doperasoftwarees-operasoftwarees-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1670602593019%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1%22%2C%22tos%22%3A1%2C%22ssd%22%3A1%2C%22scd%22%3A4%2C%22ler%22%3A%22other%22%2C%22supv%22%3Atrue%7D%7D&pubit=i

151.101.65.44

200 OK

0 B

URL HTTP/2
trc.taboola.com/1410119/trc/3/json?tim=1670602593019&data=%7B%22id%22%3A815%2C%22ii%22%3A%22%2Fgx%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1670602593011%2C%22cv%22%3A%2220221206-9-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.opera.com%2Fgx%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Doperasoftwarees-operasoftwarees-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1670602593019%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1%22%2C%22tos%22%3A1%2C%22ssd%22%3A1%2C%22scd%22%3A4%2C%22ler%22%3A%22other%22%2C%22supv%22%3Atrue%7D%7D&pubit=i
IP
151.101.65.44:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /1410119/trc/3/json?tim=1670602593019&data=%7B%22id%22%3A815%2C%22ii%22%3A%22%2Fgx%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1670602593011%2C%22cv%22%3A%2220221206-9-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.opera.com%2Fgx%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Doperasoftwarees-operasoftwarees-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1670602593019%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D1461_CY4SBNzRUT1GJLOYP6RK%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3Dd1f2baa003384319b78714fcb887f746%26utm_source%3DPWNgames%26edition%3Dstd-1%22%2C%22tos%22%3A1%2C%22ssd%22%3A1%2C%22scd%22%3A4%2C%22ler%22%3A%22other%22%2C%22supv%22%3Atrue%7D%7D&pubit=i HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Fri, 09 Dec 2022 16:16:34 GMT
via: 1.1 varnish
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1670602594.024744,VS0,VE99
vary: Accept-Encoding
x-vcl-time-ms: 99
X-Firefox-Spdy: h2

smrturl.co/o/2476/53263332?s1=

172.67.197.247

200 OK

0 B

URL HTTP/2
smrturl.co/o/2476/53263332?s1=
IP
172.67.197.247:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /o/2476/53263332?s1= HTTP/1.1
Host: smrturl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://arabs4.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 09 Dec 2022 16:16:31 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.11
set-cookie: dynamo_v_id=Vdb4357aaa7353; expires=Sat, 10-Dec-2022 16:16:31 GMT; Max-Age=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3xBxICU6uL99vSf4OEOXS%2FPAvN0kvHxcpFjNlDq5HPKHHOHa7CqvaJE700kIgRp5Sfy3XzXGRA7jOcljVVFKGmVCQmfazNbUh6UFemTcXdJQpLIZ5mI2IVoZnOMW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 776f0bb0ef7cb524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

s.yimg.com/wi/ytc.js

87.248.119.252

200 OK

0 B

URL HTTP/2
s.yimg.com/wi/ytc.js
IP
87.248.119.252:0
ASN
#203220 Yahoo! UK Services Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 6AGgktgpoeotXVcnKkRHoiMhSBv9gzS39XlQYX00xnQVDWu+N9/Q/8G+WFF8VsVMtLFEX3heOF4KPZ6JLqkbxA==
x-amz-request-id: NKKHX50QE2MH02Q7
date: Fri, 09 Dec 2022 16:16:13 GMT
last-modified: Tue, 14 Jun 2022 12:21:31 GMT
x-amz-expiration: expiry-date="Thu, 20 Jul 2023 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "6a624022b5d271dcefb070b0b6670abc-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: .QD3nDfK79S8_ikLSJXTL23Tdis9tg0C
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 22
content-encoding: gzip
strict-transport-security: max-age=15552000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Chakra+Petch:400,700&subset=latin-ext

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Chakra+Petch:400,700&subset=latin-ext
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Chakra+Petch:400,700&subset=latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 09 Dec 2022 16:16:33 GMT
date: Fri, 09 Dec 2022 16:16:33 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

static.hotjar.com/c/hotjar-445451.js?sv=7

54.230.111.66

200 OK

0 B

URL HTTP/2
static.hotjar.com/c/hotjar-445451.js?sv=7
IP
54.230.111.66:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /c/hotjar-445451.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Fri, 09 Dec 2022 16:16:22 GMT
cache-control: max-age=60
etag: W/66bc9747e443c1c10d36ffecac7408bc
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 11A212QRmrfEsjOeij8Itqz8D8x2tbsH1-QzRlF0dsn3YmsHvnai0A==
age: 13
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (38)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations