Report - en-gv.site/ma=36246

Report Overview

Submitted URL
en-gv.site/ma=36246
IP
31.170.164.241
ASN
#47583 Hostinger International Limited
Submitted
2022-12-11 13:36:51
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.38.139.17
arabs4.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	345 B	487 B	92.205.12.81
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	35 kB	34.120.237.76
script.hotjar.com	887	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	382 B	69 kB	143.204.55.96
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	479 B	694 B	142.250.74.163
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	6.2 kB	23.36.76.226
cdn.taboola.com	1040	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	375 B	19 kB	151.101.193.44
googleads.g.doubleclick.net	42	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	1.9 kB	216.58.207.226
blue.redredirector.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	507 B	423 B	34.141.179.97
smrturl.co	299580	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	474 B	5.6 kB	104.21.76.170
cdn-production-opera-website.operacdn.com	98972	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	25 kB	2.6 MB	23.32.85.11
www.redditstatic.com	1440	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	366 B	8.5 kB	151.101.1.140
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	371 B	29 kB	31.13.72.12
adservice.google.com	76	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	825 B	1.0 kB	142.250.74.130
trc-events.taboola.com	1779	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	839 B	362 B	141.226.228.48
trc.taboola.com	602	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	554 B	151.101.193.44
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	416 B	746 B	142.250.74.106
en-gv.site	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	798 B	2.2 kB	31.170.164.241
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.9 kB	93.184.220.29
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6.2 kB	13 kB	142.250.74.131
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	772 B	157 kB	142.250.74.168
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	982 B	20 kB	216.58.207.227
www.opera.com	62688	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	1.1 kB	18.196.164.184
s.amazon-adsystem.com	283	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	1.5 kB	52.46.151.131
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	370 B	21 kB	142.250.74.110
s.yimg.com	375	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	747 B	8.0 kB	87.248.119.252
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	601 B	708 B	108.177.14.156
vars.hotjar.com	1014	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	503 B	1.7 kB	143.204.55.105
sp.analytics.yahoo.com	816	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	764 B	949 B	212.82.100.181
adservice.google.no	96969	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	816 B	1.4 kB	142.250.74.34
region1.analytics.google.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	866 B	560 B	216.239.34.36
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
2gov.site	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	454 B	758 B	66.29.153.49
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	350 B	1.0 kB	143.204.42.156
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	515 B	694 B	142.250.74.164
www.facebook.com	99	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	783 B	349 B	31.13.72.36
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
alb.reddit.com	1521	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	652 B	276 B	151.101.129.140
www.googleadservices.com	107	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	20 kB	142.250.74.130
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	680 B	1.9 kB	172.64.155.188
www.getgx.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	852 B	841 B	34.199.248.2
www.googleoptimize.com	1604	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	382 B	44 kB	142.250.74.78
bat.bing.com	387	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	731 B	13 kB	204.79.197.200
11442918.fls.doubleclick.net	151784	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	819 B	1.3 kB	142.250.74.38
static.hotjar.com	641	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	374 B	632 B	143.204.55.84

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-11	medium	2gov.site/cup22/?ma=36246	Malware
2022-12-11	medium	arabs4.net/pc/	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (38)

	URL	Size	First Seen	Last Seen
	www.opera.com/gx?utm_content=2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241&utm_medium=pa&utm_campaign=PWN_NO&utm_id=2d9419b41aa44bd8a9efdfa6b7384440&utm_source=PWNgames&edition=std-1	3.6 kB	2023-03-07	2023-04-02
Pretty URL www.opera.com/gx?utm_content=2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241&utm_medium=pa&utm_campaign=PWN_NO&utm_id=2d9419b41aa44bd8a9efdfa6b7384440&utm_source=PWNgames&edition=std-1 IP 18.196.164.184 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2023-04-02 21:30:09 Times Seen2 Hash f1607c87893064f9fd1d5f505d7dbcc8 10b206a1ae8a48e68abf99b9fb1450f37659e732 892ce543fa97bf9c420515828355b0cfc2948137a1c435eb613c082076ff73ce Loading...

	unknown	0 B	2023-03-07	2024-04-23
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-23 10:10:08 Times Seen37018483 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.opera.com/gx?utm_content=2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241&utm_medium=pa&utm_campaign=PWN_NO&utm_id=2d9419b41aa44bd8a9efdfa6b7384440&utm_source=PWNgames&edition=std-1	496 B	2023-03-07	2024-02-21
Pretty URL www.opera.com/gx?utm_content=2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241&utm_medium=pa&utm_campaign=PWN_NO&utm_id=2d9419b41aa44bd8a9efdfa6b7384440&utm_source=PWNgames&edition=std-1 IP 18.196.164.184 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2024-02-21 04:57:48 Times Seen239 Hash 2ec3ab2ea7d6e84feaede3f316e542e6 4c0a9224d011d729f351a9f6a1c9ff9ba1b379a2 3e8f56032190bf6c992040243294c0438637ca75545775b62d90aa91ff927aa6 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-20
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-20 17:36:09 Times Seen1522 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	connect.facebook.net/signals/config/471443751186133?v=2.9.89&r=stable	300 kB	2023-03-08	2023-03-11
Pretty URL connect.facebook.net/signals/config/471443751186133?v=2.9.89&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:28:46 Last Seen2023-03-11 21:00:46 Times Seen1 Hash 4137f9b5607bf5c60ba5f43921cf2b24 6530ef9aebd7bb5e1eea29448e2ddf4524b47f37 e066c0bba2f009f5385f5ab6ffaed823ea32c7feae29420fec665e9b0a7e8160 Loading...

	www.opera.com/gx?utm_content=2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241&utm_medium=pa&utm_campaign=PWN_NO&utm_id=2d9419b41aa44bd8a9efdfa6b7384440&utm_source=PWNgames&edition=std-1	452 B	2023-03-07	2023-12-07
Pretty URL www.opera.com/gx?utm_content=2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241&utm_medium=pa&utm_campaign=PWN_NO&utm_id=2d9419b41aa44bd8a9efdfa6b7384440&utm_source=PWNgames&edition=std-1 IP 18.196.164.184 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2023-12-07 00:03:33 Times Seen113 Hash ea851aaa49b13578ff5c5e50a48cdb5d 0c28bff9ed59248c78451d4167d5a0ef142bd9e4 5e9c4dcec163b9a531c2d5e8f6ff96b33e67e86fb3ab3a2ed74ad16051007eaf Loading...

	www.googletagmanager.com/gtag/js?id=G-T18E1GTPQG&l=dataLayer&cx=c	233 kB	2023-03-09	2023-03-09
Pretty URL www.googletagmanager.com/gtag/js?id=G-T18E1GTPQG&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 03:01:13 Last Seen2023-03-09 03:01:13 Times Seen1 Hash 2ccae7d898f349748c5fd99d36f3333a 96bb2193371ff4742535ef3d1b41d98bb1c17b61 0aecf157312f4c15e469ed60b45d5f96c0fa4cd910904e4ca6d2ecb5fa35f48a Loading...

	www.opera.com/gx?utm_content=2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241&utm_medium=pa&utm_campaign=PWN_NO&utm_id=2d9419b41aa44bd8a9efdfa6b7384440&utm_source=PWNgames&edition=std-1	357 B	2023-03-07	2023-12-11
Pretty URL www.opera.com/gx?utm_content=2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241&utm_medium=pa&utm_campaign=PWN_NO&utm_id=2d9419b41aa44bd8a9efdfa6b7384440&utm_source=PWNgames&edition=std-1 IP 18.196.164.184 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2023-12-11 07:58:14 Times Seen128 Hash c8983d66f6c0fbf9def38ba1b59df5af 009b5d6d8879bd1faacb02b043067118429663c7 2e0527064a429e3c5e7e271e512b940b81d95422281c3704987e8f17c2f9bd85 Loading...

	www.opera.com/gx?utm_content=2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241&utm_medium=pa&utm_campaign=PWN_NO&utm_id=2d9419b41aa44bd8a9efdfa6b7384440&utm_source=PWNgames&edition=std-1	3.0 kB	2023-03-07	2024-01-24
Pretty URL www.opera.com/gx?utm_content=2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241&utm_medium=pa&utm_campaign=PWN_NO&utm_id=2d9419b41aa44bd8a9efdfa6b7384440&utm_source=PWNgames&edition=std-1 IP 18.196.164.184 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:52:36 Last Seen2024-01-24 11:43:10 Times Seen40 Hash f5a6286eaa45f9aeec04e007cba1bb23 7befd217059157b76809d13ec6d10de6876dcf63 5a4f3f5fd8c3b346d408e183af42f942607054fba180e00cab4addede2fe35c6 Loading...

	connect.facebook.net/en_US/fbevents.js	105 kB	2023-03-09	2023-03-09
Pretty URL connect.facebook.net/en_US/fbevents.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 00:51:48 Last Seen2023-03-09 12:06:29 Times Seen1 Hash fd95cfba1de59efb67a73aef5c03e3fd 20147051a03dbfcad50d7372b85e9ae20f411d04 737be8d2a2db4d729155190f62d3b1f656cdaec35b42b59eeeda3043246a50cd Loading...

	arabs4.net/pc/	97 B	2023-03-07	2023-03-17
Pretty URL arabs4.net/pc/ IP 92.205.12.81 ASN #21499 Host Europe GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:52 Last Seen2023-03-17 12:26:45 Times Seen1 Hash 6ffe84233c232e2ccb501bb35d023a81 cd1c4276e504823215879a2650a233c61ffc4860 2535618b64ed7a5302afa89aa7ed7b1b141d85d71fc378248b3c6a0c8e710102 Loading...

	www.getgx.net/cmp/TXP7QH/P6QLHR/?sub1=150_2476&sub2=6395dceaa134710001c00ded	210 B	2023-03-09	2023-03-09
Pretty URL www.getgx.net/cmp/TXP7QH/P6QLHR/?sub1=150_2476&sub2=6395dceaa134710001c00ded IP 34.199.248.2 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 03:01:13 Last Seen2023-03-09 03:01:13 Times Seen1 Hash bd6fac2b38080c5b555646df05417338 0549da61c4781f09044849298a16cf8e1f464f13 2cf0f85d17e0597034a7b5b320d09eaa23bd8758f1b2121a8082835d4299e580 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-N7XDW7Z	127 kB	2023-03-09	2023-03-09
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-N7XDW7Z IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 03:01:13 Last Seen2023-03-09 03:01:13 Times Seen1 Hash 9043260932388fb9d0c3347fb45b2f90 a9776bb90ff742df0e419a92ee5a6734b16cd5ad bd143b5967088b891f7a9115cd5563588169b713fff2b64eccbeadc31db5fcbe Loading...

	www.opera.com/gx?utm_content=2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241&utm_medium=pa&utm_campaign=PWN_NO&utm_id=2d9419b41aa44bd8a9efdfa6b7384440&utm_source=PWNgames&edition=std-1	417 B	2023-03-07	2024-03-23
Pretty URL www.opera.com/gx?utm_content=2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241&utm_medium=pa&utm_campaign=PWN_NO&utm_id=2d9419b41aa44bd8a9efdfa6b7384440&utm_source=PWNgames&edition=std-1 IP 18.196.164.184 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2024-03-23 17:52:27 Times Seen241 Hash 782f224163a456df194b6bbb5c7b218d bf1522d204081c55a699d7d830e8c1777a386ad3 9ea3fb367657f27631a01f5c2dda2dfdb0c06c21309c71eaaf0aeef899f47098 Loading...

	www.opera.com/gx?utm_content=2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241&utm_medium=pa&utm_campaign=PWN_NO&utm_id=2d9419b41aa44bd8a9efdfa6b7384440&utm_source=PWNgames&edition=std-1	422 B	2023-03-07	2024-03-24
Pretty URL www.opera.com/gx?utm_content=2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241&utm_medium=pa&utm_campaign=PWN_NO&utm_id=2d9419b41aa44bd8a9efdfa6b7384440&utm_source=PWNgames&edition=std-1 IP 18.196.164.184 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:19:46 Last Seen2024-03-24 20:42:12 Times Seen336 Hash b5ee7dff028e43c08940f369ad5a8963 c27d7438dd40365520cf79fb2293417b8609b06f 586cd59bc3f88355b1fb5d2010a6e3325cac2414e351956550fa3fd35f467d24 Loading...

	www.opera.com/gx?utm_content=2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241&utm_medium=pa&utm_campaign=PWN_NO&utm_id=2d9419b41aa44bd8a9efdfa6b7384440&utm_source=PWNgames&edition=std-1	422 B	2023-03-07	2023-03-11
Pretty URL www.opera.com/gx?utm_content=2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241&utm_medium=pa&utm_campaign=PWN_NO&utm_id=2d9419b41aa44bd8a9efdfa6b7384440&utm_source=PWNgames&edition=std-1 IP 18.196.164.184 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2023-03-11 21:00:46 Times Seen1 Hash 846d2d8a8578b9aac137f995f553608c 79d1416e95ca129d7a2ea5189e6390b252352a6c f5492473c4fd71e86d2bace91b88788f022a6c4efc24071ffcb38076e5a65d04 Loading...

	static.hotjar.com/c/hotjar-445451.js?sv=7	33 kB	2023-03-09	2023-03-09
Pretty URL static.hotjar.com/c/hotjar-445451.js?sv=7 IP 143.204.55.84 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 03:01:13 Last Seen2023-03-09 03:01:16 Times Seen1 Hash 99babca0afbe17574bf953845fb9a662 0f443658330b62b79df76a5278450da8fe420ef9 f8fcfe585cd6ad1d942347d3353c402b38aff54566f6f5ff7d54f58eb826b9d0 Loading...

	cdn.taboola.com/libtrc/unip/1410119/tfa.js	59 kB	2023-03-09	2023-03-09
Pretty URL cdn.taboola.com/libtrc/unip/1410119/tfa.js IP 151.101.193.44 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 02:59:19 Last Seen2023-03-09 12:38:57 Times Seen1 Hash d9e8d1952859c8a784da8ca150420cea 97c1434e9d4a5b85417f635a90c40c645d2c66fb f34ee4d1802ee932a24ee4856d664c85c2a9033e8a8931ab6c5f70ae677d9572 Loading...

	2gov.site/cup22/?ma=36246	218 B	2023-03-07	2023-03-17
Pretty URL 2gov.site/cup22/?ma=36246 IP 66.29.153.49 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:52 Last Seen2023-03-17 12:26:45 Times Seen1 Hash f0ba7a095b0d184be2e29c86d1c75937 7d566b921cfaa5b46653bae1f047729696be67f7 88cdac010f7a0480ee0070e872b9ddf29c574f6c9aa113738efb6dc4d314f78e Loading...

	11442918.fls.doubleclick.net/ddm/fls/r/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=4724997347716;gtm=2wgbu0;auiddc=1012696196.1670765803;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1	659 B	2023-03-07	2023-03-11
Pretty URL 11442918.fls.doubleclick.net/ddm/fls/r/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=4724997347716;gtm=2wgbu0;auiddc=1012696196.1670765803;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2023-03-11 21:00:46 Times Seen1 Hash 526b1641a89304d842ff0805cae98078 7a5d59cae78e114b9aecd1968d5cece8c0fab5fa 9b8d1014b62f337dfdc2809825c29bdb7c352757adafba9c188bff2c57708bbd Loading...

	www.googleadservices.com/pagead/conversion/10840821485/?random=1670765804327&cv=9&fst=1670765804327&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D4724997347716%3Bgtm%3D2wgbu0%3Bauiddc%3D1012696196.1670765803%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx%253Futm_content%253D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%2526utm_medium%253Dpa%2526utm_campaign%253DPWN_NO%2526utm_id%253D2d9419b41aa44bd8a9efdfa6b7384440%2526utm_source%253DPWNgames%2526edition%253Dstd-1&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4	2.2 kB	2023-03-09	2023-03-09
Pretty URL www.googleadservices.com/pagead/conversion/10840821485/?random=1670765804327&cv=9&fst=1670765804327&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D4724997347716%3Bgtm%3D2wgbu0%3Bauiddc%3D1012696196.1670765803%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx%253Futm_content%253D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%2526utm_medium%253Dpa%2526utm_campaign%253DPWN_NO%2526utm_id%253D2d9419b41aa44bd8a9efdfa6b7384440%2526utm_source%253DPWNgames%2526edition%253Dstd-1&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4 IP 142.250.74.130 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 03:01:13 Last Seen2023-03-09 03:01:13 Times Seen1 Hash e5532d55de9da2af431bd91cea58b198 1f4c2ad3a3b7d05da86b9deab8ceac53fd10d3b8 7bfa1a517f32530d59d64bcf90342810594880fe300596e75f7c28ec0471c822 Loading...

	s.yimg.com/wi/ytc.js	17 kB	2023-03-07	2024-03-04
Pretty URL s.yimg.com/wi/ytc.js IP 87.248.119.252 ASN #203220 Yahoo! UK Services Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:36 Last Seen2024-03-04 14:29:23 Times Seen1244 Hash 6a624022b5d271dcefb070b0b6670abc e9a0a059a5cefc0cd9e6cc0e8d7bd8d64c23936b 249c4eba880cfb74e1b6e1d1048def310636dc3b1ce5b3fe525703fd4025238f Loading...

	www.googletagmanager.com/gtm.js?id=GTM-PRBZ42F	398 kB	2023-03-09	2023-03-09
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-PRBZ42F IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 03:01:13 Last Seen2023-03-09 03:01:13 Times Seen1 Hash 60c1f55e84543f35ef163abecb3026fb e9b322b7da0378dc83fd0d25874ae984970e8802 a124c5af7ed6556c5e243451356add76fa5594590e579607ecdf0ad0325e2608 Loading...

	www.opera.com/gx?utm_content=2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241&utm_medium=pa&utm_campaign=PWN_NO&utm_id=2d9419b41aa44bd8a9efdfa6b7384440&utm_source=PWNgames&edition=std-1	423 B	2023-03-07	2024-03-23
Pretty URL www.opera.com/gx?utm_content=2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241&utm_medium=pa&utm_campaign=PWN_NO&utm_id=2d9419b41aa44bd8a9efdfa6b7384440&utm_source=PWNgames&edition=std-1 IP 18.196.164.184 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2024-03-23 17:52:27 Times Seen240 Hash 234b023c7a26bfe71d0f9f640ede91f4 504a7bade784175003b440859140c4792b755a89 a9f9adf2eef26b4c41a6f824bb23a100ad0f438971e584859754bdb2b6eb422e Loading...

	www.redditstatic.com/ads/pixel.js	25 kB	2023-03-08	2023-12-01
Pretty URL www.redditstatic.com/ads/pixel.js IP 151.101.1.140 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:55 Last Seen2023-12-01 19:12:11 Times Seen28 Hash c1c34430d39fb43c9612aebe7ab8a9db 4d7f5cb7b29685a3a5a51c140288465e9553a0a7 4b4e80032e1c164685d3ff6eb4c606785ebaebaa648d3984478b0cc8d114190b Loading...

	vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html	2.3 kB	2023-03-08	2023-03-26
Pretty URL vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html IP 143.204.55.105 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:11 Last Seen2023-03-26 01:38:12 Times Seen2 Hash 2ab04d2242413cc15369fa816e1a02f8 8ff148dd539f0fff0892dcc2075839c315cb8642 fe51660a3d21efbefab64694f51d02f2bcee4e82c324895e93c78ba6179508a3 Loading...

	11442918.fls.doubleclick.net/ddm/fls/r/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=4724997347716;gtm=2wgbu0;auiddc=1012696196.1670765803;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1	211 B	2023-03-07	2023-03-11
Pretty URL 11442918.fls.doubleclick.net/ddm/fls/r/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=4724997347716;gtm=2wgbu0;auiddc=1012696196.1670765803;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:29 Last Seen2023-03-11 21:00:46 Times Seen1 Hash 145a86b05d5d23a0457e4d04d7414f6b b9c5bd648296302344b234dc52669b473f076378 1487253ac00cdb9bce5db8331567b3ab87d98eed981f396602ed00bd648a6d7a Loading...

	www.googleoptimize.com/optimize.js?id=GTM-5HKZ2H4	110 kB	2023-03-08	2023-03-09
Pretty URL www.googleoptimize.com/optimize.js?id=GTM-5HKZ2H4 IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:56:13 Last Seen2023-03-09 04:18:47 Times Seen1 Hash 11b6d3c7754847d62eb6f01359a5bfb8 85e43bd62193e43532b589b1a70661a4d3bda5b8 99feba1e7f5ad22a1cd4fdd156cc7eb40bdac428d99197a7936990e3f09f64b9 Loading...

	bat.bing.com/bat.js	39 kB	2023-03-08	2024-01-01
Pretty URL bat.bing.com/bat.js IP 204.79.197.200 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:52:15 Last Seen2024-01-01 05:01:16 Times Seen16 Hash 258ac0be54e333a28d69bfd394fcde90 daecd0687e8b00f5d67a7732ccbe9174326821d9 f2c4b7d20ff42a433d0c76631c460cd75128f8f0436d052ce2cf79dc4fa6a244 Loading...

	connect.facebook.net/signals/config/1123357797681867?v=2.9.89&r=stable	300 kB	2023-03-09	2023-03-09
Pretty URL connect.facebook.net/signals/config/1123357797681867?v=2.9.89&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 03:01:13 Last Seen2023-03-09 03:01:16 Times Seen1 Hash 15f87408fd1729b136df81a6450f25dc 157938f4ce72685c56efb96b91afb6377a139ecc 302edecbf72a8e2fd307c73b71582f78366c3c6760087010cc5d2b2418a59e61 Loading...

	trc.taboola.com/1410119/trc/3/json?tim=1670765803576&data=%7B%22id%22%3A319%2C%22ii%22%3A%22%2Fgx%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1670765803569%2C%22cv%22%3A%2220221211-7-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.opera.com%2Fgx%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Doperasoftwarees-operasoftwarees-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1670765803575%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1%22%2C%22tos%22%3A2%2C%22ssd%22%3A1%2C%22scd%22%3A4%2C%22ler%22%3A%22other%22%2C%22supv%22%3Atrue%7D%7D&pubit=i	2.5 kB	2023-03-09	2023-03-09
Pretty URL trc.taboola.com/1410119/trc/3/json?tim=1670765803576&data=%7B%22id%22%3A319%2C%22ii%22%3A%22%2Fgx%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1670765803569%2C%22cv%22%3A%2220221211-7-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.opera.com%2Fgx%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Doperasoftwarees-operasoftwarees-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1670765803575%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1%22%2C%22tos%22%3A2%2C%22ssd%22%3A1%2C%22scd%22%3A4%2C%22ler%22%3A%22other%22%2C%22supv%22%3Atrue%7D%7D&pubit=i IP 151.101.193.44 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 03:01:13 Last Seen2023-03-09 03:01:13 Times Seen1 Hash 86371d547d8db9c0cddbf92ef50d3740 c83cf87a19971f61bc433c86ea9154ab15ead106 1303325d5036621e131879da57e69c69901ad25033bc42a9552a62885e6ecb4d Loading...

	www.googleadservices.com/pagead/conversion.js	46 kB	2023-03-08	2023-03-12
Pretty URL www.googleadservices.com/pagead/conversion.js IP 142.250.74.130 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:59:43 Last Seen2023-03-12 14:32:57 Times Seen1 Hash 9cdfece004275f945b074de4b8a0700c ede6c2b945f396ddadd66798b2936724f9529062 ebcd43274f956ef6d5c0f690695cc56c35a3a77180c9d1b80791febe4e27f601 Loading...

	www.opera.com/gx?utm_content=2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241&utm_medium=pa&utm_campaign=PWN_NO&utm_id=2d9419b41aa44bd8a9efdfa6b7384440&utm_source=PWNgames&edition=std-1	21 B	2023-03-07	2024-04-21
Pretty URL www.opera.com/gx?utm_content=2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241&utm_medium=pa&utm_campaign=PWN_NO&utm_id=2d9419b41aa44bd8a9efdfa6b7384440&utm_source=PWNgames&edition=std-1 IP 18.196.164.184 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:18:43 Last Seen2024-04-21 15:49:35 Times Seen547 Hash c499adcb8b93574828ea9ee76f39278f 729be93800ec88aeb5c94d1e1d5558eb0ee7605c 53c7b7488f8e6625f123eef988f95d9268c7b673501f465712561ea83d77bd78 Loading...

		Size	First Seen	Last Seen
	#1 Eval - fd9a6ad8235a5b1f8291a0f682c4e641	60 B	2023-03-07	2024-03-23
Pretty Observations First Seen2023-03-07 12:57:29 Last Seen2024-03-23 17:52:27 Times Seen385 Hash fd9a6ad8235a5b1f8291a0f682c4e641 68be4f3dee54bfba9dbb673003d30cbc4c2663ae a5febe3286b6a155c7ff728e6cdac57d3cd37b93db132ec24e8f6e78c24e64a1 Loading...

	#2 Eval - c9c654616521bfc7e50e42b4037f0b9e	100 B	2023-03-07	2023-04-02
Pretty Observations First Seen2023-03-07 15:20:29 Last Seen2023-04-02 21:30:09 Times Seen2 Hash c9c654616521bfc7e50e42b4037f0b9e 8b5075274f8d3e5259745b4e7172bc22f84d0bb7 310442179c33b2c11f96e621dac0c97db1cd18804aea3d7aa7e3ebd758159ef5 Loading...

	#3 Eval - 6b801ce5ac9f7cd1268e9f07479f2103	100 B	2023-03-08	2023-04-02
Pretty Observations First Seen2023-03-08 23:56:14 Last Seen2023-04-02 21:30:09 Times Seen2 Hash 6b801ce5ac9f7cd1268e9f07479f2103 0a479aa033ab804b9d969fce32618543ad6ccba2 d8270678e0791e0fc5c3c3baf72b59c126d2f55cada4d9ef1a7269d8587f4a6c Loading...

	#4 Eval - 1c30f655754855af2dfa537d38d042d2	37 B	2023-03-07	2024-03-23
Pretty Observations First Seen2023-03-07 15:20:29 Last Seen2024-03-23 17:52:27 Times Seen241 Hash 1c30f655754855af2dfa537d38d042d2 0a510f5532f622e1514177e8a1c64daf50099825 f565fc57576629933f18b2a6c27826541e67444f7c01e64b35d3a281caa02eba Loading...

		Size	First Seen	Last Seen
	#1 Write - d41d8cd98f00b204e9800998ecf8427e	0 B	2023-03-07	2024-04-23
Pretty Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-23 10:10:08 Times Seen37018483 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (136)

URL IP Response Size

en-gv.site/ma=36246

31.170.164.241

301 Moved Permanently

707 B

URL HTTP/1.1
en-gv.site/ma=36246
IP
31.170.164.241:0
ASN
#47583 Hostinger International Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
707 B (707 bytes)
Hash
1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

HTTP Headers

GET /ma=36246 HTTP/1.1
Host: en-gv.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Sun, 11 Dec 2022 13:36:40 GMT
server: LiteSpeed
location: https://en-gv.site/ma=36246
platform: hostinger
content-security-policy: upgrade-insecure-requests

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
43ad67f241ee3692a9c9c1da080dae58
6a024f7d71eeee257edc91ba9273416f634aaae5
636635b57f9e6d2ad9b1b949298ee7d3b5b7e251a63516ff68bfb1eceded5688

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "636635B57F9E6D2AD9B1B949298EE7D3B5B7E251A63516FF68BFB1ECEDED5688"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4043
Expires: Sun, 11 Dec 2022 14:44:03 GMT
Date: Sun, 11 Dec 2022 13:36:40 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
430f1651125c14bfa4924aa1f1a392e9
304141c5fe7ac8b370a67912b2592f9622de9600
315d77a9956f34b1615e38f5f1971dd05146980f8a36b35a8108d47ebba7e8e5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "315D77A9956F34B1615E38F5F1971DD05146980F8A36B35A8108D47EBBA7E8E5"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3140
Expires: Sun, 11 Dec 2022 14:29:00 GMT
Date: Sun, 11 Dec 2022 13:36:40 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4ee537977be9c03702f8ffe0025bf1fe
21637881c4aa34c4add703f8bff4eff573159f45
4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6946
Expires: Sun, 11 Dec 2022 15:32:26 GMT
Date: Sun, 11 Dec 2022 13:36:40 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
b44c4b5daa307a355e7bab1c83c1ca82
dbd14cd873f1dd4502f277b3f51cb7bc8da0c080
fd4604461cfa002c8a261bb14eb8dda56817db231b9012b2eb38d6dbc2674df5

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Alert, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 11 Dec 2022 13:08:31 GMT
content-type: application/json
age: 1689
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: qybcTV0WYCacKKtqOIDzVa/fQyeDuWE6Qnhfhcge4BqD1xGJkGhcg/D290zAo1V6rwnteD/T64E=
x-amz-request-id: 67KWZ41DDPVQ2K7C
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 11 Dec 2022 12:49:12 GMT
age: 2848
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

en-gv.site/ma=36246

31.170.164.241

301 Moved Permanently

707 B

URL HTTP/2
en-gv.site/ma=36246
IP
31.170.164.241:0
ASN
#47583 Hostinger International Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
707 B (707 bytes)
Hash
1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

HTTP Headers

GET /ma=36246 HTTP/1.1
Host: en-gv.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 301 Moved Permanently
content-type: text/html
content-length: 707
date: Sun, 11 Dec 2022 13:36:40 GMT
server: LiteSpeed
location: https://2gov.site/cup22/?ma=36246
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 11 Dec 2022 13:36:40 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Last-Modified, ETag, Cache-Control, Alert, Content-Length, Pragma, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 11 Dec 2022 13:07:56 GMT
age: 1724
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
cb4301eee3808e76abf6e406c994937b
264c8a22f395aeffdfd1b7fe85353476d34b7609
1a29b1a9d5dec7283318b640d34182dc452f453f3d11c727b1e325fb39da7dc4

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 13:36:41 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 11 Dec 2022 13:06:22 GMT
Expires: Sun, 18 Dec 2022 13:06:21 GMT
Etag: "264c8a22f395aeffdfd1b7fe85353476d34b7609"
Cache-Control: max-age=602380,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 777e9c4f5a28b4f9-OSL

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
e12bb655426d080117693ba116f398cf
8fe1f7f8d0b191baed2decba3523656da97077f5
2c25ba0d1c806de98d5489934acd8e2f17487e4f7e40c7f0d39094ce49f91b8d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 247
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 13:36:41 GMT
Etag: "63959db0-1d7"
Last-Modified: Sun, 11 Dec 2022 13:32:34 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

52.38.139.17

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.38.139.17:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: aq+Oo82iSMoC6XnYdQ6oeQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: u5Xmw8SZDiU/9r4McnRjKytHh+U=

2gov.site/cup22/?ma=36246

66.29.153.49

200 OK

504 B

URL HTTP/2
2gov.site/cup22/?ma=36246
IP
66.29.153.49:0
ASN
#22612 NAMECHEAP-NET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
504 B (504 bytes)
Hash
89fe1b539d3eac8ce6bf5c8962f8f589
9df7961ff1c4713fe707d9aeddfe539b2b4432dd
edb1d347b9116a5112f2bd3665a91d3c9e9ad1e791815065cee8c822ddea0794

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /cup22/?ma=36246 HTTP/1.1
Host: 2gov.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
x-powered-by: PHP/7.4.33
content-type: text/html; charset=UTF-8
content-length: 504
content-encoding: br
vary: Accept-Encoding
date: Sun, 11 Dec 2022 13:36:41 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

arabs4.net/pc/

92.205.12.81

200 OK

145 B

URL HTTP/1.1
arabs4.net/pc/
IP
92.205.12.81:0
ASN
#21499 Host Europe GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
145 B (145 bytes)
Hash
960be881f98ea294ec62bd81c77d2dfe
b0162dde6c1346bf8a9b0185ed56c05ee22daeda
c3f7b2ba43b5ee8e6031e316d5f94c7a1d2fe3cc8aef2851a648af4f92b028c0

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /pc/ HTTP/1.1
Host: arabs4.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 13:36:41 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 26 Aug 2022 20:50:22 GMT
ETag: "c63c23-da-5e72b100b171b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 145
Keep-Alive: timeout=5
Content-Type: text/html

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6180
Expires: Sun, 11 Dec 2022 15:19:42 GMT
Date: Sun, 11 Dec 2022 13:36:42 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6180
Expires: Sun, 11 Dec 2022 15:19:42 GMT
Date: Sun, 11 Dec 2022 13:36:42 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6180
Expires: Sun, 11 Dec 2022 15:19:42 GMT
Date: Sun, 11 Dec 2022 13:36:42 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6180
Expires: Sun, 11 Dec 2022 15:19:42 GMT
Date: Sun, 11 Dec 2022 13:36:42 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0c11050-5c0c-4d59-80cd-f72cf377a852.jpeg

34.120.237.76

200 OK

7.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0c11050-5c0c-4d59-80cd-f72cf377a852.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.9 kB (7919 bytes)
Hash
b1a13d12c326848d5b7adeb2562a35a5
d795c519ea637a213aab1d80daaf44ce5ad19069
f7b99c93b99268e1b2fa438d493cf23cd75a98833710ddd22b5278a76e9f019a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0c11050-5c0c-4d59-80cd-f72cf377a852.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7919
x-amzn-requestid: c090b5fd-ff70-48a1-9c6b-256a0776cbfd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c59nPEILoAMFr_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393dc94-691a58a54b9f102b23b65c31;Sampled=0
x-amzn-remapped-date: Sat, 10 Dec 2022 01:10:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: k34CeI41nEv98H0C8Me6y4pUXhcOhf0Bno2VGJZ3Mjc1PbMIntvs0g==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Dec 2022 00:20:19 GMT
age: 47783
etag: "d795c519ea637a213aab1d80daaf44ce5ad19069"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d0c96af-c60d-4600-85fc-ee30b7a0c931.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.5 kB (4526 bytes)
Hash
f01260130a9ea66e994137a2ac221122
85e58c55619e2cc855ff9dc5861e70be682bb247
987e83bd21ee86ba8384e5b28ab4e5536fc17c290d2e34f31734358208b246c0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d0c96af-c60d-4600-85fc-ee30b7a0c931.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4526
x-amzn-requestid: 3b956935-0d79-4261-845f-df3684758cd5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c83HuGTDIAMF77g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63950564-759a4eec01b8fa2e6ced2fb1;Sampled=0
x-amzn-remapped-date: Sat, 10 Dec 2022 22:17:08 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kLP-F0QfKozesNZrS45FZrA8rKMHThhBZab3ejTy-8tZO4twI-meww==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Dec 2022 13:02:28 GMT
age: 2054
etag: "85e58c55619e2cc855ff9dc5861e70be682bb247"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32378252-8233-4d6b-b3d2-720e3ac2d0bd.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.0 kB (3963 bytes)
Hash
a2b4c44cc196e1f4263a895ef54e6650
c5cea524045b3394c1dfe5e5fcac4637416f8587
e31f4b95811c01b2f2f181e11b7a8e1b4c57c3c7fc067c304e8dacc6fb176442

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32378252-8233-4d6b-b3d2-720e3ac2d0bd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3963
x-amzn-requestid: f067a6cf-758c-4c35-be64-3970b690ea7c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5e7VHdnoAMF0Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393ab7b-485a18b738763b2029f6c653;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:41:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ltqT6q1QYt7U2Gl9bkgc03CGPNxOdIbSJQIL4LPjd_L69Gl3J2Kz5w==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Dec 2022 21:56:07 GMT
age: 56435
etag: "c5cea524045b3394c1dfe5e5fcac4637416f8587"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

smrturl.co/o/2476/53263332?s1=

104.21.76.170

200 OK

4.9 kB

URL HTTP/2
smrturl.co/o/2476/53263332?s1=
IP
104.21.76.170:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
4.9 kB (4861 bytes)
Hash
9b27ef19d2dbb855fa8a8bee4d24b136
ad7056ce2f2b4e65ec852330f86632eaf417b098
b7486a42539bfd58b693ba7c3255b9395a42d2147a1416d49a397b7cfce4f587

HTTP Headers

GET /o/2476/53263332?s1= HTTP/1.1
Host: smrturl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://arabs4.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 11 Dec 2022 13:36:42 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.11
set-cookie: dynamo_v_id=Vdb945348a0816; expires=Mon, 12-Dec-2022 13:36:41 GMT; Max-Age=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FGIAU%2FOFQ0%2Frs5EZ9XkWnHAV5ZrS8OOhibVIXeoe2DwvwTfJokAWMhmXTk%2BIh9cGz3FK5icxfQx7QhU0aI79CgrSAKmMcjY2G4i4RyNhVVBhhWFqdy5MEqKJt36B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 777e9c54b931b51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f74a7ce-34b1-4cb6-a68f-8fd3dc0a2b9f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.3 kB (7269 bytes)
Hash
6fa9fe07664d7ecc189f2ec5e88d82ab
6c9476510cac4e1aa7f96e46f659381c95de5a53
4955b29a4c20466c6e2f342c6d6e2ff060fe4943005fab0a930ca587e99efa7d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f74a7ce-34b1-4cb6-a68f-8fd3dc0a2b9f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7269
x-amzn-requestid: 0ca02ec9-910e-427f-92d4-c6f2de1a3529
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c82piGjdIAMFSnQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639504a3-20c792da66e8398c655dafd4;Sampled=0
x-amzn-remapped-date: Sat, 10 Dec 2022 22:13:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: A4kVO86-gBbgFfUMNDjy9lpFmCaMt56ZdN7KKR96gUIXGHq1KxhqZA==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Dec 2022 12:53:32 GMT
age: 2590
etag: "6c9476510cac4e1aa7f96e46f659381c95de5a53"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb6bca12a-103c-4b98-a218-27a61f8d6951.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.3 kB (6311 bytes)
Hash
2020df3404a4b7c3e142af4a1330b848
2fe69b52fe03128e86550bf08474ecac82682384
37a52c158d5cfdf3589e19163cf446c02ce1466f444656080b02da82d2bcefae

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb6bca12a-103c-4b98-a218-27a61f8d6951.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6311
x-amzn-requestid: 46ccaee0-bde8-4be6-9dc8-46e3ae356dc8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c8xUYH10oAMF8Ig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6394fc1b-2440251f06cb950a57489555;Sampled=0
x-amzn-remapped-date: Sat, 10 Dec 2022 21:37:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: SG-8rL_rUN3MpXHhkAaHmIqKf7mSHtv0kEAkBOAIPcqq755Qh-mc3Q==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Dec 2022 21:52:26 GMT
age: 56656
etag: "2fe69b52fe03128e86550bf08474ecac82682384"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
3648f3958144d464d6f6a17cb3f0dd3f
23f5de1580f58a61821d005adeca52baf2ac80b7
3d7d8114305b0eaeca0ba994848c48ed5f2cd7dbc3cc53837fcb5f333af5546a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 13:36:42 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 08 Dec 2022 20:58:30 GMT
Expires: Thu, 15 Dec 2022 20:58:29 GMT
Etag: "23f5de1580f58a61821d005adeca52baf2ac80b7"
Cache-Control: max-age=371506,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 777e9c5a0845b4f9-OSL

ocsp.sca1b.amazontrust.com/

143.204.42.156

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.156:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
fc3b94a98691712e489b3988ab00ed1f
e076cf2f192277aecc90de85339c39472cdf65a1
078701baf6a7a7270a2827128e900878bfc357723e07b59195d0230e70462fdf

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=149537
Date: Sun, 11 Dec 2022 13:36:43 GMT
Etag: "639577c2-1d7"
Expires: Tue, 13 Dec 2022 07:09:00 GMT
Last-Modified: Sun, 11 Dec 2022 06:25:06 GMT
Server: ECS (nyb/1D1B)
X-Cache: Miss from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: xvJ7NdRdBOUc4JtQyWv_HsJxn44HrrGT67NcgiWLnsPrIdrASPPQqw==
Age: 2634

www.getgx.net/cmp/TXP7QH/P6QLHR/?sub1=150_2476&sub2=6395dceaa134710001c00ded

34.199.248.2

200 OK

573 B

URL HTTP/2
www.getgx.net/cmp/TXP7QH/P6QLHR/?sub1=150_2476&sub2=6395dceaa134710001c00ded
IP
34.199.248.2:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (573), with no line terminators
Size
573 B (573 bytes)
Hash
59e9f7fafcdc3a7d1b6ed9a9400af69d
fe3d9ccb49ea796936adc94121a9f0b4655196a3
017f3584df626545b79ccd024840a682840c09b7b379170bc7bd8c8c036f918c

HTTP Headers

GET /cmp/TXP7QH/P6QLHR/?sub1=150_2476&sub2=6395dceaa134710001c00ded HTTP/1.1
Host: www.getgx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 11 Dec 2022 13:36:43 GMT
content-type: text/html
content-length: 573
apigw-requestid: c-90xi5BIAMEaYA=
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

313 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
313 B (313 bytes)
Hash
11f1128044c9b3006f3bcd83dae36e2b
6c2d8d75b6664284b6798124a3ec3c5df02499a4
601357296beb4179c391b5acd16e97dbae809ffd809206773e1fc9bb0d2f1e48

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4377
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 13:36:43 GMT
Last-Modified: Sun, 11 Dec 2022 12:23:47 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 313

www.getgx.net/favicon.ico

34.199.248.2

204 No Content

0 B

URL HTTP/2
www.getgx.net/favicon.ico
IP
34.199.248.2:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.getgx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 204 No Content
date: Sun, 11 Dec 2022 13:36:43 GMT
apigw-requestid: c-900i9zoAMEaZA=
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2bbc2a332da069e062c141b6755efb07
e7cb19a32562264a6858b73f90caff1fe7887a29
5fad6e64460cced764a9d312bc67cf858e5b28e5b2e107dc790bc5973f1ecd1e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 13:36:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
74d82b5960e5e12af402b01fa10b0829
4b80baad99eaafa43a8a78dbcd8e0df4141b3dd7
328abed4a3d2ea1d745c64c5c40925ae5efca25846d2e1c8457a030347473b51

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 13:36:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.f6936dd37310.css

23.32.85.11

200 OK

20 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.f6936dd37310.css
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (65536), with no line terminators
Size
20 kB (19708 bytes)
Hash
d4b2b16ddc1226ce15a37d9ab3f39332
8b15380a3cb695b7120488f469911a66e273e9a9
1f49fa8fb5e21892817356c6af54fc04e7974968af105f3eda76c6747e0f0c83

HTTP Headers

GET /staticfiles/CACHE/css/output.f6936dd37310.css HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: dX0NRQ1cq6j+60bWwwVmrMVS5Q5IbYJkMolx/59tEyQEknz9h7myaQTFCzB0lbWFp5TnQlMeA4Y=
x-amz-request-id: Z6Y4B1MH5SD0KT30
last-modified: Fri, 09 Dec 2022 15:01:17 GMT
etag: "acc63614aca4e3ac19ca16081f8571b6"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: text/css
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
content-length: 19708
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--gx-mobile@2x.4aa1a438e946.webp

23.32.85.11

200 OK

38 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--gx-mobile@2x.4aa1a438e946.webp
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
RIFF (little-endian) data, Web/P image\012- data
Size
38 kB (37600 bytes)
Hash
4aa1a438e946907970930b7f2e04f644
77e2db6095a0b0491a3bd61b927b2cf8d7c6d523
5c0be912ca6292ddb33b0e5a4afcd89c8c9dd32026d77327944939e4bebfb4e0

HTTP Headers

GET /staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--gx-mobile@2x.4aa1a438e946.webp HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: 6zl7Ld6NKqO9JtleRKbk8dGV7cJtBemWHTVKU3quXb2YXty1NW1GNk98Y2Kg7IK4wP6bnOlUSfg=
x-amz-request-id: 9CREDAXAV4J6STSB
last-modified: Fri, 09 Dec 2022 15:03:10 GMT
etag: "4aa1a438e946907970930b7f2e04f644"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: binary/octet-stream
server: AmazonS3
content-length: 37600
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--gx-cleaner@2x.43ff34bf1a7b.webp

23.32.85.11

200 OK

82 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--gx-cleaner@2x.43ff34bf1a7b.webp
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
RIFF (little-endian) data, Web/P image\012- data
Size
82 kB (82120 bytes)
Hash
43ff34bf1a7b9da9262052869fdfe267
4aef7aae9d6e65cb7388c988e9512f23fc651b47
55e8eb06cf3783ccd1956b633b8758dff5f61edc5c3adb7ae784506205b29bdc

HTTP Headers

GET /staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--gx-cleaner@2x.43ff34bf1a7b.webp HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: j157WsSUxynMGqLXBCeIZH8gw/T6sSR3IPT8oI095TH6QT78fymgZ/TWxTnnoVhmfPS/R0gCNzQ=
x-amz-request-id: T5324THGBEG23JAK
last-modified: Fri, 09 Dec 2022 15:03:10 GMT
etag: "43ff34bf1a7b9da9262052869fdfe267"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: binary/octet-stream
server: AmazonS3
content-length: 82120
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx-mobile__android-iOS@2x.d190a54a25f9.webp

23.32.85.11

200 OK

113 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx-mobile__android-iOS@2x.d190a54a25f9.webp
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
RIFF (little-endian) data, Web/P image\012- data
Size
113 kB (112954 bytes)
Hash
d190a54a25f96e1356a94e2a868bd5be
2b5014cd95340eeee12f0759f94e47669a4616d9
20d4625716519bb627af5c27bc73dbcc630509a1052b9b3cc2cbcfbf5da9e7f7

HTTP Headers

GET /staticfiles/assets/images/sections/2021/hero-top/gx/gx-mobile__android-iOS@2x.d190a54a25f9.webp HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: ueDIfmutVwa5HPOmsz3MFNbSXmCvg8/XDdt1a0rgZ2YlwczJgqmT2/pndzG7n/1t9EeeWqOCriw=
x-amz-request-id: FJTQ9ZT9MRWSMFZ6
last-modified: Fri, 09 Dec 2022 15:03:10 GMT
etag: "d190a54a25f96e1356a94e2a868bd5be"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: binary/octet-stream
server: AmazonS3
content-length: 112954
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/logo/logo-o.64d9b43037de.svg

23.32.85.11

200 OK

2.0 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/logo/logo-o.64d9b43037de.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (583)
Size
2.0 kB (2001 bytes)
Hash
64d9b43037de76c75fa0a1a04d91f14e
6ddd1a7e4c4737f3cd4b3bbdb0ad2a4a435db36f
1ca4940630392e48936d86cddf6b9825123b775009c5e7451529a51939d9a2cc

HTTP Headers

GET /staticfiles/assets/images/logo/logo-o.64d9b43037de.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: jsa8xnz8v2q2AS0v4ZyCJ2dgDPA8q/aZXIHGpmjc6UlBv2s6unIm3CcOcYDpCWSe0qrUjdeuQtA=
x-amz-request-id: NXGRS97KBZV2YTN2
last-modified: Fri, 09 Dec 2022 15:01:39 GMT
etag: "64d9b43037de76c75fa0a1a04d91f14e"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 2001
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/logo/logo-and-name--white.2236bc548f38.svg

23.32.85.11

200 OK

6.4 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/logo/logo-and-name--white.2236bc548f38.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (880)
Size
6.4 kB (6414 bytes)
Hash
2236bc548f38c1160fede16371d814c6
5960b6b68cc3f62dec9eb637613237859640a72a
48980a330e25e389278204845da2bcff73d54e9496fd49e82b1266325aa1658d

HTTP Headers

GET /staticfiles/assets/images/logo/logo-and-name--white.2236bc548f38.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: 63hBiOvxHa5IBF4nvByLmrmAHD6pta+vYHpR+OnzPejOFhJwlf8wPCMk/sBaW9gKuGgmmkCFWTM=
x-amz-request-id: 7AFQ6VKR7Z9WP2PH
last-modified: Fri, 09 Dec 2022 15:01:39 GMT
etag: "2236bc548f38c1160fede16371d814c6"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 6414
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/feature-promo/awesome-features--gx__mobile.c8ecc394b852.jpg

23.32.85.11

200 OK

64 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/feature-promo/awesome-features--gx__mobile.c8ecc394b852.jpg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 764x1356, components 3\012- data
Size
64 kB (64529 bytes)
Hash
c8ecc394b852869c3f8d196e06a15b44
f9476573123f0969aaf4d9d14d99fa422345a433
06ccc3052896eeb9cb55bcf12d97ce90c374089838d698317e8a4bc9d25c0631

HTTP Headers

GET /staticfiles/assets/images/sections/2021/feature-promo/awesome-features--gx__mobile.c8ecc394b852.jpg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: apvg/9iwhcf7KggHx0exNrOWQ2wFOAvat+nH0avcGVmNFy/Wol53n5fxcMnLROEjMsD3H8KsAqs=
x-amz-request-id: 9CR3ZV08ZCV5P56E
last-modified: Fri, 09 Dec 2022 15:02:54 GMT
etag: "c8ecc394b852869c3f8d196e06a15b44"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 64529
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/1x1px.91e42db1c66c.png

23.32.85.11

200 OK

68 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/1x1px.91e42db1c66c.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Size
68 B (68 bytes)
Hash
91e42db1c66c0b276abf6234dc50b2eb
c1986af3c26609b8b7d8933f99c51c1a89e9ea6b
63ef318d96b5d0d0ceba6e04a4e622b1158335cdc67c49e27839132c6f655058

HTTP Headers

GET /staticfiles/assets/images/1x1px.91e42db1c66c.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: Kx4NN19fcbb/oMzDSvvnQLL0Xc127s0Bi+HgONPhwKu2NsYfSYv/LlDc+oQaksqG0pTym0KbE1E=
x-amz-request-id: EA0NY41KKVRWW0K5
last-modified: Fri, 09 Dec 2022 15:01:23 GMT
etag: "91e42db1c66c0b276abf6234dc50b2eb"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 68
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/components/download/googleplay/google-play--en.80d509fddb21.png

23.32.85.11

200 OK

4.1 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/components/download/googleplay/google-play--en.80d509fddb21.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 135 x 40, 8-bit/color RGBA, non-interlaced\012- data
Size
4.1 kB (4081 bytes)
Hash
80d509fddb2182e2f1ae810d1564350b
cf381f6397eaeee67de0c7688331df84de75ab94
c8b642906fd17e091c989e97daba4b86535f767b626985defa590ee16a9eeb30

HTTP Headers

GET /staticfiles/assets/images/components/download/googleplay/google-play--en.80d509fddb21.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: 9CK8YxTUjNjxlgH2PzyYsKxxMUV2oDn2KggvXgfL4EcJT5v102IOfTRm5PLqEqXw3A3oumT21sg=
x-amz-request-id: NH2KJ80SXFSSJQDQ
last-modified: Fri, 09 Dec 2022 15:01:26 GMT
etag: "80d509fddb2182e2f1ae810d1564350b"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 4081
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/components/download/appstore/app-store--en.b9be99738278.png

23.32.85.11

200 OK

2.1 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/components/download/appstore/app-store--en.b9be99738278.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 120 x 40, 8-bit/color RGBA, non-interlaced\012- data
Size
2.1 kB (2088 bytes)
Hash
b9be99738278f7a8b013b95357c44e41
0135cd915eb68954555be69a104f315715c4623e
c121fc6ebe5cfeb37fecb1da325083b1883f23f943dbcaef899fcc70d96be6e7

HTTP Headers

GET /staticfiles/assets/images/components/download/appstore/app-store--en.b9be99738278.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: HW2CV+WJQhFa/fvQGVnj8DThJ2M5Ozkk6GsHdxZdqQASd1wyuBuWUwGnFpVT4+CFIpmu9e5wrbM=
x-amz-request-id: 0SKR11D7ETCSDGZ1
last-modified: Fri, 09 Dec 2022 15:01:25 GMT
etag: "b9be99738278f7a8b013b95357c44e41"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 2088
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-light-mode.308d4dc03c30.svg

23.32.85.11

200 OK

477 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-light-mode.308d4dc03c30.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (320)
Size
477 B (477 bytes)
Hash
308d4dc03c30da17a579ca9db9fac5ac
1d57cb4a2f025bc48673a022ab58436c0edbdbb1
714bfd0ae2a42800162c5cd9c8f55c05f6694384f88d75316631ddc8d2310dca

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-light-mode.308d4dc03c30.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: 5pUlaTh8joHZqN7XwDOEMD5CMXFBdQO5wunVuepOGWk9nstRa2ft2LUSW9YSUbPnYPUjRdBW5lw=
x-amz-request-id: 6VYQN2XDNEAN5STJ
last-modified: Fri, 09 Dec 2022 15:02:55 GMT
etag: "308d4dc03c30da17a579ca9db9fac5ac"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 477
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-corner.d792a0b181e4.svg

23.32.85.11

200 OK

812 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-corner.d792a0b181e4.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (450)
Size
812 B (812 bytes)
Hash
d792a0b181e44d9775e447f0d7e7d275
775d998808bbe5089dc8c42d1e6a372ffb0e0989
143f96acaffbd6ba05c61b7d02f01f7d330711f608a3f13f17b07a4c11542c8f

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-corner.d792a0b181e4.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: SvgGm8GkH1vU1vA9Zc6XYUVaMbJg+FbAMdKI9r9HI1/kpbEIIb2kbtfC8doYbU0uwRtvXZCBBBY=
x-amz-request-id: 9CR5Z014TDS9W3B8
last-modified: Fri, 09 Dec 2022 15:02:55 GMT
etag: "d792a0b181e44d9775e447f0d7e7d275"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 812
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-twitch.1294239c3c6e.svg

23.32.85.11

200 OK

1.3 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-twitch.1294239c3c6e.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1170)
Size
1.3 kB (1329 bytes)
Hash
1294239c3c6e1ec6e7dbe8e97c202db1
889e5cad02c367442a6bdb831905cf8f731b1fab
682faa2826cf95b7245ee2d7cbd878e1146a77a25db9eb93308417386734ecbe

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-twitch.1294239c3c6e.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: hqp71ZANCjTWcfHvA1JovCNlkiLmLm76B5VAlfs6BatDuQUpyCB3AW75to7eEgsWvgqJG0axALc=
x-amz-request-id: 9CRFEN57PWWQW4J5
last-modified: Fri, 09 Dec 2022 15:02:55 GMT
etag: "1294239c3c6e1ec6e7dbe8e97c202db1"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 1329
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-discord.b89c9e46e12b.svg

23.32.85.11

200 OK

3.0 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-discord.b89c9e46e12b.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2837)
Size
3.0 kB (2996 bytes)
Hash
b89c9e46e12b6b665b21a72981cef30e
d66d0535175370c5c09f2c625bfa9c85ae43bcad
b661b7660ce27ff5cec761f127d54e55407a4c0fa077e2aa3144038162c76328

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-discord.b89c9e46e12b.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: sPdMUdnOviBIgjHj2SxjEY57+H9pXF0rl3EEjX55jdhG7O/+ZbbD9UuSM11xsgy9LEIUtEa737Q=
x-amz-request-id: 2JXNQB9TX4YZ0FG9
last-modified: Fri, 09 Dec 2022 15:02:55 GMT
etag: "b89c9e46e12b6b665b21a72981cef30e"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 2996
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--mobile@2x.dad38e627140.webp

23.32.85.11

200 OK

48 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--mobile@2x.dad38e627140.webp
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
RIFF (little-endian) data, Web/P image\012- data
Size
48 kB (47722 bytes)
Hash
dad38e627140ad0b2d578c37f20e2421
8acbfdfaec92bbc532540419c342b68eec9b9f69
154dc8f94994a9e922c00c3b7d2edc875e0a37810db8366754eabdb2cb92aae9

HTTP Headers

GET /staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--mobile@2x.dad38e627140.webp HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: 5DQkEwIDC86TUm23oOWpkvBsjKygZbmBsX32IdRHDRosdq/AEMyVOd5i6allfH6jOo9QovboYQ0=
x-amz-request-id: RJPK020D0QKHAHDC
last-modified: Fri, 09 Dec 2022 15:03:10 GMT
etag: "dad38e627140ad0b2d578c37f20e2421"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: binary/octet-stream
server: AmazonS3
content-length: 47722
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/feature-promo/awesome-features--gx.572511a1be17.jpg

23.32.85.11

200 OK

165 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/feature-promo/awesome-features--gx.572511a1be17.jpg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2732x1356, components 3\012- data
Size
165 kB (165152 bytes)
Hash
572511a1be17382b08d59dad1b7ab48b
a3aa662de9020b5e33d032e8652ab9762ecf207c
6b543e1ea575c545cd5e940afc7197583cd0862c4c34c75175cf5a61fc0d5997

HTTP Headers

GET /staticfiles/assets/images/sections/2021/feature-promo/awesome-features--gx.572511a1be17.jpg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: VH9q2lT7uxqn1VidK9paAnKKWhrdf3ItXL8xujlsQNZn9gY8J3qpiiJ4ULUIhCmwuFJT9Zf5w2I=
x-amz-request-id: T535259RXDMA3C40
last-modified: Fri, 09 Dec 2022 15:02:54 GMT
etag: "572511a1be17382b08d59dad1b7ab48b"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 165152
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--light-mode.8bc14025ea3a.png

23.32.85.11

200 OK

89 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--light-mode.8bc14025ea3a.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1189 x 724, 8-bit colormap, non-interlaced\012- data
Size
89 kB (89267 bytes)
Hash
8bc14025ea3a0ab18e7a17f14d5ade40
a2e6cbac201d150b15f720843c46e6c517cdd7ab
aa70e36bc8059277ec3ca5d0686e2203a59d9757dfc081a588fed56673021220

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--light-mode.8bc14025ea3a.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: NyE94s6ZNOhS+wbSoREcNyOsRHBtxEyqu9OBinYWDPr0eBEIwlR/4P8fBv3ROSLliNlcazSa/pw=
x-amz-request-id: GWZ3H4Y8RHX5MQNQ
last-modified: Fri, 09 Dec 2022 15:02:56 GMT
etag: "8bc14025ea3a0ab18e7a17f14d5ade40"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 89267
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-player.a42c0ae4ed76.svg

23.32.85.11

200 OK

761 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-player.a42c0ae4ed76.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (348)
Size
761 B (761 bytes)
Hash
a42c0ae4ed762da17de858861b96bef8
1018ab188a623312eaceed0424273677076847d8
be0f6f54d74b85baee6b555db2d5712e03777398321179218d910aac37ad9626

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-player.a42c0ae4ed76.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: IhNb4EOmPPHMuQrtb/tTLLWWtfByqcllk7YK21ytovbTuiePS/rbp8ZgLF+EZD33gXMRi1EZdBI=
x-amz-request-id: GWZ0EPAM6P74K096
last-modified: Fri, 09 Dec 2022 15:02:55 GMT
etag: "a42c0ae4ed762da17de858861b96bef8"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 761
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-messengers.6397357cb14f.svg

23.32.85.11

200 OK

1.7 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-messengers.6397357cb14f.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1511)
Size
1.7 kB (1669 bytes)
Hash
6397357cb14fcdfab3ffce4f712eb9ba
71154708c7b40499ecfb9ba7862b8622c64a0557
06339aa8c2995d399d0638b013663a45ef5832894fd867309d80123f907ba431

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-messengers.6397357cb14f.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: p4+5zxd82UHkfaEvQ0vYBGsSvXqrPKTqA6sMtqUsq6T7SesCUX+XFjSS1xuHMXfT68mHJghOwHA=
x-amz-request-id: T531P3M3A8S2D5E3
last-modified: Fri, 09 Dec 2022 15:02:55 GMT
etag: "6397357cb14fcdfab3ffce4f712eb9ba"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 1669
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--twitch.4f18d26dbbfe.png

23.32.85.11

200 OK

67 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--twitch.4f18d26dbbfe.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1177 x 675, 8-bit colormap, non-interlaced\012- data
Size
67 kB (67044 bytes)
Hash
4f18d26dbbfea1c39bcc4790d3ba5361
7f6b3efba188bcc2db3b8fb59d6c72f4d2d911dc
f7ea6f8265c161c9b37b13af614fc34e71788179269f89b55f5b556b1e8d479e

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--twitch.4f18d26dbbfe.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: cAds+WbdvAbtzZLyqc00GTM9RSD+p0oUDaDBzauHw6MGuG3aA6GddMNeuiwqrmYcSPDq+L7cI/Q=
x-amz-request-id: GWZ55Z88W1VMF58T
last-modified: Fri, 09 Dec 2022 15:02:56 GMT
etag: "4f18d26dbbfea1c39bcc4790d3ba5361"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 67044
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--home.a3a32725c8c8.webp

23.32.85.11

200 OK

42 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--home.a3a32725c8c8.webp
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
RIFF (little-endian) data, Web/P image\012- data
Size
42 kB (42264 bytes)
Hash
a3a32725c8c8d27c18b89017f2e0689c
74ec7afc3cff917b2e4d48065d076d301fc2855a
1ba8613ae178fe9531ce8879e1a79af856a03ffe30b83b0d4c6c4812a61098c1

HTTP Headers

GET /staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--home.a3a32725c8c8.webp HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: dHmoEc0sOmTANAy5jI0q3f7q6qpjPU9sTFT5jvFjygHeBJlL0HN9RdBPbyr71YrCggClXabTaVU=
x-amz-request-id: VQFQX052C84DBQSN
last-modified: Fri, 09 Dec 2022 15:03:10 GMT
etag: "a3a32725c8c8d27c18b89017f2e0689c"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: binary/octet-stream
server: AmazonS3
content-length: 42264
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-pinboards.48f6e4ad3256.svg

23.32.85.11

200 OK

761 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-pinboards.48f6e4ad3256.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (348)
Size
761 B (761 bytes)
Hash
48f6e4ad32561fcb78f69310bda2c451
4cefcfeea8cd1d479d20a81265f3a7a5166fd861
894a71dc143541bb1971f445b5ffbe414a6afe148d60a1f610d85275a7217cf8

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-pinboards.48f6e4ad3256.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: sfNSXGg52VdrEi3JDgB5npz2+ly2LgOOYBsjCMv7z8KLwhpItjtUOWxM2RqBkHKqJbnQHbVeYvA=
x-amz-request-id: 9CR2YRHZT7N2JAHA
last-modified: Fri, 09 Dec 2022 15:02:55 GMT
etag: "48f6e4ad32561fcb78f69310bda2c451"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 761
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-flow.9d1657372a18.svg

23.32.85.11

200 OK

316 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-flow.9d1657372a18.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
316 B (316 bytes)
Hash
9d1657372a18e601386840f55c06e0f7
effbda84c00b1fd5654d795029d5b2f750ebe5ee
f86719fdf19a15f80113732351a1821ec88695b7b72fde2d81b384cfd04c5147

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-flow.9d1657372a18.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: UpeOeiIwSvuBs/+EYj1Bx/cQ0iS1HKVaVQ8B037G7eKltgBaaIILo9/SgqJfT1mO8dy+7E/9/Ls=
x-amz-request-id: AMMB7C2V06F6QD6A
last-modified: Fri, 09 Dec 2022 15:02:55 GMT
etag: "9d1657372a18e601386840f55c06e0f7"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 316
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-fast-navigation.15eab96ff33c.svg

23.32.85.11

200 OK

280 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-fast-navigation.15eab96ff33c.svg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
280 B (280 bytes)
Hash
15eab96ff33c8893e11fe42ba67692dc
6362ed9717ec730eb7b457ada3f2b0163cf90256
9df873830d74272e4435fadd4e2294712c3dd24c0d19adb86d10bde656ac991a

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-fast-navigation.15eab96ff33c.svg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: fmRzUc8Oi6ts578W93qo/QPvbhuTo39lxTGwQlxAXXH19gXGSulbgSg+/qOHXN+m7GSM2bRta3A=
x-amz-request-id: GWZ445NR8ASZVZFR
last-modified: Fri, 09 Dec 2022 15:02:55 GMT
etag: "15eab96ff33c8893e11fe42ba67692dc"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 280
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

www.googleoptimize.com/optimize.js?id=GTM-5HKZ2H4

142.250.74.78

200 OK

43 kB

URL HTTP/2
www.googleoptimize.com/optimize.js?id=GTM-5HKZ2H4
IP
142.250.74.78:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1921)
Size
43 kB (42967 bytes)
Hash
519bd11c7d4e428cdc16636625a47cbb
108a5fcd60f2efcce2e9bedf82bb617575815b89
aa8e39c25a36f5889621b3f7d1a96871edca8920d6538568ba6d09a3aad671c0

HTTP Headers

GET /optimize.js?id=GTM-5HKZ2H4 HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 11 Dec 2022 13:36:44 GMT
expires: Sun, 11 Dec 2022 13:36:44 GMT
cache-control: private, max-age=900
last-modified: Sun, 11 Dec 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42967
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--gx-corner.e3f653e6eafc.png

23.32.85.11

200 OK

146 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--gx-corner.e3f653e6eafc.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1189 x 724, 8-bit colormap, non-interlaced\012- data
Size
146 kB (145852 bytes)
Hash
e3f653e6eafc96fee812c59429064dbb
4573c82a833ddb3c7ab5da3d1392ccc36d4fed1c
57a65439c5b71c3f0c3036eaa550ddf46451bec1f5165a1a7b29b275975c45f6

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--gx-corner.e3f653e6eafc.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: Ba8ph1g0yCsVgVJl1mTA3eF75q806mh6sK/Ts+uBYdq5ec0HSKFirA/P/4sBfdPbvCQunGSBjwA=
x-amz-request-id: GWZ15JKG3WGZKNRX
last-modified: Fri, 09 Dec 2022 15:02:56 GMT
etag: "e3f653e6eafc96fee812c59429064dbb"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 145852
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--discord.98f286b87cb3.png

23.32.85.11

200 OK

94 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--discord.98f286b87cb3.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1177 x 675, 8-bit colormap, non-interlaced\012- data
Size
94 kB (93820 bytes)
Hash
98f286b87cb36972083556679bd4ffb5
be31174905eb26c710792e5a42c3e0f4993f990c
ac40791b94a635950ec28cf246b5400c9188f2b95a0962d1e757633a60e3e1ec

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--discord.98f286b87cb3.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: bLWRSvmtJFsspg/ksS62PssP9Bv19R79DjZk1XuukakFh1GyOFvo1qzl6nv9ZUlWIzXA7ECQmIg=
x-amz-request-id: RNRYV42YYWVD14G0
last-modified: Fri, 09 Dec 2022 15:02:55 GMT
etag: "98f286b87cb36972083556679bd4ffb5"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 93820
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--player.2d9730bcfc30.png

23.32.85.11

200 OK

70 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--player.2d9730bcfc30.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1177 x 675, 8-bit colormap, non-interlaced\012- data
Size
70 kB (70255 bytes)
Hash
2d9730bcfc30c45ee308e90b3b771f40
21cf5ed07ced3485c712f851a089a2e868d1807b
e13f1ebc277bdba152bb58e35a06682fe279a003aaf65315754ffa406aa52866

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--player.2d9730bcfc30.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: LDx9utH59drNQUjWjLydpK3qm27khcyGv1OzxssC6caBqS2VWVqyGjn64CxZj0thQmZFEEKXxTw=
x-amz-request-id: T533BWCGEZXBT8CH
last-modified: Fri, 09 Dec 2022 15:02:56 GMT
etag: "2d9730bcfc30c45ee308e90b3b771f40"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 70255
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__mobile--hero-section@2x.105801afec18.webp

23.32.85.11

200 OK

110 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__mobile--hero-section@2x.105801afec18.webp
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
RIFF (little-endian) data, Web/P image\012- data
Size
110 kB (109740 bytes)
Hash
105801afec185e88bf124ad6d2618d02
2ff3cf42a92114f07d5db760caadb27e55bd42f8
12aefc6c5ebb73b66b498923fa49c4e6682c74008a0ac39b15cd8ba77c71f562

HTTP Headers

GET /staticfiles/assets/images/sections/2021/hero-top/gx/gx__mobile--hero-section@2x.105801afec18.webp HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: JCikaUsZ86Fw/4PnuoqVJm14YMionoX+3TxxXUSzts5eH1wRQIJCxCLQhervogy0RJpvsVzWCIw=
x-amz-request-id: E0BXWFT418C8VM2Q
last-modified: Fri, 09 Dec 2022 15:03:10 GMT
etag: "105801afec185e88bf124ad6d2618d02"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: binary/octet-stream
server: AmazonS3
content-length: 109740
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--messengers.d391f6cb6597.png

23.32.85.11

200 OK

62 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--messengers.d391f6cb6597.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1177 x 675, 8-bit colormap, non-interlaced\012- data
Size
62 kB (61583 bytes)
Hash
d391f6cb6597d71c6c59b50e4394594d
58898cb99301582c6ce30a8e38d7571575a6978b
00faaec247f4770836b845e7762535d4f66cb60cf79f608ce3ea11fd07be5d02

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--messengers.d391f6cb6597.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: UoOz5NLMVsVWUZZ/S1lr5SCr/WikcLDsMVDC+aXVAtSDQzT46xFzFTGHznarGIdkqFuefUO6MQw=
x-amz-request-id: T5347JFYGGYCDXY6
last-modified: Fri, 09 Dec 2022 15:02:56 GMT
etag: "d391f6cb6597d71c6c59b50e4394594d"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 61583
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-PRBZ42F

142.250.74.168

200 OK

108 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-PRBZ42F
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (50672)
Size
108 kB (107944 bytes)
Hash
49c9f99baa4ecd0fdc4f1d1c6e08c640
439f452f636a852f71252e4eebd71132e93df405
60c0185c60de5bbc8469075569956e9460cc5f6a8981fd0b4f81631be502256a

HTTP Headers

GET /gtm.js?id=GTM-PRBZ42F HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 11 Dec 2022 13:36:44 GMT
expires: Sun, 11 Dec 2022 13:36:44 GMT
cache-control: private, max-age=900
last-modified: Sun, 11 Dec 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 107944
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--fast-navigation.c8d3273a941b.png

23.32.85.11

200 OK

46 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--fast-navigation.c8d3273a941b.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 732 x 666, 8-bit colormap, non-interlaced\012- data
Size
46 kB (46294 bytes)
Hash
c8d3273a941bb6d86cdcb4715d51d316
054a7d9eb88f0320a4ff768e271f7a42869883e9
d27e3d8d8edd6429733970d55a75621bca7fdcde185e3a37729952db85fce496

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--fast-navigation.c8d3273a941b.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: 5X8PUZf0zoSve4iL1OjHuuGV0Ih8MenjOtXmmbvPYkaS6vH0mmLgZt1zsDaXrnIY19c29wOt3sg=
x-amz-request-id: 0SKYFXSY4BJDJXR2
last-modified: Fri, 09 Dec 2022 15:02:56 GMT
etag: "c8d3273a941bb6d86cdcb4715d51d316"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 46294
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--flow.b1416d774518.png

23.32.85.11

200 OK

92 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--flow.b1416d774518.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1177 x 697, 8-bit colormap, non-interlaced\012- data
Size
92 kB (91594 bytes)
Hash
b1416d77451842f5032b85c1c0edd933
ad576628be2723b4c5af04246f4438080dff70cb
5fd825ff2dfdf8a427c53a0548b5d730413e6357e2847038ca298d40c18a349d

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--flow.b1416d774518.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: /dPjCG9f70r24crSLhXZEzpzYCIkKcgDBK45oID224PyoN9HN927szsRoUut1hf37EsFF00r71I=
x-amz-request-id: 5229P9CHFMZ3MSB7
last-modified: Fri, 09 Dec 2022 15:02:56 GMT
etag: "b1416d77451842f5032b85c1c0edd933"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 91594
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--pinboards.e847bc384832.png

23.32.85.11

200 OK

115 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--pinboards.e847bc384832.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1177 x 675, 8-bit colormap, non-interlaced\012- data
Size
115 kB (115233 bytes)
Hash
e847bc384832792e93dccddf207f36ff
427c93356999dcf880951de0b5a3302748e8829f
7e08599def8a28a43b66943f7312c7d82f560eeeb1800ddf1865ebb507e5e2b4

HTTP Headers

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--pinboards.e847bc384832.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: G8iwIrM7Hgz+Oxr3ROhAA44Is3G+fznKxXCZR9P6a5G2UJWwjW08PKYUtQr0qsfWdhEzh0ANGf0=
x-amz-request-id: T53E7HP2F6172QE7
last-modified: Fri, 09 Dec 2022 15:02:56 GMT
etag: "e847bc384832792e93dccddf207f36ff"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 115233
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/theme-switcher/gx__color-theme--classic.27f61f65b2ce.png

23.32.85.11

200 OK

412 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/theme-switcher/gx__color-theme--classic.27f61f65b2ce.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 2378 x 1448, 8-bit colormap, non-interlaced\012- data
Size
412 kB (412407 bytes)
Hash
27f61f65b2ce85586550fe592d0f21e0
494849ea227b3c3e9b24729617c9d481ce91f603
117771cf06f8c025e2f67a556b3428758b3e7a2dc468d715efa4961cad92e052

HTTP Headers

GET /staticfiles/assets/images/sections/2021/theme-switcher/gx__color-theme--classic.27f61f65b2ce.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: thzjphCOIvnTEcL0dRsseRIFSeMZLgXRV5K/whbH6TULis1CosCo42OlP31sjtYKLJs1FmIoUkc=
x-amz-request-id: W8A0ANB22F4ERQ32
last-modified: Fri, 09 Dec 2022 15:03:45 GMT
etag: "27f61f65b2ce85586550fe592d0f21e0"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 412407
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/pages/gx2021/gaming-inspired-features-bg.71e6e11009a1.jpg

23.32.85.11

200 OK

331 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/pages/gx2021/gaming-inspired-features-bg.71e6e11009a1.jpg
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1366x678, components 3\012- data
Size
331 kB (330707 bytes)
Hash
71e6e11009a13616c07acd52708a42c0
bca22f04ba54d8002c18bebaf97125ef04d9de1c
2b830c1c722fc8fda761975eb666574f5eb29958c502b614b32a2501ab564071

HTTP Headers

GET /staticfiles/assets/images/pages/gx2021/gaming-inspired-features-bg.71e6e11009a1.jpg HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: UVRTo8qlWCLq6UxKA9pmNIFi698iyeJBkJPWlHcx9UVC6dIE9QLDXAXquw4mfUO7tBo5CE1PJUc=
x-amz-request-id: AVGTKMP4HFATHV9C
last-modified: Fri, 09 Dec 2022 15:02:40 GMT
etag: "71e6e11009a13616c07acd52708a42c0"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 330707
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-N7XDW7Z

142.250.74.168

200 OK

48 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-N7XDW7Z
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (5298)
Size
48 kB (47963 bytes)
Hash
2dc1be3691f6015f1292efae47df6741
b2f2673527e9ac9a993668eefe11da5c5ac618d0
db14dbf4330b5a20e9993db57bfd754373a50e81d828e8ea825c3383ba94a32c

HTTP Headers

GET /gtm.js?id=GTM-N7XDW7Z HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 11 Dec 2022 13:36:44 GMT
expires: Sun, 11 Dec 2022 13:36:44 GMT
cache-control: private, max-age=900
last-modified: Sun, 11 Dec 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 47963
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2bbc2a332da069e062c141b6755efb07
e7cb19a32562264a6858b73f90caff1fe7887a29
5fad6e64460cced764a9d312bc67cf858e5b28e5b2e107dc790bc5973f1ecd1e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 13:36:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
74d82b5960e5e12af402b01fa10b0829
4b80baad99eaafa43a8a78dbcd8e0df4141b3dd7
328abed4a3d2ea1d745c64c5c40925ae5efca25846d2e1c8457a030347473b51

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 13:36:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2bbc2a332da069e062c141b6755efb07
e7cb19a32562264a6858b73f90caff1fe7887a29
5fad6e64460cced764a9d312bc67cf858e5b28e5b2e107dc790bc5973f1ecd1e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 13:36:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn-production-opera-website.operacdn.com/staticfiles/3580eabc7ffc8362ce3e.44f63b5fe738.jpg?10bab98e7fe6

23.32.85.11

200 OK

333 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/3580eabc7ffc8362ce3e.44f63b5fe738.jpg?10bab98e7fe6
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=5894, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2736], baseline, precision 8, 2736x5894, components 3\012- data
Size
333 kB (332762 bytes)
Hash
44f63b5fe738bac08e1875c4602f5935
c36e3472261e19c4230dbedf1d39d3d1b20fbf82
13d50a7dd51b4d53ae7759d813c86633727115e086af563dbd9c3b978eb54d6e

HTTP Headers

GET /staticfiles/3580eabc7ffc8362ce3e.44f63b5fe738.jpg?10bab98e7fe6 HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.f6936dd37310.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: gmYmEIgiCqy5ZemNa4xFJYUUx92LTccV+8AayZqto4yQtxQujhGQ0bv5ma+zrMCrPUss/n/yI5I=
x-amz-request-id: Z6YDK5109898MG96
last-modified: Fri, 09 Dec 2022 15:00:42 GMT
etag: "44f63b5fe738bac08e1875c4602f5935"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 332762
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/098459c4b473cf0b98bd.ff298eae6d4b.svg?c2271d47b96e

23.32.85.11

200 OK

903 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/098459c4b473cf0b98bd.ff298eae6d4b.svg?c2271d47b96e
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (631)
Size
903 B (903 bytes)
Hash
ff298eae6d4b58dd53105f5934057dfd
3d8e26c3a460aca357ff6fe0576d6d986f257fd6
5c38b1f4d4183c82ef0f20b45ec1179853cd0a5edc8f28d7fa22c38e30e1aa34

HTTP Headers

GET /staticfiles/098459c4b473cf0b98bd.ff298eae6d4b.svg?c2271d47b96e HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.f6936dd37310.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: +re6bMlFQ2cyI2K9HMDHmqI5SwRlSeeJg030znKyE45jlsQbvKsNJy4RmC+R+aXh2NUmMc7Jnho=
x-amz-request-id: Z6Y8ZZEHAEDG5KGG
last-modified: Fri, 09 Dec 2022 15:00:39 GMT
etag: "ff298eae6d4b58dd53105f5934057dfd"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 903
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/7df98da1cf2f6ee9cd94.6c7243090568.svg?c2271d47b96e

23.32.85.11

200 OK

313 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/7df98da1cf2f6ee9cd94.6c7243090568.svg?c2271d47b96e
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
313 B (313 bytes)
Hash
6c7243090568377d3fd0a1617ff6f9e8
ed4c277780b619caadbe445920bd117c19f11d61
ca4349d4affc66594ee57eaafdc0cc0f2c86893cda82bcb29d80031a08560001

HTTP Headers

GET /staticfiles/7df98da1cf2f6ee9cd94.6c7243090568.svg?c2271d47b96e HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.f6936dd37310.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: caOb7+7m4QxbvGKO6VjkwVwZRE9/EiufD1rLhsOWfHsUFB0BjvJ5YxXFr4FI7hBzCnY1/kbtkBM=
x-amz-request-id: Z6Y0Z1XCFWV6SB3W
last-modified: Fri, 09 Dec 2022 15:00:48 GMT
etag: "6c7243090568377d3fd0a1617ff6f9e8"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 313
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/0e22678c7dcde0767402.00fd023076a3.svg?10bab98e7fe6

23.32.85.11

200 OK

314 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/0e22678c7dcde0767402.00fd023076a3.svg?10bab98e7fe6
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
314 B (314 bytes)
Hash
00fd023076a318efa2524ed7e8749adf
78505b0f17acdce6e50f56d12194644dcdd2f1e7
25167a3893b9f0d9945ae401c2f1a39def06a7e8fa7b69adb9b69ff588f6a6b3

HTTP Headers

GET /staticfiles/0e22678c7dcde0767402.00fd023076a3.svg?10bab98e7fe6 HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.f6936dd37310.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: /NKR+VdMIu9NGIIor/gWmMbklTFShVVivnFOU/32pE6i60/daQupaoCfp/jTpQDLf/8EliCVAHo=
x-amz-request-id: HSZEY1JZBQSKVQXS
last-modified: Fri, 09 Dec 2022 15:00:39 GMT
etag: "00fd023076a318efa2524ed7e8749adf"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 314
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/e3dd22e17cfd6b5c8151.17a59627c976.svg?c2271d47b96e

23.32.85.11

200 OK

1.6 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/e3dd22e17cfd6b5c8151.17a59627c976.svg?c2271d47b96e
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1443)
Size
1.6 kB (1595 bytes)
Hash
17a59627c976f0dd4c1a65023f677bcc
1a92c5ce81718a9a62ca46e71f2285523315e886
8b3de6575e969b75d53638e8d40717fa73ad85ef2ebc6ad04080116060a52a7b

HTTP Headers

GET /staticfiles/e3dd22e17cfd6b5c8151.17a59627c976.svg?c2271d47b96e HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.f6936dd37310.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: k0W702kDlZUjNLdU/6aw1r1Zu24+JJaW7HvohV5PBPrzcDhLRI6GE+euw0VLTnI0oAihxMZr5N0=
x-amz-request-id: HSZBHAZQTNREXMV0
last-modified: Fri, 09 Dec 2022 15:03:57 GMT
etag: "17a59627c976f0dd4c1a65023f677bcc"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 1595
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/18c29e0508b0f594389b.7624d1fea1cc.svg?c2271d47b96e

23.32.85.11

200 OK

720 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/18c29e0508b0f594389b.7624d1fea1cc.svg?c2271d47b96e
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (538)
Size
720 B (720 bytes)
Hash
7624d1fea1cce77c2ee117b788b03e1a
060ed0a46d61ee5311bd51e33d2626b619f43eb2
e4cffcca8616bcbebc274b51458e235f7b15cfceb6bc6ee0997e3d506e14a99a

HTTP Headers

GET /staticfiles/18c29e0508b0f594389b.7624d1fea1cc.svg?c2271d47b96e HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.f6936dd37310.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: hqHoj7fuW7rNShcDh4B7jSnQYxUuTFgeFnXey5d5pL9OudEIPaMFnqxpv5VmSOCFD9081P3VzKo=
x-amz-request-id: HSZD99HMEVX412JH
last-modified: Fri, 09 Dec 2022 15:00:40 GMT
etag: "7624d1fea1cce77c2ee117b788b03e1a"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 720
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/d9a4f53cf4619114d575.dc9f0582852c.svg?c2271d47b96e

23.32.85.11

200 OK

199 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/d9a4f53cf4619114d575.dc9f0582852c.svg?c2271d47b96e
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
199 B (199 bytes)
Hash
dc9f0582852c528b15eec2d982b7950c
1a0223d7da92444083348e54ff06e8d8a16ccd7f
cc982158f436a87b02539669d4e03e6d7eb408d633d98ced5a0de2d025421d94

HTTP Headers

GET /staticfiles/d9a4f53cf4619114d575.dc9f0582852c.svg?c2271d47b96e HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.f6936dd37310.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: sA5PNM+7y9rVbTf53PTWOhM0lPwNHKFfRLasuGU/pgO/L7cCxfxHpTwWpgB/jSeMcEmmxUIwcmA=
x-amz-request-id: HSZ2X687EX9BW4Y6
last-modified: Fri, 09 Dec 2022 15:03:57 GMT
etag: "dc9f0582852c528b15eec2d982b7950c"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 199
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/6ac3b1b2384a16da6bd0.797bada37d41.svg?10bab98e7fe6

23.32.85.11

200 OK

289 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/6ac3b1b2384a16da6bd0.797bada37d41.svg?10bab98e7fe6
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
289 B (289 bytes)
Hash
797bada37d414f7af636e9a9b3c565fa
7327310da6b0ba6ae8557196f7d020abba58a0f9
8f1fb4db42c83907bd12f03f51431a402a70e8fa2a18efe3285ad61c39e2412a

HTTP Headers

GET /staticfiles/6ac3b1b2384a16da6bd0.797bada37d41.svg?10bab98e7fe6 HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.f6936dd37310.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: dZ2PnHShp5GaiS2GIqgYGGC2cve4ZM0rNZUTwX58zatO6J6NxyidaQKSOEqdiUQtGZ7PfzFP6VY=
x-amz-request-id: 53QDD25YAFYP1X4N
last-modified: Fri, 09 Dec 2022 15:00:46 GMT
etag: "797bada37d414f7af636e9a9b3c565fa"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 289
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/c2a2cff7f6d5729f28f4.75084611d5e1.svg?10bab98e7fe6

23.32.85.11

200 OK

288 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/c2a2cff7f6d5729f28f4.75084611d5e1.svg?10bab98e7fe6
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
288 B (288 bytes)
Hash
75084611d5e1fb181a82b45ef0611a23
a11d0d14b3358250a1e1d47356fd921c2220f1c1
1b1d5a0dcc955ba923b5c5606b37bef48356ef93f3e0c1ca875f6b32aba99ece

HTTP Headers

GET /staticfiles/c2a2cff7f6d5729f28f4.75084611d5e1.svg?10bab98e7fe6 HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.f6936dd37310.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: qdLl5of8PRSVAQR6Fp2iulWIVLOHiJ2h2yrN7FRZyjXySfQtk6HfTlXp3u1Qhtb++SlkgS1OwGM=
x-amz-request-id: 53Q0KJZDKF8KX65F
last-modified: Fri, 09 Dec 2022 15:03:56 GMT
etag: "75084611d5e1fb181a82b45ef0611a23"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 288
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/ca10b4ba81ca6a0ecbfc.1ca90acc4730.svg?c2271d47b96e

23.32.85.11

200 OK

317 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/ca10b4ba81ca6a0ecbfc.1ca90acc4730.svg?c2271d47b96e
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
317 B (317 bytes)
Hash
1ca90acc4730203b0ef170a977a1c637
5163f7e10d7bd1b408022aeb65bf8d6436e8ebb5
51ce7c5980ff8bd3f3864c3eaaacb00c2a54d12e4dd16b2dd360554f0f3c1256

HTTP Headers

GET /staticfiles/ca10b4ba81ca6a0ecbfc.1ca90acc4730.svg?c2271d47b96e HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.f6936dd37310.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: QZnIoAqBkQcrgDJttx28ZkPC2P/ADPVR/zHMChGjTrgQOJKyepPybHbMYKnZS1Cs9bRlnVjIRVw=
x-amz-request-id: HSZE9Y20EWHBERV2
last-modified: Fri, 09 Dec 2022 15:03:56 GMT
etag: "1ca90acc4730203b0ef170a977a1c637"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 317
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/48f02833f0ae8d75d392.dae9ad1b8182.svg?c2271d47b96e

23.32.85.11

200 OK

812 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/48f02833f0ae8d75d392.dae9ad1b8182.svg?c2271d47b96e
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (649)
Size
812 B (812 bytes)
Hash
dae9ad1b81823c9cd4280d89b21c7d61
db3ddc56a61d39b4097dc6cbf73ea9b771a08e46
50923adbf480507f490a925bb589fe9389d3865ca40d15bc4a5ffb96e27df210

HTTP Headers

GET /staticfiles/48f02833f0ae8d75d392.dae9ad1b8182.svg?c2271d47b96e HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.f6936dd37310.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: naBSrocGDi2pIFTWErf4bWFT49KB4Q6g4Y1EF8a0R9DzmDT0z1gMUstMqJkR8H32CqqQW6FYPUk=
x-amz-request-id: HSZFR64G9EVBDFVE
last-modified: Fri, 09 Dec 2022 15:00:43 GMT
etag: "dae9ad1b81823c9cd4280d89b21c7d61"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 812
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/cca288e4bb33a3c6dec1.dab90a462c49.svg?c2271d47b96e

23.32.85.11

200 OK

176 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/cca288e4bb33a3c6dec1.dab90a462c49.svg?c2271d47b96e
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
176 B (176 bytes)
Hash
dab90a462c4945afb54399ed84a34ba2
ff9049f42ac86fda9608f8c94c61d754994d0976
ea2eb115d15d9c1b853ed968d6591f07f0c5d4b2dd1f2621a3999015d746b215

HTTP Headers

GET /staticfiles/cca288e4bb33a3c6dec1.dab90a462c49.svg?c2271d47b96e HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.f6936dd37310.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: tloXB9UQ39XPPw986Eh0rt7x51hZphf//NqxpY9hKgbml8GThJ4+l78DmrqBKZwy0ZhNGBylmFg=
x-amz-request-id: HSZ2DEHTQHK3HG70
last-modified: Fri, 09 Dec 2022 15:03:56 GMT
etag: "dab90a462c4945afb54399ed84a34ba2"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 176
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/4c15b45e6b34651fef8a.3dc055b4d554.svg?c2271d47b96e

23.32.85.11

200 OK

176 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/4c15b45e6b34651fef8a.3dc055b4d554.svg?c2271d47b96e
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
176 B (176 bytes)
Hash
3dc055b4d554da5ab1c7a7e324a5897e
00e912ee8e024c83c09f58ce845b1905a521cca2
dcdc184e3e1f5efa0479c60dc714a8d04d54d72a39ac34815a36dc4c60c9739d

HTTP Headers

GET /staticfiles/4c15b45e6b34651fef8a.3dc055b4d554.svg?c2271d47b96e HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-production-opera-website.operacdn.com/staticfiles/CACHE/css/output.f6936dd37310.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-amz-id-2: vLOm/aY+l6ZUm9ZS1RB0LYv+njp+nT2bcvQ/Z2aYv8HW2U/nq/1vSm4uyitDrmccryq3UOJrBkk=
x-amz-request-id: HSZ4H9FEHZCWJRSM
last-modified: Fri, 09 Dec 2022 15:00:43 GMT
etag: "3dc055b4d554da5ab1c7a7e324a5897e"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 176
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
784e0439ec6be7b4ca1312cd7cfae85b
18dad06db451855d3009aa3207d868895c577666
6369a3e27c976088b4dda95da9422fdb201979fedfcb4edf9db60089fd9ea53b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 13:36:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/chakrapetch/v9/cIflMapbsEk7TDLdtEz1BwkeJI91R5_F.woff2

216.58.207.227

200 OK

9.0 kB

URL HTTP/2
fonts.gstatic.com/s/chakrapetch/v9/cIflMapbsEk7TDLdtEz1BwkeJI91R5_F.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 8992, version 1.0\012- data
Size
9.0 kB (8992 bytes)
Hash
5ff3f8c069d7462a62ef1dada9c1406e
b3fbc64d485f06dfda7f1de61b0abd523f48a315
c6ccbd16dfaa5c559bd468ff0cca14f38e37100e35419a49cf4d3c6c23d2d163

HTTP Headers

GET /s/chakrapetch/v9/cIflMapbsEk7TDLdtEz1BwkeJI91R5_F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.opera.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8992
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Dec 2022 13:33:19 GMT
expires: Sat, 09 Dec 2023 13:33:19 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 21 Apr 2022 18:18:58 GMT
content-type: font/woff2
age: 173005
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
784e0439ec6be7b4ca1312cd7cfae85b
18dad06db451855d3009aa3207d868895c577666
6369a3e27c976088b4dda95da9422fdb201979fedfcb4edf9db60089fd9ea53b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 13:36:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.opera.com/api/geolocation/

18.196.164.184

200 OK

102 B

URL HTTP/2
www.opera.com/api/geolocation/
IP
18.196.164.184:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with no line terminators
Size
102 B (102 bytes)
Hash
8fddccad2d167f151cd234c5a572ea01
bb0b117d1117b73618c11e7bd511669ea6d78f45
da74941bee8050c64caa54baecf586a091fc35299055bb14d1869d5f18501aff

HTTP Headers

GET /api/geolocation/ HTTP/1.1
Host: www.opera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/gx?utm_content=2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241&utm_medium=pa&utm_campaign=PWN_NO&utm_id=2d9419b41aa44bd8a9efdfa6b7384440&utm_source=PWNgames&edition=std-1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sun, 11 Dec 2022 13:36:44 GMT
content-type: application/json
content-length: 102
content-language: en
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=3600
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=63072000; includeSubdomains; preload
content-security-policy: frame-ancestors 'self' https://*.opera.com; upgrade-insecure-requests;
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.gstatic.com/s/chakrapetch/v9/cIf6MapbsEk7TDLdtEz1BwkWn6pg.woff2

216.58.207.227

200 OK

8.9 kB

URL HTTP/2
fonts.gstatic.com/s/chakrapetch/v9/cIf6MapbsEk7TDLdtEz1BwkWn6pg.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 8912, version 1.0\012- data
Size
8.9 kB (8912 bytes)
Hash
8e4d50afa8b6e0eaa0aa76d40d4e92fa
73e1c8cde3ddef7eaa9feab943b749d7f3eba058
5452b4581af8fa4aa927665a835708f6298f75bfabeb99813ec585ec6bcfc494

HTTP Headers

GET /s/chakrapetch/v9/cIf6MapbsEk7TDLdtEz1BwkWn6pg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.opera.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8912
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Dec 2022 13:33:19 GMT
expires: Sat, 09 Dec 2023 13:33:19 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 21 Apr 2022 18:53:31 GMT
content-type: font/woff2
age: 173005
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
784e0439ec6be7b4ca1312cd7cfae85b
18dad06db451855d3009aa3207d868895c577666
6369a3e27c976088b4dda95da9422fdb201979fedfcb4edf9db60089fd9ea53b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 13:36:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/pages/client/welcomeGx/favicon/apple-touch-icon.cd7f66e4edc9.png

23.32.85.11

200 OK

4.7 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/pages/client/welcomeGx/favicon/apple-touch-icon.cd7f66e4edc9.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 180 x 180, 8-bit colormap, non-interlaced\012- data
Size
4.7 kB (4721 bytes)
Hash
cd7f66e4edc9eee902af0f50c1ca0236
031020df2108deb05f30a1dee9896dda7d39032b
026e5234ac8b8a77d9c322532e7beb3e91a8b5b2bb2ac1a17b9d2f0b45bae42a

HTTP Headers

GET /staticfiles/assets/images/pages/client/welcomeGx/favicon/apple-touch-icon.cd7f66e4edc9.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: d+NAAJntqMN2RCRTmxQZVdFXuizU61XY8JpDNrF6T/i2FWyuw9TOICTWbqcm15n3Ze5/Z/iBulU=
x-amz-request-id: 42DNE6QPEXT04MJC
last-modified: Fri, 09 Dec 2022 15:02:31 GMT
etag: "cd7f66e4edc9eee902af0f50c1ca0236"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 4721
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/assets/images/pages/client/welcomeGx/favicon/favicon-16x16.134fa45a8400.png

23.32.85.11

200 OK

1.0 kB

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/assets/images/pages/client/welcomeGx/favicon/favicon-16x16.134fa45a8400.png
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Size
1.0 kB (1015 bytes)
Hash
134fa45a8400d2f7246272b06d9b10de
3a9322216d1515d83b775510df41b2fd10e9d896
8abf10dee661f501e90bec03ec4501be24ca7a5a946b2e5658c8881fca6c5d46

HTTP Headers

GET /staticfiles/assets/images/pages/client/welcomeGx/favicon/favicon-16x16.134fa45a8400.png HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: XydqHrjtmfE4W8bq0WzVZV96iHZ07SfNXzj6M+mcz2HpF9JzS//qjeieFhwtbVqM0NZxH/UdoGA=
x-amz-request-id: P4BYEV840DENTGEV
last-modified: Fri, 09 Dec 2022 15:02:31 GMT
etag: "134fa45a8400d2f7246272b06d9b10de"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 1015
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

www.redditstatic.com/ads/pixel.js

151.101.1.140

200 OK

7.7 kB

URL HTTP/2
www.redditstatic.com/ads/pixel.js
IP
151.101.1.140:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (25224)
Size
7.7 kB (7722 bytes)
Hash
3528fd00b652f61a266eb584d96f4fcc
d89e16aa1323c6c4f1ed3941122020684a599361
77efa9f2ddfdca7a45df37bbcd22fdaeb7b97161a2acd87e21eb78bdeaad1332

HTTP Headers

GET /ads/pixel.js HTTP/1.1
Host: www.redditstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 16:45:46 GMT
etag: "3528fd00b652f61a266eb584d96f4fcc"
cache-control: public, max-age=60
content-encoding: gzip
content-type: application/javascript
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 11 Dec 2022 13:36:44 GMT
vary: Accept-Encoding,Origin
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true,  "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
content-length: 7722
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4ff941976d54fb3509d71d021fee5ec9
1d426b24ca16bb0043a838a9b066d44f23833468
bffa7b806f826caeee50cfc4a24b8ac1b1f9e7bc758cbb08c919c960bcaf082e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 13:36:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
b10da7c40fd218e052cac5276be21d93
723dfdd1320ae0949196715d2d073320c4e4753d
ad3a489d2aa632e337fda00c7851dda9ecfb04798f432b6d5656f976c7ab3f2e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6505
Cache-Control: max-age=124964
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 13:36:45 GMT
Etag: "639508a8-1d7"
Expires: Tue, 13 Dec 2022 00:19:29 GMT
Last-Modified: Sat, 10 Dec 2022 22:31:04 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471

www.google-analytics.com/analytics.js

142.250.74.110

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 11 Dec 2022 12:41:08 GMT
expires: Sun, 11 Dec 2022 14:41:08 GMT
cache-control: public, max-age=7200
age: 3337
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

bat.bing.com/bat.js

204.79.197.200

200 OK

12 kB

URL HTTP/2
bat.bing.com/bat.js
IP
204.79.197.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type
Unicode text, UTF-8 text, with very long lines (39124), with no line terminators
Size
12 kB (11460 bytes)
Hash
d925a898de26295fdebfc90203ef46fa
77dd3f5893b76530e08058d50e8f9aef017e80c7
8f4a413fec7e48f5ac290f4596fef33b6396e7fb31080ec0203a5ec817d140c8

HTTP Headers

GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11460
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 05 Dec 2022 17:15:50 GMT
accept-ranges: bytes
etag: "027e538cd8d91:0"
vary: Accept-Encoding
set-cookie: MUID=36EB9FEDEAE2641501458D9AEBB565AC; domain=.bing.com; expires=Fri, 05-Jan-2024 13:36:45 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 82D917AC922840068A93EC2AA54095C7 Ref B: OSL30EDGE0417 Ref C: 2022-12-11T13:36:44Z
date: Sun, 11 Dec 2022 13:36:44 GMT
X-Firefox-Spdy: h2

cdn.taboola.com/libtrc/unip/1410119/tfa.js

151.101.193.44

200 OK

18 kB

URL HTTP/2
cdn.taboola.com/libtrc/unip/1410119/tfa.js
IP
151.101.193.44:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (58978)
Size
18 kB (18121 bytes)
Hash
1f1f615e8c893b994474e8a32548971c
788036773b52c3e741bb91cdfdea65b8a78dba80
0e2562dc381aca6cecd9b28fec4b2df8cfc0c813527f653731428ac7d02bb245

HTTP Headers

GET /libtrc/unip/1410119/tfa.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 0rraVj5q60unm9sYltsTDqYw4Cs6zr5z7RYbWbetAGOY3uKEQiqN/ZSJTXoylJuT7zJ8Mhlc4Og=
x-amz-request-id: E2DQXKMXTN4NT7XX
x-amz-replication-status: PENDING
last-modified: Sun, 11 Dec 2022 11:42:22 GMT
etag: "d9e8d1952859c8a784da8ca150420cea"
x-amz-version-id: oKe3ZMdRKCNT97P6Wn8FRy0MhvBVpsDe
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Sun, 11 Dec 2022 13:36:45 GMT
via: 1.1 varnish
age: 6860
x-served-by: cache-bma1646-BMA
x-cache: HIT
x-cache-hits: 32
x-timer: S1670765805.026419,VS0,VE0
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 15
content-length: 18121
X-Firefox-Spdy: h2

connect.facebook.net/en_US/fbevents.js

31.13.72.12

200 OK

27 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64348)
Size
27 kB (27317 bytes)
Hash
ef019950fc6b50e9529e8b155a12106c
6afb749a3540fc752cf127ca7e517510098a4391
0b602212719a764b2b81f0253f2cec7e8470aae35eb22e95b5e9069b9e6706e8

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: +Xy5KAZTxgpv36QkU460O+ksNJ3h6npoy23FEMeyOoWIe1nXGfCUtlspxPHqh1Mki9zkRLaYsFqg6ZmJQ87xZQ==
priority: u=3,i
content-length: 27317
x-fb-trip-id: 1904183273
date: Sun, 11 Dec 2022 13:36:45 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
b10da7c40fd218e052cac5276be21d93
723dfdd1320ae0949196715d2d073320c4e4753d
ad3a489d2aa632e337fda00c7851dda9ecfb04798f432b6d5656f976c7ab3f2e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6505
Cache-Control: max-age=124964
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 13:36:45 GMT
Etag: "639508a8-1d7"
Expires: Tue, 13 Dec 2022 00:19:29 GMT
Last-Modified: Sat, 10 Dec 2022 22:31:04 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f69c32ac7b9825b1255fed72f425fe77
58e0fb4b9d5c835bb222a73b5fd939af76991485
7e61ce2f34c53d0730f5e88d26fb87651af80f1356ccb9ccc5a6efa2b255195c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 13:36:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

script.hotjar.com/modules.bc0a4c72d88d266f15af.js

143.204.55.96

200 OK

69 kB

URL HTTP/2
script.hotjar.com/modules.bc0a4c72d88d266f15af.js
IP
143.204.55.96:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text, with very long lines (48638)
Size
69 kB (68590 bytes)
Hash
2375e31c5dc0ca09d740bee5c1486c2b
d68ad5ffd79e99af40377945f2f41db8b6f00ad0
2197593e6c85391abbb9c0cba866862dc84bad91aedbe5d90d374e413504f5cb

HTTP Headers

GET /modules.bc0a4c72d88d266f15af.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
content-length: 68590
date: Wed, 07 Dec 2022 14:35:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "2375e31c5dc0ca09d740bee5c1486c2b"
last-modified: Wed, 07 Dec 2022 14:34:24 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RUHbY9VAfxpyrrY94EjYSHLvLHMbvYBJGGSXzMGUQA-ulDYNbol-Qw==
age: 342099
X-Firefox-Spdy: h2

11442918.fls.doubleclick.net/activityi;src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=4724997347716;gtm=2wgbu0;auiddc=1012696196.1670765803;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1?

142.250.74.38

200 OK

363 B

URL HTTP/2
11442918.fls.doubleclick.net/activityi;src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=4724997347716;gtm=2wgbu0;auiddc=1012696196.1670765803;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1?
IP
142.250.74.38:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (648), with no line terminators
Size
363 B (363 bytes)
Hash
e90f0f2564fead7f1a4744296ad2b66e
b0e59d8c93d91285fdd8c4e08e21351b3bbd9b07
7ca3a4abe86d92088d34d0e2950c7b45f9c5bb1966638ea153c07388265aac0c

HTTP Headers

GET /activityi;src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=4724997347716;gtm=2wgbu0;auiddc=1012696196.1670765803;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1? HTTP/1.1
Host: 11442918.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 11 Dec 2022 13:36:45 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 363
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 11-Dec-2022 13:51:45 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

bat.bing.com/p/action/5063952.js

204.79.197.200

204 No Content

0 B

URL HTTP/2
bat.bing.com/p/action/5063952.js
IP
204.79.197.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /p/action/5063952.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=3181E4882D5468AA31E4F6FF2C036952; domain=.bing.com; expires=Fri, 05-Jan-2024 13:36:45 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-powered-by: ARR/3.0
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: C4B0E9134A2648AD8CBDED49221F6772 Ref B: OSL30EDGE0417 Ref C: 2022-12-11T13:36:45Z
date: Sun, 11 Dec 2022 13:36:44 GMT
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-T18E1GTPQG&cid=1845996909.1670765803&gtm=2oebu0&aip=1&z=312615005

142.250.74.163

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-T18E1GTPQG&cid=1845996909.1670765803&gtm=2oebu0&aip=1&z=312615005
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-T18E1GTPQG&cid=1845996909.1670765803&gtm=2oebu0&aip=1&z=312615005 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 11 Dec 2022 13:36:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

alb.reddit.com/rp.gif?ts=1670765803423&id=t2_378pcjv6&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=f2bb80f2-9984-4efb-867f-406257cf6845&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8

151.101.129.140

200 OK

42 B

URL HTTP/2
alb.reddit.com/rp.gif?ts=1670765803423&id=t2_378pcjv6&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=f2bb80f2-9984-4efb-867f-406257cf6845&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8
IP
151.101.129.140:0
ASN
#54113 FASTLY

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /rp.gif?ts=1670765803423&id=t2_378pcjv6&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=f2bb80f2-9984-4efb-867f-406257cf6845&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8 HTTP/1.1
Host: alb.reddit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Varnish
retry-after: 0
cross-origin-resource-policy: cross-origin
content-type: image/gif
accept-ranges: bytes
date: Sun, 11 Dec 2022 13:36:45 GMT
via: 1.1 varnish
content-length: 42
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
633462c5bc4d631d0f28109676f1c4ef
5e971024687c599a40822616459355ab75a69aa6
464513db00c7735b28f8140ecd0a3a0641fce311481f736a946a1ed8e8e881d4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 13:36:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

s.yimg.com/wi/ytc.js

87.248.119.252

200 OK

6.4 kB

URL HTTP/2
s.yimg.com/wi/ytc.js
IP
87.248.119.252:0
ASN
#203220 Yahoo! UK Services Limited

File type
data
Size
6.4 kB (6401 bytes)
Hash
ec6cd00cdf6486027746a83ccb6a52d2
bb30349211cee9acaf17500bb239c2132fb2a11f
1da84bb8dfed2db4ea20619674c002bea2a82484aca9dfeefac1c742f94dcbe4

HTTP Headers

GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: SvVRj4gHFzRGOonY4104S9o6qCCEHEl0aPhkb13HrzWO7FLi3k/5BFmugoPUmfBVKpIHB+uVJRo=
x-amz-request-id: MMY9XXEZQ8C5G897
date: Sun, 11 Dec 2022 13:36:41 GMT
last-modified: Tue, 14 Jun 2022 12:21:31 GMT
x-amz-expiration: expiry-date="Thu, 20 Jul 2023 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "6a624022b5d271dcefb070b0b6670abc-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: .QD3nDfK79S8_ikLSJXTL23Tdis9tg0C
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 5
content-encoding: gzip
strict-transport-security: max-age=15552000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f69c32ac7b9825b1255fed72f425fe77
58e0fb4b9d5c835bb222a73b5fd939af76991485
7e61ce2f34c53d0730f5e88d26fb87651af80f1356ccb9ccc5a6efa2b255195c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 13:36:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-4118503-39&cid=1845996909.1670765803&jid=1268309010&gjid=1531383318&_gid=123526776.1670765804&_u=YADAAEAAAAAAACAAI~&z=519668987

108.177.14.156

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-4118503-39&cid=1845996909.1670765803&jid=1268309010&gjid=1531383318&_gid=123526776.1670765804&_u=YADAAEAAAAAAACAAI~&z=519668987
IP
108.177.14.156:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-4118503-39&cid=1845996909.1670765803&jid=1268309010&gjid=1531383318&_gid=123526776.1670765804&_u=YADAAEAAAAAAACAAI~&z=519668987 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Content-Type: text/plain
Content-Length: 0
Origin: https://www.opera.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://www.opera.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 11 Dec 2022 13:36:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html

143.204.55.105

200 OK

1.0 kB

URL HTTP/2
vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html
IP
143.204.55.105:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Size
1.0 kB (1035 bytes)
Hash
e0652b84b7b3b650769c759fc520c3f8
0b55d6e28613350c7f41b88f19e726e6751ad03b
94b4c240f83065223dcacdd3f8b69cb229d0616edc3e2041eef3e270d859fc3d

HTTP Headers

GET /box-5e66f98b4ee957db209dc6f63e3d59dd.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Wed, 23 Nov 2022 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "e0652b84b7b3b650769c759fc520c3f8"
last-modified: Wed, 23 Nov 2022 13:09:18 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1wTCNFb5DH-XpaOKp_i_A67ETT8jvzXZ5yNJzAblrsxGphunc3r7tQ==
age: 1556799
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
633462c5bc4d631d0f28109676f1c4ef
5e971024687c599a40822616459355ab75a69aa6
464513db00c7735b28f8140ecd0a3a0641fce311481f736a946a1ed8e8e881d4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 13:36:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a15de23015872f999e7b4fe1ff3aa1d2
10a51a76a6f0fb1c146077abb1f70b7e208a1751
26ddae77e27f7c29f921edc208816c5f5d2b10621d31bebd7c3fa3bd80e23a5a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 13:36:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

s.yimg.com/wi/config/10176867.json

87.248.119.252

200 OK

2 B

URL HTTP/2
s.yimg.com/wi/config/10176867.json
IP
87.248.119.252:0
ASN
#203220 Yahoo! UK Services Limited

File type
JSON data\012- , ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

HTTP Headers

GET /wi/config/10176867.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Origin: https://www.opera.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: QDPEGRS6PYA3F3K0
x-amz-id-2: Ae5yJrscUXUFiJqYZTBBv6MJSJrzZge+7hUAVHyWhdue5IROL4hOcGOtY6ef3FiqvZ0VsQ7Byrs=
content-type: application/json
date: Sun, 11 Dec 2022 13:35:22 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
cache-control: public,max-age=3600
content-length: 2
age: 83
strict-transport-security: max-age=15552000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
7064f6619ec94ac742915441ddf9be63
07864ef6316dfb3bfd38d602d2c38d237da8e61e
501f0b2261360de41668fde33f0518321c9335d5e1eab0f4a1014f75e061cca1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 13:36:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-4118503-39&cid=1845996909.1670765803&jid=1268309010&_u=YADAAEAAAAAAACAAI~&z=1325255899

142.250.74.164

200 OK

42 B

URL HTTP/2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-4118503-39&cid=1845996909.1670765803&jid=1268309010&_u=YADAAEAAAAAAACAAI~&z=1325255899
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-4118503-39&cid=1845996909.1670765803&jid=1268309010&_u=YADAAEAAAAAAACAAI~&z=1325255899 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 11 Dec 2022 13:36:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
7064f6619ec94ac742915441ddf9be63
07864ef6316dfb3bfd38d602d2c38d237da8e61e
501f0b2261360de41668fde33f0518321c9335d5e1eab0f4a1014f75e061cca1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 13:36:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.facebook.com/tr/?id=1123357797681867&ev=PageView&dl=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1&rl=&if=false&ts=1670765803790&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1670765803789.1151834311&it=1670765803641&coo=false&exp=a1&rqm=GET

31.13.72.36

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=1123357797681867&ev=PageView&dl=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1&rl=&if=false&ts=1670765803790&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1670765803789.1151834311&it=1670765803641&coo=false&exp=a1&rqm=GET
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=1123357797681867&ev=PageView&dl=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1&rl=&if=false&ts=1670765803790&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1670765803789.1151834311&it=1670765803641&coo=false&exp=a1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sun, 11 Dec 2022 13:36:45 GMT
X-Firefox-Spdy: h2

adservice.google.com/ddm/fls/i/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=4724997347716;gtm=2wgbu0;auiddc=1012696196.1670765803;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1

142.250.74.130

200 OK

366 B

URL HTTP/2
adservice.google.com/ddm/fls/i/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=4724997347716;gtm=2wgbu0;auiddc=1012696196.1670765803;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1
IP
142.250.74.130:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (647), with no line terminators
Size
366 B (366 bytes)
Hash
aa0bb26028089ceaed7ac6efe95c9640
540c5855d34ad5416bb78123d533b03b34dee81e
b2f57cd7c65cb20c29c304870fa8a129a42309b9b12f9ab3d0fcf252ea47a1b6

HTTP Headers

GET /ddm/fls/i/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=4724997347716;gtm=2wgbu0;auiddc=1012696196.1670765803;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1 HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11442918.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 11 Dec 2022 13:36:45 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 366
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

sp.analytics.yahoo.com/sp.pl?a=10000&d=Sun%2C%2011%20Dec%202022%2013%3A36%3A43%20GMT&n=0&b=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&.yp=10176867&f=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1&enc=UTF-8&yv=1.13.0&tagmgr=gtm

212.82.100.181

200 OK

43 B

URL HTTP/2
sp.analytics.yahoo.com/sp.pl?a=10000&d=Sun%2C%2011%20Dec%202022%2013%3A36%3A43%20GMT&n=0&b=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&.yp=10176867&f=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1&enc=UTF-8&yv=1.13.0&tagmgr=gtm
IP
212.82.100.181:0
ASN
#34010 Yahoo! UK Services Limited

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
bff56ce49dd485d195fdfa0a02342568
74fb4071deab7d3ab083562067b735df32c43397
0e4b1e428a2198ef747010c094101c257b568a97cdcc0f31ed5e9868cc835b39

HTTP Headers

GET /sp.pl?a=10000&d=Sun%2C%2011%20Dec%202022%2013%3A36%3A43%20GMT&n=0&b=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&.yp=10176867&f=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1&enc=UTF-8&yv=1.13.0&tagmgr=gtm HTTP/1.1
Host: sp.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 11 Dec 2022 13:36:45 GMT
expires: Sun, 11 Dec 2022 13:36:45 GMT
pragma: no-cache
cache-control: no-cache, private, must-revalidate
content-type: image/gif
accept-ranges: bytes
content-length: 43
server: ATS
age: 0
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: sandbox; default-src 'self'; script-src 'none'; object-src 'none'; report-uri http://csp.yahoo.com/beacon/csp?src=generic
set-cookie: A3=d=AQABBO3clWMCEP4XQQ2PZii6wv5IVh2MB9YFEgEBAQEul2OfYwAAAAAA_eMAAA&S=AQAAArd6a6KVXzkVN3EV-dTCYts; Expires=Mon, 11 Dec 2023 19:36:45 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2

adservice.google.no/ddm/fls/i/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=4724997347716;gtm=2wgbu0;auiddc=1012696196.1670765803;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1

142.250.74.34

302 Found

0 B

URL HTTP/2
adservice.google.no/ddm/fls/i/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=4724997347716;gtm=2wgbu0;auiddc=1012696196.1670765803;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1
IP
142.250.74.34:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ddm/fls/i/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=4724997347716;gtm=2wgbu0;auiddc=1012696196.1670765803;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1 HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 11 Dec 2022 13:36:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://11442918.fls.doubleclick.net/ddm/fls/r/src=11442918;type=ogx_corp;cat=ogx_page;ord=1;num=4724997347716;gtm=2wgbu0;auiddc=1012696196.1670765803;~oref=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-T18E1GTPQG&gtm=2oebu0&_p=1203580244&_gaz=1&cid=1845996909.1670765803&ul=en-us&sr=1280x1024&_s=1&sid=1670765803&sct=1&seg=0&dl=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1&dt=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&en=page_view&_fv=1&_nsi=1&_ss=1

216.239.34.36

204 No Content

0 B

URL HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-T18E1GTPQG&gtm=2oebu0&_p=1203580244&_gaz=1&cid=1845996909.1670765803&ul=en-us&sr=1280x1024&_s=1&sid=1670765803&sct=1&seg=0&dl=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1&dt=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&en=page_view&_fv=1&_nsi=1&_ss=1
IP
216.239.34.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-T18E1GTPQG&gtm=2oebu0&_p=1203580244&_gaz=1&cid=1845996909.1670765803&ul=en-us&sr=1280x1024&_s=1&sid=1670765803&sct=1&seg=0&dl=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1&dt=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Origin: https://www.opera.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://www.opera.com
date: Sun, 11 Dec 2022 13:36:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
3c75cacb86b52013720b0dd3d53fc710
71e076b749e03d505a91cc9ad4b324e18c37a67e
5d9446fcf12cd310c821c224e6cb30615f2ca28f6dbf7787263736d976e2dc23

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 13:36:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googleadservices.com/pagead/conversion.js

142.250.74.130

200 OK

17 kB

URL HTTP/2
www.googleadservices.com/pagead/conversion.js
IP
142.250.74.130:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2772)
Size
17 kB (16823 bytes)
Hash
b7bfb38de42aafcf20ec09cb43f51b2e
2329a485f1e5f5a2fdd8158d335fdd5a2683be55
6391614bdd92fbab896b523130690059cea5159fb598ae07fd89e5c46a2a2da0

HTTP Headers

GET /pagead/conversion.js HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11442918.fls.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sun, 11 Dec 2022 13:36:45 GMT
expires: Sun, 11 Dec 2022 13:36:45 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 6351308751113588399
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 16823
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
289226b62d8042b69d9e40a017dcd2ee
fd659cb6511731ff6d06df61b5430a2d126bdd8e
aff5359649ce1253d942d2aac6ea84cd98328df5ff273aa8ef7d843bc0c6b349

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 13:36:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googleadservices.com/pagead/conversion/10840821485/?random=1670765804327&cv=9&fst=1670765804327&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D4724997347716%3Bgtm%3D2wgbu0%3Bauiddc%3D1012696196.1670765803%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx%253Futm_content%253D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%2526utm_medium%253Dpa%2526utm_campaign%253DPWN_NO%2526utm_id%253D2d9419b41aa44bd8a9efdfa6b7384440%2526utm_source%253DPWNgames%2526edition%253Dstd-1&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4

142.250.74.130

200 OK

1.3 kB

URL HTTP/2
www.googleadservices.com/pagead/conversion/10840821485/?random=1670765804327&cv=9&fst=1670765804327&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D4724997347716%3Bgtm%3D2wgbu0%3Bauiddc%3D1012696196.1670765803%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx%253Futm_content%253D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%2526utm_medium%253Dpa%2526utm_campaign%253DPWN_NO%2526utm_id%253D2d9419b41aa44bd8a9efdfa6b7384440%2526utm_source%253DPWNgames%2526edition%253Dstd-1&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4
IP
142.250.74.130:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2186), with no line terminators
Size
1.3 kB (1266 bytes)
Hash
f69ff500be3c9e6d267765d91c2b8812
673d52c8bbf2e76ed5d4e2a806eebf93d08ec04f
85dcc2e8b388c5fbccd9c123f2c40764c2181d10d036839f32bb423fce433782

HTTP Headers

GET /pagead/conversion/10840821485/?random=1670765804327&cv=9&fst=1670765804327&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D4724997347716%3Bgtm%3D2wgbu0%3Bauiddc%3D1012696196.1670765803%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx%253Futm_content%253D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%2526utm_medium%253Dpa%2526utm_campaign%253DPWN_NO%2526utm_id%253D2d9419b41aa44bd8a9efdfa6b7384440%2526utm_source%253DPWNgames%2526edition%253Dstd-1&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4 HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11442918.fls.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 11 Dec 2022 13:36:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1266
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

googleads.g.doubleclick.net/pagead/viewthroughconversion/10840821485/?random=588074388&cv=9&fst=1670765804327&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D4724997347716%3Bgtm%3D2wgbu0%3Bauiddc%3D1012696196.1670765803%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx%253Futm_content%253D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%2526utm_medium%253Dpa%2526utm_campaign%253DPWN_NO%2526utm_id%253D2d9419b41aa44bd8a9efdfa6b7384440%2526utm_source%253DPWNgames%2526edition%253Dstd-1&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=7dyVY_OZNZePygWC_5qYCQ&sscte=1&crd=

216.58.207.226

302 Found

42 B

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/10840821485/?random=588074388&cv=9&fst=1670765804327&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D4724997347716%3Bgtm%3D2wgbu0%3Bauiddc%3D1012696196.1670765803%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx%253Futm_content%253D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%2526utm_medium%253Dpa%2526utm_campaign%253DPWN_NO%2526utm_id%253D2d9419b41aa44bd8a9efdfa6b7384440%2526utm_source%253DPWNgames%2526edition%253Dstd-1&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=7dyVY_OZNZePygWC_5qYCQ&sscte=1&crd=
IP
216.58.207.226:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/viewthroughconversion/10840821485/?random=588074388&cv=9&fst=1670765804327&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D4724997347716%3Bgtm%3D2wgbu0%3Bauiddc%3D1012696196.1670765803%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx%253Futm_content%253D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%2526utm_medium%253Dpa%2526utm_campaign%253DPWN_NO%2526utm_id%253D2d9419b41aa44bd8a9efdfa6b7384440%2526utm_source%253DPWNgames%2526edition%253Dstd-1&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=7dyVY_OZNZePygWC_5qYCQ&sscte=1&crd= HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11442918.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 11 Dec 2022 13:36:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://www.google.com/pagead/1p-conversion/10840821485/?random=588074388&cv=9&fst=1670765804327&num=1&npa=1&label=OfG4CKuX_qMDEO2dp7Eo&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11442918.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11442918%3Btype%3Dogx_corp%3Bcat%3Dogx_page%3Bord%3D1%3Bnum%3D4724997347716%3Bgtm%3D2wgbu0%3Bauiddc%3D1012696196.1670765803%3B~oref%3Dhttps%253A%252F%252Fwww.opera.com%252Fgx%253Futm_content%253D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%2526utm_medium%253Dpa%2526utm_campaign%253DPWN_NO%2526utm_id%253D2d9419b41aa44bd8a9efdfa6b7384440%2526utm_source%253DPWNgames%2526edition%253Dstd-1&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=7dyVY_OZNZePygWC_5qYCQ&random=1790628342&resp=GooglemKTybQhCsO
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 11-Dec-2022 13:51:45 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3D6307d578-1bcb-d937-d114-a076ed15412b%26type%3D55%26m%3D7&ex-fch=416613&ex-src=https://www.opera.com/gx&ex-hargs=v%3D1.0%3Bc%3D586912600239599593%3Bp%3D6307D578-1BCB-D937-D114-A076ED15412B&cb=910693777103084200

52.46.151.131

302 Found

0 B

URL HTTP/1.1
s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3D6307d578-1bcb-d937-d114-a076ed15412b%26type%3D55%26m%3D7&ex-fch=416613&ex-src=https://www.opera.com/gx&ex-hargs=v%3D1.0%3Bc%3D586912600239599593%3Bp%3D6307D578-1BCB-D937-D114-A076ED15412B&cb=910693777103084200
IP
52.46.151.131:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /iu3?d=generic&ex-fargs=%3Fid%3D6307d578-1bcb-d937-d114-a076ed15412b%26type%3D55%26m%3D7&ex-fch=416613&ex-src=https://www.opera.com/gx&ex-hargs=v%3D1.0%3Bc%3D586912600239599593%3Bp%3D6307D578-1BCB-D937-D114-A076ED15412B&cb=910693777103084200 HTTP/1.1
Host: s.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11442918.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Server: Server
Date: Sun, 11 Dec 2022 13:36:46 GMT
Content-Length: 0
Connection: keep-alive
x-amz-rid: QVSNMQMHK7KYWQESX4D7
Set-Cookie: ad-id=A3sG58tqy0iskMFjpXo3jAU|t; Domain=.amazon-adsystem.com; Expires=Sat, 01-Jul-2023 13:36:46 GMT; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Location: https://s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3D6307d578-1bcb-d937-d114-a076ed15412b%26type%3D55%26m%3D7&ex-fch=416613&ex-src=https://www.opera.com/gx&ex-hargs=v%3D1.0%3Bc%3D586912600239599593%3Bp%3D6307D578-1BCB-D937-D114-A076ED15412B&cb=910693777103084200&dcc=t
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload

52.46.151.131

200 OK

65 B

URL HTTP/1.1
s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3D6307d578-1bcb-d937-d114-a076ed15412b%26type%3D55%26m%3D7&ex-fch=416613&ex-src=https://www.opera.com/gx&ex-hargs=v%3D1.0%3Bc%3D586912600239599593%3Bp%3D6307D578-1BCB-D937-D114-A076ED15412B&cb=910693777103084200&dcc=t
IP
52.46.151.131:0
ASN
#16509 AMAZON-02

File type
HTML document, ASCII text
Size
65 B (65 bytes)
Hash
22fdf49482d8200e8f305bbe262eff14
f254bd4053267c2cf46675613e689016d8b7f775
115d83ece49fd1c5769409aab9d78572eed86cd38a0556b4cdeeac82c83091d3

HTTP Headers

GET /iu3?d=generic&ex-fargs=%3Fid%3D6307d578-1bcb-d937-d114-a076ed15412b%26type%3D55%26m%3D7&ex-fch=416613&ex-src=https://www.opera.com/gx&ex-hargs=v%3D1.0%3Bc%3D586912600239599593%3Bp%3D6307D578-1BCB-D937-D114-A076ED15412B&cb=910693777103084200&dcc=t HTTP/1.1
Host: s.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://11442918.fls.doubleclick.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Server
Date: Sun, 11 Dec 2022 13:36:46 GMT
Content-Type: text/html;charset=ISO-8859-1
Content-Length: 65
Connection: keep-alive
x-amz-rid: 6VHFRA2KNPE0HG2T8RJ9
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload

trc-events.taboola.com/1410119/log/3/unip?en=pre_d_eng_tb&tos=1572&scd=4&ssd=1&est=1670765803571&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1670765805146&vi=1670765803569&ri=49aa4696d1089ff1ba6690a05fa98bda&ref=null&cv=20221211-7-RELEASE&item-url=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1&ler=other

141.226.228.48

204 No Content

0 B

URL HTTP/2
trc-events.taboola.com/1410119/log/3/unip?en=pre_d_eng_tb&tos=1572&scd=4&ssd=1&est=1670765803571&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1670765805146&vi=1670765803569&ri=49aa4696d1089ff1ba6690a05fa98bda&ref=null&cv=20221211-7-RELEASE&item-url=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1&ler=other
IP
141.226.228.48:0
ASN
#200478 Taboola.com ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /1410119/log/3/unip?en=pre_d_eng_tb&tos=1572&scd=4&ssd=1&est=1670765803571&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1670765805146&vi=1670765803569&ri=49aa4696d1089ff1ba6690a05fa98bda&ref=null&cv=20221211-7-RELEASE&item-url=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1&ler=other HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Origin: https://www.opera.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
server: nginx
date: Sun, 11 Dec 2022 13:36:46 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.opera.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Chakra+Petch:400,700&subset=latin-ext

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Chakra+Petch:400,700&subset=latin-ext
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Chakra+Petch:400,700&subset=latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 11 Dec 2022 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

static.hotjar.com/c/hotjar-445451.js?sv=7

143.204.55.84

200 OK

0 B

URL HTTP/2
static.hotjar.com/c/hotjar-445451.js?sv=7
IP
143.204.55.84:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /c/hotjar-445451.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Sun, 11 Dec 2022 13:36:34 GMT
cache-control: max-age=60
etag: W/99babca0afbe17574bf953845fb9a662
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cexo5V9GLgx1-tzD0TAoOBFjtq0WMtsAm4MFq89mfzuUbeMFQcdY8Q==
age: 20
X-Firefox-Spdy: h2

trc.taboola.com/1410119/trc/3/json?tim=1670765803576&data=%7B%22id%22%3A319%2C%22ii%22%3A%22%2Fgx%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1670765803569%2C%22cv%22%3A%2220221211-7-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.opera.com%2Fgx%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Doperasoftwarees-operasoftwarees-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1670765803575%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1%22%2C%22tos%22%3A2%2C%22ssd%22%3A1%2C%22scd%22%3A4%2C%22ler%22%3A%22other%22%2C%22supv%22%3Atrue%7D%7D&pubit=i

151.101.193.44

200 OK

0 B

URL HTTP/2
trc.taboola.com/1410119/trc/3/json?tim=1670765803576&data=%7B%22id%22%3A319%2C%22ii%22%3A%22%2Fgx%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1670765803569%2C%22cv%22%3A%2220221211-7-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.opera.com%2Fgx%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Doperasoftwarees-operasoftwarees-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1670765803575%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1%22%2C%22tos%22%3A2%2C%22ssd%22%3A1%2C%22scd%22%3A4%2C%22ler%22%3A%22other%22%2C%22supv%22%3Atrue%7D%7D&pubit=i
IP
151.101.193.44:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /1410119/trc/3/json?tim=1670765803576&data=%7B%22id%22%3A319%2C%22ii%22%3A%22%2Fgx%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1670765803569%2C%22cv%22%3A%2220221211-7-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.opera.com%2Fgx%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Doperasoftwarees-operasoftwarees-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1670765803575%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_content%3D2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241%26utm_medium%3Dpa%26utm_campaign%3DPWN_NO%26utm_id%3D2d9419b41aa44bd8a9efdfa6b7384440%26utm_source%3DPWNgames%26edition%3Dstd-1%22%2C%22tos%22%3A2%2C%22ssd%22%3A1%2C%22scd%22%3A4%2C%22ler%22%3A%22other%22%2C%22supv%22%3Atrue%7D%7D&pubit=i HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Sun, 11 Dec 2022 13:36:45 GMT
via: 1.1 varnish
x-served-by: cache-bma1646-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1670765805.139675,VS0,VE101
vary: Accept-Encoding
x-vcl-time-ms: 101
X-Firefox-Spdy: h2

blue.redredirector.com/click?pid=150&offer_id=12346&sub1=Cdbe429a58a642&sub2=150_2476&sub4=0

34.141.179.97

200 OK

0 B

URL HTTP/2
blue.redredirector.com/click?pid=150&offer_id=12346&sub1=Cdbe429a58a642&sub2=150_2476&sub4=0
IP
34.141.179.97:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /click?pid=150&offer_id=12346&sub1=Cdbe429a58a642&sub2=150_2476&sub4=0 HTTP/1.1
Host: blue.redredirector.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 11 Dec 2022 13:36:42 GMT
content-type: text/html; charset=utf-8
x-adjust-use-original-forwarded-for: 1
set-cookie: afclick=6395dceaa134710001c00ded; expires=Mon, 11 Dec 2023 13:36:42 GMT; secure; SameSite=None
afoffers={"12346":1670765802}; expires=Mon, 11 Dec 2023 13:36:42 GMT; secure; SameSite=None
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

cdn-production-opera-website.operacdn.com/staticfiles/CACHE/js/output.12fc4e34ca68.js

23.32.85.11

200 OK

0 B

URL HTTP/2
cdn-production-opera-website.operacdn.com/staticfiles/CACHE/js/output.12fc4e34ca68.js
IP
23.32.85.11:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /staticfiles/CACHE/js/output.12fc4e34ca68.js HTTP/1.1
Host: cdn-production-opera-website.operacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.opera.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: W/WB/tvGZVMXz2N8oHR8eCCQaV+ETBYmosxO7q742PRWoF/c+ZMH91a5x++B0F7WmrUBcS8s/fM=
x-amz-request-id: XCBDNNJDP0PK0AX7
last-modified: Fri, 09 Dec 2022 15:01:19 GMT
etag: "6871ee67a40ba101c7e05549b99273e1"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Mon, 11 Dec 2023 13:36:44 GMT
date: Sun, 11 Dec 2022 13:36:44 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

www.opera.com/gx?utm_content=2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241&utm_medium=pa&utm_campaign=PWN_NO&utm_id=2d9419b41aa44bd8a9efdfa6b7384440&utm_source=PWNgames&edition=std-1

18.196.164.184

200 OK

0 B

URL HTTP/2
www.opera.com/gx?utm_content=2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241&utm_medium=pa&utm_campaign=PWN_NO&utm_id=2d9419b41aa44bd8a9efdfa6b7384440&utm_source=PWNgames&edition=std-1
IP
18.196.164.184:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /gx?utm_content=2184_1402_3612ecfe-0ec4-4830-b4cf-bbf36379c241&utm_medium=pa&utm_campaign=PWN_NO&utm_id=2d9419b41aa44bd8a9efdfa6b7384440&utm_source=PWNgames&edition=std-1 HTTP/1.1
Host: www.opera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 11 Dec 2022 13:36:44 GMT
content-type: text/html; charset=utf-8
content-language: en
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=3600
content-encoding: gzip
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=63072000; includeSubdomains; preload
content-security-policy: frame-ancestors 'self' https://*.opera.com; upgrade-insecure-requests;
accept-ranges: bytes
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (38)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP