b5efc9899f7c0456c24d512634fd439727419e500226f07a80bb3561a7b1f16a

Analysis

max time kernel
149s
max time network
155s
platform
windows10-2004_x64
resource
win10v2004-20240221-en
resource tags

arch:x64arch:x86image:win10v2004-20240221-enlocale:en-usos:windows10-2004-x64system
submitted
25/02/2024, 07:51 UTC

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

a340aba154ebd8594db789b5558b2f04.html
Size

430B
MD5

a340aba154ebd8594db789b5558b2f04
SHA1

0454c2488fbe4d1e55f96e617719ee51e76f6ed7
SHA256

b5efc9899f7c0456c24d512634fd439727419e500226f07a80bb3561a7b1f16a
SHA512

12d6078e010850390ccc2eb25b8a3cee0850fc917a8fd5fafe48bd5f4ac6fa277231bab75df9dbef1026cff5c741da20e62629c94ec9a2380024754bc1be0962

Score

1^/10

Malware Config

Signatures

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe

Suspicious behavior: EnumeratesProcesses 10 IoCs

pid	Process
4652	msedge.exe
4652	msedge.exe
1132	msedge.exe
1132	msedge.exe
4180	identity_helper.exe
4180	identity_helper.exe
4252	msedge.exe
4252	msedge.exe
4252	msedge.exe
4252	msedge.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 11 IoCs

pid	Process
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe

Suspicious use of FindShellTrayWindow 25 IoCs

pid	Process
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe
1132	msedge.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 1132 wrote to memory of 2488	1132	msedge.exe	83
PID 1132 wrote to memory of 2488	1132	msedge.exe	83
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4512	1132	msedge.exe	86
PID 1132 wrote to memory of 4652	1132	msedge.exe	87
PID 1132 wrote to memory of 4652	1132	msedge.exe	87
PID 1132 wrote to memory of 3780	1132	msedge.exe	88
PID 1132 wrote to memory of 3780	1132	msedge.exe	88
PID 1132 wrote to memory of 3780	1132	msedge.exe	88
PID 1132 wrote to memory of 3780	1132	msedge.exe	88
PID 1132 wrote to memory of 3780	1132	msedge.exe	88
PID 1132 wrote to memory of 3780	1132	msedge.exe	88
PID 1132 wrote to memory of 3780	1132	msedge.exe	88
PID 1132 wrote to memory of 3780	1132	msedge.exe	88
PID 1132 wrote to memory of 3780	1132	msedge.exe	88
PID 1132 wrote to memory of 3780	1132	msedge.exe	88
PID 1132 wrote to memory of 3780	1132	msedge.exe	88
PID 1132 wrote to memory of 3780	1132	msedge.exe	88
PID 1132 wrote to memory of 3780	1132	msedge.exe	88
PID 1132 wrote to memory of 3780	1132	msedge.exe	88
PID 1132 wrote to memory of 3780	1132	msedge.exe	88
PID 1132 wrote to memory of 3780	1132	msedge.exe	88
PID 1132 wrote to memory of 3780	1132	msedge.exe	88
PID 1132 wrote to memory of 3780	1132	msedge.exe	88
PID 1132 wrote to memory of 3780	1132	msedge.exe	88
PID 1132 wrote to memory of 3780	1132	msedge.exe	88

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\a340aba154ebd8594db789b5558b2f04.html
1⤵
- Enumerates system info in registry
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:1132
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffdff8846f8,0x7ffdff884708,0x7ffdff884718
  2⤵
  PID:2488
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2072,12599992360301563161,5481818962242776700,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2084 /prefetch:2
  2⤵
  PID:4512
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2072,12599992360301563161,5481818962242776700,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2476 /prefetch:3
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4652
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2072,12599992360301563161,5481818962242776700,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2948 /prefetch:8
  2⤵
  PID:3780
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2072,12599992360301563161,5481818962242776700,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3328 /prefetch:1
  2⤵
  PID:1448
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2072,12599992360301563161,5481818962242776700,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3320 /prefetch:1
  2⤵
  PID:5072
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2072,12599992360301563161,5481818962242776700,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4708 /prefetch:1
  2⤵
  PID:884
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2072,12599992360301563161,5481818962242776700,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4920 /prefetch:1
  2⤵
  PID:4904
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2072,12599992360301563161,5481818962242776700,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5408 /prefetch:1
  2⤵
  PID:696
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2072,12599992360301563161,5481818962242776700,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5600 /prefetch:1
  2⤵
  PID:2028
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2072,12599992360301563161,5481818962242776700,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5584 /prefetch:1
  2⤵
  PID:2284
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2072,12599992360301563161,5481818962242776700,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5944 /prefetch:8
  2⤵
  PID:4320
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2072,12599992360301563161,5481818962242776700,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5944 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4180
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2072,12599992360301563161,5481818962242776700,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6104 /prefetch:1
  2⤵
  PID:464
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2072,12599992360301563161,5481818962242776700,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3684 /prefetch:1
  2⤵
  PID:1416
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2072,12599992360301563161,5481818962242776700,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3716 /prefetch:1
  2⤵
  PID:604
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2072,12599992360301563161,5481818962242776700,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3536 /prefetch:1
  2⤵
  PID:2900
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2072,12599992360301563161,5481818962242776700,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1264 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4252

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:2416

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:3276

Network

DNS

frookshop-winsive.com

msedge.exe

Remote address:

8.8.8.8:53

Request

frookshop-winsive.com

IN A

Response

frookshop-winsive.com

IN A

18.158.88.249
GET

https://frookshop-winsive.com/7413c37a-667c-41c6-8e10-6060ad6d8a06?c2=26233199&c1=affC1630489516aff322e166a58003a388a68

msedge.exe

Remote address:

18.158.88.249:443

Request

GET /7413c37a-667c-41c6-8e10-6060ad6d8a06?c2=26233199&c1=affC1630489516aff322e166a58003a388a68 HTTP/2.0
host: frookshop-winsive.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: document
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

server: nginx
date: Sun, 25 Feb 2024 07:51:55 GMT
content-type: text/html;charset=UTF-8
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
pragma: no-cache
set-cookie: 7413c37a-667c-41c6-8e10-6060ad6d8a06-v4=Oy6iuxGl1dLdlBDZxo0OwncMuB_TnSv4NrkIImgLRlc; Max-Age=86400; Expires=Mon, 26-Feb-2024 07:51:55 GMT; Domain=frookshop-winsive.com; Path=/; Secure; HttpOnly;SameSite=None
set-cookie: cc-v4=ifwQSgyKfAPM51pvEgxbMUUgTBKvO4tjCX0LvYyBhK3q9VWRexGqmIvlDtNrRPxqpfTpwJSyT5fyUkXHsTay4cYNoFtKSm9HVsQon1K1fegELCy5neSGpV%2FRJ0KgOKWXIRJFHdhPyxwrpeUE%2BEfgzw%3D%3D; Max-Age=31536000; Expires=Mon, 24-Feb-2025 07:51:55 GMT; Domain=frookshop-winsive.com; Path=/; Secure; HttpOnly;SameSite=None
DNS

74.32.126.40.in-addr.arpa

Remote address:

8.8.8.8:53

Request

74.32.126.40.in-addr.arpa

IN PTR

Response
DNS

apps.identrust.com

msedge.exe

Remote address:

8.8.8.8:53

Request

apps.identrust.com

IN A

Response

apps.identrust.com

IN CNAME

identrust.edgesuite.net

identrust.edgesuite.net

IN CNAME

a1952.dscq.akamai.net

a1952.dscq.akamai.net

IN A

96.17.179.205

a1952.dscq.akamai.net

IN A

96.17.179.184
GET

http://apps.identrust.com/roots/dstrootcax3.p7c

msedge.exe

Remote address:

96.17.179.205:80

Request

GET /roots/dstrootcax3.p7c HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/10.0
Host: apps.identrust.com

Response

HTTP/1.1 200 OK

X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex
Referrer-Policy: same-origin
Last-Modified: Fri, 13 Oct 2023 16:28:31 GMT
ETag: "37d-6079b8c0929c0"
Accept-Ranges: bytes
Content-Length: 893
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Type: application/pkcs7-mime
Cache-Control: max-age=3600
Expires: Sun, 25 Feb 2024 08:51:53 GMT
Date: Sun, 25 Feb 2024 07:51:53 GMT
Connection: keep-alive
DNS

249.88.158.18.in-addr.arpa

Remote address:

8.8.8.8:53

Request

249.88.158.18.in-addr.arpa

IN PTR

Response

249.88.158.18.in-addr.arpa

IN PTR

ec2-18-158-88-249eu-central-1compute amazonawscom
DNS

205.179.17.96.in-addr.arpa

Remote address:

8.8.8.8:53

Request

205.179.17.96.in-addr.arpa

IN PTR

Response

205.179.17.96.in-addr.arpa

IN PTR

a96-17-179-205deploystaticakamaitechnologiescom
DNS

reletinglablets.com

msedge.exe

Remote address:

8.8.8.8:53

Request

reletinglablets.com

IN A

Response

reletinglablets.com

IN A

18.158.88.249
GET

https://reletinglablets.com/redirect?target=BASE64aHR0cHM6Ly8xLml0c3RpbWUubWVkaWEvP3V0bV9tZWRpdW09OTE2MDViYzE2OGY2ZGU2MmUyN2RhZjNiNmQ1NGY4NTBiMjQ4ODQ3NiZ1dG1fY2FtcGFpZ249amFuMjQxNW1haW5saW5rJjE9MjYyMzMxOTkmY2lkPXdlbnVqczZjOGcwdTM3ZXZpMmRsdDNvMA&ts=1708847515511&hash=wPb-Cxrnu4FJuhT1oAG405UZicyIg1mm5S7_St27X0c&rm=D

msedge.exe

Remote address:

18.158.88.249:443

Request

GET /redirect?target=BASE64aHR0cHM6Ly8xLml0c3RpbWUubWVkaWEvP3V0bV9tZWRpdW09OTE2MDViYzE2OGY2ZGU2MmUyN2RhZjNiNmQ1NGY4NTBiMjQ4ODQ3NiZ1dG1fY2FtcGFpZ249amFuMjQxNW1haW5saW5rJjE9MjYyMzMxOTkmY2lkPXdlbnVqczZjOGcwdTM3ZXZpMmRsdDNvMA&ts=1708847515511&hash=wPb-Cxrnu4FJuhT1oAG405UZicyIg1mm5S7_St27X0c&rm=D HTTP/2.0
host: reletinglablets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: document
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

server: nginx
date: Sun, 25 Feb 2024 07:51:55 GMT
content-type: text/html;charset=UTF-8
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
pragma: no-cache
DNS

1.itstime.media

msedge.exe

Remote address:

8.8.8.8:53

Request

1.itstime.media

IN A

Response

1.itstime.media

IN A

69.175.50.35
GET

https://1.itstime.media/?utm_medium=91605bc168f6de62e27daf3b6d54f850b2488476&utm_campaign=jan2415mainlink&1=26233199&cid=wenujs6c8g0u37evi2dlt3o0

msedge.exe

Remote address:

69.175.50.35:443

Request

GET /?utm_medium=91605bc168f6de62e27daf3b6d54f850b2488476&utm_campaign=jan2415mainlink&1=26233199&cid=wenujs6c8g0u37evi2dlt3o0 HTTP/2.0
host: 1.itstime.media
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: document
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

server: nginx
date: Sun, 25 Feb 2024 07:51:56 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
cache-control: no-store, no-cache, must-revalidate, max-age=0
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
accept-ch: Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version
alt-svc: h3=":443"; ma=86400
content-encoding: gzip
GET

https://1.itstime.media/favicon.ico

msedge.exe

Remote address:

69.175.50.35:443

Request

GET /favicon.ico HTTP/2.0
host: 1.itstime.media
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-platform-version: "10.0"
dnt: 1
sec-ch-ua-model:
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-full-version: "92.0.902.67"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://1.itstime.media/?utm_medium=91605bc168f6de62e27daf3b6d54f850b2488476&utm_campaign=jan2415mainlink&1=26233199&cid=wenujs6c8g0u37evi2dlt3o0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

server: nginx
date: Sun, 25 Feb 2024 07:51:56 GMT
content-type: image/x-icon
content-length: 1150
last-modified: Fri, 11 Aug 2023 10:37:02 GMT
etag: "64d60f4e-47e"
expires: Mon, 26 Feb 2024 07:51:56 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
alt-svc: h3=":443"; ma=604800; persist=1
accept-ranges: bytes
GET

https://1.itstime.media/sw.js?v=1708847515528

msedge.exe

Remote address:

69.175.50.35:443

Request

GET /sw.js?v=1708847515528 HTTP/2.0
host: 1.itstime.media
cache-control: max-age=0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
service-worker: script
sec-fetch-site: same-origin
sec-fetch-mode: same-origin
sec-fetch-dest: serviceworker
referer: https://1.itstime.media/?utm_medium=91605bc168f6de62e27daf3b6d54f850b2488476&utm_campaign=jan2415mainlink&1=26233199&cid=wenujs6c8g0u37evi2dlt3o0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

server: nginx
date: Sun, 25 Feb 2024 07:51:57 GMT
content-type: application/javascript
content-length: 776
last-modified: Thu, 01 Feb 2024 14:24:00 GMT
vary: Accept-Encoding
etag: "65bba980-308"
content-encoding: gzip
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval'; script-src * 'unsafe-inline' 'unsafe-eval'; connect-src * 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src *; style-src * 'unsafe-inline';
accept-ranges: bytes
GET

https://1.itstime.media/proc.php?671df3eeb2842b230305e4034514d285b36ec9eb

msedge.exe

Remote address:

69.175.50.35:443

Request

GET /proc.php?671df3eeb2842b230305e4034514d285b36ec9eb HTTP/2.0
host: 1.itstime.media
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-dest: document
referer: https://1.itstime.media/?utm_medium=91605bc168f6de62e27daf3b6d54f850b2488476&utm_campaign=jan2415mainlink&1=26233199&cid=wenujs6c8g0u37evi2dlt3o0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

server: nginx
date: Sun, 25 Feb 2024 07:52:00 GMT
content-type: text/html; charset=UTF-8
location: https://deebcards-themier.com/01244378-df04-4efc-be97-b73ecb18ecf9?partner_id=909&placement=909-834ecd14&payout={payout}&lan={lan}&subid=M7339444195087613993
vary: Accept-Encoding
cache-control: no-store, no-cache, must-revalidate, max-age=0
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
accept-ch: Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version
alt-svc: h3=":443"; ma=86400
content-encoding: gzip
GET

https://1.itstime.media/sw.js?v=1708847515528

msedge.exe

Remote address:

69.175.50.35:443

Request

GET /sw.js?v=1708847515528 HTTP/2.0
host: 1.itstime.media
cache-control: max-age=0
dnt: 1
accept: */*
service-worker: script
sec-fetch-site: same-origin
sec-fetch-mode: same-origin
sec-fetch-dest: serviceworker
referer: https://1.itstime.media/sw.js?v=1708847515528
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
if-none-match: "65bba980-308"
if-modified-since: Thu, 01 Feb 2024 14:24:00 GMT

Response

HTTP/2.0 304

server: nginx
date: Sun, 25 Feb 2024 07:52:04 GMT
last-modified: Thu, 01 Feb 2024 14:24:00 GMT
vary: Accept-Encoding
etag: "65bba980-308"
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval'; script-src * 'unsafe-inline' 'unsafe-eval'; connect-src * 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src *; style-src * 'unsafe-inline';
DNS

35.50.175.69.in-addr.arpa

Remote address:

8.8.8.8:53

Request

35.50.175.69.in-addr.arpa

IN PTR

Response

35.50.175.69.in-addr.arpa

IN PTR

server04com-2mobi
DNS

194.178.17.96.in-addr.arpa

Remote address:

8.8.8.8:53

Request

194.178.17.96.in-addr.arpa

IN PTR

Response

194.178.17.96.in-addr.arpa

IN PTR

a96-17-178-194deploystaticakamaitechnologiescom
DNS

26.35.223.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

26.35.223.20.in-addr.arpa

IN PTR

Response
DNS

deebcards-themier.com

msedge.exe

Remote address:

8.8.8.8:53

Request

deebcards-themier.com

IN A

Response

deebcards-themier.com

IN A

52.57.25.237
GET

https://deebcards-themier.com/01244378-df04-4efc-be97-b73ecb18ecf9?partner_id=909&placement=909-834ecd14&payout={payout}&lan={lan}&subid=M7339444195087613993

msedge.exe

Remote address:

52.57.25.237:443

Request

GET /01244378-df04-4efc-be97-b73ecb18ecf9?partner_id=909&placement=909-834ecd14&payout={payout}&lan={lan}&subid=M7339444195087613993 HTTP/2.0
host: deebcards-themier.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: document
referer: https://1.itstime.media/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

server: nginx
date: Sun, 25 Feb 2024 07:52:01 GMT
content-length: 0
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://www.savinist.com/52LR4LZ/KM15N5P/?source_id=c700e2e8-5577-431e-885e-f23113075357&sub1=01244378-df04-4efc-be97-b73ecb18ecf9&sub2=w9skgee8so70l7ev2m3ghff8&sub3=b25741c0-121f-400e-a996-05dc968ec5c9
pragma: no-cache
set-cookie: 01244378-df04-4efc-be97-b73ecb18ecf9-v4=XLOVp1GTV_tgChCLbnxSKm-rYiWX8ASBXqMpuUzVyK8; Max-Age=86400; Expires=Mon, 26-Feb-2024 07:52:01 GMT; Domain=deebcards-themier.com; Path=/; Secure; HttpOnly;SameSite=None
set-cookie: cc-v4=uOZxVAoG5nzDdv4K0%2FjP%2FX6o79Bn8V%2FhHV66nvhhYANaaixHOjZvBhgHA%2BsdC%2BfFftIbbXEUAJZp2c5K9tuG3oeUbKUFU7oDz6bGyP5xS8EHMppBl3BCscT%2Bz7KHa14CqtySrjHxfwGHR4U%2Fs93PZw%3D%3D; Max-Age=31536000; Expires=Mon, 24-Feb-2025 07:52:01 GMT; Domain=deebcards-themier.com; Path=/; Secure; HttpOnly;SameSite=None
DNS

www.savinist.com

msedge.exe

Remote address:

8.8.8.8:53

Request

www.savinist.com

IN A

Response

www.savinist.com

IN A

172.67.210.153

www.savinist.com

IN A

104.21.77.171
GET

https://www.savinist.com/52LR4LZ/KM15N5P/?source_id=c700e2e8-5577-431e-885e-f23113075357&sub1=01244378-df04-4efc-be97-b73ecb18ecf9&sub2=w9skgee8so70l7ev2m3ghff8&sub3=b25741c0-121f-400e-a996-05dc968ec5c9

msedge.exe

Remote address:

172.67.210.153:443

Request

GET /52LR4LZ/KM15N5P/?source_id=c700e2e8-5577-431e-885e-f23113075357&sub1=01244378-df04-4efc-be97-b73ecb18ecf9&sub2=w9skgee8so70l7ev2m3ghff8&sub3=b25741c0-121f-400e-a996-05dc968ec5c9 HTTP/2.0
host: www.savinist.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: document
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
referer: https://1.itstime.media/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

date: Sun, 25 Feb 2024 07:52:01 GMT
content-type: text/html; charset=utf-8
location: https://www.savinist.com/52LR4LZ/JP5MDPD/?__rpt=0&__po=9396&__ptid=4503f458f875420d95bf7550f6b8d52d&__rpa=0&__rc=1&sub1=01244378-df04-4efc-be97-b73ecb18ecf9&sub2=w9skgee8so70l7ev2m3ghff8&sub3=b25741c0-121f-400e-a996-05dc968ec5c9&sub4=&sub5=&source_id=c700e2e8-5577-431e-885e-f23113075357&__pcd=9
accept-ch: Sec-Ch-Ua-Platform-Version,Sec-Ch-Ua-Model
x-eflow-request-id: ae5cd9e8-1d2d-4247-931a-02e34c353f55
via: 1.1 google, 1.1 varnish
accept-ranges: bytes
x-served-by: cache-lcy-eglc8600036-LCY
x-cache: MISS
x-cache-hits: 0
x-timer: S1708847522.501182,VS0,VE96
vary: Origin
set-cookie: uniqueClick_KM15N5P=63c119a7-9b11-4d26-a3aa-ceb0e0570a77:1708847521; Path=/; Expires=Mon, 26 Feb 2024 07:52:01 GMT; SameSite=None; Secure
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oTmOHnXtt%2FnZxqfgwHplzM0gYzbjuvWFUkVWyQIop1aGeF%2BtrfMC6ltz9k2Ooppt4XDIsO7hWXJWIZlLG9E3xVaJKiE8pIyKX4Ri6ohu5imLmK%2B0GoMZIRSgOWCRXww1oYWX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85ae5dd15e0b3dac-LHR
alt-svc: h3=":443"; ma=86400
GET

https://www.savinist.com/52LR4LZ/JP5MDPD/?__rpt=0&__po=9396&__ptid=4503f458f875420d95bf7550f6b8d52d&__rpa=0&__rc=1&sub1=01244378-df04-4efc-be97-b73ecb18ecf9&sub2=w9skgee8so70l7ev2m3ghff8&sub3=b25741c0-121f-400e-a996-05dc968ec5c9&sub4=&sub5=&source_id=c700e2e8-5577-431e-885e-f23113075357&__pcd=9

msedge.exe

Remote address:

172.67.210.153:443

Request

GET /52LR4LZ/JP5MDPD/?__rpt=0&__po=9396&__ptid=4503f458f875420d95bf7550f6b8d52d&__rpa=0&__rc=1&sub1=01244378-df04-4efc-be97-b73ecb18ecf9&sub2=w9skgee8so70l7ev2m3ghff8&sub3=b25741c0-121f-400e-a996-05dc968ec5c9&sub4=&sub5=&source_id=c700e2e8-5577-431e-885e-f23113075357&__pcd=9 HTTP/2.0
host: www.savinist.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: document
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
referer: https://1.itstime.media/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uniqueClick_KM15N5P=63c119a7-9b11-4d26-a3aa-ceb0e0570a77:1708847521

Response

HTTP/2.0 302

date: Sun, 25 Feb 2024 07:52:01 GMT
content-type: text/html; charset=utf-8
location: https://www.opera.com/gx?utm_source=PWNgames3&utm_medium=pa&utm_campaign=PWN_GB_LVR_OOM&utm_id=3534090642644f0bb55abb88cd0aa81b&edition=std-1
accept-ch: Sec-Ch-Ua-Platform-Version,Sec-Ch-Ua-Model
x-eflow-request-id: 617d84ba-84c5-4f37-a012-10a77de3dc6d
via: 1.1 google, 1.1 varnish
accept-ranges: bytes
x-served-by: cache-lcy-eglc8600036-LCY
x-cache: MISS
x-cache-hits: 0
x-timer: S1708847522.652082,VS0,VE96
vary: Origin
set-cookie: uniqueClick_JP5MDPD=35f371b4-622f-48fc-9cb0-98aa3ceab784:1708847521; Path=/; Expires=Mon, 26 Feb 2024 07:52:01 GMT; SameSite=None; Secure
set-cookie: transaction_id=3534090642644f0bb55abb88cd0aa81b; Path=/; Expires=Sat, 25 May 2024 07:52:01 GMT; SameSite=None; Secure
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aJCwTIP5zbjmHXCweUvoaklpoezUOAqPvNFYkLT8ipctzv7PVDDuMSBgPj65RwlmMs%2FYJY%2B1m4YUB7vbW4hkRNgx5wrLYDYuxd9WCvaF%2BBweNwsm7vF6xv2wjYy1OS8gc5O%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85ae5dd24f483dac-LHR
alt-svc: h3=":443"; ma=86400
DNS

237.25.57.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

237.25.57.52.in-addr.arpa

IN PTR

Response

237.25.57.52.in-addr.arpa

IN PTR

ec2-52-57-25-237eu-central-1compute amazonawscom
DNS

153.210.67.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

153.210.67.172.in-addr.arpa

IN PTR

Response
DNS

www.opera.com

msedge.exe

Remote address:

8.8.8.8:53

Request

www.opera.com

IN A

Response

www.opera.com

IN CNAME

front-geo.production.opera-website.route53.opera.com

front-geo.production.opera-website.route53.opera.com

IN A

3.68.131.146

front-geo.production.opera-website.route53.opera.com

IN A

18.198.110.230

front-geo.production.opera-website.route53.opera.com

IN A

52.57.27.190

front-geo.production.opera-website.route53.opera.com

IN A

18.195.1.56

front-geo.production.opera-website.route53.opera.com

IN A

52.59.35.203

front-geo.production.opera-website.route53.opera.com

IN A

18.196.153.94
GET

https://www.opera.com/gx?utm_source=PWNgames3&utm_medium=pa&utm_campaign=PWN_GB_LVR_OOM&utm_id=3534090642644f0bb55abb88cd0aa81b&edition=std-1

msedge.exe

Remote address:

3.68.131.146:443

Request

GET /gx?utm_source=PWNgames3&utm_medium=pa&utm_campaign=PWN_GB_LVR_OOM&utm_id=3534090642644f0bb55abb88cd0aa81b&edition=std-1 HTTP/2.0
host: www.opera.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: document
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
referer: https://1.itstime.media/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sun, 25 Feb 2024 07:52:02 GMT
content-type: text/html; charset=utf-8
content-language: en
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=3600
content-encoding: gzip
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=63072000; includeSubdomains; preload
content-security-policy: frame-ancestors 'self' https://*.opera.com; upgrade-insecure-requests;
accept-ranges: bytes
DNS

146.131.68.3.in-addr.arpa

Remote address:

8.8.8.8:53

Request

146.131.68.3.in-addr.arpa

IN PTR

Response

146.131.68.3.in-addr.arpa

IN PTR

ec2-3-68-131-146eu-central-1compute amazonawscom
DNS

cdn-production-opera-website.operacdn.com

msedge.exe

Remote address:

8.8.8.8:53

Request

cdn-production-opera-website.operacdn.com

IN A

Response

cdn-production-opera-website.operacdn.com

IN CNAME

cdn-production-opera-website.operacdn.com.edgekey.net

cdn-production-opera-website.operacdn.com.edgekey.net

IN CNAME

e11604.dscf.akamaiedge.net

e11604.dscf.akamaiedge.net

IN A

104.84.85.174
DNS

www.googleoptimize.com

msedge.exe

Remote address:

8.8.8.8:53

Request

www.googleoptimize.com

IN A

Response

www.googleoptimize.com

IN A

216.58.213.14
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/embedVideo.4fdce408f883.css

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/embedVideo.4fdce408f883.css HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: WNvOo5Klc4N1q/e5AhE4dZWrpJW0Xxp78xiGpOys7JTgDkkHNxgg3rij5Ija7d0Zux+rR8WX0Bk=
x-amz-request-id: 58MH9MW6CQG8Z2WP
last-modified: Fri, 23 Feb 2024 18:36:08 GMT
etag: "4fdce408f883e877033fc2abc0ef6304"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: text/css
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:02 GMT
date: Sun, 25 Feb 2024 07:52:02 GMT
content-length: 1111
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/gxMain.4810ae6350ae.css

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/gxMain.4810ae6350ae.css HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: snSFTrepVvs3KWX6gkxPqPrPb5GozI5b80vt6bzgOy8rsvuSuZ9zHXLQ+UvaobEi/TDlNN2wWD4=
x-amz-request-id: F86V77MNKBMMHQP1
last-modified: Fri, 23 Feb 2024 18:36:13 GMT
etag: "d7788e6fd132349d9ad2deeaaaf4c340"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: text/css
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:02 GMT
date: Sun, 25 Feb 2024 07:52:02 GMT
content-length: 434
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/gx2021.acb9a7b5d1a2.css

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/gx2021.acb9a7b5d1a2.css HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: t6RjLb9Za/KE7Dh8OzvmwlxqvrA0yZ7X1M5EFcH21THCEea/lLqiFH/guwig24soMyOCOCn0kK4=
x-amz-request-id: Z09SGH61NVFW0F4F
last-modified: Fri, 23 Feb 2024 18:36:12 GMT
etag: "4810ae6350ae593fed5c94488b9a193e"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: text/css
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:02 GMT
date: Sun, 25 Feb 2024 07:52:02 GMT
content-length: 14012
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/latinext.d7788e6fd132.css

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/latinext.d7788e6fd132.css HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: V5urfW19w7YeK3t7ilCKMPDjVLkAUkD+m0KNKESncH3NBFnzYCv5WNvVf8YBE4rPH+zggWrMpjo=
x-amz-request-id: Z09JSABVC82XFT7X
last-modified: Fri, 23 Feb 2024 18:36:09 GMT
etag: "acb9a7b5d1a25251ee4647fb8dc24b71"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: text/css
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:02 GMT
date: Sun, 25 Feb 2024 07:52:02 GMT
content-length: 18114
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/gxMain.31093f68b79b.js

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/gxMain.31093f68b79b.js HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: glO9FGu75soLHdK04ZI/KSncCWSAqyskH63aE6D3TWtIuvvzs1yqXbMwE2okc7dUuahpnnyhmWY=
x-amz-request-id: Z09N44M3R45WEZ4S
last-modified: Fri, 23 Feb 2024 18:36:12 GMT
etag: "31093f68b79baca3a56e242316ea4799"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:02 GMT
date: Sun, 25 Feb 2024 07:52:02 GMT
content-length: 25536
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/logo/logo-flat-horizontal.3a48a9c34651.svg

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/logo/logo-flat-horizontal.3a48a9c34651.svg HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: 950mUJrpLuzO5rBQ2wYdYTQ/vZiFVfhXUUyCevD/neBQbIusZ2N9/U5NAMQzsh6VQ6wD9OdBx3Y=
x-amz-request-id: A8KJD2W2DAXBXAPE
last-modified: Fri, 23 Feb 2024 18:34:21 GMT
etag: "3a48a9c34651da59577378e512d46acd"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 3611
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/logo/logo-flat-white-horizontal.35e1a8f1fc3b.svg

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/logo/logo-flat-white-horizontal.35e1a8f1fc3b.svg HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: Sc1Mo8IfwdezgGXYUpJM6XaJoyXgBQ03Jq/RB3J7fmOirXQxynaMp98V0t1hNHuc9wgB65nRFdc=
x-amz-request-id: 0AVAXWKPKSPFRJEX
last-modified: Fri, 23 Feb 2024 18:34:21 GMT
etag: "35e1a8f1fc3b1d7cb7c29c77ab818f8f"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 3640
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/components/download/googleplay/google-play--en.510db0066052.png

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/components/download/googleplay/google-play--en.510db0066052.png HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: qS33jJxsnePY4heS7PrIFvLNeJjAESEjnB+phDROawjqEVQDxM6PjD1++VCvWUt/oOhJTYmBcB0=
x-amz-request-id: ESNX3V4508MW2WSG
last-modified: Fri, 23 Feb 2024 18:33:54 GMT
etag: "510db0066052c3af060442b839359691"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 5474
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/components/download/appstore/app-store--en.4c2de0665c3e.png

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/components/download/appstore/app-store--en.4c2de0665c3e.png HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: AFfSyDi1+2Kj8qtisT4L9JxXTaOlp6BvPhTak7NZwAOXCfcgsWpCzX3dr06o4PWkqnETJMldOY4=
x-amz-request-id: ESNWVJZVNGTG6A0Y
last-modified: Fri, 23 Feb 2024 18:33:50 GMT
etag: "4c2de0665c3e8f1304adcd90fcb430cd"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 2577
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--mobile@2x.dad38e627140.webp

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--mobile@2x.dad38e627140.webp HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: hj0JhrnU3jw/Vbmvj1xJObxbJ/hdlgbQh8aU1dl/4c8BUVpT/fUa6NJW4usDfF10PnaP7+ZJh4E=
x-amz-request-id: CCXDDD30M1AT4GPR
last-modified: Fri, 23 Feb 2024 18:35:06 GMT
etag: "dad38e627140ad0b2d578c37f20e2421"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: binary/octet-stream
server: AmazonS3
content-length: 47722
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--home.a3a32725c8c8.webp

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--home.a3a32725c8c8.webp HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: YxxvktmgSAZJm2dporBvbK7Zq2UBFnj1BPztOJaLwrBVPl2kSXIUOwugEXTNjcJxZrvRXoDNSHc=
x-amz-request-id: 1AWBDNKEFRMKARVG
last-modified: Fri, 23 Feb 2024 18:35:06 GMT
etag: "a3a32725c8c8d27c18b89017f2e0689c"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: binary/octet-stream
server: AmazonS3
content-length: 42264
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__mobile--hero-section@2x.105801afec18.webp

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/sections/2021/hero-top/gx/gx__mobile--hero-section@2x.105801afec18.webp HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: KYEb2x2wkDPq7qqni8tlVFyv3tV+h1A3598QPuAqNOVC4mJFvO+AQgMwz76QE3a6mVAobA2XPYE=
x-amz-request-id: 4Y5B650Z3WYTK79H
last-modified: Fri, 23 Feb 2024 18:35:06 GMT
etag: "105801afec185e88bf124ad6d2618d02"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: binary/octet-stream
server: AmazonS3
content-length: 109740
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--gx-mobile@2x.4aa1a438e946.webp

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--gx-mobile@2x.4aa1a438e946.webp HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: RXXyxic4VRQg/blAUXPuUja409DdE8f1DuCGNjN8TsVplglvJCmjTPMZF99VJkW4i/j9Kd9gUgw=
x-amz-request-id: CCX1HX236CS7SNJX
last-modified: Fri, 23 Feb 2024 18:35:06 GMT
etag: "4aa1a438e946907970930b7f2e04f644"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: binary/octet-stream
server: AmazonS3
content-length: 37600
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--gx-cleaner@2x.43ff34bf1a7b.webp

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--gx-cleaner@2x.43ff34bf1a7b.webp HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: 4KExV3kjXOOYbmHw0K6V5zKvhK3jZrC2QBk9HQJXgwO79g2TnU1ZyyIqJ3UiW6dke2i7C0CRXLI=
x-amz-request-id: TVVAFS7K981HXAH4
last-modified: Fri, 23 Feb 2024 18:35:06 GMT
etag: "43ff34bf1a7b9da9262052869fdfe267"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: binary/octet-stream
server: AmazonS3
content-length: 82120
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx-mobile__android-iOS@2x.d190a54a25f9.webp

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/sections/2021/hero-top/gx/gx-mobile__android-iOS@2x.d190a54a25f9.webp HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: tA4ntQfdcXiVp0egdRDPQc78kuRp9YNubUVpCeMtqSOOWic+1+u22Kb03XSQWqodK5R4gAmuLhY=
x-amz-request-id: CCX42B10ACK30JHT
last-modified: Fri, 23 Feb 2024 18:35:05 GMT
etag: "d190a54a25f96e1356a94e2a868bd5be"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: binary/octet-stream
server: AmazonS3
content-length: 112954
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__mobile--hero-section-qr.b87f91e723bf.jpg

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/sections/2021/hero-top/gx/gx__mobile--hero-section-qr.b87f91e723bf.jpg HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: amjD+kJPC8cweq38vNaZmWYQe9oqYdJbKAknQswVk0bzUYDGlSW7d3V/b/5kvKrhQRD/bd3tLHk=
x-amz-request-id: 9YT1B0V1PCBFV8DS
last-modified: Fri, 23 Feb 2024 18:35:06 GMT
etag: "b87f91e723bfc3c4244e3cd43d723014"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 79981
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/feature-promo/awesome-features--gx__mobile.c8ecc394b852.jpg

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/sections/2021/feature-promo/awesome-features--gx__mobile.c8ecc394b852.jpg HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: XRo/awoVYhRKc+f231ptza2aixNCeppsr9m7MDFSe+25AbPAaAvZV/EVsK77dj0hbWRFPd1D2sY=
x-amz-request-id: CCX6J5HDS8EXHB3M
last-modified: Fri, 23 Feb 2024 18:35:01 GMT
etag: "c8ecc394b852869c3f8d196e06a15b44"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 64529
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/feature-promo/awesome-features--gx.e698406b3212.jpg

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/sections/2021/feature-promo/awesome-features--gx.e698406b3212.jpg HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: v1FHgoNExF9R8IA7IRuH+BACrKeQwFRMZSwrDrOV/DT0+dFrctYUjWvx8oQIp9EORCh4jVGRV80=
x-amz-request-id: JT5NCS33AQ76K4M0
last-modified: Fri, 23 Feb 2024 18:35:01 GMT
etag: "e698406b3212a86ef5ad559ae9149132"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 165077
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/1x1px.91e42db1c66c.png

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/1x1px.91e42db1c66c.png HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: A2B3bfvfUyn+ReYtg4kV8i4cL7aUs1TGIDJD40JN8HP/KHhYIh5cjtTxIf+8BF6Q8aOsstnuNkE=
x-amz-request-id: VC6JCQR32FJPE12N
last-modified: Fri, 23 Feb 2024 18:33:44 GMT
etag: "91e42db1c66c0b276abf6234dc50b2eb"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 68
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/theme-switcher/gx__color-theme--classic.1b752fb481b6.png

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/sections/2021/theme-switcher/gx__color-theme--classic.1b752fb481b6.png HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: Gb4L3vPHJI/7GS4UdxSFeresEqBkoqmiT9j+F8CC/RVXTJjC8nMuYqQ6qPR3G3iT9KSjBb4kNSo=
x-amz-request-id: A9AYBFCTYR8H9XBJ
last-modified: Fri, 23 Feb 2024 18:35:19 GMT
etag: "1b752fb481b6970908fc8ff04e7b1d1c"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 408229
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-light-mode.ae3068ee8c01.svg

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-light-mode.ae3068ee8c01.svg HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: S4ldFYg5VHsPhvecjFpYQzvXCs41MF0gLXRHry1Ks/3DPUdP7E4fJ5YjZOXkICQc/z1rzznO/i8=
x-amz-request-id: MSZZR1ZBC91BHE03
last-modified: Fri, 23 Feb 2024 18:35:01 GMT
etag: "ae3068ee8c01ecefc4b734ff83d72d2a"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 365
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--light-mode.01aad9997fb5.png

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--light-mode.01aad9997fb5.png HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: 3Hr7ti2edAx3zFbFENJItgljuJFEpD4HNBmhUA4i7WsV20vlivWXXDVz2KTADVpmjBGGt8Fi598=
x-amz-request-id: X1MKDNETDA5XQBPD
last-modified: Fri, 23 Feb 2024 18:35:01 GMT
etag: "01aad9997fb508b7a5c60ecc88207cad"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 80560
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-corner.be1333483846.svg

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-corner.be1333483846.svg HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: DJJh09Xi89taOoY6UtwVMZ7aVH1bNve+nJA8MZ7LHUUVHiv0v8jOkYxT5lbm/sIpJBBkaqUsRkE=
x-amz-request-id: MSZST25JJ2738VS2
last-modified: Fri, 23 Feb 2024 18:35:01 GMT
etag: "be133348384697b6ece777f20cabcb28"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 653
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--gx-corner.b44c9289e362.png

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--gx-corner.b44c9289e362.png HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: Mg30KHuBZ7EZOI6qaw+Bl6ps1LMGQMxg5CL3ECDS0oAgG5+MZU+y2no0Qk7GPtbJPmXXTDuxOi8=
x-amz-request-id: X1MPW23BFKSECBJ1
last-modified: Fri, 23 Feb 2024 18:35:01 GMT
etag: "b44c9289e36226ff9c0c8e7b9be6b2ee"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 144786
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-twitch.8902d1ec9cef.svg

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-twitch.8902d1ec9cef.svg HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: 3x/hZtOo2GG/TrsaWlfYBla4yJwAIKA267rl8iTKbGtwU4lFaLHYV2hO9aIaEDeurclg0gu19WI=
x-amz-request-id: MSZTR048JM29N1YS
last-modified: Fri, 23 Feb 2024 18:35:01 GMT
etag: "8902d1ec9cef36358778a96db8b2408c"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 1000
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--twitch.5f4495877f47.png

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--twitch.5f4495877f47.png HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: H9ApQiQqhJM/+D2Ana+5eJocCb1PncR0TB0wdwdUbg2VcjjorQXshQrNxf7g8trecaUjlXCHtNc=
x-amz-request-id: X1MM308GN1HZB5K0
last-modified: Fri, 23 Feb 2024 18:35:02 GMT
etag: "5f4495877f47d6a908eb85cf0297c225"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 65601
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-discord.513c7c78f5c8.svg

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-discord.513c7c78f5c8.svg HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: WDZynzLKkoNjESTEE7OAmOC9WU8N5LEoiVf/1KAdQYWMMshA73w93I6vwVpQhzWfKJDZJKkbeGk=
x-amz-request-id: MSZJNQD5HQB6MQG4
last-modified: Fri, 23 Feb 2024 18:35:01 GMT
etag: "513c7c78f5c85b2e1d971bc3496daa4b"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 2240
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--discord.3e893cef8784.png

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--discord.3e893cef8784.png HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: tv3USPVd/sS2BS9L6cXhtNaS5QyZSb8SFpRYLRZpBkwJT+L4N/AVtT2xEtz6CNqc4Sa9RI59V9M=
x-amz-request-id: X1MK4J4D09EJSY4E
last-modified: Fri, 23 Feb 2024 18:35:01 GMT
etag: "3e893cef87841d8861644972257666ec"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 92620
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-player.416a8e402db6.svg

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-player.416a8e402db6.svg HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: XputVtHVWOsRPXGY3nP7kqsNuDeuTnqzHO68RSUlLqT4mB/kfHInEoo5WOymop2rhtqtIYVfzlA=
x-amz-request-id: CHGREX1C0HWTTNC2
last-modified: Fri, 23 Feb 2024 18:35:01 GMT
etag: "416a8e402db66ca80a5b249f3a38dc4b"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 553
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--player.694659842717.png

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--player.694659842717.png HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: I+o2rdN8tJsUEkIXViaHW3rniSTcv5U8aVQX3NXBADAx+jGqja/NAAIs8uR0EcnAnhTwqvmDqWw=
x-amz-request-id: X1MNSSR44YF93TZB
last-modified: Fri, 23 Feb 2024 18:35:02 GMT
etag: "6946598427171d947cd62f826208d2f3"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 69121
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-messengers.9bd35388afd6.svg

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-messengers.9bd35388afd6.svg HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: MGhhsBfwhaMy7fAw9Puq87o9zMUiTX6GurFHCGndQS+u77KBr7kH1qm+4k/0hXC53ThKTJffjF4=
x-amz-request-id: 1KX3F893EQ9Z3VE3
last-modified: Fri, 23 Feb 2024 18:35:01 GMT
etag: "9bd35388afd67f431e55b7f197d83ae2"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 1188
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--messengers.e491d059f927.png

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--messengers.e491d059f927.png HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: 1Pw2MFZbWHlkkNu4bAbz/mFzzO4JnByeSgMyNkjhKY2B0VnIy4mLk3uTsMxJRSa80sy20DNsM+JwuWRbzCu3NQ==
x-amz-request-id: X1MQSRG0EEQ1007G
last-modified: Fri, 23 Feb 2024 18:35:01 GMT
etag: "e491d059f92781879420ebd8fa8bf776"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 60100
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-pinboards.7e83626e788a.svg

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-pinboards.7e83626e788a.svg HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: Co97Udk0McTNpmn4pejtx+cSbGgAXTpBI5UYzRKOjWVbnAXNiW7/SsZWHT4/RlhK6sFj68PLLCo=
x-amz-request-id: 1KX6PE8Q3BJ0MAP6
last-modified: Fri, 23 Feb 2024 18:35:01 GMT
etag: "7e83626e788aa964254ae8244207d8f7"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 553
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--pinboards.aaecb2a9fc24.png

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--pinboards.aaecb2a9fc24.png HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: EAKyfBy213lLKRcFAVJSWDNG6mjZ1XPOj4ofDkOSnd/34UanU/u7H8t/J7YAzMeM6vCnZdeomCo=
x-amz-request-id: X1MMQNFW7QKB5BC7
last-modified: Fri, 23 Feb 2024 18:35:02 GMT
etag: "aaecb2a9fc24d89805e640eab2bee122"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 114060
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-flow.736ea0e793e4.svg

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-flow.736ea0e793e4.svg HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: 3Ov1tgHHysrvauNmC903dAnUYHN6CTwmnU9/cgzDjOWYDwYb8UpcUT+x3gZ/tlOsNvAdVk3kRiA=
x-amz-request-id: 1KX255YH12YR4RRK
last-modified: Fri, 23 Feb 2024 18:35:01 GMT
etag: "736ea0e793e4ae9e757818c2628c8177"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 291
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--flow.3dafb84d8d14.png

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--flow.3dafb84d8d14.png HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: X9d/V8IiD7U3jAUbSldv/nu6iwt+eSDUn3ItfT2Sf/xBI6fnnlp4F8hllBwJYjpF83ItJV0OU2I=
x-amz-request-id: X1MMCJ9X4VQHPE72
last-modified: Fri, 23 Feb 2024 18:35:01 GMT
etag: "3dafb84d8d14fdd8c1a7825f36387dbf"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 90470
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-fast-navigation.53111f7a4633.svg

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx-fast-navigation.53111f7a4633.svg HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: WBY5cNZ0QbpGoUmTvbrBD3h/5ghxp/Kv22mpBid2OEThH4bZjdQGSImTIBze4CLwwc3TXKcMhtw=
x-amz-request-id: 1KXC752T1AN5JTQW
last-modified: Fri, 23 Feb 2024 18:35:01 GMT
etag: "53111f7a4633fda3965a3172d92aa798"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 279
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--fast-navigation.cd994c62ac97.png

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--fast-navigation.cd994c62ac97.png HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: u7AsVmWU9iczAXCflb+uQy5SBGUw5fx9snkRqUv6czBydwaii419iMTa4t1+zjdQ6z3pn6E7J1I=
x-amz-request-id: WK71NZ4JJZV3YX83
last-modified: Fri, 23 Feb 2024 18:35:01 GMT
etag: "cd994c62ac977197fb4119ece99302f1"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 45477
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/gx/images/gx2021/gaming-inspired-features-bg.cdcfd5388fec.jpg

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/gx/images/gx2021/gaming-inspired-features-bg.cdcfd5388fec.jpg HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: RrdFOoOTvPT8vjNm4wp7uxzsK8Mgti2xTDXmCVDITjacYZsS+FbPniC9nPdx3xrD5I44XtomvuE=
x-amz-request-id: 5SZKSJTASS9AYVYX
last-modified: Fri, 23 Feb 2024 18:33:03 GMT
etag: "cdcfd5388fecb2af10a46ee71e9ff5a5"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 274315
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/ds-icons/logo/opera-logo-flat.724a32ec0873.svg

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/ds-icons/logo/opera-logo-flat.724a32ec0873.svg HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: GU6+/KTaATWDOkM4g4Ogsg0VIJwkoPy9awbiAuN6qAvYxho5TvusDtZU7UnGgQx4D4XlhQg9sMw=
x-amz-request-id: J5YB4AAXV7Y8EM5Y
last-modified: Fri, 23 Feb 2024 18:34:11 GMT
etag: "724a32ec0873aff49dd74e2005f707f7"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 988
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/logo/logo-and-name-negative.51c8dfe30ee2.png

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/logo/logo-and-name-negative.51c8dfe30ee2.png HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: 7QqssScF7DZFC21NpNemwqeWEYR2Has6rjFcDjJoDDsqHUY7O7hVFWsaPDd1KIURu29zxS7y9J0=
x-amz-request-id: 1KX8Q6ME9PTXWPKV
last-modified: Fri, 23 Feb 2024 18:34:21 GMT
etag: "51c8dfe30ee29e9f86622fedcebfe4fb"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/png
server: AmazonS3
content-length: 7249
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/themeSwitcher.2752d37895fc.js

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/themeSwitcher.2752d37895fc.js HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: 7FFrtAa07vvdWhdbF6OYrmi59x86AwtN51KcKT65pacMyA0WAO9e+Iu0q+5ztQFQ5xUGvmV7/DU=
x-amz-request-id: 1KXB25DGZZH2SRZV
last-modified: Fri, 23 Feb 2024 18:36:15 GMT
etag: "2752d37895fcf6630e4b4b82bbd913ca"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
content-length: 17592
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/1cb6d11c2c491cd2f1fd.4bf5cf63e125.jpg

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/1cb6d11c2c491cd2f1fd.4bf5cf63e125.jpg HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://cdn-production-opera-website.operacdn.com/staticfiles/gx2021.acb9a7b5d1a2.css
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: c2A5TjZo2WHoYKvYTRUctek6ovZyrRE5En2GSeS+uuCbWfnURlSwlMzidoT0O/8EELm8cz2NKIM=
x-amz-request-id: HXDM7ZJ0PASW0680
last-modified: Fri, 23 Feb 2024 18:31:58 GMT
etag: "4bf5cf63e12582c4ded0a4b9c4e677c8"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 257276
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/67e772f5c7c0ff691b84.d5b84517520e.svg

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/67e772f5c7c0ff691b84.d5b84517520e.svg HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://cdn-production-opera-website.operacdn.com/staticfiles/gx2021.acb9a7b5d1a2.css
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: qdVJfeuQybXSWT0e520oC0VZY8inFeR8ZxpVK91EOjesIJEuwkFOmC5ffDTHqnQs+FWENA9NFeo=
x-amz-request-id: 0VKRTNDP9XJ91ZE0
last-modified: Fri, 23 Feb 2024 18:32:09 GMT
etag: "d5b84517520e30d992662e722f94d68e"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 472
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/e4e2a9ac3e7495306ef0.61f316276ca6.svg

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/e4e2a9ac3e7495306ef0.61f316276ca6.svg HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://cdn-production-opera-website.operacdn.com/staticfiles/gx2021.acb9a7b5d1a2.css
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: cU8uYDQyaj9pNw0GEsYJ78kxpxHJ1FRxjRSNLBr9/cXN/y59/+84soOZFn9BYT0zsJuX22UoSWY=
x-amz-request-id: YTBWBD114G9R70R9
last-modified: Fri, 23 Feb 2024 18:36:08 GMT
etag: "61f316276ca6188c4f3b70c680d2c38e"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 1229
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/a2f64f0b0b76727a4500.f932611b6573.svg

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/a2f64f0b0b76727a4500.f932611b6573.svg HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://cdn-production-opera-website.operacdn.com/staticfiles/gx2021.acb9a7b5d1a2.css
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: w48HWGIr4gOD/fnUmjk0zRq3Tl/48g7kW4uahLa+SNq3JwKuoXawEErJoLAW0ZhxhIB1nPvXU50=
x-amz-request-id: YTBT60GR8D0Q67DW
last-modified: Fri, 23 Feb 2024 18:32:38 GMT
etag: "f932611b6573baaa7f9e1cbf393b62a9"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 644
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/f629332a6204be810902.16d2b680579e.svg

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/f629332a6204be810902.16d2b680579e.svg HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://cdn-production-opera-website.operacdn.com/staticfiles/gx2021.acb9a7b5d1a2.css
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: 8JIumdx0nKeBWwYEkzHqnNxyGpuDnVQON38gveEML3mKHEGgpK87QnlK59a+15GqDlKo7Ox+cUI=
x-amz-request-id: DFW3927E5M1JM9MR
last-modified: Fri, 23 Feb 2024 18:36:09 GMT
etag: "16d2b680579ead0781d2173022c8ebf3"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 174
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/8dd28da7d9c471175a7b.19228cbf00eb.svg

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/8dd28da7d9c471175a7b.19228cbf00eb.svg HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://cdn-production-opera-website.operacdn.com/staticfiles/gx2021.acb9a7b5d1a2.css
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: DJ9zDt5EqBl4czZ74hzpv4TsV2QLX7jrEnG5H52/HY0rRuJbBKFoChclJkCFypvtmc9sKVeWEyI=
x-amz-request-id: DFW4JFTA5AAZRD9F
last-modified: Fri, 23 Feb 2024 18:32:14 GMT
etag: "19228cbf00eb6ea1da921a32a5f33986"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 171
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/3773-26fd20533ee40c5737d4.js

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/3773-26fd20533ee40c5737d4.js HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: ALJtHvjTtLSdSvR9/7ptGz7NCo7zxEE7AZs/U6BMiWAco9UNApb1a7c5Z6ohaghuPsYa6moGKx0=
x-amz-request-id: K8RPSVZ8N36PWZGM
last-modified: Fri, 23 Feb 2024 18:32:01 GMT
etag: "58b4016c02acf71cd0c06d1de8cdeef1"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:05 GMT
date: Sun, 25 Feb 2024 07:52:05 GMT
content-length: 587
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/3140-70751f2063c9179acc1d.js

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/3140-70751f2063c9179acc1d.js HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: ADT9ErfGGpYT/J7EIisrBabOVGpr/fRFyufH66X0HVUvIlnoRV1N/i+ArsssI7wTBGI2r0CQH+U=
x-amz-request-id: BHYEJNVVACFW16KP
last-modified: Fri, 23 Feb 2024 18:32:02 GMT
etag: "a841e86a979db9111df9156e9f1f07dd"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:05 GMT
date: Sun, 25 Feb 2024 07:52:05 GMT
content-length: 791
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/9625-229456322c7936605742.js

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/9625-229456322c7936605742.js HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: jUuXX8bYpXyMuwlf0Pk1zv0gTluUVxoDB4Vx5zVhovYqCAzgaebaFeG4oDO23PyD3vo9TosIHos=
x-amz-request-id: MMJEYY97YTRQ4J99
last-modified: Fri, 23 Feb 2024 18:32:15 GMT
etag: "8b9bf58fbd02358d3cc3d0c736fff11e"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:05 GMT
date: Sun, 25 Feb 2024 07:52:05 GMT
content-length: 1850
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/5844-623e2e6730954e1631f0.js

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/5844-623e2e6730954e1631f0.js HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: QOu7yprNMxP+C9XJmyy4bbol1/MbHy3Taf6H+vpZr4AK/sr7U98cMzwy7UFIOrtPlMxRlJ9eViQ=
x-amz-request-id: BHYC6MCPG71JSR2Q
last-modified: Fri, 23 Feb 2024 18:32:13 GMT
etag: "21238be293b96670b72f0c1002441fc5"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:05 GMT
date: Sun, 25 Feb 2024 07:52:05 GMT
content-length: 2994
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/8402-a5e99fbf49d748a487fc.js

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/8402-a5e99fbf49d748a487fc.js HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: cvH/LmYb44MrUd4m5HPiy/CjuN64kkGRs/AbQ2/SgI/EmnlDvYPmFnIO57mv5ZqPFl3F98eeDhQ=
x-amz-request-id: BHYEEC4NBTAE7XDZ
last-modified: Fri, 23 Feb 2024 18:32:00 GMT
etag: "5e8f7690156d04441cae32789c210053"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:05 GMT
date: Sun, 25 Feb 2024 07:52:05 GMT
content-length: 1690
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/2723-07bfab34c572816854b8.js

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/2723-07bfab34c572816854b8.js HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: xq3c1nK63su1sGIt1mqkUn4rurJy5q3FFgpLx1HIMxpiW15TqyjmD8qwyahNMhjHjS38WA1wBOA=
x-amz-request-id: BHY1D8QE30F41DYS
last-modified: Fri, 23 Feb 2024 18:31:56 GMT
etag: "eecae9d13eecb53c96ae163d950fa756"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:05 GMT
date: Sun, 25 Feb 2024 07:52:05 GMT
content-length: 2698
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/1371-25eaf27de8efabbdd024.js

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/1371-25eaf27de8efabbdd024.js HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: 5D3vdWGkQ75x+AHGzgJbijAGmG706iXzWJcny5K5jbBlG+JtsUU0vtUUEd1jaDbl1AEhTgek5lM=
x-amz-request-id: BHY8MTNCZ8YJ981H
last-modified: Fri, 23 Feb 2024 18:32:07 GMT
etag: "baaa6b45ef3f64a0a30bbc28a00bbb57"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:05 GMT
date: Sun, 25 Feb 2024 07:52:05 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/2554-f3d25075fe22e6d82816.js

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/2554-f3d25075fe22e6d82816.js HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: bkIzKPgTY53Qn3/QBX+PR2gGcEQYaYGoffSJYH1FsIZBzUw8go+sUXPI1DAG1eqaimnOAHMxUJE=
x-amz-request-id: QENKACW0MBGJ9NBQ
last-modified: Fri, 23 Feb 2024 18:32:00 GMT
etag: "95bfb3e18c00c5bc947fb1c0c5369ed1"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:05 GMT
date: Sun, 25 Feb 2024 07:52:05 GMT
content-length: 801
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/7324-f2ba997f4a29f01033fa.js

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/7324-f2ba997f4a29f01033fa.js HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: mzPq5UeC14RF2zDwCRaFYvlAt+ppEY/If/G4YhhfZwxIgUV0IKG0zyVcEuO0SKVH8xwqWMtSTZo=
x-amz-request-id: BHYC4TWW8BAYTADG
last-modified: Fri, 23 Feb 2024 18:32:11 GMT
etag: "7f4b4b79b4164c20ff89b37a4787880e"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:05 GMT
date: Sun, 25 Feb 2024 07:52:05 GMT
content-length: 1326
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/df25d1ade7e0a6d6cb0f.svg

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/df25d1ade7e0a6d6cb0f.svg HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: 3qhqmTKPu3i6GhvOc6twOnPnV8Bc1GGd8zKHpJGT4qRctKanO61VI/7FsJNfD304VU6sbP4T6SU=
x-amz-request-id: V5ATQ2J2NJY5GAZV
last-modified: Fri, 23 Feb 2024 18:36:07 GMT
etag: "1f01a17b022b4cce53bf823025e982b9"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 300
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:06 GMT
date: Sun, 25 Feb 2024 07:52:06 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/acd687f2889cbfbdd533.svg

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/acd687f2889cbfbdd533.svg HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: cPliq/1Sx/CR+DhcUq6Cxk/25HT6ODfwmEgUJgK09MmNSScBifhkkcpFWxlAFSH50W72zVSmKaw=
x-amz-request-id: 1WGHHF2DMG6KNCPK
last-modified: Fri, 23 Feb 2024 18:32:39 GMT
etag: "cc973b32f43e2582787f18aa0b2d1caa"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 712
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:06 GMT
date: Sun, 25 Feb 2024 07:52:06 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/gx/images/welcomeGx/favicon/favicon.6e8da31be579.ico

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/gx/images/welcomeGx/favicon/favicon.6e8da31be579.ico HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: S9RPThGj1lcgjBCFG/PiXiT9C2CC0vdFBCkEoZcHWFFePfgpJLeBazAwvhC39wYd++NtJc806Ds=
x-amz-request-id: 6WCXZXACYAESM6P0
last-modified: Fri, 23 Feb 2024 18:33:33 GMT
etag: "6e8da31be5793cbe083bb93db01cf735"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/vnd.microsoft.icon
server: AmazonS3
content-length: 15086
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:08 GMT
date: Sun, 25 Feb 2024 07:52:08 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
GET

https://www.googleoptimize.com/optimize.js?id=GTM-5HKZ2H4

msedge.exe

Remote address:

216.58.213.14:443

Request

GET /optimize.js?id=GTM-5HKZ2H4 HTTP/2.0
host: www.googleoptimize.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

www-static.operacdn.com

msedge.exe

Remote address:

8.8.8.8:53

Request

www-static.operacdn.com

IN A

Response
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/ds-icons/header/Browsers.fa6d9c74bb3c.svg

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/ds-icons/header/Browsers.fa6d9c74bb3c.svg HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.opera.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: diRsikgxqZc4+JFkA8quxF0+wiVakwLwd9buD9iI/DahWGPwxo/z6RxLO8wY8b5Txqsh9MnWV5o=
x-amz-request-id: 9R6HYWCTGV3H0QKV
last-modified: Fri, 23 Feb 2024 18:34:11 GMT
etag: "fa6d9c74bb3c33b4a912b5549515cf4e"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 607
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/ds-icons/header/About%20us.6a6958313506.svg

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/ds-icons/header/About%20us.6a6958313506.svg HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.opera.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: ezX8DEY1yhiDNqlmxJm7G/pqYHnQSZPShAXqBTfi9sutszq9frHaGweKhBEpfBLIWOY92hCrggY=
x-amz-request-id: 9R6G28HVQK6VDKH4
last-modified: Fri, 23 Feb 2024 18:34:11 GMT
etag: "ee03925ce901ac27bffb9026c59bbab8"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 514
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/ds-icons/header/Help.ee03925ce901.svg

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/ds-icons/header/Help.ee03925ce901.svg HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.opera.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: hr8ygipY1ktn7ZP2uKaB072tkNwIsuZUm5hPBLhSh0Gxo1rArFaPkIimze9pgbQONhIS8cM7/WM=
x-amz-request-id: 9R6QKXWZTQTBV4GE
last-modified: Fri, 23 Feb 2024 18:34:11 GMT
etag: "6a6958313506f952af6f1af32dc09173"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 570
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/12a67856463b108d403c.04d22e84247c.svg

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/12a67856463b108d403c.04d22e84247c.svg HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.opera.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://cdn-production-opera-website.operacdn.com/staticfiles/gx2021.acb9a7b5d1a2.css
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: EMnFG9zKrYFyenX5FydA2Sz8O3DoUtwjZnTJXD/7v9lf5ObZwOKmVQM39e4x2H+8AQSAMB61aCI=
x-amz-request-id: Q0YKAJTFGRR0QT7X
last-modified: Fri, 23 Feb 2024 18:31:56 GMT
etag: "04d22e84247c9962bb5312f55442f52f"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 286
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/4bd99d9bd226ba406ccb.9bd90c944fec.svg

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/4bd99d9bd226ba406ccb.9bd90c944fec.svg HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.opera.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://cdn-production-opera-website.operacdn.com/staticfiles/gx2021.acb9a7b5d1a2.css
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: SnlOEtj6pvoSEmLWo6FDGQps/cY6wkB4FIuLd9og8QHGHfGA5/1vPFiLmMRHaY24F7Q5klsZgzU=
x-amz-request-id: Q0YMGVZBZJ0Q7907
last-modified: Fri, 23 Feb 2024 18:32:05 GMT
etag: "9bd90c944fec88ff59f279f9c6c01d60"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 284
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/ds-icons/header/Security.a49e714f27ec.svg

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/assets/images/ds-icons/header/Security.a49e714f27ec.svg HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.opera.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: oxQTdug21WKTbGyT0c0O2vI6iARmNKY2ed55xVbktKNGIXDj9aLiBjW3SdcG4MUP8agdaDszJGw=
x-amz-request-id: 9R6XZMV3ET86S7Z6
last-modified: Fri, 23 Feb 2024 18:34:11 GMT
etag: "a49e714f27ec2953d2984dc9b918d3e5"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 861
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/47b3738fc2ea7ddbe1aa.e9f144d88e65.svg

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/47b3738fc2ea7ddbe1aa.e9f144d88e65.svg HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.opera.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://cdn-production-opera-website.operacdn.com/staticfiles/gx2021.acb9a7b5d1a2.css
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: 6f1x0pvX9NWza7MMw03aK4kBcNDAc1mDjDR2j+MiR0vaop3UUJf/+7mYlRB9ehOUj22HFCzmrE0=
x-amz-request-id: YTBJ94G9YVB2YVT7
last-modified: Fri, 23 Feb 2024 18:32:04 GMT
etag: "e9f144d88e65cf412da0f5c4ee25e564"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 297
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/ae715c3fb95e133ea466.54cfdcf4104e.svg

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/ae715c3fb95e133ea466.54cfdcf4104e.svg HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.opera.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://cdn-production-opera-website.operacdn.com/staticfiles/gx2021.acb9a7b5d1a2.css
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: +0OoG0ov9gIaORbQ02qdJuN5yDg9cmUt3PqLFeRT3i6DDd5TAShIuX/kgOUmOJwfBOrZzWdzlek=
x-amz-request-id: 5VG4CGMXNR9V763F
last-modified: Fri, 23 Feb 2024 18:32:39 GMT
etag: "54cfdcf4104ea839865f95aa0b574406"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 168
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:03 GMT
date: Sun, 25 Feb 2024 07:52:03 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/b606148c8e6ddb775208.43881a474ab8.woff2

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/b606148c8e6ddb775208.43881a474ab8.woff2 HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.opera.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://cdn-production-opera-website.operacdn.com/staticfiles/latinext.d7788e6fd132.css
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: +7fac98CcI6YrjrS2c/Lg5CNA3zoSEbHeyz9e+xlzM0CFYaTCi70ye5TJ9yREQMOH3w89+K5Oz0=
x-amz-request-id: 5VG9E31WKP4SJKZ3
last-modified: Fri, 23 Feb 2024 18:36:04 GMT
etag: "43881a474ab80ea6f793db5211d28cf1"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: binary/octet-stream
server: AmazonS3
content-length: 24104
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:04 GMT
date: Sun, 25 Feb 2024 07:52:04 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/067e5dad13c9184c2ba1.c0d25ced7cb5.woff2

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/067e5dad13c9184c2ba1.c0d25ced7cb5.woff2 HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.opera.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://cdn-production-opera-website.operacdn.com/staticfiles/latinext.d7788e6fd132.css
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: tWWEBr4iWjqyvrrl2HYQkopwpqJZWNlrRAiFZSMIMzpdQqmSGlI4DLDX5GnV2pjNfIS9u+TWtCM=
x-amz-request-id: KPFWW137MZKTANWT
last-modified: Fri, 23 Feb 2024 18:31:54 GMT
etag: "c0d25ced7cb5dcf4410e6968f7f7848c"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: binary/octet-stream
server: AmazonS3
content-length: 28072
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:04 GMT
date: Sun, 25 Feb 2024 07:52:04 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/f04b6e345ce5ac184010.svg

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/f04b6e345ce5ac184010.svg HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.opera.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: OsbdO8fLVz1NZLrHHnonXNg8b6YPNYamrV20DwL6Jf/0k/8OoKHyQxhdIpqM8n5y03gGTHadpAk=
x-amz-request-id: WGKVMAMNXQRRC908
last-modified: Fri, 23 Feb 2024 18:36:08 GMT
etag: "3c4663c8759ecfecfd8b03bdf208f27e"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 221
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:06 GMT
date: Sun, 25 Feb 2024 07:52:06 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
GET

https://cdn-production-opera-website.operacdn.com/staticfiles/b21a8376d942833de6fc.91f7ad7162e8.woff2

msedge.exe

Remote address:

104.84.85.174:443

Request

GET /staticfiles/b21a8376d942833de6fc.91f7ad7162e8.woff2 HTTP/2.0
host: cdn-production-opera-website.operacdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.opera.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://cdn-production-opera-website.operacdn.com/staticfiles/latinext.d7788e6fd132.css
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: jgdhCrtSrRqczMimpMQ44EEhxbxXJaK+wATV1EZZHO3UjsgNTTbjanGTmJcJeeggyPXlAejt8Zs=
x-amz-request-id: KPFMRCBK3SK4C3X0
last-modified: Fri, 23 Feb 2024 18:36:04 GMT
etag: "91f7ad7162e8018b0cf239c70735d664"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: binary/octet-stream
server: AmazonS3
content-length: 26416
cache-control: max-age=31536000
expires: Mon, 24 Feb 2025 07:52:06 GMT
date: Sun, 25 Feb 2024 07:52:06 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
access-control-max-age: 0
access-control-allow-credentials: false
access-control-allow-methods: GET,HEAD
access-control-allow-origin: *
DNS

234.179.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

234.179.250.142.in-addr.arpa

IN PTR

Response

234.179.250.142.in-addr.arpa

IN PTR

lhr25s31-in-f101e100net
DNS

14.213.58.216.in-addr.arpa

Remote address:

8.8.8.8:53

Request

14.213.58.216.in-addr.arpa

IN PTR

Response

14.213.58.216.in-addr.arpa

IN PTR

lhr25s25-in-f141e100net

14.213.58.216.in-addr.arpa

IN PTR

ber01s14-in-f14�H
DNS

174.85.84.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

174.85.84.104.in-addr.arpa

IN PTR

Response

174.85.84.104.in-addr.arpa

IN PTR

a104-84-85-174deploystaticakamaitechnologiescom
DNS

227.179.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

227.179.250.142.in-addr.arpa

IN PTR

Response

227.179.250.142.in-addr.arpa

IN PTR

lhr25s31-in-f31e100net
DNS

232.179.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

232.179.250.142.in-addr.arpa

IN PTR

Response

232.179.250.142.in-addr.arpa

IN PTR

lhr25s31-in-f81e100net
DNS

www.redditstatic.com

msedge.exe

Remote address:

8.8.8.8:53

Request

www.redditstatic.com

IN A

Response

www.redditstatic.com

IN CNAME

dualstack.reddit.map.fastly.net

dualstack.reddit.map.fastly.net

IN A

151.101.1.140

dualstack.reddit.map.fastly.net

IN A

151.101.65.140

dualstack.reddit.map.fastly.net

IN A

151.101.129.140

dualstack.reddit.map.fastly.net

IN A

151.101.193.140
DNS

static.hotjar.com

msedge.exe

Remote address:

8.8.8.8:53

Request

static.hotjar.com

IN A

Response

static.hotjar.com

IN CNAME

static-cdn.hotjar.com

static-cdn.hotjar.com

IN A

18.239.208.87

static-cdn.hotjar.com

IN A

18.239.208.55

static-cdn.hotjar.com

IN A

18.239.208.123

static-cdn.hotjar.com

IN A

18.239.208.104
DNS

snap.licdn.com

msedge.exe

Remote address:

8.8.8.8:53

Request

snap.licdn.com

IN A

Response

snap.licdn.com

IN CNAME

od.linkedin.edgesuite.net

od.linkedin.edgesuite.net

IN CNAME

a1916.dscg2.akamai.net

a1916.dscg2.akamai.net

IN A

88.221.134.88

a1916.dscg2.akamai.net

IN A

88.221.135.104
DNS

tags.creativecdn.com

msedge.exe

Remote address:

8.8.8.8:53

Request

tags.creativecdn.com

IN A

Response

tags.creativecdn.com

IN CNAME

1589314308.rsc.cdn77.org

1589314308.rsc.cdn77.org

IN A

195.181.164.21

1589314308.rsc.cdn77.org

IN A

89.187.167.5
DNS

connect.facebook.net

msedge.exe

Remote address:

8.8.8.8:53

Request

connect.facebook.net

IN A

Response

connect.facebook.net

IN CNAME

scontent.xx.fbcdn.net

scontent.xx.fbcdn.net

IN A

163.70.147.23
GET

https://www.redditstatic.com/ads/pixel.js

msedge.exe

Remote address:

151.101.1.140:443

Request

GET /ads/pixel.js HTTP/2.0
host: www.redditstatic.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 15 Feb 2024 20:38:48 GMT
etag: "9a680c8c475d8bba600d4d87b4fa7ee5"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=60
content-encoding: gzip
content-type: application/javascript
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 25 Feb 2024 07:52:06 GMT
vary: Accept-Encoding,Origin
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}, {"group": "w3-reporting-csp", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-csp.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
content-length: 8702
GET

https://snap.licdn.com/li.lms-analytics/insight.min.js

msedge.exe

Remote address:

88.221.134.88:443

Request

GET /li.lms-analytics/insight.min.js HTTP/2.0
host: snap.licdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 20 Feb 2024 09:12:49 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
content-type: application/javascript;charset=utf-8
content-encoding: gzip
content-length: 16480
cache-control: max-age=48656
date: Sun, 25 Feb 2024 07:52:06 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-cdn: AKAM
GET

https://tags.creativecdn.com/1gnG4zGXkPW95vXqyMLu.js

msedge.exe

Remote address:

195.181.164.21:443

Request

GET /1gnG4zGXkPW95vXqyMLu.js HTTP/2.0
host: tags.creativecdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sun, 25 Feb 2024 07:52:06 GMT
content-type: application/javascript
vary: Accept-Encoding
x-guploader-uploadid: ADPycdv7W2W5BMzGzMraYCRWZHKXhK0Z5Nn1qI4sA2lQCeWCZvNNiq1D0zMem1k2NHbteJIgEvC6ALQMpfvmNaWLwjYycA
cache-control: public, max-age=3600
expires: Thu, 19 Oct 2023 07:25:05 GMT
last-modified: Wed, 12 Oct 2022 07:41:11 GMT
etag: W/"7dd71e4b922b44d4a1b639cea2047fcd"
vary: Accept-Encoding
x-goog-generation: 1665560471627068
x-goog-metageneration: 4
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1741
x-goog-hash: crc32c=U/iOdA==
x-goog-hash: md5=fdceS5IrRNShtjnOogR/zQ==
x-goog-storage-class: STANDARD
x-guploader-response-body-transformations: gunzipped
warning: 214 UploadServer gunzipped
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
server: CDN77-Turbo
x-77-nzt: EQwBw7WkDQH3+QQAAA
x-77-nzt-ray: d09eba0f406ae2bfa6f1da652de6ed15
x-accel-expires: @1708849844
x-accel-date: 1708846253
x-cache: HIT
x-age: 1273
x-77-pop: londonGB
x-77-cache: HIT
x-77-age: 1273
content-encoding: gzip
GET

https://static.hotjar.com/c/hotjar-445451.js?sv=7

msedge.exe

Remote address:

18.239.208.87:443

Request

GET /c/hotjar-445451.js?sv=7 HTTP/2.0
host: static.hotjar.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Sun, 25 Feb 2024 07:52:06 GMT
cache-control: max-age=60
etag: W/b4401b1f285a2247722283de4ccd84e9
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3e4136d7d0934a67d56236a4bbc281f4.cloudfront.net (CloudFront)
x-amz-cf-pop: BRU50-P1
x-amz-cf-id: p3P4uJ4M6Nr7_6Tu8dO12hOJzvROFVEoSUVOplDk5WgqulJpO2qhxA==
age: 21
DNS

140.1.101.151.in-addr.arpa

Remote address:

8.8.8.8:53

Request

140.1.101.151.in-addr.arpa

IN PTR

Response
DNS

21.164.181.195.in-addr.arpa

Remote address:

8.8.8.8:53

Request

21.164.181.195.in-addr.arpa

IN PTR

Response

21.164.181.195.in-addr.arpa

IN PTR

263888592loncdn77com
DNS

23.147.70.163.in-addr.arpa

Remote address:

8.8.8.8:53

Request

23.147.70.163.in-addr.arpa

IN PTR

Response

23.147.70.163.in-addr.arpa

IN PTR

xx-fbcdn-shv-01-lhr6fbcdnnet
DNS

14.178.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

14.178.250.142.in-addr.arpa

IN PTR

Response

14.178.250.142.in-addr.arpa

IN PTR

lhr48s27-in-f141e100net
DNS

87.208.239.18.in-addr.arpa

Remote address:

8.8.8.8:53

Request

87.208.239.18.in-addr.arpa

IN PTR

Response

87.208.239.18.in-addr.arpa

IN PTR

server-18-239-208-87bru50r cloudfrontnet
DNS

19.208.239.18.in-addr.arpa

Remote address:

8.8.8.8:53

Request

19.208.239.18.in-addr.arpa

IN PTR

Response

19.208.239.18.in-addr.arpa

IN PTR

server-18-239-208-19bru50r cloudfrontnet
DNS

88.134.221.88.in-addr.arpa

Remote address:

8.8.8.8:53

Request

88.134.221.88.in-addr.arpa

IN PTR

Response

88.134.221.88.in-addr.arpa

IN PTR

a88-221-134-88deploystaticakamaitechnologiescom
DNS

region1.analytics.google.com

msedge.exe

Remote address:

8.8.8.8:53

Request

region1.analytics.google.com

IN A

Response

region1.analytics.google.com

IN A

216.239.34.36

region1.analytics.google.com

IN A

216.239.32.36
POST

https://region1.analytics.google.com/g/collect?v=2&tid=G-T18E1GTPQG&gtm=45je42l0v878149888z8811573329za220&_p=1708847521292&_gaz=1&gcd=13l3l3l3l1&npa=0&dma=0&cid=677055215.1708847525&ul=en-us&sr=1280x720&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&pscdl=noapi&_s=1&sid=1708847525&sct=1&seg=0&dl=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_source%3DPWNgames3%26utm_medium%3Dpa%26utm_campaign%3DPWN_GB_LVR_OOM%26utm_id%3D3534090642644f0bb55abb88cd0aa81b%26edition%3Dstd-1&dr=https%3A%2F%2F1.itstime.media%2F&dt=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=5852

msedge.exe

Remote address:

216.239.34.36:443

Request

POST /g/collect?v=2&tid=G-T18E1GTPQG&gtm=45je42l0v878149888z8811573329za220&_p=1708847521292&_gaz=1&gcd=13l3l3l3l1&npa=0&dma=0&cid=677055215.1708847525&ul=en-us&sr=1280x720&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&pscdl=noapi&_s=1&sid=1708847525&sct=1&seg=0&dl=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_source%3DPWNgames3%26utm_medium%3Dpa%26utm_campaign%3DPWN_GB_LVR_OOM%26utm_id%3D3534090642644f0bb55abb88cd0aa81b%26edition%3Dstd-1&dr=https%3A%2F%2F1.itstime.media%2F&dt=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=5852 HTTP/2.0
host: region1.analytics.google.com
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://www.opera.com
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

stats.g.doubleclick.net

msedge.exe

Remote address:

8.8.8.8:53

Request

stats.g.doubleclick.net

IN A

Response

stats.g.doubleclick.net

IN A

142.251.173.157

stats.g.doubleclick.net

IN A

142.251.173.155

stats.g.doubleclick.net

IN A

142.251.173.154

stats.g.doubleclick.net

IN A

142.251.173.156
DNS

www.google.co.uk

msedge.exe

Remote address:

8.8.8.8:53

Request

www.google.co.uk

IN A

Response

www.google.co.uk

IN A

216.58.204.67
GET

https://www.redditstatic.com/ads/conversions-config/v1/pixel/config/t2_378pcjv6_telemetry

msedge.exe

Remote address:

151.101.1.140:443

Request

GET /ads/conversions-config/v1/pixel/config/t2_378pcjv6_telemetry HTTP/2.0
host: www.redditstatic.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.opera.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

access-control-allow-origin: *
cache-control: max-age=300
content-type: application/json
content-encoding: gzip
accept-ranges: bytes
date: Sun, 25 Feb 2024 07:52:07 GMT
via: 1.1 varnish
vary: Accept-Encoding,Origin
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}, {"group": "w3-reporting-csp", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-csp.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
content-length: 98
POST

https://stats.g.doubleclick.net/g/collect?v=2&tid=G-T18E1GTPQG&cid=677055215.1708847525&gtm=45je42l0v878149888z8811573329za220&aip=1&dma=0&gcd=13l3l3l3l1&npa=0

msedge.exe

Remote address:

142.251.173.157:443

Request

POST /g/collect?v=2&tid=G-T18E1GTPQG&cid=677055215.1708847525&gtm=45je42l0v878149888z8811573329za220&aip=1&dma=0&gcd=13l3l3l3l1&npa=0 HTTP/2.0
host: stats.g.doubleclick.net
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://www.opera.com
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://www.google.co.uk/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-T18E1GTPQG&cid=677055215.1708847525&gtm=45je42l0v878149888z8811573329za220&aip=1&dma=0&gcd=13l3l3l3l1&npa=0&z=320045025

msedge.exe

Remote address:

216.58.204.67:443

Request

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-T18E1GTPQG&cid=677055215.1708847525&gtm=45je42l0v878149888z8811573329za220&aip=1&dma=0&gcd=13l3l3l3l1&npa=0&z=320045025 HTTP/2.0
host: www.google.co.uk
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

alb.reddit.com

msedge.exe

Remote address:

8.8.8.8:53

Request

alb.reddit.com

IN A

Response

alb.reddit.com

IN CNAME

reddit.map.fastly.net

reddit.map.fastly.net

IN A

151.101.1.140

reddit.map.fastly.net

IN A

151.101.65.140

reddit.map.fastly.net

IN A

151.101.129.140

reddit.map.fastly.net

IN A

151.101.193.140
GET

https://alb.reddit.com/rp.gif?ts=1708847525541&id=t2_378pcjv6&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&m.conversionId=&uuid=8fb10694-e46c-429c-b3c6-8ced86f042e1&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=720&v=rdt_c9439d84&dpm=&dpcc=&dprc=

msedge.exe

Remote address:

151.101.1.140:443

Request

GET /rp.gif?ts=1708847525541&id=t2_378pcjv6&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&m.conversionId=&uuid=8fb10694-e46c-429c-b3c6-8ced86f042e1&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=720&v=rdt_c9439d84&dpm=&dpcc=&dprc= HTTP/2.0
host: alb.reddit.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

server: Varnish
retry-after: 0
cross-origin-resource-policy: cross-origin
content-type: image/gif
accept-ranges: bytes
date: Sun, 25 Feb 2024 07:52:07 GMT
via: 1.1 varnish
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}, {"group": "w3-reporting-csp", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-csp.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.3, "failure_fraction": 0.3}
content-length: 42
DNS

ams.creativecdn.com

msedge.exe

Remote address:

8.8.8.8:53

Request

ams.creativecdn.com

IN A

Response

ams.creativecdn.com

IN A

185.184.8.90
DNS

px.ads.linkedin.com

msedge.exe

Remote address:

8.8.8.8:53

Request

px.ads.linkedin.com

IN A

Response

px.ads.linkedin.com

IN CNAME

exp1.www.linkedin.com

exp1.www.linkedin.com

IN CNAME

www-linkedin-com.l-0005.l-msedge.net

www-linkedin-com.l-0005.l-msedge.net

IN CNAME

l-0005.l-msedge.net

l-0005.l-msedge.net

IN A

13.107.42.14
DNS

script.hotjar.com

msedge.exe

Remote address:

8.8.8.8:53

Request

script.hotjar.com

IN A

Response

script.hotjar.com

IN A

18.239.208.34

script.hotjar.com

IN A

18.239.208.43

script.hotjar.com

IN A

18.239.208.36

script.hotjar.com

IN A

18.239.208.106
OPTIONS

https://ams.creativecdn.com/tags/v2?type=json

msedge.exe

Remote address:

185.184.8.90:443

Request

OPTIONS /tags/v2?type=json HTTP/2.0
host: ams.creativecdn.com
accept: */*
access-control-request-method: POST
access-control-request-headers: content-type
origin: https://www.opera.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-mode: cors
sec-fetch-site: cross-site
sec-fetch-dest: empty
referer: https://www.opera.com/gx?utm_source=PWNgames3&utm_medium=pa&utm_campaign=PWN_GB_LVR_OOM&utm_id=3534090642644f0bb55abb88cd0aa81b&edition=std-1
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sun, 25 Feb 2024 07:52:07 GMT
access-control-allow-origin: https://www.opera.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin
access-control-allow-headers: content-type
content-length: 0
POST

https://ams.creativecdn.com/tags/v2?type=json

msedge.exe

Remote address:

185.184.8.90:443

Request

POST /tags/v2?type=json HTTP/2.0
host: ams.creativecdn.com
content-length: 280
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: */*
origin: https://www.opera.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.opera.com/gx?utm_source=PWNgames3&utm_medium=pa&utm_campaign=PWN_GB_LVR_OOM&utm_id=3534090642644f0bb55abb88cd0aa81b&edition=std-1
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 307

date: Sun, 25 Feb 2024 07:52:07 GMT
vary: Origin
access-control-allow-origin: https://www.opera.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
set-cookie: g=XdTziEwDnz0BQCfhmCQC_1708847527549;Path=/;Domain=.creativecdn.com;Expires=Mon, 24-Feb-2025 07:52:07 GMT;Max-Age=31536000;Secure;SameSite=None
set-cookie: c=XdTziEwDnz0BQCfhmCQC_1gnG4zGXkPW95vXqyMLu_1708847527549;Path=/;Domain=.creativecdn.com;Expires=Mon, 24-Feb-2025 07:52:07 GMT;Max-Age=31536000;Secure;SameSite=None;Partitioned
set-cookie: ts=1708847527;Path=/;Domain=.creativecdn.com;Expires=Mon, 24-Feb-2025 07:52:07 GMT;Max-Age=31536000;Secure;SameSite=None;Partitioned
expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
location: https://ams.creativecdn.com/tags/v2?type=json&tc=1
cache-control: no-cache, no-store, must-revalidate, private, max-age=0
pragma: no-cache
date: Sun, 25 Feb 2024 07:52:07 GMT
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-length: 0
OPTIONS

https://ams.creativecdn.com/tags/v2?type=json&tc=1

msedge.exe

Remote address:

185.184.8.90:443

Request

OPTIONS /tags/v2?type=json&tc=1 HTTP/2.0
host: ams.creativecdn.com
accept: */*
access-control-request-method: POST
access-control-request-headers: content-type
origin: https://www.opera.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-mode: cors
sec-fetch-site: cross-site
sec-fetch-dest: empty
referer: https://www.opera.com/gx?utm_source=PWNgames3&utm_medium=pa&utm_campaign=PWN_GB_LVR_OOM&utm_id=3534090642644f0bb55abb88cd0aa81b&edition=std-1
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sun, 25 Feb 2024 07:52:07 GMT
access-control-allow-origin: https://www.opera.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin
access-control-allow-headers: content-type
content-length: 0
POST

https://ams.creativecdn.com/tags/v2?type=json&tc=1

msedge.exe

Remote address:

185.184.8.90:443

Request

POST /tags/v2?type=json&tc=1 HTTP/2.0
host: ams.creativecdn.com
content-length: 280
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: */*
origin: https://www.opera.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.opera.com/gx?utm_source=PWNgames3&utm_medium=pa&utm_campaign=PWN_GB_LVR_OOM&utm_id=3534090642644f0bb55abb88cd0aa81b&edition=std-1
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sun, 25 Feb 2024 07:52:07 GMT
vary: Origin
access-control-allow-origin: https://www.opera.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
content-type: application/json;charset=utf-8
cache-control: no-cache, no-store, must-revalidate, private, max-age=0
pragma: no-cache
date: Sun, 25 Feb 2024 07:52:07 GMT
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-encoding: gzip
content-length: 151
GET

https://ams.creativecdn.com/external-identifier?id=0&p=appnexus&ti=1gnG4zGXkPW95vXqyMLu

msedge.exe

Remote address:

185.184.8.90:443

Request

GET /external-identifier?id=0&p=appnexus&ti=1gnG4zGXkPW95vXqyMLu HTTP/2.0
host: ams.creativecdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 204
DNS

www.google.com

msedge.exe

Remote address:

8.8.8.8:53

Request

www.google.com

IN A

Response

www.google.com

IN A

172.217.16.228
GET

https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=5404050&time=1708847525664&li_adsId=490fd059-e09c-4ff3-b6b6-09158a116cda&url=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_source%3DPWNgames3%26utm_medium%3Dpa%26utm_campaign%3DPWN_GB_LVR_OOM%26utm_id%3D3534090642644f0bb55abb88cd0aa81b%26edition%3Dstd-1

msedge.exe

Remote address:

13.107.42.14:443

Request

GET /collect?v=2&fmt=js&pid=5404050&time=1708847525664&li_adsId=490fd059-e09c-4ff3-b6b6-09158a116cda&url=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_source%3DPWNgames3%26utm_medium%3Dpa%26utm_campaign%3DPWN_GB_LVR_OOM%26utm_id%3D3534090642644f0bb55abb88cd0aa81b%26edition%3Dstd-1 HTTP/2.0
host: px.ads.linkedin.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

location: /collect?v=2&fmt=js&pid=5404050&time=1708847525664&li_adsId=490fd059-e09c-4ff3-b6b6-09158a116cda&url=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_source%3DPWNgames3%26utm_medium%3Dpa%26utm_campaign%3DPWN_GB_LVR_OOM%26utm_id%3D3534090642644f0bb55abb88cd0aa81b%26edition%3Dstd-1&cookiesTest=true
set-cookie: li_sugr=35ec8a77-f28c-4c93-9476-2e07400fd214; Max-Age=7776000; Expires=Sat, 25 May 2024 07:52:07 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
set-cookie: bcookie="v=2&696c8c8d-ac98-49ea-8ee9-648eb277ce93"; domain=.linkedin.com; Path=/; Secure; Expires=Mon, 24-Feb-2025 07:52:07 GMT; SameSite=None
set-cookie: lidc="b=TGST02:s=T:r=T:a=T:p=T:g=3200:u=1:x=1:i=1708847527:t=1708933927:v=2:sig=AQGvx6uUYMPcBcN_YuMBqgwd7FZinfH4"; Expires=Mon, 26 Feb 2024 07:52:07 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAYSMBHbQgagJRnx1lMZKg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 42BAE572B6794C2CB5E84E567CD38F4B Ref B: LON04EDGE0915 Ref C: 2024-02-25T07:52:07Z
date: Sun, 25 Feb 2024 07:52:07 GMT
content-length: 0
GET

https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=5404050&time=1708847525664&li_adsId=490fd059-e09c-4ff3-b6b6-09158a116cda&url=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_source%3DPWNgames3%26utm_medium%3Dpa%26utm_campaign%3DPWN_GB_LVR_OOM%26utm_id%3D3534090642644f0bb55abb88cd0aa81b%26edition%3Dstd-1&cookiesTest=true

msedge.exe

Remote address:

13.107.42.14:443

Request

GET /collect?v=2&fmt=js&pid=5404050&time=1708847525664&li_adsId=490fd059-e09c-4ff3-b6b6-09158a116cda&url=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_source%3DPWNgames3%26utm_medium%3Dpa%26utm_campaign%3DPWN_GB_LVR_OOM%26utm_id%3D3534090642644f0bb55abb88cd0aa81b%26edition%3Dstd-1&cookiesTest=true HTTP/2.0
host: px.ads.linkedin.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/javascript
set-cookie: bcookie="v=2&b323fef1-7c55-4674-8825-a19890f1e4bf"; domain=.linkedin.com; Path=/; Secure; Expires=Mon, 24-Feb-2025 07:52:07 GMT; SameSite=None
set-cookie: lidc="b=TGST02:s=T:r=T:a=T:p=T:g=3200:u=1:x=1:i=1708847527:t=1708933927:v=2:sig=AQGvx6uUYMPcBcN_YuMBqgwd7FZinfH4"; Expires=Mon, 26 Feb 2024 07:52:07 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAYSMBHfdF6jNJt8I8cQlg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: DD91C091EF1140C2B56491BC988D4BB2 Ref B: LON04EDGE0915 Ref C: 2024-02-25T07:52:07Z
date: Sun, 25 Feb 2024 07:52:07 GMT
content-length: 0
POST

https://px.ads.linkedin.com/wa/

msedge.exe

Remote address:

13.107.42.14:443

Request

POST /wa/ HTTP/2.0
host: px.ads.linkedin.com
content-length: 467
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: *
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
origin: https://www.opera.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 204

vary: Origin
set-cookie: bcookie="v=2&b3d33758-db39-4ea7-85dd-9fbaf7061646"; Domain=.linkedin.com; Expires=Mon, 24-Feb-2025 07:52:08 GMT; Path=/; Secure; SameSite=None
set-cookie: li_gc=MTswOzE3MDg4NDc1Mjg7MjswMjFi/xQ1rgRZ93Eh/pNvDFYxAxx1DW1gjFaoRTBZnIAQdw==; Domain=.linkedin.com; Expires=Fri, 23 Aug 2024 07:52:08 GMT; Path=/; Secure; SameSite=None
set-cookie: lidc="b=TGST02:s=T:r=T:a=T:p=T:g=3200:u=1:x=1:i=1708847528:t=1708933928:v=2:sig=AQE4-dD2HOECeI3PDCq2lOFRPC0NhtEP"; Expires=Mon, 26 Feb 2024 07:52:08 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
access-control-allow-origin: https://www.opera.com
access-control-allow-credentials: true
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAYSMBHiV5dy7mTmpOjFqg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 573E108B40E54074987A2BB99F95A397 Ref B: LON04EDGE0915 Ref C: 2024-02-25T07:52:07Z
date: Sun, 25 Feb 2024 07:52:08 GMT
GET

https://script.hotjar.com/modules.3ba69200791f16077ba8.js

msedge.exe

Remote address:

18.239.208.34:443

Request

GET /modules.3ba69200791f16077ba8.js HTTP/2.0
host: script.hotjar.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/javascript; charset=utf-8
content-length: 56245
date: Thu, 22 Feb 2024 11:39:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "35c74e10d354e1166c41fd72674e0488"
last-modified: Thu, 22 Feb 2024 11:38:42 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0f203fd7b592f258a42a32f365eb241e.cloudfront.net (CloudFront)
x-amz-cf-pop: BRU50-P1
x-amz-cf-id: aDcqfjVXFUP4TGCdjoHnOlVB-NrWNBW-IqOBee58ocf8hv6Amfh0Wg==
age: 245581
GET

https://www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j101&tid=UA-4118503-39&cid=677055215.1708847525&jid=1316831042&_u=YADAAEAAAAAAACAAI~&z=122757017

msedge.exe

Remote address:

172.217.16.228:443

Request

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j101&tid=UA-4118503-39&cid=677055215.1708847525&jid=1316831042&_u=YADAAEAAAAAAACAAI~&z=122757017 HTTP/2.0
host: www.google.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

www.facebook.com

msedge.exe

Remote address:

8.8.8.8:53

Request

www.facebook.com

IN A

Response

www.facebook.com

IN CNAME

star-mini.c10r.facebook.com

star-mini.c10r.facebook.com

IN A

157.240.214.35
DNS

36.34.239.216.in-addr.arpa

Remote address:

8.8.8.8:53

Request

36.34.239.216.in-addr.arpa

IN PTR

Response
DNS

157.173.251.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

157.173.251.142.in-addr.arpa

IN PTR

Response

157.173.251.142.in-addr.arpa

IN PTR

wi-in-f1571e100net
DNS

157.173.251.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

157.173.251.142.in-addr.arpa

IN PTR
DNS

67.204.58.216.in-addr.arpa

Remote address:

8.8.8.8:53

Request

67.204.58.216.in-addr.arpa

IN PTR

Response

67.204.58.216.in-addr.arpa

IN PTR

lhr48s49-in-f31e100net

67.204.58.216.in-addr.arpa

IN PTR

lhr25s13-in-f67�G

67.204.58.216.in-addr.arpa

IN PTR

lhr25s13-in-f3�G
DNS

90.8.184.185.in-addr.arpa

Remote address:

8.8.8.8:53

Request

90.8.184.185.in-addr.arpa

IN PTR

Response

90.8.184.185.in-addr.arpa

IN PTR

ip-185-184-8-90rtbhousenet
DNS

14.42.107.13.in-addr.arpa

Remote address:

8.8.8.8:53

Request

14.42.107.13.in-addr.arpa

IN PTR

Response
DNS

34.208.239.18.in-addr.arpa

Remote address:

8.8.8.8:53

Request

34.208.239.18.in-addr.arpa

IN PTR

Response

34.208.239.18.in-addr.arpa

IN PTR

server-18-239-208-34bru50r cloudfrontnet
DNS

228.16.217.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

228.16.217.172.in-addr.arpa

IN PTR

Response

228.16.217.172.in-addr.arpa

IN PTR

mad08s04-in-f41e100net

228.16.217.172.in-addr.arpa

IN PTR

lhr48s28-in-f4�H
DNS

ib.adnxs.com

msedge.exe

Remote address:

8.8.8.8:53

Request

ib.adnxs.com

IN A

Response

ib.adnxs.com

IN CNAME

g.geo.appnexusgslb.net

g.geo.appnexusgslb.net

IN CNAME

ib.anycast.adnxs.com

ib.anycast.adnxs.com

IN A

185.89.210.122

ib.anycast.adnxs.com

IN A

185.89.210.153

ib.anycast.adnxs.com

IN A

185.89.210.141

ib.anycast.adnxs.com

IN A

185.89.210.20

ib.anycast.adnxs.com

IN A

185.89.210.46

ib.anycast.adnxs.com

IN A

185.89.210.90

ib.anycast.adnxs.com

IN A

185.89.210.82

ib.anycast.adnxs.com

IN A

185.89.210.180

ib.anycast.adnxs.com

IN A

185.89.211.12

ib.anycast.adnxs.com

IN A

185.89.210.212

ib.anycast.adnxs.com

IN A

185.89.211.116

ib.anycast.adnxs.com

IN A

185.89.211.84
GET

https://ib.adnxs.com/getuid?https://ams.creativecdn.com/external-identifier?id=$UID&p=appnexus&ti=1gnG4zGXkPW95vXqyMLu

msedge.exe

Remote address:

185.89.210.122:443

Request

GET /getuid?https://ams.creativecdn.com/external-identifier?id=$UID&p=appnexus&ti=1gnG4zGXkPW95vXqyMLu HTTP/2.0
host: ib.adnxs.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 307

server: nginx/1.23.4
date: Sun, 25 Feb 2024 07:52:07 GMT
content-type: text/html; charset=utf-8
content-length: 0
cache-control: no-store, no-cache, private
pragma: no-cache
expires: Sat, 15 Nov 2008 16:00:00 GMT
p3p: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
x-xss-protection: 0
access-control-allow-credentials: true
access-control-allow-origin: *
accept-ch: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fams.creativecdn.com%2Fexternal-identifier%3Fid%3D%24UID%26p%3Dappnexus%26ti%3D1gnG4zGXkPW95vXqyMLu
an-x-request-uuid: a13086c8-38b7-4ce2-a4e5-286271938d6e
set-cookie: XANDR_PANID=qSxIOVAckkj3y69TU2N-45mnf-XYXNtuIDoXUntFv_UuFe3g32FKACpl4hKcPsNpWEYS3vJoVsn1rIsCWgIxN8m8RE58WhkxGqW_D1FkSyE.; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 25-May-2024 07:52:07 GMT; Domain=.adnxs.com; Secure; Partitioned
set-cookie: receive-cookie-deprecation=1; SameSite=None; Path=/; Max-Age=314496000; Expires=Sun, 12-Feb-2034 07:52:07 GMT; Domain=.adnxs.com; Secure; HttpOnly; Partitioned
set-cookie: uuid2=1810937078717044875; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 25-May-2024 07:52:07 GMT; Domain=.adnxs.com; Secure; HttpOnly
x-proxy-origin: 89.149.23.59; 89.149.23.59; 954.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
GET

https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fams.creativecdn.com%2Fexternal-identifier%3Fid%3D%24UID%26p%3Dappnexus%26ti%3D1gnG4zGXkPW95vXqyMLu

msedge.exe

Remote address:

185.89.210.122:443

Request

GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fams.creativecdn.com%2Fexternal-identifier%3Fid%3D%24UID%26p%3Dappnexus%26ti%3D1gnG4zGXkPW95vXqyMLu HTTP/2.0
host: ib.adnxs.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

server: nginx/1.23.4
date: Sun, 25 Feb 2024 07:52:07 GMT
content-type: text/html; charset=utf-8
content-length: 0
cache-control: no-store, no-cache, private
pragma: no-cache
expires: Sat, 15 Nov 2008 16:00:00 GMT
p3p: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
x-xss-protection: 0
access-control-allow-credentials: true
access-control-allow-origin: *
accept-ch: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
location: https://ams.creativecdn.com/external-identifier?id=0&p=appnexus&ti=1gnG4zGXkPW95vXqyMLu
an-x-request-uuid: 6cb6b47f-7014-448b-a924-96761e920510
set-cookie: receive-cookie-deprecation=1; SameSite=None; Path=/; Max-Age=314496000; Expires=Sun, 12-Feb-2034 07:52:07 GMT; Domain=.adnxs.com; Secure; HttpOnly; Partitioned
x-proxy-origin: 89.149.23.59; 89.149.23.59; 954.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
GET

https://www.opera.com/webmanifest-gx

msedge.exe

Remote address:

3.68.131.146:443

Request

GET /webmanifest-gx HTTP/2.0
host: www.opera.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: manifest
referer: https://www.opera.com/gx?utm_source=PWNgames3&utm_medium=pa&utm_campaign=PWN_GB_LVR_OOM&utm_id=3534090642644f0bb55abb88cd0aa81b&edition=std-1
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sun, 25 Feb 2024 07:52:08 GMT
content-type: content-type: application/manifest+json
content-length: 625
content-language: en
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=3600
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=63072000; includeSubdomains; preload
content-security-policy: frame-ancestors 'self' https://*.opera.com; upgrade-insecure-requests;
accept-ranges: bytes
DNS

bat.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

bat.bing.com

IN A

Response

bat.bing.com

IN CNAME

bat-bing-com.a-0001.a-msedge.net

bat-bing-com.a-0001.a-msedge.net

IN CNAME

dual-a-0001.a-msedge.net

dual-a-0001.a-msedge.net

IN A

204.79.197.200

dual-a-0001.a-msedge.net

IN A

13.107.21.200
GET

https://bat.bing.com/bat.js

msedge.exe

Remote address:

204.79.197.200:443

Request

GET /bat.js HTTP/2.0
host: bat.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: private,max-age=1800
content-length: 13197
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 22 Feb 2024 21:00:50 GMT
accept-ranges: bytes
etag: "0adee36d265da1:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 1073FFB64EFD4E078CFDCE9CB2173C28 Ref B: LON04EDGE0616 Ref C: 2024-02-25T07:52:08Z
date: Sun, 25 Feb 2024 07:52:07 GMT
GET

https://bat.bing.com/p/action/5063952.js

msedge.exe

Remote address:

204.79.197.200:443

Request

GET /p/action/5063952.js HTTP/2.0
host: bat.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: private,max-age=60
content-type: application/javascript; charset=utf-8
content-encoding: br
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: C9E2F0F539FF450E9846EA2BC2298EFB Ref B: LON04EDGE0616 Ref C: 2024-02-25T07:52:08Z
date: Sun, 25 Feb 2024 07:52:07 GMT
GET

https://bat.bing.com/action/0?ti=5063952&Ver=2&mid=7c8833e4-4b56-4cfa-9905-2a6759545a37&sid=c5b389b0d3b211eeb1db3f047750bc18&vid=c5b40350d3b211ee81fc63ff9016997e&vids=1&msclkid=N&pi=-1416307915&lg=en-US&sw=1280&sh=720&sc=24&tl=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&p=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_source%3DPWNgames3%26utm_medium%3Dpa%26utm_campaign%3DPWN_GB_LVR_OOM%26utm_id%3D3534090642644f0bb55abb88cd0aa81b%26edition%3Dstd-1&r=https%3A%2F%2F1.itstime.media%2F&lt=7161&evt=pageLoad&sv=1&rn=336700

msedge.exe

Remote address:

204.79.197.200:443

Request

GET /action/0?ti=5063952&Ver=2&mid=7c8833e4-4b56-4cfa-9905-2a6759545a37&sid=c5b389b0d3b211eeb1db3f047750bc18&vid=c5b40350d3b211ee81fc63ff9016997e&vids=1&msclkid=N&pi=-1416307915&lg=en-US&sw=1280&sh=720&sc=24&tl=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&p=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_source%3DPWNgames3%26utm_medium%3Dpa%26utm_campaign%3DPWN_GB_LVR_OOM%26utm_id%3D3534090642644f0bb55abb88cd0aa81b%26edition%3Dstd-1&r=https%3A%2F%2F1.itstime.media%2F&lt=7161&evt=pageLoad&sv=1&rn=336700 HTTP/2.0
host: bat.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 204

cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=3A49136957C46CCF286D075956E36D37; domain=.bing.com; expires=Fri, 21-Mar-2025 07:52:08 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: E4A04D6535034DBF826AF75F25A57D97 Ref B: LON04EDGE0616 Ref C: 2024-02-25T07:52:08Z
date: Sun, 25 Feb 2024 07:52:07 GMT
GET

https://c.bing.com/c.gif?ctsa=mr&CtsSyncId=7283F2946F394B00AE31F6A71851CBFB&RedC=c.clarity.ms&MXFR=00A51E99372A6731132C0AA9332A6976

msedge.exe

Remote address:

204.79.197.200:443

Request

GET /c.gif?ctsa=mr&CtsSyncId=7283F2946F394B00AE31F6A71851CBFB&RedC=c.clarity.ms&MXFR=00A51E99372A6731132C0AA9332A6976 HTTP/2.0
host: c.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?ctsa=mr&CtsSyncId=7283F2946F394B00AE31F6A71851CBFB&MUID=1C03AC0855B165453DBAB8385496648F
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: MUID=1C03AC0855B165453DBAB8385496648F; domain=.bing.com; expires=Fri, 21-Mar-2025 07:52:08 GMT; path=/; SameSite=None; Secure; Priority=High;
set-cookie: MR=0; domain=c.bing.com; expires=Sun, 03-Mar-2024 07:52:08 GMT; path=/; SameSite=None; Secure;
set-cookie: SRM_B=1C03AC0855B165453DBAB8385496648F; domain=c.bing.com; expires=Fri, 21-Mar-2025 07:52:08 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: BCED48A3843D4DBC9ACFE02C85F18CD3 Ref B: LON04EDGE0616 Ref C: 2024-02-25T07:52:08Z
date: Sun, 25 Feb 2024 07:52:08 GMT
content-length: 0
DNS

www.clarity.ms

msedge.exe

Remote address:

8.8.8.8:53

Request

www.clarity.ms

IN A

Response

www.clarity.ms

IN CNAME

clarity.azurefd.net

clarity.azurefd.net

IN CNAME

azurefd-t-prod.trafficmanager.net

azurefd-t-prod.trafficmanager.net

IN CNAME

shed.dual-low.part-0036.t-0009.t-msedge.net

shed.dual-low.part-0036.t-0009.t-msedge.net

IN CNAME

part-0036.t-0009.t-msedge.net

part-0036.t-0009.t-msedge.net

IN A

13.107.246.64

part-0036.t-0009.t-msedge.net

IN A

13.107.213.64
GET

https://www.clarity.ms/tag/uet/5063952?insights=1

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /tag/uet/5063952?insights=1 HTTP/2.0
host: www.clarity.ms
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sun, 25 Feb 2024 07:52:08 GMT
content-type: application/x-javascript
content-length: 838
cache-control: no-cache, no-store
expires: -1
set-cookie: CLID=520d15136ac140409faaeb684e482d28.20240225.20250224; expires=Mon, 24 Feb 2025 07:52:08 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:e55edbbe-e22b-46b4-8313-9ee2a4e71d12
x-azure-ref: 20240225T075208Z-hca41u5e1p48z4v17eesdu30yg00000001hg000000006mqg
x-cache: CONFIG_NOCACHE
accept-ranges: bytes
GET

https://www.clarity.ms/s/0.7.20/clarity.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /s/0.7.20/clarity.js HTTP/2.0
host: www.clarity.ms
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: CLID=520d15136ac140409faaeb684e482d28.20240225.20250224

Response

HTTP/2.0 200

date: Sun, 25 Feb 2024 07:52:08 GMT
content-type: application/javascript;charset=utf-8
vary: Accept-Encoding
last-modified: Wed, 24 Jan 2024 14:33:55 GMT
etag: W/"0x8DC1CE97EB406F9"
x-ms-request-id: 61deedbc-c01e-003b-78c4-656b7f000000
x-ms-version: 2018-03-28
access-control-allow-origin: *
cache-control: public, max-age=86400
x-azure-ref: 20240225T075208Z-hca41u5e1p48z4v17eesdu30yg00000001hg000000006mqw
x-fd-int-roxy-purgeid: 51562430
x-cache: TCP_HIT
content-encoding: br
DNS

35.214.240.157.in-addr.arpa

Remote address:

8.8.8.8:53

Request

35.214.240.157.in-addr.arpa

IN PTR

Response

35.214.240.157.in-addr.arpa

IN PTR

edge-star-mini-shv-02-lhr8facebookcom
DNS

122.210.89.185.in-addr.arpa

Remote address:

8.8.8.8:53

Request

122.210.89.185.in-addr.arpa

IN PTR

Response

122.210.89.185.in-addr.arpa

IN PTR

954bm-nginx-loadbalancermgmtams3adnexusnet
DNS

200.197.79.204.in-addr.arpa

Remote address:

8.8.8.8:53

Request

200.197.79.204.in-addr.arpa

IN PTR

Response

200.197.79.204.in-addr.arpa

IN PTR

a-0001a-msedgenet
DNS

c.clarity.ms

msedge.exe

Remote address:

8.8.8.8:53

Request

c.clarity.ms

IN A

Response

c.clarity.ms

IN CNAME

c.msn.com

c.msn.com

IN CNAME

c-msn-com-nsatc.trafficmanager.net

c-msn-com-nsatc.trafficmanager.net

IN A

68.219.88.97
GET

https://c.clarity.ms/c.gif

msedge.exe

Remote address:

68.219.88.97:443

Request

GET /c.gif HTTP/2.0
host: c.clarity.ms
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?ctsa=mr&CtsSyncId=7283F2946F394B00AE31F6A71851CBFB&RedC=c.clarity.ms&MXFR=00A51E99372A6731132C0AA9332A6976
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
set-cookie: MUID=00A51E99372A6731132C0AA9332A6976; domain=.clarity.ms; expires=Fri, 21-Mar-2025 07:52:08 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Sun, 25 Feb 2024 07:52:08 GMT
content-length: 0
GET

https://c.clarity.ms/c.gif?ctsa=mr&CtsSyncId=7283F2946F394B00AE31F6A71851CBFB&MUID=1C03AC0855B165453DBAB8385496648F

msedge.exe

Remote address:

68.219.88.97:443

Request

GET /c.gif?ctsa=mr&CtsSyncId=7283F2946F394B00AE31F6A71851CBFB&MUID=1C03AC0855B165453DBAB8385496648F HTTP/2.0
host: c.clarity.ms
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.opera.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: SM=T
cookie: MUID=00A51E99372A6731132C0AA9332A6976

Response

HTTP/2.0 200

cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Fri, 09 Feb 2024 19:55:32 GMT
accept-ranges: bytes
etag: "2155d7f0915bda1:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=C; domain=c.clarity.ms; path=/; SameSite=None; Secure;
set-cookie: MUID=1C03AC0855B165453DBAB8385496648F; domain=.clarity.ms; expires=Fri, 21-Mar-2025 07:52:09 GMT; path=/; SameSite=None; Secure; Priority=High;
set-cookie: MR=0; domain=c.clarity.ms; expires=Sun, 03-Mar-2024 07:52:09 GMT; path=/; SameSite=None; Secure;
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Sun, 25-Feb-2024 08:02:09 GMT; path=/; SameSite=None; Secure;
date: Sun, 25 Feb 2024 07:52:08 GMT
content-length: 42
DNS

c.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

c.bing.com

IN A

Response

c.bing.com

IN CNAME

c-bing-com.a-0001.a-msedge.net

c-bing-com.a-0001.a-msedge.net

IN CNAME

dual-a-0001.a-msedge.net

dual-a-0001.a-msedge.net

IN A

204.79.197.200

dual-a-0001.a-msedge.net

IN A

13.107.21.200
DNS

r.clarity.ms

msedge.exe

Remote address:

8.8.8.8:53

Request

r.clarity.ms

IN A

Response

r.clarity.ms

IN CNAME

clarity-ingest-eus2-b-sc.eastus2.cloudapp.azure.com

clarity-ingest-eus2-b-sc.eastus2.cloudapp.azure.com

IN A

20.119.174.243
POST

https://r.clarity.ms/collect

msedge.exe

Remote address:

20.119.174.243:443

Request

POST /collect HTTP/1.1
Host: r.clarity.ms
Connection: keep-alive
Content-Length: 898
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
Accept: application/x-clarity-gzip
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Origin: https://www.opera.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://www.opera.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: MUID=00A51E99372A6731132C0AA9332A6976

Response

HTTP/1.1 204 No Content

Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 25 Feb 2024 07:52:09 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.opera.com
Vary: Origin
Request-Context: appId=cid-v1:bdfb7149-d2ee-45f0-9a22-f0b1c5035608
DNS

64.246.107.13.in-addr.arpa

Remote address:

8.8.8.8:53

Request

64.246.107.13.in-addr.arpa

IN PTR

Response
DNS

97.88.219.68.in-addr.arpa

Remote address:

8.8.8.8:53

Request

97.88.219.68.in-addr.arpa

IN PTR

Response
DNS

243.174.119.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

243.174.119.20.in-addr.arpa

IN PTR

Response
DNS

157.123.68.40.in-addr.arpa

Remote address:

8.8.8.8:53

Request

157.123.68.40.in-addr.arpa

IN PTR

Response
DNS

18.31.95.13.in-addr.arpa

Remote address:

8.8.8.8:53

Request

18.31.95.13.in-addr.arpa

IN PTR

Response
DNS

18.134.221.88.in-addr.arpa

Remote address:

8.8.8.8:53

Request

18.134.221.88.in-addr.arpa

IN PTR

Response

18.134.221.88.in-addr.arpa

IN PTR

a88-221-134-18deploystaticakamaitechnologiescom
DNS

r.clarity.ms

msedge.exe

Remote address:

8.8.8.8:53

Request

r.clarity.ms

IN A

Response

r.clarity.ms

IN CNAME

clarity-ingest-eus2-b-sc.eastus2.cloudapp.azure.com

clarity-ingest-eus2-b-sc.eastus2.cloudapp.azure.com

IN A

20.119.174.243
POST

https://r.clarity.ms/collect

msedge.exe

Remote address:

20.119.174.243:443

Request

POST /collect HTTP/1.1
Host: r.clarity.ms
Connection: keep-alive
Content-Length: 171
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
Accept: application/x-clarity-gzip
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Origin: https://www.opera.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://www.opera.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: MUID=1C03AC0855B165453DBAB8385496648F

Response

HTTP/1.1 204 No Content

Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 25 Feb 2024 07:53:10 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.opera.com
Vary: Origin
Request-Context: appId=cid-v1:bdfb7149-d2ee-45f0-9a22-f0b1c5035608
DNS

48.229.111.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

48.229.111.52.in-addr.arpa

IN PTR

Response
DNS

173.178.17.96.in-addr.arpa

Remote address:

8.8.8.8:53

Request

173.178.17.96.in-addr.arpa

IN PTR

Response

173.178.17.96.in-addr.arpa

IN PTR

a96-17-178-173deploystaticakamaitechnologiescom
DNS

r.clarity.ms

msedge.exe

Remote address:

8.8.8.8:53

Request

r.clarity.ms

IN A

Response

r.clarity.ms

IN CNAME

clarity-ingest-eus2-b-sc.eastus2.cloudapp.azure.com

clarity-ingest-eus2-b-sc.eastus2.cloudapp.azure.com

IN A

20.119.174.243
DNS

11.173.189.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

11.173.189.20.in-addr.arpa

IN PTR

Response
POST

https://r.clarity.ms/collect

msedge.exe

Remote address:

20.119.174.243:443

Request

POST /collect HTTP/1.1
Host: r.clarity.ms
Connection: keep-alive
Content-Length: 140
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
Accept: application/x-clarity-gzip
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Origin: https://www.opera.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://www.opera.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: MUID=1C03AC0855B165453DBAB8385496648F

Response

HTTP/1.1 204 No Content

Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 25 Feb 2024 07:54:11 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.opera.com
Vary: Origin
Request-Context: appId=cid-v1:bdfb7149-d2ee-45f0-9a22-f0b1c5035608

18.158.88.249:443

https://frookshop-winsive.com/7413c37a-667c-41c6-8e10-6060ad6d8a06?c2=26233199&c1=affC1630489516aff322e166a58003a388a68

tls, http2

msedge.exe

1.9kB
7.7kB
16
18

HTTP Request

GET https://frookshop-winsive.com/7413c37a-667c-41c6-8e10-6060ad6d8a06?c2=26233199&c1=affC1630489516aff322e166a58003a388a68

HTTP Response

200
18.158.88.249:443

frookshop-winsive.com

tls, http2

msedge.exe

1.1kB
6.1kB
12
11
96.17.179.205:80

http://apps.identrust.com/roots/dstrootcax3.p7c

http

msedge.exe

416 B
1.6kB
6
5

HTTP Request

GET http://apps.identrust.com/roots/dstrootcax3.p7c

HTTP Response

200
18.158.88.249:443

reletinglablets.com

tls

msedge.exe

1.1kB
6.6kB
11
11
18.158.88.249:443

https://reletinglablets.com/redirect?target=BASE64aHR0cHM6Ly8xLml0c3RpbWUubWVkaWEvP3V0bV9tZWRpdW09OTE2MDViYzE2OGY2ZGU2MmUyN2RhZjNiNmQ1NGY4NTBiMjQ4ODQ3NiZ1dG1fY2FtcGFpZ249amFuMjQxNW1haW5saW5rJjE9MjYyMzMxOTkmY2lkPXdlbnVqczZjOGcwdTM3ZXZpMmRsdDNvMA&ts=1708847515511&hash=wPb-Cxrnu4FJuhT1oAG405UZicyIg1mm5S7_St27X0c&rm=D

tls, http2

msedge.exe

2.1kB
7.7kB
16
19

HTTP Request

GET https://reletinglablets.com/redirect?target=BASE64aHR0cHM6Ly8xLml0c3RpbWUubWVkaWEvP3V0bV9tZWRpdW09OTE2MDViYzE2OGY2ZGU2MmUyN2RhZjNiNmQ1NGY4NTBiMjQ4ODQ3NiZ1dG1fY2FtcGFpZ249amFuMjQxNW1haW5saW5rJjE9MjYyMzMxOTkmY2lkPXdlbnVqczZjOGcwdTM3ZXZpMmRsdDNvMA&ts=1708847515511&hash=wPb-Cxrnu4FJuhT1oAG405UZicyIg1mm5S7_St27X0c&rm=D

HTTP Response

200
69.175.50.35:443

https://1.itstime.media/sw.js?v=1708847515528

tls, http2

msedge.exe

3.0kB
13.1kB
24
22

HTTP Request

GET https://1.itstime.media/?utm_medium=91605bc168f6de62e27daf3b6d54f850b2488476&utm_campaign=jan2415mainlink&1=26233199&cid=wenujs6c8g0u37evi2dlt3o0

HTTP Response

200

HTTP Request

GET https://1.itstime.media/favicon.ico

HTTP Request

GET https://1.itstime.media/sw.js?v=1708847515528

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://1.itstime.media/proc.php?671df3eeb2842b230305e4034514d285b36ec9eb

HTTP Response

200

HTTP Request

GET https://1.itstime.media/sw.js?v=1708847515528

HTTP Response

304
69.175.50.35:443

1.itstime.media

tls

msedge.exe

943 B
4.9kB
8
7
52.57.25.237:443

https://deebcards-themier.com/01244378-df04-4efc-be97-b73ecb18ecf9?partner_id=909&placement=909-834ecd14&payout={payout}&lan={lan}&subid=M7339444195087613993

tls, http2

msedge.exe

1.9kB
7.2kB
14
17

HTTP Request

GET https://deebcards-themier.com/01244378-df04-4efc-be97-b73ecb18ecf9?partner_id=909&placement=909-834ecd14&payout={payout}&lan={lan}&subid=M7339444195087613993

HTTP Response

302
52.57.25.237:443

deebcards-themier.com

tls

msedge.exe

1.0kB
6.0kB
10
10
172.67.210.153:443

https://www.savinist.com/52LR4LZ/JP5MDPD/?__rpt=0&__po=9396&__ptid=4503f458f875420d95bf7550f6b8d52d&__rpa=0&__rc=1&sub1=01244378-df04-4efc-be97-b73ecb18ecf9&sub2=w9skgee8so70l7ev2m3ghff8&sub3=b25741c0-121f-400e-a996-05dc968ec5c9&sub4=&sub5=&source_id=c700e2e8-5577-431e-885e-f23113075357&__pcd=9

tls, http2

msedge.exe

2.4kB
7.4kB
17
17

HTTP Request

GET https://www.savinist.com/52LR4LZ/KM15N5P/?source_id=c700e2e8-5577-431e-885e-f23113075357&sub1=01244378-df04-4efc-be97-b73ecb18ecf9&sub2=w9skgee8so70l7ev2m3ghff8&sub3=b25741c0-121f-400e-a996-05dc968ec5c9

HTTP Response

302

HTTP Request

GET https://www.savinist.com/52LR4LZ/JP5MDPD/?__rpt=0&__po=9396&__ptid=4503f458f875420d95bf7550f6b8d52d&__rpa=0&__rc=1&sub1=01244378-df04-4efc-be97-b73ecb18ecf9&sub2=w9skgee8so70l7ev2m3ghff8&sub3=b25741c0-121f-400e-a996-05dc968ec5c9&sub4=&sub5=&source_id=c700e2e8-5577-431e-885e-f23113075357&__pcd=9

HTTP Response

302
3.68.131.146:443

https://www.opera.com/gx?utm_source=PWNgames3&utm_medium=pa&utm_campaign=PWN_GB_LVR_OOM&utm_id=3534090642644f0bb55abb88cd0aa81b&edition=std-1

tls, http2

msedge.exe

2.2kB
21.8kB
19
28

HTTP Request

GET https://www.opera.com/gx?utm_source=PWNgames3&utm_medium=pa&utm_campaign=PWN_GB_LVR_OOM&utm_id=3534090642644f0bb55abb88cd0aa81b&edition=std-1

HTTP Response

200
104.84.85.174:443

https://cdn-production-opera-website.operacdn.com/staticfiles/assets/gx/images/welcomeGx/favicon/favicon.6e8da31be579.ico

tls, http2

msedge.exe

75.6kB
2.7MB
1493
2015

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/embedVideo.4fdce408f883.css

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/gxMain.4810ae6350ae.css

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/gx2021.acb9a7b5d1a2.css

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/latinext.d7788e6fd132.css

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/gxMain.31093f68b79b.js

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/logo/logo-flat-horizontal.3a48a9c34651.svg

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/logo/logo-flat-white-horizontal.35e1a8f1fc3b.svg

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/components/download/googleplay/google-play--en.510db0066052.png

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/components/download/appstore/app-store--en.4c2de0665c3e.png

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--mobile@2x.dad38e627140.webp

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--home.a3a32725c8c8.webp

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__mobile--hero-section@2x.105801afec18.webp

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--gx-mobile@2x.4aa1a438e946.webp

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__feature-laptop--gx-cleaner@2x.43ff34bf1a7b.webp

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx-mobile__android-iOS@2x.d190a54a25f9.webp

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/hero-top/gx/gx__mobile--hero-section-qr.b87f91e723bf.jpg

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/feature-promo/awesome-features--gx__mobile.c8ecc394b852.jpg

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/feature-promo/awesome-features--gx.e698406b3212.jpg

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/1x1px.91e42db1c66c.png

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/theme-switcher/gx__color-theme--classic.1b752fb481b6.png

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-light-mode.ae3068ee8c01.svg

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--light-mode.01aad9997fb5.png

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-corner.be1333483846.svg

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--gx-corner.b44c9289e362.png

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-twitch.8902d1ec9cef.svg

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--twitch.5f4495877f47.png

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-discord.513c7c78f5c8.svg

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--discord.3e893cef8784.png

HTTP Response

200

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-player.416a8e402db6.svg

HTTP Response

200

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--player.694659842717.png

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-messengers.9bd35388afd6.svg

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--messengers.e491d059f927.png

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-pinboards.7e83626e788a.svg

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--pinboards.aaecb2a9fc24.png

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-flow.736ea0e793e4.svg

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--flow.3dafb84d8d14.png

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx-fast-navigation.53111f7a4633.svg

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/sections/2021/gx-features-slider/gx__feature--fast-navigation.cd994c62ac97.png

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/gx/images/gx2021/gaming-inspired-features-bg.cdcfd5388fec.jpg

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/ds-icons/logo/opera-logo-flat.724a32ec0873.svg

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/logo/logo-and-name-negative.51c8dfe30ee2.png

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/themeSwitcher.2752d37895fc.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/1cb6d11c2c491cd2f1fd.4bf5cf63e125.jpg

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/67e772f5c7c0ff691b84.d5b84517520e.svg

HTTP Response

200

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/e4e2a9ac3e7495306ef0.61f316276ca6.svg

HTTP Response

200

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/a2f64f0b0b76727a4500.f932611b6573.svg

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/f629332a6204be810902.16d2b680579e.svg

HTTP Response

200

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/8dd28da7d9c471175a7b.19228cbf00eb.svg

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/3773-26fd20533ee40c5737d4.js

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/3140-70751f2063c9179acc1d.js

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/9625-229456322c7936605742.js

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/5844-623e2e6730954e1631f0.js

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/8402-a5e99fbf49d748a487fc.js

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/2723-07bfab34c572816854b8.js

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/1371-25eaf27de8efabbdd024.js

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/2554-f3d25075fe22e6d82816.js

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/7324-f2ba997f4a29f01033fa.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/df25d1ade7e0a6d6cb0f.svg

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/acd687f2889cbfbdd533.svg

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/gx/images/welcomeGx/favicon/favicon.6e8da31be579.ico

HTTP Response

200
104.84.85.174:443

cdn-production-opera-website.operacdn.com

tls, http2

msedge.exe

1.1kB
4.8kB
11
11
104.84.85.174:443

cdn-production-opera-website.operacdn.com

tls, http2

msedge.exe

1.1kB
4.8kB
11
11
104.84.85.174:443

cdn-production-opera-website.operacdn.com

tls, http2

msedge.exe

1.1kB
4.8kB
11
11
104.84.85.174:443

cdn-production-opera-website.operacdn.com

tls, http2

msedge.exe

1.1kB
4.8kB
11
11
216.58.213.14:443

https://www.googleoptimize.com/optimize.js?id=GTM-5HKZ2H4

tls, http2

msedge.exe

3.4kB
79.3kB
50
67

HTTP Request

GET https://www.googleoptimize.com/optimize.js?id=GTM-5HKZ2H4
104.84.85.174:443

https://cdn-production-opera-website.operacdn.com/staticfiles/b21a8376d942833de6fc.91f7ad7162e8.woff2

tls, http2

msedge.exe

5.1kB
96.5kB
62
98

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/ds-icons/header/Browsers.fa6d9c74bb3c.svg

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/ds-icons/header/About%20us.6a6958313506.svg

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/ds-icons/header/Help.ee03925ce901.svg

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/12a67856463b108d403c.04d22e84247c.svg

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/4bd99d9bd226ba406ccb.9bd90c944fec.svg

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/assets/images/ds-icons/header/Security.a49e714f27ec.svg

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/47b3738fc2ea7ddbe1aa.e9f144d88e65.svg

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/ae715c3fb95e133ea466.54cfdcf4104e.svg

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/b606148c8e6ddb775208.43881a474ab8.woff2

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/067e5dad13c9184c2ba1.c0d25ced7cb5.woff2

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/f04b6e345ce5ac184010.svg

HTTP Request

GET https://cdn-production-opera-website.operacdn.com/staticfiles/b21a8376d942833de6fc.91f7ad7162e8.woff2

HTTP Response

200

HTTP Response

200
151.101.1.140:443

https://www.redditstatic.com/ads/pixel.js

tls, http2

msedge.exe

1.7kB
14.8kB
15
21

HTTP Request

GET https://www.redditstatic.com/ads/pixel.js

HTTP Response

200
88.221.134.88:443

https://snap.licdn.com/li.lms-analytics/insight.min.js

tls, http2

msedge.exe

2.1kB
22.9kB
22
33

HTTP Request

GET https://snap.licdn.com/li.lms-analytics/insight.min.js

HTTP Response

200
163.70.147.23:443

connect.facebook.net

tls

msedge.exe

4.2kB
78.3kB
56
71
195.181.164.21:443

https://tags.creativecdn.com/1gnG4zGXkPW95vXqyMLu.js

tls, http2

msedge.exe

1.7kB
8.8kB
14
19

HTTP Request

GET https://tags.creativecdn.com/1gnG4zGXkPW95vXqyMLu.js

HTTP Response

200
18.239.208.87:443

https://static.hotjar.com/c/hotjar-445451.js?sv=7

tls, http2

msedge.exe

1.8kB
9.7kB
17
18

HTTP Request

GET https://static.hotjar.com/c/hotjar-445451.js?sv=7

HTTP Response

200
216.239.34.36:443

https://region1.analytics.google.com/g/collect?v=2&tid=G-T18E1GTPQG&gtm=45je42l0v878149888z8811573329za220&_p=1708847521292&_gaz=1&gcd=13l3l3l3l1&npa=0&dma=0&cid=677055215.1708847525&ul=en-us&sr=1280x720&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&pscdl=noapi&_s=1&sid=1708847525&sct=1&seg=0&dl=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_source%3DPWNgames3%26utm_medium%3Dpa%26utm_campaign%3DPWN_GB_LVR_OOM%26utm_id%3D3534090642644f0bb55abb88cd0aa81b%26edition%3Dstd-1&dr=https%3A%2F%2F1.itstime.media%2F&dt=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=5852

tls, http2

msedge.exe

2.2kB
7.1kB
14
15

HTTP Request

POST https://region1.analytics.google.com/g/collect?v=2&tid=G-T18E1GTPQG&gtm=45je42l0v878149888z8811573329za220&_p=1708847521292&_gaz=1&gcd=13l3l3l3l1&npa=0&dma=0&cid=677055215.1708847525&ul=en-us&sr=1280x720&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&pscdl=noapi&_s=1&sid=1708847525&sct=1&seg=0&dl=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_source%3DPWNgames3%26utm_medium%3Dpa%26utm_campaign%3DPWN_GB_LVR_OOM%26utm_id%3D3534090642644f0bb55abb88cd0aa81b%26edition%3Dstd-1&dr=https%3A%2F%2F1.itstime.media%2F&dt=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=5852
151.101.1.140:443

https://www.redditstatic.com/ads/conversions-config/v1/pixel/config/t2_378pcjv6_telemetry

tls, http2

msedge.exe

1.7kB
6.4kB
12
15

HTTP Request

GET https://www.redditstatic.com/ads/conversions-config/v1/pixel/config/t2_378pcjv6_telemetry

HTTP Response

200
142.251.173.157:443

https://stats.g.doubleclick.net/g/collect?v=2&tid=G-T18E1GTPQG&cid=677055215.1708847525&gtm=45je42l0v878149888z8811573329za220&aip=1&dma=0&gcd=13l3l3l3l1&npa=0

tls, http2

msedge.exe

1.9kB
6.7kB
14
15

HTTP Request

POST https://stats.g.doubleclick.net/g/collect?v=2&tid=G-T18E1GTPQG&cid=677055215.1708847525&gtm=45je42l0v878149888z8811573329za220&aip=1&dma=0&gcd=13l3l3l3l1&npa=0
216.58.204.67:443

https://www.google.co.uk/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-T18E1GTPQG&cid=677055215.1708847525&gtm=45je42l0v878149888z8811573329za220&aip=1&dma=0&gcd=13l3l3l3l1&npa=0&z=320045025

tls, http2

msedge.exe

2.0kB
6.7kB
16
18

HTTP Request

GET https://www.google.co.uk/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-T18E1GTPQG&cid=677055215.1708847525&gtm=45je42l0v878149888z8811573329za220&aip=1&dma=0&gcd=13l3l3l3l1&npa=0&z=320045025
151.101.1.140:443

https://alb.reddit.com/rp.gif?ts=1708847525541&id=t2_378pcjv6&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&m.conversionId=&uuid=8fb10694-e46c-429c-b3c6-8ced86f042e1&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=720&v=rdt_c9439d84&dpm=&dpcc=&dprc=

tls, http2

msedge.exe

1.9kB
5.5kB
12
13

HTTP Request

GET https://alb.reddit.com/rp.gif?ts=1708847525541&id=t2_378pcjv6&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&m.conversionId=&uuid=8fb10694-e46c-429c-b3c6-8ced86f042e1&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=720&v=rdt_c9439d84&dpm=&dpcc=&dprc=

HTTP Response

200
185.184.8.90:443

https://ams.creativecdn.com/external-identifier?id=0&p=appnexus&ti=1gnG4zGXkPW95vXqyMLu

tls, http2

msedge.exe

3.2kB
6.8kB
21
18

HTTP Request

OPTIONS https://ams.creativecdn.com/tags/v2?type=json

HTTP Response

200

HTTP Request

POST https://ams.creativecdn.com/tags/v2?type=json

HTTP Response

307

HTTP Request

OPTIONS https://ams.creativecdn.com/tags/v2?type=json&tc=1

HTTP Response

200

HTTP Request

POST https://ams.creativecdn.com/tags/v2?type=json&tc=1

HTTP Response

200

HTTP Request

GET https://ams.creativecdn.com/external-identifier?id=0&p=appnexus&ti=1gnG4zGXkPW95vXqyMLu

HTTP Response

204
13.107.42.14:443

https://px.ads.linkedin.com/wa/

tls, http2

msedge.exe

3.0kB
7.7kB
16
21

HTTP Request

GET https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=5404050&time=1708847525664&li_adsId=490fd059-e09c-4ff3-b6b6-09158a116cda&url=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_source%3DPWNgames3%26utm_medium%3Dpa%26utm_campaign%3DPWN_GB_LVR_OOM%26utm_id%3D3534090642644f0bb55abb88cd0aa81b%26edition%3Dstd-1

HTTP Response

302

HTTP Request

GET https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=5404050&time=1708847525664&li_adsId=490fd059-e09c-4ff3-b6b6-09158a116cda&url=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_source%3DPWNgames3%26utm_medium%3Dpa%26utm_campaign%3DPWN_GB_LVR_OOM%26utm_id%3D3534090642644f0bb55abb88cd0aa81b%26edition%3Dstd-1&cookiesTest=true

HTTP Response

200

HTTP Request

POST https://px.ads.linkedin.com/wa/

HTTP Response

204
18.239.208.34:443

https://script.hotjar.com/modules.3ba69200791f16077ba8.js

tls, http2

msedge.exe

3.3kB
64.0kB
49
54

HTTP Request

GET https://script.hotjar.com/modules.3ba69200791f16077ba8.js

HTTP Response

200
172.217.16.228:443

https://www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j101&tid=UA-4118503-39&cid=677055215.1708847525&jid=1316831042&_u=YADAAEAAAAAAACAAI~&z=122757017

tls, http2

msedge.exe

2.0kB
6.7kB
16
18

HTTP Request

GET https://www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j101&tid=UA-4118503-39&cid=677055215.1708847525&jid=1316831042&_u=YADAAEAAAAAAACAAI~&z=122757017
157.240.214.35:443

www.facebook.com

tls

msedge.exe

2.0kB
3.6kB
14
16
185.89.210.122:443

https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fams.creativecdn.com%2Fexternal-identifier%3Fid%3D%24UID%26p%3Dappnexus%26ti%3D1gnG4zGXkPW95vXqyMLu

tls, http2

msedge.exe

3.0kB
5.7kB
16
15

HTTP Request

GET https://ib.adnxs.com/getuid?https://ams.creativecdn.com/external-identifier?id=$UID&p=appnexus&ti=1gnG4zGXkPW95vXqyMLu

HTTP Response

307

HTTP Request

GET https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fams.creativecdn.com%2Fexternal-identifier%3Fid%3D%24UID%26p%3Dappnexus%26ti%3D1gnG4zGXkPW95vXqyMLu

HTTP Response

302
3.68.131.146:443

https://www.opera.com/webmanifest-gx

tls, http2

msedge.exe

1.9kB
5.1kB
14
16

HTTP Request

GET https://www.opera.com/webmanifest-gx

HTTP Response

200
204.79.197.200:443

https://c.bing.com/c.gif?ctsa=mr&CtsSyncId=7283F2946F394B00AE31F6A71851CBFB&RedC=c.clarity.ms&MXFR=00A51E99372A6731132C0AA9332A6976

tls, http2

msedge.exe

3.8kB
25.8kB
34
40

HTTP Request

GET https://bat.bing.com/bat.js

HTTP Response

200

HTTP Request

GET https://bat.bing.com/p/action/5063952.js

HTTP Request

GET https://bat.bing.com/action/0?ti=5063952&Ver=2&mid=7c8833e4-4b56-4cfa-9905-2a6759545a37&sid=c5b389b0d3b211eeb1db3f047750bc18&vid=c5b40350d3b211ee81fc63ff9016997e&vids=1&msclkid=N&pi=-1416307915&lg=en-US&sw=1280&sh=720&sc=24&tl=Opera%20GX%20%7C%20Gaming%20Browser%20%7C%20Opera&p=https%3A%2F%2Fwww.opera.com%2Fgx%3Futm_source%3DPWNgames3%26utm_medium%3Dpa%26utm_campaign%3DPWN_GB_LVR_OOM%26utm_id%3D3534090642644f0bb55abb88cd0aa81b%26edition%3Dstd-1&r=https%3A%2F%2F1.itstime.media%2F&lt=7161&evt=pageLoad&sv=1&rn=336700

HTTP Response

200

HTTP Response

204

HTTP Request

GET https://c.bing.com/c.gif?ctsa=mr&CtsSyncId=7283F2946F394B00AE31F6A71851CBFB&RedC=c.clarity.ms&MXFR=00A51E99372A6731132C0AA9332A6976

HTTP Response

302
13.107.246.64:443

https://www.clarity.ms/s/0.7.20/clarity.js

tls, http2

msedge.exe

2.4kB
33.6kB
25
36

HTTP Request

GET https://www.clarity.ms/tag/uet/5063952?insights=1

HTTP Response

200

HTTP Request

GET https://www.clarity.ms/s/0.7.20/clarity.js

HTTP Response

200
68.219.88.97:443

https://c.clarity.ms/c.gif?ctsa=mr&CtsSyncId=7283F2946F394B00AE31F6A71851CBFB&MUID=1C03AC0855B165453DBAB8385496648F

tls, http2

msedge.exe

2.0kB
8.1kB
15
16

HTTP Request

GET https://c.clarity.ms/c.gif

HTTP Response

302

HTTP Request

GET https://c.clarity.ms/c.gif?ctsa=mr&CtsSyncId=7283F2946F394B00AE31F6A71851CBFB&MUID=1C03AC0855B165453DBAB8385496648F

HTTP Response

200
20.119.174.243:443

https://r.clarity.ms/collect

tls, http

msedge.exe

2.8kB
6.4kB
14
13

HTTP Request

POST https://r.clarity.ms/collect

HTTP Response

204
20.119.174.243:443

https://r.clarity.ms/collect

tls, http

msedge.exe

2.1kB
6.4kB
14
13

HTTP Request

POST https://r.clarity.ms/collect

HTTP Response

204
20.119.174.243:443

https://r.clarity.ms/collect

tls, http

msedge.exe

1.9kB
6.3kB
10
11

HTTP Request

POST https://r.clarity.ms/collect

HTTP Response

204

8.8.8.8:53

frookshop-winsive.com

dns

msedge.exe

67 B
83 B
1
1

DNS Request

frookshop-winsive.com

DNS Response

18.158.88.249
8.8.8.8:53

74.32.126.40.in-addr.arpa

dns

71 B
157 B
1
1

DNS Request

74.32.126.40.in-addr.arpa
8.8.8.8:53

apps.identrust.com

dns

msedge.exe

64 B
165 B
1
1

DNS Request

apps.identrust.com

DNS Response

96.17.179.205

96.17.179.184
8.8.8.8:53

249.88.158.18.in-addr.arpa

dns

72 B
138 B
1
1

DNS Request

249.88.158.18.in-addr.arpa
8.8.8.8:53

205.179.17.96.in-addr.arpa

dns

72 B
137 B
1
1

DNS Request

205.179.17.96.in-addr.arpa
8.8.8.8:53

reletinglablets.com

dns

msedge.exe

65 B
81 B
1
1

DNS Request

reletinglablets.com

DNS Response

18.158.88.249
8.8.8.8:53

1.itstime.media

dns

msedge.exe

61 B
77 B
1
1

DNS Request

1.itstime.media

DNS Response

69.175.50.35
8.8.8.8:53

35.50.175.69.in-addr.arpa

dns

71 B
104 B
1
1

DNS Request

35.50.175.69.in-addr.arpa
224.0.0.251:5353

msedge.exe

456 B
7
8.8.8.8:53

194.178.17.96.in-addr.arpa

dns

72 B
137 B
1
1

DNS Request

194.178.17.96.in-addr.arpa
8.8.8.8:53

26.35.223.20.in-addr.arpa

dns

71 B
157 B
1
1

DNS Request

26.35.223.20.in-addr.arpa
8.8.8.8:53

deebcards-themier.com

dns

msedge.exe

67 B
83 B
1
1

DNS Request

deebcards-themier.com

DNS Response

52.57.25.237
8.8.8.8:53

www.savinist.com

dns

msedge.exe

62 B
94 B
1
1

DNS Request

www.savinist.com

DNS Response

172.67.210.153

104.21.77.171
8.8.8.8:53

237.25.57.52.in-addr.arpa

dns

71 B
136 B
1
1

DNS Request

237.25.57.52.in-addr.arpa
8.8.8.8:53

153.210.67.172.in-addr.arpa

dns

73 B
135 B
1
1

DNS Request

153.210.67.172.in-addr.arpa
8.8.8.8:53

www.opera.com

dns

msedge.exe

59 B
212 B
1
1

DNS Request

www.opera.com

DNS Response

3.68.131.146

18.198.110.230

52.57.27.190

18.195.1.56

52.59.35.203

18.196.153.94
8.8.8.8:53

146.131.68.3.in-addr.arpa

dns

71 B
136 B
1
1

DNS Request

146.131.68.3.in-addr.arpa
8.8.8.8:53

cdn-production-opera-website.operacdn.com

dns

msedge.exe

87 B
207 B
1
1

DNS Request

cdn-production-opera-website.operacdn.com

DNS Response

104.84.85.174
8.8.8.8:53

www.googleoptimize.com

dns

msedge.exe

68 B
84 B
1
1

DNS Request

www.googleoptimize.com

DNS Response

216.58.213.14
8.8.8.8:53

www-static.operacdn.com

dns

msedge.exe

69 B
127 B
1
1

DNS Request

www-static.operacdn.com
8.8.8.8:53

234.179.250.142.in-addr.arpa

dns

74 B
113 B
1
1

DNS Request

234.179.250.142.in-addr.arpa
8.8.8.8:53

14.213.58.216.in-addr.arpa

dns

72 B
141 B
1
1

DNS Request

14.213.58.216.in-addr.arpa
8.8.8.8:53

174.85.84.104.in-addr.arpa

dns

72 B
137 B
1
1

DNS Request

174.85.84.104.in-addr.arpa
8.8.8.8:53

227.179.250.142.in-addr.arpa

dns

74 B
112 B
1
1

DNS Request

227.179.250.142.in-addr.arpa
8.8.8.8:53

232.179.250.142.in-addr.arpa

dns

74 B
112 B
1
1

DNS Request

232.179.250.142.in-addr.arpa
8.8.8.8:53

www.redditstatic.com

dns

msedge.exe

66 B
175 B
1
1

DNS Request

www.redditstatic.com

DNS Response

151.101.1.140

151.101.65.140

151.101.129.140

151.101.193.140
8.8.8.8:53

static.hotjar.com

dns

msedge.exe

63 B
152 B
1
1

DNS Request

static.hotjar.com

DNS Response

18.239.208.87

18.239.208.55

18.239.208.123

18.239.208.104
8.8.8.8:53

snap.licdn.com

dns

msedge.exe

60 B
164 B
1
1

DNS Request

snap.licdn.com

DNS Response

88.221.134.88

88.221.135.104
8.8.8.8:53

tags.creativecdn.com

dns

msedge.exe

66 B
136 B
1
1

DNS Request

tags.creativecdn.com

DNS Response

195.181.164.21

89.187.167.5
8.8.8.8:53

connect.facebook.net

dns

msedge.exe

66 B
114 B
1
1

DNS Request

connect.facebook.net

DNS Response

163.70.147.23
8.8.8.8:53

140.1.101.151.in-addr.arpa

dns

72 B
132 B
1
1

DNS Request

140.1.101.151.in-addr.arpa
8.8.8.8:53

21.164.181.195.in-addr.arpa

dns

73 B
110 B
1
1

DNS Request

21.164.181.195.in-addr.arpa
8.8.8.8:53

23.147.70.163.in-addr.arpa

dns

72 B
116 B
1
1

DNS Request

23.147.70.163.in-addr.arpa
8.8.8.8:53

14.178.250.142.in-addr.arpa

dns

73 B
112 B
1
1

DNS Request

14.178.250.142.in-addr.arpa
8.8.8.8:53

87.208.239.18.in-addr.arpa

dns

72 B
129 B
1
1

DNS Request

87.208.239.18.in-addr.arpa
8.8.8.8:53

19.208.239.18.in-addr.arpa

dns

72 B
129 B
1
1

DNS Request

19.208.239.18.in-addr.arpa
8.8.8.8:53

88.134.221.88.in-addr.arpa

dns

72 B
137 B
1
1

DNS Request

88.134.221.88.in-addr.arpa
8.8.8.8:53

region1.analytics.google.com

dns

msedge.exe

74 B
106 B
1
1

DNS Request

region1.analytics.google.com

DNS Response

216.239.34.36

216.239.32.36
8.8.8.8:53

stats.g.doubleclick.net

dns

msedge.exe

69 B
133 B
1
1

DNS Request

stats.g.doubleclick.net

DNS Response

142.251.173.157

142.251.173.155

142.251.173.154

142.251.173.156
8.8.8.8:53

www.google.co.uk

dns

msedge.exe

62 B
78 B
1
1

DNS Request

www.google.co.uk

DNS Response

216.58.204.67
8.8.8.8:53

alb.reddit.com

dns

msedge.exe

60 B
159 B
1
1

DNS Request

alb.reddit.com

DNS Response

151.101.1.140

151.101.65.140

151.101.129.140

151.101.193.140
142.251.173.157:443

stats.g.doubleclick.net

https

msedge.exe

2.4kB
8.3kB
7
11
8.8.8.8:53

ams.creativecdn.com

dns

msedge.exe

65 B
81 B
1
1

DNS Request

ams.creativecdn.com

DNS Response

185.184.8.90
8.8.8.8:53

px.ads.linkedin.com

dns

msedge.exe

65 B
168 B
1
1

DNS Request

px.ads.linkedin.com

DNS Response

13.107.42.14
8.8.8.8:53

script.hotjar.com

dns

msedge.exe

63 B
127 B
1
1

DNS Request

script.hotjar.com

DNS Response

18.239.208.34

18.239.208.43

18.239.208.36

18.239.208.106
216.58.204.67:443

www.google.co.uk

https

msedge.exe

3.8kB
6.9kB
10
10
8.8.8.8:53

www.google.com

dns

msedge.exe

60 B
76 B
1
1

DNS Request

www.google.com

DNS Response

172.217.16.228
8.8.8.8:53

www.facebook.com

dns

msedge.exe

62 B
107 B
1
1

DNS Request

www.facebook.com

DNS Response

157.240.214.35
8.8.8.8:53

36.34.239.216.in-addr.arpa

dns

72 B
132 B
1
1

DNS Request

36.34.239.216.in-addr.arpa
8.8.8.8:53

157.173.251.142.in-addr.arpa

dns

148 B
108 B
2
1

DNS Request

157.173.251.142.in-addr.arpa

DNS Request

157.173.251.142.in-addr.arpa
8.8.8.8:53

67.204.58.216.in-addr.arpa

dns

72 B
169 B
1
1

DNS Request

67.204.58.216.in-addr.arpa
8.8.8.8:53

90.8.184.185.in-addr.arpa

dns

71 B
113 B
1
1

DNS Request

90.8.184.185.in-addr.arpa
8.8.8.8:53

14.42.107.13.in-addr.arpa

dns

71 B
157 B
1
1

DNS Request

14.42.107.13.in-addr.arpa
8.8.8.8:53

34.208.239.18.in-addr.arpa

dns

72 B
129 B
1
1

DNS Request

34.208.239.18.in-addr.arpa
8.8.8.8:53

228.16.217.172.in-addr.arpa

dns

73 B
140 B
1
1

DNS Request

228.16.217.172.in-addr.arpa
8.8.8.8:53

ib.adnxs.com

dns

msedge.exe

58 B
311 B
1
1

DNS Request

ib.adnxs.com

DNS Response

185.89.210.122

185.89.210.153

185.89.210.141

185.89.210.20

185.89.210.46

185.89.210.90

185.89.210.82

185.89.210.180

185.89.211.12

185.89.210.212

185.89.211.116

185.89.211.84
8.8.8.8:53

bat.bing.com

dns

msedge.exe

58 B
162 B
1
1

DNS Request

bat.bing.com

DNS Response

204.79.197.200

13.107.21.200
8.8.8.8:53

www.clarity.ms

dns

msedge.exe

60 B
237 B
1
1

DNS Request

www.clarity.ms

DNS Response

13.107.246.64

13.107.213.64
8.8.8.8:53

35.214.240.157.in-addr.arpa

dns

73 B
126 B
1
1

DNS Request

35.214.240.157.in-addr.arpa
8.8.8.8:53

122.210.89.185.in-addr.arpa

dns

73 B
134 B
1
1

DNS Request

122.210.89.185.in-addr.arpa
8.8.8.8:53

200.197.79.204.in-addr.arpa

dns

73 B
106 B
1
1

DNS Request

200.197.79.204.in-addr.arpa
8.8.8.8:53

c.clarity.ms

dns

msedge.exe

58 B
145 B
1
1

DNS Request

c.clarity.ms

DNS Response

68.219.88.97
8.8.8.8:53

c.bing.com

dns

msedge.exe

56 B
158 B
1
1

DNS Request

c.bing.com

DNS Response

204.79.197.200

13.107.21.200
8.8.8.8:53

r.clarity.ms

dns

msedge.exe

58 B
139 B
1
1

DNS Request

r.clarity.ms

DNS Response

20.119.174.243
8.8.8.8:53

64.246.107.13.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

64.246.107.13.in-addr.arpa
8.8.8.8:53

97.88.219.68.in-addr.arpa

dns

71 B
157 B
1
1

DNS Request

97.88.219.68.in-addr.arpa
8.8.8.8:53

243.174.119.20.in-addr.arpa

dns

73 B
159 B
1
1

DNS Request

243.174.119.20.in-addr.arpa
8.8.8.8:53

157.123.68.40.in-addr.arpa

dns

72 B
146 B
1
1

DNS Request

157.123.68.40.in-addr.arpa
8.8.8.8:53

18.31.95.13.in-addr.arpa

dns

70 B
144 B
1
1

DNS Request

18.31.95.13.in-addr.arpa
8.8.8.8:53

18.134.221.88.in-addr.arpa

dns

72 B
137 B
1
1

DNS Request

18.134.221.88.in-addr.arpa
8.8.8.8:53

r.clarity.ms

dns

msedge.exe

58 B
139 B
1
1

DNS Request

r.clarity.ms

DNS Response

20.119.174.243
8.8.8.8:53

48.229.111.52.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

48.229.111.52.in-addr.arpa
8.8.8.8:53

173.178.17.96.in-addr.arpa

dns

72 B
137 B
1
1

DNS Request

173.178.17.96.in-addr.arpa
8.8.8.8:53

r.clarity.ms

dns

msedge.exe

58 B
139 B
1
1

DNS Request

r.clarity.ms

DNS Response

20.119.174.243
8.8.8.8:53

11.173.189.20.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

11.173.189.20.in-addr.arpa

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
360dd5debf8bf7b89c4d88d29e38446c

SHA1
65afff8c78aeb12c577a523cb77cd58d401b0f82

SHA256
3d9debe659077c04b288107244a22f1b315bcf7495bee75151a9077e71b41eef

SHA512
0ee5b81f0acc82befa24a4438f2ca417ae6fac43fa8c7f264b83b4c792b1bb8d4cecb94c6cbd6facc120dc10d7e4d67e014cdb6b4db83b1a1b60144bb78f7542

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
6fbbaffc5a50295d007ab405b0885ab5

SHA1
518e87df81db1dded184c3e4e3f129cca15baba1

SHA256
b9cde79357b550b171f70630fa94754ca2dcd6228b94f311aefe2a7f1ccfc7b6

SHA512
011c69bf56eb40e7ac5d201c1a0542878d9b32495e94d28c2f3b480772aa541bfd492a9959957d71e66f27b3e8b1a3c13b91f4a21756a9b8263281fd509c007b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
672B

MD5
3d39be9c016fcdf26f3a9523eb0d8577

SHA1
6156b4c7596dc02a19806c744aec383152f6541c

SHA256
2bc9d2cc75242dea3bf5f0d8e20d1ff6dbc730fd3720a666542d97c38ba6aac9

SHA512
f189d0b3b92c0bcbff7f8f0d9e6099ab9927cf6e78775da801b71c2ad500dd68fbf81b5e57475ebc5e3d6cb45f6e3cd68dc7d6359386329b3f0f79d741d76a9d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
3KB

MD5
fd8386a72c8f056b3c34c9b431f2160a

SHA1
0a238ae6377165741cb0adb47c06adb0ec64ce8f

SHA256
aad4a3835ba2840a429a67e52cb622cc3c115549f0f3fe097761844f88ef1dd6

SHA512
0d825f4578363dfa4f8a1da76c54eceea322abb15a5689ec74ea77afb8f34eb0b9a2435f09146d60bd6941913b21f09033f93078fc0236c901986d0e010262c8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
789a8fd91beca400672ed3a3e1980cfd

SHA1
996e553feef720bf286e98cc045649fac3b382ab

SHA256
2a3c6a00e0c09a0f2f82f9e4df5860c8e09f10f8abfa1b8dd990e45bd7a1fd00

SHA512
7bc26ad5889e238683e6bfdc17fda93fa53adedcf78b8d5ee274893975cfd94de0cfe995ce779e3e1dbf42592b10bd9ec1b4933972b63bd15299421bfcb7ad00

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
54a6db9020829585b08ab03e5b9ae139

SHA1
3f3eada44d4583a3b1a61f8a6486808173b09729

SHA256
65c9a2be8a6acd0170819104a477b07f3ac051a6e3e6cf3a5a91dbe50a91bac8

SHA512
bb7268fb658b90d21a1c946a66bb3d286eac5db97b8fb8aae42d9722509d0b01c134194b9be588ceb1353309c892461295dbbf93f8b5c25edd1e5afb61eca4b9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
10KB

MD5
e6ee6235e13441896422107eac68bc39

SHA1
5290a3333dc7bc3a09e3320217940d255a886ce8

SHA256
a9293a06bc9ab99567826411ada0433472c4facfb23c33ec25f9fd7a03e4c66d

SHA512
4f410b63a4a069bf7a2068f7b96a1d5426419f6e20b5f1222e75b5d33585b92d3578c9b041b4fac03f477d8e714bf9ad2f8b62555f7f02a382d39e90cb03c911

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
72B

MD5
73d96793f85db2be43be85ff55180bd3

SHA1
bdb87efea36c74c1f6060c3c51e1f572537d3dd6

SHA256
657a4c4f53630eab294c08b4b54afa6de72ac0e5a91eea66f83ce7f3d2df92a6

SHA512
f7f674a3c87fe7e9830fee63c55d3e6b13d71b41841a949b091cd195bc712bfbc7992a852af001e83e4a83c93d7659e1797d921988aeb796dd6fbecd3a77af3f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe58363e.TMP

Filesize
48B

MD5
f25b47856afdca5e4e6f4fb9a74ba30b

SHA1
dddb7cb2a7b2a748fbbe764509f3a7a5eb160a0f

SHA256
5689f4ee2d22d348ee342d0ac7a3d40948ddea2a17034c52ab7f936bca61cecc

SHA512
0bc45324aafd76efdd7563f5ac2667da9c192d2042a6d2f99d1466837642fb89a26247ff943782a35a06b9eef5f2cf66f1f864df96a44a5a97856c5b058f3dd3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
2KB

MD5
39f76a2b9dac66ce20fbbd1822a45fe7

SHA1
bdd3ad46753e525a4ab5a8ee8028074af03171b6

SHA256
bd5f238f9325a194834b550d6435d92f45f7fc18b7e09812ecf32e7dd573b22c

SHA512
3837dcd2fd555b9a13758ca9b39862e20a08f3ae5e46cd17dee89903862ebbf7a155634d49018427c05b5f7affb16861ec864d88f4bdcfb2fbd2abb61e8e403c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe58367c.TMP

Filesize
1KB

MD5
f9a4ab34df64a20132dede790df1ff7e

SHA1
3f35a8bee93c896e32804b10c100700955a7c983

SHA256
d78caf258d46aedd93f2a9c0c4826a290fc0c152fd2061e2067521ab7e35d8df

SHA512
c095a1678a5878072f7d1e71aba36996081a10cdc295dacfe436eb5d6e964a1f392be4a9841ab6e25832e771a659494a1d7575ff1ad4dbe94673d923cb7851aa

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
6752a1d65b201c13b62ea44016eb221f

SHA1
58ecf154d01a62233ed7fb494ace3c3d4ffce08b

SHA256
0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd

SHA512
9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
11KB

MD5
490e27880e648031b4ccc3ceeac05ed5

SHA1
d628960228fbb58d681abc84de4874cabbc44893

SHA256
30c91e8154d89695497d9a6d59882a1be0dcb493b967140582467b81dffe695b

SHA512
6481da5c05969b602fc3546cd63c8b508b7e1d9687151e24c5f7b8892ffa0c0befd6d83f7c2d0d1cd193fe3c085689e01970fb2a5b7dcf9409c137cc6b1e0a22

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Response

HTTP Response