r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1cdc095521e9ee2606059be447d1fdd5
02b5d0a5b5823e2338daf7e144700babe2a213af
8bda3aabcf331c2bfcc4c7023cd797c760fd301dc353641bb95048e072f66c66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8BDA3AABCF331C2BFCC4C7023CD797C760FD301DC353641BB95048E072F66C66"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13960
Expires: Sun, 05 Feb 2023 07:12:47 GMT
Date: Sun, 05 Feb 2023 03:20:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3116
Expires: Sun, 05 Feb 2023 04:12:03 GMT
Date: Sun, 05 Feb 2023 03:20:07 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 05 Feb 2023 02:33:53 GMT
content-type: application/json
age: 2774
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10724
Expires: Sun, 05 Feb 2023 06:18:51 GMT
Date: Sun, 05 Feb 2023 03:20:07 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ddhPiLg5DPfHE9zu9D9sF9OB2LlVPSDi7zApMoC94JthzaeSwD9i9pZYRNxWoHoG4kQ7oygy2Do=
x-amz-request-id: XVESZT2J4RR6E24B
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 05 Feb 2023 02:24:17 GMT
age: 3350
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
royalunion.icu/
198.251.81.188301 Moved Permanently 707 B IP 198.251.81.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: royalunion.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Sun, 05 Feb 2023 03:20:07 GMT
server: LiteSpeed
location: https://royalunion.icu/
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 03:20:07 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 05 Feb 2023 03:07:20 GMT
age: 768
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19570
Expires: Sun, 05 Feb 2023 08:46:18 GMT
Date: Sun, 05 Feb 2023 03:20:08 GMT
Connection: keep-alive
royalunion.icu/
198.251.81.188200 OK 4.5 kB IP 198.251.81.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text
Hash 85df8dee3dc95eab214a7755582fb149
ae78f326b18c2eab44c6179fbb49ae4eca50ecf3
19d251d9eea2933be85b7366b2a9022964daaff41775fca43f98444e163d472e
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: royalunion.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html
last-modified: Fri, 21 Oct 2022 20:57:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4540
date: Sun, 05 Feb 2023 03:20:08 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
s3.tradingview.com/external-embedding/embed-widget-ticker-tape.js
54.230.111.108200 OK 11 kB URL HTTP/2 s3.tradingview.com/external-embedding/embed-widget-ticker-tape.js
IP 54.230.111.108:0
File type ASCII text, with very long lines (3066)
Hash e0987380ac0fca8478a5d4aaed9fa286
8da5e8882993121e44557d815e76779974fc1cf5
f297139122eae436f4821d0b6ca590c1d0119f900cf1e6fa93dbc355f92250e0
GET /external-embedding/embed-widget-ticker-tape.js HTTP/1.1
Host: s3.tradingview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
content-length: 11138
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Fri, 03 Feb 2023 10:24:51 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 Feb 2023 10:24:57 GMT
etag: "e0987380ac0fca8478a5d4aaed9fa286"
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: acFI3bir7J8LvFl5Lq0fOLdkzmPdMCtemQYCl00gvD-yjv-wmLPkHA==
age: 60912
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 98be7fe21d059e46146a43d20c4eea92
1ec58129fea75085588be7b8baec05b0874b5274
7bb2eb5ffcd88a3b6ba7b210bdbcd4469134c9708f06befb6c616beebf8dae46
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 03:20:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c7d887fc3e3b7a68b7872c76802085c0
eb26f820776e7d87a00489eb14f918e5f6945835
915e873e95d8f0276f4763e5596b03cac487f6f8a36c65577c6622fc8560d929
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 03:20:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
35.82.48.240101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.82.48.240:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: UE0HSMgt2353lvIabdHuaw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: eTa8pPxFEx+TdJxeb+YZgjbYzH8=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 98be7fe21d059e46146a43d20c4eea92
1ec58129fea75085588be7b8baec05b0874b5274
7bb2eb5ffcd88a3b6ba7b210bdbcd4469134c9708f06befb6c616beebf8dae46
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 03:20:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
royalunion.icu/files/theme/assets/css/owl.theme.default.min.css
198.251.81.188200 OK 375 B URL HTTP/2 royalunion.icu/files/theme/assets/css/owl.theme.default.min.css
IP 198.251.81.188:0
File type ASCII text, with very long lines (846)
Hash efa70e65806085ba368ee8b5c605f14e
dce9bd99bef13484807ad1f738fe4dabcb5f5538
9532724b2017ae923698c648666c256804e7756c046fb887380c8fbdda7933be
GET /files/theme/assets/css/owl.theme.default.min.css HTTP/1.1
Host: royalunion.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 03:20:08 GMT
content-type: text/css
last-modified: Tue, 18 Oct 2022 22:49:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 375
date: Sun, 05 Feb 2023 03:20:08 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
royalunion.icu/files/theme/assets/css/owl.carousel.min.css
198.251.81.188200 OK 947 B URL HTTP/2 royalunion.icu/files/theme/assets/css/owl.carousel.min.css
IP 198.251.81.188:0
File type ASCII text, with very long lines (3252)
Hash 018c803d465a50a8cf61cde09aaf9a2c
b41e31295f888dab74ef728c1df3196c5e37e7c2
df26f19de615761a603c19a34604fba8cefdbac535576133e192c4efd03cc2a0
GET /files/theme/assets/css/owl.carousel.min.css HTTP/1.1
Host: royalunion.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 03:20:08 GMT
content-type: text/css
last-modified: Tue, 18 Oct 2022 22:49:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 947
date: Sun, 05 Feb 2023 03:20:08 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
static.tradingview.com/static/bundles/embed/en.14048.df93eaf4565ec9e56e5a.js
54.230.111.84200 OK 494 B URL HTTP/2 static.tradingview.com/static/bundles/embed/en.14048.df93eaf4565ec9e56e5a.js
IP 54.230.111.84:0
File type ASCII text, with very long lines (1470), with no line terminators
Hash f5c97b7cbe6401f9013fa15955985196
d066fb61946e9fce041e7f10db5c233cae3d3625
f31091667cf2a10ed57ab13ada94c71995c28781e05cdc630277fca872b12587
GET /static/bundles/embed/en.14048.df93eaf4565ec9e56e5a.js HTTP/1.1
Host: static.tradingview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tradingview.com/
Origin: https://s.tradingview.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 494
date: Thu, 02 Feb 2023 10:17:15 GMT
last-modified: Thu, 02 Feb 2023 08:31:54 GMT
etag: "63db74fa-1ee"
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-content-type-options: nosniff
access-control-allow-origin: *
referrer-policy: origin-when-cross-origin
server: tv
content-security-policy: default-src 'none'
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 1hJ9iLq7UgHLKijW96vYwpU_m-w2TShi-9m_o8XRPtkfKof96AamEw==
age: 234174
X-Firefox-Spdy: h2
static.tradingview.com/static/bundles/embed/61636.ada40e4c652da924bfce.js
54.230.111.84200 OK 1.9 kB URL HTTP/2 static.tradingview.com/static/bundles/embed/61636.ada40e4c652da924bfce.js
IP 54.230.111.84:0
File type ASCII text, with very long lines (3069)
Hash cfa34928aab0151abadf6ba75071e87e
cc6afafb328d1c8a36ccaf0420042acf7452381a
1a9b8c6dca9051e1a2d09b6e02edde7ed1e14a8b5e173d39cd1c1a56f04cbcf0
GET /static/bundles/embed/61636.ada40e4c652da924bfce.js HTTP/1.1
Host: static.tradingview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tradingview.com/
Origin: https://s.tradingview.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 1872
date: Thu, 22 Dec 2022 11:21:10 GMT
last-modified: Thu, 22 Dec 2022 10:52:18 GMT
etag: "63a436e2-750"
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-content-type-options: nosniff
access-control-allow-origin: *
referrer-policy: origin-when-cross-origin
server: tv
content-security-policy: default-src 'none'
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: JUkKaQO7Ae8GQypciiU9rDkwdoiz1HWqpKR-YQIomwUVBnT9CInkBw==
age: 3859139
X-Firefox-Spdy: h2
static.tradingview.com/static/bundles/embed/43312.ef20c4f0570bb8a130d9.js
54.230.111.84200 OK 10 kB URL HTTP/2 static.tradingview.com/static/bundles/embed/43312.ef20c4f0570bb8a130d9.js
IP 54.230.111.84:0
File type Unicode text, UTF-8 text, with very long lines (3248)
Hash bd34979264efecde1196383e61fb205d
a1b9824cb560c49eee4ff7dd0e5258b3cffab95f
f059b9ed5b24d871658d2edd53fa6f90ef38edd20c9112ff52a78ea198978896
GET /static/bundles/embed/43312.ef20c4f0570bb8a130d9.js HTTP/1.1
Host: static.tradingview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tradingview.com/
Origin: https://s.tradingview.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 10209
date: Thu, 02 Feb 2023 10:17:05 GMT
last-modified: Thu, 02 Feb 2023 08:31:56 GMT
etag: "63db74fc-27e1"
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-content-type-options: nosniff
access-control-allow-origin: *
referrer-policy: origin-when-cross-origin
server: tv
content-security-policy: default-src 'none'
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: bMk3rk-AEKuRo-j9zVwJIloLtFikXwZO4EaHpV2YhO1j2N2oKxW5rA==
age: 234183
X-Firefox-Spdy: h2
static.tradingview.com/static/bundles/embed/88698.90c0800c4b2bb92c6071.js
54.230.111.84200 OK 7.2 kB URL HTTP/2 static.tradingview.com/static/bundles/embed/88698.90c0800c4b2bb92c6071.js
IP 54.230.111.84:0
File type Unicode text, UTF-8 text, with very long lines (5433)
Hash 88132eb8e332409656c4f3f1d88524c6
2b6aca80d31dc5e7f918091a28b6bf5afa4ff4a3
d0da9dcac625151eb283dcff2c227e0aa1370e9d4340dee3beccf422b1afe207
GET /static/bundles/embed/88698.90c0800c4b2bb92c6071.js HTTP/1.1
Host: static.tradingview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tradingview.com/
Origin: https://s.tradingview.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 7219
date: Wed, 01 Feb 2023 10:27:06 GMT
last-modified: Wed, 01 Feb 2023 08:12:52 GMT
etag: "63da1f04-1c33"
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-content-type-options: nosniff
access-control-allow-origin: *
referrer-policy: origin-when-cross-origin
server: tv
content-security-policy: default-src 'none'
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: idEnFi6yfs_hrQRrQJF_tESr0nRS4xaS3WIJzipVFda1eVNZmIAdNw==
age: 319983
X-Firefox-Spdy: h2
static.tradingview.com/static/bundles/embed/86981.1132669f79650a9e6458.js
54.230.111.84200 OK 12 kB URL HTTP/2 static.tradingview.com/static/bundles/embed/86981.1132669f79650a9e6458.js
IP 54.230.111.84:0
File type ASCII text, with very long lines (3072)
Hash 036ad433ff8d3b83c1131d0f4a9952ea
56ce0641b7743794bf36875d26d419bb6ae829b0
ed72cc879119e1f888ce2789b51e3863803d5fbc523b84417bc516cad7445026
GET /static/bundles/embed/86981.1132669f79650a9e6458.js HTTP/1.1
Host: static.tradingview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tradingview.com/
Origin: https://s.tradingview.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 11674
date: Thu, 02 Feb 2023 10:17:06 GMT
last-modified: Thu, 02 Feb 2023 08:31:55 GMT
etag: "63db74fb-2d9a"
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-content-type-options: nosniff
access-control-allow-origin: *
referrer-policy: origin-when-cross-origin
server: tv
content-security-policy: default-src 'none'
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: ZoZoTSwkob020_YaUkIDtq6LnBn2-muPGzGHN7a9gvfThcGrEbvReQ==
age: 234183
X-Firefox-Spdy: h2
static.tradingview.com/static/bundles/embed/19240.9336c626b12d6ce72dba.js
54.230.111.84200 OK 8.5 kB URL HTTP/2 static.tradingview.com/static/bundles/embed/19240.9336c626b12d6ce72dba.js
IP 54.230.111.84:0
File type ASCII text, with very long lines (3069)
Hash 9216b0a0b87778e02faeb2ff277498b2
b08244c80f7e353fa04fafb6cbfff4af88b5754c
19747b95e82723e01aef7b0c56e77fe2ee2b14b24577386ab5c6ee1b6818da1a
GET /static/bundles/embed/19240.9336c626b12d6ce72dba.js HTTP/1.1
Host: static.tradingview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tradingview.com/
Origin: https://s.tradingview.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 8505
date: Thu, 19 Jan 2023 10:53:06 GMT
last-modified: Thu, 19 Jan 2023 10:06:58 GMT
etag: "63c91642-2139"
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-content-type-options: nosniff
access-control-allow-origin: *
referrer-policy: origin-when-cross-origin
server: tv
content-security-policy: default-src 'none'
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 9aUNH2oOdsGsdUngWC9yyjVnhflXueL2cLpUCaiqw2yaledd7xHyJg==
age: 1441623
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c7d887fc3e3b7a68b7872c76802085c0
eb26f820776e7d87a00489eb14f918e5f6945835
915e873e95d8f0276f4763e5596b03cac487f6f8a36c65577c6622fc8560d929
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 03:20:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 7b84f8a58b933d33550bae35d48b7d0d
3f35c38d520a8d67ec9c3014424ebfc6a3b185cb
ba8fd2913d6f9986dc111f4a3a2576c245d2b6abe5f4eb5b9b3741042bd76597
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 05 Feb 2023 03:20:08 GMT
Last-Modified: Sun, 05 Feb 2023 01:42:17 GMT
Server: ECS (nyb/1D0A)
X-Cache: Miss from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: TR4wO8mFDhWgqtWeG1SJaDV2QP9u60ConKIIviMnClusgDuRhA_Gsw==
Age: 5872
static.tradingview.com/static/bundles/embed/84258.cc38cadc45775e01eebd.js
54.230.111.84200 OK 8.2 kB URL HTTP/2 static.tradingview.com/static/bundles/embed/84258.cc38cadc45775e01eebd.js
IP 54.230.111.84:0
File type Unicode text, UTF-8 text, with very long lines (16278)
Hash 5500b1282521e5580ea7bff5f9bfbd34
b5731dc435f5f657bad9d72cc55d1f3bd77822f1
c31981f4cf978b0ed5d5bb975ee163132eb142813acb44aeaaf3c1a3a210a1bb
GET /static/bundles/embed/84258.cc38cadc45775e01eebd.js HTTP/1.1
Host: static.tradingview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tradingview.com/
Origin: https://s.tradingview.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 8242
date: Thu, 19 Jan 2023 10:53:06 GMT
last-modified: Thu, 19 Jan 2023 10:06:57 GMT
etag: "63c91641-2032"
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-content-type-options: nosniff
access-control-allow-origin: *
referrer-policy: origin-when-cross-origin
server: tv
content-security-policy: default-src 'none'
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 1qXer9ZQQwOzHEsbn8LmKe1CM3UJsa_X-OlfuGSHVC1amLymfAQOeg==
age: 1441623
X-Firefox-Spdy: h2
static.tradingview.com/static/bundles/embed/80744.3dda55a5807b2b979210.js
54.230.111.84200 OK 3.7 kB URL HTTP/2 static.tradingview.com/static/bundles/embed/80744.3dda55a5807b2b979210.js
IP 54.230.111.84:0
File type ASCII text, with very long lines (3065)
Hash 834199101f96c21933601413a3c25045
fd6935875e2f8165211dbd7661359f03bcf2ebca
ac9ef50f439fb8fcbb3401382298331bd82a221038b0068925eb91f5a69a764e
GET /static/bundles/embed/80744.3dda55a5807b2b979210.js HTTP/1.1
Host: static.tradingview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tradingview.com/
Origin: https://s.tradingview.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 3731
date: Fri, 03 Feb 2023 10:26:06 GMT
last-modified: Fri, 03 Feb 2023 08:43:27 GMT
etag: "63dcc92f-e93"
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-content-type-options: nosniff
access-control-allow-origin: *
referrer-policy: origin-when-cross-origin
server: tv
content-security-policy: default-src 'none'
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: aHc9uxZQqhZIlArG5VkRxE2vPJ-qxqrP42l48kjIma7hl0Gqcn5w5Q==
age: 147243
X-Firefox-Spdy: h2
static.tradingview.com/static/bundles/embed/69550.dfd2d402de02e09aca70.js
54.230.111.84200 OK 5.6 kB URL HTTP/2 static.tradingview.com/static/bundles/embed/69550.dfd2d402de02e09aca70.js
IP 54.230.111.84:0
File type ASCII text, with very long lines (3069)
Hash bb6ce3a90cd84587b22836aec4388012
403dec337c058afbd05b99aa57c86280aa50d2e4
b0bc37ec5881cf1fd7ddf11e346265f847a56465ce260312a246eb8241129414
GET /static/bundles/embed/69550.dfd2d402de02e09aca70.js HTTP/1.1
Host: static.tradingview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tradingview.com/
Origin: https://s.tradingview.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 5551
date: Wed, 18 Jan 2023 11:05:07 GMT
last-modified: Wed, 18 Jan 2023 10:21:40 GMT
etag: "63c7c834-15af"
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-content-type-options: nosniff
access-control-allow-origin: *
referrer-policy: origin-when-cross-origin
server: tv
content-security-policy: default-src 'none'
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 44VB_spjd5Ma99nDMF1sVZ_OeEf4mMyDp1zxmzDOF4JNqHymvYXMhg==
age: 1527302
X-Firefox-Spdy: h2
static.tradingview.com/static/bundles/embed/47145.46823ac9f06c8fb6aa2a.js
54.230.111.84200 OK 4.8 kB URL HTTP/2 static.tradingview.com/static/bundles/embed/47145.46823ac9f06c8fb6aa2a.js
IP 54.230.111.84:0
File type ASCII text, with very long lines (3068)
Hash a03d970beba037ad52a4c3531310deb3
0215f56b8b8e35f75efe9a99b95fea087a2d68d3
a0cdce106146cd9173f072a1043780e5cee0adb1161a9d140a9b7c23f89ec384
GET /static/bundles/embed/47145.46823ac9f06c8fb6aa2a.js HTTP/1.1
Host: static.tradingview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tradingview.com/
Origin: https://s.tradingview.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 4845
date: Fri, 03 Feb 2023 10:26:08 GMT
last-modified: Fri, 03 Feb 2023 08:43:27 GMT
etag: "63dcc92f-12ed"
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-content-type-options: nosniff
access-control-allow-origin: *
referrer-policy: origin-when-cross-origin
server: tv
content-security-policy: default-src 'none'
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: kyBIAqhpqt4eHqZ8U86qU2wD6jrjVj2mrdNDgSE-_Qf-NUjVlewsNQ==
age: 147241
X-Firefox-Spdy: h2
s.tradingview.com/embed-widget/ticker-tape/?locale=en
54.230.111.30200 OK 15 kB URL HTTP/2 s.tradingview.com/embed-widget/ticker-tape/?locale=en
IP 54.230.111.30:0
Hash 683e38315f4a3ba17f4cf4a51405d420
d979be4d35b1a14a8ea77b9e5bba6bd278d04111
fafa5f055cfaba0b454268d7277eb5a0bdf791064ed281ffcb6ef482322f5f4c
GET /embed-widget/ticker-tape/?locale=en HTTP/1.1
Host: s.tradingview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
date: Sun, 05 Feb 2023 03:19:32 GMT
expires: Sun, 05 Feb 2023 03:21:32 GMT
cache-control: max-age=120
content-security-policy: base-uri 'none'; default-src 'self' https: data: blob: wss: 'unsafe-inline'; script-src https://static.tradingview.com/static/ 'unsafe-eval' blob: https://*.ampproject.org/ https://*.paypal.com/ https://platform.twitter.com https://songbird.cardinalcommerce.com/edge/v1/ 'nonce-hUF6NCwlyxWfrHrJAXDLJw=='; object-src 'none'
referrer-policy: origin-when-cross-origin
x-content-type-options: nosniff
content-encoding: gzip
server: tv
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: -OTpyRc7NrnspplB4awWqKZpU_fXTNcCsf4exvbqnrvGpwjZKNqidA==
age: 36
X-Firefox-Spdy: h2
static.tradingview.com/static/bundles/embed/32350.ca9918cbf462aff5b55b.css
54.230.111.84200 OK 712 B URL HTTP/2 static.tradingview.com/static/bundles/embed/32350.ca9918cbf462aff5b55b.css
IP 54.230.111.84:0
File type ASCII text, with very long lines (1493), with no line terminators
Hash dcfe67579f3521e8d553c30da47462bb
066768c5882c71a4ae0529c0aef796b6bfc0735b
5eb0d854fa4603458ef23a194e76dc176598dbe8729c91f5c31a3c91d9728e69
GET /static/bundles/embed/32350.ca9918cbf462aff5b55b.css HTTP/1.1
Host: static.tradingview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tradingview.com/
Origin: https://s.tradingview.com
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 712
date: Mon, 19 Dec 2022 17:15:10 GMT
last-modified: Mon, 19 Dec 2022 16:46:09 GMT
etag: "63a09551-2c8"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-content-type-options: nosniff
access-control-allow-origin: *
referrer-policy: origin-when-cross-origin
server: tv
content-security-policy: default-src 'none'
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: lPzNFb4zyNYtgFJYxhikRDOpnPVjt1OEcsrQuYKPplHJC-I_EReANw==
age: 4097099
X-Firefox-Spdy: h2
static.tradingview.com/static/bundles/embed/96972.3ff50c27a31c85df6216.css
54.230.111.84200 OK 384 B URL HTTP/2 static.tradingview.com/static/bundles/embed/96972.3ff50c27a31c85df6216.css
IP 54.230.111.84:0
File type ASCII text, with very long lines (1115), with no line terminators
Hash f1b4b15e1f060fbf92e61bbd0576bb65
356b23cec416941e9c0225661c17905b78e51f72
7439ac021df252663b0d3a34588c069818a202f4527120a70d3c413570d7fa36
GET /static/bundles/embed/96972.3ff50c27a31c85df6216.css HTTP/1.1
Host: static.tradingview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tradingview.com/
Origin: https://s.tradingview.com
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 384
date: Mon, 19 Dec 2022 17:15:10 GMT
last-modified: Mon, 19 Dec 2022 16:46:02 GMT
etag: "63a0954a-180"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-content-type-options: nosniff
access-control-allow-origin: *
referrer-policy: origin-when-cross-origin
server: tv
content-security-policy: default-src 'none'
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: QRmfzcppMQgdEv8Sk1pSUd_EKAVSKCDg7-tIEH3QKkDJncM8SSgHww==
age: 4097099
X-Firefox-Spdy: h2
static.tradingview.com/static/bundles/embed/75398.2e21e39552e27b0c3f8d.css
54.230.111.84200 OK 432 B URL HTTP/2 static.tradingview.com/static/bundles/embed/75398.2e21e39552e27b0c3f8d.css
IP 54.230.111.84:0
File type ASCII text, with very long lines (1933), with no line terminators
Hash c8e722ed8aa0917db95031e75082da01
8b92e1abd06633f2979738ff4163fc55b23c4896
8dd64b3904d0e40a53803b6afda37e1d369a393a78c84daff8bc969f89b585b4
GET /static/bundles/embed/75398.2e21e39552e27b0c3f8d.css HTTP/1.1
Host: static.tradingview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tradingview.com/
Origin: https://s.tradingview.com
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 432
date: Mon, 19 Dec 2022 17:15:10 GMT
last-modified: Mon, 19 Dec 2022 16:46:04 GMT
etag: "63a0954c-1b0"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-content-type-options: nosniff
access-control-allow-origin: *
referrer-policy: origin-when-cross-origin
server: tv
content-security-policy: default-src 'none'
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: VTUahWd-2lCEicBqz54KKoxswov6fbtJ0Uzbg85I_sxT5EEbKO_ZMg==
age: 4097099
X-Firefox-Spdy: h2
static.tradingview.com/static/bundles/embed/34145.83330e98cd0f13f52e0f.css
54.230.111.84200 OK 1.4 kB URL HTTP/2 static.tradingview.com/static/bundles/embed/34145.83330e98cd0f13f52e0f.css
IP 54.230.111.84:0
File type ASCII text, with very long lines (9662), with no line terminators
Hash 88f981d4515d17d18a2edb4fd8942d13
8ff9f61ddd215081c2022095cc92ea4f6392fccd
be72f658e95a44000be53a7734d656f75cdb5c90feb7f163d979d4d49588e761
GET /static/bundles/embed/34145.83330e98cd0f13f52e0f.css HTTP/1.1
Host: static.tradingview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tradingview.com/
Origin: https://s.tradingview.com
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 1402
date: Mon, 19 Dec 2022 17:15:07 GMT
last-modified: Mon, 19 Dec 2022 16:46:08 GMT
etag: "63a09550-57a"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-content-type-options: nosniff
access-control-allow-origin: *
referrer-policy: origin-when-cross-origin
server: tv
content-security-policy: default-src 'none'
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 8HgIUWHrz1S9Z1o8aFCJX7Jgms2T5Gn4art9EZAStF6JFSizdf937w==
age: 4097102
X-Firefox-Spdy: h2
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
142.250.74.174200 OK 28 kB URL HTTP/2 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP 142.250.74.174:0
Hash c75e424a86c1b6ef1c2e92a196c9ddc8
fe17caf2bd7f2837bbd925fe66343def97db4d7b
22ceeb65a619b8cab601a3d4de1b96b5a2c85904536c74fd63116b4314441f03
GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 05 Feb 2023 03:20:08 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+600; expires=Tue, 04-Feb-2025 03:20:08 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.tradingview.com/static/bundles/embed/31755.721cbfb1a5d6784e3109.css
54.230.111.84200 OK 564 B URL HTTP/2 static.tradingview.com/static/bundles/embed/31755.721cbfb1a5d6784e3109.css
IP 54.230.111.84:0
File type ASCII text, with very long lines (2185), with no line terminators
Hash 7ed223837884f5948564fd6dd3c5ff7f
86048f28dd4b3d8fc9f774e1aafe4fd122fe27ed
30ee848d4507d77674f2a72a9e18cba90abc9026beff1b8b8718818c9d05ac7a
GET /static/bundles/embed/31755.721cbfb1a5d6784e3109.css HTTP/1.1
Host: static.tradingview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tradingview.com/
Origin: https://s.tradingview.com
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 564
date: Mon, 19 Dec 2022 17:15:07 GMT
last-modified: Mon, 19 Dec 2022 16:46:03 GMT
etag: "63a0954b-234"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-content-type-options: nosniff
access-control-allow-origin: *
referrer-policy: origin-when-cross-origin
server: tv
content-security-policy: default-src 'none'
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 7ZQ2A0XCyf8HBQoIw1ePbmXmGXkrqjXgFy0b54b96RzCD0nxwg2crg==
age: 4097102
X-Firefox-Spdy: h2
static.tradingview.com/static/bundles/embed/66690.c7183a76dc0599de9f42.css
54.230.111.84200 OK 634 B URL HTTP/2 static.tradingview.com/static/bundles/embed/66690.c7183a76dc0599de9f42.css
IP 54.230.111.84:0
File type ASCII text, with very long lines (3872), with no line terminators
Hash 455d14dd2d025d0d89d3352a26ecd1f4
1de73ef272f245bce880277bcc0bad5c2d018b1a
48912ad688d52df0f8ffd18a9e7dcbfe8fe4c20398e53900a835f21ffdb3f599
GET /static/bundles/embed/66690.c7183a76dc0599de9f42.css HTTP/1.1
Host: static.tradingview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tradingview.com/
Origin: https://s.tradingview.com
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 634
date: Mon, 19 Dec 2022 17:15:07 GMT
last-modified: Mon, 19 Dec 2022 16:46:03 GMT
etag: "63a0954b-27a"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-content-type-options: nosniff
access-control-allow-origin: *
referrer-policy: origin-when-cross-origin
server: tv
content-security-policy: default-src 'none'
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: VwPl28EU2b166eOJBFEA6YhhskolhUQEIrdYJ_ma3VgdidPuk3AsaQ==
age: 4097102
X-Firefox-Spdy: h2
static.tradingview.com/static/bundles/embed/76045.57ed1f0e14de0ce7dcbb.css
54.230.111.84200 OK 353 B URL HTTP/2 static.tradingview.com/static/bundles/embed/76045.57ed1f0e14de0ce7dcbb.css
IP 54.230.111.84:0
File type ASCII text, with very long lines (868), with no line terminators
Hash 14c346d106707c0b3f0325f7ce52f520
3d4d8db04d8368ea24d5d2ec270abf332f77425b
66258299fb5e931a5e0b1edafaca840e6bd3f876f4f051422ae629c2ed3c122c
GET /static/bundles/embed/76045.57ed1f0e14de0ce7dcbb.css HTTP/1.1
Host: static.tradingview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tradingview.com/
Origin: https://s.tradingview.com
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 353
date: Mon, 19 Dec 2022 17:15:10 GMT
last-modified: Mon, 19 Dec 2022 16:46:11 GMT
etag: "63a09553-161"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-content-type-options: nosniff
access-control-allow-origin: *
referrer-policy: origin-when-cross-origin
server: tv
content-security-policy: default-src 'none'
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: _whSBiq9znYjZ346gUbMTYhxm4JizYE0yHCZX4kEcp4Vqlvm3RbEmA==
age: 4097099
X-Firefox-Spdy: h2
static.tradingview.com/static/bundles/embed/76270.a819f80182db62e2c3b6.css
54.230.111.84200 OK 1.2 kB URL HTTP/2 static.tradingview.com/static/bundles/embed/76270.a819f80182db62e2c3b6.css
IP 54.230.111.84:0
File type ASCII text, with very long lines (6539), with no line terminators
Hash 08f58493d11004272b784e010400e162
c836eb8fb30583da975e4027f4f1c580a99eae38
9d6f4d83e0b02efea1da4a7f5664c8cb26ad91e828b75adbb6baa58cd1a04ef1
GET /static/bundles/embed/76270.a819f80182db62e2c3b6.css HTTP/1.1
Host: static.tradingview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tradingview.com/
Origin: https://s.tradingview.com
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 1239
date: Mon, 19 Dec 2022 17:15:47 GMT
last-modified: Mon, 19 Dec 2022 16:46:12 GMT
etag: "63a09554-4d7"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-content-type-options: nosniff
access-control-allow-origin: *
referrer-policy: origin-when-cross-origin
server: tv
content-security-policy: default-src 'none'
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 6S-eoPgenC2F_ER-NigpDsE2k4ggCdHvvMLKhrqQGk5GpXu8k8QSzw==
age: 4097062
X-Firefox-Spdy: h2
static.tradingview.com/static/bundles/embed/en.29610.0e7756391ab8c5955a87.js
54.230.111.84200 OK 6.2 kB URL HTTP/2 static.tradingview.com/static/bundles/embed/en.29610.0e7756391ab8c5955a87.js
IP 54.230.111.84:0
File type Unicode text, UTF-8 text, with very long lines (3071)
Hash ef4321adcdd0a08b25ede4eddd9f161d
1a15d1c6480ab8f2ce4855d0931ecfeae4c80070
c055a90311f1c787dd45c025df34ceb07ecb6ad723ff3e7016de4d9d03d3ad5b
GET /static/bundles/embed/en.29610.0e7756391ab8c5955a87.js HTTP/1.1
Host: static.tradingview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tradingview.com/
Origin: https://s.tradingview.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 6189
date: Fri, 03 Feb 2023 10:26:05 GMT
last-modified: Fri, 03 Feb 2023 08:43:28 GMT
etag: "63dcc930-182d"
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-content-type-options: nosniff
access-control-allow-origin: *
referrer-policy: origin-when-cross-origin
server: tv
content-security-policy: default-src 'none'
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: RC9n6HECYInqVP2WFthcdykDajTiaCzRkiskHTJKXGJ3ApN6zS4MzA==
age: 147243
X-Firefox-Spdy: h2
static.tradingview.com/static/bundles/embed/runtime.a5532c731bab1a9fe5cd.js
54.230.111.84200 OK 24 kB URL HTTP/2 static.tradingview.com/static/bundles/embed/runtime.a5532c731bab1a9fe5cd.js
IP 54.230.111.84:0
File type Unicode text, UTF-8 text, with very long lines (3361)
Hash 6a1ef0aff8a18276f135d3ee344103d2
1f319116b1278cf88d46bce85bfbc6ba2d2815c1
edb4790d7a3ac2e059fded36fc77af17918ed2f91061dff07a6028e02f88289f
GET /static/bundles/embed/runtime.a5532c731bab1a9fe5cd.js HTTP/1.1
Host: static.tradingview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tradingview.com/
Origin: https://s.tradingview.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 24187
date: Fri, 03 Feb 2023 10:26:05 GMT
last-modified: Fri, 03 Feb 2023 08:43:28 GMT
etag: "63dcc930-5e7b"
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-content-type-options: nosniff
access-control-allow-origin: *
referrer-policy: origin-when-cross-origin
server: tv
content-security-policy: default-src 'none'
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: Ta1wVWQWu1PPm-iD-rmwwQd9Azy6JSNFzkc-HPl28Xvs7Jdzdi0oVA==
age: 147243
X-Firefox-Spdy: h2
static.tradingview.com/static/bundles/embed/46647.2979278b48af03e6d22b.js
54.230.111.84200 OK 4.3 kB URL HTTP/2 static.tradingview.com/static/bundles/embed/46647.2979278b48af03e6d22b.js
IP 54.230.111.84:0
File type ASCII text, with very long lines (12104)
Hash 629b16c9cebc9f6e700405f1075c7393
3f8b87467a90ebf9b045bd322b05a364144b2dbc
aa3cd78fb089637bc38697d7679e47daacf0872ba1c494ab3d140193c9abaca8
GET /static/bundles/embed/46647.2979278b48af03e6d22b.js HTTP/1.1
Host: static.tradingview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tradingview.com/
Origin: https://s.tradingview.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 4252
date: Mon, 30 Jan 2023 10:49:05 GMT
last-modified: Mon, 30 Jan 2023 08:38:11 GMT
etag: "63d781f3-109c"
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-content-type-options: nosniff
access-control-allow-origin: *
referrer-policy: origin-when-cross-origin
server: tv
content-security-policy: default-src 'none'
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: yam4nYgl1lK6ulcOD4JugcBei4pauyPIHt5rUosWjlUXKMkfr1UX3g==
age: 491464
X-Firefox-Spdy: h2
static.tradingview.com/static/bundles/embed/97532.539979dcf078d6273a99.js
54.230.111.84200 OK 6.2 kB URL HTTP/2 static.tradingview.com/static/bundles/embed/97532.539979dcf078d6273a99.js
IP 54.230.111.84:0
File type ASCII text, with very long lines (3072)
Hash cee35073ed84483c4d219ccaf440ad20
8483154ddd15f81f95206d6064a7f8d19d725113
34f28b0cde0400f50df2a8115876d1c5327970545e4b06a79cc2fbf946ec7753
GET /static/bundles/embed/97532.539979dcf078d6273a99.js HTTP/1.1
Host: static.tradingview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tradingview.com/
Origin: https://s.tradingview.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 6196
date: Fri, 13 Jan 2023 10:34:05 GMT
last-modified: Fri, 13 Jan 2023 08:35:55 GMT
etag: "63c117eb-1834"
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-content-type-options: nosniff
access-control-allow-origin: *
referrer-policy: origin-when-cross-origin
server: tv
content-security-policy: default-src 'none'
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: r43hWEgkxpvLcjcjcGAlOZZgo51WiQs_OS21TdCJKq0M1uShNFAJSA==
age: 1961164
X-Firefox-Spdy: h2
static.tradingview.com/static/bundles/embed/53748.06fcdc5a1b850f86a915.js
54.230.111.84200 OK 5.2 kB URL HTTP/2 static.tradingview.com/static/bundles/embed/53748.06fcdc5a1b850f86a915.js
IP 54.230.111.84:0
File type ASCII text, with very long lines (3071)
Hash 88f590630a9c04aafa92a8998a3ba46d
97224e6edc6ceaa37b99d9f3c4fe90852374d115
145cfc81e4942f308abe8eca757c036dfdc28c58645d4eb7ef0822e6abb39f6e
GET /static/bundles/embed/53748.06fcdc5a1b850f86a915.js HTTP/1.1
Host: static.tradingview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tradingview.com/
Origin: https://s.tradingview.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 5167
date: Mon, 07 Nov 2022 10:22:07 GMT
last-modified: Mon, 07 Nov 2022 08:37:36 GMT
etag: "6368c3d0-142f"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-content-type-options: nosniff
access-control-allow-origin: *
referrer-policy: origin-when-cross-origin
server: tv
content-security-policy: default-src 'none'
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: r8mMc9XBlz-YpjFyq_D2pfMafeWnSsJvEueyuGbwqNuwa5AjT7LLDw==
age: 7750682
X-Firefox-Spdy: h2
royalunion.icu/files/theme/assets/css/magnific-popup.css
198.251.81.188200 OK 1.4 kB URL HTTP/2 royalunion.icu/files/theme/assets/css/magnific-popup.css
IP 198.251.81.188:0
File type ASCII text, with very long lines (5236), with no line terminators
Hash 9c84d8c5bc0f48945ccb8b1ca107a1ed
6d2c36240f9a639fd81b0ac94b81d0a1dce3c4ba
848abc72214026398ce969137ab6d107b47268a089e5e4fecdfbbd745b8b988b
GET /files/theme/assets/css/magnific-popup.css HTTP/1.1
Host: royalunion.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 03:20:08 GMT
content-type: text/css
last-modified: Tue, 18 Oct 2022 22:49:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1402
date: Sun, 05 Feb 2023 03:20:08 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
royalunion.icu/files/theme/assets/css/bootstrap.min.css
198.251.81.188200 OK 21 kB URL HTTP/2 royalunion.icu/files/theme/assets/css/bootstrap.min.css
IP 198.251.81.188:0
File type ASCII text, with very long lines (65324)
Hash 86ef387969d20531cd2b843e3113c56b
a839e584206282937cad871a8f734886f0ec05e9
1ba590cc2555485d73f40b23b2961810680565f5ea1fd884ce49d42f07c2cece
GET /files/theme/assets/css/bootstrap.min.css HTTP/1.1
Host: royalunion.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 03:20:08 GMT
content-type: text/css
last-modified: Tue, 18 Oct 2022 22:49:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 21341
date: Sun, 05 Feb 2023 03:20:08 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
royalunion.icu/files/theme/assets/css/animate.css
198.251.81.188200 OK 4.1 kB URL HTTP/2 royalunion.icu/files/theme/assets/css/animate.css
IP 198.251.81.188:0
File type ASCII text, with very long lines (60435)
Hash 7e0700b5dbd899a48d63eb94d8f81acc
9e0de49892e548a8d15b774bb25a9f707dd40929
b7a3c2b222ffa397f584150d78ed7564824f37be6e16c91f29d2649e997db710
GET /files/theme/assets/css/animate.css HTTP/1.1
Host: royalunion.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 03:20:08 GMT
content-type: text/css
last-modified: Tue, 18 Oct 2022 22:49:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4060
date: Sun, 05 Feb 2023 03:20:08 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
royalunion.icu/files/theme/assets/css/boxicons.min.css
198.251.81.188200 OK 8.8 kB URL HTTP/2 royalunion.icu/files/theme/assets/css/boxicons.min.css
IP 198.251.81.188:0
File type ASCII text, with very long lines (53236), with no line terminators
Hash 633c51ca05e2fcea5567f6ed9446a5ce
cf0ff07df3b714120d572be6f945ee4bd5e2671d
20509ba5dc7129f0c9544f6588e59a8069abd3975a5015d38a8b2cd9c74204b6
GET /files/theme/assets/css/boxicons.min.css HTTP/1.1
Host: royalunion.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 03:20:08 GMT
content-type: text/css
last-modified: Tue, 18 Oct 2022 22:49:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8794
date: Sun, 05 Feb 2023 03:20:08 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
royalunion.icu/files/theme/assets/css/flaticon.css
198.251.81.188200 OK 586 B URL HTTP/2 royalunion.icu/files/theme/assets/css/flaticon.css
IP 198.251.81.188:0
File type ASCII text, with very long lines (2510), with no line terminators
Hash 42c5c114645bf38a1d206b30ec23a6dc
43c5b58e69997e0c497ac2b56119ab56b888b23a
d11888701ea2e13de8d5f5eb6225df01054565229209763a0d21a4d5ef50b0d3
GET /files/theme/assets/css/flaticon.css HTTP/1.1
Host: royalunion.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 03:20:08 GMT
content-type: text/css
last-modified: Tue, 18 Oct 2022 22:49:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 586
date: Sun, 05 Feb 2023 03:20:08 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
royalunion.icu/files/theme/assets/css/meanmenu.css
198.251.81.188200 OK 1.1 kB URL HTTP/2 royalunion.icu/files/theme/assets/css/meanmenu.css
IP 198.251.81.188:0
File type ASCII text, with very long lines (5542), with no line terminators
Hash 7c6ecb4355d2e22037f2d04e5090b60d
c459a5898d36bab6b66d43aaebb67baabb3e14f6
b3d800ed11fc1c972b832bb0f3e8b9cdd4f7e96fa4e66a476727950a31ac747e
GET /files/theme/assets/css/meanmenu.css HTTP/1.1
Host: royalunion.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 03:20:08 GMT
content-type: text/css
last-modified: Tue, 18 Oct 2022 22:49:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1133
date: Sun, 05 Feb 2023 03:20:08 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
royalunion.icu/files/theme/assets/css/nice-select.css
198.251.81.188200 OK 784 B URL HTTP/2 royalunion.icu/files/theme/assets/css/nice-select.css
IP 198.251.81.188:0
File type ASCII text, with very long lines (3076), with no line terminators
Hash 80c7667fa3a4b93a0e323f5f9607289e
16d102096ea575fff6187e796874bef945359c6f
d2688df81606fc225bc32d33eb7cb88b2d341267e1b36598395021e9370a9357
GET /files/theme/assets/css/nice-select.css HTTP/1.1
Host: royalunion.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 03:20:08 GMT
content-type: text/css
last-modified: Tue, 18 Oct 2022 22:49:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 784
date: Sun, 05 Feb 2023 03:20:08 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 0a9ba20ae4866b3eb19f4bec77a61fab
cbe858cfd585c70bd292a78b11c90753d9587030
b01dd84c787c3b2930b2d220489359ccff3c41608ee804cb0d3dcfdf822dee82
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=169064
Date: Sun, 05 Feb 2023 03:20:09 GMT
Etag: "63deffe3-1d7"
Expires: Tue, 07 Feb 2023 02:17:53 GMT
Last-Modified: Sun, 05 Feb 2023 01:01:23 GMT
Server: ECS (nyb/1D35)
X-Cache: Miss from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5f52TQv5uph4Ep7ABBdmVH2ddti3xN44PtqEvezLV71lcwkooANzPw==
Age: 4590
royalunion.icu/files/theme/assets/js/jquery.min.js
198.251.81.188200 OK 29 kB URL HTTP/2 royalunion.icu/files/theme/assets/js/jquery.min.js
IP 198.251.81.188:0
File type ASCII text, with very long lines (32029)
Hash 0c9c4f6707ba4a64a1c76913c39f5698
452728343eb8a4788aa483fe60231bd0b2bbd276
62b84987ac588cb0c5929fe6a5f62dcd009b32af0c2997f338e81438544be8e4
Analyzer Verdict Alert fortinet Phishing
GET /files/theme/assets/js/jquery.min.js HTTP/1.1
Host: royalunion.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 03:20:08 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 22:49:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 28797
date: Sun, 05 Feb 2023 03:20:08 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
royalunion.icu/files/theme/assets/img/home-one-logo.png
198.251.81.188200 OK 16 kB URL HTTP/2 royalunion.icu/files/theme/assets/img/home-one-logo.png
IP 198.251.81.188:0
File type PNG image data, 509 x 119, 8-bit/color RGBA, non-interlaced\012- data
Hash df876921526cbb89ddb550a55765bec4
25f1aec663a9eaf9f60aac942ad439eaba2fe028
22830c96b5c3def9f60d4a4ff07c98cf09df572dabef70ab51bc995a8dccc765
GET /files/theme/assets/img/home-one-logo.png HTTP/1.1
Host: royalunion.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 03:20:09 GMT
content-type: image/png
last-modified: Fri, 21 Oct 2022 17:50:57 GMT
accept-ranges: bytes
content-length: 15864
date: Sun, 05 Feb 2023 03:20:09 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
royalunion.icu/files/theme/assets/js/popper.min.js
198.251.81.188200 OK 7.2 kB URL HTTP/2 royalunion.icu/files/theme/assets/js/popper.min.js
IP 198.251.81.188:0
File type ASCII text, with very long lines (21084)
Hash ab3700263bb700db1479f73e94e07ca0
634426d077c11ae1f563ebf89ec69a762639e6f1
f0a7a56db636d4a4c0087701311b55f5749995133deee70bf9a833d04fed8e92
Analyzer Verdict Alert fortinet Phishing
GET /files/theme/assets/js/popper.min.js HTTP/1.1
Host: royalunion.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 03:20:09 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 22:49:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7223
date: Sun, 05 Feb 2023 03:20:09 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
royalunion.icu/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
198.251.81.188200 OK 567 B URL HTTP/2 royalunion.icu/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP 198.251.81.188:0
File type HTML document, ASCII text, with very long lines (1238)
Hash 7cfd438ec1e0ef5e12877e9194a55b45
eb666e2be5715bb7b96d0de5bc719af6c9354f70
3010c27c7edfdf5ce8bcd986bf9417effb06536355bf595bbbee315108e9f620
Analyzer Verdict Alert fortinet Phishing
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: royalunion.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 03:20:08 GMT
content-type: application/javascript
last-modified: Wed, 19 Oct 2022 01:24:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 567
date: Sun, 05 Feb 2023 03:20:08 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
royalunion.icu/files/theme/assets/css/odometer.css
198.251.81.188200 OK 416 B URL HTTP/2 royalunion.icu/files/theme/assets/css/odometer.css
IP 198.251.81.188:0
File type ASCII text, with very long lines (3249), with no line terminators
Hash c27b42e3569369fded4ee98fd2827ef1
0d5c7f843b8605cdd3b392df2e047ac496892570
1dba7563f9246e3313e7f5cb0a9def96735f0c55d8f84b94eb0fff8019be7652
GET /files/theme/assets/css/odometer.css HTTP/1.1
Host: royalunion.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 03:20:08 GMT
content-type: text/css
last-modified: Tue, 18 Oct 2022 22:49:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 416
date: Sun, 05 Feb 2023 03:20:08 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
royalunion.icu/files/theme/assets/css/style.css
198.251.81.188200 OK 14 kB URL HTTP/2 royalunion.icu/files/theme/assets/css/style.css
IP 198.251.81.188:0
Hash 61d610d1eafce33936d5941b32b790d2
31b1f4f9c27e42c25675a9133d047520c3ef3a95
0fc9604c08b8a025e39db30bb64e486df417a8e31bf95b7aecc41ea72a23ddab
GET /files/theme/assets/css/style.css HTTP/1.1
Host: royalunion.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 03:20:08 GMT
content-type: text/css
last-modified: Tue, 18 Oct 2022 22:49:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 13946
date: Sun, 05 Feb 2023 03:20:08 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
royalunion.icu/files/theme/assets/css/responsive.css
198.251.81.188200 OK 2.8 kB URL HTTP/2 royalunion.icu/files/theme/assets/css/responsive.css
IP 198.251.81.188:0
File type ASCII text, with very long lines (23133), with no line terminators
Hash dbf52b6b9ba0ea166764bca81c251c6d
359a4414b13ed9592ff317b5a62939f65599480a
596c53038cefec6b8f417fec7a94c2998dbb0cd5d52912a08101b1b434e68b32
GET /files/theme/assets/css/responsive.css HTTP/1.1
Host: royalunion.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 03:20:08 GMT
content-type: text/css
last-modified: Tue, 18 Oct 2022 22:49:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2845
date: Sun, 05 Feb 2023 03:20:08 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
royalunion.icu/files/theme/assets/js/bootstrap.min.js
198.251.81.188200 OK 15 kB URL HTTP/2 royalunion.icu/files/theme/assets/js/bootstrap.min.js
IP 198.251.81.188:0
File type ASCII text, with very long lines (59729)
Hash 70a3b91be5356c41ce35a68324f02e89
060ee43f307df80c5e5ae13b8a01eedfffbd902e
b46fc498b940318780b0b98f2e6b471c85560989629934f8c3a2fe656ee2a78b
Analyzer Verdict Alert fortinet Phishing
GET /files/theme/assets/js/bootstrap.min.js HTTP/1.1
Host: royalunion.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 03:20:09 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 22:49:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 15247
date: Sun, 05 Feb 2023 03:20:09 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
royalunion.icu/files/theme/assets/js/jquery.meanmenu.js
198.251.81.188200 OK 1.3 kB URL HTTP/2 royalunion.icu/files/theme/assets/js/jquery.meanmenu.js
IP 198.251.81.188:0
File type HTML document, ASCII text, with very long lines (4026), with no line terminators
Hash 2a360fd5978b803fbed795a8c2b01ec8
f331f0faf5bc20c7200c0b055db18def9855a30d
700df81b704486729ee4bfb0c334c5c393df0fcbac350f45655b127b8be82ab0
Analyzer Verdict Alert fortinet Phishing
GET /files/theme/assets/js/jquery.meanmenu.js HTTP/1.1
Host: royalunion.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 03:20:09 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 22:49:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1304
date: Sun, 05 Feb 2023 03:20:09 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
royalunion.icu/files/theme/assets/js/wow.min.js
198.251.81.188200 OK 2.6 kB URL HTTP/2 royalunion.icu/files/theme/assets/js/wow.min.js
IP 198.251.81.188:0
File type ASCII text, with very long lines (8099)
Hash d98dbaebe8d2b2dca6fd8cfcba6e63ee
93a1fc4e0405e1cfb7ece5e0e6b3ca84b2157601
4a98742903accbb681724da5b5575ae78b7ec5fc7861448f1b733b453a3f4ef6
Analyzer Verdict Alert fortinet Phishing
GET /files/theme/assets/js/wow.min.js HTTP/1.1
Host: royalunion.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 03:20:09 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 22:49:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2634
date: Sun, 05 Feb 2023 03:20:09 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
royalunion.icu/files/theme/assets/js/owl.carousel.js
198.251.81.188200 OK 12 kB URL HTTP/2 royalunion.icu/files/theme/assets/js/owl.carousel.js
IP 198.251.81.188:0
File type ASCII text, with very long lines (2306)
Hash 8390d6d6c18cde60edaa22bcf86e1710
5ec82d1c267db62ed9fe7bf2d5becc1994c5737b
28c2629ea14035cc4a233e2c7e239b0add4d4fdd88d3b66ab771ba6d41afc9cc
Analyzer Verdict Alert fortinet Phishing
GET /files/theme/assets/js/owl.carousel.js HTTP/1.1
Host: royalunion.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 03:20:09 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 22:49:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12457
date: Sun, 05 Feb 2023 03:20:09 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
royalunion.icu/files/theme/assets/js/jquery.magnific-popup.min.js
198.251.81.188200 OK 7.0 kB URL HTTP/2 royalunion.icu/files/theme/assets/js/jquery.magnific-popup.min.js
IP 198.251.81.188:0
File type ASCII text, with very long lines (20087)
Hash f5e275bd34668dca4972a4cceccd7907
cba188e35681cd77cfcbd026aac16315747fab12
7874f3927ffd30d189723404d3fb9699e728955b083abeccc9a988890b4b2ede
Analyzer Verdict Alert fortinet Phishing
GET /files/theme/assets/js/jquery.magnific-popup.min.js HTTP/1.1
Host: royalunion.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 03:20:09 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 22:49:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7043
date: Sun, 05 Feb 2023 03:20:09 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
royalunion.icu/files/theme/assets/js/jquery.nice-select.min.js
198.251.81.188200 OK 930 B URL HTTP/2 royalunion.icu/files/theme/assets/js/jquery.nice-select.min.js
IP 198.251.81.188:0
File type Unicode text, UTF-8 text, with very long lines (2822)
Hash 7df2a8ed2b80cde0e5e7ca7c26764651
d6065cf9375fa62f0bc89dd8c7b8d39a7299720b
478a6036f21887bd2c4da8d4c1446b7ca247263af66c79056c0b290076c736fe
Analyzer Verdict Alert fortinet Phishing
GET /files/theme/assets/js/jquery.nice-select.min.js HTTP/1.1
Host: royalunion.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 03:20:09 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 22:49:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 930
date: Sun, 05 Feb 2023 03:20:09 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
royalunion.icu/files/theme/assets/js/parallax.min.js
198.251.81.188200 OK 3.8 kB URL HTTP/2 royalunion.icu/files/theme/assets/js/parallax.min.js
IP 198.251.81.188:0
File type ASCII text, with very long lines (597)
Hash 374ec70ba5e14bd5be2cfe62c2e628ee
ab0ebb6c9e04054d3256ce7cd688a4e36884a0c1
35f7965ca906bff522520e738e19b7d87e28a1c375ff094605d5151dd97ff256
Analyzer Verdict Alert fortinet Phishing
GET /files/theme/assets/js/parallax.min.js HTTP/1.1
Host: royalunion.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 03:20:09 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 22:49:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3788
date: Sun, 05 Feb 2023 03:20:09 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
royalunion.icu/files/theme/assets/js/jquery.mixitup.min.js
198.251.81.188200 OK 7.9 kB URL HTTP/2 royalunion.icu/files/theme/assets/js/jquery.mixitup.min.js
IP 198.251.81.188:0
File type ASCII text, with very long lines (28522)
Hash 2b2bfe2dd174e07088c67fb7e73c247c
5113fceadd4228b7e1cc3c70fc3a82194e17fcc4
b80d228cd179aeb918b3179d8aa5f371ffebd76f6509c3b60f535a9d9c3e243b
Analyzer Verdict Alert fortinet Phishing
GET /files/theme/assets/js/jquery.mixitup.min.js HTTP/1.1
Host: royalunion.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 03:20:09 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 22:49:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7892
date: Sun, 05 Feb 2023 03:20:09 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
royalunion.icu/files/theme/assets/js/jquery.appear.js
198.251.81.188200 OK 609 B URL HTTP/2 royalunion.icu/files/theme/assets/js/jquery.appear.js
IP 198.251.81.188:0
File type ASCII text, with very long lines (752)
Hash cb40c65619400256cd38cd59737845d8
242d166fb36e18c778890d90f94ce0107eca09d3
de458f13c0c3a43a8f9fc33d1eb31b2117254bcb0bdaae89719fc4035469e7fc
Analyzer Verdict Alert fortinet Phishing
GET /files/theme/assets/js/jquery.appear.js HTTP/1.1
Host: royalunion.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 03:20:09 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 22:49:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 609
date: Sun, 05 Feb 2023 03:20:09 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
royalunion.icu/files/theme/assets/js/odometer.min.js
198.251.81.188200 OK 3.5 kB URL HTTP/2 royalunion.icu/files/theme/assets/js/odometer.min.js
IP 198.251.81.188:0
File type ASCII text, with very long lines (10241)
Hash 594cb5cb96497c79ffd8ba2b3974960c
85dbe20136363ec533949416ee4f312f73e8c0dc
0a9e73cfe5b414e114eee460f27226c65b5381e29d0e1d4f5b8953445f5d1b86
Analyzer Verdict Alert fortinet Phishing
GET /files/theme/assets/js/odometer.min.js HTTP/1.1
Host: royalunion.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 03:20:09 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 22:49:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3453
date: Sun, 05 Feb 2023 03:20:09 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
royalunion.icu/files/theme/assets/js/jquery.ajaxchimp.min.js
198.251.81.188200 OK 844 B URL HTTP/2 royalunion.icu/files/theme/assets/js/jquery.ajaxchimp.min.js
IP 198.251.81.188:0
File type ASCII text, with very long lines (2381), with no line terminators
Hash d8011dc07c4b22173982487b3361e896
cf8c3bda6f237857de77651afe8dfb7bf2f08162
ea8045df69d611ac2bf6a2a4ecfb809516d8cebb12018a774872c29e901fa609
Analyzer Verdict Alert fortinet Phishing
GET /files/theme/assets/js/jquery.ajaxchimp.min.js HTTP/1.1
Host: royalunion.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 03:20:09 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 22:49:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 844
date: Sun, 05 Feb 2023 03:20:09 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
royalunion.icu/files/theme/assets/img/business-img-2.jpg
198.251.81.188200 OK 44 kB URL HTTP/2 royalunion.icu/files/theme/assets/img/business-img-2.jpg
IP 198.251.81.188:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 570x290, components 3\012- data
Hash b95dd57d4f6232b464f3db93a91d9892
bd721928a54f8c1f058df7a142a69988cb882ffe
5909fdb38ba2f3d6aa60508ca29a205ef441bdaa74242103139f943c7be12c82
GET /files/theme/assets/img/business-img-2.jpg HTTP/1.1
Host: royalunion.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 03:20:09 GMT
content-type: image/jpeg
last-modified: Tue, 18 Oct 2022 22:49:12 GMT
accept-ranges: bytes
content-length: 43878
date: Sun, 05 Feb 2023 03:20:09 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
royalunion.icu/files/theme/assets/img/about-img-5.jpg
198.251.81.188200 OK 54 kB URL HTTP/2 royalunion.icu/files/theme/assets/img/about-img-5.jpg
IP 198.251.81.188:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 530x501, components 3\012- data
Hash 24fd4cb9cd162bd0971c63685702e77a
8643621bfeccbbb0f5d97e84ba11adf13a1d8041
8e0caaee8d4b8b5bf1814294b4d42fdc37ebcd9a2ca90393f68a26f73caf92a0
GET /files/theme/assets/img/about-img-5.jpg HTTP/1.1
Host: royalunion.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 03:20:09 GMT
content-type: image/jpeg
last-modified: Tue, 18 Oct 2022 22:49:12 GMT
accept-ranges: bytes
content-length: 54443
date: Sun, 05 Feb 2023 03:20:09 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 03:20:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.iCxGNTE3Tqc.L.F4.O/d=0/rs=AN8SPfqhvHUlOSBSG-4xrkKOTAVZqlAYTA/m=el_main_css
216.58.211.3200 OK 4.3 kB URL HTTP/2 www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.iCxGNTE3Tqc.L.F4.O/d=0/rs=AN8SPfqhvHUlOSBSG-4xrkKOTAVZqlAYTA/m=el_main_css
IP 216.58.211.3:0
File type ASCII text, with very long lines (23413), with no line terminators
Hash c41e5d33c01691d96d76486b1544004b
20b040a572de3003c9977df33e2d631efb9cb68c
f063d4dbe944940b190b4da3716cc71fca549b9fd46d4b30ecf8e0c4a651593c
GET /_/translate_http/_/ss/k=translate_http.tr.iCxGNTE3Tqc.L.F4.O/d=0/rs=AN8SPfqhvHUlOSBSG-4xrkKOTAVZqlAYTA/m=el_main_css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 4259
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 18:28:28 GMT
expires: Fri, 02 Feb 2024 18:28:28 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 01 Feb 2023 06:11:41 GMT
content-type: text/css; charset=UTF-8
age: 204701
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.tradingview.com/static/bundles/embed/24966.415109541489380d12f6.css
54.230.111.84200 OK 263 B URL HTTP/2 static.tradingview.com/static/bundles/embed/24966.415109541489380d12f6.css
IP 54.230.111.84:0
File type ASCII text, with very long lines (801), with no line terminators
Hash a5501dde4f0f8b021165f26294df2eed
456323dea6ee46ed2b826b4522e46ab66daa9b26
1e182c333d93a3cebe943dc8291a3e9378891255fc8ae3b85eb35bf71d0fba40
GET /static/bundles/embed/24966.415109541489380d12f6.css HTTP/1.1
Host: static.tradingview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tradingview.com/
Origin: https://s.tradingview.com
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 263
date: Mon, 19 Dec 2022 17:15:14 GMT
last-modified: Mon, 19 Dec 2022 16:46:05 GMT
etag: "63a0954d-107"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-content-type-options: nosniff
access-control-allow-origin: *
referrer-policy: origin-when-cross-origin
server: tv
content-security-policy: default-src 'none'
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: Q5qzpN4ZDavEKhJFmM0jYbKbjrlCKxGZGc5GwH1uJGUFX_N7sTovRQ==
age: 4097095
X-Firefox-Spdy: h2
static.tradingview.com/static/bundles/embed/tradingview-copyright-data-impl.633dde454d123fa388d9.js
54.230.111.84200 OK 2.2 kB URL HTTP/2 static.tradingview.com/static/bundles/embed/tradingview-copyright-data-impl.633dde454d123fa388d9.js
IP 54.230.111.84:0
File type ASCII text, with very long lines (3332)
Hash 43ba6c1f2bb68b71ff7379877bd627ab
f35080b5d8e580c7b7437782601a1ebd5458de88
d30121c6ef86241cddd1c6463bcff46c65469adecdf7e436067ec73dd5015d6a
GET /static/bundles/embed/tradingview-copyright-data-impl.633dde454d123fa388d9.js HTTP/1.1
Host: static.tradingview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tradingview.com/
Origin: https://s.tradingview.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 2232
date: Wed, 21 Dec 2022 10:50:08 GMT
last-modified: Wed, 21 Dec 2022 10:09:18 GMT
etag: "63a2db4e-8b8"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-content-type-options: nosniff
access-control-allow-origin: *
referrer-policy: origin-when-cross-origin
server: tv
content-security-policy: default-src 'none'
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: wIbJ-tQPq4SsqAGEyBOq3ysacNKY0Ktg0Rtsviv0FXGVHdZEp26p2g==
age: 3947401
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 153d0de36959c722c00df71ba86daca2
305f56a3134879ebf0828e169e903e560540c070
0cf533a798d42d1e97fb6619a411afadf9a68c92302ba852869b0c0555a47987
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 03:20:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 03:20:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-132755435-1
216.58.207.200200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-132755435-1
IP 216.58.207.200:0
File type ASCII text, with very long lines (1759)
Hash 4957d15148845e90fa6515339ef61032
85a72caaa24848d024dd07f2f1559d48368bd295
75fffa80d086ffa275335e6d95fd793151fb2415e582f29218127fcd824d5665
GET /gtag/js?id=UA-132755435-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.tradingview.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 05 Feb 2023 03:20:09 GMT
expires: Sun, 05 Feb 2023 03:20:09 GMT
cache-control: private, max-age=900
last-modified: Sun, 05 Feb 2023 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43922
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 153d0de36959c722c00df71ba86daca2
305f56a3134879ebf0828e169e903e560540c070
0cf533a798d42d1e97fb6619a411afadf9a68c92302ba852869b0c0555a47987
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 03:20:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.tradingview.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sun, 05 Feb 2023 01:44:08 GMT
expires: Sun, 05 Feb 2023 03:44:08 GMT
cache-control: public, max-age=7200
age: 5762
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5101
Expires: Sun, 05 Feb 2023 04:45:11 GMT
Date: Sun, 05 Feb 2023 03:20:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5101
Expires: Sun, 05 Feb 2023 04:45:11 GMT
Date: Sun, 05 Feb 2023 03:20:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5101
Expires: Sun, 05 Feb 2023 04:45:11 GMT
Date: Sun, 05 Feb 2023 03:20:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5101
Expires: Sun, 05 Feb 2023 04:45:11 GMT
Date: Sun, 05 Feb 2023 03:20:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5101
Expires: Sun, 05 Feb 2023 04:45:11 GMT
Date: Sun, 05 Feb 2023 03:20:10 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F01d9feca-e9dc-4ee4-9694-bcc983e3a7c1.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F01d9feca-e9dc-4ee4-9694-bcc983e3a7c1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0d632f8be93820b9746f76146fe3ff0e
7e5e9b16819af678ba84ddb6f45c073e659e2f4e
26ad66cf5e4fe4de99ad31b5c4f0fa3d05c085be04610de8ad80989528c100bf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F01d9feca-e9dc-4ee4-9694-bcc983e3a7c1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6434
x-amzn-requestid: ccf74c35-c654-4a9a-8121-ab27fc4cd862
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f1WWYFbJoAMFgSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ded0f5-10dedb6a287acd2b10cdfdb4;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 21:41:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3bv0yNuzTWh742AZFesuU0caKmg0nMFc3P0bLYkhGd-TAeg5R9W_vQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 21:51:28 GMT
age: 19722
etag: "7e5e9b16819af678ba84ddb6f45c073e659e2f4e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6e4dfe8-8de0-4ffd-85a4-544a7e82f052.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6e4dfe8-8de0-4ffd-85a4-544a7e82f052.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5d907b978dc107f6e95182eee954462a
29a73442173f75b4f3413e2c6459e8448b1cc33f
8268fb8aa86182e7c2113709cce8f559ac8cc831e12cfd7a75c67f30c69808a5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6e4dfe8-8de0-4ffd-85a4-544a7e82f052.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5652
x-amzn-requestid: a9d8e72b-b943-4c6d-a01c-7b7b65da6ee4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzXDqG-eIAMFbTQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63de054a-778199ce1db9fa1b73a9d4ec;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 07:12:10 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CyZUnEQ1l6j1CZCVM63GYbV6mAnhjW3kh4E5M07jH6d3t4mwhSK4hw==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:07:48 GMT
age: 18742
etag: "29a73442173f75b4f3413e2c6459e8448b1cc33f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1a4eed23b240d04a3cd6b085cfa93375
f29b9dc3f6bbd2ba76a5a4570ce044d5f240fd00
93e8371f80c12d3753842e36001dbb8d3dc2223b10a594639752cd816c492d4e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10905
x-amzn-requestid: 093778fc-231c-452f-a6fc-15f4eb41ade0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmNJCEDzIAMFmxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8c239-7f56d6e56392f373541db219;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:24:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WVfpilnwhnRXBhJkHBWjxxoP09f7SqlRk8CdWRWOubIIwe0CX89bUA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:09:58 GMT
age: 18612
etag: "f29b9dc3f6bbd2ba76a5a4570ce044d5f240fd00"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0def934-b27d-4612-bab8-84bfb73a9960.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0def934-b27d-4612-bab8-84bfb73a9960.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5beaead015b2b4fb6d36009926ba0378
67e7c49ea7648fc6d1dffc22588862c993b785b7
6ae0cec9ade23fd53e9c1407b0324a8060892a65a6b675ccffa4a4c82b66f1ff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0def934-b27d-4612-bab8-84bfb73a9960.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7589
x-amzn-requestid: 280f7003-2696-4a82-bd50-82b0a2b66faf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fsSpoEA0oAMFSBg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63db3170-35dcb9513c891af201b973d1;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 03:43:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: IxfTibTq6T_wq9a5YCIBZLBb70BI7AOLEAYMYYuMZPhvVKjDbFfrvA==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 21:52:08 GMT
etag: "67e7c49ea7648fc6d1dffc22588862c993b785b7"
content-type: image/jpeg
age: 19682
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3f52758-d976-47aa-a47d-f0d6026514dc.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3f52758-d976-47aa-a47d-f0d6026514dc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f28ffcf384ce958b6302d05b6690c088
e5d4cbfc7482d35ee2ca03a7178426f3e2e97010
725d42a020d496f596074794cc2abdaca8a9b821e1a3502eee26056d0f528506
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3f52758-d976-47aa-a47d-f0d6026514dc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7665
x-amzn-requestid: 001ba86d-ebc8-4819-89f7-1604bc059cd8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPGibFeqIAMFqMA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf8475-076d982b5fccf2b931a05976;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:10:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Y5yw5NZcyU6jkDXFaCeTuevp7YSZ42oJ1FhYyQHVvPlYWhpm1SwZLA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:23:59 GMT
age: 17771
etag: "e5d4cbfc7482d35ee2ca03a7178426f3e2e97010"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c8da623-73ab-4c2d-afaa-03d28de3a280.png
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c8da623-73ab-4c2d-afaa-03d28de3a280.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3e0c38abfcd86f8074d4182d49fc354f
1367bebb73fa652695242100b26c394f1bfe4457
e42d110060133ac05e6cdfafa6473c55473220fdc7eaf03e3a89f58aa3603670
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c8da623-73ab-4c2d-afaa-03d28de3a280.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11056
x-amzn-requestid: 4acc3364-4a33-4934-bdcb-41284d952113
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPFrwEW4IAMF_Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf8317-33872f461a2faab552322837;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:04:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4xmWa9XVzQ3xzjzIZyrdv3GpFSaTcoacse6b0lgGch2IMvV69AZ57w==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 21:45:28 GMT
age: 20082
etag: "1367bebb73fa652695242100b26c394f1bfe4457"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
s3-symbol-logo.tradingview.com/indices/nasdaq-100.svg
143.204.55.3200 OK 777 B URL HTTP/2 s3-symbol-logo.tradingview.com/indices/nasdaq-100.svg
IP 143.204.55.3:0
File type exported SGML document, ASCII text, with very long lines (777), with no line terminators
Hash fe60c6206a39b7984b1ebb2b8234c5ab
ec9c1ff626f97b55d2196a86ccb44fce9bdadbd2
425b69d42c6b0731fb094a37cbe1600ea1bfd57d2020094ecd0478e4d5720fa4
GET /indices/nasdaq-100.svg HTTP/1.1
Host: s3-symbol-logo.tradingview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tradingview.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 777
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 30
last-modified: Thu, 26 May 2022 07:17:23 GMT
x-amz-meta-hash: fe60c6206a39b7984b1ebb2b8234c5ab
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 02:48:49 GMT
cache-control: max-age=2592000,s-maxage=3600
etag: "fe60c6206a39b7984b1ebb2b8234c5ab"
vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: iDS4uJ2G3cyBnJRxyhTumdE4VBdsKcPNoEwC1E4l2qGbzQSFE0Kpjw==
age: 1990
X-Firefox-Spdy: h2
s3-symbol-logo.tradingview.com/country/EU.svg
143.204.55.3200 OK 870 B URL HTTP/2 s3-symbol-logo.tradingview.com/country/EU.svg
IP 143.204.55.3:0
File type exported SGML document, ASCII text, with very long lines (870), with no line terminators
Hash e9173ef4613c3da43c45885ea39c4b96
218b28ec16584e3f2326b778d3cca1d5c6a682d1
b47993af3ef9963a193ddc9d0bd10fc8f1f773fe0881ffa3c8d2151498fccf03
GET /country/EU.svg HTTP/1.1
Host: s3-symbol-logo.tradingview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tradingview.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 870
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 30
last-modified: Wed, 08 Sep 2021 09:01:40 GMT
x-amz-meta-hash: e9173ef4613c3da43c45885ea39c4b96
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 02:37:31 GMT
cache-control: max-age=2592000,s-maxage=3600
etag: "e9173ef4613c3da43c45885ea39c4b96"
vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 85b6NOHbdTUdpXFKCQBTgZ6x-76bNbewSr9ahLwsE8kPMijbHVGdWg==
age: 2796
X-Firefox-Spdy: h2
s3-symbol-logo.tradingview.com/crypto/XTVCBTC.svg
143.204.55.3200 OK 801 B URL HTTP/2 s3-symbol-logo.tradingview.com/crypto/XTVCBTC.svg
IP 143.204.55.3:0
File type exported SGML document, ASCII text, with very long lines (801), with no line terminators
Hash 107060b925841745f310697bd9f1f83d
40a2e01da20c164a3c3f774a72f3feadf17cafa2
4dfca512e957e14f05da07751a96061cf4bfd5df438504f65287fa0a8c3cadb6
GET /crypto/XTVCBTC.svg HTTP/1.1
Host: s3-symbol-logo.tradingview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tradingview.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 801
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 30
last-modified: Wed, 08 Sep 2021 09:03:52 GMT
x-amz-meta-hash: 107060b925841745f310697bd9f1f83d
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 03:06:01 GMT
cache-control: max-age=2592000,s-maxage=3600
etag: "107060b925841745f310697bd9f1f83d"
vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: sqSFYpWn30OwIKpfwLNcZ7SXTNC_kLU705hT2AG42S75zULZF7xAUQ==
age: 894
X-Firefox-Spdy: h2
s3-symbol-logo.tradingview.com/crypto/XTVCETH.svg
143.204.55.3200 OK 836 B URL HTTP/2 s3-symbol-logo.tradingview.com/crypto/XTVCETH.svg
IP 143.204.55.3:0
File type exported SGML document, ASCII text, with very long lines (836), with no line terminators
Hash 22c56ff05dc453a69fdbae0b7a7eb06c
365ad565706e84de54dfbd24e00a0eb15367b860
9b9fe71606636a37b6f7fb74e8ea572130d0f61dbcd92fe3ae40e80425f56fb2
GET /crypto/XTVCETH.svg HTTP/1.1
Host: s3-symbol-logo.tradingview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tradingview.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 836
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 30
last-modified: Fri, 18 Nov 2022 08:44:55 GMT
x-amz-meta-hash: 22c56ff05dc453a69fdbae0b7a7eb06c
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 02:41:45 GMT
cache-control: max-age=2592000,s-maxage=3600
etag: "22c56ff05dc453a69fdbae0b7a7eb06c"
vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: GoBfvVi4RYyx7S4V3vs1bPgEiuMVRcswshURkzOdZehARFjAaDA7Bw==
age: 2336
X-Firefox-Spdy: h2
royalunion.icu/files/theme/assets/js/form-validator.min.js
198.251.81.188200 OK 1.9 kB URL HTTP/2 royalunion.icu/files/theme/assets/js/form-validator.min.js
IP 198.251.81.188:0
File type ASCII text, with very long lines (5862)
Hash 4a0b7fd9db204e0a8fb4f2d156f115d2
21ff7c15767ae4cb90a5e40237b8da3ead26b24b
be50e018c9b00c3d5599312adeb7582741bec109dd57a12f9d6f8b580f7aa716
Analyzer Verdict Alert fortinet Phishing
GET /files/theme/assets/js/form-validator.min.js HTTP/1.1
Host: royalunion.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 03:20:10 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 22:49:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1913
date: Sun, 05 Feb 2023 03:20:10 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
royalunion.icu/files/theme/assets/js/contact-form-script.js
198.251.81.188200 OK 489 B URL HTTP/2 royalunion.icu/files/theme/assets/js/contact-form-script.js
IP 198.251.81.188:0
File type ASCII text, with very long lines (684)
Hash 2fdf0bf9c7525ebba635695e04955324
b51a7c8f53dff587caa356a684b89770540896ff
a44b1e1d910407026aa1cfad389b490f0c23ab475fc212abe91cff0a070dcca2
Analyzer Verdict Alert fortinet Phishing
GET /files/theme/assets/js/contact-form-script.js HTTP/1.1
Host: royalunion.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 03:20:10 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 22:49:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 489
date: Sun, 05 Feb 2023 03:20:10 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
royalunion.icu/files/theme/assets/js/custom.js
198.251.81.188200 OK 1.6 kB URL HTTP/2 royalunion.icu/files/theme/assets/js/custom.js
IP 198.251.81.188:0
File type ASCII text, with very long lines (2689)
Hash 811a80ee6bcc7ab522eb63c5c2a572ae
92a63db8e4230bcc84009f528e877ad758ce528a
c4d6ba65ea25a3ec1ede03131b75bae66d35c8bd3c7a600b7baf2d07cce1ac08
Analyzer Verdict Alert fortinet Phishing
GET /files/theme/assets/js/custom.js HTTP/1.1
Host: royalunion.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 03:20:10 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 22:49:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1625
date: Sun, 05 Feb 2023 03:20:10 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash ca40de923dcf564c7ed220f966a3bf94
36a058b91df77725f45f5a80fa1c3ce67a2aa1df
18ff560cd95f8235481c63da8106a81abc2efe35486c6739a5aa15362ef4ffd4
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=132214
Date: Sun, 05 Feb 2023 03:20:10 GMT
Etag: "63de6c03-1d7"
Expires: Mon, 06 Feb 2023 16:03:44 GMT
Last-Modified: Sat, 04 Feb 2023 14:30:27 GMT
Server: ECS (bsa/EB1B)
X-Cache: Miss from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: NqsGOBA9YZUzGcbJYwvl3t_00Jd8A_r1CjMbJ5ydiELXL5hqDgvpDw==
Age: 5597
fonts.gstatic.com/s/nunito/v25/XRXI3I6Li01BKofiOc5wtlZ2di8HDBImdTQ3jw.woff2
216.58.207.227200 OK 14 kB URL HTTP/2 fonts.gstatic.com/s/nunito/v25/XRXI3I6Li01BKofiOc5wtlZ2di8HDBImdTQ3jw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 14296, version 1.0\012- data
Hash d3886423ca116bbc08c64bcd355b3b73
2881aa47b1550a0ece6546892e0745b04109b2da
228ad600962c755632e336274b6795f406f2351ba6dde02eaa7efe58bf9155ac
GET /s/nunito/v25/XRXI3I6Li01BKofiOc5wtlZ2di8HDBImdTQ3jw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://royalunion.icu
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14296
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Feb 2023 09:42:21 GMT
expires: Sat, 03 Feb 2024 09:42:21 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 18 Jul 2022 19:44:57 GMT
content-type: font/woff2
age: 149869
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 147d0116326510fd7de0d03e69a400d6
5dc886a6c69aa6c241c62a56838161bbda109f09
2f3ee5bebef08ccaab0581c5a690c3e13c5f03c9ef253c5b21e540d1fbd502e7
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 05 Feb 2023 03:20:10 GMT
Last-Modified: Sun, 05 Feb 2023 01:47:25 GMT
Server: ECS (nyb/1D13)
X-Cache: Miss from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: a63wCR_E5iQCpiF9pwTA5oI7JNDFzU2VmHoA1BmAFX8sDni6H_63jA==
Age: 5565
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash c968d3ec8bff1cb04d87713e64e18e23
689bc7c61a9193d31e377c60c018a0feeea4be66
dc4d4be5142450d5950c8e26431e39c45374eb43cbf8425dbb6ec9dfa8891faa
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=121702
Date: Sun, 05 Feb 2023 03:20:11 GMT
Etag: "63de462a-1d7"
Expires: Mon, 06 Feb 2023 13:08:33 GMT
Last-Modified: Sat, 04 Feb 2023 11:48:58 GMT
Server: ECS (dcb/7FA6)
X-Cache: Miss from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ikhduJDiSRwwhm4z1nj7WELTOqPma6pyzxAz_PYXOoVdhsWGpg4dtw==
Age: 4775
widget-v2.smartsuppcdn.com/static/js/main.a3c0c1de.chunk.js
185.76.9.22200 OK 30 kB URL HTTP/2 widget-v2.smartsuppcdn.com/static/js/main.a3c0c1de.chunk.js
IP 185.76.9.22:0
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (65536), with no line terminators
Hash 3160514f2126020c783cf484a4cdccf5
23cc564229bd5f3aeee2d047ef72ef9bfbf6e433
75a4fbee7df25af8e807645887c8d8c66fe80a63545426bfdf43d50bf224a11c
GET /static/js/main.a3c0c1de.chunk.js HTTP/1.1
Host: widget-v2.smartsuppcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 03:20:10 GMT
content-type: application/javascript
last-modified: Tue, 17 Jan 2023 07:36:57 GMT
etag: W/"63c65019-1cc88"
expires: Wed, 17 Jan 2024 09:18:51 GMT
cache-control: max-age=31536000, public, immutable
access-control-allow-origin: *
x-accel-expires: @1705483131
server: CDN77-Turbo
x-77-nzt: AblMCRSKYUD/b7gYAA
x-77-nzt-ray: af585630c0b0e9e16a20df633167df37
x-cache: HIT
x-age: 1620079
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
translations.smartsuppcdn.com/api/v1/widget/translations/lang/en/defaults
185.76.9.22200 OK 78 kB URL HTTP/2 translations.smartsuppcdn.com/api/v1/widget/translations/lang/en/defaults
IP 185.76.9.22:0
ASN #60068 Datacamp Limited
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (5099)
Hash d34d0c64825d13b73dbb72142f4d7a35
af6a20d37c0f80a12681df9037d1caa08541cdb5
1e811850b257bf8532035bdab8714a7d930ebc5af934b6978b2041ed51c7bca4
GET /api/v1/widget/translations/lang/en/defaults HTTP/1.1
Host: translations.smartsuppcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://royalunion.icu/
Origin: https://royalunion.icu
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 03:20:11 GMT
content-type: application/json; charset=utf-8
x-version: 78e493457cacc39802378b86cc0dd22811aade7e
vary: Origin
access-control-allow-origin: *
cache-control: max-age=600
x-response-time: 0ms
x-accel-expires: @1675567706
server: CDN77-Turbo
x-77-nzt: AblMCRQU+qT/aQAAAA
x-77-nzt-ray: af58563020b782e16b20df632d3bd10a
x-cache: HIT
x-age: 105
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
widget-v2.smartsuppcdn.com/static/js/6.84dd967b.chunk.js
185.76.9.22200 OK 176 kB URL HTTP/2 widget-v2.smartsuppcdn.com/static/js/6.84dd967b.chunk.js
IP 185.76.9.22:0
ASN #60068 Datacamp Limited
Size 176 kB (176445 bytes)
Hash e00c97cbf57d9f464fb6e2b55d77ff8b
839a01acfe2ffd3337436938b8b0c786324948f1
d739a7fe30c31a32757e7de01b4378cf8151d69c769428dd259b69baddc2b0a8
GET /static/js/6.84dd967b.chunk.js HTTP/1.1
Host: widget-v2.smartsuppcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 03:20:10 GMT
content-type: application/javascript
last-modified: Tue, 17 Jan 2023 07:36:57 GMT
etag: W/"63c65019-8312d"
expires: Wed, 17 Jan 2024 09:18:51 GMT
cache-control: max-age=31536000, public, immutable
access-control-allow-origin: *
x-accel-expires: @1705483131
server: CDN77-Turbo
x-77-nzt: AblMCRQ11qz/b7gYAA
x-77-nzt-ray: af585630c0b0e9e16a20df6371e30b38
x-cache: HIT
x-age: 1620079
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.smartsuppchat.com/loader.js?
185.76.9.22200 OK 9.0 kB URL HTTP/2 www.smartsuppchat.com/loader.js?
IP 185.76.9.22:0
ASN #60068 Datacamp Limited
Hash 3abeb4ea6f68670264005a3d4acea7d4
0def08f2a14392b5bd97228d1bcb8bc3e9d916f9
330b8c38d36ab88457d6f86ed60c6d61492ab5f862913fe30173c37df870b4ad
GET /loader.js? HTTP/1.1
Host: www.smartsuppchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 03:20:10 GMT
content-type: application/javascript
last-modified: Wed, 28 Dec 2022 13:18:33 GMT
etag: W/"63ac4229-4b9b"
expires: Wed, 28 Dec 2022 13:26:04 GMT
cache-control: max-age=300, public, s-maxage=60
x-accel-expires: @1675567212
server: CDN77-Turbo
x-77-nzt: AblMCRQ35W//OgAAAA
x-77-nzt-ray: af585630e5a8cddf6a20df631b692717
x-cache: HIT
x-age: 58
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
s3-symbol-logo.tradingview.com/country/US.svg
143.204.55.3200 OK 1.1 kB URL HTTP/2 s3-symbol-logo.tradingview.com/country/US.svg
IP 143.204.55.3:0
Hash 76e173a8c27d735ae1e074f59c79e3d6
d57e310f91c326b981a976d0c90166f320c7e1e2
69c2a5f55c0f1c42a781ae2c18e8bf1b31a99bc2f30a7e1ce791b2f789029ed2
GET /country/US.svg HTTP/1.1
Host: s3-symbol-logo.tradingview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tradingview.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: image/svg+xml
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 30
last-modified: Wed, 08 Sep 2021 09:01:07 GMT
x-amz-meta-hash: 2a945cbbe3767a4009ec5f2c655780a7
server: AmazonS3
content-encoding: gzip
date: Sun, 05 Feb 2023 02:58:30 GMT
cache-control: max-age=2592000,s-maxage=3600
etag: W/"2a945cbbe3767a4009ec5f2c655780a7"
vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: LcxX4cTj1ilSJWHWwA9z7fTib0rY5ZBxOuAkrysRFc5iFAOY8C7d7Q==
age: 1327
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a78b06ca527ce7542b24b349e0485d8b
6f5e5126c1c9d40c9ba09d58e1755d2ca39d02ab
bc7dc156ab8b2b33422fff0922e219246eb1d12469d10ac8007416fed41ac473
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 03:20:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/images/cleardot.gif
216.58.207.228200 OK 43 B URL HTTP/2 www.google.com/images/cleardot.gif
IP 216.58.207.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
GET /images/cleardot.gif HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/gif
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 43
date: Sun, 05 Feb 2023 03:20:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Tue, 22 Oct 2019 18:30:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61ef2f28-06d6-4c28-b598-e80a6c49ef77.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61ef2f28-06d6-4c28-b598-e80a6c49ef77.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1f4a8749b09484bfc2a8fe4b33c69624
299d7514cf29c2dbd919581883239ef44c0984dd
22a61b6e7b48eeb44339469a353efdef0dc089be670fb490627dd33adc59168b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61ef2f28-06d6-4c28-b598-e80a6c49ef77.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4526
x-amzn-requestid: 0942d90f-c9a6-40e6-9439-5da97a42cd35
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fye2wEngoAMFmGQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ddab5e-5d3234d519561b4040eff4c3;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 00:48:30 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: R1qPFlHQU4h3kdFSDUaCYaL01xjAjBuGFaC87mnu8yocmhBBMTaywQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 05:38:16 GMT
age: 78120
etag: "299d7514cf29c2dbd919581883239ef44c0984dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Nunito:wght@900&display=swap
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Nunito:wght@900&display=swap
IP 142.250.74.106:0
GET /css2?family=Nunito:wght@900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://royalunion.icu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 05 Feb 2023 03:20:08 GMT
date: Sun, 05 Feb 2023 03:20:08 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
s3-symbol-logo.tradingview.com/indices/s-and-p-500.svg
143.204.55.3200 OK 0 B URL HTTP/2 s3-symbol-logo.tradingview.com/indices/s-and-p-500.svg
IP 143.204.55.3:0
GET /indices/s-and-p-500.svg HTTP/1.1
Host: s3-symbol-logo.tradingview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.tradingview.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: image/svg+xml
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 30
last-modified: Thu, 26 May 2022 07:17:22 GMT
x-amz-meta-hash: f120e635d6a57528861fe87233bc6c11
server: AmazonS3
content-encoding: gzip
date: Sun, 05 Feb 2023 03:12:11 GMT
cache-control: max-age=2592000,s-maxage=3600
etag: W/"f120e635d6a57528861fe87233bc6c11"
vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: X8KwfThYkUiSkEmWpTCcyTlTF2LhcDOvrulJvp3GEMJXAOJiLgr-8g==
age: 569
X-Firefox-Spdy: h2