Report - www.gregorysgroves.com/

Report Overview

Submitted URL
www.gregorysgroves.com/
IP
162.248.104.123
ASN
#53454 FULLDUPLEX-DEN
Submitted
2022-11-07 17:21:49
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
aa.agkn.com	431	2017-01-30T06:01:07Z	2023-03-10T09:42:10Z	914 B	6.3 kB	3.73.173.162
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-10T13:49:44Z	2.7 kB	6.5 kB	93.184.220.29
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-10T13:35:34Z	379 B	21 kB	142.250.74.174
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	1.4 kB	4.0 kB	143.204.42.156
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-10T12:25:49Z	823 B	3.2 kB	142.250.74.10
stackpath.bootstrapcdn.com	2467	2018-06-15T22:36:43Z	2023-03-10T09:31:27Z	973 B	20 kB	104.18.11.207
googleads.g.doubleclick.net	42	2021-02-20T16:43:32Z	2023-03-10T16:21:16Z	868 B	1.9 kB	142.250.74.34
use.fontawesome.com	942	2017-01-30T05:43:25Z	2023-03-10T11:05:46Z	440 B	19 kB	172.64.133.15
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-10T05:10:00Z	364 B	1.5 kB	34.102.187.140
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-10T05:12:35Z	413 B	5.8 kB	34.160.144.191
www.googleadservices.com	107	2012-06-26T16:53:06Z	2023-03-10T16:05:03Z	387 B	18 kB	142.250.74.98
cdata.mpio.io	40046	2020-09-18T16:01:18Z	2023-03-08T20:24:13Z	376 B	36 kB	54.230.111.6
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-10T14:35:32Z	680 B	1.9 kB	104.18.32.68
www.paypalobjects.com	1467	2012-05-30T08:40:21Z	2023-03-10T12:38:02Z	423 B	8.3 kB	151.101.86.133
secure.trust-provider.com	35173	2017-02-27T05:37:40Z	2023-03-10T13:11:01Z	401 B	14 kB	91.199.212.148
www.securityreports.net	unknown	2022-08-16T20:18:26Z	2023-03-06T22:31:19Z	872 B	9.9 kB	143.244.214.37
rdata.mpio.io	37002	2019-11-03T12:26:15Z	2023-03-10T10:44:29Z	3.5 kB	2.3 kB	52.23.145.57
i.liadm.com	511	2016-05-04T16:21:08Z	2023-03-10T18:14:12Z	970 B	1.1 kB	18.234.2.72
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-10T05:09:10Z	2.0 kB	5.3 kB	23.36.77.32
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-10T05:10:00Z	333 B	229 B	34.117.237.239
client-api.provesrc.com	87248	2020-02-11T06:10:59Z	2023-03-10T12:05:02Z	2.8 kB	2.3 kB	52.7.113.11
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-10T05:10:02Z	606 B	127 B	35.86.38.2
cdn.provesrc.com	97330	2019-07-01T02:21:11Z	2023-03-10T12:05:01Z	370 B	56 kB	54.230.111.103
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-10T14:37:36Z	2.5 kB	95 kB	216.58.207.195
region1.google-analytics.com	unknown	2022-03-17T12:26:33Z	2023-03-10T05:19:43Z	721 B	569 B	216.239.32.36
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-10T05:11:10Z	4.8 kB	9.8 kB	142.250.74.35
s3.amazonaws.com	unknown	2020-05-13T22:53:44Z	2023-03-10T14:15:59Z	7.2 kB	1.8 MB	52.217.95.192
e1.o.lencr.org	6159	2021-08-20T09:36:30Z	2023-03-10T11:39:59Z	338 B	729 B	23.36.77.32
www.google.com	7	2015-05-10T13:11:19Z	2023-03-10T12:19:40Z	870 B	757 B	142.250.74.164
www.gregorysgroves.com	unknown	2015-01-27T19:09:00Z	2023-03-06T20:11:39Z	8.6 kB	167 kB	162.248.104.123
code.jquery.com	634	2012-05-21T19:28:02Z	2023-03-10T05:11:37Z	1.3 kB	108 kB	69.16.175.10
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-10T05:10:04Z	3.3 kB	67 kB	34.120.237.76
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-10T13:03:15Z	388 B	43 kB	142.250.74.168

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-07	medium	www.securityreports.net/csp-reports	Phishing
2022-11-07	medium	www.securityreports.net/csp-reports	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (51)

	URL	Size	First Seen	Last Seen
	www.gregorysgroves.com/	339 B	2023-03-11	2023-03-11
Pretty URL www.gregorysgroves.com/ IP 162.248.104.123 ASN #53454 FULLDUPLEX-DEN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 08:33:55 Last Seen2023-03-11 08:33:55 Times Seen1 Hash 04031b54d0d0e80913127c44ce1f7733 ebfbb07f6bc0fe68029cd343a6ffa39dd0c1be74 3ab1d9a932b1064c50c80064e343cf05bee05c3dbc3ca7b97a9fea5751a6ff21 Loading...

	www.gregorysgroves.com/	294 B	2023-03-11	2023-03-11
Pretty URL www.gregorysgroves.com/ IP 162.248.104.123 ASN #53454 FULLDUPLEX-DEN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 08:33:55 Last Seen2023-03-11 08:33:55 Times Seen1 Hash 4a3244be747f4e41358c375409fdc458 d18c9ba7fad33e212c43801a02a871a5c383e615 8475b908f899050efb128158da95bdddb82d5bf12b88b4d62e37c126e7014234 Loading...

	aa.agkn.com/adscores/g.jsonp?sid=9202274878&userid=B2D012-1CE9ED65-AC7B-43F3-9607-3EBE6C47A771	82 B	2023-03-07	2023-04-02
Pretty URL aa.agkn.com/adscores/g.jsonp?sid=9202274878&userid=B2D012-1CE9ED65-AC7B-43F3-9607-3EBE6C47A771 IP 3.73.173.162 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:05 Last Seen2023-04-02 21:29:29 Times Seen21 Hash ae708136e46f5ab7a3be5d2a6ff558ac cfddee7c8aaf2245d3a531efb187df16cf35c751 9e446e75dc20b6dc693b247aaf7704112e55ef434588368aa0761fc76b3a29a5 Loading...

	www.googleadservices.com/pagead/conversion.js	46 kB	2023-03-10	2023-03-11
Pretty URL www.googleadservices.com/pagead/conversion.js IP 142.250.74.98 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 19:32:08 Last Seen2023-03-11 09:59:10 Times Seen1 Hash 7679f0cc99ecd9442292e9a9cba6f064 ff4a8822bf42b985c100936fd6f6e48361fc9882 a765b6b49657c03fd21414da60eed05a7978b91fcf9f0818ca51cbca2f7ede0b Loading...

	secure.trust-provider.com/trustlogo/javascript/trustlogo.js	14 kB	2023-03-07	2024-04-17
Pretty URL secure.trust-provider.com/trustlogo/javascript/trustlogo.js IP 91.199.212.148 ASN #48447 Sectigo Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:31 Last Seen2024-04-17 04:34:43 Times Seen486 Hash e46d5528af29f4224a927291166d2ddc b8bb9695e47f7370db2dea4884e0efcbd86a4dca 1ba30b444f0489b7da1ca80092c7879835ba96404751aabbdb2647de4261fa05 Loading...

	www.gregorysgroves.com/	108 B	2023-03-11	2023-03-11
Pretty URL www.gregorysgroves.com/ IP 162.248.104.123 ASN #53454 FULLDUPLEX-DEN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 08:33:55 Last Seen2023-03-11 08:33:55 Times Seen1 Hash b0fab58ab9f82f97c4e054af753a59e9 2d645a37021476e11734d7fd2568264aec1fd7b1 2833581e37f071ad83e407db3162649047128322f44081d63e5300134969626f Loading...

	www.gregorysgroves.com/	922 B	2023-03-11	2023-03-11
Pretty URL www.gregorysgroves.com/ IP 162.248.104.123 ASN #53454 FULLDUPLEX-DEN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 08:33:55 Last Seen2023-03-11 08:33:55 Times Seen1 Hash 3d255f1ec920929a7a615b7565f13f19 bfad1b92164cfccc8af6fe21ea30840ebd76581c 08f59ef1b953f4e1b20c86b7f16b420fc154877c6581ba952f9cc7c6b3e072e5 Loading...

	www.gregorysgroves.com/	863 B	2023-03-11	2023-03-11
Pretty URL www.gregorysgroves.com/ IP 162.248.104.123 ASN #53454 FULLDUPLEX-DEN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 08:33:55 Last Seen2023-03-11 08:33:55 Times Seen1 Hash 862a0ac6bc04fe0a6a81d7e789fc88af d8c138d1517391d10e808e6b0c6912a0cc5bb6ef 609bdef8531718b2cd337e3ef3d97d3da194fe89fb31a713b3e29d1e24972d87 Loading...

	www.gregorysgroves.com/	267 B	2023-03-07	2023-03-11
Pretty URL www.gregorysgroves.com/ IP 162.248.104.123 ASN #53454 FULLDUPLEX-DEN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:45:48 Last Seen2023-03-11 12:09:25 Times Seen1 Hash e38766660c9d566c11c9fb8509ac75f0 7da47ae6fa3f83a047295f3f52a69c95ea019201 7772d880afa1ffde2af6672eff085355147e53ffa61bd500aaab90d729dc9220 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-24
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-24 18:41:20 Times Seen1526 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	rdata.mpio.io/v1/C/RawData/F7284BB2D012?v=1ce9ed65-ac7b-43f3-9607-3ebe6c47a771&se=db4c75eb-2b91-4696-8f46-dde013fde7ce&d=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%3D&callback=cbc80bcc25c4478	208 B	2023-03-11	2023-03-11
Pretty URL rdata.mpio.io/v1/C/RawData/F7284BB2D012?v=1ce9ed65-ac7b-43f3-9607-3ebe6c47a771&se=db4c75eb-2b91-4696-8f46-dde013fde7ce&d=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%3D&callback=cbc80bcc25c4478 IP 52.23.145.57 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 08:33:55 Last Seen2023-03-11 08:33:55 Times Seen1 Hash 530853221cfb0b82a8659033fb705bf4 4108477035ca4400efa4580d74b498dcc1424c34 06fde19abbd62bb576274b3a357d1cb346f0a5912ab23415dd83666d11fbdef7 Loading...

	www.gregorysgroves.com/aj.js	5.9 kB	2023-03-11	2023-03-11
Pretty URL www.gregorysgroves.com/aj.js IP 162.248.104.123 ASN #53454 FULLDUPLEX-DEN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 08:33:55 Last Seen2023-03-11 08:33:55 Times Seen1 Hash c00bbcabbecd077648b72f3254b03b23 b3bca7a13410b74b24f86a17f307bb189a245668 f3517b279c97fecea22384579828aef16ab348cdc79824def6d4b61a50fa2130 Loading...

	www.gregorysgroves.com/jquery_mmenu_min_all.js	33 kB	2023-03-07	2023-03-11
Pretty URL www.gregorysgroves.com/jquery_mmenu_min_all.js IP 162.248.104.123 ASN #53454 FULLDUPLEX-DEN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:59 Last Seen2023-03-11 08:43:21 Times Seen1 Hash 91cea7f0adad1849d8269f365d5cc48c c2e894ee3f17294f73143b3a416c7f36bab40558 5e017f0a5f6c547d934ccd7499b9213c471ed0e94551576509558801ad4ef13f Loading...

	www.gregorysgroves.com/	87 B	2023-03-10	2023-03-11
Pretty URL www.gregorysgroves.com/ IP 162.248.104.123 ASN #53454 FULLDUPLEX-DEN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 12:11:20 Last Seen2023-03-11 08:33:55 Times Seen1 Hash ed2172f7a6555ec4a2c71eda7b02e604 2aacaa871621b65095f5025928728bc026d8f974 670410fd1099bafd251aa9c7d85d10b6f0553964b907477996bf203cf97012be Loading...

	www.gregorysgroves.com/	297 B	2023-03-11	2023-03-11
Pretty URL www.gregorysgroves.com/ IP 162.248.104.123 ASN #53454 FULLDUPLEX-DEN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 08:33:55 Last Seen2023-03-11 08:33:55 Times Seen1 Hash d0d1aab099a58af639c65224c383ca6c 7ac39de83700df252221430d3386c10865121022 3b431ecb89aaf7731d0bcfb32922d7f80d6299eef07bab4fffe7ea62bd68d82a Loading...

	www.gregorysgroves.com/	107 B	2023-03-07	2023-03-11
Pretty URL www.gregorysgroves.com/ IP 162.248.104.123 ASN #53454 FULLDUPLEX-DEN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:58:15 Last Seen2023-03-11 12:05:36 Times Seen1 Hash b5ff867903c4650f3960be0770ea6a66 f6e74728c8f0b5204c87948d9833e97bd6765274 088a01486ceaf1e474d88ef93d953ce30f3fea4f12ef7c4c5966cd53f2819c3c Loading...

	www.gregorysgroves.com/	186 B	2023-03-11	2023-03-11
Pretty URL www.gregorysgroves.com/ IP 162.248.104.123 ASN #53454 FULLDUPLEX-DEN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 08:33:55 Last Seen2023-03-11 08:33:55 Times Seen1 Hash 37389c0e1287fe1293b4734151e5490c 7c9b5d88f003148b1d1afdaa15f147dc62f4d7a4 f6f5c402468d4971084276ffeab7662ff3340601c28fa276219f57bdff3bc091 Loading...

	www.gregorysgroves.com/	280 B	2023-03-07	2024-01-27
Pretty URL www.gregorysgroves.com/ IP 162.248.104.123 ASN #53454 FULLDUPLEX-DEN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:58:15 Last Seen2024-01-27 04:51:59 Times Seen26 Hash 58aec86a37e900d7e35c139c16b0392e 35ad03c1a6d2d83f5b66a9272732965a964cce09 011ef0969a9a2bb7478c6445f1889d89675127ae83edb74d5dddaaf268f30ec7 Loading...

	www.gregorysgroves.com/	6.5 kB	2023-03-11	2023-03-11
Pretty URL www.gregorysgroves.com/ IP 162.248.104.123 ASN #53454 FULLDUPLEX-DEN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 08:33:55 Last Seen2023-03-11 08:33:55 Times Seen1 Hash c9a5944e2f055001c0acb28414ddce2b 8a1c258e6327e3756c351bce0b9d01d58b91f8b4 b4602b4d8e27e8e5de59e82885d8ba0db792e674a2e0b409902e102334565dd9 Loading...

	www.gregorysgroves.com/	111 B	2023-03-07	2023-03-11
Pretty URL www.gregorysgroves.com/ IP 162.248.104.123 ASN #53454 FULLDUPLEX-DEN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:58:15 Last Seen2023-03-11 12:05:36 Times Seen1 Hash 9cd66fd5219cace44f295e2a090cf7c6 9ae92fa7423620486131b868183a4e07435e3f5a 2ab45257934e0a14854fa8123ad0722b0053122da7fd8d815d2a8526b330bc68 Loading...

	www.gregorysgroves.com/	79 B	2023-03-11	2023-03-11
Pretty URL www.gregorysgroves.com/ IP 162.248.104.123 ASN #53454 FULLDUPLEX-DEN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 08:33:55 Last Seen2023-03-11 08:33:55 Times Seen1 Hash 9810fcc03829dd2280ebb8e4b9f6e690 eeca3e013854e5f7ea0be2c08a0485e91eeb8a83 2ce9e2781ae7ba4bb73e44c8325d723fb0a574391ee0da059fc7abdddbe89d9f Loading...

	www.gregorysgroves.com/	238 B	2023-03-11	2023-03-11
Pretty URL www.gregorysgroves.com/ IP 162.248.104.123 ASN #53454 FULLDUPLEX-DEN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 08:33:55 Last Seen2023-03-11 08:33:55 Times Seen1 Hash 3f4535c548302f8e356d73128fbe4144 460edaf289a8aec4057ed5216c6ea08bbc3c6fd4 6cdd7ae53d3c37460add747acc46c3e21d8da5a822d2a2022f253435e3917ad0 Loading...

	www.gregorysgroves.com/all.js	22 kB	2023-03-11	2023-03-11
Pretty URL www.gregorysgroves.com/all.js IP 162.248.104.123 ASN #53454 FULLDUPLEX-DEN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 08:33:55 Last Seen2023-03-11 08:33:55 Times Seen1 Hash 7c9ef0c24faee123ec13ce3fb56294f3 7deed545724e4a1e9a409cdc5e1d90f54ea0f1f5 eefae46109037114639f563ae3bf7201654eaac51cabded6ae189c3b1ddad97d Loading...

	www.gregorysgroves.com/magicscroll.js	103 kB	2023-03-07	2023-03-11
Pretty URL www.gregorysgroves.com/magicscroll.js IP 162.248.104.123 ASN #53454 FULLDUPLEX-DEN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:45:38 Last Seen2023-03-11 12:05:36 Times Seen1 Hash a4a46db38814196e889179791d1a001e 74112adbd08a34e3811911292a2ffc351662061d be766ad6dda4f47d80435a714bc5bb7563b2d44b55999001435b95c0c14121b9 Loading...

	www.gregorysgroves.com/	1.0 kB	2023-03-11	2023-03-11
Pretty URL www.gregorysgroves.com/ IP 162.248.104.123 ASN #53454 FULLDUPLEX-DEN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 08:33:55 Last Seen2023-03-11 08:33:55 Times Seen1 Hash 1bde6a6ba2ba42260e76877ac77757d9 ad56cd73606443fdd210af37a951821fbebdc459 9ff91a7472c84efbc469a7a400c6a8bfbf1d55918daf6f009d6bbb49ab9af053 Loading...

	rdata.mpio.io/v1/C/RawData/F7284BB2D012?v=1ce9ed65-ac7b-43f3-9607-3ebe6c47a771&se=db4c75eb-2b91-4696-8f46-dde013fde7ce&d=eyJ2IjoiMWNlOWVkNjUtYWM3Yi00M2YzLTk2MDctM2ViZTZjNDdhNzcxIiwibSI6IjY1ZDYzZmQ1LTExNjItNGFkZi04OTFmLWVjNjZlNGNhY2Y4NCIsImNzaSI6IiIsInNlIjoiZGI0Yzc1ZWItMmI5MS00Njk2LThmNDYtZGRlMDEzZmRlN2NlIiwibiI6MSwicCI6ImUyNzZkZWFiLWU1MWEtNDM3My1iNzA1LTg1N2M2YzlmZWYxOSIsInUiOiJodHRwczovL3d3dy5ncmVnb3J5c2dyb3Zlcy5jb20vIiwicG4iOiIvIiwiciI6IiIsInQiOiJGbG9yaWRhIE9yYW5nZXMgfCBGcmVzaCBGcnVpdCBEZWxpdmVyeSB8IEdyZWdvcnkncyBHcm92ZXMiLCJjIjoiaHR0cHM6Ly93d3cuZ3JlZ29yeXNncm92ZXMuY29tLyIsInByIjoiQjJEMDEyIiwicyI6MSwidnMiOjEsImwiOiJDYXRlZ29yeSIsInYwMSI6IjAiLCJ2MDIiOiJIb21lcGFnZSJ9&callback=cb17329d1132935	208 B	2023-03-11	2023-03-11
Pretty URL rdata.mpio.io/v1/C/RawData/F7284BB2D012?v=1ce9ed65-ac7b-43f3-9607-3ebe6c47a771&se=db4c75eb-2b91-4696-8f46-dde013fde7ce&d=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&callback=cb17329d1132935 IP 52.23.145.57 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 08:33:55 Last Seen2023-03-11 08:33:55 Times Seen1 Hash db5352fa1f9eb45c0ef64e3f5502ad88 8fec4a433731d189f442c6ae867d0ceeb0b8f9f9 206ceb0f56a902a2491dede20a38f91a081e65da8d970f4a5bef827ae16a6022 Loading...

	www.gregorysgroves.com/magiczoomplus.js	86 kB	2023-03-07	2023-03-11
Pretty URL www.gregorysgroves.com/magiczoomplus.js IP 162.248.104.123 ASN #53454 FULLDUPLEX-DEN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:45:38 Last Seen2023-03-11 08:33:55 Times Seen1 Hash 646140b03eb460985f6040bc0f7f6fc2 6017ea05e07eaed65893dacbd892a74493015b16 08fb44fb9b1098fb43a6c69eedf8d565caeb93c094e0fed45c636aaf7fcc0245 Loading...

	www.gregorysgroves.com/	145 B	2023-03-11	2023-03-11
Pretty URL www.gregorysgroves.com/ IP 162.248.104.123 ASN #53454 FULLDUPLEX-DEN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 08:33:55 Last Seen2023-03-11 08:33:55 Times Seen1 Hash 70ccc8f27a6a3e8135ac147a2d9b1474 bc4ecb05141402865e4c9a6a3d7f2f1c5c700681 a7266d3bff03e307b8fc8d9e8d78f9c66ecb34ba506ed6a4a26e86fb4801c8ad Loading...

	www.gregorysgroves.com/	437 B	2023-03-11	2023-03-11
Pretty URL www.gregorysgroves.com/ IP 162.248.104.123 ASN #53454 FULLDUPLEX-DEN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 08:33:55 Last Seen2023-03-11 08:33:55 Times Seen1 Hash a8b3c029adc0b3932a54d275fdf22bd3 ee81c95a04fe0ecff58725c6d9277ec9b5ac61c7 71d234e8a6d80951d359ffa3043a479f5bf06fcab883b91720c106f0532e481b Loading...

	www.gregorysgroves.com/	573 B	2023-03-11	2023-03-11
Pretty URL www.gregorysgroves.com/ IP 162.248.104.123 ASN #53454 FULLDUPLEX-DEN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 08:33:55 Last Seen2023-03-11 08:33:55 Times Seen1 Hash 48199b4bbd19198ff10b9b85146a6b00 00a59c85521f28c3c1b28fb83eee2e7624216ab3 1d4b0258155afa1f51b695614a36457d76745319121579c51bc93cba1f50acd6 Loading...

	www.gregorysgroves.com/	5.5 kB	2023-03-11	2023-03-11
Pretty URL www.gregorysgroves.com/ IP 162.248.104.123 ASN #53454 FULLDUPLEX-DEN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 08:33:55 Last Seen2023-03-11 08:33:55 Times Seen1 Hash a3fb23c87f8c63ff9888214f02cbb57b a3ae3df18344e62e3ff2869d42773f8194223216 8535f2d58fa73a06c8afd06608685f56028ee1b434ab4706ea60920e30fb5443 Loading...

	www.googletagmanager.com/gtag/js?id=G-4VC28E019X&l=dataLayer&cx=c	226 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtag/js?id=G-4VC28E019X&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 08:33:55 Last Seen2023-03-11 08:33:55 Times Seen1 Hash 6fb562a3308e72fa53c13f921bbeada7 cf40d7ef88cee65f650b80c6571b9a54540b0b26 9fb596b82de51bc866ef944ec561d5875f36667c625c4cd52cb85c0c96681637 Loading...

	rdata.mpio.io/v1/C/RawData/F7284BB2D012?v=1ce9ed65-ac7b-43f3-9607-3ebe6c47a771&se=db4c75eb-2b91-4696-8f46-dde013fde7ce&d=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&callback=cbfb81006d831678	209 B	2023-03-11	2023-03-11
Pretty URL rdata.mpio.io/v1/C/RawData/F7284BB2D012?v=1ce9ed65-ac7b-43f3-9607-3ebe6c47a771&se=db4c75eb-2b91-4696-8f46-dde013fde7ce&d=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&callback=cbfb81006d831678 IP 52.23.145.57 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 08:33:55 Last Seen2023-03-11 08:33:55 Times Seen1 Hash a3d6c9e150a6bbb7a894cc2af380c104 f7a1943cd6ad252290ba65579166c0fd9abf6c63 916a54fec6306b8adc0bb767d5179b02639d566b8e262cdb6d0c7812ac81999b Loading...

	stackpath.bootstrapcdn.com/bootstrap/3.4.1/js/bootstrap.min.js	40 kB	2023-03-07	2024-04-25
Pretty URL stackpath.bootstrapcdn.com/bootstrap/3.4.1/js/bootstrap.min.js IP 104.18.11.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-25 00:16:30 Times Seen12198 Hash 2f34b630ffe30ba2ff2b91e3f3c322a1 b16fd8226bd6bfb08e568f1b1d0a21d60247cefb 9ee2fcff6709e4d0d24b09ca0fc56aade12b4961ed9c43fd13b03248bfb57afe Loading...

	www.gregorysgroves.com/bootstrap-tabcollapse.js	9.0 kB	2023-03-07	2023-11-14
Pretty URL www.gregorysgroves.com/bootstrap-tabcollapse.js IP 162.248.104.123 ASN #53454 FULLDUPLEX-DEN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:22:02 Last Seen2023-11-14 01:31:58 Times Seen24 Hash 3e5e279c218dde6321bc3178967bc576 a1f31f7b4e9525f9b2bb9cb13b77fbeb292ade3b 65eefe1c9d4f9d50e1f6e1a5f3d1bf7e096daee915d696e5b7c37030328c14a2 Loading...

	www.gregorysgroves.com/cookie.js	642 B	2023-03-07	2024-02-19
Pretty URL www.gregorysgroves.com/cookie.js IP 162.248.104.123 ASN #53454 FULLDUPLEX-DEN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:58:15 Last Seen2024-02-19 19:12:59 Times Seen11 Hash 74a1a52d3660d4fe42a562cb6cc52edc 59220ff76be104a07bf9bd18b97769d760ebb6fb 7aed1bee5b2e0996ae28d07319eec6423b7e8f3b26edffa0e1a782c65ad563a7 Loading...

	www.gregorysgroves.com/	429 B	2023-03-11	2023-03-11
Pretty URL www.gregorysgroves.com/ IP 162.248.104.123 ASN #53454 FULLDUPLEX-DEN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 08:33:55 Last Seen2023-03-11 08:33:55 Times Seen1 Hash a11884f600b456f92cc3652be320c325 59a0685e73a7962493beb2a3bc13908dd3308320 5498548df0dd6a5f5b8d37ad71937528a39a06bee6b5309775d92a514e56c52f Loading...

	www.googletagmanager.com/gtm.js?id=GTM-59LV2RG	112 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-59LV2RG IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 08:33:55 Last Seen2023-03-11 08:33:55 Times Seen1 Hash f1787cdc3a2c29a5ce35b667aef3d109 e3d364755058117d1b6c6081eb4451c5faa0ed89 b1bb301768cf5300ecc95856ef3c3515fce7c54edc9263b6ca68b4ece357dfce Loading...

	www.gregorysgroves.com/	332 B	2023-03-07	2023-03-11
Pretty URL www.gregorysgroves.com/ IP 162.248.104.123 ASN #53454 FULLDUPLEX-DEN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:58:15 Last Seen2023-03-11 12:09:24 Times Seen1 Hash afe68723a49e9651e66cc4fe352be629 62dd6edfb07bd4db553b2c7cbefa449c43fb1043 7a5e379cde0e32310f958cf1a69374992d9c4e21d1271857739e1dd923902bb7 Loading...

	www.gregorysgroves.com/	1.7 kB	2023-03-11	2023-03-11
Pretty URL www.gregorysgroves.com/ IP 162.248.104.123 ASN #53454 FULLDUPLEX-DEN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 08:33:55 Last Seen2023-03-11 08:33:55 Times Seen1 Hash 7bc20ec5333c27152fa2f743479ed16c eef76b1d8f00e1cedd004f8f64568e3c8f3ba378 84bfa373d7a3957e427b9619839e9a2ef76bab55b1c2b1e7d267157e4b0a3585 Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/1064488198/?random=1667841697815&cv=9&fst=1667841697815&num=1&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&data=ecomm_prodid%3D%3Becomm_pagetype%3DREPLACE_WITH_VALUE%3Becomm_totalvalue%3D&frm=0&url=https%3A%2F%2Fwww.gregorysgroves.com%2F&tiba=Florida%20Oranges%20%7C%20Fresh%20Fruit%20Delivery%20%7C%20Gregory%27s%20Groves&hn=www.googleadservices.com&rfmt=3&fmt=4	2.4 kB	2023-03-11	2023-03-11
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/1064488198/?random=1667841697815&cv=9&fst=1667841697815&num=1&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&data=ecomm_prodid%3D%3Becomm_pagetype%3DREPLACE_WITH_VALUE%3Becomm_totalvalue%3D&frm=0&url=https%3A%2F%2Fwww.gregorysgroves.com%2F&tiba=Florida%20Oranges%20%7C%20Fresh%20Fruit%20Delivery%20%7C%20Gregory%27s%20Groves&hn=www.googleadservices.com&rfmt=3&fmt=4 IP 142.250.74.34 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 08:33:55 Last Seen2023-03-11 08:33:55 Times Seen1 Hash 739d281b90b845b4850736465a6df378 ad04315976064ccc00a39f73e852f2a1615dbb39 6cb4a7052550b90175089f24674f5e6fc8e7351ab777077f2e311ba7803b0078 Loading...

	code.jquery.com/jquery-3.6.0.min.js	90 kB	2023-03-07	2024-04-25
Pretty URL code.jquery.com/jquery-3.6.0.min.js IP 69.16.175.10 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-04-25 00:20:41 Times Seen261027 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	unknown	0 B	2023-03-07	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 00:24:48 Times Seen37051097 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.gregorysgroves.com/	339 B	2023-03-11	2023-03-11
Pretty URL www.gregorysgroves.com/ IP 162.248.104.123 ASN #53454 FULLDUPLEX-DEN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 08:33:55 Last Seen2023-03-11 08:33:55 Times Seen1 Hash f72bf0236c178ce1a1fc14e83834f29d 5901fde47ebb7d2a36c0022c5dd77b240612687e 290252e2e61895678bd739c3e99c8755d7a639c5de4b94259017c655914cb577 Loading...

	www.gregorysgroves.com/	659 B	2023-03-11	2023-03-11
Pretty URL www.gregorysgroves.com/ IP 162.248.104.123 ASN #53454 FULLDUPLEX-DEN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 08:33:55 Last Seen2023-03-11 08:33:55 Times Seen1 Hash 2b49976b72b195a1dc83b87e04ba9fcf c9398e47713661451f6fe7561aabe53776d791c5 ccef3779749fee67ca8be4eb99ecefc89fcd11a624b98461208393b4bc7439dd Loading...

	www.gregorysgroves.com/	155 B	2023-03-11	2023-03-11
Pretty URL www.gregorysgroves.com/ IP 162.248.104.123 ASN #53454 FULLDUPLEX-DEN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 08:33:55 Last Seen2023-03-11 08:33:55 Times Seen1 Hash 7566075d2297f5ac7e3d42a51486bfc0 e7bd840dba6c6a57f71dd442adbed0656c89b7ce 841b1873507761a50e485cd889a426a87e84a93df60bc0512967ffbbf192d9bd Loading...

	www.gregorysgroves.com/	536 B	2023-03-11	2023-03-11
Pretty URL www.gregorysgroves.com/ IP 162.248.104.123 ASN #53454 FULLDUPLEX-DEN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 08:33:55 Last Seen2023-03-11 08:33:55 Times Seen1 Hash c4a07c5c03cd1b80691acbb7e87153b5 a58718c9bbc25bd204a0257623e9fb1284ed6fa7 84ab728131cad7ef809375a76f29b13715d3af17ca0dd12ec954ecb8eb34fa7e Loading...

		Size	First Seen	Last Seen
	#1 Eval - a1fd99f046b36d6a59ba1a32ba7cb3ce	166 kB	2023-03-07	2023-03-11
Pretty Observations First Seen2023-03-07 13:45:38 Last Seen2023-03-11 12:05:36 Times Seen1 Hash a1fd99f046b36d6a59ba1a32ba7cb3ce b19c845b084673fd6e891af5792b4aa961183d0b 90ff93630294d81e3e9956a1c3dca01eac47d9300089b9146dcaa4f2843bec4c Loading...

	#2 Eval - c02dbf2370ee76fbf628f4377e0f1146	136 kB	2023-03-07	2024-02-20
Pretty Observations First Seen2023-03-07 13:45:38 Last Seen2024-02-20 08:07:53 Times Seen19 Hash c02dbf2370ee76fbf628f4377e0f1146 e2d80905a0be32d998d62d5d3f3dc6b7f2cb27ae e0554999e3820284189608236d0cf95e913a64df39a134b9622629117a803ec2 Loading...

		Size	First Seen	Last Seen
	#1 Write - 4ab382640c20b099dd9b8af0a9eff31a	114 B	2023-03-07	2024-04-17
Pretty Observations First Seen2023-03-07 01:42:13 Last Seen2024-04-17 04:34:43 Times Seen148 Hash 4ab382640c20b099dd9b8af0a9eff31a b0325b758b72d8c0b22c76079071132f9dd42839 6d7c2c58d060b8d4fdcbe012cb67517adc8b24049f9cb991871edc425dbba279 Loading...

	#2 Write - d41d8cd98f00b204e9800998ecf8427e	0 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 00:24:48 Times Seen37051097 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (116)

URL IP Response Size

www.gregorysgroves.com/

162.248.104.123

301 Moved Permanently

239 B

URL HTTP/1.1
www.gregorysgroves.com/
IP
162.248.104.123:0
ASN
#53454 FULLDUPLEX-DEN

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
239 B (239 bytes)
Hash
a235b243b870900bc138f84d18823bf7
7c04f6c3e2b6b078cd00e3f02b75bd288a6310b7
e748b8cacb2cea8698302d836b502a31c4d2eb7a93da549ecf05468aa91be860

HTTP Headers

GET / HTTP/1.1
Host: www.gregorysgroves.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Mon, 07 Nov 2022 17:21:37 GMT
Server: Apache
Location: https://www.gregorysgroves.com/
Cache-Control: max-age=604800
Expires: Mon, 14 Nov 2022 17:21:37 GMT
Content-Length: 239
Content-Type: text/html; charset=iso-8859-1

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9e164a845d32db8fa51fdb5b1aa218d9
169099b4d2f8e119ab6cf6fca279b6fb535b1759
402ffbf1404cf05c0516c5a8cd5344bd53537ac5150d387730a90c81c17dc9e4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "402FFBF1404CF05C0516C5A8CD5344BD53537AC5150D387730A90C81C17DC9E4"
Last-Modified: Sun, 06 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3400
Expires: Mon, 07 Nov 2022 18:18:17 GMT
Date: Mon, 07 Nov 2022 17:21:37 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
9fd081ea88e8b8563986b3e558496d21
60700393dce5eb42c0db0d5feef340f4832e3c65
d92555957857423ed02f0d0435739bcd40a996591c73f40315564b372f6e2395

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4870
Cache-Control: max-age=153051
Content-Type: application/ocsp-response
Date: Mon, 07 Nov 2022 17:21:37 GMT
Etag: "6368de76-1d7"
Expires: Wed, 09 Nov 2022 11:52:28 GMT
Last-Modified: Mon, 07 Nov 2022 10:31:18 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
9fd081ea88e8b8563986b3e558496d21
60700393dce5eb42c0db0d5feef340f4832e3c65
d92555957857423ed02f0d0435739bcd40a996591c73f40315564b372f6e2395

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5684
Cache-Control: max-age=153865
Content-Type: application/ocsp-response
Date: Mon, 07 Nov 2022 17:21:37 GMT
Etag: "6368de76-1d7"
Expires: Wed, 09 Nov 2022 12:06:02 GMT
Last-Modified: Mon, 07 Nov 2022 10:31:18 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
4736bac84ca28f2b1e961159fb4ea098
1319612979f53896fcfeacd4215c2715d4951e4c
5e81213e111ddf68c7f884f72b4e06fc4dc95eb902c3cf0762236b2418840dba

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
Alt-Used: 0

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Length, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 07 Nov 2022 16:43:21 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2296
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d8c32b2fb818533a5b3fe5c69157bde9
93594fd3fc50d9d444c28660eabba1edbe4f0588
df8b8ce7a83d11fbe075c8780103c509654f288b5d757d64b696d861a11f3c7f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DF8B8CE7A83D11FBE075C8780103C509654F288B5D757D64B696D861A11F3C7F"
Last-Modified: Sun, 06 Nov 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3012
Expires: Mon, 07 Nov 2022 18:11:49 GMT
Date: Mon, 07 Nov 2022 17:21:37 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 8AKLtWqU59LaUsuN1K6dyxXEPHD0hofbpQmWHuJ0bc0wo7ObIIlblt5xJ4eyJtNPEeFXd6kLRW0=
x-amz-request-id: M9YRBKER08XWTMG1
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 07 Nov 2022 16:48:08 GMT
age: 2009
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 07 Nov 2022 17:21:37 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
07a5af97114fadf53fbde7675d9427dd
6acab327cc1f949f33b79ed8182c88f26ce6167c
81fb3ee269d1d1a92369071b3be1def8799f8b9031641028f91353e760529d95

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 07 Nov 2022 17:21:38 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 07 Nov 2022 15:24:19 GMT
Expires: Mon, 14 Nov 2022 15:24:18 GMT
Etag: "6acab327cc1f949f33b79ed8182c88f26ce6167c"
Cache-Control: max-age=597159,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7667bf13caa2b524-OSL

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
e6f4643306be10417c47176a6e67306f
940a13818904add9e1cacd12610f37ba1efd7bc5
67e51095b5da59b3eeda8a28c81789e69064a0a19a93347c2fcb05fd4b21e6d0

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2450
Cache-Control: max-age=145558
Content-Type: application/ocsp-response
Date: Mon, 07 Nov 2022 17:21:38 GMT
Etag: "6368caa6-1d7"
Expires: Wed, 09 Nov 2022 09:47:36 GMT
Last-Modified: Mon, 07 Nov 2022 09:06:46 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

35.86.38.2

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.86.38.2:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: wRG4SEkfzLGX0XwVfu/1SQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: NgamiQu7IPIReBXFfSzy4Ge5/0s=

www.gregorysgroves.com/

162.248.104.123

200 OK

26 kB

URL HTTP/2
www.gregorysgroves.com/
IP
162.248.104.123:0
ASN
#53454 FULLDUPLEX-DEN

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (31147), with CRLF, CR line terminators
Size
26 kB (26260 bytes)
Hash
931854bdea1a7f28ac6c86bab9fbef91
766b28d61fb2920172361d428a7e891e8f068394
0b5a05b30a2346063a347b3b0f246e57f6f24343c3263aad348838bd8079fe0e

HTTP Headers

GET / HTTP/1.1
Host: www.gregorysgroves.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Mon, 07 Nov 2022 17:21:38 GMT
server: Apache
set-cookie: CV3=5el74b7dchisbdglgasu19kbq7; expires=Wed, 09-Nov-2022 17:21:38 GMT; path=/; domain=www.gregorysgroves.com; secure; HttpOnly
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
x-frame-options: SAMEORIGIN
content-security-policy: child-src  www.paypalobjects.com; connect-src 'self' 'report-sample' s3.amazonaws.com/cv3.customfiles gregorysgrove.commercev3.com *.listrakbi.com *.listrak.com www.google-analytics.com ssl.google-analytics.com ui.powerreviews.com stats.g.doubleclick.net analytics.google.com bat.bing.com www.paypal.com *.smartystreets.com ct.pinterest.com/user/ *.google-analytics.com *.analytics.google.com *.clarity.ms www.facebook.com *.klaviyo.com client-api.provesrc.com m.addthis.com; default-src 'self' s3.amazonaws.com/cdn.gregorysgroves.com/ cdn.commercev3.net/cdn.gregorysgroves.com/ cdn.gregorysgroves.com 'unsafe-eval' ajax.googleapis.com analytics.google.com bat.bing.com c.bing.com code.jquery.com connect.facebook.net fonts.googleapis.com fonts.gstatic.com t.paypal.com www.facebook.com www.google-analytics.com www.googletagmanager.com www.paypal.com www.paypalobjects.com *.bootstrapcdn.com; font-src 'self' gregorysgrove.commercev3.com s3.amazonaws.com/cdn.gregorysgroves.com/ cdn.commercev3.net/cdn.gregorysgroves.com/ cdn.gregorysgroves.com fonts.gstatic.com *.bootstrapcdn.com use.fontawesome.com data:; form-action 'self' www.facebook.com www.paypal.com checkout.sezzle.com; frame-src 'self' *.doubleclick.net www.paypalobjects.com www.paypal.com www.facebook.com www.pinterest.com www.google.com s7.addthis.com; frame-ancestors 'self' ; img-src 'self' s3.amazonaws.com/cdn.gregorysgroves.com/ cdn.commercev3.net/cdn.gregorysgroves.com/ cdn.gregorysgroves.com ssl.g_oogle-analytics.com www.google.com/pagead/1p-user-list/ www.google.com/ads/ga-audiences ct.pinterest.com/v3/ stats.g.doubleclick.net bat.bing.com c.bing.com t.paypal.com www.facebook.com www.google-analytics.com www.googletagmanager.com *.listrakbi.com www.trustlogo.com data: code.jquery.com/ui/ *.google-analytics.com *.analytics.google.com *.clarity.ms www.paypal.com www.paypalobjects.com secure.trust-provider.com aa.agkn.com i.liadm.com www.paypalobjects.com/webstatic/mktg/logo/; script-src 'self' 'report-sample' s3.amazonaws.com/cdn.gregorysgroves.com/ cdn.commercev3.net/cdn.gregorysgroves.com/ cdn.gregorysgroves.com 'unsafe-inline' 'unsafe-eval' ssl.google-analytics.com ui.powerreviews.com bat.bing.com code.jquery.com connect.facebook.net *.bootstrapcdn.com www.google-analytics.com www.googletagmanager.com www.paypal.com www.paypalobjects.com *.listrakbi.com *.smartystreets.com api.livechatinc.com cdn.livechatinc.com ajax.googleapis.com googleads.g.doubleclick.net www.gstatic.com www.trustlogo.com www.googleadservices.com d79i1fxsrar4t.cloudfront.net/jquery.liveaddress/ s.pinimg.com/ct/ www.google.com www.clarity.ms static.klaviyo.com static-tracking.klaviyo.com secure.trust-provider.com *.mpio.io cdn.provesrc.com *.addthis.com v1.addthisedge.com z.moatads.com aa.agkn.com cdnjs.cloudflare.com/ajax/libs/moment.js/; script-src-elem 'self' 'report-sample' s3.amazonaws.com/cdn.gregorysgroves.com/ cdn.commercev3.net/cdn.gregorysgroves.com/ cdn.gregorysgroves.com 'unsafe-inline' 'unsafe-eval' ssl.google-analytics.com ui.powerreviews.com bat.bing.com code.jquery.com connect.facebook.net *.bootstrapcdn.com www.google-analytics.com www.googletagmanager.com www.paypal.com www.paypalobjects.com *.listrakbi.com *.smartystreets.com api.livechatinc.com cdn.livechatinc.com ajax.googleapis.com googleads.g.doubleclick.net www.gstatic.com www.trustlogo.com www.googleadservices.com d79i1fxsrar4t.cloudfront.net/jquery.liveaddress/ s.pinimg.com/ct/ www.google.com www.clarity.ms static.klaviyo.com static-tracking.klaviyo.com secure.trust-provider.com *.mpio.io cdn.provesrc.com *.addthis.com v1.addthisedge.com z.moatads.com aa.agkn.com cdnjs.cloudflare.com/ajax/libs/moment.js/; style-src 'self' s3.amazonaws.com/cdn.gregorysgroves.com/ cdn.commercev3.net/cdn.gregorysgroves.com/ cdn.gregorysgroves.com 'unsafe-inline' 'unsafe-eval' ui.powerreviews.com use.fontawesome.com code.jquery.com fonts.googleapis.com *.bootstrapcdn.com cdn.listrakbi.com/css/ hello.myfonts.net; style-src-elem 'self' s3.amazonaws.com/cdn.gregorysgroves.com/ cdn.commercev3.net/cdn.gregorysgroves.com/ cdn.gregorysgroves.com 'unsafe-inline' 'unsafe-eval' ui.powerreviews.com use.fontawesome.com code.jquery.com fonts.googleapis.com *.bootstrapcdn.com cdn.listrakbi.com/css/ hello.myfonts.net; style-src-attr  'unsafe-inline'; media-src 'self' gregorysgrove.commercev3.com s3.amazonaws.com/cdn.gregorysgroves.com/ cdn.commercev3.net/cdn.gregorysgroves.com/ cdn.gregorysgroves.com www.bing.com; report-uri https://www.securityreports.net/csp-reports
vary: Accept-Encoding
content-encoding: gzip
sn: www-15-cv3
content-length: 26260
content-type: text/html; charset=UTF-8
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
ff6ad72e87fe7c42189db32cb24f2caf
64314e22c3b81d4ea74cfe469c6d1f283c35bb06
99aa5af6b24e0c5a7c4d1bad39bb8f086235ebbfa5773180453d8ebd47e448b7

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3546
Cache-Control: max-age=139126
Content-Type: application/ocsp-response
Date: Mon, 07 Nov 2022 17:21:38 GMT
Etag: "6368ad3e-116"
Expires: Wed, 09 Nov 2022 08:00:24 GMT
Last-Modified: Mon, 07 Nov 2022 07:01:18 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 278

code.jquery.com/jquery-3.6.0.min.js

69.16.175.10

200 OK

31 kB

URL HTTP/2
code.jquery.com/jquery-3.6.0.min.js
IP
69.16.175.10:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (65447)
Size
31 kB (30875 bytes)
Hash
899f0189aaf034bbba5340f724d91dfa
210ea9de03968edb9d839ba4a0ce2d48666a8ab8
949b6597c5ea907a7ef3c8ca6d5ffc73be2352f9df485b78704e5c4dabac5d0f

HTTP Headers

GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.gregorysgroves.com
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 07 Nov 2022 17:21:39 GMT
content-encoding: gzip
content-length: 30875
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15d9d"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1667841699.dop020.sk1.t,1667841699.cds068.sk1.hn,1667841699.cds210.sk1.c
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b8988c44d656e4521aa7d84091f926d3
debd55429e2a0f0bcd257201f2efe00d2e7ed35f
e04704fa687f5daa90436f47c59fabadc7779f604a68cef3baf6b97a0bc5e92b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 07 Nov 2022 17:21:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b8988c44d656e4521aa7d84091f926d3
debd55429e2a0f0bcd257201f2efe00d2e7ed35f
e04704fa687f5daa90436f47c59fabadc7779f604a68cef3baf6b97a0bc5e92b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 07 Nov 2022 17:21:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

code.jquery.com/ui/1.13.1/themes/base/jquery-ui.css

69.16.175.10

200 OK

8.4 kB

URL HTTP/2
code.jquery.com/ui/1.13.1/themes/base/jquery-ui.css
IP
69.16.175.10:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (2363)
Size
8.4 kB (8356 bytes)
Hash
199147d361106ad0e14ae37425d21a2b
cf6c59ed442ede47c29c57a0cfceeead65182f17
317e4ba74ff3aef277e544246dcdeaf7561951cdb0042085b92e88e18e034c95

HTTP Headers

GET /ui/1.13.1/themes/base/jquery-ui.css HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.gregorysgroves.com
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 07 Nov 2022 17:21:39 GMT
content-encoding: gzip
content-length: 8356
content-type: text/css
last-modified: Thu, 20 Jan 2022 14:12:59 GMT
accept-ranges: bytes
server: nginx
etag: W/"61e96deb-8d03"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1667841699.dop020.sk1.t,1667841699.cds068.sk1.hn,1667841699.cds226.sk1.c
X-Firefox-Spdy: h2

code.jquery.com/ui/1.13.1/jquery-ui.min.js

69.16.175.10

200 OK

68 kB

URL HTTP/2
code.jquery.com/ui/1.13.1/jquery-ui.min.js
IP
69.16.175.10:0
ASN
#20446 STACKPATH-CDN

File type
Unicode text, UTF-8 text, with very long lines (64399)
Size
68 kB (67637 bytes)
Hash
2ce23f2617e67daa4190fc0ce26473c7
fb6286e6faf45fee885cff5876ddfef90cf3ba8c
d2e40aec79c3ba5416d1af1bbdc8c093207dbf89ef63c2fbf77ff6ac05ed4cb3

HTTP Headers

GET /ui/1.13.1/jquery-ui.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.gregorysgroves.com
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 07 Nov 2022 17:21:39 GMT
content-encoding: gzip
content-length: 67637
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:40 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd700-3e46a"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1667841699.dop020.sk1.t,1667841699.cds068.sk1.hn,1667841699.cds257.sk1.c
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
07e8a6792fb747753248b41cb87997eb
9eeddb5e9381407cbcff63a9d9f8396fc316ec1a
6ede7d111cc9c26c1f7079e943209c239e422d971474c8c5bbbbee034fad242a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 07 Nov 2022 17:21:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gregorysgroves.com/styles_sec.css?v=20190910

162.248.104.123

200 OK

12 kB

URL HTTP/2
www.gregorysgroves.com/styles_sec.css?v=20190910
IP
162.248.104.123:0
ASN
#53454 FULLDUPLEX-DEN

File type
ASCII text, with very long lines (540), with CRLF line terminators
Size
12 kB (11573 bytes)
Hash
542d88c807aa098890aab6fdbfce08c7
5289a2bce2daa886cbee52a574478b93ef6bb61f
76acc8877f4b6234a32c36faf40855c364863b445b21d04b006070285e9e2f5e

HTTP Headers

GET /styles_sec.css?v=20190910 HTTP/1.1
Host: www.gregorysgroves.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Cookie: CV3=5el74b7dchisbdglgasu19kbq7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 07 Nov 2022 17:21:39 GMT
server: Apache
last-modified: Sun, 01 May 2022 22:08:31 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Mon, 14 Nov 2022 17:21:39 GMT
vary: Accept-Encoding
content-encoding: gzip
sn: www-06-cv3
content-length: 11573
content-type: text/css
X-Firefox-Spdy: h2

www.gregorysgroves.com/bootstrap-tabcollapse.js

162.248.104.123

200 OK

2.2 kB

URL HTTP/2
www.gregorysgroves.com/bootstrap-tabcollapse.js
IP
162.248.104.123:0
ASN
#53454 FULLDUPLEX-DEN

File type
ASCII text, with CRLF line terminators
Size
2.2 kB (2187 bytes)
Hash
cc81fdf1e9ac635397067d3f4fa37e07
c0fd44717f067fdc8116bdadee4ac30905cc3314
6734cd8a667f4162499b10b5a2affa0cdad53a14f9c3719fd3e558d8cbf7ebf6

HTTP Headers

GET /bootstrap-tabcollapse.js HTTP/1.1
Host: www.gregorysgroves.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Cookie: CV3=5el74b7dchisbdglgasu19kbq7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 07 Nov 2022 17:21:39 GMT
server: Apache
last-modified: Sun, 01 May 2022 22:08:31 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Mon, 14 Nov 2022 17:21:39 GMT
vary: Accept-Encoding
content-encoding: gzip
sn: www-15-cv3
content-length: 2187
content-type: text/javascript
X-Firefox-Spdy: h2

www.gregorysgroves.com/cookie.js

162.248.104.123

200 OK

381 B

URL HTTP/2
www.gregorysgroves.com/cookie.js
IP
162.248.104.123:0
ASN
#53454 FULLDUPLEX-DEN

File type
ASCII text, with very long lines (642), with no line terminators
Size
381 B (381 bytes)
Hash
7ed778aaf6544262289bb7c777f4cec5
76110da917e5e2bc75f402f0f03b521e5e998199
5b1bc3641d5c8747a81caefa43901875c003661193b6ed3291ad8c69498f394b

HTTP Headers

GET /cookie.js HTTP/1.1
Host: www.gregorysgroves.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Cookie: CV3=5el74b7dchisbdglgasu19kbq7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 07 Nov 2022 17:21:39 GMT
server: Apache
last-modified: Sun, 01 May 2022 22:08:31 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Mon, 14 Nov 2022 17:21:39 GMT
vary: Accept-Encoding
content-encoding: gzip
sn: www-17-cv3
content-length: 381
content-type: text/javascript
X-Firefox-Spdy: h2

www.gregorysgroves.com/magicscroll.css

162.248.104.123

200 OK

13 kB

URL HTTP/2
www.gregorysgroves.com/magicscroll.css
IP
162.248.104.123:0
ASN
#53454 FULLDUPLEX-DEN

File type
ASCII text, with very long lines (8258), with CRLF line terminators
Size
13 kB (12985 bytes)
Hash
b6a339205a9a9be3e5ee953a8c6c8c00
08e3f99a1ac743049044e953158f485b7ddb879e
186ea800bc39f5990eda6eeebe41a54f029e097168edda7f603ee467a0a5b7d9

HTTP Headers

GET /magicscroll.css HTTP/1.1
Host: www.gregorysgroves.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Cookie: CV3=5el74b7dchisbdglgasu19kbq7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 07 Nov 2022 17:21:39 GMT
server: Apache
last-modified: Sun, 01 May 2022 22:08:31 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Mon, 14 Nov 2022 17:21:39 GMT
vary: Accept-Encoding
content-encoding: gzip
sn: www-05-cv3
content-length: 12985
content-type: text/css
X-Firefox-Spdy: h2

www.googleadservices.com/pagead/conversion.js

142.250.74.98

200 OK

17 kB

URL HTTP/2
www.googleadservices.com/pagead/conversion.js
IP
142.250.74.98:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2153)
Size
17 kB (16836 bytes)
Hash
7fb611e9135563a54404650360f6b1de
d571cf307921d8a9eb21faca0d2ec61ba023c860
5b46cba6934b2c89bb884ba63a77c2f7b23a1bad80a0a8b10f12c46397f173db

HTTP Headers

GET /pagead/conversion.js HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Mon, 07 Nov 2022 17:21:39 GMT
expires: Mon, 07 Nov 2022 17:21:39 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 14253518212129236209
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 16836
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
ff6ad72e87fe7c42189db32cb24f2caf
64314e22c3b81d4ea74cfe469c6d1f283c35bb06
99aa5af6b24e0c5a7c4d1bad39bb8f086235ebbfa5773180453d8ebd47e448b7

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5019
Cache-Control: max-age=140598
Content-Type: application/ocsp-response
Date: Mon, 07 Nov 2022 17:21:39 GMT
Etag: "6368ad3e-116"
Expires: Wed, 09 Nov 2022 08:24:57 GMT
Last-Modified: Mon, 07 Nov 2022 07:01:18 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 278

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
96791bd486db22c41012d25318835bdf
b32c813f16b84a6b2660bd527843da5e368af8eb
61a4589c35910af9f8d20ff0c7eca296a77a336ab00730573fe9ce7cf2cc72c5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 07 Nov 2022 17:21:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
68bd9d2746edb43e71250ead78736ef2
78991acdc3545abb8a8b2ab2367a6b9723358eee
6b1c2becfb5ba87cba41e06a69dfa0235d80a93516eb8b79ab2e85e4714d174b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 07 Nov 2022 17:21:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.sca1b.amazontrust.com/

143.204.42.156

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.156:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
94bb80f99b1ef19c244cf438890b5fbe
33abd5d61028b1a78636269308b480a115920c92
4d500f39cece89fe9b1f81403be05658784ba71c6cabe3c3300af1c2dc591829

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=123402
Date: Mon, 07 Nov 2022 17:21:39 GMT
Etag: "63686b17-1d7"
Expires: Wed, 09 Nov 2022 03:38:21 GMT
Last-Modified: Mon, 07 Nov 2022 02:19:03 GMT
Server: ECS (nyb/1D0D)
X-Cache: Miss from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 4byfFjevg1MaRiuJuZwr1-b78akrnMCYEGddyNwPnTLsbe6abiSf5g==
Age: 4759

www.gregorysgroves.com/magiczoomplus.css

162.248.104.123

200 OK

6.9 kB

URL HTTP/2
www.gregorysgroves.com/magiczoomplus.css
IP
162.248.104.123:0
ASN
#53454 FULLDUPLEX-DEN

File type
ASCII text, with very long lines (2624), with CRLF line terminators
Size
6.9 kB (6937 bytes)
Hash
98ef7f198c96317ca391aee5786c16da
bf13659dc59d4e1fa3333a303d36f7c8e38842fd
b3d27a3eb782a28d57239c0309ea33488106af07db8fc2c43ff43c48690e93d9

HTTP Headers

GET /magiczoomplus.css HTTP/1.1
Host: www.gregorysgroves.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Cookie: CV3=5el74b7dchisbdglgasu19kbq7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 07 Nov 2022 17:21:39 GMT
server: Apache
last-modified: Sun, 01 May 2022 22:08:31 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Mon, 14 Nov 2022 17:21:39 GMT
vary: Accept-Encoding
content-encoding: gzip
sn: www-03-cv3
content-length: 6937
content-type: text/css
X-Firefox-Spdy: h2

www.gregorysgroves.com/aj.js

162.248.104.123

200 OK

1.7 kB

URL HTTP/2
www.gregorysgroves.com/aj.js
IP
162.248.104.123:0
ASN
#53454 FULLDUPLEX-DEN

File type
ASCII text, with CRLF line terminators
Size
1.7 kB (1735 bytes)
Hash
d11f0707f183afcabf9f4c329e96efac
1f6eb3b92444b3eedca7857ab849573af5260793
64b21316e6b2322c711bd6281b28538ff6f0ebca35fa1056b528ddb2f2576e94

HTTP Headers

GET /aj.js HTTP/1.1
Host: www.gregorysgroves.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Cookie: CV3=5el74b7dchisbdglgasu19kbq7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 07 Nov 2022 17:21:39 GMT
server: Apache
last-modified: Sun, 01 May 2022 22:08:31 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Mon, 14 Nov 2022 17:21:39 GMT
vary: Accept-Encoding
content-encoding: gzip
sn: www-20-cv3
content-length: 1735
content-type: text/javascript
X-Firefox-Spdy: h2

www.gregorysgroves.com/all.js

162.248.104.123

200 OK

5.5 kB

URL HTTP/2
www.gregorysgroves.com/all.js
IP
162.248.104.123:0
ASN
#53454 FULLDUPLEX-DEN

File type
ASCII text, with CRLF line terminators
Size
5.5 kB (5516 bytes)
Hash
1c2ec3d3e7938f5d76b2f7eaa7de632e
c479342618d6ee5129b5060ed3a8c2a7a75af5be
470744f62dc02955c96d276fee2d8eb7698e81b4d40fed1c4d797b0133ad533e

HTTP Headers

GET /all.js HTTP/1.1
Host: www.gregorysgroves.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Cookie: CV3=5el74b7dchisbdglgasu19kbq7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 07 Nov 2022 17:21:39 GMT
server: Apache
last-modified: Sun, 01 May 2022 22:08:31 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Mon, 14 Nov 2022 17:21:39 GMT
vary: Accept-Encoding
content-encoding: gzip
sn: www-19-cv3
content-length: 5516
content-type: text/javascript
X-Firefox-Spdy: h2

www.gregorysgroves.com/magicscroll.js

162.248.104.123

200 OK

40 kB

URL HTTP/2
www.gregorysgroves.com/magicscroll.js
IP
162.248.104.123:0
ASN
#53454 FULLDUPLEX-DEN

File type
ASCII text, with very long lines (65339), with CRLF line terminators
Size
40 kB (40125 bytes)
Hash
783c09e30d74795a918093bc2913d858
66933b8766addd9e3f961089055828c4cc1ac6bb
9226c80b2689e46db41722cccf4dcef7b5a4c5b7e98cec5893ba08c5d64cc55d

HTTP Headers

GET /magicscroll.js HTTP/1.1
Host: www.gregorysgroves.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Cookie: CV3=5el74b7dchisbdglgasu19kbq7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 07 Nov 2022 17:21:39 GMT
server: Apache
last-modified: Sun, 01 May 2022 22:08:31 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Mon, 14 Nov 2022 17:21:39 GMT
vary: Accept-Encoding
content-encoding: gzip
sn: www-14-cv3
content-length: 40125
content-type: text/javascript
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

143.204.42.156

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.156:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
c502aec753f878e8f5b1feefebac7c15
03506618f70ac91e289b8e751a81099b9f6af136
54cf764739325d8e3f5373c66a2ad58e6d742616236e872f361a7b6a9d6c0c4b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=160701
Date: Mon, 07 Nov 2022 17:21:39 GMT
Etag: "6368f92f-1d7"
Expires: Wed, 09 Nov 2022 14:00:00 GMT
Last-Modified: Mon, 07 Nov 2022 12:25:19 GMT
Server: ECS (nyb/1D18)
X-Cache: Miss from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: x3TW20SNVp2JnQnWhOhMU24dDw_kaIqBOlPoPTVdcru-huxBO9THcQ==
Age: 5681

ocsp.sca1b.amazontrust.com/

143.204.42.156

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.156:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
c502aec753f878e8f5b1feefebac7c15
03506618f70ac91e289b8e751a81099b9f6af136
54cf764739325d8e3f5373c66a2ad58e6d742616236e872f361a7b6a9d6c0c4b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=161371
Date: Mon, 07 Nov 2022 17:21:39 GMT
Etag: "6368f92f-1d7"
Expires: Wed, 09 Nov 2022 14:11:10 GMT
Last-Modified: Mon, 07 Nov 2022 12:25:19 GMT
Server: ECS (bsa/EB18)
X-Cache: Miss from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: IUxkK27WmJ8PWiSO5RwbNztQqOrxzB36Zc9T9FHWWT5jhNkwRK8B4A==
Age: 6351

www.gregorysgroves.com/images/more-arrow.png

162.248.104.123

302 Found

253 B

URL HTTP/2
www.gregorysgroves.com/images/more-arrow.png
IP
162.248.104.123:0
ASN
#53454 FULLDUPLEX-DEN

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
253 B (253 bytes)
Hash
476ddb47316e0e09afdd2b3fc20d390d
b419b7ea5a63e98567ad2e027365fd1bd522bc54
59bb04ad2d924164f9a465abac483be197941f6d04640aa9195670e15695cd9e

HTTP Headers

GET /images/more-arrow.png HTTP/1.1
Host: www.gregorysgroves.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Cookie: CV3=5el74b7dchisbdglgasu19kbq7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 302 Found
date: Mon, 07 Nov 2022 17:21:39 GMT
server: Apache
location: https://s3.amazonaws.com/cdn.gregorysgroves.com/images/more-arrow.png
cache-control: max-age=604800
expires: Mon, 14 Nov 2022 17:21:39 GMT
content-length: 253
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

www.gregorysgroves.com/images/less-arrow.png

162.248.104.123

302 Found

253 B

URL HTTP/2
www.gregorysgroves.com/images/less-arrow.png
IP
162.248.104.123:0
ASN
#53454 FULLDUPLEX-DEN

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
253 B (253 bytes)
Hash
8923c30d084a5324347727f8a6689772
f7540e29f4dc4e986dad983d7138a90bc907b282
58c6f1c99671ae288414c7f73f214d9d1b2457ad0b35e5f87c87fc400b20e87a

HTTP Headers

GET /images/less-arrow.png HTTP/1.1
Host: www.gregorysgroves.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Cookie: CV3=5el74b7dchisbdglgasu19kbq7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 302 Found
date: Mon, 07 Nov 2022 17:21:39 GMT
server: Apache
location: https://s3.amazonaws.com/cdn.gregorysgroves.com/images/less-arrow.png
cache-control: max-age=604800
expires: Mon, 14 Nov 2022 17:21:39 GMT
content-length: 253
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

www.gregorysgroves.com/jquery_mmenu_all.css

162.248.104.123

200 OK

5.0 kB

URL HTTP/2
www.gregorysgroves.com/jquery_mmenu_all.css
IP
162.248.104.123:0
ASN
#53454 FULLDUPLEX-DEN

File type
ASCII text, with CRLF line terminators
Size
5.0 kB (4958 bytes)
Hash
53f03b1b15e7ef7ee44e72e90c3a2895
a4acdae8d35376bbc0b3ef70c0c66a5ef8509753
0ae0d6e120e6cd53c25fa4d4b7aa516088b0f0f4aeab59d4139fa22c641b6d31

HTTP Headers

GET /jquery_mmenu_all.css HTTP/1.1
Host: www.gregorysgroves.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Cookie: CV3=5el74b7dchisbdglgasu19kbq7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 07 Nov 2022 17:21:39 GMT
server: Apache
last-modified: Sun, 01 May 2022 22:08:31 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Mon, 14 Nov 2022 17:21:39 GMT
vary: Accept-Encoding
content-encoding: gzip
sn: www-24-cv3
content-length: 4958
content-type: text/css
X-Firefox-Spdy: h2

www.gregorysgroves.com/magiczoomplus.js

162.248.104.123

200 OK

33 kB

URL HTTP/2
www.gregorysgroves.com/magiczoomplus.js
IP
162.248.104.123:0
ASN
#53454 FULLDUPLEX-DEN

File type
ASCII text, with very long lines (65335), with CRLF line terminators
Size
33 kB (33248 bytes)
Hash
ed913253e538f1425fef98f411ff4a37
7b776fe6e8a7a3cad3b1e8d91e478b71337af862
da79799b98c11dbab3aa9438860f124316ebe7b8982472e4e6e415395ff15321

HTTP Headers

GET /magiczoomplus.js HTTP/1.1
Host: www.gregorysgroves.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Cookie: CV3=5el74b7dchisbdglgasu19kbq7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 07 Nov 2022 17:21:39 GMT
server: Apache
last-modified: Sun, 01 May 2022 22:08:31 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Mon, 14 Nov 2022 17:21:39 GMT
vary: Accept-Encoding
content-encoding: gzip
sn: www-16-cv3
content-length: 33248
content-type: text/javascript
X-Firefox-Spdy: h2

www.gregorysgroves.com/jquery_mmenu_min_all.js

162.248.104.123

200 OK

9.2 kB

URL HTTP/2
www.gregorysgroves.com/jquery_mmenu_min_all.js
IP
162.248.104.123:0
ASN
#53454 FULLDUPLEX-DEN

File type
ASCII text, with very long lines (9105), with CRLF line terminators
Size
9.2 kB (9228 bytes)
Hash
c260009b58c1d3b832c3ab69918ef0ab
be727d3cddb4cd4ebc2fe53fa6f36c1b4f0703c1
f48183d3a0249a4461aa05206d3b0d6a0d3d1d185da1daa5bcf3d90045093cd2

HTTP Headers

GET /jquery_mmenu_min_all.js HTTP/1.1
Host: www.gregorysgroves.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Cookie: CV3=5el74b7dchisbdglgasu19kbq7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 07 Nov 2022 17:21:39 GMT
server: Apache
last-modified: Sun, 01 May 2022 22:08:31 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Mon, 14 Nov 2022 17:21:39 GMT
vary: Accept-Encoding
content-encoding: gzip
sn: www-09-cv3
content-length: 9228
content-type: text/javascript
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3bf1a5e65cd048b761eac5cb0b52048a
f64cface851717dee160a5c6fad975cc34fe4cd2
8b849bbe5d73c02bd82c39e5970ef02d46bf36ccfed31b51db437d85d12c004b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B849BBE5D73C02BD82C39E5970EF02D46BF36CCFED31B51DB437D85D12C004B"
Last-Modified: Sat, 05 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6518
Expires: Mon, 07 Nov 2022 19:10:17 GMT
Date: Mon, 07 Nov 2022 17:21:39 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
e42f9ca381ab075388ff4de12be4a9ef
c48713804083af3d006cf327c3724b2f09bda214
f2ec6bfef51324f25e61deae1b727ce784681713fd67d935785e1fe7747f72f3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2448
Cache-Control: max-age=117512
Content-Type: application/ocsp-response
Date: Mon, 07 Nov 2022 17:21:39 GMT
Etag: "63685d1b-1d7"
Expires: Wed, 09 Nov 2022 02:00:11 GMT
Last-Modified: Mon, 07 Nov 2022 01:19:23 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3bf1a5e65cd048b761eac5cb0b52048a
f64cface851717dee160a5c6fad975cc34fe4cd2
8b849bbe5d73c02bd82c39e5970ef02d46bf36ccfed31b51db437d85d12c004b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B849BBE5D73C02BD82C39E5970EF02D46BF36CCFED31B51DB437D85D12C004B"
Last-Modified: Sat, 05 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6518
Expires: Mon, 07 Nov 2022 19:10:17 GMT
Date: Mon, 07 Nov 2022 17:21:39 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faba2be0c-46a2-4aa1-be6e-09cafbba66a9.jpeg

34.120.237.76

200 OK

7.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faba2be0c-46a2-4aa1-be6e-09cafbba66a9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.3 kB (7309 bytes)
Hash
1190aa1b3db742f1cc476e53b34479b7
7e7ba87cfbc21acc28219c68521eedd6d3f614a0
6724e0c14b11cf9ef8c2050116115e5f7985f744184a7d2e8ea4c0189bd1997d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faba2be0c-46a2-4aa1-be6e-09cafbba66a9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7309
x-amzn-requestid: 0d1c4df8-769e-497b-999c-b1087d79dfe4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bKLIGGWHIAMFhiw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63672566-1745417f7ed16a0576321e03;Sampled=0
x-amzn-remapped-date: Sun, 06 Nov 2022 03:09:26 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Jxy0K13kA9KV6V4d_-nxs7HZk7J2JgKeJFsC1NXhJI0SvEBXSuRBbQ==
via: 1.1 95785220a566cd050f3ad80928463374.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 07 Nov 2022 03:38:14 GMT
age: 49405
etag: "7e7ba87cfbc21acc28219c68521eedd6d3f614a0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10462 bytes)
Hash
4e2853cc6ec6223160471401e6871f4b
f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c
bf4b9145ea043d87a30fd3aeeae21a1a0aa27004cd2467e7aa843bc894ae1f60

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 10462
x-amzn-requestid: 43480a38-fd89-4c47-b8c4-e6ba90b1321c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aMF6oEz_oAMF8Hg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634e5043-6617fd2e59cab00135301cdd;Sampled=0
x-amzn-remapped-date: Tue, 18 Oct 2022 07:05:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: C7GYpM3mXSf0hVyGO9Zzlxa3IHXHdyPlXsvr3i0GoQnaPZF6lO-OwA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 07 Nov 2022 06:28:00 GMT
age: 39219
etag: "f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff56714e2-704b-4327-92b2-54e71d0c4d40.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.0 kB (8961 bytes)
Hash
dcc79e66d1e21452efb26d26650f6739
1f727a7ea032082658944cf4041686446fb6b5f2
af1fe8de442a365a108d5c03f0d3ae8b0beb1abb4f267a46979f9c885ee026c6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff56714e2-704b-4327-92b2-54e71d0c4d40.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8961
x-amzn-requestid: 3a50374d-d90e-452e-bb89-82ca14c94b52
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bJarpGtqIAMFkPg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6366d7e3-55c356475fb64e6625a338c7;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 21:38:44 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: nVtRSCFPqKF3dF0E9tQ4Ojyz7CXl7OkKDm7vDfOlrH9_8axDPoEvNQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sun, 06 Nov 2022 21:44:34 GMT
age: 70625
etag: "1f727a7ea032082658944cf4041686446fb6b5f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.paypalobjects.com/webstatic/mktg/logo/AM_mc_vs_dc_ae.jpg

151.101.86.133

200 OK

7.4 kB

URL HTTP/2
www.paypalobjects.com/webstatic/mktg/logo/AM_mc_vs_dc_ae.jpg
IP
151.101.86.133:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 319x110, components 3\012- data
Size
7.4 kB (7446 bytes)
Hash
060d98f0734d35ee7df9a49331c05454
89b5748e5f54f1e6a24995624def905763eff5d4
ef5e3bbf218893044104d36f159d2814b05aaffad79df65f7eaa24ccf32bf372

HTTP Headers

GET /webstatic/mktg/logo/AM_mc_vs_dc_ae.jpg HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/jpeg
dc: ccg11-origin-www-1.paypal.com
etag: "bXhVlSkysdTEbASsa/8YVE+GqZLjk1hWoanLGAcHaxI"
fastly-io-info: ifsz=13435 idim=319x110 ifmt=jpeg ofsz=7446 odim=319x110 ofmt=jpeg
fastly-stats: io=1
paypal-debug-id: 9236098fa70e
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-000000000000000000009236098fa70e-221b95687c019432-01
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 07 Nov 2022 17:21:39 GMT
x-served-by: cache-sjc10025-SJC, cache-bma1656-BMA
x-cache: HIT, HIT
x-cache-hits: 1641, 3
x-timer: S1667841700.698853,VS0,VE0
x-content-type-options: nosniff
strict-transport-security: max-age=31557600
content-length: 7446
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3bf1a5e65cd048b761eac5cb0b52048a
f64cface851717dee160a5c6fad975cc34fe4cd2
8b849bbe5d73c02bd82c39e5970ef02d46bf36ccfed31b51db437d85d12c004b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B849BBE5D73C02BD82C39E5970EF02D46BF36CCFED31B51DB437D85D12C004B"
Last-Modified: Sat, 05 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6518
Expires: Mon, 07 Nov 2022 19:10:17 GMT
Date: Mon, 07 Nov 2022 17:21:39 GMT
Connection: keep-alive

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa958db65-71f7-4c79-9753-9af1fe88477b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13224 bytes)
Hash
7a5e060b41bd5313b1cf828c1d5ecbcc
e63e4bee84953491236a8261ef07b5a4743fa891
e8750b0156ed980f11682d92f5c60ce2783518b37f156e74340617a74d826813

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa958db65-71f7-4c79-9753-9af1fe88477b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13224
x-amzn-requestid: fb0d928d-925b-4b89-9165-e17cf9c3492d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bJy6zH3GoAMFdtg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6366feab-01cda80140a9174e718833c3;Sampled=0
x-amzn-remapped-date: Sun, 06 Nov 2022 00:24:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wlegOy4mTlSGjBv2VVBylItdbR8-hLnME8lZEkEO_XmSA04Y29HjrQ==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 07 Nov 2022 15:14:16 GMT
age: 7643
etag: "e63e4bee84953491236a8261ef07b5a4743fa891"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3bf1a5e65cd048b761eac5cb0b52048a
f64cface851717dee160a5c6fad975cc34fe4cd2
8b849bbe5d73c02bd82c39e5970ef02d46bf36ccfed31b51db437d85d12c004b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B849BBE5D73C02BD82C39E5970EF02D46BF36CCFED31B51DB437D85D12C004B"
Last-Modified: Sat, 05 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6518
Expires: Mon, 07 Nov 2022 19:10:17 GMT
Date: Mon, 07 Nov 2022 17:21:39 GMT
Connection: keep-alive

34.120.237.76

200 OK

9.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F100d1c51-b2c7-40d5-bd34-a37c21b8252d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.4 kB (9435 bytes)
Hash
c0a079a6dfb70fb2a2d6b5aff7103f73
55ffd5d6cb8074bdbdb8d06719119021bc81aeab
196ffd4e5245355c1c5d67f49b28200630ccfe1e4ebaa7280154b7adaf39b18f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F100d1c51-b2c7-40d5-bd34-a37c21b8252d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9435
x-amzn-requestid: 7c39c00f-1362-44c1-9628-749045e542b4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bEIU9G5gIAMFzZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364ba85-57fbfb872251c37f4137b262;Sampled=0
x-amzn-remapped-date: Fri, 04 Nov 2022 07:08:53 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: GaFmcnh2vF0lCj_QPQ7SAIT_UzHHyr8UaHa-R_ifuZsX7quU0mBJ9Q==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 06 Nov 2022 19:49:42 GMT
age: 77517
etag: "55ffd5d6cb8074bdbdb8d06719119021bc81aeab"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78f88d98-b52b-4ad1-8cfc-e60fd17b46e0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11535 bytes)
Hash
b370c4e3b01be9fbbc3e310e6958cd55
cc22e90a0b476215f2fd864d84c9b00dded100a6
f54d90c5854b6f140b63dad3aa92bd858b8f360b8c77d50fdf344e813e9385c5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78f88d98-b52b-4ad1-8cfc-e60fd17b46e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11535
x-amzn-requestid: 0a1d9895-e2e3-4070-921a-736d8c6f254e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bJatPGwjoAMFx8Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6366d7ee-101a7f3a2b834d0b411c9de0;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 21:38:54 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: gjEERXiPH4yDHtW87u7qRDYz1A2DKKlkYXKVC3F9VshnRvhh2wSaSQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sun, 06 Nov 2022 21:48:52 GMT
age: 70367
etag: "cc22e90a0b476215f2fd864d84c9b00dded100a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

s3.amazonaws.com/cdn.gregorysgroves.com/images/fb.png

52.217.95.192

200 OK

4.0 kB

URL HTTP/1.1
s3.amazonaws.com/cdn.gregorysgroves.com/images/fb.png
IP
52.217.95.192:0
ASN
#16509 AMAZON-02

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
4.0 kB (3985 bytes)
Hash
fcbe4fc105cee30c38936807aaefd775
112ec4099e45a66c36c698cab808f57a99944477
0d601e9924ad4820652c60ee49995e145301d5fd30ab7009485abdae78f9ed6d

HTTP Headers

GET /cdn.gregorysgroves.com/images/fb.png HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: fEfK0721Uz8Oi980QMusla8nWwZ+gBzL49Y9zNcF/nANcadDAwr/9YD9bpx6MrkWXp5D8nV8i2Y=
x-amz-request-id: 61SAFRTCTND4F2MX
Date: Mon, 07 Nov 2022 17:21:40 GMT
Last-Modified: Tue, 10 Sep 2019 13:59:47 GMT
ETag: "fcbe4fc105cee30c38936807aaefd775"
x-amz-meta-s3cmd-attrs: uid:48/gname:apache/uname:apache/gid:48/mode:33261/mtime:1568122517/atime:1568122584/md5:fcbe4fc105cee30c38936807aaefd775/ctime:1568122549
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 3985

s3.amazonaws.com/cdn.gregorysgroves.com/images/less-arrow.png

52.217.95.192

200 OK

220 B

URL HTTP/1.1
s3.amazonaws.com/cdn.gregorysgroves.com/images/less-arrow.png
IP
52.217.95.192:0
ASN
#16509 AMAZON-02

File type
PNG image data, 21 x 14, 8-bit/color RGBA, non-interlaced\012- data
Size
220 B (220 bytes)
Hash
93d9887b4b4bac7d229cad9500d5b090
f4be1b603a8bf97e4acf73e94f76876081aa70e1
954cc3169fc8ccf9ff85091ddea1d0571c98c53e0e9cb71f0aa6005b2e4c476d

HTTP Headers

GET /cdn.gregorysgroves.com/images/less-arrow.png HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gregorysgroves.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: ouRG98lA4pXu+42HS8yLSdw4LcUSRb0r1FxhOCcIrWEWyrICz0gqLkghFEzh+wLgdf2o/5WOibk=
x-amz-request-id: 61S4M0EVPQ644Y3B
Date: Mon, 07 Nov 2022 17:21:40 GMT
Last-Modified: Tue, 29 Nov 2016 20:38:41 GMT
ETag: "93d9887b4b4bac7d229cad9500d5b090"
x-amz-meta-s3cmd-attrs: uid:48/gname:apache/uname:apache/gid:48/mode:33188/mtime:1480397534/atime:1480397534/ctime:1480397534
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 220

s3.amazonaws.com/cdn.gregorysgroves.com/images/more-arrow.png

52.217.95.192

200 OK

2.9 kB

URL HTTP/1.1
s3.amazonaws.com/cdn.gregorysgroves.com/images/more-arrow.png
IP
52.217.95.192:0
ASN
#16509 AMAZON-02

File type
PNG image data, 21 x 14, 8-bit/color RGBA, non-interlaced\012- data
Size
2.9 kB (2901 bytes)
Hash
d56f65b88ece5e1228f6904a6fc7740d
c692a5a4ab8fdac9b72430ae8cd4b0dbd1f2bc91
8c976ef23243114bbe17503e12c90dca5d1e056aa1043c5010601ee0f080e00c

HTTP Headers

GET /cdn.gregorysgroves.com/images/more-arrow.png HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gregorysgroves.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: t9EhFLMcAHHq1W1woyEGD6fx/QfMkzGeCQiKoTHPydVxJH+L72W5tkNTQtUUOwQ0cf073mdOIPA=
x-amz-request-id: 61S6TK95JN4JVJJS
Date: Mon, 07 Nov 2022 17:21:40 GMT
Last-Modified: Tue, 29 Nov 2016 20:38:41 GMT
ETag: "d56f65b88ece5e1228f6904a6fc7740d"
x-amz-meta-s3cmd-attrs: uid:48/gname:apache/uname:apache/gid:48/mode:33188/mtime:1480397528/atime:1480397528/ctime:1480397528
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 2901

s3.amazonaws.com/cdn.gregorysgroves.com/images/sectigo_secure_seal.png

52.217.95.192

200 OK

2.1 kB

URL HTTP/1.1
s3.amazonaws.com/cdn.gregorysgroves.com/images/sectigo_secure_seal.png
IP
52.217.95.192:0
ASN
#16509 AMAZON-02

File type
PNG image data, 106 x 42, 8-bit/color RGBA, non-interlaced\012- data
Size
2.1 kB (2113 bytes)
Hash
12d3d7c28115f6d9243bde537fc90066
dfb6c38102619361defe5680dfeab20cc5571486
d1cb285ddefc0ed3472610294788c827b761752bf0c954e3685a107806387bed

HTTP Headers

GET /cdn.gregorysgroves.com/images/sectigo_secure_seal.png HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: CZqTSRx4nOv0MIWcEAPaGdGdQqvsKtqIWqhtR39766oCqz9qs2tshvK8JYh4/vGYDoLB7MTm6Bo=
x-amz-request-id: 61S7GWC3SZ650F32
Date: Mon, 07 Nov 2022 17:21:40 GMT
Last-Modified: Tue, 10 Sep 2019 13:59:53 GMT
ETag: "12d3d7c28115f6d9243bde537fc90066"
x-amz-meta-s3cmd-attrs: uid:48/gname:apache/uname:apache/gid:48/mode:33188/mtime:1568122524/atime:1568122584/md5:12d3d7c28115f6d9243bde537fc90066/ctime:1568122549
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 2113

s3.amazonaws.com/cdn.gregorysgroves.com/images/promo_gifts.jpg

52.217.95.192

200 OK

104 kB

URL HTTP/1.1
s3.amazonaws.com/cdn.gregorysgroves.com/images/promo_gifts.jpg
IP
52.217.95.192:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 283x253, components 3\012- data
Size
104 kB (104116 bytes)
Hash
88b5edfdc55a2d26fec4e7e62a6ac692
53b62bb9fa6deb131e0ca0fe57aac4d7cb4a8d50
41a9431f1ac97a14d5fccaa859b6136c5630e6da71bbe05525ab51cc25815555

HTTP Headers

GET /cdn.gregorysgroves.com/images/promo_gifts.jpg HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: H5ZvXYqwNaiNoY2sX9IxI+BWYSNbyD9FtJGZmaH6F2rW+N2ubL891J89WH5vz0K1EY3LCL2jA28=
x-amz-request-id: 61S9EPSHSAKNFS5Y
Date: Mon, 07 Nov 2022 17:21:40 GMT
Last-Modified: Tue, 10 Sep 2019 13:59:52 GMT
ETag: "88b5edfdc55a2d26fec4e7e62a6ac692"
x-amz-meta-s3cmd-attrs: uid:48/gname:apache/uname:apache/gid:48/mode:33188/mtime:1568122516/atime:1568122584/md5:88b5edfdc55a2d26fec4e7e62a6ac692/ctime:1568122549
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 104116

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
aa669d648260d52559fa34470f1596ac
faf07b89a1ab05aa318f1766c57a7cadceb41a10
8ec3c4e86ea3337185cad8bb5a172930c92b7e5568d6aa540b502b63438523c7

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 07 Nov 2022 17:21:40 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 05 Nov 2022 10:05:30 GMT
Expires: Sat, 12 Nov 2022 10:05:29 GMT
Etag: "faf07b89a1ab05aa318f1766c57a7cadceb41a10"
Cache-Control: max-age=405228,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7667bf214ed8b524-OSL

s3.amazonaws.com/cdn.gregorysgroves.com/images/2022-10-26-hero.jpg

52.217.95.192

200 OK

154 kB

URL HTTP/1.1
s3.amazonaws.com/cdn.gregorysgroves.com/images/2022-10-26-hero.jpg
IP
52.217.95.192:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 872x425, components 3\012- data
Size
154 kB (153505 bytes)
Hash
e08984abadf1a2de72ea3bf4abc6b7b6
22e3bcd7e397197b50bdd7f53ca8e7fd316343d2
ff008b37e2742dd93e417e5c3375e60e915743f2210a47b245d397bf75ee9c29

HTTP Headers

GET /cdn.gregorysgroves.com/images/2022-10-26-hero.jpg HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: qHwhA9RyRDq6Vf3r82GDa35tzXh6Ff3FEUuYFDc97qJnPOyeSRB4IVCoTGfHjyl1tD/ByRqtogY=
x-amz-request-id: 61SA1B42YV2KR1J9
Date: Mon, 07 Nov 2022 17:21:40 GMT
Last-Modified: Mon, 24 Oct 2022 18:14:06 GMT
ETag: "e08984abadf1a2de72ea3bf4abc6b7b6"
x-amz-meta-s3cmd-attrs: uid:48/gname:apache/uname:apache/gid:48/mode:33188/mtime:1666635192/atime:1666635192/md5:e08984abadf1a2de72ea3bf4abc6b7b6/ctime:1666635192
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 153505

s3.amazonaws.com/cdn.gregorysgroves.com/images/promo_bestseller.jpg

52.217.95.192

200 OK

95 kB

URL HTTP/1.1
s3.amazonaws.com/cdn.gregorysgroves.com/images/promo_bestseller.jpg
IP
52.217.95.192:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 283x253, components 3\012- data
Size
95 kB (95222 bytes)
Hash
a5411835b3faf7f3d9ad1353033d0177
ae9e33d294b62ee23d2d75b4a163fa3eb73a3b96
a33967c92f069d52b72f2bd835cae19d478a051c3e2373d20663e234908e1370

HTTP Headers

GET /cdn.gregorysgroves.com/images/promo_bestseller.jpg HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: 3atY6OCNgNteSdRPqRGP3198xQqZWL9A0Ii/MNwtGJwTmfbbw/BaKSalXlW+WXG24s181Ev+Za4=
x-amz-request-id: 61S36YZ54PX7NXMT
Date: Mon, 07 Nov 2022 17:21:40 GMT
Last-Modified: Thu, 26 Aug 2021 18:56:18 GMT
ETag: "a5411835b3faf7f3d9ad1353033d0177"
x-amz-meta-s3cmd-attrs: uid:48/gname:apache/uname:apache/gid:48/mode:33188/mtime:1630004141/atime:1630004148/md5:a5411835b3faf7f3d9ad1353033d0177/ctime:1630004141
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 95222

secure.trust-provider.com/trustlogo/javascript/trustlogo.js

91.199.212.148

200 OK

14 kB

URL HTTP/2
secure.trust-provider.com/trustlogo/javascript/trustlogo.js
IP
91.199.212.148:0
ASN
#48447 Sectigo Limited

File type
HTML document text\012- exported SGML document, ASCII text, with very long lines (14088)
Size
14 kB (14089 bytes)
Hash
e46d5528af29f4224a927291166d2ddc
b8bb9695e47f7370db2dea4884e0efcbd86a4dca
1ba30b444f0489b7da1ca80092c7879835ba96404751aabbdb2647de4261fa05

HTTP Headers

GET /trustlogo/javascript/trustlogo.js HTTP/1.1
Host: secure.trust-provider.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 07 Nov 2022 17:21:40 GMT
content-type: application/javascript
content-length: 14089
last-modified: Fri, 04 Nov 2022 16:30:41 GMT
etag: "63653e31-3709"
accept-ranges: bytes
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

cdn.provesrc.com/provesrc.js

54.230.111.103

200 OK

55 kB

URL HTTP/2
cdn.provesrc.com/provesrc.js
IP
54.230.111.103:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text, with very long lines (62863), with no line terminators
Size
55 kB (55163 bytes)
Hash
e72cd5a56b06e9fe1fd9c809a4be9d7e
d4971e0763d6a32be78188dafe9f8c922e9c18c5
f7e07b09a28ef62b2b38fff6b888b545ca59b22be180e771230a3c408f34277f

HTTP Headers

GET /provesrc.js HTTP/1.1
Host: cdn.provesrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
content-length: 55163
last-modified: Mon, 31 Oct 2022 08:59:36 GMT
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
date: Mon, 07 Nov 2022 05:19:27 GMT
etag: "e72cd5a56b06e9fe1fd9c809a4be9d7e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: u9whDwfplSzylnO2d_BGoJosgse_kZiFg9DA7JRF7h_mIT-jRpARDA==
age: 43334
X-Firefox-Spdy: h2

s3.amazonaws.com/cdn.gregorysgroves.com/images/logo.png

52.217.95.192

200 OK

64 kB

URL HTTP/1.1
s3.amazonaws.com/cdn.gregorysgroves.com/images/logo.png
IP
52.217.95.192:0
ASN
#16509 AMAZON-02

File type
PNG image data, 268 x 161, 8-bit/color RGBA, non-interlaced\012- data
Size
64 kB (64252 bytes)
Hash
e23e3cf1c972c938260cc720e100c114
1079f7effd1c18d3dd8352411f1c56042b575043
ae512252e5699ee1bb41779012503bcb4384df4d8793a855e294f2e696c7095c

HTTP Headers

GET /cdn.gregorysgroves.com/images/logo.png HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: PaH+aHwgunofrJEDOaPp17FMvixp67Fs2lxvQ2adSW4B/Wl+ahkEoIeviX24XD2w5EERsveUMRA=
x-amz-request-id: H19YAV8ZAN6HTM59
Date: Mon, 07 Nov 2022 17:21:41 GMT
Last-Modified: Thu, 02 Oct 2014 04:04:05 GMT
ETag: "e23e3cf1c972c938260cc720e100c114"
x-amz-meta-s3cmd-attrs: uid:48/gname:apache/uname:apache/gid:48/mode:33261/mtime:1382406052/atime:1376590669/ctime:1389213070
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 64252

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
12a1f191d3251cadd0fce23ca14e1a5d
a95b5c8eafe5d0ae8d78c77d4965ba1c486ec864
95b318059b6735c7221e60eabe0489c228c705c47a5f6adc8f829ac0f3c5f77c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 07 Nov 2022 17:21:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.googleapis.com/css?family=Source+Sans+Pro:400,400italic,700

142.250.74.10

200 OK

1.2 kB

URL HTTP/2
fonts.googleapis.com/css?family=Source+Sans+Pro:400,400italic,700
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
1.2 kB (1174 bytes)
Hash
ab95e1c9069e9ed06adebf848d950637
faaa3a7d1e5680c87a35ab84f7663a3422471f66
342495cca366836dc8a12e03000ddc89cf95dd3c73f05bdc63bc4b23feeac06a

HTTP Headers

GET /css?family=Source+Sans+Pro:400,400italic,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 07 Nov 2022 17:21:39 GMT
date: Mon, 07 Nov 2022 17:21:39 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-59LV2RG

142.250.74.168

200 OK

42 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-59LV2RG
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (3722)
Size
42 kB (41987 bytes)
Hash
8be6de04227bff877f6dcf30592dddc6
73307f5e802aea1df5f1a2521ea1cb86ee7ef35c
97994313f51fc4a0855b2639cf8383b5a0bff15cd40be94c55f7e3b9629bd571

HTTP Headers

GET /gtm.js?id=GTM-59LV2RG HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 07 Nov 2022 17:21:40 GMT
expires: Mon, 07 Nov 2022 17:21:40 GMT
cache-control: private, max-age=900
last-modified: Mon, 07 Nov 2022 16:36:44 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41987
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
6dba1915540598e77ae8d73ce49c4b3b
f9c34b678d814548946cafea65b20ff352fb501b
89f7e3ac689535c3a373e1ff2f4125e7879782917687c26210a3eaf6c9a6e6a8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 07 Nov 2022 17:21:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
6dba1915540598e77ae8d73ce49c4b3b
f9c34b678d814548946cafea65b20ff352fb501b
89f7e3ac689535c3a373e1ff2f4125e7879782917687c26210a3eaf6c9a6e6a8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 07 Nov 2022 17:21:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2

216.58.207.195

200 OK

13 kB

URL HTTP/2
fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 13036, version 1.0\012- data
Size
13 kB (13036 bytes)
Hash
0ad032b3d07aaf33b160ac4799dda40f
06b931e0d0bf37f5037d9e66d6feedfddd21c0ba
c124c88ca4fcb4336e97617647ef0d32441329371120c8eabaea0fea226560b0

HTTP Headers

GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gregorysgroves.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13036
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 02 Nov 2022 19:26:57 GMT
expires: Thu, 02 Nov 2023 19:26:57 GMT
cache-control: public, max-age=31536000
age: 424483
last-modified: Wed, 27 Apr 2022 16:04:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/oswald/v49/TK3IWkUHHAIjg75cFRf3bXL8LICs13Fv40pKlN4NNSeSASwcEWlWHYg.woff2

216.58.207.195

200 OK

18 kB

URL HTTP/2
fonts.gstatic.com/s/oswald/v49/TK3IWkUHHAIjg75cFRf3bXL8LICs13Fv40pKlN4NNSeSASwcEWlWHYg.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 17928, version 1.0\012- data
Size
18 kB (17928 bytes)
Hash
53a8e5e9018403f5140370db8a0892a1
caab65fe5cb09359364cb5f83219a79b27fcbd67
24559cb630d9fc7ad4c9c2ceb19663a2dacdc44af12c572d7f08a28e1e74218a

HTTP Headers

GET /s/oswald/v49/TK3IWkUHHAIjg75cFRf3bXL8LICs13Fv40pKlN4NNSeSASwcEWlWHYg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gregorysgroves.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 31 Oct 2022 22:56:08 GMT
expires: Tue, 31 Oct 2023 22:56:08 GMT
cache-control: public, max-age=31536000
age: 584732
last-modified: Mon, 18 Jul 2022 19:23:35 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

stackpath.bootstrapcdn.com/bootstrap/3.4.1/fonts/glyphicons-halflings-regular.woff2

104.18.11.207

200 OK

18 kB

URL HTTP/2
stackpath.bootstrapcdn.com/bootstrap/3.4.1/fonts/glyphicons-halflings-regular.woff2
IP
104.18.11.207:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 18028, version 1.589\012- data
Size
18 kB (18028 bytes)
Hash
448c34a56d699c29117adc64c43affeb
ca35b697d99cae4d1b60f2d60fcd37771987eb07
fe185d11a49676890d47bb783312a0cda5a44c4039214094e7957b4c040ef11c

HTTP Headers

GET /bootstrap/3.4.1/fonts/glyphicons-halflings-regular.woff2 HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gregorysgroves.com
Connection: keep-alive
Referer: https://stackpath.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 07 Nov 2022 17:21:40 GMT
content-type: font/woff2
content-length: 18028
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "448c34a56d699c29117adc64c43affeb"
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 08/20/2022 02:32:06
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 454fd391770b9a148fe73fd64d4a0f1c
cdn-cache: HIT
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7667bf235d34b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

s3.amazonaws.com/cdn.gregorysgroves.com/images/background.png

52.217.95.192

200 OK

2.1 kB

URL HTTP/1.1
s3.amazonaws.com/cdn.gregorysgroves.com/images/background.png
IP
52.217.95.192:0
ASN
#16509 AMAZON-02

File type
PNG image data, 48 x 48, 8-bit/color RGB, non-interlaced\012- data
Size
2.1 kB (2074 bytes)
Hash
715b922a289c9896a8cfa5bd522856cf
9393e473c53e6690b6fd1df6494bf4e4fe7db8b5
95bc3011bbcc528032c9dda3830368d1837df8acdff33e82beefd3815d078ee1

HTTP Headers

GET /cdn.gregorysgroves.com/images/background.png HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: nvgS+1PhcFdcKuzYp0A1jpCXLyI27K9zOmxa9HEO9RvVTWXgmk+hOwxxBeVzghR5lXcmy8ixZ2I=
x-amz-request-id: H19GBSXVFDTJ589X
Date: Mon, 07 Nov 2022 17:21:41 GMT
Last-Modified: Thu, 02 Oct 2014 04:04:03 GMT
ETag: "715b922a289c9896a8cfa5bd522856cf"
x-amz-meta-s3cmd-attrs: uid:48/gname:apache/uname:apache/gid:48/mode:33261/mtime:1382406052/atime:1382406052/ctime:1389213070
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 2074

cdata.mpio.io/js/E3F7284BB2D012.js

54.230.111.6

200 OK

35 kB

URL HTTP/2
cdata.mpio.io/js/E3F7284BB2D012.js
IP
54.230.111.6:0
ASN
#16509 AMAZON-02

File type
data
Size
35 kB (35310 bytes)
Hash
a232212fac3df2bdadb376d69e0a865e
bcc8fd878a4709c80000fdae8991e97e5daab8cf
f2cd1055e43aaf6e861fe35d6fa91c6224f68ef846bbd4a89a5c500d47648d6c

HTTP Headers

GET /js/E3F7284BB2D012.js HTTP/1.1
Host: cdata.mpio.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/x-javascript
date: Mon, 07 Nov 2022 17:21:40 GMT
last-modified: Mon, 13 Jun 2022 20:46:04 GMT
etag: W/"f95fed7176bcf646b07ebdb6125ffed9"
cache-control: max-age=600,s-maxage=86400
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hbAxuudFKYLeXj5TS6Gmzcb_YBOehuCV46snIXDlvoSPKwA3oJUqvQ==
X-Firefox-Spdy: h2

fonts.gstatic.com/s/sourcesanspro/v21/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPZ7nsDI.woff2

216.58.207.195

200 OK

13 kB

URL HTTP/2
fonts.gstatic.com/s/sourcesanspro/v21/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPZ7nsDI.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 12580, version 1.0\012- data
Size
13 kB (12580 bytes)
Hash
eaf55d1d3b7c4a30203d2d5226c49b6d
11b63b740965603ef544f261ef036d24e6bb1fb5
e286a9ef7d2064a4cf7026449941a557c7123aa84ef2a17cf79a38820f5474bc

HTTP Headers

GET /s/sourcesanspro/v21/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPZ7nsDI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gregorysgroves.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 02 Nov 2022 19:28:19 GMT
expires: Thu, 02 Nov 2023 19:28:19 GMT
cache-control: public, max-age=31536000
age: 424401
last-modified: Wed, 27 Apr 2022 16:19:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
12a1f191d3251cadd0fce23ca14e1a5d
a95b5c8eafe5d0ae8d78c77d4965ba1c486ec864
95b318059b6735c7221e60eabe0489c228c705c47a5f6adc8f829ac0f3c5f77c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 07 Nov 2022 17:21:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gregorysgroves.com/images/header-bg.jpg

162.248.104.123

302 Found

252 B

URL HTTP/2
www.gregorysgroves.com/images/header-bg.jpg
IP
162.248.104.123:0
ASN
#53454 FULLDUPLEX-DEN

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
252 B (252 bytes)
Hash
017fa8a5d86c0fb6fed8d0472d1c6ab5
6c8e52ec433bf0d4add2cfc6ae7b0bfbc44b2712
88eab9e9e2f9c30408c9e6281ab2822b3e0947bb2be1a472d38e422ae1a95e16

HTTP Headers

GET /images/header-bg.jpg HTTP/1.1
Host: www.gregorysgroves.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/styles_sec.css?v=20190910
Cookie: CV3=5el74b7dchisbdglgasu19kbq7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 302 Found
date: Mon, 07 Nov 2022 17:21:40 GMT
server: Apache
location: https://s3.amazonaws.com/cdn.gregorysgroves.com/images/header-bg.jpg
cache-control: max-age=604800
expires: Mon, 14 Nov 2022 17:21:40 GMT
content-length: 252
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

s3.amazonaws.com/cdn.gregorysgroves.com/images/guarantee-bg.jpg

52.217.95.192

200 OK

13 kB

URL HTTP/1.1
s3.amazonaws.com/cdn.gregorysgroves.com/images/guarantee-bg.jpg
IP
52.217.95.192:0
ASN
#16509 AMAZON-02

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 219x162, components 3\012- data
Size
13 kB (12575 bytes)
Hash
09a3337460fb6ea9b5193ebf1a576612
3c7db7582d6930ca9061c531703dcf2720764df8
3e143ecac74060704d33c7e5d2aca0e80bd0653ebd805b10afc29de493344bb7

HTTP Headers

GET /cdn.gregorysgroves.com/images/guarantee-bg.jpg HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: 79AHIuzDrQ/NgilfaZVKIwv0G2C5rDaSWHyaUky7iycbqPfYBCGNS7tmksJzB0Op25S0u2V6rg8=
x-amz-request-id: H19SY23JBDKDEAJW
Date: Mon, 07 Nov 2022 17:21:41 GMT
Last-Modified: Tue, 10 Sep 2019 13:59:48 GMT
ETag: "09a3337460fb6ea9b5193ebf1a576612"
x-amz-meta-s3cmd-attrs: uid:48/gname:apache/uname:apache/gid:48/mode:33188/mtime:1568122517/atime:1568122585/md5:09a3337460fb6ea9b5193ebf1a576612/ctime:1568122549
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 12575

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
03fc468285706210a3ce339d5a223c61
fd32b7fa20b5c53cc2aebc09a3defe4c890f61be
9401d1803a9bac1dd2297405f8cf32dffdc375912ccc1c7bcf884f59a0ed64ab

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 07 Nov 2022 17:21:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gregorysgroves.com/images/promo-bg.jpg

162.248.104.123

302 Found

251 B

URL HTTP/2
www.gregorysgroves.com/images/promo-bg.jpg
IP
162.248.104.123:0
ASN
#53454 FULLDUPLEX-DEN

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
251 B (251 bytes)
Hash
9d476cce9d166dfab4d25969797b452e
0b38153ee2a6582d4c488611ddd59fe0715cd119
d68622eb6e048f4a76d064945341f358d0aea0d1006a69286869102138cfcc67

HTTP Headers

GET /images/promo-bg.jpg HTTP/1.1
Host: www.gregorysgroves.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/styles_sec.css?v=20190910
Cookie: CV3=5el74b7dchisbdglgasu19kbq7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 302 Found
date: Mon, 07 Nov 2022 17:21:40 GMT
server: Apache
location: https://s3.amazonaws.com/cdn.gregorysgroves.com/images/promo-bg.jpg
cache-control: max-age=604800
expires: Mon, 14 Nov 2022 17:21:40 GMT
content-length: 251
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

s3.amazonaws.com/cdn.gregorysgroves.com/images/header-bg.jpg

52.217.95.192

200 OK

26 kB

URL HTTP/1.1
s3.amazonaws.com/cdn.gregorysgroves.com/images/header-bg.jpg
IP
52.217.95.192:0
ASN
#16509 AMAZON-02

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1728x129, components 3\012- data
Size
26 kB (25537 bytes)
Hash
86eecd89f3ac4133d1014c27f1830575
207e73fa8dfb45d997d5da60f011a91ed48fd86a
d87618ac70988c36b167e4fbeec8e477d55648eb115adfb2fd79f033716d65c9

HTTP Headers

GET /cdn.gregorysgroves.com/images/header-bg.jpg HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gregorysgroves.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: XORBzkwsrSa9JYBgS0WHWqIa5XnxMKBB/maeUggv6fwkN62hhWUFLNCMrwyDUrwaXoEVwQ1GKWk=
x-amz-request-id: H19Y4PEHQHTV5G66
Date: Mon, 07 Nov 2022 17:21:41 GMT
Last-Modified: Thu, 02 Oct 2014 04:04:05 GMT
ETag: "86eecd89f3ac4133d1014c27f1830575"
x-amz-meta-s3cmd-attrs: uid:48/gname:apache/uname:apache/gid:48/mode:33261/mtime:1383053502/atime:1382406692/ctime:1389213070
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 25537

s3.amazonaws.com/cdn.gregorysgroves.com/images/promo-bg.jpg

52.217.95.192

200 OK

9.7 kB

URL HTTP/1.1
s3.amazonaws.com/cdn.gregorysgroves.com/images/promo-bg.jpg
IP
52.217.95.192:0
ASN
#16509 AMAZON-02

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 720x63, components 3\012- data
Size
9.7 kB (9704 bytes)
Hash
b2cc44d97e78757e5ec080d4d4b4a062
d395f86f11ed786b1a4708661b9234a5443f1388
3b5fba71d84c8abbb68a50b98f2c5c9b488840b5dc3d0bd7063a73ee33da9bbe

HTTP Headers

GET /cdn.gregorysgroves.com/images/promo-bg.jpg HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gregorysgroves.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: r2Vi4uNoTLBHuDbLaTAbngf0+SXGCMuV2tsHtK2K5kczXfTdoROrsGR4Eo+XJrr/wlsGcHQ4G94=
x-amz-request-id: H19XEX2SZE36XPT8
Date: Mon, 07 Nov 2022 17:21:41 GMT
Last-Modified: Thu, 02 Oct 2014 04:04:07 GMT
ETag: "b2cc44d97e78757e5ec080d4d4b4a062"
x-amz-meta-s3cmd-attrs: uid:48/gname:apache/uname:apache/gid:48/mode:33261/mtime:1382406052/atime:1382406052/ctime:1389213070
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 9704

s3.amazonaws.com/cdn.gregorysgroves.com/images/WelcomeBackGround.jpg

52.217.95.192

200 OK

536 kB

URL HTTP/1.1
s3.amazonaws.com/cdn.gregorysgroves.com/images/WelcomeBackGround.jpg
IP
52.217.95.192:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 896x650, components 3\012- data
Size
536 kB (536331 bytes)
Hash
4bc244ece5ed6fcdb2db2e81207dd393
9c3aad317082602c14593ceaa9f358c0b5412598
f5e35d9f631b7f3e6e7ead43ea83c472ee76e74718642de07d93d614e4f62e33

HTTP Headers

GET /cdn.gregorysgroves.com/images/WelcomeBackGround.jpg HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: W8myYudaiqbjTLtAzpTn4NewUiiC3CpXgYJZ6oRp7cXqz+KxS5weQDRXhT2NGrMrKKCia7NG54k=
x-amz-request-id: H19WHJEW0PMHYBQY
Date: Mon, 07 Nov 2022 17:21:41 GMT
Last-Modified: Tue, 10 Sep 2019 13:59:47 GMT
ETag: "4bc244ece5ed6fcdb2db2e81207dd393"
x-amz-meta-s3cmd-attrs: uid:48/gname:apache/uname:apache/gid:48/mode:33188/mtime:1568122524/atime:1568122585/md5:4bc244ece5ed6fcdb2db2e81207dd393/ctime:1568122549
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 536331

s3.amazonaws.com/cdn.gregorysgroves.com/images/basket-bgd.png

52.217.95.192

200 OK

777 kB

URL HTTP/1.1
s3.amazonaws.com/cdn.gregorysgroves.com/images/basket-bgd.png
IP
52.217.95.192:0
ASN
#16509 AMAZON-02

File type
PNG image data, 1606 x 473, 8-bit/color RGBA, non-interlaced\012- data
Size
777 kB (777219 bytes)
Hash
ac1d7826653a8a849c2e2957515ee916
24b9c896b81f83c78b378b1b2b91cecf59216abc
6af7d7f5ff3bd3e7134f1cc09f23b129432842eae51681bddf82702bcab30dec

HTTP Headers

GET /cdn.gregorysgroves.com/images/basket-bgd.png HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: bpbIsl7moKpG29PCzy2vjtazFGlHNhA3SHOD5Ibd0xK7i8v1VhkrWgSSSFHhenxokKlA9NrRKIE=
x-amz-request-id: H19KNEFV9BA209BJ
Date: Mon, 07 Nov 2022 17:21:41 GMT
Last-Modified: Tue, 10 Sep 2019 13:59:47 GMT
ETag: "ac1d7826653a8a849c2e2957515ee916"
x-amz-meta-s3cmd-attrs: uid:48/gname:apache/uname:apache/gid:48/mode:33261/mtime:1568122516/atime:1568122585/md5:ac1d7826653a8a849c2e2957515ee916/ctime:1568122549
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 777219

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Mon, 07 Nov 2022 16:41:09 GMT
expires: Mon, 07 Nov 2022 18:41:09 GMT
cache-control: public, max-age=7200
age: 2431
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
c6d6c54103958d5cb2f315ca1ce5de87
ec77a85040cede22bddb4274f06b889f110d6c9a
6313b11766367e7f964d7f523662eaf7248f10577ea3bf2f65db52e16d152417

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 07 Nov 2022 17:21:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

googleads.g.doubleclick.net/pagead/viewthroughconversion/1064488198/?random=1667841697815&cv=9&fst=1667841697815&num=1&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&data=ecomm_prodid%3D%3Becomm_pagetype%3DREPLACE_WITH_VALUE%3Becomm_totalvalue%3D&frm=0&url=https%3A%2F%2Fwww.gregorysgroves.com%2F&tiba=Florida%20Oranges%20%7C%20Fresh%20Fruit%20Delivery%20%7C%20Gregory%27s%20Groves&hn=www.googleadservices.com&rfmt=3&fmt=4

142.250.74.34

200 OK

1.0 kB

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/1064488198/?random=1667841697815&cv=9&fst=1667841697815&num=1&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&data=ecomm_prodid%3D%3Becomm_pagetype%3DREPLACE_WITH_VALUE%3Becomm_totalvalue%3D&frm=0&url=https%3A%2F%2Fwww.gregorysgroves.com%2F&tiba=Florida%20Oranges%20%7C%20Fresh%20Fruit%20Delivery%20%7C%20Gregory%27s%20Groves&hn=www.googleadservices.com&rfmt=3&fmt=4
IP
142.250.74.34:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2385), with no line terminators
Size
1.0 kB (1012 bytes)
Hash
5d0d9079841d3534bf36e8db340b697d
bcb417e952354fa0ced2ac4ec2575fc2950ac859
11a717c8425891b58606e0caecfbeb3f5fa42e30a818a5dfe351b94e5d7be7e3

HTTP Headers

GET /pagead/viewthroughconversion/1064488198/?random=1667841697815&cv=9&fst=1667841697815&num=1&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&data=ecomm_prodid%3D%3Becomm_pagetype%3DREPLACE_WITH_VALUE%3Becomm_totalvalue%3D&frm=0&url=https%3A%2F%2Fwww.gregorysgroves.com%2F&tiba=Florida%20Oranges%20%7C%20Fresh%20Fruit%20Delivery%20%7C%20Gregory%27s%20Groves&hn=www.googleadservices.com&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 07 Nov 2022 17:21:40 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1012
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 07-Nov-2022 17:36:40 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
c6d6c54103958d5cb2f315ca1ce5de87
ec77a85040cede22bddb4274f06b889f110d6c9a
6313b11766367e7f964d7f523662eaf7248f10577ea3bf2f65db52e16d152417

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 07 Nov 2022 17:21:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gregorysgroves.com/favicon.ico

162.248.104.123

302 Found

243 B

URL HTTP/2
www.gregorysgroves.com/favicon.ico
IP
162.248.104.123:0
ASN
#53454 FULLDUPLEX-DEN

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
243 B (243 bytes)
Hash
7006db25116918e42147ac3569f9b6f5
f53f2de5fa3213738e7c694a3fd4d402ff2f2d5b
bf67af06ef77d62ca14599fb5ee9dd8b08b07be27685445e062bff6921b5b04c

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.gregorysgroves.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Cookie: CV3=5el74b7dchisbdglgasu19kbq7; MGX_UC=JTdCJTIyTUdYX1AlMjIlM0ElN0IlMjJ2JTIyJTNBJTIyMWNlOWVkNjUtYWM3Yi00M2YzLTk2MDctM2ViZTZjNDdhNzcxJTIyJTJDJTIyZSUyMiUzQTE2NjgzNjcyOTgwMTUlN0QlMkMlMjJNR1hfUFglMjIlM0ElN0IlMjJ2JTIyJTNBJTIyZGI0Yzc1ZWItMmI5MS00Njk2LThmNDYtZGRlMDEzZmRlN2NlJTIyJTJDJTIycyUyMiUzQXRydWUlMkMlMjJlJTIyJTNBMTY2Nzg0MzQ5ODAxOCU3RCUyQyUyMk1HWF9DSUQlMjIlM0ElN0IlMjJ2JTIyJTNBJTIyNTYyOWMyNGUtZWNjZS00MjcxLThkMjgtNTViNzY0ZjE4NWFmJTIyJTJDJTIyZSUyMiUzQTE2NjgzNjcyOTgwMTglN0QlN0Q=; _gcl_au=1.1.1709135703.1667841698; _ga_4VC28E019X=GS1.1.1667841698.1.0.1667841698.0.0.0; _ga=GA1.1.689519948.1667841698
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 302 Found
date: Mon, 07 Nov 2022 17:21:40 GMT
server: Apache
location: https://s3.amazonaws.com/cdn.gregorysgroves.com/favicon.ico
cache-control: max-age=604800
expires: Mon, 14 Nov 2022 17:21:40 GMT
content-length: 243
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

e1.o.lencr.org/

23.36.77.32

200 OK

346 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
346 B (346 bytes)
Hash
d921d8997d4403b992c8bd3c83da3f6c
3d5852973c0164014cc7433c09c56479c768363c
1a71a1772a7dbdfa7e323682c1ec12cef580370bb87e7e0af70f178b519eb0c0

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "1A71A1772A7DBDFA7E323682C1EC12CEF580370BB87E7E0AF70F178B519EB0C0"
Last-Modified: Sat, 05 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2566
Expires: Mon, 07 Nov 2022 18:04:27 GMT
Date: Mon, 07 Nov 2022 17:21:41 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
bf55a5e3b388533c18f4eed310ed28b9
3d9564cad00a8349f63a5c72118b0776524d0eb7
97c32c42968f5f4acf571408533a411b992720182a1477dc95fd792eedbcc624

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 07 Nov 2022 17:21:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.googleapis.com/css?family=Oswald:400,300

142.250.74.10

200 OK

552 B

URL HTTP/2
fonts.googleapis.com/css?family=Oswald:400,300
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
552 B (552 bytes)
Hash
09cf8fb8ef092df8c509942d9492b251
e555f3e51164f8a2fa5e695a273bd11ee6550455
e4b2c36d57ac11276b984b14d25f37b8cafde280f6ee4e5c466db54311b82df6

HTTP Headers

GET /css?family=Oswald:400,300 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 07 Nov 2022 17:21:39 GMT
date: Mon, 07 Nov 2022 17:21:39 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/pagead/1p-user-list/1064488198/?random=1667841697815&cv=9&fst=1667840400000&num=1&guid=ON&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=ecomm_prodid%3D%3Becomm_pagetype%3DREPLACE_WITH_VALUE%3Becomm_totalvalue%3D&frm=0&url=https%3A%2F%2Fwww.gregorysgroves.com%2F&tiba=Florida%20Oranges%20%7C%20Fresh%20Fruit%20Delivery%20%7C%20Gregory%27s%20Groves&fmt=3&is_vtc=1&random=4197662180&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y

142.250.74.164

200 OK

42 B

URL HTTP/2
www.google.com/pagead/1p-user-list/1064488198/?random=1667841697815&cv=9&fst=1667840400000&num=1&guid=ON&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=ecomm_prodid%3D%3Becomm_pagetype%3DREPLACE_WITH_VALUE%3Becomm_totalvalue%3D&frm=0&url=https%3A%2F%2Fwww.gregorysgroves.com%2F&tiba=Florida%20Oranges%20%7C%20Fresh%20Fruit%20Delivery%20%7C%20Gregory%27s%20Groves&fmt=3&is_vtc=1&random=4197662180&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-user-list/1064488198/?random=1667841697815&cv=9&fst=1667840400000&num=1&guid=ON&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=ecomm_prodid%3D%3Becomm_pagetype%3DREPLACE_WITH_VALUE%3Becomm_totalvalue%3D&frm=0&url=https%3A%2F%2Fwww.gregorysgroves.com%2F&tiba=Florida%20Oranges%20%7C%20Fresh%20Fruit%20Delivery%20%7C%20Gregory%27s%20Groves&fmt=3&is_vtc=1&random=4197662180&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 07 Nov 2022 17:21:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

s3.amazonaws.com/cdn.gregorysgroves.com/favicon.ico

52.217.95.192

200 OK

1.2 kB

URL HTTP/1.1
s3.amazonaws.com/cdn.gregorysgroves.com/favicon.ico
IP
52.217.95.192:0
ASN
#16509 AMAZON-02

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
07acffba647000afddf833c0eb982527
7f5af7554cb4b9adb3c1497f74023bb1f06746c9
ab3b5edeb4baee749c1bb5dc5b5fdce60b7556fbb09f465f4f3f603e340f957a

HTTP Headers

GET /cdn.gregorysgroves.com/favicon.ico HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gregorysgroves.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: uVLEfDQxdSDr52sBRFc202MTK97kyDi3J5MUDqZjitHsfqTXnz3pFgf2ZKR4KEFBPlkWWXITxFg=
x-amz-request-id: CAEADETZTWEJSV59
Date: Mon, 07 Nov 2022 17:21:42 GMT
Last-Modified: Tue, 10 Sep 2019 14:00:02 GMT
ETag: "07acffba647000afddf833c0eb982527"
x-amz-meta-s3cmd-attrs: uid:48/gname:apache/uname:apache/gid:48/mode:33261/mtime:1568122516/atime:1568122586/md5:07acffba647000afddf833c0eb982527/ctime:1568122549
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Content-Type: image/x-ico
Server: AmazonS3
Content-Length: 1150

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
3849d297978f9334d294adc6e87ace82
6a45655d6b8da63381537bcf2ea8c2cf6ecc4dc0
2ebf3ed3cc8c16602d23c4058816cc0691bb3a950c067b18b774d8772a1c7c6b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 07 Nov 2022 17:21:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

use.fontawesome.com/releases/v5.6.3/css/all.css

172.64.133.15

200 OK

18 kB

URL HTTP/2
use.fontawesome.com/releases/v5.6.3/css/all.css
IP
172.64.133.15:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (53592), with no line terminators
Size
18 kB (17600 bytes)
Hash
379987fa99ea41fa0456ab38780f07db
9133ca93eca3a5627e70109cf943a405ca7dcd9e
33b151c10b4df07fb307c41c1177f06a8a10201eefa4dc8b08cd625f599e95f9

HTTP Headers

GET /releases/v5.6.3/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.gregorysgroves.com
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 07 Nov 2022 17:21:39 GMT
content-type: text/css
x-amz-id-2: 07VxL4zjmoIqFY+oHKOCrH4S8/XhoX8aDjpSsoo6VZ9txxipvsiw9AVvWb2hfwh0TMGqfKjCSTs=
x-amz-request-id: 61SDHJFZWTJDTKHY
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:44:33 GMT
etag: W/"dc93d584e41f8417f6b7163320d34329"
cache-control: max-age=31556926
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4k%2FXRpwo6zVJMqeIXAgaTxajViQWB6zJtgMiNsFpD30oPRF2pcJqAps8ztzi9vRvaq35hx0qQ7P90jOKYaymqoMb1b7VlU95sLjfPDfYequ7zJ5HBVUA2jzE059e0segVR1GDQnu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7667bf1d39d9ef4f-PDX
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

region1.google-analytics.com/g/collect?v=2&tid=G-4VC28E019X&gtm=2oeb20&_p=315223949&cid=689519948.1667841698&ul=en-us&sr=1280x1024&_s=1&sid=1667841698&sct=1&seg=0&dl=https%3A%2F%2Fwww.gregorysgroves.com%2F&dt=Florida%20Oranges%20%7C%20Fresh%20Fruit%20Delivery%20%7C%20Gregory%27s%20Groves&en=page_view&_fv=1&_nsi=1&_ss=1

216.239.32.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-4VC28E019X&gtm=2oeb20&_p=315223949&cid=689519948.1667841698&ul=en-us&sr=1280x1024&_s=1&sid=1667841698&sct=1&seg=0&dl=https%3A%2F%2Fwww.gregorysgroves.com%2F&dt=Florida%20Oranges%20%7C%20Fresh%20Fruit%20Delivery%20%7C%20Gregory%27s%20Groves&en=page_view&_fv=1&_nsi=1&_ss=1
IP
216.239.32.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-4VC28E019X&gtm=2oeb20&_p=315223949&cid=689519948.1667841698&ul=en-us&sr=1280x1024&_s=1&sid=1667841698&sct=1&seg=0&dl=https%3A%2F%2Fwww.gregorysgroves.com%2F&dt=Florida%20Oranges%20%7C%20Fresh%20Fruit%20Delivery%20%7C%20Gregory%27s%20Groves&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.gregorysgroves.com
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://www.gregorysgroves.com
date: Mon, 07 Nov 2022 17:21:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.securityreports.net/csp-reports

143.244.214.37

201 Created

4.9 kB

URL HTTP/1.1
www.securityreports.net/csp-reports
IP
143.244.214.37:0
ASN
#14061 DIGITALOCEAN-ASN

File type
JSON data\012- , ASCII text, with very long lines (4932), with no line terminators
Size
4.9 kB (4932 bytes)
Hash
0191ca0df2b192f8338acf1954357f25
e9812a1d8adae298a268eeccbda80975b0b8119a
9ea209aa10293c3e8c4b4ee9c5602e34b3b8e32863cbb25d8676a534ac3c4a15

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

POST /csp-reports HTTP/1.1
Host: www.securityreports.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 4765
Origin: https://www.gregorysgroves.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 201 Created
date: Mon, 07 Nov 2022 17:21:41 GMT
content-type: application/json
content-length: 4932

rdata.mpio.io/v1/C/RawData/F7284BB2D012?v=1ce9ed65-ac7b-43f3-9607-3ebe6c47a771&se=db4c75eb-2b91-4696-8f46-dde013fde7ce&d=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&callback=cb17329d1132935

52.23.145.57

200 OK

208 B

URL HTTP/1.1
rdata.mpio.io/v1/C/RawData/F7284BB2D012?v=1ce9ed65-ac7b-43f3-9607-3ebe6c47a771&se=db4c75eb-2b91-4696-8f46-dde013fde7ce&d=eyJ2IjoiMWNlOWVkNjUtYWM3Yi00M2YzLTk2MDctM2ViZTZjNDdhNzcxIiwibSI6IjY1ZDYzZmQ1LTExNjItNGFkZi04OTFmLWVjNjZlNGNhY2Y4NCIsImNzaSI6IiIsInNlIjoiZGI0Yzc1ZWItMmI5MS00Njk2LThmNDYtZGRlMDEzZmRlN2NlIiwibiI6MSwicCI6ImUyNzZkZWFiLWU1MWEtNDM3My1iNzA1LTg1N2M2YzlmZWYxOSIsInUiOiJodHRwczovL3d3dy5ncmVnb3J5c2dyb3Zlcy5jb20vIiwicG4iOiIvIiwiciI6IiIsInQiOiJGbG9yaWRhIE9yYW5nZXMgfCBGcmVzaCBGcnVpdCBEZWxpdmVyeSB8IEdyZWdvcnkncyBHcm92ZXMiLCJjIjoiaHR0cHM6Ly93d3cuZ3JlZ29yeXNncm92ZXMuY29tLyIsInByIjoiQjJEMDEyIiwicyI6MSwidnMiOjEsImwiOiJDYXRlZ29yeSIsInYwMSI6IjAiLCJ2MDIiOiJIb21lcGFnZSJ9&callback=cb17329d1132935
IP
52.23.145.57:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with no line terminators
Size
208 B (208 bytes)
Hash
db5352fa1f9eb45c0ef64e3f5502ad88
8fec4a433731d189f442c6ae867d0ceeb0b8f9f9
206ceb0f56a902a2491dede20a38f91a081e65da8d970f4a5bef827ae16a6022

HTTP Headers

GET /v1/C/RawData/F7284BB2D012?v=1ce9ed65-ac7b-43f3-9607-3ebe6c47a771&se=db4c75eb-2b91-4696-8f46-dde013fde7ce&d=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&callback=cb17329d1132935 HTTP/1.1
Host: rdata.mpio.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Mon, 07 Nov 2022 17:21:41 GMT
Server: Kestrel
Set-Cookie: MGX_U=65d63fd5-1162-4adf-891f-ec66e4cacf84; expires=Tue, 07 Nov 2023 17:21:41 GMT; domain=.mpio.io; path=/; secure; samesite=none
MGX_F7284BB2D012=1ce9ed65-ac7b-43f3-9607-3ebe6c47a771; expires=Tue, 07 Nov 2023 17:21:41 GMT; domain=.mpio.io; path=/; secure; samesite=none
MGX_PX_F7284BB2D012=db4c75eb-2b91-4696-8f46-dde013fde7ce; expires=Mon, 07 Nov 2022 17:51:41 GMT; domain=.mpio.io; path=/; secure; samesite=none
Content-Length: 208
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

727 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
727 B (727 bytes)
Hash
56020499d334bdfdf7a0d14dfe7ee5b0
928eda890fa8698e801f306aabc13a796a5be5f7
5b9d59783dacdf61e5ebfc0a53ac1740b5f770bb01871238ed50327a97d4c01a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2744
Cache-Control: max-age=136490
Content-Type: application/ocsp-response
Date: Mon, 07 Nov 2022 17:21:41 GMT
Etag: "6368a617-2d7"
Expires: Wed, 09 Nov 2022 07:16:31 GMT
Last-Modified: Mon, 07 Nov 2022 06:30:47 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 727

ocsp.digicert.com/

93.184.220.29

200 OK

727 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
727 B (727 bytes)
Hash
56020499d334bdfdf7a0d14dfe7ee5b0
928eda890fa8698e801f306aabc13a796a5be5f7
5b9d59783dacdf61e5ebfc0a53ac1740b5f770bb01871238ed50327a97d4c01a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2949
Cache-Control: max-age=136695
Content-Type: application/ocsp-response
Date: Mon, 07 Nov 2022 17:21:41 GMT
Etag: "6368a617-2d7"
Expires: Wed, 09 Nov 2022 07:19:56 GMT
Last-Modified: Mon, 07 Nov 2022 06:30:47 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 727

aa.agkn.com/adscores/g.jsonp?sid=9202274878&userid=B2D012-1CE9ED65-AC7B-43F3-9607-3EBE6C47A771

3.73.173.162

200 OK

82 B

URL HTTP/2
aa.agkn.com/adscores/g.jsonp?sid=9202274878&userid=B2D012-1CE9ED65-AC7B-43F3-9607-3EBE6C47A771
IP
3.73.173.162:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
82 B (82 bytes)
Hash
ae708136e46f5ab7a3be5d2a6ff558ac
cfddee7c8aaf2245d3a531efb187df16cf35c751
9e446e75dc20b6dc693b247aaf7704112e55ef434588368aa0761fc76b3a29a5

HTTP Headers

GET /adscores/g.jsonp?sid=9202274878&userid=B2D012-1CE9ED65-AC7B-43F3-9607-3EBE6C47A771 HTTP/1.1
Host: aa.agkn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 07 Nov 2022 17:21:41 GMT
content-type: application/json
content-length: 82
server: AAWebServer
p3p: policyref="https://www.agkn.com/p3p/p3p.xml",CP="NOI NID"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: accept, cache-control, origin, x-requested-with, x-file-name, content-type
set-cookie: ab=0001%3AW7uppEXqeZz%2BhBONYJvG52nJQsIuyi1u; Path=/; Domain=.agkn.com; Expires=Tue, 07-Nov-2023 17:21:41 GMT; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2

aa.agkn.com/adscores/g.pixel?sid=9202283468&_userID=B2D012-1CE9ED65-AC7B-43F3-9607-3EBE6C47A771&_takID=F7284BB2D012

3.73.173.162

302 Found

4.8 kB

URL HTTP/2
aa.agkn.com/adscores/g.pixel?sid=9202283468&_userID=B2D012-1CE9ED65-AC7B-43F3-9607-3EBE6C47A771&_takID=F7284BB2D012
IP
3.73.173.162:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (4803), with no line terminators
Size
4.8 kB (4803 bytes)
Hash
a22d990f331bf1fd0ce357aaa82ae966
39b8e88378b7174f830a842a49b6ce0df5156b1a
32114100f7a603845c9fa97274967f25b18f6c0a133151c26c94734d0a8b4393

HTTP Headers

GET /adscores/g.pixel?sid=9202283468&_userID=B2D012-1CE9ED65-AC7B-43F3-9607-3EBE6C47A771&_takID=F7284BB2D012 HTTP/1.1
Host: aa.agkn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Mon, 07 Nov 2022 17:21:41 GMT
location: https://api.dtstmio.com/v1/visitaction/nspx?segment=000&userID=B2D012-1CE9ED65-AC7B-43F3-9607-3EBE6C47A771&takID=F7284BB2D012&seg1=
server: AAWebServer
p3p: policyref="https://www.agkn.com/p3p/p3p.xml",CP="NOI NID"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: accept, cache-control, origin, x-requested-with, x-file-name, content-type
set-cookie: ab=0001%3AQsLbcfLOq3j%2BhBONYJvG5%2FJ3%2FcGNui4g; Path=/; Domain=.agkn.com; Expires=Tue, 07-Nov-2023 17:21:41 GMT; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2

rdata.mpio.io/v1/C/RawData/F7284BB2D012?v=1ce9ed65-ac7b-43f3-9607-3ebe6c47a771&se=db4c75eb-2b91-4696-8f46-dde013fde7ce&d=eyJ2IjoiMWNlOWVkNjUtYWM3Yi00M2YzLTk2MDctM2ViZTZjNDdhNzcxIiwibSI6Ijg2MDRmYTkyLTgwNDUtNDc4NC1hNjM3LWZjNjNlMGM3ZGVlOSIsImNzaSI6IiIsInNlIjoiZGI0Yzc1ZWItMmI5MS00Njk2LThmNDYtZGRlMDEzZmRlN2NlIiwicCI6ImUyNzZkZWFiLWU1MWEtNDM3My1iNzA1LTg1N2M2YzlmZWYxOSIsInUiOiJodHRwczovL3d3dy5ncmVnb3J5c2dyb3Zlcy5jb20vIiwicG4iOiIvIiwiciI6IiIsInQiOiJGbG9yaWRhIE9yYW5nZXMgfCBGcmVzaCBGcnVpdCBEZWxpdmVyeSB8IEdyZWdvcnkncyBHcm92ZXMiLCJjIjoiaHR0cHM6Ly93d3cuZ3JlZ29yeXNncm92ZXMuY29tLyIsInByIjoiQjJEMDEyIiwiZWlkIjoibnNfc2VnXzAwMCIsInMiOjIsInZzIjoxLCJsIjoiQWN0aW9uIiwidjAxIjoiRWlkIiwidjAyIjoibnNfc2VnXzAwMCJ9&callback=cbfb81006d831678

52.23.145.57

200 OK

209 B

URL HTTP/1.1
rdata.mpio.io/v1/C/RawData/F7284BB2D012?v=1ce9ed65-ac7b-43f3-9607-3ebe6c47a771&se=db4c75eb-2b91-4696-8f46-dde013fde7ce&d=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&callback=cbfb81006d831678
IP
52.23.145.57:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with no line terminators
Size
209 B (209 bytes)
Hash
a3d6c9e150a6bbb7a894cc2af380c104
f7a1943cd6ad252290ba65579166c0fd9abf6c63
916a54fec6306b8adc0bb767d5179b02639d566b8e262cdb6d0c7812ac81999b

HTTP Headers

GET /v1/C/RawData/F7284BB2D012?v=1ce9ed65-ac7b-43f3-9607-3ebe6c47a771&se=db4c75eb-2b91-4696-8f46-dde013fde7ce&d=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&callback=cbfb81006d831678 HTTP/1.1
Host: rdata.mpio.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Cookie: MGX_U=65d63fd5-1162-4adf-891f-ec66e4cacf84; MGX_F7284BB2D012=1ce9ed65-ac7b-43f3-9607-3ebe6c47a771; MGX_PX_F7284BB2D012=db4c75eb-2b91-4696-8f46-dde013fde7ce
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Mon, 07 Nov 2022 17:21:41 GMT
Server: Kestrel
Set-Cookie: MGX_U=65d63fd5-1162-4adf-891f-ec66e4cacf84; expires=Tue, 07 Nov 2023 17:21:41 GMT; domain=.mpio.io; path=/; secure; samesite=none
MGX_F7284BB2D012=1ce9ed65-ac7b-43f3-9607-3ebe6c47a771; expires=Tue, 07 Nov 2023 17:21:41 GMT; domain=.mpio.io; path=/; secure; samesite=none
MGX_PX_F7284BB2D012=db4c75eb-2b91-4696-8f46-dde013fde7ce; expires=Mon, 07 Nov 2022 17:51:41 GMT; domain=.mpio.io; path=/; secure; samesite=none
Content-Length: 209
Connection: keep-alive

rdata.mpio.io/v1/C/RawData/F7284BB2D012?v=1ce9ed65-ac7b-43f3-9607-3ebe6c47a771&se=db4c75eb-2b91-4696-8f46-dde013fde7ce&d=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%3D&callback=cbc80bcc25c4478

52.23.145.57

200 OK

208 B

URL HTTP/1.1
rdata.mpio.io/v1/C/RawData/F7284BB2D012?v=1ce9ed65-ac7b-43f3-9607-3ebe6c47a771&se=db4c75eb-2b91-4696-8f46-dde013fde7ce&d=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%3D&callback=cbc80bcc25c4478
IP
52.23.145.57:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with no line terminators
Size
208 B (208 bytes)
Hash
530853221cfb0b82a8659033fb705bf4
4108477035ca4400efa4580d74b498dcc1424c34
06fde19abbd62bb576274b3a357d1cb346f0a5912ab23415dd83666d11fbdef7

HTTP Headers

GET /v1/C/RawData/F7284BB2D012?v=1ce9ed65-ac7b-43f3-9607-3ebe6c47a771&se=db4c75eb-2b91-4696-8f46-dde013fde7ce&d=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%3D&callback=cbc80bcc25c4478 HTTP/1.1
Host: rdata.mpio.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Cookie: MGX_U=65d63fd5-1162-4adf-891f-ec66e4cacf84; MGX_F7284BB2D012=1ce9ed65-ac7b-43f3-9607-3ebe6c47a771; MGX_PX_F7284BB2D012=db4c75eb-2b91-4696-8f46-dde013fde7ce
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Mon, 07 Nov 2022 17:21:41 GMT
Server: Kestrel
Set-Cookie: MGX_U=65d63fd5-1162-4adf-891f-ec66e4cacf84; expires=Tue, 07 Nov 2023 17:21:41 GMT; domain=.mpio.io; path=/; secure; samesite=none
MGX_F7284BB2D012=1ce9ed65-ac7b-43f3-9607-3ebe6c47a771; expires=Tue, 07 Nov 2023 17:21:41 GMT; domain=.mpio.io; path=/; secure; samesite=none
MGX_PX_F7284BB2D012=db4c75eb-2b91-4696-8f46-dde013fde7ce; expires=Mon, 07 Nov 2022 17:51:41 GMT; domain=.mpio.io; path=/; secure; samesite=none
Content-Length: 208
Connection: keep-alive

ocsp.sca1b.amazontrust.com/

143.204.42.156

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.156:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
15a4f7954c497f0cbabeed333c30450f
ea399018b1617296f88cbc39e8a3cc3cc43bfff6
9909d4286b6332b8f8c6b264672bedbe81545017b350a750ce33a7872ba191f9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=110970
Date: Mon, 07 Nov 2022 17:21:42 GMT
Etag: "6368439c-1d7"
Expires: Wed, 09 Nov 2022 00:11:12 GMT
Last-Modified: Sun, 06 Nov 2022 23:30:36 GMT
Server: ECS (bsa/EB16)
X-Cache: Miss from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: DOcEWC0sHuHa9ypMgLpm6FDjy9o2cWeOj-JdgdcADzfbcHp5ieEnCA==
Age: 2436

i.liadm.com/s/63537?bidder_id=242861&bidder_uuid=B2D012-1CE9ED65-AC7B-43F3-9607-3EBE6C47A771

18.234.2.72

303 See Other

0 B

URL HTTP/1.1
i.liadm.com/s/63537?bidder_id=242861&bidder_uuid=B2D012-1CE9ED65-AC7B-43F3-9607-3EBE6C47A771
IP
18.234.2.72:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /s/63537?bidder_id=242861&bidder_uuid=B2D012-1CE9ED65-AC7B-43F3-9607-3EBE6C47A771 HTTP/1.1
Host: i.liadm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 303 See Other
Date: Mon, 07 Nov 2022 17:21:42 GMT
Content-Length: 0
Connection: keep-alive
Location: /s/63537?bidder_id=242861&bidder_uuid=B2D012-1CE9ED65-AC7B-43F3-9607-3EBE6C47A771&_li_chk=true&previous_uuid=672604f4942f4b03aa021cc398ba602c
Set-Cookie: lidid=672604f4-942f-4b03-aa02-1cc398ba602c; Max-Age=63072000; Expires=Wed, 06 Nov 2024 17:21:42 GMT; SameSite=None; Path=/; Domain=liadm.com; Secure
Request-Time: 0
Strict-Transport-Security: max-age=31536000; includeSubDomains

i.liadm.com/s/63537?bidder_id=242861&bidder_uuid=B2D012-1CE9ED65-AC7B-43F3-9607-3EBE6C47A771&_li_chk=true&previous_uuid=672604f4942f4b03aa021cc398ba602c

18.234.2.72

303 See Other

0 B

URL HTTP/1.1
i.liadm.com/s/63537?bidder_id=242861&bidder_uuid=B2D012-1CE9ED65-AC7B-43F3-9607-3EBE6C47A771&_li_chk=true&previous_uuid=672604f4942f4b03aa021cc398ba602c
IP
18.234.2.72:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /s/63537?bidder_id=242861&bidder_uuid=B2D012-1CE9ED65-AC7B-43F3-9607-3EBE6C47A771&_li_chk=true&previous_uuid=672604f4942f4b03aa021cc398ba602c HTTP/1.1
Host: i.liadm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gregorysgroves.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 303 See Other
Date: Mon, 07 Nov 2022 17:21:42 GMT
Content-Length: 0
Connection: keep-alive
Location: https://i6.liadm.com/s/63537?bidder_id=242861&bidder_uuid=B2D012-1CE9ED65-AC7B-43F3-9607-3EBE6C47A771
Set-Cookie: _li_ss=MgkI_____wcQ1RM; Max-Age=2592000; Expires=Wed, 07 Dec 2022 17:21:42 GMT; SameSite=None; Path=/s; Secure
lidid=a2b9032f-acd8-4d21-ae11-a5d26152488f; Max-Age=63072000; Expires=Wed, 06 Nov 2024 17:21:42 GMT; SameSite=None; Path=/; Domain=liadm.com; Secure
Request-Time: 0
Strict-Transport-Security: max-age=31536000; includeSubDomains

www.securityreports.net/csp-reports

143.244.214.37

201 Created

4.8 kB

URL HTTP/1.1
www.securityreports.net/csp-reports
IP
143.244.214.37:0
ASN
#14061 DIGITALOCEAN-ASN

File type
JSON data\012- , ASCII text, with very long lines (4775), with no line terminators
Size
4.8 kB (4775 bytes)
Hash
52ed78dbef48f2608158fc4227217280
d77a2487d3a617b4c25eddd6ed855295b28e7ef7
a8cde371ab1d2878073167050fbc802b0040a383d8d3b7165ba9069eef1e732e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

POST /csp-reports HTTP/1.1
Host: www.securityreports.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 4602
Origin: https://www.gregorysgroves.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 201 Created
date: Mon, 07 Nov 2022 17:21:42 GMT
content-type: application/json
content-length: 4775

fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2

216.58.207.195

200 OK

24 kB

URL HTTP/2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Size
24 kB (23580 bytes)
Hash
e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537

HTTP Headers

GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gregorysgroves.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 01 Nov 2022 17:10:21 GMT
expires: Wed, 01 Nov 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 519083
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2

216.58.207.195

200 OK

23 kB

URL HTTP/2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Size
23 kB (23040 bytes)
Hash
de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49

HTTP Headers

GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gregorysgroves.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 01 Nov 2022 17:10:21 GMT
expires: Wed, 01 Nov 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 519083
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

client-api.provesrc.com/notifications/get

52.7.113.11

200 OK

263 B

URL HTTP/2
client-api.provesrc.com/notifications/get
IP
52.7.113.11:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
263 B (263 bytes)
Hash
e409eed0427a55e1c704e985c90bf580
43b97653470fa1c03ecec92aaeb0d634bfbc3f55
2ae872179fca15d4edfc8187b08379d4b486b0da846eb93a74aab5c54dbc7dab

HTTP Headers

OPTIONS /notifications/get HTTP/1.1
Host: client-api.provesrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type,x-ps-first,x-ps-uid,x-ps-url,x-ps-version
Referer: https://www.gregorysgroves.com/
Origin: https://www.gregorysgroves.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 07 Nov 2022 17:21:41 GMT
access-control-allow-origin: https://www.gregorysgroves.com
access-control-max-age: 7200
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, HEAD, OPTIONS
access-control-expose-headers: x-ps-first
access-control-allow-headers: authorization,content-type,x-ps-first,x-ps-uid,x-ps-url,x-ps-version
x-request-id: 787e8a13-e328-430e-a1d9-a205988ce7b3
x-ps-host: ip-172-31-29-194
X-Firefox-Spdy: h2

client-api.provesrc.com/notifications/analytics

52.7.113.11

200 OK

24 B

URL HTTP/2
client-api.provesrc.com/notifications/analytics
IP
52.7.113.11:0
ASN
#14618 AMAZON-AES

File type
JSON data\012- , ASCII text, with no line terminators
Size
24 B (24 bytes)
Hash
369ac4bb2cd4c5d1520027721c78f4f5
c85a6a6150c998ce5ee1882134460180db97a2ff
8a36c989fe0efaa93eb0f4062fa976a326264fbc971214d8e5e8a08a92066a4a

HTTP Headers

OPTIONS /notifications/analytics HTTP/1.1
Host: client-api.provesrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type,x-ps-first,x-ps-uid,x-ps-url,x-ps-version
Referer: https://www.gregorysgroves.com/
Origin: https://www.gregorysgroves.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 07 Nov 2022 17:21:44 GMT
access-control-allow-origin: https://www.gregorysgroves.com
access-control-max-age: 7200
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, HEAD, OPTIONS
access-control-expose-headers: x-ps-first
access-control-allow-headers: authorization,content-type,x-ps-first,x-ps-uid,x-ps-url,x-ps-version
x-request-id: c9bf2a6e-562f-4100-ab0c-a1a1025705d7
x-ps-host: ip-172-31-33-180
X-Firefox-Spdy: h2

s3.amazonaws.com/cdn.gregorysgroves.com/images/uploads/130_44_thumb.jpg

52.217.95.192

200 OK

18 kB

URL HTTP/1.1
s3.amazonaws.com/cdn.gregorysgroves.com/images/uploads/130_44_thumb.jpg
IP
52.217.95.192:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS4 Macintosh, datetime=2013:07:23 13:45:47], baseline, precision 8, 230x230, components 3\012- data
Size
18 kB (18272 bytes)
Hash
24d99ec86c343ad4a263c2052f7e7f2a
5320db316a0756bb2420efd61ad39fa09414b85e
acb00a2b5cb01d341e2e9c43283ee8fab3d1ef0909273d40e0257eef9ac1faeb

HTTP Headers

GET /cdn.gregorysgroves.com/images/uploads/130_44_thumb.jpg HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gregorysgroves.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: a+S2ZJ0ADmw0x5kzA0X5Inw0Dw3AujAvi8E1dQfnaU8UWWXVPvAmxYsIpM1ZxhARRJP7HnH869Q=
x-amz-request-id: 11M4HVK23DD59XR9
Date: Mon, 07 Nov 2022 17:21:45 GMT
Last-Modified: Thu, 02 Oct 2014 04:04:10 GMT
ETag: "24d99ec86c343ad4a263c2052f7e7f2a"
x-amz-meta-s3cmd-attrs: uid:48/gname:apache/uname:apache/gid:48/mode:33261/mtime:1376363860/atime:1376590670/ctime:1389213070
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 18272

stackpath.bootstrapcdn.com/bootstrap/3.4.1/js/bootstrap.min.js

104.18.11.207

200 OK

0 B

URL HTTP/2
stackpath.bootstrapcdn.com/bootstrap/3.4.1/js/bootstrap.min.js
IP
104.18.11.207:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /bootstrap/3.4.1/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.gregorysgroves.com
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 07 Nov 2022 17:21:39 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"2f34b630ffe30ba2ff2b91e3f3c322a1"
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 08/20/2022 02:31:33
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 722
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 0e56b3a2053db118928fb8e7468fb37c
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7667bf1abf41b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

client-api.provesrc.com/notifications/get

52.7.113.11

200 OK

0 B

URL HTTP/2
client-api.provesrc.com/notifications/get
IP
52.7.113.11:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

POST /notifications/get HTTP/1.1
Host: client-api.provesrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gregorysgroves.com/
Content-Type: application/json
Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhY2NvdW50SWQiOiI1ZjZiYTNjMzUxY2MyOTRmNGQyODY4YTkiLCJpYXQiOjE2MDA4ODk3OTV9.QpNKdfES26p5C7HhYrDGyNCNPdGD4ncYj-IkO8LQeZs
x-ps-uid: 585301a5-7c50-416c-8102-b37e1c16366b
x-ps-url: aHR0cHM6Ly93d3cuZ3JlZ29yeXNncm92ZXMuY29tLw==
x-ps-version: 4.5.79
x-ps-first: psuid=596d6360-0d00-497c-8984-e80f1b62afea;ps5f6ba3c351cc294f4d2868a9=true|1666828800000
Origin: https://www.gregorysgroves.com
Content-Length: 68
Connection: keep-alive
Cookie: psuid=s%3A596d6360-0d00-497c-8984-e80f1b62afea.v3GhvtS9AGD%2BdDtXaicBq4Q5g7RwKujzxGYyS6GjA14; ps5f6ba3c351cc294f4d2868a9=true%7C1666828800000
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 07 Nov 2022 17:21:41 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://www.gregorysgroves.com
access-control-max-age: 7200
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, HEAD, OPTIONS
access-control-expose-headers: x-ps-first
x-request-id: 6962297d-18b2-413a-b909-bb21d33d4be0
x-ps-host: ip-172-31-29-194
etag: W/"288b-ClJFvAHOs7pUPKamJYpoIwqMpK4"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2

s3.amazonaws.com/cdn.gregorysgroves.com/images/promo_honeybell.jpg

52.217.95.192

200 OK

0 B

URL HTTP/1.1
s3.amazonaws.com/cdn.gregorysgroves.com/images/promo_honeybell.jpg
IP
52.217.95.192:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /cdn.gregorysgroves.com/images/promo_honeybell.jpg HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gregorysgroves.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: CaR/IWFwV5+mzEzofpUJjge/ee6/125TUPDVmB9vAltOyZ5bm6yjd3ORgVToq7G5nxhWffcIvWs=
x-amz-request-id: H19V6BCTS8VW83S5
Date: Mon, 07 Nov 2022 17:21:41 GMT
Last-Modified: Tue, 10 Sep 2019 13:59:52 GMT
ETag: "24beab531ddb6fb6aabb329f97f9e5f9"
x-amz-meta-s3cmd-attrs: uid:48/gname:apache/uname:apache/gid:48/mode:33188/mtime:1568122520/atime:1568122584/md5:24beab531ddb6fb6aabb329f97f9e5f9/ctime:1568122549
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 101640

client-api.provesrc.com/account/configuration?url=aHR0cHM6Ly93d3cuZ3JlZ29yeXNncm92ZXMuY29tLw==

52.7.113.11

200 OK

0 B

URL HTTP/2
client-api.provesrc.com/account/configuration?url=aHR0cHM6Ly93d3cuZ3JlZ29yeXNncm92ZXMuY29tLw==
IP
52.7.113.11:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

OPTIONS /account/configuration?url=aHR0cHM6Ly93d3cuZ3JlZ29yeXNncm92ZXMuY29tLw== HTTP/1.1
Host: client-api.provesrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization,content-type,x-ps-uid,x-ps-url,x-ps-version
Referer: https://www.gregorysgroves.com/
Origin: https://www.gregorysgroves.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 07 Nov 2022 17:21:40 GMT
access-control-allow-origin: https://www.gregorysgroves.com
access-control-max-age: 7200
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, HEAD, OPTIONS
access-control-expose-headers: x-ps-first
access-control-allow-headers: authorization,content-type,x-ps-uid,x-ps-url,x-ps-version
x-request-id: 31ea6eca-ac48-4140-8311-b21082c15109
x-ps-host: ip-172-31-29-194
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (51)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations