gramiety.com/
35.209.33.137301 Moved Permanently 229 B IP 35.209.33.137:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 646185410c3de402354b9e77e68f7439
0039ac0d4c66c0521c4ab9220446bf84a8c1abcc
f874dc10eea837fa9f6e69e089f560de69a6119c56aef333457f5521f68da71e
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 04 Dec 2022 13:04:13 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 229
Connection: keep-alive
Location: https://gramiety.com/
Host-Header: 6b7412fb82ca5edfd0917e3957f05d89
X-Proxy-Cache: MISS
X-Proxy-Cache-Info: 0301 NC:000000 UP:
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4117
Expires: Sun, 04 Dec 2022 14:12:50 GMT
Date: Sun, 04 Dec 2022 13:04:13 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fb2c0697c6d9a96a5411dd2952947458
79e57f831ec396bbdaa5bfe9472a05e6c9fb31f4
3fd7edcc349ab4402f62e54a142be6b4cecf0e7ee3f431d3168bdf0643ba4d92
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 727
Cache-Control: max-age=164351
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:04:13 GMT
Etag: "638c76f5-1d7"
Expires: Tue, 06 Dec 2022 10:43:24 GMT
Last-Modified: Sun, 04 Dec 2022 10:31:17 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 04 Dec 2022 12:18:24 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2749
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5125
Expires: Sun, 04 Dec 2022 14:29:38 GMT
Date: Sun, 04 Dec 2022 13:04:13 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: WReKDw8izEwN5iNpxvqBFlcuGI9DAU1JOXYXSdzljTkIremEaa5BxXQlE65KIvAhLbi05egcLe0=
x-amz-request-id: T2P9A88BKY7CVVT0
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 04 Dec 2022 12:47:33 GMT
age: 1000
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:13 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 04 Dec 2022 12:11:19 GMT
cache-control: public,max-age=3600
age: 3175
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 31b129c94a90b1e695b21395cb54e378
a3cae46b48d469cc61ab0581303bcd5f5b654db9
fac3f681be358a20f78958dff10c89b7a91365c5114c81246c1bc34c1362ba1e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 725
Cache-Control: max-age=159282
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:04:14 GMT
Etag: "638c632b-1d7"
Expires: Tue, 06 Dec 2022 09:18:56 GMT
Last-Modified: Sun, 04 Dec 2022 09:06:51 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.215.94.42101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.215.94.42:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 9WnS2jPO27rVuIq2PNRFYw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: nWMnYlCDMcftGhLF0B/m+3aHHBQ=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4679
Expires: Sun, 04 Dec 2022 14:22:14 GMT
Date: Sun, 04 Dec 2022 13:04:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4679
Expires: Sun, 04 Dec 2022 14:22:14 GMT
Date: Sun, 04 Dec 2022 13:04:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4679
Expires: Sun, 04 Dec 2022 14:22:14 GMT
Date: Sun, 04 Dec 2022 13:04:15 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 43309032a892c486f9985ef520df696e
36f4682ca6a33ff80ee02129c77e6f27e996ede0
24225ff504f30405d9ec3feb2555c738fcca0d6b265f285aa9c73a64c78a496e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5681
x-amzn-requestid: 8f0d66b8-d532-48d9-9a29-74540cd6ab3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cltXnEotIAMFqkA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc296-27349a376ff819ab63b04a81;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:41:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Uz-wJTZjej3sjP-O68BQ4hB_kkAecG0o7GkeZUan90ZgV87g0Cg_ZA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:52:38 GMT
age: 54697
etag: "36f4682ca6a33ff80ee02129c77e6f27e996ede0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash db1701b7b9d161a0c935bb6e10b17893
22a8c4bd58c729c1abcf794466e8f3231dfb034b
b495524a33e5b1d3ba34cfbe867ada0da956c061370b1fcde06b23a6194a9787
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8315
x-amzn-requestid: f1bcc33b-aad9-4d3b-b1f9-49282f2d4fb9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clsAMGVboAMFfxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc067-13472a097177d4751c8f7a8c;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6UQ_BhPmpVpe9w6gsExB-EpNq_syeCCK6fr4Y1FFK1jDJh_n1Sd0Eg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:52:47 GMT
age: 54688
etag: "22a8c4bd58c729c1abcf794466e8f3231dfb034b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3af2e495-85ff-410f-8418-e683c7f84bcd.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3af2e495-85ff-410f-8418-e683c7f84bcd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 027480c06cd67621f373c6765dafee4d
9f80bb7ca6f699d88eaec2248dec508c589fe994
f69a0d6bd6e79d8fa7f2f15df11237c0a8b04d45af3cd5870eeef86d18f553bf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3af2e495-85ff-410f-8418-e683c7f84bcd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7728
x-amzn-requestid: 9f37e7a6-1f00-4a81-9b14-962fd0b6cdf4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clsAMEJxoAMFchQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc067-4a4cce217327b44525ea1e98;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ztC4S0WeA3ft_9JafrL6fInXo4jwkb0cTWUx4Z8L2uz3EWQS-d6F5A==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 22:02:47 GMT
age: 54088
etag: "9f80bb7ca6f699d88eaec2248dec508c589fe994"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d571e0e-b14e-436b-8156-2e49aad75d4f.png
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d571e0e-b14e-436b-8156-2e49aad75d4f.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 14dcca2a9c4792d835ee709bcd947402
1d702df3a64258628f4124eafd580695f2d350af
da01dcd8fef7c50bdb6f7a8a6a4955694092f479df3dba72f7fa69d7280d07b2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d571e0e-b14e-436b-8156-2e49aad75d4f.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16143
x-amzn-requestid: dc86fad4-4e53-42c9-9b0a-5e4d2cfcd087
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdGyLGqmoAMFnaA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851a7-0ea324b31e8c6578098b8ab9;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:03 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kRs3oBWnSs5asyPdvz6kkooy7pqm2Yr8R_2x8EXCVn3dBz_aEJurRQ==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 07:26:41 GMT
age: 20254
etag: "1d702df3a64258628f4124eafd580695f2d350af"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c01fe1cccdb3b672bbade6d98217ffe9
a9a529dc9894827f6243a1bf57f81caa4fe88fc2
c43da6212c79a08e22e78e04e99e8f5422e64b4b0a87f30b7907f1b4bc675c71
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4666
x-amzn-requestid: 850d341f-5ccb-453c-8adf-a8194f8fbdad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clr_-GiboAMFwww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc066-766293f2526e637235067aca;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: z5uqgjB-Bsl0U55a8aFi37cpJ65Vnbjm6bJ2GnMpaO7RXsMZsOCbPQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:44:01 GMT
age: 55214
etag: "a9a529dc9894827f6243a1bf57f81caa4fe88fc2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19c9bb39-be15-49f9-aad9-2cc511601111.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19c9bb39-be15-49f9-aad9-2cc511601111.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a6e7b32ac999cf3c899a234c621fa91a
fc5d4f3163ebb9faf85968cbb1d194e8e68418be
f12db3aed126006fee00649aba0b3eaae900de200b85b9523866a90b5494f18e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19c9bb39-be15-49f9-aad9-2cc511601111.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8989
x-amzn-requestid: abce0b01-f70c-42ad-b242-5a24735fe4c2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cltl4Gk2oAMFSWQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc2f2-1cccffff5199dffe70264a95;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:43:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PFl7VUrzRkMFNnTiIw_cbGCyrEFn43eUSlZfT0nUhUmjjyXT7JfjMA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:50:01 GMT
age: 54854
etag: "fc5d4f3163ebb9faf85968cbb1d194e8e68418be"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
images.dmca.com/Badges/DMCABadgeHelper.min.js
151.139.128.10200 OK 395 B URL HTTP/2 images.dmca.com/Badges/DMCABadgeHelper.min.js
IP 151.139.128.10:0
Hash 365ad8f83802168e7326b29df6a22f4a
a096aa3c7e46525c7b7c54cb6b7987f01559b688
dafd787e6bf2c7ed10cb6c14f36ada4e5e9b7c15ffe7393cd6000acb946ebf13
GET /Badges/DMCABadgeHelper.min.js HTTP/1.1
Host: images.dmca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 13:04:17 GMT
content-encoding: gzip
content-length: 395
content-type: application/javascript
last-modified: Fri, 21 Jun 2019 20:14:34 GMT
accept-ranges: bytes
server: Microsoft-IIS/10.0
cache-control: public,max-age=31536000
etag: "26b181f16d28d51:0"
x-powered-by: ASP.NET
x-hw: 1670159057.cds016.sk1.hn,1670159057.cds225.sk1.c
link: <https://www.dmca.com/Badges/DMCABadgeHelper.min.js>; rel="canonical"
access-control-allow-origin: *
X-Firefox-Spdy: h2
images.dmca.com/Badges/dmca-badge-w100-5x1-11.png?ID=7136a344-26ca-48ec-8f6e-c4795aa3795d
151.139.128.10200 OK 2.4 kB URL HTTP/2 images.dmca.com/Badges/dmca-badge-w100-5x1-11.png?ID=7136a344-26ca-48ec-8f6e-c4795aa3795d
IP 151.139.128.10:0
File type PNG image data, 100 x 20, 8-bit/color RGBA, interlaced\012- data
Hash 521db716019fc733b48f77f9822b30ee
8f8e11a44c38076713fd1a0233ef7de9f68498ed
2292a183dd2a364653441cf13efd89138c43eab4dacbb35e9bc061b07c749be1
GET /Badges/dmca-badge-w100-5x1-11.png?ID=7136a344-26ca-48ec-8f6e-c4795aa3795d HTTP/1.1
Host: images.dmca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Dec 2022 13:04:17 GMT
content-length: 2390
content-type: image/png
last-modified: Mon, 25 Jul 2016 19:39:16 GMT
accept-ranges: bytes
server: Microsoft-IIS/10.0
cache-control: public,max-age=31536000
etag: "70d0a63aace6d11:0"
x-powered-by: ASP.NET
x-hw: 1670159057.cds016.sk1.hn,1670159057.cds223.sk1.c
link: <https://www.dmca.com/Badges/dmca-badge-w100-5x1-11.png>; rel="canonical"
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 3c4319f54a5675ee9acda96c58f97ac6
210ea86db1836d430b321d59b4bd1b016c914f22
cb20ad3ec895ed3a2ae9b1a90dda6b7cc174d8851f3a15ba054a435746cbdc65
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:04:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 3c4319f54a5675ee9acda96c58f97ac6
210ea86db1836d430b321d59b4bd1b016c914f22
cb20ad3ec895ed3a2ae9b1a90dda6b7cc174d8851f3a15ba054a435746cbdc65
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:04:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.trustindex.io/loader.js?ver=6.1.1
143.204.55.84200 OK 6.4 kB URL HTTP/2 cdn.trustindex.io/loader.js?ver=6.1.1
IP 143.204.55.84:0
File type ASCII text, with very long lines (904)
Hash de8c7ed866f13dfa569da192721345da
2dacf54c75926c1d0797023f54833fca3663e1e4
b2e6fd7781872406f8492009f410bdc093f282dc3abb0e796415c0d97c8b3b38
GET /loader.js?ver=6.1.1 HTTP/1.1
Host: cdn.trustindex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 6426
date: Sun, 04 Dec 2022 12:37:30 GMT
server: Apache/2.4.29 (Ubuntu)
last-modified: Fri, 02 Dec 2022 12:36:10 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy: origin
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
etag: "5afc-5eed795189e5b-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 95ZZXmZXOJwWT4hDbB1zB86WG8pZzajtXaO77x8i7LWKR1qwI58OWA==
age: 1607
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-102955589-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-102955589-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash d1b5b2338b74a1c3e3be53d6fb1b8ad8
ea6c979f8250d5e130a952acebe8e19be6134eb3
caae940a618fb8fd2802030273f7e4ac82979ed3e8d803cd749b0e667abb6b50
GET /gtag/js?id=UA-102955589-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 04 Dec 2022 13:04:17 GMT
expires: Sun, 04 Dec 2022 13:04:17 GMT
cache-control: private, max-age=900
last-modified: Sun, 04 Dec 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43635
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googleoptimize.com/optimize.js?id=GTM-WBZPSMM
142.250.74.78200 OK 44 kB URL HTTP/2 www.googleoptimize.com/optimize.js?id=GTM-WBZPSMM
IP 142.250.74.78:0
File type ASCII text, with very long lines (1921)
Hash 9a9c009309878616910be4b6b8d04791
c97739eff30fc7312185ddafc8c282d81caaf7bf
4af5e2ef86140a60b4ff4be7e1e251a02127b09547434f3209cb53719ef94820
GET /optimize.js?id=GTM-WBZPSMM HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 04 Dec 2022 13:04:17 GMT
expires: Sun, 04 Dec 2022 13:04:17 GMT
cache-control: private, max-age=900
last-modified: Sun, 04 Dec 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43885
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 77fea0857f9d26b588db0cd7549bb123
2327e9f1bf40d84ab8720b943597c6a3513b829f
4cceaae407b819999e0e190d946a6a67038b6588a226244c7a585423653af85d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=100259
Date: Sun, 04 Dec 2022 13:04:17 GMT
Etag: "638b7dfc-1d7"
Expires: Mon, 05 Dec 2022 16:55:16 GMT
Last-Modified: Sat, 03 Dec 2022 16:49:00 GMT
Server: ECS (dcb/7F5E)
X-Cache: Miss from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: FS0K9AyZJZgJg2vTUWeL0EIT8-9-Ii6qntlpaApX4AidmFV9DgAFpA==
Age: 376
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 122124f83967c12700f5a6f5546b0f1f
d7acd2db61ad811c388a44b7bd407fa5f4aea8ee
b6b9e0b6c241b4eeb5161b1c297dec2aa6188032017074ee7f8e5533fab87a4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:04:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 3c4319f54a5675ee9acda96c58f97ac6
210ea86db1836d430b321d59b4bd1b016c914f22
cb20ad3ec895ed3a2ae9b1a90dda6b7cc174d8851f3a15ba054a435746cbdc65
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:04:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 3c4319f54a5675ee9acda96c58f97ac6
210ea86db1836d430b321d59b4bd1b016c914f22
cb20ad3ec895ed3a2ae9b1a90dda6b7cc174d8851f3a15ba054a435746cbdc65
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:04:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sok.soapfighters.com/i/841776b08bdea89f83d027d25213ff96.js
34.251.101.162200 OK 30 kB URL HTTP/2 sok.soapfighters.com/i/841776b08bdea89f83d027d25213ff96.js
IP 34.251.101.162:0
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Hash 3cb1f84440fef333438fdeb970889900
963d54561d1f3a077f4de0ec50b4a6e6b5d4be80
68906f6d9fb65459699acad9bc9e34a47c3a55389cea7f87068e3578a24dfac5
GET /i/841776b08bdea89f83d027d25213ff96.js HTTP/1.1
Host: sok.soapfighters.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=43200
content-encoding: gzip
content-type: text/javascript; charset=utf-8
date: Sun, 04 Dec 2022 13:04:17 GMT
etag: "1438a-zlSiQ3cn6lpRaxmjS8qf0ABAEQ4"
expires: Mon, 05 Dec 2022 01:04:17 GMT
content-length: 30262
X-Firefox-Spdy: h2
sok.soapfighters.com/ct?id=36307&url=https%3A%2F%2Fgramiety.com%2F&sf=0&tpi=&ch=&uvid=&tsf=0&tsfmi=&tsfu=&cb=1670159055060&hl=1&op=0&ag=1317291471&rand=741785208011100221259980051229795191552226808185879010156256707111792888200&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=W1siZWYiLDc5NjldLFsiY2IiLCIwLDAsMCwwLDAsMCwwLDAsMCw2LDMsMCwwLDAsMCwwLDAsMCwwLDAsMSwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMSwwLDAsMCwwLDEsMCwwLDAsMSwwLDEsMCwwLDEsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCJdLFstMSwiTGludXggeDg2XzY0Il0sWy0yLCItIl0sWy0zLCJbXSJdLFstNCwiLSJdLFstNSwiLSJdLFstNiwiLSJdLFstNywiLSJdLFstOCwiLSJdLFstOSwiKyJdLFstMTAsIi0iXSxbLTExLCJ7XCJ0XCI6XCJcIixcIm1cIjpbXCJkZXNjcmlwdGlvblwiLFwib2c6dGl0bGVcIixcIm9nOmRlc2NyaXB0aW9uXCJdfSJdLFstMTIsIlwidW5zcGVjaWZpZWRcIiJdLFstMTMsIi0iXSxbLTE0LCItIl0sWy0xNSwiLSJdLFstMTYsIjAiXSxbLTE3LCIxNiJdLFstMTgsIlsxLDAsMCwwXSJdLFstMTksIlswLDAsMCwwLDAsMCwxLDI0LDI0LFwiLVwiLDEyODAsMTAwMiwxMjgwLDEwMjQsMTI4MCwxMDI0LDEyODAsOTM5LDAsMCwwLDAsXCItXCIsXCItXCJdIl0sWy0yMCwiLSJdLFstMjEsIi0iXSxbLTIyLCJbXCJuXCIsXCJuXCJdIl0sWy0yMywiKyJdLFstMjQsIltdIl0sWy0yNSwiLSJdLFstMjYsIi0iXSxbLTI3LCItIl0sWy0yOCwiZW4tVVMsZW4iXSxbLTI5LCItIl0sWy0zMCwiW1widlwiLDBdIl0sWy0zMSwiZmFsc2UiXSxbLTMyLCItIl0sWy0zMywiLSJdLFstMzQsIi0iXSxbLTM1LCJbMTY3MDE1OTA1NTA1NSwwXSJdLFstMzYsIltcIjUvNFwiLFwiNS80XCJdIl0sWy0zNywiLSJdLFstMzgsImwsLTEsLTEsMzMwLDAsMTIsMCwwLDM4NSwyOTAzLC0xLDAsLCw0MDYxLDQwNjEiXSxbLTM5LCJbXCIyMDEwMDEwMVwiLDAsXCJHZWNrb1wiLFwiTmV0c2NhcGVcIixcIk1vemlsbGFcIixcIjIwMTgxMDAxMDAwMDAwXCIsbnVsbCxmYWxzZSxudWxsLGZhbHNlLG51bGwsMF0iXSxbLTQwLCIzNyJdLFstNDEsIi0iXSxbLTQyLCIxNzcwMDUwMDgxIl0sWy00MywiMDAwMDAwMDEwMDAwMDAwMDAxMTExMDAxMDAiXSxbLTQ0LCIwLDUsMCw1Il0sWy00NSwiLSJdLFstNDYsIjAiXSxbLTQ3LCItIl0sWy00OCwiMCwwIl0sWy00OSwiLSJdLFstNTAsIi0iXSxbLTUxLCItIl0sWy01MiwiLSJdLFstNTMsIjAxMCJdLFstNTQsIntcImhcIjpbXCJfMVwiLFwiMzMwNDM2MTYzOVwiLFwiXzNcIixcIjMyOTk5MTM2OVwiXSxcImRcIjpbXSxcInNcIjoxfSJdLFsiZGRiIiwiMCwwLDAsMCwxLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMSwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwxLDIsMCwwLDAsMCwwLDEsMCwyLDAsMCwwLDAsMCwwLDAsMCwwLDAiXSxbImJuY2giLDI0XSxbImFibmNoIiwyNF1d&dep=0&pre=0&sdd=%7B%7D&cri=IVmyZb6nyH&pto=4066&ver=48&gac=-&mei=&ap=&duid=1.1670159055.WwJnC0gbZwWkWKMi&suid=1.1670159055.vGxDgwAycnsFV5UC&tuid=1.1670159055.9d2vXXw0YPpIo1VO&fbc=->m=-&it=16%2C3652%2C354&fbcl=-&gacl=-&gacsd=-&rtic=WfuUsxKU0bE8HC6c7TNU3oUZPGc%253DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%252FYd6ztP3a3aIzRiB%252Ff1Ok4N0%252Bt%252BQnqcKsBzhbbY1iYCDV%252Bp%252BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%253D&bgc=-&spa=1&urid=0
34.251.101.162200 OK 903 B URL HTTP/2 sok.soapfighters.com/ct?id=36307&url=https%3A%2F%2Fgramiety.com%2F&sf=0&tpi=&ch=&uvid=&tsf=0&tsfmi=&tsfu=&cb=1670159055060&hl=1&op=0&ag=1317291471&rand=741785208011100221259980051229795191552226808185879010156256707111792888200&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=W1siZWYiLDc5NjldLFsiY2IiLCIwLDAsMCwwLDAsMCwwLDAsMCw2LDMsMCwwLDAsMCwwLDAsMCwwLDAsMSwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMSwwLDAsMCwwLDEsMCwwLDAsMSwwLDEsMCwwLDEsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCJdLFstMSwiTGludXggeDg2XzY0Il0sWy0yLCItIl0sWy0zLCJbXSJdLFstNCwiLSJdLFstNSwiLSJdLFstNiwiLSJdLFstNywiLSJdLFstOCwiLSJdLFstOSwiKyJdLFstMTAsIi0iXSxbLTExLCJ7XCJ0XCI6XCJcIixcIm1cIjpbXCJkZXNjcmlwdGlvblwiLFwib2c6dGl0bGVcIixcIm9nOmRlc2NyaXB0aW9uXCJdfSJdLFstMTIsIlwidW5zcGVjaWZpZWRcIiJdLFstMTMsIi0iXSxbLTE0LCItIl0sWy0xNSwiLSJdLFstMTYsIjAiXSxbLTE3LCIxNiJdLFstMTgsIlsxLDAsMCwwXSJdLFstMTksIlswLDAsMCwwLDAsMCwxLDI0LDI0LFwiLVwiLDEyODAsMTAwMiwxMjgwLDEwMjQsMTI4MCwxMDI0LDEyODAsOTM5LDAsMCwwLDAsXCItXCIsXCItXCJdIl0sWy0yMCwiLSJdLFstMjEsIi0iXSxbLTIyLCJbXCJuXCIsXCJuXCJdIl0sWy0yMywiKyJdLFstMjQsIltdIl0sWy0yNSwiLSJdLFstMjYsIi0iXSxbLTI3LCItIl0sWy0yOCwiZW4tVVMsZW4iXSxbLTI5LCItIl0sWy0zMCwiW1widlwiLDBdIl0sWy0zMSwiZmFsc2UiXSxbLTMyLCItIl0sWy0zMywiLSJdLFstMzQsIi0iXSxbLTM1LCJbMTY3MDE1OTA1NTA1NSwwXSJdLFstMzYsIltcIjUvNFwiLFwiNS80XCJdIl0sWy0zNywiLSJdLFstMzgsImwsLTEsLTEsMzMwLDAsMTIsMCwwLDM4NSwyOTAzLC0xLDAsLCw0MDYxLDQwNjEiXSxbLTM5LCJbXCIyMDEwMDEwMVwiLDAsXCJHZWNrb1wiLFwiTmV0c2NhcGVcIixcIk1vemlsbGFcIixcIjIwMTgxMDAxMDAwMDAwXCIsbnVsbCxmYWxzZSxudWxsLGZhbHNlLG51bGwsMF0iXSxbLTQwLCIzNyJdLFstNDEsIi0iXSxbLTQyLCIxNzcwMDUwMDgxIl0sWy00MywiMDAwMDAwMDEwMDAwMDAwMDAxMTExMDAxMDAiXSxbLTQ0LCIwLDUsMCw1Il0sWy00NSwiLSJdLFstNDYsIjAiXSxbLTQ3LCItIl0sWy00OCwiMCwwIl0sWy00OSwiLSJdLFstNTAsIi0iXSxbLTUxLCItIl0sWy01MiwiLSJdLFstNTMsIjAxMCJdLFstNTQsIntcImhcIjpbXCJfMVwiLFwiMzMwNDM2MTYzOVwiLFwiXzNcIixcIjMyOTk5MTM2OVwiXSxcImRcIjpbXSxcInNcIjoxfSJdLFsiZGRiIiwiMCwwLDAsMCwxLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMSwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwwLDAsMCwxLDIsMCwwLDAsMCwwLDEsMCwyLDAsMCwwLDAsMCwwLDAsMCwwLDAiXSxbImJuY2giLDI0XSxbImFibmNoIiwyNF1d&dep=0&pre=0&sdd=%7B%7D&cri=IVmyZb6nyH&pto=4066&ver=48&gac=-&mei=&ap=&duid=1.1670159055.WwJnC0gbZwWkWKMi&suid=1.1670159055.vGxDgwAycnsFV5UC&tuid=1.1670159055.9d2vXXw0YPpIo1VO&fbc=->m=-&it=16%2C3652%2C354&fbcl=-&gacl=-&gacsd=-&rtic=WfuUsxKU0bE8HC6c7TNU3oUZPGc%253DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%252FYd6ztP3a3aIzRiB%252Ff1Ok4N0%252Bt%252BQnqcKsBzhbbY1iYCDV%252Bp%252BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%253D&bgc=-&spa=1&urid=0
IP 34.251.101.162:0
File type ASCII text, with very long lines (2489), with no line terminators
Hash ed2ef6809d95840f993ddc3cb324b5f3
5aa7e45aa67ce2f2f57d417875812fa56d03080a
e21d8e790d0bfdef2d12e8b218529cb928cd810d5b29d8114c6168a483163716
GET /ct?id=36307&url=https%3A%2F%2Fgramiety.com%2F&sf=0&tpi=&ch=&uvid=&tsf=0&tsfmi=&tsfu=&cb=1670159055060&hl=1&op=0&ag=1317291471&rand=741785208011100221259980051229795191552226808185879010156256707111792888200&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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&dep=0&pre=0&sdd=%7B%7D&cri=IVmyZb6nyH&pto=4066&ver=48&gac=-&mei=&ap=&duid=1.1670159055.WwJnC0gbZwWkWKMi&suid=1.1670159055.vGxDgwAycnsFV5UC&tuid=1.1670159055.9d2vXXw0YPpIo1VO&fbc=->m=-&it=16%2C3652%2C354&fbcl=-&gacl=-&gacsd=-&rtic=WfuUsxKU0bE8HC6c7TNU3oUZPGc%253DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%252FYd6ztP3a3aIzRiB%252Ff1Ok4N0%252Bt%252BQnqcKsBzhbbY1iYCDV%252Bp%252BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%253D&bgc=-&spa=1&urid=0 HTTP/1.1
Host: sok.soapfighters.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
content-type: text/javascript
date: Sun, 04 Dec 2022 13:04:17 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
set-cookie: cg_uuid=5fcb70bcc3080cf6c02e44a1822a3670; Max-Age=29030400; Path=/; Expires=Sun, 05 Nov 2023 13:04:17 GMT; HttpOnly; Secure; SameSite=None
content-length: 903
X-Firefox-Spdy: h2
sok.soapfighters.com/tracker/tc_imp.gif?e=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&cri=IVmyZb6nyH&ts=185&cb=1670159055246
34.251.101.162200 OK 43 B URL HTTP/2 sok.soapfighters.com/tracker/tc_imp.gif?e=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&cri=IVmyZb6nyH&ts=185&cb=1670159055246
IP 34.251.101.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /tracker/tc_imp.gif?e=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&cri=IVmyZb6nyH&ts=185&cb=1670159055246 HTTP/1.1
Host: sok.soapfighters.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: cg_uuid=5fcb70bcc3080cf6c02e44a1822a3670
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
date: Sun, 04 Dec 2022 13:04:17 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 43
X-Firefox-Spdy: h2
gramiety.com/wp-content/uploads/2018/06/6-1024x1024.jpg
35.209.33.137200 OK 109 kB URL HTTP/2 gramiety.com/wp-content/uploads/2018/06/6-1024x1024.jpg
IP 35.209.33.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2017 (Macintosh), datetime=2018:04:25 12:14:28], baseline, precision 8, 1024x1024, components 3\012- data
Size 109 kB (109246 bytes)
Hash d95b5decc5a34960428fd821e2bedca7
256d22d060205c9e9823b17e39cd43b07f8e4fbc
be4f2a2ff2b153cdedcb7e7836db7d91f895290b99dec2e05af3488f59d90f44
GET /wp-content/uploads/2018/06/6-1024x1024.jpg HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: image/jpeg
content-length: 109246
last-modified: Mon, 14 Jun 2021 20:10:26 GMT
etag: "60c7b7b2-1aabe"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
gramiety.com/wp-content/uploads/2018/06/7-1024x1024.jpg
35.209.33.137200 OK 106 kB URL HTTP/2 gramiety.com/wp-content/uploads/2018/06/7-1024x1024.jpg
IP 35.209.33.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2017 (Macintosh), datetime=2018:04:25 12:31:30], baseline, precision 8, 1024x1024, components 3\012- data
Size 106 kB (105817 bytes)
Hash 7266f365e324737d5bb8d47aa526fb1d
3a4fda32fa027f4957102f406fc7868375856cc4
6d3ae6b20924f1526ef325bdf60ad6772b3a89684602e2332a92da0593b4f67c
GET /wp-content/uploads/2018/06/7-1024x1024.jpg HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: image/jpeg
content-length: 105817
last-modified: Mon, 14 Jun 2021 20:10:25 GMT
etag: "60c7b7b1-19d59"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
gramiety.com/wp-content/uploads/2018/04/11-1024x1024.jpg
35.209.33.137200 OK 103 kB URL HTTP/2 gramiety.com/wp-content/uploads/2018/04/11-1024x1024.jpg
IP 35.209.33.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2017 (Macintosh), datetime=2018:04:25 13:12:47], baseline, precision 8, 1024x1024, components 3\012- data
Size 103 kB (102746 bytes)
Hash beb14720fdc042778022b847c71b15f2
69341003c7702be14d12fb9cc8dd83ecacd1804b
63131a43c11b78530fe3d4f9036835b8aef0daed47a29cef869a8530ed707857
GET /wp-content/uploads/2018/04/11-1024x1024.jpg HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: image/jpeg
content-length: 102746
last-modified: Mon, 14 Jun 2021 20:10:29 GMT
etag: "60c7b7b5-1915a"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
gramiety.com/wp-content/uploads/2018/04/10-1024x1024.jpg
35.209.33.137200 OK 102 kB URL HTTP/2 gramiety.com/wp-content/uploads/2018/04/10-1024x1024.jpg
IP 35.209.33.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2017 (Macintosh), datetime=2018:04:25 13:00:32], baseline, precision 8, 1024x1024, components 3\012- data
Size 102 kB (102134 bytes)
Hash ae8775de2c50d56b8512995229306d27
f283fae95c4229c4a059be35dabdb909f1a3fd51
f2fd1052c8229d28e9870aed8e1016ed7bd84cdfe39787e26d931e8ef03439ee
GET /wp-content/uploads/2018/04/10-1024x1024.jpg HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: image/jpeg
content-length: 102134
last-modified: Mon, 14 Jun 2021 20:10:30 GMT
etag: "60c7b7b6-18ef6"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
gramiety.com/wp-content/uploads/2018/04/9-1024x1024.jpg
35.209.33.137200 OK 108 kB URL HTTP/2 gramiety.com/wp-content/uploads/2018/04/9-1024x1024.jpg
IP 35.209.33.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2017 (Macintosh), datetime=2018:04:25 12:53:20], baseline, precision 8, 1024x1024, components 3\012- data
Size 108 kB (107529 bytes)
Hash 8ec71c0d99ea425e14af81bc0ecfc67f
e6ea29cd00e91a57c75044c9615fe31ba637aa62
cb80b822bfbe9964adc80e89447a2be9022efa9721036a3b591bae85f4ee7d34
GET /wp-content/uploads/2018/04/9-1024x1024.jpg HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: image/jpeg
content-length: 107529
last-modified: Mon, 14 Jun 2021 20:10:31 GMT
etag: "60c7b7b7-1a409"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
gramiety.com/wp-content/uploads/2018/06/5-1024x1024.jpg
35.209.33.137200 OK 124 kB URL HTTP/2 gramiety.com/wp-content/uploads/2018/06/5-1024x1024.jpg
IP 35.209.33.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2017 (Macintosh), datetime=2018:04:23 22:09:27], baseline, precision 8, 1024x1024, components 3\012- data
Size 124 kB (124473 bytes)
Hash 2d9bbe5f2c3f93c3820e96cfa4e917cc
a29df4434c92bd171d098b2b9d06b24406877449
ea5698ddb63fd6fb570c36680b53cf2b550813e673e5a19948f79d4929d5341e
GET /wp-content/uploads/2018/06/5-1024x1024.jpg HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: image/jpeg
content-length: 124473
last-modified: Mon, 14 Jun 2021 20:10:27 GMT
etag: "60c7b7b3-1e639"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
gramiety.com/wp-content/uploads/2018/04/8-1024x1024.jpg
35.209.33.137200 OK 121 kB URL HTTP/2 gramiety.com/wp-content/uploads/2018/04/8-1024x1024.jpg
IP 35.209.33.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2017 (Macintosh), datetime=2018:04:25 12:35:33], baseline, precision 8, 1024x1024, components 3\012- data
Size 121 kB (121430 bytes)
Hash 1572d9c11281d06ed64ff019e625285d
655a419f6043bbf3af3863dd4143c18162cbf3c3
0def48b2d0724e4afa017772e84f90ee5c7c74c58ed72104f899728def969853
GET /wp-content/uploads/2018/04/8-1024x1024.jpg HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: image/jpeg
content-length: 121430
last-modified: Mon, 14 Jun 2021 20:10:32 GMT
etag: "60c7b7b8-1da56"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
gramiety.com/wp-content/uploads/2018/04/7-1024x1024.jpg
35.209.33.137200 OK 106 kB URL HTTP/2 gramiety.com/wp-content/uploads/2018/04/7-1024x1024.jpg
IP 35.209.33.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2017 (Macintosh), datetime=2018:04:25 12:31:30], baseline, precision 8, 1024x1024, components 3\012- data
Size 106 kB (105817 bytes)
Hash 7266f365e324737d5bb8d47aa526fb1d
3a4fda32fa027f4957102f406fc7868375856cc4
6d3ae6b20924f1526ef325bdf60ad6772b3a89684602e2332a92da0593b4f67c
GET /wp-content/uploads/2018/04/7-1024x1024.jpg HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: image/jpeg
content-length: 105817
last-modified: Mon, 14 Jun 2021 20:10:33 GMT
etag: "60c7b7b9-19d59"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
gramiety.com/wp-content/uploads/2018/04/6-1024x1024.jpg
35.209.33.137200 OK 109 kB URL HTTP/2 gramiety.com/wp-content/uploads/2018/04/6-1024x1024.jpg
IP 35.209.33.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2017 (Macintosh), datetime=2018:04:25 12:14:28], baseline, precision 8, 1024x1024, components 3\012- data
Size 109 kB (109246 bytes)
Hash d95b5decc5a34960428fd821e2bedca7
256d22d060205c9e9823b17e39cd43b07f8e4fbc
be4f2a2ff2b153cdedcb7e7836db7d91f895290b99dec2e05af3488f59d90f44
GET /wp-content/uploads/2018/04/6-1024x1024.jpg HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: image/jpeg
content-length: 109246
last-modified: Mon, 14 Jun 2021 20:10:34 GMT
etag: "60c7b7ba-1aabe"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
gramiety.com/wp-content/uploads/2018/04/2-1024x1024.jpg
35.209.33.137200 OK 112 kB URL HTTP/2 gramiety.com/wp-content/uploads/2018/04/2-1024x1024.jpg
IP 35.209.33.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2017 (Macintosh), datetime=2018:04:23 22:04:02], baseline, precision 8, 1024x1024, components 3\012- data
Size 112 kB (111487 bytes)
Hash 1841de20a09dc9c06b37677000e36f6f
23ef28d1ddc1895af016a4245550639142c333a4
c8fbb77a0e85279cb2ca585e68aa0ce2a9ea263acf93096ecc225c2e9a7f85e9
GET /wp-content/uploads/2018/04/2-1024x1024.jpg HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: image/jpeg
content-length: 111487
last-modified: Mon, 14 Jun 2021 20:10:37 GMT
etag: "60c7b7bd-1b37f"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
gramiety.com/wp-content/uploads/2018/04/3-1024x1024.jpg
35.209.33.137200 OK 113 kB URL HTTP/2 gramiety.com/wp-content/uploads/2018/04/3-1024x1024.jpg
IP 35.209.33.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2017 (Macintosh), datetime=2018:04:23 22:06:23], baseline, precision 8, 1024x1024, components 3\012- data
Size 113 kB (113187 bytes)
Hash 2768b7bd754bd12b5bcdd65be54f7ae1
12931597a7edfde7280f986e129aa3d0cb226cf8
ec80c3a7e3ffb0fded1a94c914067c70823015053b0b5aa531ed2ee4efaf51a0
GET /wp-content/uploads/2018/04/3-1024x1024.jpg HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: image/jpeg
content-length: 113187
last-modified: Mon, 14 Jun 2021 20:10:36 GMT
etag: "60c7b7bc-1ba23"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
gramiety.com/wp-content/uploads/2018/04/5-1024x1024.jpg
35.209.33.137200 OK 124 kB URL HTTP/2 gramiety.com/wp-content/uploads/2018/04/5-1024x1024.jpg
IP 35.209.33.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2017 (Macintosh), datetime=2018:04:23 22:09:27], baseline, precision 8, 1024x1024, components 3\012- data
Size 124 kB (124473 bytes)
Hash 2d9bbe5f2c3f93c3820e96cfa4e917cc
a29df4434c92bd171d098b2b9d06b24406877449
ea5698ddb63fd6fb570c36680b53cf2b550813e673e5a19948f79d4929d5341e
GET /wp-content/uploads/2018/04/5-1024x1024.jpg HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: image/jpeg
content-length: 124473
last-modified: Mon, 14 Jun 2021 20:10:35 GMT
etag: "60c7b7bb-1e639"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
gramiety.com/wp-content/uploads/2018/06/11-1024x1024.jpg
35.209.33.137200 OK 103 kB URL HTTP/2 gramiety.com/wp-content/uploads/2018/06/11-1024x1024.jpg
IP 35.209.33.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2017 (Macintosh), datetime=2018:04:25 13:12:47], baseline, precision 8, 1024x1024, components 3\012- data
Size 103 kB (102746 bytes)
Hash beb14720fdc042778022b847c71b15f2
69341003c7702be14d12fb9cc8dd83ecacd1804b
63131a43c11b78530fe3d4f9036835b8aef0daed47a29cef869a8530ed707857
GET /wp-content/uploads/2018/06/11-1024x1024.jpg HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: image/jpeg
content-length: 102746
last-modified: Mon, 14 Jun 2021 20:10:21 GMT
etag: "60c7b7ad-1915a"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
gramiety.com/wp-content/uploads/2018/06/10-1024x1024.jpg
35.209.33.137200 OK 102 kB URL HTTP/2 gramiety.com/wp-content/uploads/2018/06/10-1024x1024.jpg
IP 35.209.33.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2017 (Macintosh), datetime=2018:04:25 13:00:32], baseline, precision 8, 1024x1024, components 3\012- data
Size 102 kB (102134 bytes)
Hash ae8775de2c50d56b8512995229306d27
f283fae95c4229c4a059be35dabdb909f1a3fd51
f2fd1052c8229d28e9870aed8e1016ed7bd84cdfe39787e26d931e8ef03439ee
GET /wp-content/uploads/2018/06/10-1024x1024.jpg HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: image/jpeg
content-length: 102134
last-modified: Mon, 14 Jun 2021 20:10:22 GMT
etag: "60c7b7ae-18ef6"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
gramiety.com/wp-content/uploads/2018/06/9-1024x1024.jpg
35.209.33.137200 OK 108 kB URL HTTP/2 gramiety.com/wp-content/uploads/2018/06/9-1024x1024.jpg
IP 35.209.33.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2017 (Macintosh), datetime=2018:04:25 12:53:20], baseline, precision 8, 1024x1024, components 3\012- data
Size 108 kB (107529 bytes)
Hash 8ec71c0d99ea425e14af81bc0ecfc67f
e6ea29cd00e91a57c75044c9615fe31ba637aa62
cb80b822bfbe9964adc80e89447a2be9022efa9721036a3b591bae85f4ee7d34
GET /wp-content/uploads/2018/06/9-1024x1024.jpg HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: image/jpeg
content-length: 107529
last-modified: Mon, 14 Jun 2021 20:10:23 GMT
etag: "60c7b7af-1a409"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
gramiety.com/wp-content/uploads/2018/06/8-1024x1024.jpg
35.209.33.137200 OK 121 kB URL HTTP/2 gramiety.com/wp-content/uploads/2018/06/8-1024x1024.jpg
IP 35.209.33.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2017 (Macintosh), datetime=2018:04:25 12:35:33], baseline, precision 8, 1024x1024, components 3\012- data
Size 121 kB (121430 bytes)
Hash 1572d9c11281d06ed64ff019e625285d
655a419f6043bbf3af3863dd4143c18162cbf3c3
0def48b2d0724e4afa017772e84f90ee5c7c74c58ed72104f899728def969853
GET /wp-content/uploads/2018/06/8-1024x1024.jpg HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: image/jpeg
content-length: 121430
last-modified: Mon, 14 Jun 2021 20:10:24 GMT
etag: "60c7b7b0-1da56"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
js.chargebee.com/v2/116-f1752dbf9270229199e3.js
143.204.55.121200 OK 95 kB URL HTTP/2 js.chargebee.com/v2/116-f1752dbf9270229199e3.js
IP 143.204.55.121:0
Hash 4332f4bb4b62fdfcd9fea8f57a71c1fa
b52eb2cabeb93cd53d1e13efc9b2318385f2687c
d9e56dd5633b5fd4ece85562a310d941577ba64e92dba1536b591055ee9ca845
GET /v2/116-f1752dbf9270229199e3.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Thu, 01 Dec 2022 09:41:55 GMT
x-amz-version-id: Ci.PfcZfs_h1YeBhEMfiyfLhEGP9u3io
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Sun, 04 Dec 2022 13:02:23 GMT
cache-control: max-age=300,public
etag: W/"820f4ea492dc5eed21b4d4fda2636bae"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: onYMkoDgrt5UFiSYQPZLVzudMM86ivHavufKbO8SaVYbnYbfLlDmXg==
age: 115
X-Firefox-Spdy: h2
gramiety.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.8.2
35.209.33.137200 OK 74 kB URL HTTP/2 gramiety.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.8.2
IP 35.209.33.137:0
File type ASCII text, with very long lines (21520)
Hash c407ff0fcdd93024716815ca77608366
0d85bae673ae1546b47bf23d21228a4165fc8d0c
d98a867ed68e38f04f1cb691ff61cef752fa3875102c5385d93e00dfcb8ee26b
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.8.2 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: application/javascript
last-modified: Tue, 22 Nov 2022 03:59:43 GMT
vary: Accept-Encoding
etag: W/"637c492f-543b"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:04:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gramiety.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
35.209.33.137200 OK 2.8 kB URL HTTP/2 gramiety.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 35.209.33.137:0
File type ASCII text, with very long lines (6475), with no line terminators
Hash 7e45ac5eecf4678836dfac2f08e05293
328d47253d651ccbee1be12051ce9a7d61f8b3b5
5f32ea1ba5be4dfc762fe77a018633fcf621304435ad8987a9657b725bc6fe52
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: application/javascript
last-modified: Fri, 30 Sep 2022 11:21:12 GMT
vary: Accept-Encoding
etag: W/"6336d128-194b"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/vegas/vegas.min.js?ver=2.4.0
35.209.33.137200 OK 3.4 kB URL HTTP/2 gramiety.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/vegas/vegas.min.js?ver=2.4.0
IP 35.209.33.137:0
File type ASCII text, with very long lines (9875)
Hash 8257eb20960efc414daf6fb10ee39213
98a5abe38621046d0ea437adb0f34600ffe1545c
a33465884d6254b2c79fdadce1eac36b669144942a10bab4845ca02053f98ecb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/vegas/vegas.min.js?ver=2.4.0 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: application/javascript
last-modified: Thu, 22 Sep 2022 11:05:00 GMT
vary: Accept-Encoding
etag: W/"632c415c-26ba"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.8.2
35.209.33.137200 OK 2.7 kB URL HTTP/2 gramiety.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.8.2
IP 35.209.33.137:0
File type ASCII text, with very long lines (5191)
Hash 8a7056d793315c38decfffaf260fff7a
d054eb61c390ebaab4fdc832a55ff414876863fe
f193d173ee5e66bb4d35b778c1ff3556b150f127ce72fddebfb94f42b96f788b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.8.2 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: application/javascript
last-modified: Tue, 22 Nov 2022 03:59:43 GMT
vary: Accept-Encoding
etag: W/"637c492f-1472"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-content/plugins/th-widget-pack/header-footer/assets/css/header-footer-elementor.css?ver=2.1.14
35.209.33.137200 OK 827 B URL HTTP/2 gramiety.com/wp-content/plugins/th-widget-pack/header-footer/assets/css/header-footer-elementor.css?ver=2.1.14
IP 35.209.33.137:0
Hash 49a8737c6e8f69ae7b230befdfd5d775
e58a9d701b7b2de4b1365204b68a2906ff816125
f7a537ccb751a7e0fca58c63e074832cc6047b5e7562ae4d9f15bde9ebd920fe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/th-widget-pack/header-footer/assets/css/header-footer-elementor.css?ver=2.1.14 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: text/css
last-modified: Fri, 22 Apr 2022 23:07:18 GMT
vary: Accept-Encoding
etag: W/"62633526-4c6"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gramiety.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:34:15 GMT
expires: Thu, 30 Nov 2023 19:34:15 GMT
cache-control: public, max-age=31536000
age: 322203
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
gramiety.com/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css
35.209.33.137200 OK 19 kB URL HTTP/2 gramiety.com/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css
IP 35.209.33.137:0
File type Unicode text, UTF-8 text, with very long lines (29459)
Hash 8c298968d5a78e5b5888e115878b06e1
01dc7785cc295c28388e476db76750c6ba312049
f96e00e668f01d5f921ec46b4f2e07157f5859dee945250d3589329f3b1b6400
GET /wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: text/css
last-modified: Tue, 22 Nov 2022 03:59:43 GMT
vary: Accept-Encoding
etag: W/"637c492f-733f"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-content/uploads/2021/11/PHONE-Graphics-A.png
35.209.33.137200 OK 751 kB URL HTTP/2 gramiety.com/wp-content/uploads/2021/11/PHONE-Graphics-A.png
IP 35.209.33.137:0
File type PNG image data, 1080 x 1080, 8-bit/color RGBA, non-interlaced\012- data
Size 751 kB (750894 bytes)
Hash 58157db9e2d28d54712bafb36880419f
37ac1609002167ca925aa5620bf666e4e3a4d2fe
9aa544f0d7f24d3cd5b68cc0beb3bb1a8d2e30a8cafcab8abd673ca11f25436a
GET /wp-content/uploads/2021/11/PHONE-Graphics-A.png HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/wp-content/uploads/elementor/css/post-2714.css?ver=1664536242
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D; _cq_duid=1.1670159055.WwJnC0gbZwWkWKMi; _cq_suid=1.1670159055.vGxDgwAycnsFV5UC; _fw_crm_v=5a2221b8-bcc9-49b6-d11c-070ad57ff362; first_session=%7B%22visits%22%3A1%2C%22start%22%3A1670159055491%2C%22last_visit%22%3A1670159055491%2C%22url%22%3A%22https%3A%2F%2Fgramiety.com%2F%22%2C%22path%22%3A%22%2F%22%2C%22referrer%22%3A%22%22%2C%22referrer_info%22%3A%7B%22host%22%3A%22%22%2C%22path%22%3A%22%22%2C%22protocol%22%3A%22about%3A%22%2C%22port%22%3A80%2C%22search%22%3A%22%22%2C%22query%22%3A%7B%7D%7D%2C%22search%22%3A%7B%22engine%22%3Anull%2C%22query%22%3Anull%7D%2C%22version%22%3A0.4%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: image/png
content-length: 750894
last-modified: Fri, 12 Nov 2021 23:56:44 GMT
etag: "618eff3c-b752e"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
gramiety.com/wp-content/plugins/th-widget-pack/css/global.css?ver=1650668839
35.209.33.137200 OK 16 kB URL HTTP/2 gramiety.com/wp-content/plugins/th-widget-pack/css/global.css?ver=1650668839
IP 35.209.33.137:0
File type ASCII text, with very long lines (1621)
Hash 5fde6200f45cec4d70585054a4cc765b
bd4384467114e2591376cb8c2402f32c36886107
10a92ea1db5ec13b127fe5ad79c9ff1eed730e6d8ca8332df6c1bbd2ae9b4587
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/th-widget-pack/css/global.css?ver=1650668839 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: text/css
last-modified: Fri, 22 Apr 2022 23:07:19 GMT
vary: Accept-Encoding
etag: W/"62633527-656"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1
35.209.33.137200 OK 28 kB URL HTTP/2 gramiety.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1
IP 35.209.33.137:0
File type ASCII text, with very long lines (40474)
Hash 1a87a3eae5d820bc4184937bcec34b27
0b1ea33eea04e30c48f2efaab0e092f1d0032dd2
79fd9d166bb82f6c4262b9fd6e17f2c5b3a7e89dddbc336a0990771db06d4190
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 23:14:42 GMT
vary: Accept-Encoding
etag: W/"63717a62-9e41"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-content/uploads/2021/08/unnamed-3.jpg
35.209.33.137200 OK 25 kB URL HTTP/2 gramiety.com/wp-content/uploads/2021/08/unnamed-3.jpg
IP 35.209.33.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 512x342, components 3\012- data
Hash f23d8e105441e4d30f15b898a47c1a60
c3855016ca09f1c95bf4615be70dc9ddfe3d0c83
5364a69d790ada4f702452e4d06d0a8eeb8ded927a4411833a6c3314c46054f4
GET /wp-content/uploads/2021/08/unnamed-3.jpg HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/wp-content/uploads/elementor/css/post-2714.css?ver=1664536242
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D; _cq_duid=1.1670159055.WwJnC0gbZwWkWKMi; _cq_suid=1.1670159055.vGxDgwAycnsFV5UC; _fw_crm_v=5a2221b8-bcc9-49b6-d11c-070ad57ff362; first_session=%7B%22visits%22%3A1%2C%22start%22%3A1670159055491%2C%22last_visit%22%3A1670159055491%2C%22url%22%3A%22https%3A%2F%2Fgramiety.com%2F%22%2C%22path%22%3A%22%2F%22%2C%22referrer%22%3A%22%22%2C%22referrer_info%22%3A%7B%22host%22%3A%22%22%2C%22path%22%3A%22%22%2C%22protocol%22%3A%22about%3A%22%2C%22port%22%3A80%2C%22search%22%3A%22%22%2C%22query%22%3A%7B%7D%7D%2C%22search%22%3A%7B%22engine%22%3Anull%2C%22query%22%3Anull%7D%2C%22version%22%3A0.4%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:18 GMT
content-type: image/jpeg
content-length: 25005
last-modified: Thu, 19 Aug 2021 18:52:14 GMT
etag: "611ea85e-61ad"
expires: Mon, 04 Dec 2023 13:04:18 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
gramiety.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.8.2
35.209.33.137200 OK 21 kB URL HTTP/2 gramiety.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.8.2
IP 35.209.33.137:0
File type ASCII text, with very long lines (24753)
Hash d5845b952564d4afff2fe1a50f0be078
513ec9e0bfb60cc81c3a4bafdd0ee79b7b81e43c
bba8c69865c2ab583a4b33c45a3eb2fbad2dc86e3b4f57e001b140c10dc425fe
GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.8.2 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: application/javascript
last-modified: Tue, 22 Nov 2022 03:59:43 GMT
vary: Accept-Encoding
etag: W/"637c492f-60dc"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.8.2
35.209.33.137200 OK 36 kB URL HTTP/2 gramiety.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.8.2
IP 35.209.33.137:0
File type ASCII text, with very long lines (3720)
Hash 464f0a932acb8b00c62e9713d2530da7
ad249e66b76b8bc9d18080a623572deba173e8d5
eaab708bc5a07ae09d244ec1b55755b9318f114313e635109b2e8a9dbf81aebd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.8.2 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: application/javascript
last-modified: Tue, 22 Nov 2022 03:59:43 GMT
vary: Accept-Encoding
etag: W/"637c492f-e89"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51S7ACc6CsQ.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51S7ACc6CsQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 17336, version 1.0\012- data
Hash eec8dbfc49267c4d33cf31b49661bf37
0f49d4563cf9e22e3af6907d0785b9a6facadbf0
661d4b208656c006e7aab58acf7784857963123675de2302279fbe6c05313547
GET /s/roboto/v30/KFOjCnqEu92Fr1Mu51S7ACc6CsQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gramiety.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17336
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:53:29 GMT
expires: Thu, 30 Nov 2023 19:53:29 GMT
cache-control: public, max-age=31536000
age: 321049
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
gramiety.com/wp-content/fonts/lato/S6uyw4BMUTPHjx4wWCWtFCc.woff
35.209.33.137200 OK 17 kB URL HTTP/2 gramiety.com/wp-content/fonts/lato/S6uyw4BMUTPHjx4wWCWtFCc.woff
IP 35.209.33.137:0
File type Web Open Font Format, TrueType, length 17448, version 1.1\012- data
Hash 9c39d31ff5dedb4c6f87dec79e6706d2
ced0e8877b5abfa0b82ee96a1b85c96af0095f28
fe81ff1d1f54d169840e0b9d0341af70c599f21d475be78320bb1f415555a00b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/fonts/lato/S6uyw4BMUTPHjx4wWCWtFCc.woff HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D; _cq_duid=1.1670159055.WwJnC0gbZwWkWKMi; _cq_suid=1.1670159055.vGxDgwAycnsFV5UC; _fw_crm_v=5a2221b8-bcc9-49b6-d11c-070ad57ff362; first_session=%7B%22visits%22%3A1%2C%22start%22%3A1670159055491%2C%22last_visit%22%3A1670159055491%2C%22url%22%3A%22https%3A%2F%2Fgramiety.com%2F%22%2C%22path%22%3A%22%2F%22%2C%22referrer%22%3A%22%22%2C%22referrer_info%22%3A%7B%22host%22%3A%22%22%2C%22path%22%3A%22%22%2C%22protocol%22%3A%22about%3A%22%2C%22port%22%3A80%2C%22search%22%3A%22%22%2C%22query%22%3A%7B%7D%7D%2C%22search%22%3A%7B%22engine%22%3Anull%2C%22query%22%3Anull%7D%2C%22version%22%3A0.4%7D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:18 GMT
content-type: font/woff
content-length: 17448
last-modified: Fri, 29 Apr 2022 06:37:08 GMT
etag: "626b8794-4428"
expires: Mon, 04 Dec 2023 13:04:18 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
gramiety.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/css/eae.min.css?ver=1.11.16
35.209.33.137200 OK 28 kB URL HTTP/2 gramiety.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/css/eae.min.css?ver=1.11.16
IP 35.209.33.137:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash bf66e361216d7f34c42e8b4a39199ea2
5d40c7f1afed69c13bfb35ba381c1592e16e26e3
23b331d843b1fef2bdc9a5e1248c5ca0be82d19e979991afbae7a5c6e13e6f1b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/addon-elements-for-elementor-page-builder/assets/css/eae.min.css?ver=1.11.16 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: text/css
last-modified: Thu, 22 Sep 2022 11:05:00 GMT
vary: Accept-Encoding
etag: W/"632c415c-1cf68"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
www.clickcease.com/monitor/stat.js
54.230.111.77200 OK 72 kB URL HTTP/2 www.clickcease.com/monitor/stat.js
IP 54.230.111.77:0
Hash cb0e956695a683b89d626747a48d0f73
bc62e25b616f8ed1f73b72ccde3b1af6c76a0c3c
9a53c75e6999c2a2c7efc5669eb0209fba78a81627e55993fb27efada7c2ed64
GET /monitor/stat.js HTTP/1.1
Host: www.clickcease.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 22 Nov 2022 11:31:37 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 6Er2d0GJvgnFniPQXIH7h8kzG7dJBNJf
server: AmazonS3
content-encoding: gzip
date: Sun, 04 Dec 2022 13:04:17 GMT
etag: W/"1c27f449b067550681f23ad3e53988fa"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: E7t2wTeG4bxqePVNm6UJaP-rsYrEnecDrHH1ixzqH_w7RleT1ifMvg==
age: 7
X-Firefox-Spdy: h2
gramiety.com/wp-content/themes/stratusx/assets/js/vendor/vendor_footer.js?ver=1.2
35.209.33.137200 OK 48 kB URL HTTP/2 gramiety.com/wp-content/themes/stratusx/assets/js/vendor/vendor_footer.js?ver=1.2
IP 35.209.33.137:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 10b79576530fff3d00fea815ee32f805
64ef54110d876e82e495a7cf4eef5ad310d91ee0
c6d1209fd520b70e8418117543ed9aab8a14d8b0410106610849cbde94084b65
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/stratusx/assets/js/vendor/vendor_footer.js?ver=1.2 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: application/javascript
last-modified: Sun, 02 Jan 2022 03:05:32 GMT
vary: Accept-Encoding
etag: W/"61d1167c-1d211"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
35.209.33.137200 OK 394 kB URL HTTP/2 gramiety.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
IP 35.209.33.137:0
File type ASCII text, with very long lines (25115)
Size 394 kB (394299 bytes)
Hash e768a188c6e02286c666253d7886dc6c
2104470a624ee2e5ccb118d7a44043569cb5bd8c
da984bd63a6009535b12c0953e510fd53726daa67a2205d19ebd37c05e445398
GET /wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: application/javascript
last-modified: Tue, 22 Nov 2022 03:59:43 GMT
vary: Accept-Encoding
etag: W/"637c492f-6272"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-content/uploads/2021/11/2-2.png
35.209.33.137200 OK 127 kB URL HTTP/2 gramiety.com/wp-content/uploads/2021/11/2-2.png
IP 35.209.33.137:0
File type PNG image data, 1080 x 1080, 8-bit/color RGBA, non-interlaced\012- data
Size 127 kB (126766 bytes)
Hash 53a3603a9574f39f9ce1c572001f447c
8dac682aab925d039b11ba4446587eadada5cb86
0a082298101dc2b66063e24106d003cb8992cb94494cb59822e36bd43297b9e0
GET /wp-content/uploads/2021/11/2-2.png HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D; _cq_duid=1.1670159055.WwJnC0gbZwWkWKMi; _cq_suid=1.1670159055.vGxDgwAycnsFV5UC; _fw_crm_v=5a2221b8-bcc9-49b6-d11c-070ad57ff362; first_session=%7B%22visits%22%3A1%2C%22start%22%3A1670159055491%2C%22last_visit%22%3A1670159055491%2C%22url%22%3A%22https%3A%2F%2Fgramiety.com%2F%22%2C%22path%22%3A%22%2F%22%2C%22referrer%22%3A%22%22%2C%22referrer_info%22%3A%7B%22host%22%3A%22%22%2C%22path%22%3A%22%22%2C%22protocol%22%3A%22about%3A%22%2C%22port%22%3A80%2C%22search%22%3A%22%22%2C%22query%22%3A%7B%7D%7D%2C%22search%22%3A%7B%22engine%22%3Anull%2C%22query%22%3Anull%7D%2C%22version%22%3A0.4%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:18 GMT
content-type: image/png
content-length: 126766
last-modified: Fri, 12 Nov 2021 23:51:19 GMT
etag: "618efdf7-1ef2e"
expires: Mon, 04 Dec 2023 13:04:18 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
gramiety.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.1
35.209.33.137200 OK 20 kB URL HTTP/2 gramiety.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.1
IP 35.209.33.137:0
File type ASCII text, with very long lines (10019)
Hash 9b9caf7383f6b23418a0f208c6b37303
772162eff43f09a4fe896b228dbb3e6e49eb4174
0506dd980874980cade0ab4b66587fd0e8a1d422808c838a83fd869c8e7a91ed
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.1 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 23:14:42 GMT
vary: Accept-Encoding
etag: W/"63717a62-4824"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-content/plugins/th-widget-pack/assets/icons/icons.css?ver=2.1.14
35.209.33.137200 OK 472 B URL HTTP/2 gramiety.com/wp-content/plugins/th-widget-pack/assets/icons/icons.css?ver=2.1.14
IP 35.209.33.137:0
Hash da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/th-widget-pack/assets/icons/icons.css?ver=2.1.14 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: text/css
last-modified: Fri, 22 Apr 2022 23:07:18 GMT
vary: Accept-Encoding
etag: W/"62633526-d147"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
js.chargebee.com/v2/animation.css
143.204.55.121200 OK 758 B URL HTTP/2 js.chargebee.com/v2/animation.css
IP 143.204.55.121:0
Hash f8a79fc47c28375628855b4c78ff6f85
b2fb79a766c233408a6e0dd38a169dee2e88d4b0
e3b7f54cf81a0ff1f16662abce7b1970ed6a8a8191da96cf05dcf6644d203df3
GET /v2/animation.css HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 758
last-modified: Wed, 09 Nov 2022 11:15:21 GMT
x-amz-version-id: _cBaqvdMSpBzimkVBCVgKy5qj6o1rTuZ
accept-ranges: bytes
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
date: Sun, 04 Dec 2022 12:59:43 GMT
cache-control: max-age=300,public
etag: "f8a79fc47c28375628855b4c78ff6f85"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ncgofDUjCdHjEvTpta2N_Leca4x1R0q1DhR-l6dazMsm2duMFzH_IQ==
age: 277
X-Firefox-Spdy: h2
js.chargebee.com/v2/master-c94c7b07821e828aec1f5650e98ed0f7.html
143.204.55.121200 OK 203 B URL HTTP/2 js.chargebee.com/v2/master-c94c7b07821e828aec1f5650e98ed0f7.html
IP 143.204.55.121:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 4a0cf07b8ce98a871bb057aac9149ecd
82084d677092c7f5a34e38fb3e9e7c2407747ded
92a1a29581e3bbac21ff8266bdb1af948176dda3fa98d476a93da59c0672581f
GET /v2/master-c94c7b07821e828aec1f5650e98ed0f7.html HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 203
last-modified: Thu, 01 Dec 2022 09:41:56 GMT
x-amz-version-id: J6rCRAi0.gdA.AOGgv9FQMr7zZ615aAe
accept-ranges: bytes
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
date: Sun, 04 Dec 2022 12:59:34 GMT
cache-control: max-age=300,public
etag: "4a0cf07b8ce98a871bb057aac9149ecd"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: JGWPWeTUZigVp5OaYl9e9pg1LUKpktdFx_IvBymKqJnxe6IiyUk0tA==
age: 287
X-Firefox-Spdy: h2
cdn.trustindex.io/widgets/a8/a83c014497959588a95056b2cb/content.html
143.204.55.84200 OK 1.3 kB URL HTTP/2 cdn.trustindex.io/widgets/a8/a83c014497959588a95056b2cb/content.html
IP 143.204.55.84:0
File type HTML document, Unicode text, UTF-8 text, with very long lines (1880)
Hash 0e21b3c4b9176e305416f163e4144425
6920d640cf9ccdf51a0a534e05d7a961669cbbf9
4f34b60fb8ac8b4f09f3a622b05dec14baffabbdcc68bdd1fae208a8cd1a4ab9
GET /widgets/a8/a83c014497959588a95056b2cb/content.html HTTP/1.1
Host: cdn.trustindex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gramiety.com
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1298
date: Sat, 03 Dec 2022 14:32:25 GMT
server: Apache/2.4.29 (Ubuntu)
last-modified: Sat, 26 Nov 2022 11:09:46 GMT
etag: "1822-5ee5dad171871-gzip"
accept-ranges: bytes
content-encoding: gzip
referrer-policy: origin
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cwPpOgbDCwXiSWemUKAxqwnfwR17hbprn8R2NVCU1klGyMSld4YRqg==
age: 81113
X-Firefox-Spdy: h2
gramiety.com/wp-content/uploads/2021/11/HERO-images-3.png
35.209.33.137200 OK 414 B URL HTTP/2 gramiety.com/wp-content/uploads/2021/11/HERO-images-3.png
IP 35.209.33.137:0
File type gzip compressed data, from Unix\012- data
Hash be7b5f500dda1e25f6ed767162c7ad42
ee114ed7955206a55d8ae1879a103b770b7385ef
8d7d594eebae24a8f4f0130c46b9170c31a9fcadc086ad6162fcfa353ab883d4
GET /wp-content/uploads/2021/11/HERO-images-3.png HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/wp-content/uploads/elementor/css/post-2714.css?ver=1664536242
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D; _cq_duid=1.1670159055.WwJnC0gbZwWkWKMi; _cq_suid=1.1670159055.vGxDgwAycnsFV5UC; _fw_crm_v=5a2221b8-bcc9-49b6-d11c-070ad57ff362; first_session=%7B%22visits%22%3A1%2C%22start%22%3A1670159055491%2C%22last_visit%22%3A1670159055491%2C%22url%22%3A%22https%3A%2F%2Fgramiety.com%2F%22%2C%22path%22%3A%22%2F%22%2C%22referrer%22%3A%22%22%2C%22referrer_info%22%3A%7B%22host%22%3A%22%22%2C%22path%22%3A%22%22%2C%22protocol%22%3A%22about%3A%22%2C%22port%22%3A80%2C%22search%22%3A%22%22%2C%22query%22%3A%7B%7D%7D%2C%22search%22%3A%7B%22engine%22%3Anull%2C%22query%22%3Anull%7D%2C%22version%22%3A0.4%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: image/png
content-length: 507869
last-modified: Fri, 12 Nov 2021 23:54:57 GMT
etag: "618efed1-7bfdd"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.trustindex.io/widgets/5d/5d15e4551aba18453457f700c9/content.html
143.204.55.84200 OK 2.1 kB URL HTTP/2 cdn.trustindex.io/widgets/5d/5d15e4551aba18453457f700c9/content.html
IP 143.204.55.84:0
File type HTML document, Unicode text, UTF-8 text, with very long lines (4331)
Hash ecba2ce730c3a7c9609eb052242088bb
e90112cd6da7598cf396583b361dc00b2025ebba
08bbeb084559a39b271cfdf5b1cef71fb2773fe44be81bc991fe12f2bf9ef62e
GET /widgets/5d/5d15e4551aba18453457f700c9/content.html HTTP/1.1
Host: cdn.trustindex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gramiety.com
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 2073
date: Sat, 03 Dec 2022 16:35:14 GMT
server: Apache/2.4.29 (Ubuntu)
last-modified: Tue, 29 Nov 2022 11:12:47 GMT
etag: "2c1a-5ee9a1163f6d9-gzip"
accept-ranges: bytes
content-encoding: gzip
referrer-policy: origin
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6xnAu52hIy6ASlT42G8ZMQ66wB245fhjJDtyY7pdnyIucAz5fon8eQ==
age: 73744
X-Firefox-Spdy: h2
s.w.org/images/core/emoji/14.0.0/svg/2764.svg
192.0.77.48200 OK 368 B URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/2764.svg
IP 192.0.77.48:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (368), with no line terminators
Hash 0483f2b648dcc986d01385062052ae1c
61bd815f1497863265a76d92623042835e5e7fe2
09a743ee0c32ca57c9be64b13b29c396310d1dd309cb4d7d3be722e47db95f27
GET /images/core/emoji/14.0.0/svg/2764.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:18 GMT
content-type: image/svg+xml
content-length: 368
last-modified: Tue, 12 Apr 2022 03:47:26 GMT
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.trustindex.io/widgets/35/35c709a51d10190de55e8c816c/content.html
143.204.55.84200 OK 360 B URL HTTP/2 cdn.trustindex.io/widgets/35/35c709a51d10190de55e8c816c/content.html
IP 143.204.55.84:0
File type HTML document, ASCII text, with very long lines (813), with no line terminators
Hash 47110c99b6d011ae62e3ddf61d077fb4
1367623528f0b205410ad3a2aa1e1a03b0060337
f2ce480b9135ffcbdc8185184094cb7a3c2c84e5b2065a3f9091a2213aa36a4a
GET /widgets/35/35c709a51d10190de55e8c816c/content.html HTTP/1.1
Host: cdn.trustindex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gramiety.com
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 360
date: Sat, 03 Dec 2022 14:32:25 GMT
server: Apache/2.4.29 (Ubuntu)
last-modified: Tue, 29 Nov 2022 11:12:47 GMT
etag: "32d-5ee9a11643558-gzip"
accept-ranges: bytes
content-encoding: gzip
referrer-policy: origin
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: uDi2wwcCs1zBEUU62w8DmwjeEuMWnyQWiXNgLfGmAK3OlTs524JS5Q==
age: 81113
X-Firefox-Spdy: h2
js.chargebee.com/v2/master-38eb00f648b061d9673f.js
143.204.55.121200 OK 70 kB URL HTTP/2 js.chargebee.com/v2/master-38eb00f648b061d9673f.js
IP 143.204.55.121:0
File type Unicode text, UTF-8 text, with very long lines (61642)
Hash c145784ede80eb4b62efe8a8cbd2076f
5b3af96bc8c845f2a187b4c1dcb53c16186f9dbb
6dabd696d1f51fa523cf1b67e4e5d7aa7db15580dd76f47ea11deeef0d8af30f
GET /v2/master-38eb00f648b061d9673f.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.chargebee.com/v2/master-c94c7b07821e828aec1f5650e98ed0f7.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Thu, 01 Dec 2022 09:41:55 GMT
x-amz-version-id: dp0vDVWNnTjpJWkY3MH..SX6x.skM1CG
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Sun, 04 Dec 2022 12:59:35 GMT
cache-control: max-age=300,public
etag: W/"bd2fc00bfcb1c741f155571de653518d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: oS8TIxXBThUuh4xkIJEDq7rQO8nFANOBXni3wBkc65OpNjG1qhPh1g==
age: 284
X-Firefox-Spdy: h2
gramiety.com/wp-content/uploads/2021/07/cropped-Icon-Color-192x192.png
35.209.33.137200 OK 5.2 kB URL HTTP/2 gramiety.com/wp-content/uploads/2021/07/cropped-Icon-Color-192x192.png
IP 35.209.33.137:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 81f5e788f596a29ce7d9c0c48b3514aa
2f60cc6b1a95168afc869a8f83ec29b0e58d27cb
2cb113a493b81a82643c8eb45e0fee57cbcaf9e3f51bd8069199e65191c46122
GET /wp-content/uploads/2021/07/cropped-Icon-Color-192x192.png HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D; _cq_duid=1.1670159055.WwJnC0gbZwWkWKMi; _cq_suid=1.1670159055.vGxDgwAycnsFV5UC; _fw_crm_v=5a2221b8-bcc9-49b6-d11c-070ad57ff362; first_session=%7B%22visits%22%3A1%2C%22start%22%3A1670159055491%2C%22last_visit%22%3A1670159055491%2C%22url%22%3A%22https%3A%2F%2Fgramiety.com%2F%22%2C%22path%22%3A%22%2F%22%2C%22referrer%22%3A%22%22%2C%22referrer_info%22%3A%7B%22host%22%3A%22%22%2C%22path%22%3A%22%22%2C%22protocol%22%3A%22about%3A%22%2C%22port%22%3A80%2C%22search%22%3A%22%22%2C%22query%22%3A%7B%7D%7D%2C%22search%22%3A%7B%22engine%22%3Anull%2C%22query%22%3Anull%7D%2C%22version%22%3A0.4%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:18 GMT
content-type: image/png
content-length: 5213
last-modified: Wed, 07 Jul 2021 16:31:46 GMT
etag: "60e5d6f2-145d"
expires: Mon, 04 Dec 2023 13:04:18 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
gramiety.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/particles.min.js?ver=2.0.0
35.209.33.137200 OK 6.3 kB URL HTTP/2 gramiety.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/particles.min.js?ver=2.0.0
IP 35.209.33.137:0
File type ASCII text, with very long lines (22712), with no line terminators
Hash a49d7e16fc85136942dda239cc3ec73e
af0c796e46428db4887f2493af3e4f40c868a40d
dc55a969f8b335d8e41fb5c28ea8c2041a9aef567cce4878314a6423f92f1e45
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/particles.min.js?ver=2.0.0 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: application/javascript
last-modified: Thu, 22 Sep 2022 11:05:00 GMT
vary: Accept-Encoding
etag: W/"632c415c-58b8"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
script.hotjar.com/modules.90de377b639fd5b933d2.js
143.204.55.68200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.90de377b639fd5b933d2.js
IP 143.204.55.68:0
File type Unicode text, UTF-8 text, with very long lines (48714)
Hash 8766036825574dfbddbfc197bd098f6b
3c6087743e1b23d7f071f66d65bec1fdb143a2c2
89c7cf4e7103f90d1cc059e02ac95e97a976de4867e6215945fa6046b04db0b8
GET /modules.90de377b639fd5b933d2.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68504
date: Thu, 01 Dec 2022 13:37:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "8766036825574dfbddbfc197bd098f6b"
last-modified: Thu, 01 Dec 2022 13:36:28 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: yEPPVPGwVe1Ms5gWyg-4pFOO9I411948KN7HuLgOJPfXNOvqfm9lIA==
age: 257232
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.14200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.14:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 04 Dec 2022 12:46:55 GMT
expires: Sun, 04 Dec 2022 14:46:55 GMT
cache-control: public, max-age=7200
age: 1043
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
js.chargebee.com/v2/128-014a7a3333441726c06f.js
143.204.55.121200 OK 2.5 kB URL HTTP/2 js.chargebee.com/v2/128-014a7a3333441726c06f.js
IP 143.204.55.121:0
Hash 18dc5dd226e86f7d170d53cf25e27c8c
9b6bfa264ebbf50e2c76aa9397279a6cf00a9540
5d4bc90adfcf41043a0230e8573f73d180ffef4d2be53870b359c2f5cc836816
GET /v2/128-014a7a3333441726c06f.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.chargebee.com/v2/master-c94c7b07821e828aec1f5650e98ed0f7.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Thu, 01 Dec 2022 09:41:55 GMT
x-amz-version-id: 6Ym9NQ36wtdycM31Yxj3ihM52.zSx7j8
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Sun, 04 Dec 2022 12:59:34 GMT
cache-control: max-age=300,public
etag: W/"78c1c86055ef8b93c69d4e8167155180"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: M6jdzKS07wTqUDdFqtpJ_oTaS8CDA3w4tEOCRTW3qOEAX2zVLA4wBw==
age: 287
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash b5fd8d7a1882453e9592569c71de790e
7f214a23b8eda49b97f67f26363f9fbe39a18be8
a93e3ddbb955a50bb4cfadebbc794c13e8d9f0a41154747ba025a99d3d965183
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 04 Dec 2022 13:04:18 GMT
Etag: "638b256c-1d7"
Last-Modified: Sun, 04 Dec 2022 11:19:17 GMT
Server: ECS (dcb/7FA6)
X-Cache: Miss from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: I47M6lgA7iYVcoMbIqDldqmhzfk69AwqrwYw-IQ_QYzsLT3MJNU12g==
Age: 6302
www.avochato.com/text_us/bomBzWL9Ov?iframe_domain=https%3A%2F%2Fgramiety.com%2F
54.183.46.1302 Found 163 B URL HTTP/1.1 www.avochato.com/text_us/bomBzWL9Ov?iframe_domain=https%3A%2F%2Fgramiety.com%2F
IP 54.183.46.1:0
File type HTML document text\012- HTML document, ASCII text, with no line terminators
Hash dde3e1f292d8ef3b830b5168942cfcb2
308c50010778e2cbff88461e1eeb2ea3f87a3eb7
0588c705df365e9087c2961eaeac9a3952050b229a4de75e92846380e6241835
GET /text_us/bomBzWL9Ov?iframe_domain=https%3A%2F%2Fgramiety.com%2F HTTP/1.1
Host: www.avochato.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Sun, 04 Dec 2022 13:04:18 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Location: https://www.avochato.com/website_widgets/bomBzWL9Ov?iframe_domain=https%3A%2F%2Fgramiety.com%2F
Cache-Control: no-cache
Set-Cookie: referer=https%3A%2F%2Fgramiety.com%2F; path=/; SameSite=None; secure
ip=91.90.42.154; path=/; SameSite=None; secure
utms=iframe_domain%3Dhttps%3A%2F%2Fgramiety.com%2F%26action%3Dshow; path=/; SameSite=None; secure
utm_history=direct; path=/; SameSite=None; secure
X-Request-Id: f46d6077-8859-4bc2-baed-e28746025629
X-Runtime: 0.043605
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000; includeSubDomains
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash ebdcfd214693735e555b84af8032ed0d
32e7307811cdb7a987beeaa306492f98b4cdbbaa
b388b53ca7cb8fc79bc5b899a09cf6f4d97adee19dc65475e4e8efdcae48f5d2
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=95558
Date: Sun, 04 Dec 2022 13:04:19 GMT
Etag: "638b6a5f-1d7"
Expires: Mon, 05 Dec 2022 15:36:57 GMT
Last-Modified: Sat, 03 Dec 2022 15:25:19 GMT
Server: ECS (nyb/1D0C)
X-Cache: Miss from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: tHESXwrUKpn5ZSfvoinQIe33GvjdpEYutCJOrx5myGT-eE_Lr66ylA==
Age: 698
js.chargebee.com/v2/132-ec6c88693b1daa3fb8fd.js
143.204.55.121200 OK 22 kB URL HTTP/2 js.chargebee.com/v2/132-ec6c88693b1daa3fb8fd.js
IP 143.204.55.121:0
File type ASCII text, with very long lines (52144)
Hash 4698bfc42cbc2abcafda320de6063e66
409791345786dc9834c3af63586c7ae0ed3ac9bc
b8591daee1665db39c117d6b2b5180418bfa9286617c94f92e7f48005710f27a
GET /v2/132-ec6c88693b1daa3fb8fd.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.chargebee.com/v2/master-c94c7b07821e828aec1f5650e98ed0f7.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Thu, 01 Dec 2022 09:41:55 GMT
x-amz-version-id: FjS5p2Ae1a6qE4zg.nskDADjIg7xQGIz
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Sun, 04 Dec 2022 12:59:34 GMT
cache-control: max-age=300,public
etag: W/"49c2e60fe36f2cd3bbfdb60dd795b3ca"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: A1BrdtFENu9FkM9feLRytVxmwF4Ipx_zTwdLqVIIlUOYVyoNKV8Ymw==
age: 286
X-Firefox-Spdy: h2
gramiety.chargebeestaticv2.com/api/internal/1670158800/retrieve_js_info
54.230.111.21200 OK 446 B URL HTTP/2 gramiety.chargebeestaticv2.com/api/internal/1670158800/retrieve_js_info
IP 54.230.111.21:0
File type JSON data\012- , ASCII text, with very long lines (446), with no line terminators
Hash e4e6b6fce2ac185e01e7740f6ca59a9a
dbe685c1d0aec8c12acc1630cb7f5fc3c8191d9e
807953d1b96ea2759498bfb44cac11abfcd739e2297a56e08caf5d5e722aaa32
GET /api/internal/1670158800/retrieve_js_info HTTP/1.1
Host: gramiety.chargebeestaticv2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://js.chargebee.com
Connection: keep-alive
Referer: https://js.chargebee.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json;charset=utf-8
content-length: 446
date: Sun, 04 Dec 2022 13:04:19 GMT
cache-control: max-age=0, must-revalidate, public, s-maxage=3600
expires: Thu, 01 Jan 1970 00:00:00 UTC
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: https://js.chargebee.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, cb-csrf-token, leap.api.version, chargebee-business-entity-id, X-TP-Token
access-control-allow-methods: GET, OPTIONS, POST
server: ChargeBee
x-cache: Miss from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cbhmiBY47b_yuRwLsINFyQw2Fv-vM9oMkMvcvOWlKq4NpUp7z82HDw==
X-Firefox-Spdy: h2
www.avochato.com/website_widgets/bomBzWL9Ov?iframe_domain=https%3A%2F%2Fgramiety.com%2F
54.183.46.1200 OK 13 kB URL HTTP/1.1 www.avochato.com/website_widgets/bomBzWL9Ov?iframe_domain=https%3A%2F%2Fgramiety.com%2F
IP 54.183.46.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (31084)
Hash 894d20c593a8ef53eaf056b8cc8b602c
894bd2cd5dd06973d043ca77d4f9d7a611dd81ac
542c35bc5f8980f5c13ac866a1666f23f63a9fd479b365ba7d0ab55bb52298c7
GET /website_widgets/bomBzWL9Ov?iframe_domain=https%3A%2F%2Fgramiety.com%2F HTTP/1.1
Host: www.avochato.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gramiety.com/
Connection: keep-alive
Cookie: referer=https%3A%2F%2Fgramiety.com%2F; ip=91.90.42.154; utms=iframe_domain%3Dhttps%3A%2F%2Fgramiety.com%2F%26action%3Dshow; utm_history=direct
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 13:04:19 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Turbolinks-Location:
Content-Security-Policy: frame-ancestors 'self' * *.lightning.force.com *.my.salesforce.com teams.microsoft.com *.teams.microsoft.com *.skype.com;
ETag: W/"7eb0661dd7b65fbd94c1e9ef96e5f95d"
Cache-Control: max-age=0, private, must-revalidate
Set-Cookie: _avochato_session=V1lTS05uSkdJWDE5aXRQeWhReCtZbDZmM0dSejhnVmVnNm1jSVptUExQYnl2VW4vQnBaZUhONXNxY2RCcTV4QXB0c0ExQ0NGMUhSUXVGc2ZxVlI1YmxRanR3aVhUNG96dTUzUnRLU25Va3VhK21Jd2tmWVZMazUzQjkyNXZySFIycDRLdmdOd29Pa2V2UjdZRng1QVhxSlY3UHZmUndwc0hhclNMUmgxSHUvN0l3ZnJ4VExKVDUvUFpyNFJFTGJOLS0wMVcrVituWTFPc0FpQVBtc25vSmtBPT0%3D--b9f23c40a8a4474546e4d7c31e5a6db9b81626c8; path=/; secure; HttpOnly; SameSite=None
X-Request-Id: 2f42613e-bdf8-49d0-9120-eb168876ca1b
X-Runtime: 0.064878
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000; includeSubDomains
cdn.trustindex.io/assets/default-avatar/noprofile-07.svg
143.204.55.84200 OK 815 B URL HTTP/2 cdn.trustindex.io/assets/default-avatar/noprofile-07.svg
IP 143.204.55.84:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text, with very long lines (815), with no line terminators
Hash 32b3b259f25306c8de26f0f248bdda1c
6851df7b9f6110bea424f8bbffa0eb18c343ef4c
1043988e891a229f3a2f016c8a0dc56f3f4b5d6aba81744c8f5e4a248ee4e7a1
GET /assets/default-avatar/noprofile-07.svg HTTP/1.1
Host: cdn.trustindex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 815
date: Sat, 29 Oct 2022 01:11:15 GMT
server: Apache/2.4.29 (Ubuntu)
last-modified: Tue, 22 Feb 2022 22:43:27 GMT
etag: "32f-5d8a313d8d12c"
accept-ranges: bytes
referrer-policy: origin
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
cache-control: max-age=31536000, public
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: EGaJUAv1tAw3tmGKFmlZsw3EV9grgzB_FwL8AiiW9qiIonUgxdkZaQ==
age: 3153184
X-Firefox-Spdy: h2
cdn.trustindex.io/assets/platform/Trustindex/logo.svg
143.204.55.84200 OK 12 kB URL HTTP/2 cdn.trustindex.io/assets/platform/Trustindex/logo.svg
IP 143.204.55.84:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text, with very long lines (65536), with no line terminators
Hash f6decf638485fd4815d7b04241130c95
5b061a6c93b2b8e7ae0d3f0128d0372d26fb1d29
4155e8a38186ffddd534eb7d928de97c2231ce53873df68a3d4f59d395937c9e
GET /assets/platform/Trustindex/logo.svg HTTP/1.1
Host: cdn.trustindex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Sun, 06 Nov 2022 07:02:14 GMT
server: Apache/2.4.29 (Ubuntu)
last-modified: Tue, 22 Feb 2022 22:43:27 GMT
etag: W/"17b0-5d8a313da7708"
referrer-policy: origin
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
cache-control: max-age=31536000, public
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hT8R35JaOBsEtuBuLCRRe3_DJTRchWv9kPp5y4vJv7IiG24qvx6GnA==
age: 2440925
X-Firefox-Spdy: h2
cdn.trustindex.io/assets/default-avatar/noprofile-05.svg
143.204.55.84200 OK 815 B URL HTTP/2 cdn.trustindex.io/assets/default-avatar/noprofile-05.svg
IP 143.204.55.84:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text, with very long lines (815), with no line terminators
Hash b5065f2f85f1cbfa4188d283d2b30791
1e25e5e44fc37c6e7d733ceb5b53a8fafc51dae2
a0e8d2fe750283b436103b20381fb972ff8c23de1df0fb9716fd09efb2bab777
GET /assets/default-avatar/noprofile-05.svg HTTP/1.1
Host: cdn.trustindex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 815
date: Tue, 01 Nov 2022 08:36:26 GMT
server: Apache/2.4.29 (Ubuntu)
last-modified: Tue, 22 Feb 2022 22:43:27 GMT
etag: "32f-5d8a313d8d12c"
accept-ranges: bytes
referrer-policy: origin
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
cache-control: max-age=31536000, public
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: OpbmWSXJjWy29O2t-EPL8GabpJbG8v2US60sT7wb-YgsE-9hKXqiyg==
age: 2867273
X-Firefox-Spdy: h2
cdn.trustindex.io/assets/widget-presetted-css/35-drop-shadow.css
143.204.55.84200 OK 8.4 kB URL HTTP/2 cdn.trustindex.io/assets/widget-presetted-css/35-drop-shadow.css
IP 143.204.55.84:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash c80a8da0d00770c4ab88a0da0e5a3b4f
0a70b6a244c68e325a3b060a5c3863b00a735f53
c189fb73cd8e99013bb728debf9033212338de82e219f8031345c4ba15a46469
GET /assets/widget-presetted-css/35-drop-shadow.css HTTP/1.1
Host: cdn.trustindex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 8373
date: Sun, 04 Dec 2022 01:34:07 GMT
server: Apache/2.4.29 (Ubuntu)
last-modified: Mon, 28 Nov 2022 14:09:24 GMT
etag: "165df-5ee886b2d06e0-gzip"
accept-ranges: bytes
content-encoding: gzip
referrer-policy: origin
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
cache-control: max-age=604800, public
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: WUeJ4i-yK1HOBEkZYfhuR33z8sJ5PdaPWiOvhE2JxlDZzUOQdT3atw==
age: 41412
X-Firefox-Spdy: h2
cdn.trustindex.io/assets/default-avatar/noprofile-04.svg
143.204.55.84200 OK 815 B URL HTTP/2 cdn.trustindex.io/assets/default-avatar/noprofile-04.svg
IP 143.204.55.84:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text, with very long lines (815), with no line terminators
Hash b7e672ad7dd3985ee9fc65d514268d00
ba4434bae4abb1a66338e97482761a6b67b9a5c4
02ab49d836e994249af1d316e587438071479903e763cf27b60fda038e3fe1ad
GET /assets/default-avatar/noprofile-04.svg HTTP/1.1
Host: cdn.trustindex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 815
date: Wed, 16 Nov 2022 09:37:35 GMT
server: Apache/2.4.29 (Ubuntu)
last-modified: Tue, 22 Feb 2022 22:43:27 GMT
etag: "32f-5d8a313d8d12c"
accept-ranges: bytes
referrer-policy: origin
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
cache-control: max-age=31536000, public
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ExYBJSuV_xVofq44WxJ4Bc_h158btQWjNJZQ50xeKdeJCBv46bbRdQ==
age: 1567604
X-Firefox-Spdy: h2
cdn.trustindex.io/assets/platform/Trustpilot/star/f.svg
143.204.55.84200 OK 9.1 kB URL HTTP/2 cdn.trustindex.io/assets/platform/Trustpilot/star/f.svg
IP 143.204.55.84:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text, with very long lines (65536), with no line terminators
Hash 1fa172002065e6bccb0f7bf7ee68f2a7
24d51313dcd06aa6a3484f7505e5625d301c41cb
f1aa47eecf9fd64b120526c523cd13c4a6ed75ccae4fa3464799913cf04553cd
GET /assets/platform/Trustpilot/star/f.svg HTTP/1.1
Host: cdn.trustindex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cdn.trustindex.io/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Sun, 27 Nov 2022 08:57:43 GMT
server: Apache/2.4.29 (Ubuntu)
last-modified: Tue, 13 Sep 2022 09:37:19 GMT
etag: W/"6b5-5e88bc235b990"
referrer-policy: origin
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
cache-control: max-age=31536000, public
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8Nm6X4mA3b5IQhA9oxtbDrpuJImp4AyWevE_oVHCwTHxB461SEWREw==
age: 619596
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 10f650eab2c3a4b09f1302d8e8642073
f798a9ae0f0022ec3e521f6db8cfd8b6b002e121
ce36e7a5a0a1bfdf0134bdcf6717c5b4e1f47202601f7b526fa786d8616303e3
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=148096
Date: Sun, 04 Dec 2022 13:04:19 GMT
Etag: "638c3a53-1d7"
Expires: Tue, 06 Dec 2022 06:12:35 GMT
Last-Modified: Sun, 04 Dec 2022 06:12:35 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: alqhBKlMfhdhgVlNxLtdWKCrGkR4NQXdIWAArs7b6B_aj01MgDYMzA==
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 10f650eab2c3a4b09f1302d8e8642073
f798a9ae0f0022ec3e521f6db8cfd8b6b002e121
ce36e7a5a0a1bfdf0134bdcf6717c5b4e1f47202601f7b526fa786d8616303e3
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=148096
Date: Sun, 04 Dec 2022 13:04:19 GMT
Etag: "638c3a53-1d7"
Expires: Tue, 06 Dec 2022 06:12:35 GMT
Last-Modified: Sun, 04 Dec 2022 06:12:35 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Vs8nQd28m8bEci3TT1sgLrsQ8fvO6pDC1dNl4UC5PST3nVBGxcny7g==
gramiety.com/wp-content/plugins/elementor/assets/js/image-carousel.e02695895b33b77d89de.bundle.min.js
35.209.33.137200 OK 38 kB URL HTTP/2 gramiety.com/wp-content/plugins/elementor/assets/js/image-carousel.e02695895b33b77d89de.bundle.min.js
IP 35.209.33.137:0
File type ASCII text, with very long lines (2738)
Hash 3b8556d7f2f6778c0a39425b10c49f89
e11d8ce5af5e8316294f5cb7dd4ea6e56b2bbd81
d498ccc9a2914405ce8e4569ded848feb19ddbda4726adb31364ff8adb37b4e6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/image-carousel.e02695895b33b77d89de.bundle.min.js HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D; _cq_duid=1.1670159055.WwJnC0gbZwWkWKMi; _cq_suid=1.1670159055.vGxDgwAycnsFV5UC; _fw_crm_v=5a2221b8-bcc9-49b6-d11c-070ad57ff362; first_session=%7B%22visits%22%3A1%2C%22start%22%3A1670159055491%2C%22last_visit%22%3A1670159055491%2C%22url%22%3A%22https%3A%2F%2Fgramiety.com%2F%22%2C%22path%22%3A%22%2F%22%2C%22referrer%22%3A%22%22%2C%22referrer_info%22%3A%7B%22host%22%3A%22%22%2C%22path%22%3A%22%22%2C%22protocol%22%3A%22about%3A%22%2C%22port%22%3A80%2C%22search%22%3A%22%22%2C%22query%22%3A%7B%7D%7D%2C%22search%22%3A%7B%22engine%22%3Anull%2C%22query%22%3Anull%7D%2C%22version%22%3A0.4%7D; _gcl_au=1.1.71926102.1670159056; _ga=GA1.2.121937375.1670159056; _gid=GA1.2.1681541601.1670159056; _gat_gtag_UA_102955589_1=1; _gat_UA-102955589-1=1; _hjSessionUser_1630950=eyJpZCI6IjE5ZWUzY2E2LTA2YjEtNWRmYi1hNWFkLTllNTg0Zjc3OTFkNiIsImNyZWF0ZWQiOjE2NzAxNTkwNTYzNzksImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_1630950=eyJpZCI6IjRkNDQ3YTUyLTI2MmItNGQ4OS1hZGIwLTA3ODcwMTg3ZDQ5YyIsImNyZWF0ZWQiOjE2NzAxNTkwNTY0MDYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:19 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 23:14:42 GMT
vary: Accept-Encoding
etag: W/"63717a62-ad9"
expires: Mon, 04 Dec 2023 13:04:19 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
assets.avochato.com/packs/js/website-widget-application-eed56ff196a276ef12a6.js
54.230.111.68200 OK 12 kB URL HTTP/1.1 assets.avochato.com/packs/js/website-widget-application-eed56ff196a276ef12a6.js
IP 54.230.111.68:0
File type ASCII text, with very long lines (63889), with no line terminators
Hash cae396cd5736403deec810187ac76b1e
ce4a29e69370813a02606737b66f8aef10247ebf
45678b860ef656f7bc68349031d892ee835157972f8fa9a3d053841ce108617b
GET /packs/js/website-widget-application-eed56ff196a276ef12a6.js HTTP/1.1
Host: assets.avochato.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avochato.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sun, 04 Dec 2022 07:19:48 GMT
Last-Modified: Tue, 29 Nov 2022 19:12:16 GMT
ETag: W/"0f0a238fda467cb15388943548f47263"
x-amz-server-side-encryption: AES256
x-amz-version-id: Xgtu_3zO0YzuGPWhfvhNCkulS_vUdCTC
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: DAutFGj0L0TF56VoxldquGuFTovXK6PGNTJ55B4N0KRjCVAbgSloWA==
Age: 20672
assets.avochato.com/packs/js/runtime-d0b16f9943c56c90f9b5.js
54.230.111.68200 OK 2.6 kB URL HTTP/1.1 assets.avochato.com/packs/js/runtime-d0b16f9943c56c90f9b5.js
IP 54.230.111.68:0
File type ASCII text, with very long lines (5472), with no line terminators
Hash c35436a4d33de43a7e0f7e7856f571c4
24e2c0580c8e3a366afd31b2777ee01bfe80c912
433b21165a4b6431b3a9d3b9cf3827dbdddaf264e14c6ca88aa2c36f5c710531
GET /packs/js/runtime-d0b16f9943c56c90f9b5.js HTTP/1.1
Host: assets.avochato.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avochato.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sun, 04 Dec 2022 05:50:42 GMT
Last-Modified: Tue, 29 Nov 2022 19:12:16 GMT
ETag: W/"f1b68bb857e437d4011e2ea2a01df219"
x-amz-server-side-encryption: AES256
x-amz-version-id: fKyoEcNJqqk9fNJyfbuwa4wO5Fb8UP._
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Da88rnjbAC-idJj4ouwxIqDLqWX89HgU55-dS7TN-EkgbtNQ8Zt6wg==
Age: 26018
in.hotjar.com/api/v2/client/sites/1630950/visit-data?sv=6
34.254.47.228200 OK 34 kB URL HTTP/2 in.hotjar.com/api/v2/client/sites/1630950/visit-data?sv=6
IP 34.254.47.228:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 0a89a12947a7fd9d43fcedfefdf7d0fc
f177a543161fe71a58d32373bb0b1b3d1fd4f952
c287f3454abc2158a28b45e92d5a91533f7146372ffc276de412e6f4d85dba3f
POST /api/v2/client/sites/1630950/visit-data?sv=6 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 129
Origin: https://gramiety.com
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 13:04:19 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-admin/admin-ajax.php
35.209.33.137200 OK 516 B URL HTTP/2 gramiety.com/wp-admin/admin-ajax.php
IP 35.209.33.137:0
File type JSON data\012- , ASCII text, with no line terminators
Hash ce650c16122c02339c35827fba4ac5ad
4cfae7f6fb91a72c5b7ab7b201ce60dd9ca05229
d73c6f115472f90f972c6eb6a6f0f7998ad4574566deab8587264ba73869220c
Analyzer Verdict Alert fortinet Phishing
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 131
Origin: https://gramiety.com
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D; _cq_duid=1.1670159055.WwJnC0gbZwWkWKMi; _cq_suid=1.1670159055.vGxDgwAycnsFV5UC
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:18 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://gramiety.com
access-control-allow-credentials: true
x-robots-tag: noindex
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
x-httpd: 1
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-content/plugins/elementor/assets/js/toggle.933918840481dcc64242.bundle.min.js
35.209.33.137200 OK 13 kB URL HTTP/2 gramiety.com/wp-content/plugins/elementor/assets/js/toggle.933918840481dcc64242.bundle.min.js
IP 35.209.33.137:0
File type ASCII text, with very long lines (3740)
Hash aca9a370ac708c56d7021c7ac9b347fd
e1c4eb96c61d92a820f651e727be2f40210e85ed
484a9aab9b08f3556923376e817b774f61f4d0dcf5d8d1b3acc0409bf990d75f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/toggle.933918840481dcc64242.bundle.min.js HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D; _cq_duid=1.1670159055.WwJnC0gbZwWkWKMi; _cq_suid=1.1670159055.vGxDgwAycnsFV5UC; _fw_crm_v=5a2221b8-bcc9-49b6-d11c-070ad57ff362; first_session=%7B%22visits%22%3A1%2C%22start%22%3A1670159055491%2C%22last_visit%22%3A1670159055491%2C%22url%22%3A%22https%3A%2F%2Fgramiety.com%2F%22%2C%22path%22%3A%22%2F%22%2C%22referrer%22%3A%22%22%2C%22referrer_info%22%3A%7B%22host%22%3A%22%22%2C%22path%22%3A%22%22%2C%22protocol%22%3A%22about%3A%22%2C%22port%22%3A80%2C%22search%22%3A%22%22%2C%22query%22%3A%7B%7D%7D%2C%22search%22%3A%7B%22engine%22%3Anull%2C%22query%22%3Anull%7D%2C%22version%22%3A0.4%7D; _gcl_au=1.1.71926102.1670159056; _ga=GA1.2.121937375.1670159056; _gid=GA1.2.1681541601.1670159056; _gat_gtag_UA_102955589_1=1; _gat_UA-102955589-1=1; _hjSessionUser_1630950=eyJpZCI6IjE5ZWUzY2E2LTA2YjEtNWRmYi1hNWFkLTllNTg0Zjc3OTFkNiIsImNyZWF0ZWQiOjE2NzAxNTkwNTYzNzksImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_1630950=eyJpZCI6IjRkNDQ3YTUyLTI2MmItNGQ4OS1hZGIwLTA3ODcwMTg3ZDQ5YyIsImNyZWF0ZWQiOjE2NzAxNTkwNTY0MDYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:19 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 23:14:42 GMT
vary: Accept-Encoding
etag: W/"63717a62-ec3"
expires: Mon, 04 Dec 2023 13:04:19 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 10f650eab2c3a4b09f1302d8e8642073
f798a9ae0f0022ec3e521f6db8cfd8b6b002e121
ce36e7a5a0a1bfdf0134bdcf6717c5b4e1f47202601f7b526fa786d8616303e3
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sun, 04 Dec 2022 13:04:19 GMT
Etag: "638c3a53-1d7"
Server: ECS (dcb/7F18)
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: lYQP5wNHAWXP7x-jOFJSFRSChUMB6Vn-3Sa4fZKw_P-Z-8STLefi5A==
gramiety.com/wp-content/plugins/elementor-pro/assets/js/nav-menu.3de49ba5ef86f9a22ff5.bundle.min.js
35.209.33.137200 OK 9.9 kB URL HTTP/2 gramiety.com/wp-content/plugins/elementor-pro/assets/js/nav-menu.3de49ba5ef86f9a22ff5.bundle.min.js
IP 35.209.33.137:0
File type ASCII text, with very long lines (3262)
Hash 0c8492d717dc60397487a8dd4657b013
0e337222e91b5c97ef688e34b3ab6ebd37994987
03d06dbb04645e3aaf54ad0a43807cbec5bc765073b9911e44ce88116439aaec
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/nav-menu.3de49ba5ef86f9a22ff5.bundle.min.js HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D; _cq_duid=1.1670159055.WwJnC0gbZwWkWKMi; _cq_suid=1.1670159055.vGxDgwAycnsFV5UC; _fw_crm_v=5a2221b8-bcc9-49b6-d11c-070ad57ff362; first_session=%7B%22visits%22%3A1%2C%22start%22%3A1670159055491%2C%22last_visit%22%3A1670159055491%2C%22url%22%3A%22https%3A%2F%2Fgramiety.com%2F%22%2C%22path%22%3A%22%2F%22%2C%22referrer%22%3A%22%22%2C%22referrer_info%22%3A%7B%22host%22%3A%22%22%2C%22path%22%3A%22%22%2C%22protocol%22%3A%22about%3A%22%2C%22port%22%3A80%2C%22search%22%3A%22%22%2C%22query%22%3A%7B%7D%7D%2C%22search%22%3A%7B%22engine%22%3Anull%2C%22query%22%3Anull%7D%2C%22version%22%3A0.4%7D; _gcl_au=1.1.71926102.1670159056; _ga=GA1.2.121937375.1670159056; _gid=GA1.2.1681541601.1670159056; _gat_gtag_UA_102955589_1=1; _gat_UA-102955589-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:18 GMT
content-type: application/javascript
last-modified: Tue, 22 Nov 2022 03:59:43 GMT
vary: Accept-Encoding
etag: W/"637c492f-ce9"
expires: Mon, 04 Dec 2023 13:04:18 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
cdn.trustindex.io/assets/platform/Facebook/icon.svg
143.204.55.84200 OK 412 B URL HTTP/2 cdn.trustindex.io/assets/platform/Facebook/icon.svg
IP 143.204.55.84:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (412), with no line terminators
Hash 732e0eb98334f3976539ecd92d046e4d
d40ed7e04b6864b5ec67a54a605f57f184263bfe
2825ccef81356e0731dba4f91e4cbaf5d71f6ce5391a387897a04d4397f90255
GET /assets/platform/Facebook/icon.svg HTTP/1.1
Host: cdn.trustindex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cdn.trustindex.io/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 412
date: Fri, 04 Nov 2022 15:02:33 GMT
server: Apache/2.4.29 (Ubuntu)
last-modified: Tue, 22 Feb 2022 22:43:27 GMT
etag: "19c-5d8a313da09a9"
accept-ranges: bytes
referrer-policy: origin
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
cache-control: max-age=31536000, public
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4dmC6QCMinI8EGAWS3OkMkJRviLw5WhsQDm9X7kaw_Ey1vT4UdMvIw==
age: 2584906
X-Firefox-Spdy: h2
cdn.trustindex.io/assets/fonts/opensans/latin.woff2
143.204.55.84200 OK 14 kB URL HTTP/2 cdn.trustindex.io/assets/fonts/opensans/latin.woff2
IP 143.204.55.84:0
File type Web Open Font Format (Version 2), TrueType, length 14380, version 1.0\012- data
Hash 33543c5cc5d88f5695dd08c87d280dfd
600db9374e47e4f73a59ccc0a99bcc42f4a3e02a
9c50a96c859b9beea47b71740bd14e7f69a4df586d015f47434037f8def53b52
GET /assets/fonts/opensans/latin.woff2 HTTP/1.1
Host: cdn.trustindex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://cdn.trustindex.io/
Origin: https://gramiety.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 14380
server: Apache/2.4.29 (Ubuntu)
last-modified: Tue, 22 Feb 2022 22:43:27 GMT
accept-ranges: bytes
referrer-policy: origin
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
date: Sun, 04 Dec 2022 06:07:09 GMT
cache-control: max-age=604800, public
etag: "382c-5d8a313d8f06c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4P0izGRc9HnyJ4vijiExEr-q7YoFXSCW7wkGtkgdSbbf2jES1MfLbg==
age: 25138
X-Firefox-Spdy: h2
cdn.trustindex.io/assets/fonts/opensans/latin2.woff2
143.204.55.84200 OK 15 kB URL HTTP/2 cdn.trustindex.io/assets/fonts/opensans/latin2.woff2
IP 143.204.55.84:0
File type Web Open Font Format (Version 2), TrueType, length 15056, version 1.0\012- data
Hash 0edb76284a7a0f8db4665b560ee2b48f
02496387a5f7bf7b79df52c7b76ece4ebc7a0710
74201a4b97ec1d5e86252dd0180eafd8c5378a9235864dbcd682f3575b41c85b
GET /assets/fonts/opensans/latin2.woff2 HTTP/1.1
Host: cdn.trustindex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://cdn.trustindex.io/
Origin: https://gramiety.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 15056
server: Apache/2.4.29 (Ubuntu)
last-modified: Tue, 22 Feb 2022 22:43:27 GMT
accept-ranges: bytes
referrer-policy: origin
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
date: Sun, 04 Dec 2022 05:02:44 GMT
cache-control: max-age=604800, public
etag: "3ad0-5d8a313d8f06c"
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: FvtN26GTjyqqVimGDmUYq_QwETMZINC71nxQiMTMKd27ydpiBC1qgA==
age: 462986
X-Firefox-Spdy: h2
user-images.trustpilot.com/61ee5dc1204b0c0012aefb3a/73x73.png
143.204.55.96200 OK 12 kB URL HTTP/2 user-images.trustpilot.com/61ee5dc1204b0c0012aefb3a/73x73.png
IP 143.204.55.96:0
File type PNG image data, 73 x 73, 8-bit/color RGB, non-interlaced\012- data
Hash 683d247c7a64ee0e70cd679b16e86148
c48ec49f73cc508d621e984cb6d708725f6cd4f2
71f323c7cbf49476a61ad92988a89a64cf56b60c0d0614511f0b0a57f490c135
GET /61ee5dc1204b0c0012aefb3a/73x73.png HTTP/1.1
Host: user-images.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 11863
last-modified: Mon, 24 Jan 2022 08:07:29 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sun, 04 Dec 2022 13:04:20 GMT
etag: "683d247c7a64ee0e70cd679b16e86148"
x-cache: RefreshHit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: iz4fd9CqZA-iRokQ3iOoV6As7dkZ7T989ySg4fwclbP_b7k1L88W_Q==
X-Firefox-Spdy: h2
user-images.trustpilot.com/61eaf14ea5b743001370612b/73x73.png
143.204.55.96200 OK 15 kB URL HTTP/2 user-images.trustpilot.com/61eaf14ea5b743001370612b/73x73.png
IP 143.204.55.96:0
File type PNG image data, 73 x 73, 8-bit/color RGB, non-interlaced\012- data
Hash 71486f2ddabda0ee49dcbb3dc1998a94
e531f53bb7aaec217fbc9ad2286586f790abef7f
c6b84e4548235c273300aca53512095afc24ef768c29b357b3d0566845e716b5
GET /61eaf14ea5b743001370612b/73x73.png HTTP/1.1
Host: user-images.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 14929
last-modified: Fri, 21 Jan 2022 18:27:06 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sun, 04 Dec 2022 13:04:20 GMT
etag: "71486f2ddabda0ee49dcbb3dc1998a94"
x-cache: RefreshHit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Uzayd5uB4z7toA3fCkiFmTJPnyx5zZSq0k5lFnoHYo1hQOKnrNztWg==
X-Firefox-Spdy: h2
user-images.trustpilot.com/61ecf18799fb440012f22df2/73x73.png
143.204.55.96200 OK 10 kB URL HTTP/2 user-images.trustpilot.com/61ecf18799fb440012f22df2/73x73.png
IP 143.204.55.96:0
File type PNG image data, 73 x 73, 8-bit/color RGB, non-interlaced\012- data
Hash b55e5597f2da5971074d4533a50d172b
58014b438a66bff3e701024ef544ba80a547bbb5
8cf02370fa6bde0b4575e768a2014d7f37164c38e4c5a3be0484a8e51682fdeb
GET /61ecf18799fb440012f22df2/73x73.png HTTP/1.1
Host: user-images.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 10383
last-modified: Sun, 23 Jan 2022 06:12:28 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sun, 04 Dec 2022 13:04:20 GMT
etag: "b55e5597f2da5971074d4533a50d172b"
x-cache: RefreshHit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: D9iq_xblDnvrRuJktUI1nw8U03KtVyAqSXvcv5BNgYBWD87bDljJJg==
X-Firefox-Spdy: h2
user-images.trustpilot.com/61e93344abf9a300128398a8/73x73.png
143.204.55.96200 OK 16 kB URL HTTP/2 user-images.trustpilot.com/61e93344abf9a300128398a8/73x73.png
IP 143.204.55.96:0
File type PNG image data, 73 x 73, 8-bit/color RGB, non-interlaced\012- data
Hash 3f4f3aba6ce9bebff9b8694f1aaa5e74
1c8c3f30722ade0c1a199ff8d6abb51c273e2d2b
dfdf0036c99f47e7ce4cc7290408308f2e730dff0de1bed6640fdde2d5173133
GET /61e93344abf9a300128398a8/73x73.png HTTP/1.1
Host: user-images.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 15575
last-modified: Thu, 20 Jan 2022 10:10:09 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sun, 04 Dec 2022 13:04:20 GMT
etag: "3f4f3aba6ce9bebff9b8694f1aaa5e74"
x-cache: RefreshHit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: QGk8fPyTU-zJ_gL8jF78g7_cauRX4lNYnmMtDvp46ocx0pq-Ku7bZw==
X-Firefox-Spdy: h2
cdn.trustindex.io/assets/default-avatar/noprofile-08.svg
143.204.55.84200 OK 815 B URL HTTP/2 cdn.trustindex.io/assets/default-avatar/noprofile-08.svg
IP 143.204.55.84:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text, with very long lines (815), with no line terminators
Hash 196996bd22d795bee589dc21021ebee1
440d7b673006b532fc0cfea98aaaab3269ab8617
d7b7374854e5b833930ab69ce33d9a0f4b3d68cccebde32b1594a6617b197874
GET /assets/default-avatar/noprofile-08.svg HTTP/1.1
Host: cdn.trustindex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 815
date: Tue, 01 Nov 2022 09:38:09 GMT
server: Apache/2.4.29 (Ubuntu)
last-modified: Tue, 22 Feb 2022 22:43:27 GMT
etag: "32f-5d8a313d8d12c"
accept-ranges: bytes
referrer-policy: origin
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
cache-control: max-age=31536000, public
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: QtJWjwGujKsTWEckSfr6K1e2u2SBDCUZ6AyfHfN98XLKdAKQ0e49cw==
age: 2863571
X-Firefox-Spdy: h2
user-images.trustpilot.com/61ec3c7599fb440012f1ea6b/73x73.png
143.204.55.96200 OK 15 kB URL HTTP/2 user-images.trustpilot.com/61ec3c7599fb440012f1ea6b/73x73.png
IP 143.204.55.96:0
File type PNG image data, 73 x 73, 8-bit/color RGB, non-interlaced\012- data
Hash 354f0ecba473e8e7c1b3478f4f9f45ea
ababe3940f868329476353c66c18ed1d8c74055a
b8aa9ffebbf89f3a173effdb243c81a4f92d12d735287bd85ae9ae5c21c09156
GET /61ec3c7599fb440012f1ea6b/73x73.png HTTP/1.1
Host: user-images.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 14826
last-modified: Sat, 22 Jan 2022 17:19:51 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sun, 04 Dec 2022 13:04:20 GMT
etag: "354f0ecba473e8e7c1b3478f4f9f45ea"
x-cache: RefreshHit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: H46X_bCMsAXWL8NCotxop6SHfRbfcKpiE69AITQ_G8f0UycQM-U8CA==
X-Firefox-Spdy: h2
cdn.trustindex.io/assets/platform/Facebook/recommendation-positive.svg
143.204.55.84200 OK 8.6 kB URL HTTP/2 cdn.trustindex.io/assets/platform/Facebook/recommendation-positive.svg
IP 143.204.55.84:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text, with very long lines (65536), with no line terminators
Hash bf8c00b76ae3124437aba8b81971752a
19cb611f9fdde04170ce353357982db1c1efc671
bb1d2485f86e174eb095144252f2d56eefaba569503bbfe44200c1ab2dbe84b0
GET /assets/platform/Facebook/recommendation-positive.svg HTTP/1.1
Host: cdn.trustindex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cdn.trustindex.io/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Fri, 04 Nov 2022 15:02:33 GMT
server: Apache/2.4.29 (Ubuntu)
last-modified: Tue, 22 Feb 2022 22:43:27 GMT
etag: W/"7ae-5d8a313da09a9"
referrer-policy: origin
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
cache-control: max-age=31536000, public
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3b587NztFkFhoLqhztATjeHj_B0XOv_66NNRx33YQjTtnwMIYQ4bEA==
age: 2584906
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 10f650eab2c3a4b09f1302d8e8642073
f798a9ae0f0022ec3e521f6db8cfd8b6b002e121
ce36e7a5a0a1bfdf0134bdcf6717c5b4e1f47202601f7b526fa786d8616303e3
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sun, 04 Dec 2022 13:04:19 GMT
Etag: "638c3a53-1d7"
Server: ECS (dcb/7F3B)
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: egDhL3D8OQ0F-LIotpmIg-9JNgWgGyjq_naGk1RCinq7hrxbbZKYKA==
gramiety.com/wp-content/plugins/elementor-pro/assets/js/form.72b77b99d67b130634d2.bundle.min.js
35.209.33.137200 OK 86 kB URL HTTP/2 gramiety.com/wp-content/plugins/elementor-pro/assets/js/form.72b77b99d67b130634d2.bundle.min.js
IP 35.209.33.137:0
File type ASCII text, with very long lines (19201)
Hash c8e15010c2ad93d4e1ccf94c88e91d02
9642562e131f9a9846a72d041976a8e38a51fb6d
b00685b0f712f29d435cd3e0ad6ed30375eb77a3b52466eece687625efca7e58
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/form.72b77b99d67b130634d2.bundle.min.js HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D; _cq_duid=1.1670159055.WwJnC0gbZwWkWKMi; _cq_suid=1.1670159055.vGxDgwAycnsFV5UC; _fw_crm_v=5a2221b8-bcc9-49b6-d11c-070ad57ff362; first_session=%7B%22visits%22%3A1%2C%22start%22%3A1670159055491%2C%22last_visit%22%3A1670159055491%2C%22url%22%3A%22https%3A%2F%2Fgramiety.com%2F%22%2C%22path%22%3A%22%2F%22%2C%22referrer%22%3A%22%22%2C%22referrer_info%22%3A%7B%22host%22%3A%22%22%2C%22path%22%3A%22%22%2C%22protocol%22%3A%22about%3A%22%2C%22port%22%3A80%2C%22search%22%3A%22%22%2C%22query%22%3A%7B%7D%7D%2C%22search%22%3A%7B%22engine%22%3Anull%2C%22query%22%3Anull%7D%2C%22version%22%3A0.4%7D; _gcl_au=1.1.71926102.1670159056; _ga=GA1.2.121937375.1670159056; _gid=GA1.2.1681541601.1670159056; _gat_gtag_UA_102955589_1=1; _gat_UA-102955589-1=1; _hjSessionUser_1630950=eyJpZCI6IjE5ZWUzY2E2LTA2YjEtNWRmYi1hNWFkLTllNTg0Zjc3OTFkNiIsImNyZWF0ZWQiOjE2NzAxNTkwNTYzNzksImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_1630950=eyJpZCI6IjRkNDQ3YTUyLTI2MmItNGQ4OS1hZGIwLTA3ODcwMTg3ZDQ5YyIsImNyZWF0ZWQiOjE2NzAxNTkwNTY0MDYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:19 GMT
content-type: application/javascript
last-modified: Tue, 22 Nov 2022 03:59:43 GMT
vary: Accept-Encoding
etag: W/"637c492f-4b2c"
expires: Mon, 04 Dec 2023 13:04:19 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd0b48347644ddc60fb16b04140cfcb7
ef8d6c8e3c979e98c82655290150aa14fe5d44d1
f3d27c16653ed979a7cce2dc6239a48a86c7dab2fc34949b540802e50b05275a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1520
Cache-Control: max-age=108991
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:04:20 GMT
Etag: "638b9ba3-1d7"
Expires: Mon, 05 Dec 2022 19:20:51 GMT
Last-Modified: Sat, 03 Dec 2022 18:55:31 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd0b48347644ddc60fb16b04140cfcb7
ef8d6c8e3c979e98c82655290150aa14fe5d44d1
f3d27c16653ed979a7cce2dc6239a48a86c7dab2fc34949b540802e50b05275a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1520
Cache-Control: max-age=108991
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:04:20 GMT
Etag: "638b9ba3-1d7"
Expires: Mon, 05 Dec 2022 19:20:51 GMT
Last-Modified: Sat, 03 Dec 2022 18:55:31 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
graph.facebook.com/4401482873290786/picture?access_token=EAACW8aYRzLUBANDg4cJGIH7XPG3ZB4MoQL0nnvfVmQBnVs1gkln8InGGg3AHIHtuoRiED0nRLQuSWsYqixWMM0tD9BRHgHqC0H4t6zreb7uqzl1vqioMnFZAvoA1EpbIqK5nxgqKrfD4JoIo5jcHSUHpoGAAB4X2biJ0QTs12wuO3dZBMP7a1AAWWcx0VUZD&type=square&width=160
157.240.240.17400 Bad Request 217 B URL HTTP/2 graph.facebook.com/4401482873290786/picture?access_token=EAACW8aYRzLUBANDg4cJGIH7XPG3ZB4MoQL0nnvfVmQBnVs1gkln8InGGg3AHIHtuoRiED0nRLQuSWsYqixWMM0tD9BRHgHqC0H4t6zreb7uqzl1vqioMnFZAvoA1EpbIqK5nxgqKrfD4JoIo5jcHSUHpoGAAB4X2biJ0QTs12wuO3dZBMP7a1AAWWcx0VUZD&type=square&width=160
IP 157.240.240.17:0
File type JSON data\012- , ASCII text
Hash 7ede607566213c2a5e9b41d0dbcc9803
687230bb43a7dcb8d381a5d8daee871d536f0d07
28dda0644d007e41173cf4a44d643fd9995774478db86696b10ac98909ddedda
GET /4401482873290786/picture?access_token=EAACW8aYRzLUBANDg4cJGIH7XPG3ZB4MoQL0nnvfVmQBnVs1gkln8InGGg3AHIHtuoRiED0nRLQuSWsYqixWMM0tD9BRHgHqC0H4t6zreb7uqzl1vqioMnFZAvoA1EpbIqK5nxgqKrfD4JoIo5jcHSUHpoGAAB4X2biJ0QTs12wuO3dZBMP7a1AAWWcx0VUZD&type=square&width=160 HTTP/1.1
Host: graph.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
content-encoding: br
vary: Origin, Accept-Encoding
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-app-usage: {"call_count":0,"total_cputime":0,"total_time":0}
x-fb-rlafr: 0
content-type: application/json; charset=UTF-8
www-authenticate: OAuth "Facebook Platform" "invalid_token" "Error validating access token: Session has expired on Tuesday, 08-Feb-22 15:49:06 PST. The current time is Sunday, 04-Dec-22 05:04:20 PST."
strict-transport-security: max-age=15552000; preload
pragma: no-cache
cache-control: no-store
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-fb-request-id: ApgC4lXAbOp9pIx4esV_ekz
x-fb-trace-id: HReZdK+34xz
x-fb-rev: 1006681262
x-fb-debug: mjZtN4wdrdnrrmHEs4oUC8gtZbhNScoB2d7Tn1vjt52ImEUjBshBirGAgazwjmUvsg5kbduJuAmDQ2o3AxDP6g==
content-length: 217
date: Sun, 04 Dec 2022 13:04:20 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd0b48347644ddc60fb16b04140cfcb7
ef8d6c8e3c979e98c82655290150aa14fe5d44d1
f3d27c16653ed979a7cce2dc6239a48a86c7dab2fc34949b540802e50b05275a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1520
Cache-Control: max-age=108991
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:04:20 GMT
Etag: "638b9ba3-1d7"
Expires: Mon, 05 Dec 2022 19:20:51 GMT
Last-Modified: Sat, 03 Dec 2022 18:55:31 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 2dabd839729e9b0fb2558253d850126b
64f617aa0afb52168ef3519a4cf9829ac61ee007
1a47e4d0efdac6fbec990e3e168bfdfe615ff8953158773e8b1940d4d91eee18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:04:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 2dabd839729e9b0fb2558253d850126b
64f617aa0afb52168ef3519a4cf9829ac61ee007
1a47e4d0efdac6fbec990e3e168bfdfe615ff8953158773e8b1940d4d91eee18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:04:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-102955589-1&cid=121937375.1670159056&jid=55191674&gjid=366284113&_gid=1681541601.1670159056&_u=YEBAAUAAAAAAACAAI~&z=1365108904
64.233.165.155200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-102955589-1&cid=121937375.1670159056&jid=55191674&gjid=366284113&_gid=1681541601.1670159056&_u=YEBAAUAAAAAAACAAI~&z=1365108904
IP 64.233.165.155:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-102955589-1&cid=121937375.1670159056&jid=55191674&gjid=366284113&_gid=1681541601.1670159056&_u=YEBAAUAAAAAAACAAI~&z=1365108904 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://gramiety.com
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://gramiety.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 04 Dec 2022 13:04:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-102955589-1&cid=121937375.1670159056&jid=1258671617&gjid=1872783134&_gid=1681541601.1670159056&_u=YEDAAUABAAAAACAAI~&z=607957357
64.233.165.155200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-102955589-1&cid=121937375.1670159056&jid=1258671617&gjid=1872783134&_gid=1681541601.1670159056&_u=YEDAAUABAAAAACAAI~&z=607957357
IP 64.233.165.155:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-102955589-1&cid=121937375.1670159056&jid=1258671617&gjid=1872783134&_gid=1681541601.1670159056&_u=YEDAAUABAAAAACAAI~&z=607957357 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://gramiety.com
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://gramiety.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 04 Dec 2022 13:04:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 2dabd839729e9b0fb2558253d850126b
64f617aa0afb52168ef3519a4cf9829ac61ee007
1a47e4d0efdac6fbec990e3e168bfdfe615ff8953158773e8b1940d4d91eee18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:04:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ws7.hotjar.com/api/v2/client/ws
63.33.224.198101 Switching Protocols 0 B URL HTTP/1.1 ws7.hotjar.com/api/v2/client/ws
IP 63.33.224.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/v2/client/ws HTTP/1.1
Host: ws7.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://gramiety.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: OB7ec3ssLqAci1SLbhMlkw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Sun, 04 Dec 2022 13:04:20 GMT
Content-Type: application/octet-stream
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ep3z2QVd7dgHA9p1sl7HYsm6JqY=
Sec-WebSocket-Extensions: permessage-deflate
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 7c9e0bb25e8c28e8b10038806b0a7190
9fa6097aeb8eacde8ba7c9ab80a7a7d2405ae2bc
f4864000960be2f888ed7d2467f74130231fed6f56ad48ff15861f5769e95a58
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:04:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 663979bbd831a40bec8611cfac8d77af
aa43c96676a33100f244e6772e37adc2b6f89b76
60c21027da288e857f546b531dd226d81206bfa85a35985b0e1587a68dec4d5b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:04:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 663979bbd831a40bec8611cfac8d77af
aa43c96676a33100f244e6772e37adc2b6f89b76
60c21027da288e857f546b531dd226d81206bfa85a35985b0e1587a68dec4d5b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:04:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gramiety.com/wp-content/plugins/link-whisper-premium/js/frontend.js?ver=1664535898
35.209.33.137200 OK 2.7 kB URL HTTP/2 gramiety.com/wp-content/plugins/link-whisper-premium/js/frontend.js?ver=1664535898
IP 35.209.33.137:0
File type ASCII text, with CRLF line terminators
Hash a1f780d7b3cd3312a4a146bfaff7280e
6f4fc434bf2fe5d1dfb88af37c9f4e5634795687
857a3c454ca25034c2d992842e169d4af06873e43b4d3559ffcb804b61037d24
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/link-whisper-premium/js/frontend.js?ver=1664535898 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: application/javascript
last-modified: Fri, 30 Sep 2022 11:04:58 GMT
vary: Accept-Encoding
etag: W/"6336cd5a-25c3"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-102955589-1&cid=121937375.1670159056&jid=55191674&_u=YEBAAUAAAAAAACAAI~&z=644143187
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-102955589-1&cid=121937375.1670159056&jid=55191674&_u=YEBAAUAAAAAAACAAI~&z=644143187
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-102955589-1&cid=121937375.1670159056&jid=55191674&_u=YEBAAUAAAAAAACAAI~&z=644143187 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 04 Dec 2022 13:04:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-102955589-1&cid=121937375.1670159056&jid=1258671617&_u=YEDAAUABAAAAACAAI~&z=1156006433
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-102955589-1&cid=121937375.1670159056&jid=1258671617&_u=YEDAAUABAAAAACAAI~&z=1156006433
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-102955589-1&cid=121937375.1670159056&jid=1258671617&_u=YEDAAUABAAAAACAAI~&z=1156006433 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 04 Dec 2022 13:04:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-102955589-1&cid=121937375.1670159056&jid=55191674&_u=YEBAAUAAAAAAACAAI~&z=644143187
142.250.74.35200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-102955589-1&cid=121937375.1670159056&jid=55191674&_u=YEBAAUAAAAAAACAAI~&z=644143187
IP 142.250.74.35:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-102955589-1&cid=121937375.1670159056&jid=55191674&_u=YEBAAUAAAAAAACAAI~&z=644143187 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 04 Dec 2022 13:04:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-102955589-1&cid=121937375.1670159056&jid=1258671617&_u=YEDAAUABAAAAACAAI~&z=1156006433
142.250.74.35200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-102955589-1&cid=121937375.1670159056&jid=1258671617&_u=YEDAAUABAAAAACAAI~&z=1156006433
IP 142.250.74.35:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-102955589-1&cid=121937375.1670159056&jid=1258671617&_u=YEDAAUABAAAAACAAI~&z=1156006433 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 04 Dec 2022 13:04:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash f54a71942ab5d7fdc54672cf84aa76db
e03db706ad371c93ddd3cc4a3e4c329777bb5f4b
87453ee6a206085c9b82594123a30bf59f7354733d19f21e388dea70768198c9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:04:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 663979bbd831a40bec8611cfac8d77af
aa43c96676a33100f244e6772e37adc2b6f89b76
60c21027da288e857f546b531dd226d81206bfa85a35985b0e1587a68dec4d5b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:04:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gramiety.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/magnific.min.js?ver=1.1.0
35.209.33.137200 OK 0 B URL HTTP/2 gramiety.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/magnific.min.js?ver=1.1.0
IP 35.209.33.137:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/magnific.min.js?ver=1.1.0 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: application/javascript
last-modified: Thu, 22 Sep 2022 11:05:00 GMT
vary: Accept-Encoding
etag: W/"632c415c-4daf"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
35.209.33.137200 OK 0 B URL HTTP/2 gramiety.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 35.209.33.137:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 23:14:42 GMT
vary: Accept-Encoding
etag: W/"63717a62-2fa6"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
35.209.33.137200 OK 0 B URL HTTP/2 gramiety.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 35.209.33.137:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: application/javascript
last-modified: Fri, 30 Sep 2022 11:21:12 GMT
vary: Accept-Encoding
etag: W/"6336d128-48b9"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-content/themes/stratusx-child/style.css?ver=6.1.1
35.209.33.137200 OK 0 B URL HTTP/2 gramiety.com/wp-content/themes/stratusx-child/style.css?ver=6.1.1
IP 35.209.33.137:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/stratusx-child/style.css?ver=6.1.1 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: text/css
last-modified: Tue, 09 Feb 2021 18:57:59 GMT
vary: Accept-Encoding
etag: W/"6022db37-169"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=1.0
35.209.33.137200 OK 0 B URL HTTP/2 gramiety.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=1.0
IP 35.209.33.137:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=1.0 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 23:14:42 GMT
vary: Accept-Encoding
etag: W/"63717a62-3acf"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.8.2
35.209.33.137200 OK 0 B URL HTTP/2 gramiety.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.8.2
IP 35.209.33.137:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.8.2 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: text/css
last-modified: Tue, 22 Nov 2022 03:59:43 GMT
vary: Accept-Encoding
etag: W/"637c492f-2eee"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
9c0d0f6e0d2c41899371785bd861b2cf.js.ubembed.com/
151.101.65.131200 OK 0 B URL HTTP/2 9c0d0f6e0d2c41899371785bd861b2cf.js.ubembed.com/
IP 151.101.65.131:0
GET / HTTP/1.1
Host: 9c0d0f6e0d2c41899371785bd861b2cf.js.ubembed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
x-amz-apigw-id: cn0gvGxVDoEF9TQ=
x-amz-cf-pop: ARN54-C1
x-backend-region: eu_west_1
date: Sun, 04 Dec 2022 13:04:17 GMT
age: 0
x-cache: Miss from cloudfront, MISS
access-control-allow-origin: *
cache-control: max-age=0, must-revalidate
vary: Accept-Encoding, Referer
etag: W/5345d7cf5f5ffc730b1cbc9d0b0d71e2-v0.179.2
content-encoding: br
accept-ranges: none
X-Firefox-Spdy: h2
gramiety.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1
35.209.33.137200 OK 0 B URL HTTP/2 gramiety.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1
IP 35.209.33.137:0
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 23:14:42 GMT
vary: Accept-Encoding
etag: W/"63717a62-135d"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/
35.209.33.137200 OK 0 B IP 35.209.33.137:0
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:16 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
link: <https://gramiety.com/wp-json/>; rel="https://api.w.org/", <https://gramiety.com/wp-json/wp/v2/pages/2714>; rel="alternate"; type="application/json", <https://gramiety.com/>; rel=shortlink
set-cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D; expires=Mon, 04-Dec-2023 14:10:54 GMT; Max-Age=31540000; path=/
x-httpd: 1
host-header: 6b7412fb82ca5edfd0917e3957f05d89
x-proxy-cache: EXPIRED
x-proxy-cache-info: 0 NC:000000 UP:SKIP_CACHE_SET_COOKIE
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-content/themes/stratusx/assets/css/app.css?ver=1
35.209.33.137200 OK 0 B URL HTTP/2 gramiety.com/wp-content/themes/stratusx/assets/css/app.css?ver=1
IP 35.209.33.137:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/stratusx/assets/css/app.css?ver=1 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: text/css
last-modified: Sun, 02 Jan 2022 03:05:32 GMT
vary: Accept-Encoding
etag: W/"61d1167c-46e6f"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
ws7.hotjar.com/api/v2/sites/1630950/recordings/content
63.33.224.198200 OK 0 B URL HTTP/2 ws7.hotjar.com/api/v2/sites/1630950/recordings/content
IP 63.33.224.198:0
POST /api/v2/sites/1630950/recordings/content HTTP/1.1
Host: ws7.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 697296
Origin: https://gramiety.com
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 13:04:20 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
IP 142.250.74.106:0
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 04 Dec 2022 13:04:17 GMT
date: Sun, 04 Dec 2022 13:04:17 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
gramiety.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
35.209.33.137200 OK 0 B URL HTTP/2 gramiety.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 35.209.33.137:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 10:47:29 GMT
vary: Accept-Encoding
etag: W/"63639c41-53c0"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
35.209.33.137200 OK 0 B URL HTTP/2 gramiety.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
IP 35.209.33.137:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D; _cq_duid=1.1670159055.WwJnC0gbZwWkWKMi; _cq_suid=1.1670159055.vGxDgwAycnsFV5UC; _fw_crm_v=5a2221b8-bcc9-49b6-d11c-070ad57ff362; first_session=%7B%22visits%22%3A1%2C%22start%22%3A1670159055491%2C%22last_visit%22%3A1670159055491%2C%22url%22%3A%22https%3A%2F%2Fgramiety.com%2F%22%2C%22path%22%3A%22%2F%22%2C%22referrer%22%3A%22%22%2C%22referrer_info%22%3A%7B%22host%22%3A%22%22%2C%22path%22%3A%22%22%2C%22protocol%22%3A%22about%3A%22%2C%22port%22%3A80%2C%22search%22%3A%22%22%2C%22query%22%3A%7B%7D%7D%2C%22search%22%3A%7B%22engine%22%3Anull%2C%22query%22%3Anull%7D%2C%22version%22%3A0.4%7D; _gcl_au=1.1.71926102.1670159056; _ga=GA1.2.121937375.1670159056; _gid=GA1.2.1681541601.1670159056; _gat_gtag_UA_102955589_1=1; _gat_UA-102955589-1=1; _hjSessionUser_1630950=eyJpZCI6IjE5ZWUzY2E2LTA2YjEtNWRmYi1hNWFkLTllNTg0Zjc3OTFkNiIsImNyZWF0ZWQiOjE2NzAxNTkwNTYzNzksImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_1630950=eyJpZCI6IjRkNDQ3YTUyLTI2MmItNGQ4OS1hZGIwLTA3ODcwMTg3ZDQ5YyIsImNyZWF0ZWQiOjE2NzAxNTkwNTY0MDYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:19 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 23:14:42 GMT
vary: Accept-Encoding
etag: W/"63717a62-54f"
expires: Mon, 04 Dec 2023 13:04:19 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
35.209.33.137200 OK 0 B URL HTTP/2 gramiety.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 35.209.33.137:0
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: application/javascript
last-modified: Fri, 30 Sep 2022 11:21:12 GMT
vary: Accept-Encoding
etag: W/"6336d128-2bd8"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-content/plugins/clickcease-click-fraud-protection/includes/assets/js/front-end.js?ver=6.1.1
35.209.33.137200 OK 0 B URL HTTP/2 gramiety.com/wp-content/plugins/clickcease-click-fraud-protection/includes/assets/js/front-end.js?ver=6.1.1
IP 35.209.33.137:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/clickcease-click-fraud-protection/includes/assets/js/front-end.js?ver=6.1.1 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: application/javascript
last-modified: Wed, 16 Nov 2022 03:04:40 GMT
vary: Accept-Encoding
etag: W/"63745348-9a8"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-content/themes/stratusx/assets/js/main.js?ver=1.3
35.209.33.137200 OK 0 B URL HTTP/2 gramiety.com/wp-content/themes/stratusx/assets/js/main.js?ver=1.3
IP 35.209.33.137:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/stratusx/assets/js/main.js?ver=1.3 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: application/javascript
last-modified: Sun, 02 Jan 2022 03:05:32 GMT
vary: Accept-Encoding
etag: W/"61d1167c-2798"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
35.209.33.137200 OK 0 B URL HTTP/2 gramiety.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
IP 35.209.33.137:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: application/javascript
last-modified: Fri, 30 Sep 2022 11:21:12 GMT
vary: Accept-Encoding
etag: W/"6336d128-132e"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-1630950.js?sv=6
54.230.111.113200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-1630950.js?sv=6
IP 54.230.111.113:0
GET /c/hotjar-1630950.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Sun, 04 Dec 2022 13:04:18 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: W/100899344440da1bdcfa4a5a48701881
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: aF0Znxs0--cYYmXtyJvqLh4SUkuw8j1a6dtda8NLrDjQs6NQN_7x5Q==
X-Firefox-Spdy: h2
gramiety.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.8.1
35.209.33.137200 OK 0 B URL HTTP/2 gramiety.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.8.1
IP 35.209.33.137:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.8.1 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 23:14:42 GMT
vary: Accept-Encoding
etag: W/"63717a62-35ed"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-content/uploads/elementor/css/post-3286.css?ver=1661987394
35.209.33.137200 OK 0 B URL HTTP/2 gramiety.com/wp-content/uploads/elementor/css/post-3286.css?ver=1661987394
IP 35.209.33.137:0
GET /wp-content/uploads/elementor/css/post-3286.css?ver=1661987394 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: text/css
last-modified: Wed, 31 Aug 2022 23:09:54 GMT
vary: Accept-Encoding
etag: W/"630fea42-3a82"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
fw-cdn.com/817800/1889801.js
143.204.55.101200 OK 0 B URL HTTP/2 fw-cdn.com/817800/1889801.js
IP 143.204.55.101:0
GET /817800/1889801.js HTTP/1.1
Host: fw-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
last-modified: Mon, 27 Jun 2022 10:42:10 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 6hDhV76Hy2vWJvcK.G1eHUXcYhPZt_2i
server: AmazonS3
content-encoding: br
date: Sun, 04 Dec 2022 13:04:18 GMT
cache-control: max-age=120
etag: W/"e67d40e3abced3a459dbbd2a0b26930b"
x-cache: RefreshHit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: McyvtxZyftAYXPRbN9A3tGjoynvcfOkgNveG-OSSA1a8o5pcWQ-ywg==
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
gramiety.com/wp-content/uploads/elementor/css/post-2714.css?ver=1664536242
35.209.33.137200 OK 0 B URL HTTP/2 gramiety.com/wp-content/uploads/elementor/css/post-2714.css?ver=1664536242
IP 35.209.33.137:0
GET /wp-content/uploads/elementor/css/post-2714.css?ver=1664536242 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: text/css
last-modified: Fri, 30 Sep 2022 11:10:42 GMT
vary: Accept-Encoding
etag: W/"6336ceb2-2a172"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
35.209.33.137200 OK 0 B URL HTTP/2 gramiety.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 35.209.33.137:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 10:47:29 GMT
vary: Accept-Encoding
etag: W/"63639c41-15e54"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/vegas/vegas.min.css?ver=2.4.0
35.209.33.137200 OK 0 B URL HTTP/2 gramiety.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/vegas/vegas.min.css?ver=2.4.0
IP 35.209.33.137:0
GET /wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/vegas/vegas.min.css?ver=2.4.0 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: text/css
last-modified: Thu, 22 Sep 2022 11:05:00 GMT
vary: Accept-Encoding
etag: W/"632c415c-251f"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/eae.min.js?ver=1.11.16
35.209.33.137200 OK 0 B URL HTTP/2 gramiety.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/eae.min.js?ver=1.11.16
IP 35.209.33.137:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/eae.min.js?ver=1.11.16 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: application/javascript
last-modified: Thu, 22 Sep 2022 11:05:00 GMT
vary: Accept-Encoding
etag: W/"632c415c-c64d"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-content/plugins/th-widget-pack/header-footer/inc/js/frontend.js?ver=2.1.14
35.209.33.137200 OK 0 B URL HTTP/2 gramiety.com/wp-content/plugins/th-widget-pack/header-footer/inc/js/frontend.js?ver=2.1.14
IP 35.209.33.137:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/th-widget-pack/header-footer/inc/js/frontend.js?ver=2.1.14 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: application/javascript
last-modified: Fri, 22 Apr 2022 23:07:19 GMT
vary: Accept-Encoding
etag: W/"62633527-6384"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-content/plugins/th-widget-pack/js/themo-foot.js?ver=2.1.14
35.209.33.137200 OK 0 B URL HTTP/2 gramiety.com/wp-content/plugins/th-widget-pack/js/themo-foot.js?ver=2.1.14
IP 35.209.33.137:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/th-widget-pack/js/themo-foot.js?ver=2.1.14 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: application/javascript
last-modified: Fri, 22 Apr 2022 23:07:18 GMT
vary: Accept-Encoding
etag: W/"62633526-2b02"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1
35.209.33.137200 OK 0 B URL HTTP/2 gramiety.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1
IP 35.209.33.137:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 23:14:42 GMT
vary: Accept-Encoding
etag: W/"63717a62-80b3"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
js.chargebee.com/v2/chargebee.js
143.204.55.121200 OK 0 B URL HTTP/2 js.chargebee.com/v2/chargebee.js
IP 143.204.55.121:0
GET /v2/chargebee.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Thu, 01 Dec 2022 09:41:55 GMT
x-amz-version-id: RveTiTmkpCH0fuNqoksSEaicPdWRNs_O
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Sun, 04 Dec 2022 13:02:36 GMT
cache-control: max-age=300,public
etag: W/"5d7e4b0b322d1f38131de5b8c8542a4e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: MONoDVk1D_Seus_d19RZwE6OK3tQQrw02jB9i73hwLOY0DxEDuqEjQ==
age: 102
X-Firefox-Spdy: h2
gramiety.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
35.209.33.137200 OK 0 B URL HTTP/2 gramiety.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
IP 35.209.33.137:0
GET /wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 10:47:29 GMT
vary: Accept-Encoding
etag: W/"63639c41-27f6"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-content/plugins/wp-reading-progress/wp-reading-progress.min.js?ver=1.4.0
35.209.33.137200 OK 0 B URL HTTP/2 gramiety.com/wp-content/plugins/wp-reading-progress/wp-reading-progress.min.js?ver=1.4.0
IP 35.209.33.137:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-reading-progress/wp-reading-progress.min.js?ver=1.4.0 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: application/javascript
last-modified: Tue, 30 Aug 2022 22:29:45 GMT
vary: Accept-Encoding
etag: W/"630e8f59-db7"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
35.209.33.137200 OK 0 B URL HTTP/2 gramiety.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
IP 35.209.33.137:0
GET /wp-content/plugins/elementor/assets/css/widget-icon-list.min.css HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 23:14:42 GMT
vary: Accept-Encoding
etag: W/"63717a62-2dff"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/?clickcease=block
35.209.33.137403 Forbidden 0 B URL HTTP/2 gramiety.com/?clickcease=block
IP 35.209.33.137:0
Analyzer Verdict Alert fortinet Phishing
GET /?clickcease=block HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D; _cq_duid=1.1670159055.WwJnC0gbZwWkWKMi; _cq_suid=1.1670159055.vGxDgwAycnsFV5UC; _fw_crm_v=5a2221b8-bcc9-49b6-d11c-070ad57ff362; first_session=%7B%22visits%22%3A1%2C%22start%22%3A1670159055491%2C%22last_visit%22%3A1670159055491%2C%22url%22%3A%22https%3A%2F%2Fgramiety.com%2F%22%2C%22path%22%3A%22%2F%22%2C%22referrer%22%3A%22%22%2C%22referrer_info%22%3A%7B%22host%22%3A%22%22%2C%22path%22%3A%22%22%2C%22protocol%22%3A%22about%3A%22%2C%22port%22%3A80%2C%22search%22%3A%22%22%2C%22query%22%3A%7B%7D%7D%2C%22search%22%3A%7B%22engine%22%3Anull%2C%22query%22%3Anull%7D%2C%22version%22%3A0.4%7D; _gcl_au=1.1.71926102.1670159056; _ga=GA1.2.121937375.1670159056; _gid=GA1.2.1681541601.1670159056; _gat_gtag_UA_102955589_1=1; _gat_UA-102955589-1=1; _hjSessionUser_1630950=eyJpZCI6IjE5ZWUzY2E2LTA2YjEtNWRmYi1hNWFkLTllNTg0Zjc3OTFkNiIsImNyZWF0ZWQiOjE2NzAxNTkwNTYzNzksImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_1630950=eyJpZCI6IjRkNDQ3YTUyLTI2MmItNGQ4OS1hZGIwLTA3ODcwMTg3ZDQ5YyIsImNyZWF0ZWQiOjE2NzAxNTkwNTY0MDYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 403 Forbidden
server: nginx
date: Sun, 04 Dec 2022 13:04:22 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: _cheq_rti=%2BxFNUSVyNEUVeWkR7nDqxKg8OSc%3DlUpiovF53k7VEftzvtH2Duv9iN%2FUfayQlQr%2BjueQmkcZLk55GWvfIFZxe%2Fh3nKSffr5aUny34KlV8wqW57ztFqBLIjqMbCqAQ7tf6mVza40WWuNDVTxVspFNcjuEfhTAsjI%3D; expires=Mon, 04-Dec-2023 14:11:01 GMT; Max-Age=31540000; path=/
x-httpd: 1
host-header: 6b7412fb82ca5edfd0917e3957f05d89
x-proxy-cache: MISS
x-proxy-cache-info: 0 NC:000000 UP:SKIP_CACHE_SET_COOKIE
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-content/plugins/th-widget-pack/header-footer/inc/widgets-css/frontend.css?ver=2.1.14
35.209.33.137200 OK 0 B URL HTTP/2 gramiety.com/wp-content/plugins/th-widget-pack/header-footer/inc/widgets-css/frontend.css?ver=2.1.14
IP 35.209.33.137:0
GET /wp-content/plugins/th-widget-pack/header-footer/inc/widgets-css/frontend.css?ver=2.1.14 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: text/css
last-modified: Fri, 22 Apr 2022 23:07:19 GMT
vary: Accept-Encoding
etag: W/"62633527-13c18"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/animated-main.min.js?ver=1.0
35.209.33.137200 OK 0 B URL HTTP/2 gramiety.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/animated-main.min.js?ver=1.0
IP 35.209.33.137:0
GET /wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/animated-main.min.js?ver=1.0 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: application/javascript
last-modified: Thu, 22 Sep 2022 11:05:00 GMT
vary: Accept-Encoding
etag: W/"632c415c-8db"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-content/uploads/elementor/css/post-5513.css?ver=1661987394
35.209.33.137200 OK 0 B URL HTTP/2 gramiety.com/wp-content/uploads/elementor/css/post-5513.css?ver=1661987394
IP 35.209.33.137:0
GET /wp-content/uploads/elementor/css/post-5513.css?ver=1661987394 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: text/css
last-modified: Wed, 31 Aug 2022 23:09:54 GMT
vary: Accept-Encoding
etag: W/"630fea42-9dba"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=1.0
35.209.33.137200 OK 0 B URL HTTP/2 gramiety.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=1.0
IP 35.209.33.137:0
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=1.0 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 23:14:42 GMT
vary: Accept-Encoding
etag: W/"63717a62-684e"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-content/uploads/elementor/css/post-2241.css?ver=1661987393
35.209.33.137200 OK 0 B URL HTTP/2 gramiety.com/wp-content/uploads/elementor/css/post-2241.css?ver=1661987393
IP 35.209.33.137:0
GET /wp-content/uploads/elementor/css/post-2241.css?ver=1661987393 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: text/css
last-modified: Wed, 31 Aug 2022 23:09:53 GMT
vary: Accept-Encoding
etag: W/"630fea41-7c1"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
35.209.33.137200 OK 0 B URL HTTP/2 gramiety.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP 35.209.33.137:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 23:14:42 GMT
vary: Accept-Encoding
etag: W/"63717a62-7917"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
35.209.33.137200 OK 0 B URL HTTP/2 gramiety.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 35.209.33.137:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 10:47:29 GMT
vary: Accept-Encoding
etag: W/"63639c41-459f"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
gramiety.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1
35.209.33.137200 OK 0 B URL HTTP/2 gramiety.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1
IP 35.209.33.137:0
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1 HTTP/1.1
Host: gramiety.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gramiety.com/
Cookie: _cheq_rti=WfuUsxKU0bE8HC6c7TNU3oUZPGc%3DQRtSQhaJ652Yd9Kx62ix3wlYypsbSeSPzyr861SXjghkv9pMOuN%2FYd6ztP3a3aIzRiB%2Ff1Ok4N0%2Bt%2BQnqcKsBzhbbY1iYCDV%2Bp%2BqszwkdnuKkXQ6RwrcdEtim0vhC2BrvCM%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:04:17 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 23:14:42 GMT
vary: Accept-Encoding
etag: W/"63717a62-19538"
expires: Mon, 04 Dec 2023 13:04:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2