r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1273d41c84b2b39f78a8033130d00282
556757697b70e019ed502585fcc888e2403f3229
ee3c03cc0a659fbc43d34feaa79a8ad6627b9c525d675956cdb434c1590db89e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EE3C03CC0A659FBC43D34FEAA79A8AD6627B9C525D675956CDB434C1590DB89E"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16851
Expires: Fri, 07 Oct 2022 12:27:30 GMT
Date: Fri, 07 Oct 2022 07:46:39 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
54.230.111.118200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.118:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Wor43SX6wqIjNLWAayY-eBOiW7anXf7xHIUjpMP_oJ9Ke5tOScSMbA==
Age: 143961
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4ab7d8709d334de0e46dcb86aabfbff1
f221138a8ad9d0bfa3c054370dcdb363a67dc310
b91d37f606eaf448b9c7dfc05566a11de004ce44503409e1a776288ee2622805
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B91D37F606EAF448B9C7DFC05566A11DE004CE44503409E1A776288EE2622805"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12752
Expires: Fri, 07 Oct 2022 11:19:11 GMT
Date: Fri, 07 Oct 2022 07:46:39 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: aLPU+TXlLrjxrP+TH5K+zwhLHmDFYr1GpxlgRnq3EM59JOsp9Rc02A/USZMbsZ/ySMYVr1hYD7U=
x-amz-request-id: 066KB165MSMY69XE
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 07 Oct 2022 06:59:04 GMT
age: 2855
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 07 Oct 2022 07:46:39 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.118200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.118:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Fri, 07 Oct 2022 07:29:41 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Fri, 07 Oct 2022 08:19:25 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: xzPFu_zKQlXmGzEZlpnHtkNwNOCyBatbLHOZ77jajeaL3RMhy1XWng==
Age: 1018
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c3364ba2cde4b7ea71997159386ad32e
338731fa4446e97495b5312c704199530ce9d15c
b73e729f9f4967ea7b8336e012e2fd86e3c7368436cc813cdf6a69d6bb7ad8af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B73E729F9F4967EA7B8336E012E2FD86E3C7368436CC813CDF6A69D6BB7AD8AF"
Last-Modified: Fri, 07 Oct 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21576
Expires: Fri, 07 Oct 2022 13:46:15 GMT
Date: Fri, 07 Oct 2022 07:46:39 GMT
Connection: keep-alive
goodmarijuanaseeds.nl/rpi/ttaeu
192.254.234.35301 Moved Permanently 243 B URL HTTP/2 goodmarijuanaseeds.nl/rpi/ttaeu
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash deccf4714ec605fec9b4e6d79ac18922
8cb52d85ab157dc3dcf2331869cb3e930627ec87
95f8bb6d36dfbfe6ce689318118bf6fb6a222ce6fc75857293f6b268d937764b
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /rpi/ttaeu HTTP/1.1
Host: goodmarijuanaseeds.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
location: https://ilgm.com?aff=1932/rpi/ttaeu
content-length: 243
content-type: text/html; charset=iso-8859-1
date: Fri, 07 Oct 2022 07:46:39 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8be5570b9a5ca76c580da007a824b029
38840f2ac6476bdd5608121c5653e338c7ad9715
0b94e05080ef85432b1815eb3c6c7594c9613cfde1b51eeabee46d0d9fde64b2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5683
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 07:46:39 GMT
Last-Modified: Fri, 07 Oct 2022 06:11:56 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.191.251.76101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.191.251.76:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: HUi+sKtL8TRkwYRQv2vsng==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3vPsOVLoRSg+PuoTeu22LgbRlng=
static.klaviyo.com/onsite/js/klaviyo.js?company_id=RHQ8nm
151.101.86.133200 OK 920 B URL HTTP/2 static.klaviyo.com/onsite/js/klaviyo.js?company_id=RHQ8nm
IP 151.101.86.133:0
File type ASCII text, with very long lines (2028)
Hash 1b6cdf30d311d3a1c4f1910df8634ce6
4eae51a762432f563a544f081ba02d5b609d8229
f5ef5974e7777c34c6fa88c227094cef630493a033f00286a34b9f18fe68ec79
GET /onsite/js/klaviyo.js?company_id=RHQ8nm HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers:
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
allow: OPTIONS, GET
cache-control: max-age=1, stale-while-revalidate=10800
content-encoding: gzip
content-type: application/javascript; charset=utf-8
etag: W/"31eed27320238464fbce30594750475e"
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 07 Oct 2022 07:46:40 GMT
age: 32225
x-served-by: cache-lga21955-LGA, cache-bma1679-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 1
x-timer: S1665128801.559743,VS0,VE1
vary: Accept-Encoding
content-length: 920
X-Firefox-Spdy: h2
cdn-3.convertexperiments.com/js/10031096-1003601.js
23.14.5.113200 OK 70 kB URL HTTP/2 cdn-3.convertexperiments.com/js/10031096-1003601.js
IP 23.14.5.113:0
File type ASCII text, with very long lines (32087), with CRLF, LF line terminators
Hash 07f6baf00121ec90cd1df2639c38c440
9f8d3ead3725d193c1e0cd95fc6109cf2a2d5099
2f22dd73d5ee9987aabf9742c816128a11140a20571d27d9ece710d28b83797d
GET /js/10031096-1003601.js HTTP/1.1
Host: cdn-3.convertexperiments.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
x-privacy-policy: You can find our privacy policy at https://www.convert.com/privacy-notice/
vary: Accept-Encoding
content-encoding: gzip
cache-control: public, max-age=278
date: Fri, 07 Oct 2022 07:46:40 GMT
content-length: 69689
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5eee2baed68ec922370bd283860860fd
7d1e7dfdb9577dcd11587bb162e17c56eaf8e4c4
7931afabb9286276c385564aa73ed67927d31e12ab35eb92da84048a7896f27d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 07:46:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.klaviyo.com/onsite/js/runtime.2eb91fe50fae49185d16.js?cb=1
151.101.86.133200 OK 1.4 MB URL HTTP/2 static.klaviyo.com/onsite/js/runtime.2eb91fe50fae49185d16.js?cb=1
IP 151.101.86.133:0
Size 1.4 MB (1373655 bytes)
Hash 79af7fc6373a7dfd1ce414459270578d
d0627166b79bf50b044ca1f57c3fafa53c7e1ac0
47de050cc0f73016f2234f02115590d1920436b2d3cd38873a096dc81cacb615
GET /onsite/js/runtime.2eb91fe50fae49185d16.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: w/GiVc9FT743oIpGfq+/zMmGf9ptcgqPx1IBymtt/hSPf4VQWUEN3IJl9qRhrnF19kGCdVq4o5M=
x-amz-request-id: ZPTT2JRM5VG2CJWS
last-modified: Wed, 05 Oct 2022 17:16:19 GMT
etag: "3ef37f5a8a400b4f3afcad7ed248a1cd"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: J_v2kluN8Ms5PPw9a2a5rkYTmZuNLYrq
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Fri, 07 Oct 2022 07:46:41 GMT
age: 32227
x-served-by: cache-lga21950-LGA, cache-bma1678-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 19072
vary: Accept-Encoding
content-length: 8074
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-K5K6MH
142.250.74.168200 OK 74 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-K5K6MH
IP 142.250.74.168:0
File type ASCII text, with very long lines (30554)
Hash 4d346bbd86eaa5c3f72b02d79e7d0e2a
e71d394d78c6e715f5079cba126a37068f73e429
270542df6dda75ff46fbb278b9d41f017e8d78ed7da62b5d5cca427983bd5b5c
GET /gtm.js?id=GTM-K5K6MH HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 07 Oct 2022 07:46:41 GMT
expires: Fri, 07 Oct 2022 07:46:41 GMT
cache-control: private, max-age=900
last-modified: Fri, 07 Oct 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73621
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/sharedUtils.0bc3da446707ca1edb02.js?cb=1
151.101.86.133200 OK 13 kB URL HTTP/2 static.klaviyo.com/onsite/js/sharedUtils.0bc3da446707ca1edb02.js?cb=1
IP 151.101.86.133:0
File type Unicode text, UTF-8 text, with very long lines (34307), with no line terminators
Hash ac1e18ce6cac8daaaef31bed3c074515
8ea498fa5964d40d6e9d771a57b2c2d4951c7a83
7c027fff21e5b62a108e839ed90d91b856969e798318524b06faf4232c490544
GET /onsite/js/sharedUtils.0bc3da446707ca1edb02.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: IlT6kPnA9ssToQg2br24zjaYpouwzHuGVmlqFIP+L8Pw+7i15Yy2jhHVcSD2xOHx5RWAdZWRMJE=
x-amz-request-id: FDHRXCM9F36M1V2Y
last-modified: Thu, 22 Sep 2022 20:56:47 GMT
etag: "af06dc05c43c0e0ef631aa6578eb2b20"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: nWL.VwGMlkCnpf2w6hy7LSuPMY5QeZrD
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Fri, 07 Oct 2022 07:46:41 GMT
age: 32227
x-served-by: cache-lga21967-LGA, cache-bma1678-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 5056
vary: Accept-Encoding
content-length: 13237
X-Firefox-Spdy: h2
static-tracking.klaviyo.com/onsite/js/static.444020cd426b0bea12c1.js?cb=1
151.101.86.133200 OK 5.2 kB URL HTTP/2 static-tracking.klaviyo.com/onsite/js/static.444020cd426b0bea12c1.js?cb=1
IP 151.101.86.133:0
File type ASCII text, with very long lines (12428), with no line terminators
Hash 8a51385137b20bdfcace3e12a6e9981f
b291ae4859ec56be11f24617f556db2be626d1f6
60157d9b98c625ee91011c3c06ee76809c5ac9225554e26a891462e8ed39c77d
GET /onsite/js/static.444020cd426b0bea12c1.js?cb=1 HTTP/1.1
Host: static-tracking.klaviyo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: NVmB6Kd0YFo9iCmGx+yu+eOqiC5jqbz25AtCBJn8Vs1Hbf0QGGXROARgd05prVYM5kfCwyQJ2xk=
x-amz-request-id: EYA39404SA8WM76Q
last-modified: Thu, 18 Aug 2022 15:05:14 GMT
etag: "1774dcfd43ae7a477e554d4266bbaa8e"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: ep5t_kHI_qKbZWWytxIKzh5j3YAjdqHx
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Fri, 07 Oct 2022 07:46:41 GMT
age: 32227
x-served-by: cache-lga21968-LGA, cache-bma1681-BMA
x-cache: HIT, HIT
x-cache-hits: 57, 5001
vary: Accept-Encoding
content-length: 5219
X-Firefox-Spdy: h2
static-tracking.klaviyo.com/onsite/js/fender_analytics.b753a4263579a29a452c.js?cb=1
151.101.86.133200 OK 11 kB URL HTTP/2 static-tracking.klaviyo.com/onsite/js/fender_analytics.b753a4263579a29a452c.js?cb=1
IP 151.101.86.133:0
File type ASCII text, with very long lines (27732), with no line terminators
Hash 906f95b9074e0ab4e5ab14293f285191
f2457ae9855b67adb365356680a9f6eb6143c955
c721196d5c3530a99c9474d91f0fcb66191b98b28ae97392c53e9509258c06c6
GET /onsite/js/fender_analytics.b753a4263579a29a452c.js?cb=1 HTTP/1.1
Host: static-tracking.klaviyo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: AAvTkxUkmn1nhj3iNswxgEddMkNCaLEoFYU8uvfLxh/TAQztrGjDPwoZe5ofoJQtFoTaE8Fp7ME=
x-amz-request-id: ST1DZM45FMXDHFQH
last-modified: Tue, 27 Sep 2022 21:33:03 GMT
etag: "6bad3e1e666b70ad024f4e213c466fb0"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: K07yjFr4xSPCpq8xLpZz92YJ8R.g8eja
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Fri, 07 Oct 2022 07:46:41 GMT
age: 32227
x-served-by: cache-lga21924-LGA, cache-bma1681-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 5100
vary: Accept-Encoding
content-length: 10684
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5eee2baed68ec922370bd283860860fd
7d1e7dfdb9577dcd11587bb162e17c56eaf8e4c4
7931afabb9286276c385564aa73ed67927d31e12ab35eb92da84048a7896f27d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 07:46:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 32662db1d1df7ab08498c1944b992e8d
7d33076a7be3ccc5501ea733f3ff246a523a710a
8847078e71dc2b99a3da17971f5e99ab77c9c83859c54b5e50e70d24d61bdc39
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 07 Oct 2022 07:46:41 GMT
Last-Modified: Fri, 07 Oct 2022 06:33:31 GMT
Server: ECS (bsa/EB16)
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: A4WAE2L3ExBI8Ob5vl4fnLFdc4x70o0MYo2H3yhrNmbescF_llgjTA==
Age: 4390
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 075ea3b23cd1a5bb8ebdf6349e08945c
c9a740f3c662f2a516b8ae1919e340e5daf7eb29
fcaeea6ebee7fc6830e9ff8319cc0140b48615ff2366a49c9bbcb8caac898102
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 07 Oct 2022 07:46:41 GMT
Last-Modified: Fri, 07 Oct 2022 07:10:44 GMT
Server: ECS (dcb/7FA5)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: GWNJ5UerzEUgReCe3CKxoc6dca0x6jHTWbDV7dppk_oZBpzrdQLyYQ==
Age: 2157
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11127
Expires: Fri, 07 Oct 2022 10:52:08 GMT
Date: Fri, 07 Oct 2022 07:46:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11127
Expires: Fri, 07 Oct 2022 10:52:08 GMT
Date: Fri, 07 Oct 2022 07:46:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11127
Expires: Fri, 07 Oct 2022 10:52:08 GMT
Date: Fri, 07 Oct 2022 07:46:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11127
Expires: Fri, 07 Oct 2022 10:52:08 GMT
Date: Fri, 07 Oct 2022 07:46:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11127
Expires: Fri, 07 Oct 2022 10:52:08 GMT
Date: Fri, 07 Oct 2022 07:46:41 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ca4df15-4ecd-467c-a658-2352fca9a8ff.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ca4df15-4ecd-467c-a658-2352fca9a8ff.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 16339989f5c6c229a3dcc0ed1e52032f
a1ea26d6e4eb4a72cc8c87100b40035dab69d285
16703f888ee6f974bb89e1c4c16a75186b31b64130abcd1a3bcd3741159d912c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ca4df15-4ecd-467c-a658-2352fca9a8ff.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13437
x-amzn-requestid: ec801fbc-c339-46ce-ac5f-18d064e5ef21
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zmhi_HdeoAMFyOQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f4946-02b52b770e6e76cf52b26e47;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:31:50 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: Iesqk_XbGiZE-n3mTa1_1WtlXiyEqz-4qfyt3_609O1eujdLcFu3zA==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 ece5d4a731ece5ff46c564ab2b946ede.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 22:01:58 GMT
etag: "a1ea26d6e4eb4a72cc8c87100b40035dab69d285"
content-type: image/jpeg
age: 35083
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36097bf9-dd7a-4dde-af42-0e23e000e84a.jpeg
34.120.237.76200 OK 2.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36097bf9-dd7a-4dde-af42-0e23e000e84a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e9646987c0395eec23e32dc00954d386
5545b691aeefcd31bbc6b6cad6726234773e9d74
900a2bfbe3984db79056d38764b1986399d827a7f54d1c54d4fd3b06c7981385
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36097bf9-dd7a-4dde-af42-0e23e000e84a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2732
x-amzn-requestid: 004a85ab-b33b-4b7f-86f2-9762e6cd2f0b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZmhkQGWgoAMF7mw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f494e-473458094dc2ded55a681505;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:31:58 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: eJltrBVIRbJ-_OUHZjw8mtfK6Ivb9C51B6lC1C11eaq_O4Psd7evRg==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 ca66331b52971370c4e54619e8a952cc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 21:46:38 GMT
age: 36003
etag: "5545b691aeefcd31bbc6b6cad6726234773e9d74"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8dd1fdac-30bd-43cd-b99a-3f5a563e0892.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8dd1fdac-30bd-43cd-b99a-3f5a563e0892.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d1a9bad9942d25ecf711a6b2e137a270
1ac4d5e32010b78b9599d7db12c64a4f11f75c32
a4e8eb30784a461fbac9df587eb8b06c84f827d8ef6cfe5d302d45f0cbb5e3ce
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8dd1fdac-30bd-43cd-b99a-3f5a563e0892.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8325
x-amzn-requestid: c190f0ac-92e7-4d58-b70d-06c6986292c9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZmihDHP_oAMFc9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f4ad3-11f93f222ee59f8c61feb974;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:38:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: Q2Tmr5IEgSZ13V6JCFu75ypdw2faw01Y7FSMZX-xp5rmmLmuuuuotw==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 9b21fd56256eda6d1379e32829c4c446.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 21:38:27 GMT
age: 36494
etag: "1ac4d5e32010b78b9599d7db12c64a4f11f75c32"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccc2005-2e35-42eb-8f79-f2155e9eb404.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccc2005-2e35-42eb-8f79-f2155e9eb404.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0611d96a8a76ee2b104a70372860f979
579dea2edcf3f3fa3e18530d1f254132589a2f6b
70996e9eb0aac2a5befff12fd63c57c5120f59e061af60b60c975694307a6be3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccc2005-2e35-42eb-8f79-f2155e9eb404.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8050
x-amzn-requestid: 7332406c-4a06-4c0d-a4c3-d59e089b511d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZJw3jHaooAMF6bQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6333c830-4513d4852dc064a812c23cea;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 04:06:08 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ytF_TxhiRg0wYUJod7-t0FEv_p7EkIXJNe2rygTGxW6TnebbTy8DCw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 22:08:02 GMT
age: 34719
etag: "579dea2edcf3f3fa3e18530d1f254132589a2f6b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0135ba0-9033-445f-8155-a6c093862ccb.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0135ba0-9033-445f-8155-a6c093862ccb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7e30ca5022768294665070cafc9d489c
c6ebf53c21206cfcf8e70279d3ae43f0170ade3a
6b834cdae692318a114c0d82ebff4fa8f4e65526983758e08ffb130d4d86020f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0135ba0-9033-445f-8155-a6c093862ccb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9046
x-amzn-requestid: d560c8ba-6e81-46f7-a451-30c40fbfce6f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zmhi_F7qIAMFkQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f4946-012e65d675558ec8544a1f30;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:31:50 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: a9tOPCySPRdXpvJf239ycM7_3PJS7GcITvM52Sxic_FwYr_-n2XQHA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 de8fc80b494d3d381f7e006918dcc588.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 21:44:18 GMT
etag: "c6ebf53c21206cfcf8e70279d3ae43f0170ade3a"
content-type: image/jpeg
age: 36143
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
logs.convertexperiments.com/log
52.57.2.210200 OK 2 B URL HTTP/2 logs.convertexperiments.com/log
IP 52.57.2.210:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /log HTTP/1.1
Host: logs.convertexperiments.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 758
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 07 Oct 2022 07:46:41 GMT
content-type: application/json; charset=utf-8
content-length: 2
server: nginx/1.20.0
access-control-allow-origin: https://ilgm.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ee0abd8-4ecf-437c-9675-8f3d0154f2b9.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ee0abd8-4ecf-437c-9675-8f3d0154f2b9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7e1d0226194b6ccc5e2d460745b53fb4
715224d106cc3342482c53905322d6418421f6d2
0992c3232fd28edf9a9af56c2cc7f64f9ae53a2ec0cc4fb38c2cdb468a6a5791
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ee0abd8-4ecf-437c-9675-8f3d0154f2b9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6518
x-amzn-requestid: 2d3dc175-26a9-40a2-b629-0c8b533d5037
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZmhktGcloAMF0SA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f4951-23e7e2852fe1f11c009d4c26;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:32:01 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: XZZtr9fG5zlx9W9TIX5zVjqvyZ5NEeSEPqtNUhwArlhBEIdcT5unpQ==
via: 1.1 fec77e486350d1bd33f526a760d8b5a4.cloudfront.net (CloudFront), 1.1 f62c9ca47e35df5c65764381977823a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 22:01:47 GMT
etag: "715224d106cc3342482c53905322d6418421f6d2"
content-type: image/jpeg
age: 35094
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
1003601.metrics.convertexperiments.com/log-rep/
52.57.2.210200 OK 2 B URL HTTP/2 1003601.metrics.convertexperiments.com/log-rep/
IP 52.57.2.210:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /log-rep/ HTTP/1.1
Host: 1003601.metrics.convertexperiments.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 302
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 07 Oct 2022 07:46:41 GMT
content-type: application/json; charset=utf-8
content-length: 2
server: nginx/1.20.0
access-control-allow-origin: https://ilgm.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
www.affiliatly.com/api_request.php?aid=AF-1021567&t=1665128800889
172.66.40.182200 OK 20 kB URL HTTP/2 www.affiliatly.com/api_request.php?aid=AF-1021567&t=1665128800889
IP 172.66.40.182:0
File type ASCII text, with very long lines (1325)
Hash 44a2dafc53b106321b8dd1fb0272c74a
b086f2e6634f378d0bac61211f30d6f313e18d68
1f5eacab209523d70ce51356fd2ccd72bb6a26dedfbcde25fad95162acd46311
POST /api_request.php?aid=AF-1021567&t=1665128800889 HTTP/1.1
Host: www.affiliatly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 127
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 07 Oct 2022 07:46:41 GMT
content-type: text/html
access-control-allow-origin: *
vary: User-Agent
p3p: CP="IDC DSP COR CUR ADM OUR STP CNT"
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7565063def1cb509-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
script.hotjar.com/modules.cbd9768ba80ba0be5b17.js
54.230.111.44200 OK 66 kB URL HTTP/2 script.hotjar.com/modules.cbd9768ba80ba0be5b17.js
IP 54.230.111.44:0
File type Unicode text, UTF-8 text, with very long lines (48714)
Hash 483a48bedf96c50163b542fb95446039
c724132c8b3b31f2938c84af7ced2b69b66bf5fe
5ea4d712f01c7b6f1c523834934ce998e251048ab6b5a1f82aa1cc00280843cb
GET /modules.cbd9768ba80ba0be5b17.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 66229
date: Tue, 04 Oct 2022 18:47:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "483a48bedf96c50163b542fb95446039"
last-modified: Tue, 04 Oct 2022 18:46:48 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: gXtR-sRxxeiD6zA8UIFvbICnfMb8IAY33xdsrUij5vZu2mP6MHpsJQ==
age: 219575
X-Firefox-Spdy: h2
api.getdrip.com/client/events/visit?drip_account_id=3196820&referrer=&url=https%3A%2F%2Filgm.com%2F%3Faff%3D1932%2Frpi%2Fttaeu&domain=ilgm.com&time_zone=UTC&enable_third_party_cookies=f&callback=Drip_885993933
54.230.111.70200 OK 84 B URL HTTP/2 api.getdrip.com/client/events/visit?drip_account_id=3196820&referrer=&url=https%3A%2F%2Filgm.com%2F%3Faff%3D1932%2Frpi%2Fttaeu&domain=ilgm.com&time_zone=UTC&enable_third_party_cookies=f&callback=Drip_885993933
IP 54.230.111.70:0
File type ASCII text, with no line terminators
Hash 2979fe76f33797109cd98ff67a1ae559
ea5f83a9342ae12609fd260ac39df2590e4bb8a9
289010eb9a98e42f7c3232c2af4d49493429813f51525b864fee41811a018269
GET /client/events/visit?drip_account_id=3196820&referrer=&url=https%3A%2F%2Filgm.com%2F%3Faff%3D1932%2Frpi%2Fttaeu&domain=ilgm.com&time_zone=UTC&enable_third_party_cookies=f&callback=Drip_885993933 HTTP/1.1
Host: api.getdrip.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 84
date: Fri, 07 Oct 2022 07:46:41 GMT
x-amzn-requestid: d72728b6-cf02-4c5f-b582-11961c24290b
referrer-policy: strict-origin-when-cross-origin
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
x-runtime: 0.030404
strict-transport-security: max-age=31536000; includeSubDomains
x-amzn-remapped-content-length: 84
x-frame-options: SAMEORIGIN
x-amzn-remapped-connection: keep-alive
x-download-options: noopen
x-request-id: 84fe06e4-a076-4d1a-b493-2b05735fbec4
x-amz-apigw-id: Zn7nSGwDoAMFVvA=
cache-control: max-age=0, private, must-revalidate
x-amzn-remapped-server: nginx
x-content-type-options: nosniff
etag: W/"289010eb9a98e42f7c3232c2af4d4949"
x-amzn-remapped-date: Fri, 07 Oct 2022 07:46:41 GMT
x-cache: Miss from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -YguPCusdutd274WtypdsSpkBYEjKDluMMOQ73PrLu8fCtpazxNlpg==
X-Firefox-Spdy: h2
vars.hotjar.com/box-69edcc3187336f9b0a3fbb4c73be9fe6.html
54.230.111.71200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-69edcc3187336f9b0a3fbb4c73be9fe6.html
IP 54.230.111.71:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2431), with no line terminators
Hash f6a9ca04b0687ea3c0d98e8430c8c77b
35503b2deb23091a9a9c6c68d4020dbdf879588e
8e4328ecb6b395499567369e3c227231dbdaf361f43ce315934d7a2a3abbed41
GET /box-69edcc3187336f9b0a3fbb4c73be9fe6.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1044
date: Tue, 04 Oct 2022 09:28:08 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "f6a9ca04b0687ea3c0d98e8430c8c77b"
last-modified: Tue, 04 Oct 2022 07:09:34 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VubrDloiqHZDRQaTtoSPiig_gkS9ZoJ_vo1FCb-vS_w4XC1vPDAy_w==
age: 253113
X-Firefox-Spdy: h2
api.getdrip.com/client/track?url=https%3A%2F%2Filgm.com%2F%3Faff%3D1932%2Frpi%2Fttaeu&visitor_uuid=535e930f128e45608035b0c5a1ddc9a2&_action=Started%20a%20new%20session&source=drip&drip_account_id=3196820&callback=Drip_446891140
54.230.111.70200 OK 101 B URL HTTP/2 api.getdrip.com/client/track?url=https%3A%2F%2Filgm.com%2F%3Faff%3D1932%2Frpi%2Fttaeu&visitor_uuid=535e930f128e45608035b0c5a1ddc9a2&_action=Started%20a%20new%20session&source=drip&drip_account_id=3196820&callback=Drip_446891140
IP 54.230.111.70:0
File type ASCII text, with no line terminators
Hash 902f5f1017158e2d37c3990a49c7899d
d9453cbbd6c0e079638f60e996831e2751ecc2fa
b7aae8e6a6405ba35abf1ea179621f943a940cc98370c3f04e74b657f8b84fcb
GET /client/track?url=https%3A%2F%2Filgm.com%2F%3Faff%3D1932%2Frpi%2Fttaeu&visitor_uuid=535e930f128e45608035b0c5a1ddc9a2&_action=Started%20a%20new%20session&source=drip&drip_account_id=3196820&callback=Drip_446891140 HTTP/1.1
Host: api.getdrip.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 101
date: Fri, 07 Oct 2022 07:46:42 GMT
x-amzn-requestid: 14d08d87-82a6-4f79-b1c8-6a306682a858
referrer-policy: strict-origin-when-cross-origin
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
x-runtime: 0.033639
strict-transport-security: max-age=31536000; includeSubDomains
x-amzn-remapped-content-length: 101
x-frame-options: SAMEORIGIN
x-amzn-remapped-connection: keep-alive
x-download-options: noopen
x-request-id: 25589e90-ec03-4195-adac-0efa81f2bfe7
x-amz-apigw-id: Zn7nWGUBoAMFXPg=
cache-control: max-age=0, private, must-revalidate
x-amzn-remapped-server: nginx
x-content-type-options: nosniff
etag: W/"b7aae8e6a6405ba35abf1ea179621f94"
x-amzn-remapped-date: Fri, 07 Oct 2022 07:46:42 GMT
x-cache: Miss from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tsmP7wj8gl6pMmrfsdS7xDUAqrKCBjux1SxeIVU612XOv3yPI36h0g==
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-DEPCSFR3BW>m=2oea50&_p=1976606696&cid=894573150.1665128802&ul=en-us&sr=1280x1024&_s=1&sid=1665128801&sct=1&seg=0&dl=https%3A%2F%2Filgm.com%2F%3Faff%3D1932%2Frpi%2Fttaeu&dt=Buy%20Feminized%20%26%20Autoflower%20Marijuana%20Seeds%20Online%20%3E%3E%20ILGM&en=page_view&_fv=1&_nsi=1&_ss=1&ep.page_type=other&ep.clean_page=%2F&ep.login_state=Logged%20out&upn.shop_lifetime_value=0&up.existing_customer=No
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-DEPCSFR3BW>m=2oea50&_p=1976606696&cid=894573150.1665128802&ul=en-us&sr=1280x1024&_s=1&sid=1665128801&sct=1&seg=0&dl=https%3A%2F%2Filgm.com%2F%3Faff%3D1932%2Frpi%2Fttaeu&dt=Buy%20Feminized%20%26%20Autoflower%20Marijuana%20Seeds%20Online%20%3E%3E%20ILGM&en=page_view&_fv=1&_nsi=1&_ss=1&ep.page_type=other&ep.clean_page=%2F&ep.login_state=Logged%20out&upn.shop_lifetime_value=0&up.existing_customer=No
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-DEPCSFR3BW>m=2oea50&_p=1976606696&cid=894573150.1665128802&ul=en-us&sr=1280x1024&_s=1&sid=1665128801&sct=1&seg=0&dl=https%3A%2F%2Filgm.com%2F%3Faff%3D1932%2Frpi%2Fttaeu&dt=Buy%20Feminized%20%26%20Autoflower%20Marijuana%20Seeds%20Online%20%3E%3E%20ILGM&en=page_view&_fv=1&_nsi=1&_ss=1&ep.page_type=other&ep.clean_page=%2F&ep.login_state=Logged%20out&upn.shop_lifetime_value=0&up.existing_customer=No HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://ilgm.com
date: Fri, 07 Oct 2022 07:46:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
api.getdrip.com/client/track?url=https%3A%2F%2Filgm.com%2F%3Faff%3D1932%2Frpi%2Fttaeu&visitor_uuid=535e930f128e45608035b0c5a1ddc9a2&_action=Visited%20a%20page&source=drip&drip_account_id=3196820&callback=Drip_435000957
54.230.111.70200 OK 101 B URL HTTP/2 api.getdrip.com/client/track?url=https%3A%2F%2Filgm.com%2F%3Faff%3D1932%2Frpi%2Fttaeu&visitor_uuid=535e930f128e45608035b0c5a1ddc9a2&_action=Visited%20a%20page&source=drip&drip_account_id=3196820&callback=Drip_435000957
IP 54.230.111.70:0
File type ASCII text, with no line terminators
Hash 11d5650c8b23bc8c802e4284ace61ec4
51c79ea49d29eccf92ee17bae5385a09faa09708
1777dc8e94220b2a5537ac1acaadd48e8659fa424821bda3ec4701780fc55fed
GET /client/track?url=https%3A%2F%2Filgm.com%2F%3Faff%3D1932%2Frpi%2Fttaeu&visitor_uuid=535e930f128e45608035b0c5a1ddc9a2&_action=Visited%20a%20page&source=drip&drip_account_id=3196820&callback=Drip_435000957 HTTP/1.1
Host: api.getdrip.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 101
date: Fri, 07 Oct 2022 07:46:42 GMT
x-amzn-requestid: 3d867f8a-86bc-4ab4-aff5-cae00366a5c1
referrer-policy: strict-origin-when-cross-origin
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
x-runtime: 0.110525
strict-transport-security: max-age=31536000; includeSubDomains
x-amzn-remapped-content-length: 101
x-frame-options: SAMEORIGIN
x-amzn-remapped-connection: keep-alive
x-download-options: noopen
x-request-id: a92d8ed8-d8cc-475f-b8b6-b3460b00616f
x-amz-apigw-id: Zn7nWH4GIAMFcjg=
cache-control: max-age=0, private, must-revalidate
x-amzn-remapped-server: nginx
x-content-type-options: nosniff
etag: W/"1777dc8e94220b2a5537ac1acaadd48e"
x-amzn-remapped-date: Fri, 07 Oct 2022 07:46:42 GMT
x-cache: Miss from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tMFVjEtsaEpcRzWwsekQOuU3CasKdnDCQnmtIx8jj6ai_8_h0lyY-w==
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash b4e8bbf636cf1e81f313edabcd084125
25b6191533ff2e2d68cf688f5fbdbd6a921b13b0
463be7b9a9493b346cbb6d840e73e7e14a1886434c749a06216183187abe8eb4
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 07 Oct 2022 07:46:42 GMT
Last-Modified: Fri, 07 Oct 2022 06:10:54 GMT
Server: ECS (bsa/EB1A)
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Uv83NCYzRxSGTwjdlRaNRZAmjFirDLk8A9RCiN4UhIw4u2ehFDHUQg==
Age: 5748
ws41.hotjar.com/api/v2/client/ws
52.211.199.18101 Switching Protocols 0 B URL HTTP/1.1 ws41.hotjar.com/api/v2/client/ws
IP 52.211.199.18:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/v2/client/ws HTTP/1.1
Host: ws41.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://ilgm.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: idl0wlESZVNK7JUO9RSOSA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Fri, 07 Oct 2022 07:46:42 GMT
Content-Type: application/octet-stream
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: FuO9esXQJzghuorBLmMh50+a75Y=
Sec-WebSocket-Extensions: permessage-deflate
in.hotjar.com/api/v2/client/sites/79667/visit-data?sv=7
52.18.136.97200 OK 0 B URL HTTP/2 in.hotjar.com/api/v2/client/sites/79667/visit-data?sv=7
IP 52.18.136.97:0
POST /api/v2/client/sites/79667/visit-data?sv=7 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 130
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 07 Oct 2022 07:46:42 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
ws41.hotjar.com/api/v2/sites/79667/recordings/content
52.211.199.18200 OK 0 B URL HTTP/2 ws41.hotjar.com/api/v2/sites/79667/recordings/content
IP 52.211.199.18:0
POST /api/v2/sites/79667/recordings/content HTTP/1.1
Host: ws41.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 428998
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 07 Oct 2022 07:46:42 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
ilgm.com/?aff=1932/rpi/ttaeu
104.26.9.189200 OK 0 B URL HTTP/2 ilgm.com/?aff=1932/rpi/ttaeu
IP 104.26.9.189:0
GET /?aff=1932/rpi/ttaeu HTTP/1.1
Host: ilgm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Fri, 07 Oct 2022 07:46:40 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: PHPSESSID=dgj9h4q3a6a2dbbu1u7crjv8jl; expires=Fri, 07-Oct-2022 08:46:39 GMT; Max-Age=3600; path=/; domain=ilgm.com; secure; HttpOnly; SameSite=Lax
X-Magento-Vary=c58cc7336841735bf5ef13185766282824a9d073; expires=Fri, 07-Oct-2022 08:46:39 GMT; Max-Age=3600; path=/; secure; HttpOnly; SameSite=Lax
pragma: no-cache
cache-control: max-age=0, must-revalidate, no-cache, no-store
expires: Wed, 06 Oct 2021 07:51:59 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Fu5n1TCMdu0Y%2FX7Eqroapt9Vw2%2B0sbi2TBBzBDxHNe%2F0hupLKzGftXM8XKbAJKIx%2B6iwitbYGtdejZqhsy2xja2Ufv18AWTaWqSFtoK8BDMAPmG6hrLO5V28"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75650636ea26b51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.affiliatly.com/v3/affiliatly.js?affiliatly_code=AF-1021567
172.66.40.182200 OK 0 B URL HTTP/2 static.affiliatly.com/v3/affiliatly.js?affiliatly_code=AF-1021567
IP 172.66.40.182:0
GET /v3/affiliatly.js?affiliatly_code=AF-1021567 HTTP/1.1
Host: static.affiliatly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 07 Oct 2022 07:46:40 GMT
content-type: application/x-javascript
last-modified: Fri, 07 Oct 2022 05:34:14 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 1906
vary: Accept-Encoding
server: cloudflare
cf-ray: 7565063b1f06b523-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
tag.getdrip.com/3196820.js
54.230.111.109200 OK 0 B URL HTTP/2 tag.getdrip.com/3196820.js
IP 54.230.111.109:0
GET /3196820.js HTTP/1.1
Host: tag.getdrip.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 13 Jul 2022 09:55:10 GMT
server: AmazonS3
content-encoding: gzip
date: Fri, 07 Oct 2022 07:46:42 GMT
etag: W/"d28568db9a8f5800cd0ade62ca0a37f1"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: v8CQ_S08wKtezuYdze0IsJ1TVF2hBp7EcPXooNpMrx61BxkhnVSNhg==
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-79667.js?sv=7
54.230.111.39200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-79667.js?sv=7
IP 54.230.111.39:0
GET /c/hotjar-79667.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Fri, 07 Oct 2022 07:46:41 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: W/9a9bc9f24006993b73028d31b22a1a7a
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 94oW3GStie8MY8rfmeB9VynZtZAUyReHN1bQSW7m85NA8knKQlK6Vg==
X-Firefox-Spdy: h2
d14jnfavjicsbe.cloudfront.net/client.js
54.230.245.215200 OK 0 B URL HTTP/2 d14jnfavjicsbe.cloudfront.net/client.js
IP 54.230.245.215:0
GET /client.js HTTP/1.1
Host: d14jnfavjicsbe.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
last-modified: Mon, 23 May 2022 22:40:48 GMT
x-amz-meta-md5sum: otrqY+wttznK2DSejuIkqg==
server: AmazonS3
content-encoding: gzip
date: Fri, 07 Oct 2022 07:45:46 GMT
cache-control: max-age=300
etag: W/"a2daea63ec2db739cad8349e8ee224aa"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xSFDuhS9wpfAVr7_U3lTBBA80du4Dqk0N8GW_jbsJlhPiyMhXe9ZRg==
age: 56
X-Firefox-Spdy: h2