firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bdb8b66c705a7b996496d780f50c00b5
403ae92039fcc933870f51f913f78ccaf9652256
c923ed2539f4ce9f4d43743c402fbb2060a52a4cbedbf14c5f5742ab718073d6
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Content-Length, Retry-After, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 23 Oct 2022 03:52:49 GMT
Expires: Sun, 23 Oct 2022 04:06:19 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: uwA2vHJJEsPzkDRdt4oWFR8ZIlzcVHkGPKFkKgEdCMwYpND6lZRcFA==
Age: 226
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c19f4a1def760c07cbc4aec1d0d6c050
6ad911a7c02f5e5fdd82fa86cae0453528d53a6d
750bba81910a4bbd78ab484ba03781a36459a0aec147d7c47424e9a9bf152b40
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "750BBA81910A4BBD78AB484BA03781A36459A0AEC147D7C47424E9A9BF152B40"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12976
Expires: Sun, 23 Oct 2022 07:32:51 GMT
Date: Sun, 23 Oct 2022 03:56:35 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash cecd3b2e0cd07173ee1fb63b0a744119
774e0935fffd5bb39799c040098e32c3dc88702f
78c2c60f2d752f572f1711e23aa3f82d5e5bce1940064405f6f989886f6315df
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "78C2C60F2D752F572F1711E23AA3F82D5E5BCE1940064405F6F989886F6315DF"
Last-Modified: Sat, 22 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14037
Expires: Sun, 23 Oct 2022 07:50:32 GMT
Date: Sun, 23 Oct 2022 03:56:35 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: DlR3MK9Z7nZqjkkVfSQR9NdZg/gAxptv/WmW4Eg+7QfbBWf7DYPr3FQtssvz7mMgfKjSnpzuTLs=
x-amz-request-id: ZDV5JEP4HP8V9K66
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 23 Oct 2022 03:37:49 GMT
age: 1126
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 23 Oct 2022 03:56:35 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c241097f825e8bfed9ccd3783cbff90b
43d2f37020e385d4ae4bb8a5f6af0a71272b75d0
b7f844cabf3cfcbf4b26b0f6df282c16bd1685fe1848af50647c8482064e5ba2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B7F844CABF3CFCBF4B26B0F6DF282C16BD1685FE1848AF50647C8482064E5BA2"
Last-Modified: Fri, 21 Oct 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sun, 23 Oct 2022 09:56:36 GMT
Date: Sun, 23 Oct 2022 03:56:36 GMT
Connection: keep-alive
goodmarijuanaseeds.nl/rpi/ttaeu
301 Moved Permanently 243 B URL HTTP/2 goodmarijuanaseeds.nl/rpi/ttaeu
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash deccf4714ec605fec9b4e6d79ac18922
8cb52d85ab157dc3dcf2331869cb3e930627ec87
95f8bb6d36dfbfe6ce689318118bf6fb6a222ce6fc75857293f6b268d937764b
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /rpi/ttaeu HTTP/1.1
Host: goodmarijuanaseeds.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
location: https://ilgm.com?aff=1932/rpi/ttaeu
content-length: 243
content-type: text/html; charset=iso-8859-1
date: Sun, 23 Oct 2022 03:56:36 GMT
server: Apache
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sun, 23 Oct 2022 03:43:40 GMT
Expires: Sun, 23 Oct 2022 04:14:39 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: FhHvOhKE7JTKqcUD4BJ-OZjBGnQ6I9ozIdTTXfDMzYbxVtYSVUp4pA==
Age: 776
ocsp.digicert.com/
200 OK 280 B IP
Hash aec8ffdf9029fdd8e2d441de88bebaa3
92bb23c79e1d18e18508c3264705753e641145ba
847a8ad8d8bc26c787cc9f34901a2dfc680451abdf0806e76f749f5c1562bec9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=152521
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 03:56:36 GMT
Etag: "63546c3d-118"
Expires: Mon, 24 Oct 2022 22:18:37 GMT
Last-Modified: Sat, 22 Oct 2022 22:18:37 GMT
Server: nginx
Content-Length: 280
ocsp.digicert.com/
200 OK 471 B IP
Hash fecd12689ba4c6aa556814b7fac0d344
a3005f6333ce5201a73e2857c764a1b0091a91d5
83e0fb564f86df4300e8fc4b5baaf0ed13102c384922d388e02620fb3363a842
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2007
Cache-Control: max-age=103416
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 03:56:36 GMT
Etag: "6353a495-1d7"
Expires: Mon, 24 Oct 2022 08:40:12 GMT
Last-Modified: Sat, 22 Oct 2022 08:06:45 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 4OfBM/xHdJ0L+EHDCT6mQw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 1q0LsQVSqajVh2cpOQ6Y+fhWX38=
ocsp.digicert.com/
200 OK 280 B IP
Hash aec8ffdf9029fdd8e2d441de88bebaa3
92bb23c79e1d18e18508c3264705753e641145ba
847a8ad8d8bc26c787cc9f34901a2dfc680451abdf0806e76f749f5c1562bec9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: max-age=152521
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 03:56:37 GMT
Etag: "63546c3d-118"
Expires: Mon, 24 Oct 2022 22:18:38 GMT
Last-Modified: Sat, 22 Oct 2022 22:18:37 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 280
static.klaviyo.com/onsite/js/klaviyo.js?company_id=RHQ8nm
200 OK 1.0 kB URL HTTP/2 static.klaviyo.com/onsite/js/klaviyo.js?company_id=RHQ8nm
IP
File type ASCII text, with very long lines (2904)
Hash 12619365193e1701b77b1f64c710c4d9
dbf3da392544e08de7911598c0f49d4e339f5555
6b59d1ad9695ab966b6a34125ca78b9e814af4b904abfe621017490208f32498
GET /onsite/js/klaviyo.js?company_id=RHQ8nm HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers:
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
allow: OPTIONS, GET
cache-control: max-age=1, stale-while-revalidate=10800
content-encoding: gzip
content-type: application/javascript
etag: W/"fb1958866328227345f95f12e385f0f5"
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 23 Oct 2022 03:56:37 GMT
age: 95768
x-served-by: cache-lga21983-LGA, cache-bma1640-BMA
x-cache: HIT, HIT
x-cache-hits: 18, 1
x-timer: S1666497398.786371,VS0,VE1
vary: Accept-Encoding
content-length: 1042
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash 9a9040ab93e567ad02fdca8c920a0a85
e3bd3d0851da57dc960cc1d851a08abd5b4bee61
b110b8f9a410b012287403729e135f4075df8f139a576ec19d000fa27080d785
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=151464
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 03:56:37 GMT
Etag: "6354681d-118"
Expires: Mon, 24 Oct 2022 22:01:01 GMT
Last-Modified: Sat, 22 Oct 2022 22:01:01 GMT
Server: nginx
Content-Length: 280
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f1b833a135e4d839859e4994f349bb6c
399b607015c4d9200df20084c7396591007dc995
28db09a2a0e821b37dc1cfb710bf896c438755bfc992eb775f41128b0e52e5d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13605
Expires: Sun, 23 Oct 2022 07:43:23 GMT
Date: Sun, 23 Oct 2022 03:56:38 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f1b833a135e4d839859e4994f349bb6c
399b607015c4d9200df20084c7396591007dc995
28db09a2a0e821b37dc1cfb710bf896c438755bfc992eb775f41128b0e52e5d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13605
Expires: Sun, 23 Oct 2022 07:43:23 GMT
Date: Sun, 23 Oct 2022 03:56:38 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f1b833a135e4d839859e4994f349bb6c
399b607015c4d9200df20084c7396591007dc995
28db09a2a0e821b37dc1cfb710bf896c438755bfc992eb775f41128b0e52e5d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13605
Expires: Sun, 23 Oct 2022 07:43:23 GMT
Date: Sun, 23 Oct 2022 03:56:38 GMT
Connection: keep-alive
ilgm.com/?aff=1932/rpi/ttaeu
200 OK 52 kB URL HTTP/2 ilgm.com/?aff=1932/rpi/ttaeu
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (60467), with CRLF, LF line terminators
Hash e826894010d8114db2a78518f4ace8eb
cf6f90cd8dc474f66e4240d10a69dd539af7ebc9
5d7b05fc00124aecd7e9e9842c3f73160f630d029f4cd406e4dbbecff0ad9d66
GET /?aff=1932/rpi/ttaeu HTTP/1.1
Host: ilgm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sun, 23 Oct 2022 03:56:37 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: PHPSESSID=0ngfibfl9m9d91tfe4kcslogr1; expires=Sun, 23-Oct-2022 04:56:37 GMT; Max-Age=3600; path=/; domain=ilgm.com; secure; HttpOnly; SameSite=Lax
X-Magento-Vary=c58cc7336841735bf5ef13185766282824a9d073; expires=Sun, 23-Oct-2022 04:56:37 GMT; Max-Age=3600; path=/; secure; HttpOnly; SameSite=Lax
pragma: no-cache
cache-control: max-age=0, must-revalidate, no-cache, no-store
expires: Fri, 22 Oct 2021 09:37:09 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xoMm6QBo0dO0GcPrL2%2BNIilBp31jYiJAs1UnGNAVgInHiY%2FYlOlJlcZqwd9UUw0OW1Ncmqdjc6wvBgGjdF1joF13hm99cyKVDkVe9qgy%2FuhCFBxJhfeRXW2A"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75e78b38ab550b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff16587d8-20bf-4cbe-a307-4babf4b40f43.jpeg
200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff16587d8-20bf-4cbe-a307-4babf4b40f43.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 57b8c3defee740fd16ededbc0c5e8ff2
8842eab4aaeb646c4618081ec204d0f423ab5934
b19f5357c17653958793712c093dee642c530908c5d5009cb087ff6c70ec5d67
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff16587d8-20bf-4cbe-a307-4babf4b40f43.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8528
x-amzn-requestid: 469ff83f-2334-4968-9df9-d244a5763011
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZxuZdFZroAMF71w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6343c43c-50e24c0339ffb18f4cadedd2;Sampled=0
x-amzn-remapped-date: Mon, 10 Oct 2022 07:05:32 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: PGoKUjGp5Yj08o3R1nZN-IKZIZKTR05TPh0UPXxXA26GiETcsfQK7w==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 22 Oct 2022 21:43:56 GMT
age: 22362
etag: "8842eab4aaeb646c4618081ec204d0f423ab5934"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbda6a073-f00e-40b8-bbff-eeeffe03083d.jpeg
200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbda6a073-f00e-40b8-bbff-eeeffe03083d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ab395803138af2f1c4a95b643a69fcd0
004c737da6827867b87a78f7f8d92699468b050b
7a1806038d98d478ec019ff97356b3255afbbea70a74180fdacd4958fe62b807
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbda6a073-f00e-40b8-bbff-eeeffe03083d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9565
x-amzn-requestid: 84c51ee2-64f1-4236-a8c7-278a6e28b24a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: abRJaGUBIAMFcRg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6354623c-36a42ee364025d0270960976;Sampled=0
x-amzn-remapped-date: Sat, 22 Oct 2022 21:35:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: s0bwoRJ0cmtAkh-hR2PqFqcrthu7VTBiSdEN3ai8410XKLqkqF7yJg==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Sat, 22 Oct 2022 21:43:36 GMT
age: 22382
etag: "004c737da6827867b87a78f7f8d92699468b050b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44c30030-7cae-4ead-96bb-a4ed05bdaecd.jpeg
200 OK 17 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44c30030-7cae-4ead-96bb-a4ed05bdaecd.jpeg
IP
Hash 78c174657b9e1b3317552e1502863c78
2de347932e4285120f7cdb7c8c6b75bf15ef4fac
a2199908640a30027848ad6f85359f4f26ef53c070a567a30cb47aca036ab30a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44c30030-7cae-4ead-96bb-a4ed05bdaecd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10473
x-amzn-requestid: 537cc627-aac4-4794-8360-0aaec3294588
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aTXXPF6OIAMF2hg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635138fa-21a0dcf1769be60f1149854a;Sampled=0
x-amzn-remapped-date: Thu, 20 Oct 2022 12:03:07 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: lOpSAbzDsZImnLQD9f3fxl8vGu8tN1Ap2O58jyR5f4mDlbwoINSnmg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sat, 22 Oct 2022 21:43:36 GMT
age: 22382
etag: "7785b8a7d2c727423af044776c05f8537122eebc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d707e0f-487e-4d60-9095-919220ac939a.jpeg
200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d707e0f-487e-4d60-9095-919220ac939a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0ae6442b63de1e40cf33df80434401ad
e9b1889e93d17e11aec51d610b38cbea22937eb3
5caa6653896a6444c22f4b560de7df98be23c1b97d8dbc950095a53fc778ab35
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d707e0f-487e-4d60-9095-919220ac939a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5702
x-amzn-requestid: f59514ec-7e53-4f36-a8c2-3db852d24681
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aO4E_F4ooAMF7Mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634f6d52-45f71e5f22c0e7377e3b5f44;Sampled=0
x-amzn-remapped-date: Wed, 19 Oct 2022 03:21:54 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: aFtlPyJXGd2uWLahfdlQTTdj7FIoddYUmOfBaIpt89yIQlRPxSabkA==
via: 1.1 73b60e9a9fd08eae9e034cedba707280.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 22 Oct 2022 09:19:29 GMT
age: 67029
etag: "e9b1889e93d17e11aec51d610b38cbea22937eb3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1fddb2cc-58e6-429b-99ff-374367b1cd44.jpeg
200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1fddb2cc-58e6-429b-99ff-374367b1cd44.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7dd12b59133693a13d66945702590f0d
bd57160a98bc921e66bc7c1ec3ff5c750819d594
81fa3254f8858c1545e927dd3b66453526749c328be145e63ff76bac0966b9d6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1fddb2cc-58e6-429b-99ff-374367b1cd44.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5298
x-amzn-requestid: db258368-cafe-431c-b79a-5d3e81ffcb54
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aV9nmE0CIAMF9Tw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635242fd-035164232e9813914635faab;Sampled=0
x-amzn-remapped-date: Fri, 21 Oct 2022 06:58:05 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 41YxiWPg4hFyQHTPwoUsgav-n3VLESt11XyIQYbYd-MA_ePYqKQWsQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Sat, 22 Oct 2022 22:48:33 GMT
age: 18485
etag: "bd57160a98bc921e66bc7c1ec3ff5c750819d594"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/runtime.9d966e36f3aac34c30a6.js?cb=1
200 OK 8.1 kB URL HTTP/2 static.klaviyo.com/onsite/js/runtime.9d966e36f3aac34c30a6.js?cb=1
IP
File type ASCII text, with very long lines (19473), with no line terminators
Hash d4df980795a3b48a903f88d9237920b0
70fd998db6b5bbd809ebb5a69d7d8f59061acfdc
5369656326d329abb3fc7b21fef956873d099dda6641b69018019a4b3f9e3ea6
GET /onsite/js/runtime.9d966e36f3aac34c30a6.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: Bk1KrxS6R3peZDIhR16y1iuzAvRyHW90/cBmUyrrhWPsElUnLS3cJNqXbP1V/8mdlGVT1UWFD5k=
x-amz-request-id: FP64DCD2STZ77G0A
last-modified: Thu, 20 Oct 2022 20:58:27 GMT
etag: "73c0465c8e4c5a069b18bca6ae58a1b0"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: yMVpQdT_11gDbQO2n0.tXtuFKKzRSCwu
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Sun, 23 Oct 2022 03:56:38 GMT
age: 95770
x-served-by: cache-lga21970-LGA, cache-bma1640-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 32018
vary: Accept-Encoding
content-length: 8071
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/sharedUtils.7cf3be945feb3e3be39d.js?cb=1
200 OK 14 kB URL HTTP/2 static.klaviyo.com/onsite/js/sharedUtils.7cf3be945feb3e3be39d.js?cb=1
IP
File type Unicode text, UTF-8 text, with very long lines (35338), with no line terminators
Hash d18351675174e6345f0b617341bbd57f
7572e6c2fccd4fe05f0b4e68da8bbd267b2b2c5d
6c4667fb494bba5230df2eea14076040dfd550ac8f76a4760a388623dba078c9
GET /onsite/js/sharedUtils.7cf3be945feb3e3be39d.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: OHHo+IkowtAxryzkBtxnXXIcWDP4c0HB3pBrEZ7JZ4DykSJOsKALtm6xMu0t1F4FT2CiA5NJztg=
x-amz-request-id: DMHQ7BJ19K4CC0C2
last-modified: Tue, 18 Oct 2022 16:51:42 GMT
etag: "4bd8457000683004ed0781afdc7990db"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: tO5ZJRO1.n_XfDMS5SH.oyEUQlnx8XY7
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Sun, 23 Oct 2022 03:56:38 GMT
age: 95770
x-served-by: cache-lga21945-LGA, cache-bma1640-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 30102
vary: Accept-Encoding
content-length: 13709
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/vendors~signup_forms.f7066e273a66876a4dee.js?cb=1
200 OK 12 kB URL HTTP/2 static.klaviyo.com/onsite/js/vendors~signup_forms.f7066e273a66876a4dee.js?cb=1
IP
File type ASCII text, with very long lines (36905)
Hash 2a5130a3283c5feb0565d3dbedfc9b94
d8f366809e17a57d1c1b3929a54fb259398c1fa9
bf18345ccf28ee5540d5a11559a4dff3d908ffa8e93a4c06d3e5ae408c0fec60
GET /onsite/js/vendors~signup_forms.f7066e273a66876a4dee.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: jjBLvBaAHFkdYVj2+Lzl4EwiVBypzOSfV7Hh68KS7NpSMh6P+cAphy/WZOdlMir50eSlWlunTIQ=
x-amz-request-id: QMK0P3P9BX6C1KYD
last-modified: Mon, 27 Jun 2022 21:34:56 GMT
etag: "8b11cc3d85af2e5a333cdf19d980234f"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: bsJKSXN8aZQUCveR8yzC_DqAz1c7vu6.
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Sun, 23 Oct 2022 03:56:38 GMT
age: 95770
x-served-by: cache-lga13627-LGA, cache-bma1640-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 19664
vary: Accept-Encoding
content-length: 12401
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/signup_forms.caf9c4d81c47ddaa71d3.js?cb=1
200 OK 12 kB URL HTTP/2 static.klaviyo.com/onsite/js/signup_forms.caf9c4d81c47ddaa71d3.js?cb=1
IP
File type Unicode text, UTF-8 text, with very long lines (35123), with no line terminators
Hash d41b8b81fd2e1dc167edd0ef71f39552
33a623bedb32558f92f2684a16509dba6901a9f2
083e540c44a1000bf849ffafaa4ff8f920cc0316cd03ffbfd6a483f0e8eb6b38
GET /onsite/js/signup_forms.caf9c4d81c47ddaa71d3.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: tXoifko0E1kTXvmWzyzCUc0BfjCiG48iV9xIFFJqEJM3b8RseJJwiKiaVkCpZS1xmuaUTqVeUBw=
x-amz-request-id: RAGP7FK3K53BY00S
last-modified: Fri, 07 Oct 2022 14:36:57 GMT
etag: "1554af57e6a9d81ed26d3ea7645b3faa"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: XqO.VEtsiFlSRutlEeIrTiOTI0BLIOFU
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Sun, 23 Oct 2022 03:56:38 GMT
age: 95770
x-served-by: cache-lga21965-LGA, cache-bma1640-BMA
x-cache: HIT, HIT
x-cache-hits: 3, 19720
vary: Accept-Encoding
content-length: 11610
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 05ee461624e2ec37f65e859afe6543ba
b99dcb558535d3d35d140e730aeeb41587622b30
576b3bf619d0a152889cc44165a229ad0100ccc319cf4d9044b2f26d4b676658
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 03:56:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static-tracking.klaviyo.com/onsite/js/fender_analytics.b753a4263579a29a452c.js?cb=1
200 OK 11 kB URL HTTP/2 static-tracking.klaviyo.com/onsite/js/fender_analytics.b753a4263579a29a452c.js?cb=1
IP
File type ASCII text, with very long lines (27732), with no line terminators
Hash 906f95b9074e0ab4e5ab14293f285191
f2457ae9855b67adb365356680a9f6eb6143c955
c721196d5c3530a99c9474d91f0fcb66191b98b28ae97392c53e9509258c06c6
GET /onsite/js/fender_analytics.b753a4263579a29a452c.js?cb=1 HTTP/1.1
Host: static-tracking.klaviyo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: AAvTkxUkmn1nhj3iNswxgEddMkNCaLEoFYU8uvfLxh/TAQztrGjDPwoZe5ofoJQtFoTaE8Fp7ME=
x-amz-request-id: ST1DZM45FMXDHFQH
last-modified: Tue, 27 Sep 2022 21:33:03 GMT
etag: "6bad3e1e666b70ad024f4e213c466fb0"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: K07yjFr4xSPCpq8xLpZz92YJ8R.g8eja
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Sun, 23 Oct 2022 03:56:38 GMT
age: 95770
x-served-by: cache-lga21924-LGA, cache-bma1654-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 29234
vary: Accept-Encoding
content-length: 10684
X-Firefox-Spdy: h2
static-tracking.klaviyo.com/onsite/js/static.ca06f6cb22e30f05014a.js?cb=1
200 OK 5.2 kB URL HTTP/2 static-tracking.klaviyo.com/onsite/js/static.ca06f6cb22e30f05014a.js?cb=1
IP
File type ASCII text, with very long lines (12458), with no line terminators
Hash 1f59b10f1671412738b20ff0e3c279c9
0d9b8197b4f7b9fdc7bba3addda8421e17eda107
1480a73465e90380e0209a08f3874dc2f087fe9170f1aeae5057588782c26853
GET /onsite/js/static.ca06f6cb22e30f05014a.js?cb=1 HTTP/1.1
Host: static-tracking.klaviyo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 6SMEaNtRAiueiSyUnY0Ukq8tuyFqWAi+4E4gaDiaHTp1rie5g9p6+1SYasRl8tE+tCrbRhQVxX8=
x-amz-request-id: CKYJYTVH8EFN6ZAY
last-modified: Fri, 07 Oct 2022 14:36:57 GMT
etag: "e672353c3be4fcd6f171e6c42c78b539"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: fOypElL0h2FcotkujY1wwASg3Ogv3DEn
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Sun, 23 Oct 2022 03:56:38 GMT
age: 95770
x-served-by: cache-lga21927-LGA, cache-bma1654-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 29749
vary: Accept-Encoding
content-length: 5230
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 05ee461624e2ec37f65e859afe6543ba
b99dcb558535d3d35d140e730aeeb41587622b30
576b3bf619d0a152889cc44165a229ad0100ccc319cf4d9044b2f26d4b676658
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 03:56:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-K5K6MH
200 OK 75 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-K5K6MH
IP
File type ASCII text, with very long lines (30620)
Hash 5530ecdee75d6fb65d67a7c5a02beda3
c44aae86bf9a4bca7cf88e09ace137d3040a0191
0ca263d319c1bce1e903bacea73fb769e1ad246c5567ce6c861670ca84d4e68d
GET /gtm.js?id=GTM-K5K6MH HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 23 Oct 2022 03:56:38 GMT
expires: Sun, 23 Oct 2022 03:56:38 GMT
cache-control: private, max-age=900
last-modified: Sun, 23 Oct 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 74704
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 05ee461624e2ec37f65e859afe6543ba
b99dcb558535d3d35d140e730aeeb41587622b30
576b3bf619d0a152889cc44165a229ad0100ccc319cf4d9044b2f26d4b676658
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 03:56:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.klaviyo.com/onsite/js/sentry.32defc2659e6aaee877c.js
200 OK 14 kB URL HTTP/2 static.klaviyo.com/onsite/js/sentry.32defc2659e6aaee877c.js
IP
File type Unicode text, UTF-8 text, with very long lines (39962), with no line terminators
Hash 93429c6be72678683e9267a528e4c0b4
dec00b93c3128f0094770ae508f24cb3f25fb317
f8e4e0da84f668d6f21293c30e6bfa6b1460cd2cc9b4e84cade80e81a680f477
GET /onsite/js/sentry.32defc2659e6aaee877c.js HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: iq43u9z8C5ggfgPwFsn+4bKUQtK7mcyE9p8ercG9UOmhgEJVt0S8OxGaklyy2Cyy2H5tse9JGrQ=
x-amz-request-id: KNB7YRE35ZYYP34A
last-modified: Mon, 27 Jun 2022 21:34:56 GMT
etag: "28b2f273ea92b5951335870743671025"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: SEi8mXkr3rDKIOIawsPVx86hWqhxnHRI
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Sun, 23 Oct 2022 03:56:39 GMT
age: 95771
x-served-by: cache-lga21963-LGA, cache-bma1640-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 17331
vary: Accept-Encoding
content-length: 13736
X-Firefox-Spdy: h2
fast.a.klaviyo.com/custom-fonts/api/v1/company-fonts/onsite?company_id=RHQ8nm
200 OK 317 B URL HTTP/2 fast.a.klaviyo.com/custom-fonts/api/v1/company-fonts/onsite?company_id=RHQ8nm
IP
File type JSON data\012- , ASCII text, with very long lines (1393), with no line terminators
Hash fbd7b51bae3ed43d7b69c4cbe6f73c51
be1c36a7a67e7a001bb7e5654ce7da9dac32d5a1
93a4f6f639bfcfbd65428bc3c3c9f7154f7031e80c8d0d301ed7ab144b7b0c27
GET /custom-fonts/api/v1/company-fonts/onsite?company_id=RHQ8nm HTTP/1.1
Host: fast.a.klaviyo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers:
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
allow: GET, HEAD, OPTIONS
cache-control: max-age=10
content-encoding: gzip
content-type: application/json; charset=utf-8
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 23 Oct 2022 03:56:39 GMT
age: 154021
x-served-by: cache-bos4648-BOS, cache-bma1633-BMA
x-cache: HIT, HIT
x-cache-hits: 752, 1
vary: Accept-Encoding, Cookie
strict-transport-security: max-age=900
content-length: 317
X-Firefox-Spdy: h2
static-forms.klaviyo.com/forms/api/v6/RHQ8nm/full-forms
200 OK 2.6 kB URL HTTP/2 static-forms.klaviyo.com/forms/api/v6/RHQ8nm/full-forms
IP
File type ASCII text, with very long lines (11389), with no line terminators
Hash a82cc3bf5d11e0e6cd95f6574e319c4e
64f4c8c461c6914d81fc58fd644e81f4f82d8036
0052524003d2e18db4e4b3af5452db808de0a6665952a1e4df725c9e2e88e607
GET /forms/api/v6/RHQ8nm/full-forms HTTP/1.1
Host: static-forms.klaviyo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: uhU06F1CArcz+oGgoNNeAUsICqiM09fc7mFr+2NZslMZWhRTdggjqm0azq4yzF2z7Sm9nwaTpuY=
x-amz-request-id: G4F0XC0XK5WDKKBV
last-modified: Fri, 21 Oct 2022 10:52:20 GMT
etag: "937c4b7b2f731d12a70760cfe2d3690c"
cache-control: max-age=5
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: full-forms/shared full-forms/RHQ8nm custom-fonts/RHQ8nm
x-amz-version-id: b77Ev_eaP.tT6V.4w4fxa4mRu6Zf80Cw
content-type: application/json
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Sun, 23 Oct 2022 03:56:39 GMT
via: 1.1 varnish
age: 145162
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1666497399.118643,VS0,VE1
vary: Accept-Encoding
client-geo-continent: EU
client-geo-country: NO
access-control-expose-headers: client-geo-continent, client-geo-country
access-control-allow-origin: *
content-length: 2639
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 8ca5a3ebd304f81acf4c97bf80c864e1
f9077e5c3b6e0169f7f0522e8de36316fb51a172
fee5057af3552ffde3d4f62f2b3546ff5b3dc41b8feb91b305d15ab49d4cab2e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=102871
Date: Sun, 23 Oct 2022 03:56:39 GMT
Etag: "6353aa4e-1d7"
Expires: Mon, 24 Oct 2022 08:31:10 GMT
Last-Modified: Sat, 22 Oct 2022 08:31:10 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: J_H785UDVtnASZ6nTKqBLo6aB1GFu_Cs6EuyDf9VxqtwAliOnra6hg==
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 7b4af5b8a2e418113b87dcb7905226de
33180997b4e8b14b90364ec55f7416d9e640d520
e8c6541debe87a1b24e07c19938ae9438f9e6f2bb019736f1ffdf28007465f66
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=165371
Date: Sun, 23 Oct 2022 03:56:39 GMT
Etag: "635486ea-1d7"
Expires: Tue, 25 Oct 2022 01:52:50 GMT
Last-Modified: Sun, 23 Oct 2022 00:12:26 GMT
Server: ECS (nyb/1D11)
X-Cache: Miss from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5k1zDDl5Z8KvWIDTX6_CbChTFlfueRNURUP_MAYl1IstnQKrUMrWUg==
Age: 6024
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 37206b4d49cbc272623edbf6b0f1a72b
e5c68e1d2a421c2f90cf6e07b91bd99f55e89e9a
f57ba91cd2d7c89a401d84156734771c72685534129afd6a7edfd60266b4e0e0
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=170963
Date: Sun, 23 Oct 2022 03:56:39 GMT
Etag: "6354b401-1d7"
Expires: Tue, 25 Oct 2022 03:26:02 GMT
Last-Modified: Sun, 23 Oct 2022 03:24:49 GMT
Server: ECS (dcb/7F3B)
X-Cache: Miss from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Fet7nvLNaazuGJXjNje-WErSxSDosNh49k1FNztsaoPtiPGy0EjrxQ==
Age: 73
1003601.metrics.convertexperiments.com/log-rep/
200 OK 2 B URL HTTP/2 1003601.metrics.convertexperiments.com/log-rep/
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /log-rep/ HTTP/1.1
Host: 1003601.metrics.convertexperiments.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 299
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 03:56:39 GMT
content-type: application/json; charset=utf-8
content-length: 2
server: nginx/1.20.0
access-control-allow-origin: https://ilgm.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
logs.convertexperiments.com/log
200 OK 2 B URL HTTP/2 logs.convertexperiments.com/log
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /log HTTP/1.1
Host: logs.convertexperiments.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 750
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 03:56:39 GMT
content-type: application/json; charset=utf-8
content-length: 2
server: nginx/1.20.0
access-control-allow-origin: https://ilgm.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
200 OK 32 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
Hash 0647b4e3666f11d06ec2925b6a0c5cbc
3472711a412189c659f3dd51360af3da24ad16a0
e4165441d77707bf7a65ed0d892eefa71edfbbaca782c5782362e9af962af8bb
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 23 Oct 2022 02:41:09 GMT
expires: Sun, 23 Oct 2022 04:41:09 GMT
cache-control: public, max-age=7200
age: 4531
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
vars.hotjar.com/box-c1417f7b48595d0dbca01c86f95d6dbb.html
200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-c1417f7b48595d0dbca01c86f95d6dbb.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash d2c298a660a1ee92f094a3d504e3e2e6
13fd39d202cf3e00be906a798921386b403e15c5
4aa80b9ea27a402072083d23dd118c6be178b90efb7ff0014c8b87c180655bdb
GET /box-c1417f7b48595d0dbca01c86f95d6dbb.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Tue, 18 Oct 2022 09:12:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "d2c298a660a1ee92f094a3d504e3e2e6"
last-modified: Tue, 18 Oct 2022 09:11:19 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8bQGfKNHtull7zx-uZd2NJ2oyan5CHoJ1IaVHasKVukyk-GWch67Jg==
age: 413074
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-DEPCSFR3BW>m=2oeaj0&_p=241215735&cid=1945156039.1666497415&ul=en-us&sr=1280x1024&_s=1&sid=1666497415&sct=1&seg=0&dl=https%3A%2F%2Filgm.com%2F%3Faff%3D1932%2Frpi%2Fttaeu&dt=Buy%20Feminized%20%26%20Autoflower%20Marijuana%20Seeds%20Online%20%3E%3E%20ILGM&en=page_view&_fv=1&_nsi=1&_ss=1&ep.page_type=other&ep.clean_page=%2F&ep.login_state=Logged%20out&upn.shop_lifetime_value=0&up.existing_customer=No
204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-DEPCSFR3BW>m=2oeaj0&_p=241215735&cid=1945156039.1666497415&ul=en-us&sr=1280x1024&_s=1&sid=1666497415&sct=1&seg=0&dl=https%3A%2F%2Filgm.com%2F%3Faff%3D1932%2Frpi%2Fttaeu&dt=Buy%20Feminized%20%26%20Autoflower%20Marijuana%20Seeds%20Online%20%3E%3E%20ILGM&en=page_view&_fv=1&_nsi=1&_ss=1&ep.page_type=other&ep.clean_page=%2F&ep.login_state=Logged%20out&upn.shop_lifetime_value=0&up.existing_customer=No
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-DEPCSFR3BW>m=2oeaj0&_p=241215735&cid=1945156039.1666497415&ul=en-us&sr=1280x1024&_s=1&sid=1666497415&sct=1&seg=0&dl=https%3A%2F%2Filgm.com%2F%3Faff%3D1932%2Frpi%2Fttaeu&dt=Buy%20Feminized%20%26%20Autoflower%20Marijuana%20Seeds%20Online%20%3E%3E%20ILGM&en=page_view&_fv=1&_nsi=1&_ss=1&ep.page_type=other&ep.clean_page=%2F&ep.login_state=Logged%20out&upn.shop_lifetime_value=0&up.existing_customer=No HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://ilgm.com
date: Sun, 23 Oct 2022 03:56:40 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ea20460028066b7fba2f10b51d883192
a73b8263a4477aceeda349c7beff7050de9df38b
f933a7ff2c6ec9189ba29fdf09da9125ac59d9c03b4a14e14e9f1b5fa5322b1c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 03:56:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css2?family=Montserrat:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900&family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900&display=swap
200 OK 1.5 kB URL HTTP/2 fonts.googleapis.com/css2?family=Montserrat:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900&family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900&display=swap
IP
Hash 80e831eb1dc60af1e76ee2d76479ef6f
b46cb924d7b24b22296d5f30c970c6d91f997a72
2193c902c60f08d21e184f3fe355b72ede01cfae1a8f623c24b99d60bd5e3aa4
GET /css2?family=Montserrat:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900&family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 23 Oct 2022 03:56:40 GMT
date: Sun, 23 Oct 2022 03:56:40 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-79667.js?sv=7
200 OK 2.6 kB URL HTTP/2 static.hotjar.com/c/hotjar-79667.js?sv=7
IP
File type ASCII text, with very long lines (5057)
Hash 87a7945774967408e3095f0c0699e02f
404c3a9bd2e122210daf020edc660c622192ceeb
a8cba895cb71fbbbd066603e0492a2c5479040b798a6f2a30ab2cf8227e8934e
GET /c/hotjar-79667.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Sun, 23 Oct 2022 03:56:27 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: W/9030fa05966b56ed8b24e8a8aebf4ce7
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: C9IEXz9pCFMapvUeCsPpgMZNqy0u_kJ4a2IsmoZHh3FWYnCijhWTRg==
age: 13
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9f84a11cd39c014fffc187f2a8b0d8df
1875e117dec3fc707db902e87df9ec691b2cc763
bf0c0ac413147f09128a7af625499402eea897c3efad12828347efaba9b9d3a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 03:56:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9f84a11cd39c014fffc187f2a8b0d8df
1875e117dec3fc707db902e87df9ec691b2cc763
bf0c0ac413147f09128a7af625499402eea897c3efad12828347efaba9b9d3a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 03:56:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9f84a11cd39c014fffc187f2a8b0d8df
1875e117dec3fc707db902e87df9ec691b2cc763
bf0c0ac413147f09128a7af625499402eea897c3efad12828347efaba9b9d3a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 03:56:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9f84a11cd39c014fffc187f2a8b0d8df
1875e117dec3fc707db902e87df9ec691b2cc763
bf0c0ac413147f09128a7af625499402eea897c3efad12828347efaba9b9d3a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 03:56:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 20 Oct 2022 16:40:18 GMT
expires: Fri, 20 Oct 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 213382
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9f84a11cd39c014fffc187f2a8b0d8df
1875e117dec3fc707db902e87df9ec691b2cc763
bf0c0ac413147f09128a7af625499402eea897c3efad12828347efaba9b9d3a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 03:56:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
script.hotjar.com/modules.5f63ca60a03298133ad8.js
200 OK 66 kB URL HTTP/2 script.hotjar.com/modules.5f63ca60a03298133ad8.js
IP
File type Unicode text, UTF-8 text, with very long lines (48714)
Hash eb4f228026ced3bcaadde65163571860
6b60d25e6ae4145acddaeab73a79b1698a1fc645
36480b075df69bd1ede20b9d23690cd5181d895899bb6cd1500afb48cd25ae25
GET /modules.5f63ca60a03298133ad8.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 66045
date: Tue, 18 Oct 2022 12:18:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "eb4f228026ced3bcaadde65163571860"
last-modified: Tue, 18 Oct 2022 12:17:20 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: E0y4TbTfIz_ruwESV-_w-yPrBVsgyznK1Zplvl0_gNbDUEry1YqU2w==
age: 401914
X-Firefox-Spdy: h2
api.getdrip.com/client/track?url=https%3A%2F%2Filgm.com%2F%3Faff%3D1932%2Frpi%2Fttaeu&visitor_uuid=e74d7cfceefe4ba6bcc3599e5c3da074&_action=Started%20a%20new%20session&source=drip&drip_account_id=3196820&callback=Drip_559437130
200 OK 101 B URL HTTP/2 api.getdrip.com/client/track?url=https%3A%2F%2Filgm.com%2F%3Faff%3D1932%2Frpi%2Fttaeu&visitor_uuid=e74d7cfceefe4ba6bcc3599e5c3da074&_action=Started%20a%20new%20session&source=drip&drip_account_id=3196820&callback=Drip_559437130
IP
File type ASCII text, with no line terminators
Hash 84ba5a8d2109f2ea40919f142c62ea38
ad48e96c8074bdd0a887dd1febc6cd4705111554
a53ca4b7252acb1337efbb990e856d2623e93aed8e10bfd435dbcdb6f6b47ce6
GET /client/track?url=https%3A%2F%2Filgm.com%2F%3Faff%3D1932%2Frpi%2Fttaeu&visitor_uuid=e74d7cfceefe4ba6bcc3599e5c3da074&_action=Started%20a%20new%20session&source=drip&drip_account_id=3196820&callback=Drip_559437130 HTTP/1.1
Host: api.getdrip.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 101
date: Sun, 23 Oct 2022 03:56:40 GMT
x-amzn-requestid: 073d7e39-f6b0-46b6-9eaf-461a573d78c7
referrer-policy: strict-origin-when-cross-origin
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
x-runtime: 0.028281
strict-transport-security: max-age=31536000; includeSubDomains
x-amzn-remapped-content-length: 101
x-frame-options: SAMEORIGIN
x-amzn-remapped-connection: keep-alive
x-download-options: noopen
x-request-id: 2a88fa7f-129c-41b9-81a0-e76ded656ed7
x-amz-apigw-id: acI66FpCoAMFUHg=
cache-control: max-age=0, private, must-revalidate
x-amzn-remapped-server: nginx
x-content-type-options: nosniff
etag: W/"a53ca4b7252acb1337efbb990e856d26"
x-amzn-remapped-date: Sun, 23 Oct 2022 03:56:40 GMT
x-cache: Miss from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GQG_2dTbrP_yeaaDX0wzAmRihowNoGAM_MTBb1FnPQqAgwfcFoJSIw==
X-Firefox-Spdy: h2
api.getdrip.com/client/track?url=https%3A%2F%2Filgm.com%2F%3Faff%3D1932%2Frpi%2Fttaeu&visitor_uuid=e74d7cfceefe4ba6bcc3599e5c3da074&_action=Visited%20a%20page&source=drip&drip_account_id=3196820&callback=Drip_698980508
200 OK 101 B URL HTTP/2 api.getdrip.com/client/track?url=https%3A%2F%2Filgm.com%2F%3Faff%3D1932%2Frpi%2Fttaeu&visitor_uuid=e74d7cfceefe4ba6bcc3599e5c3da074&_action=Visited%20a%20page&source=drip&drip_account_id=3196820&callback=Drip_698980508
IP
File type ASCII text, with no line terminators
Hash cf42779cf6c71e833fb5f0b949888cfb
ab83d25f3814a6a6117e95ea13ecd94dfe32df1b
0cd0fdce9f5d40a32f7de4a0fafab00caf5eb77d6961e0311ac1bc8851c72fca
GET /client/track?url=https%3A%2F%2Filgm.com%2F%3Faff%3D1932%2Frpi%2Fttaeu&visitor_uuid=e74d7cfceefe4ba6bcc3599e5c3da074&_action=Visited%20a%20page&source=drip&drip_account_id=3196820&callback=Drip_698980508 HTTP/1.1
Host: api.getdrip.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 101
date: Sun, 23 Oct 2022 03:56:41 GMT
x-amzn-requestid: f2d02be9-72aa-4c79-b897-e5c31c5393f9
referrer-policy: strict-origin-when-cross-origin
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
x-runtime: 0.368728
strict-transport-security: max-age=31536000; includeSubDomains
x-amzn-remapped-content-length: 101
x-frame-options: SAMEORIGIN
x-amzn-remapped-connection: keep-alive
x-download-options: noopen
x-request-id: 43cf7e15-7b18-429b-bfaa-ec7eab3b971d
x-amz-apigw-id: acI66HDkIAMF1yQ=
cache-control: max-age=0, private, must-revalidate
x-amzn-remapped-server: nginx
x-content-type-options: nosniff
etag: W/"0cd0fdce9f5d40a32f7de4a0fafab00c"
x-amzn-remapped-date: Sun, 23 Oct 2022 03:56:41 GMT
x-cache: Miss from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tJJ4CEht85IFW4O3y_zz8IaeBNnpxZhDHNv3CaHPJrnFvr6WTlvPdw==
X-Firefox-Spdy: h2
vc.hotjar.io/sessions/79667?s=0.25&r=0.21083813441837373
204 No Content 0 B URL HTTP/2 vc.hotjar.io/sessions/79667?s=0.25&r=0.21083813441837373
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sessions/79667?s=0.25&r=0.21083813441837373 HTTP/1.1
Host: vc.hotjar.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: *
cache-control: no-store
date: Sun, 23 Oct 2022 03:56:41 GMT
server: Python/3.7 aiohttp/3.5.4
x-cache: Miss from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1TIj4z2wUcmXrAkmygU7U1xEot5-UTGCS6Ij9LcsY6kJ-3gOfjGAOA==
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash e4ec2b767746ef790b469abd22cf4b55
e1ac7bc17b396a0f91280609fb22912a1f3308f9
cbbb1c70c08a5313a06e182d7549bbaed737e4842af461bd2522cab21196916f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=125545
Date: Sun, 23 Oct 2022 03:56:41 GMT
Etag: "6353fd4e-1d7"
Expires: Mon, 24 Oct 2022 14:49:06 GMT
Last-Modified: Sat, 22 Oct 2022 14:25:18 GMT
Server: ECS (bsa/EB1C)
X-Cache: Miss from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: JNcUYvOFKtXf5vl8K7lk37vTfr7ZVhzPeaTaI_UwRo5FOddlkFDMCA==
Age: 1428
cdn-3.convertexperiments.com/js/10031096-1003601.js
200 OK 0 B URL HTTP/2 cdn-3.convertexperiments.com/js/10031096-1003601.js
IP
GET /js/10031096-1003601.js HTTP/1.1
Host: cdn-3.convertexperiments.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
x-privacy-policy: You can find our privacy policy at https://www.convert.com/privacy-notice/
vary: Accept-Encoding
content-encoding: gzip
cache-control: public, max-age=285
date: Sun, 23 Oct 2022 03:56:37 GMT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
static.affiliatly.com/v3/affiliatly.js?affiliatly_code=AF-1021567
200 OK 0 B URL HTTP/2 static.affiliatly.com/v3/affiliatly.js?affiliatly_code=AF-1021567
IP
GET /v3/affiliatly.js?affiliatly_code=AF-1021567 HTTP/1.1
Host: static.affiliatly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 03:56:37 GMT
content-type: application/x-javascript
last-modified: Sun, 23 Oct 2022 03:22:39 GMT
cache-control: max-age=14400
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 75e78b40b9eab515-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.affiliatly.com/api_request.php?aid=AF-1021567&t=1666497414061
200 OK 0 B URL HTTP/2 www.affiliatly.com/api_request.php?aid=AF-1021567&t=1666497414061
IP
POST /api_request.php?aid=AF-1021567&t=1666497414061 HTTP/1.1
Host: www.affiliatly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 127
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 03:56:39 GMT
content-type: text/html
access-control-allow-origin: *
vary: User-Agent
p3p: CP="IDC DSP COR CUR ADM OUR STP CNT"
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 75e78b474e8eb503-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
tag.getdrip.com/3196820.js
200 OK 0 B URL HTTP/2 tag.getdrip.com/3196820.js
IP
GET /3196820.js HTTP/1.1
Host: tag.getdrip.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 13 Jul 2022 09:55:10 GMT
server: AmazonS3
content-encoding: gzip
date: Sun, 23 Oct 2022 03:56:40 GMT
etag: W/"d28568db9a8f5800cd0ade62ca0a37f1"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: GyaHKqs1QF9NU2P0_VjKL2lh-go91ycfblskx7wPP9YnZeap6-xAYg==
X-Firefox-Spdy: h2
d14jnfavjicsbe.cloudfront.net/client.js
200 OK 0 B URL HTTP/2 d14jnfavjicsbe.cloudfront.net/client.js
IP
GET /client.js HTTP/1.1
Host: d14jnfavjicsbe.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
last-modified: Mon, 23 May 2022 22:40:48 GMT
x-amz-meta-md5sum: otrqY+wttznK2DSejuIkqg==
server: AmazonS3
content-encoding: gzip
date: Sun, 23 Oct 2022 03:52:44 GMT
cache-control: max-age=300
etag: W/"a2daea63ec2db739cad8349e8ee224aa"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: J-3zlj_TOupfO2Vk535R6YCnQY8FxCMfS7ZERlys_lZhb6Q5-XVlWA==
age: 262
X-Firefox-Spdy: h2
in.hotjar.com/api/v2/client/sites/79667/visit-data?sv=7
200 OK 0 B URL HTTP/2 in.hotjar.com/api/v2/client/sites/79667/visit-data?sv=7
IP
POST /api/v2/client/sites/79667/visit-data?sv=7 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 149
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 03:56:41 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/klaviyo.js?company_id=RHQ8nm
304 Not Modified 0 B URL HTTP/2 static.klaviyo.com/onsite/js/klaviyo.js?company_id=RHQ8nm
IP
GET /onsite/js/klaviyo.js?company_id=RHQ8nm HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: W/"fb1958866328227345f95f12e385f0f5"
Cache-Control: max-age=0
TE: trailers
HTTP/2 304 Not Modified
date: Sun, 23 Oct 2022 03:56:38 GMT
via: 1.1 varnish
cache-control: max-age=1, stale-while-revalidate=10800
etag: W/"fb1958866328227345f95f12e385f0f5"
age: 95769
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1666497399.543954,VS0,VE0
vary: Accept-Encoding
X-Firefox-Spdy: h2
192.254.234.35
151.101.86.133
18.184.66.11
23.36.77.32
34.246.28.68
93.184.220.29
0.0.0.0