Overview

URLgoodmarijuanaseeds.nl/rpi/ttaeu
IP 192.254.234.35 (United States)
ASN#46606 UNIFIEDLAYER-AS-1
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-09-21 21:49:45 UTC
StatusLoading report..
IDS alerts0
Blocklist alert3
urlquery alerts No alerts detected
Tags None

Domain Summary (27)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
ocsp.pki.goog (3) 175 2017-06-14 07:23:31 UTC 2022-09-21 04:20:12 UTC 142.250.74.3
cdn-3.convertexperiments.com (1) 15759 2017-01-30 01:52:20 UTC 2022-09-21 12:41:01 UTC 23.14.5.113
content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-21 04:18:32 UTC 34.160.144.191
static.klaviyo.com (2) 4056 2018-04-18 09:49:37 UTC 2022-09-21 05:12:39 UTC 151.101.86.133
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-21 04:20:37 UTC 34.117.237.239
www.affiliatly.com (1) 104513 2014-11-04 09:17:38 UTC 2022-09-21 12:41:02 UTC 172.66.43.74
static.hotjar.com (1) 641 2014-11-01 05:14:27 UTC 2022-09-21 04:21:58 UTC 54.230.111.113
tag.getdrip.com (1) 20100 2018-08-25 09:40:26 UTC 2022-09-21 16:50:13 UTC 143.204.55.53
r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-09-21 04:18:22 UTC 23.36.77.32
goodmarijuanaseeds.nl (1) 0 2019-06-09 10:17:10 UTC 2022-09-21 12:41:37 UTC 192.254.234.35 Unknown ranking
ilgm.com (2) 39164 2018-02-19 07:12:16 UTC 2022-09-21 12:41:37 UTC 104.26.9.189
1003601.metrics.convertexperiments.com (1) 0 2020-05-28 19:26:56 UTC 2022-09-21 03:31:52 UTC 52.57.2.210 Domain (convertexperiments.com) ranked at: 15227
www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-09-21 16:16:45 UTC 142.250.74.174
region1.google-analytics.com (1) 0 2022-03-17 11:26:33 UTC 2022-09-21 05:58:39 UTC 216.239.34.36 Domain (google-analytics.com) ranked at: 8401
ocsp.digicert.com (3) 86 2012-05-21 07:02:23 UTC 2022-09-21 15:45:34 UTC 93.184.220.29
static.affiliatly.com (1) 28895 2018-08-27 19:39:07 UTC 2022-09-21 19:06:09 UTC 172.66.43.74
vars.hotjar.com (1) 1014 2020-11-05 10:13:14 UTC 2022-09-21 15:46:19 UTC 143.204.55.118
api.getdrip.com (3) 20640 2018-10-18 15:45:12 UTC 2022-09-21 19:41:04 UTC 54.230.111.70
d14jnfavjicsbe.cloudfront.net (1) 0 2021-11-22 18:00:41 UTC 2022-09-21 19:41:21 UTC 54.230.245.215 Unknown ranking
push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-21 04:20:37 UTC 34.215.91.121
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-21 16:01:18 UTC 143.204.55.27
www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-09-21 04:18:29 UTC 142.250.74.72
ocsp.sca1b.amazontrust.com (2) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 54.230.245.100
static-tracking.klaviyo.com (2) 4414 2021-12-02 15:31:51 UTC 2022-09-21 05:12:40 UTC 151.101.86.133
logs.convertexperiments.com (1) 44370 2019-06-28 12:17:47 UTC 2022-09-21 03:31:52 UTC 3.74.95.251
script.hotjar.com (1) 887 2020-11-05 16:23:46 UTC 2022-09-21 15:05:23 UTC 143.204.55.96
img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-21 14:38:57 UTC 34.120.237.76

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-21 2 goodmarijuanaseeds.nl/rpi/ttaeu Malware

mnemonic secure dns
Scan Date Severity Indicator Comment
2022-09-21 2 goodmarijuanaseeds.nl Sinkholed

Quad9 DNS
Scan Date Severity Indicator Comment
2022-09-21 2 goodmarijuanaseeds.nl Sinkholed


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 192.254.234.35
Date UQ / IDS / BL URL IP
2022-12-05 23:42:07 +0000 0 - 0 - 2 goodmarijuanaseeds.nl/ 192.254.234.35
2022-11-18 18:52:08 +0000 0 - 0 - 3 cpcontacts.goodmarijuanaseeds.nl/ 192.254.234.35
2022-11-18 12:20:19 +0000 0 - 0 - 34 cpanel.goodmarijuanaseeds.nl/ 192.254.234.35
2022-10-31 07:05:33 +0000 0 - 0 - 2 goodmarijuanaseeds.nl/rpi/ttaeu 192.254.234.35
2022-10-28 05:51:53 +0000 0 - 0 - 2 goodmarijuanaseeds.nl/rpi/ttaeu 192.254.234.35


Last 5 reports on ASN: UNIFIEDLAYER-AS-1
Date UQ / IDS / BL URL IP
2023-02-04 02:38:19 +0000 11 - 9 - 4 oakhillvillagepa-auth1.tk/adobe/document/security 108.179.232.69
2023-02-04 02:27:07 +0000 0 - 0 - 2 mail.estartupchallenge-egabon.org/web/Jorange (...) 108.179.242.163
2023-02-04 02:24:22 +0000 0 - 0 - 2 whatupatl.com/HomeLoans/auth 192.185.3.210
2023-02-04 02:24:20 +0000 0 - 0 - 4 www.heeraindustries.in/ 162.214.202.31
2023-02-04 02:23:44 +0000 0 - 2 - 13 harshvardhans.com/dhlexp2m/dhl/info.php 192.185.187.212


Last 5 reports on domain: goodmarijuanaseeds.nl
Date UQ / IDS / BL URL IP
2022-12-05 23:42:07 +0000 0 - 0 - 2 goodmarijuanaseeds.nl/ 192.254.234.35
2022-11-18 18:52:08 +0000 0 - 0 - 3 cpcontacts.goodmarijuanaseeds.nl/ 192.254.234.35
2022-11-18 12:20:19 +0000 0 - 0 - 34 cpanel.goodmarijuanaseeds.nl/ 192.254.234.35
2022-10-31 07:05:33 +0000 0 - 0 - 2 goodmarijuanaseeds.nl/rpi/ttaeu 192.254.234.35
2022-10-28 05:51:53 +0000 0 - 0 - 2 goodmarijuanaseeds.nl/rpi/ttaeu 192.254.234.35


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2022-10-09 18:40:26 +0000 0 - 0 - 2 goodmarijuanaseeds.nl/rpi/ttaeu 192.254.234.35
2022-10-08 14:08:15 +0000 0 - 0 - 2 goodmarijuanaseeds.nl/rpi/ttaeu 192.254.234.35
2022-10-07 07:46:50 +0000 0 - 0 - 2 goodmarijuanaseeds.nl/rpi/ttaeu 192.254.234.35
2022-10-06 00:59:52 +0000 0 - 0 - 3 goodmarijuanaseeds.nl/rpi/ttaeu 192.254.234.35
2022-10-03 09:48:34 +0000 0 - 0 - 2 goodmarijuanaseeds.nl/rpi/ttaeu 192.254.234.35

JavaScript

Executed Scripts (54)

Executed Evals (34)
#1 JavaScript::Eval (size: 260) - SHA256: 6f2aeef0feab1b61ab55c56f3984f11ee52f57f9734a4a9e8482b3ae690ee884
(function() {
    var d = google_tag_manager["GTM-K5K6MH"].macro(4),
        a, b = !1;
    if ("function" === typeof d.forEach) {
        d.forEach(function(e) {
            "pum_form_popup_id" === e.name && (b = !0, a = e.value)
        });
        var c = a;
        b && "48131" == a && (c = "Grow Bible Popup (48131)");
        b || (c = "Not a popup")
    }
    return c
})();
#2 JavaScript::Eval (size: 173) - SHA256: 125cc8ee3d1dca7475acdad0e9fe746e919d94a9b1eb727268deca715d00b09d
(function() {
    var a = google_tag_manager["GTM-K5K6MH"].macro(5);
    0 === google_tag_manager["GTM-K5K6MH"].macro(6).indexOf("/blog") && "ilgm.com" === a && (a = "ilgm.com/blog");
    return a
})();
#3 JavaScript::Eval (size: 300) - SHA256: d41e1dcde991113b31463b01bf26258e4a9ff50dc530bd1a66eb61d1c685bb7f
(function() {
    var a = (new Date).getTime();
    "undefined" !== typeof performance && "function" === typeof performance.now && (a += performance.now());
    return "xxxxxxxx-xxxx-4xxx-yxxx-xxxxxxxxxxxx".replace(/[xy]/g, function(c) {
        var b = (a + 16 * Math.random()) % 16 | 0;
        a = Math.floor(a / 16);
        return ("x" === c ? b : b & 3 | 8).toString(16)
    })
})();
#4 JavaScript::Eval (size: 311) - SHA256: f23377476f3e798ff6e03a399b3a0f275a09b79afdfd766e87aae1e42787aa73
(function() {
    var a = new Date,
        c = -a.getTimezoneOffset(),
        d = 0 <= c ? "+" : "-",
        b = function(a) {
            a = Math.abs(Math.floor(a));
            return (10 > a ? "0" : "") + a
        };
    return a.getFullYear() + "-" + b(a.getMonth() + 1) + "-" + b(a.getDate()) + "T" + b(a.getHours()) + ":" + b(a.getMinutes()) + ":" + b(a.getSeconds()) + "." + b(a.getMilliseconds()) + d + b(c / 60) + ":" + b(c % 60)
})();
#5 JavaScript::Eval (size: 261) - SHA256: 0049bdc9c5dfee03aae1250c05120994ad0a3d5da259760b7326bf2b62f66e20
(function() {
    var d = google_tag_manager["GTM-K5K6MH"].macro(17),
        a, b = !1;
    if ("function" === typeof d.forEach) {
        d.forEach(function(e) {
            "pum_form_popup_id" === e.name && (b = !0, a = e.value)
        });
        var c = a;
        b && "48131" == a && (c = "Grow Bible Popup (48131)");
        b || (c = "Not a popup")
    }
    return c
})();
#6 JavaScript::Eval (size: 31) - SHA256: 52bc73fc061efa500df54e3991a809689dce30d2d5b0c166199f69ebaaec0269
`${ $.storageConfig.provider }`
#7 JavaScript::Eval (size: 2518) - SHA256: b54c3cdec1a294732eb9d2eb41e92ac60d5b269fc81f6389a50f2be6af9c2404
console.log('global JS ver5');
// code for checking and hiding 5+5
(function() {
    function waitUntil(predicate, success, error) {
        var int = setInterval(function() {
            if (predicate()) {
                clearInterval(int);
                int = null;
                success();
            }
        }, 25);
        setTimeout(function() {
            if (int !== null) {
                clearInterval(int);
                if (typeof error === 'function') {
                    error();
                }
            }
        }, 20000);
    }

    function main() {

        if ((window.location.pathname.includes('/products/banana-kush-feminized-seeds')) || (window.location.pathname.includes('/products/banana-kush-autoflower-seeds')) || (window.location.pathname.includes('/products/northern-lights-feminized-seeds')) || (window.location.pathname.includes('/products/northern-lights-autoflower-seeds')) || (window.location.pathname.includes('/products/sour-diesel-feminized-seeds')) || (window.location.pathname.includes('/products/sour-diesel-autoflower-seeds')) || (window.location.pathname.includes('/products/cherry-pie-feminized-seeds')) || (window.location.pathname.includes('/products/maui-wowie-feminized-seeds')) || (window.location.pathname.includes('/products/white-widow-feminized-seeds')) || (window.location.pathname.includes('/products/white-widow-autoflower-seeds')) || (window.location.pathname.includes('/products/super-skunk-feminized-seeds')) || (window.location.pathname.includes('/products/super-silver-haze-feminized-seeds'))) {
            if (document.querySelectorAll('.swatch-container [option-label="5+5"]').length > 0) {
                document.querySelector('.swatch-container .swatch-option[option-label="5+5"]').parentElement.style.display = "none";
                setTimeout(() => document.querySelector('.swatch-container [option-label="10+10"]').click(), 1000);
            }
        }
    }
    waitUntil(
        function() {
            return document.querySelectorAll('.swatch-container [option-label="5+5"]').length > 0 && document.querySelectorAll('.swatch-container [option-label="10+10"]').length > 0;
        },
        function() {
            main();
        }
    );

    waitUntil(
        function() {
            return document.querySelectorAll('.swatch-container [option-label="10+10"]').length > 0;
        },
        function() {
            //visits to 10+10 page
            window._conv_q = window._conv_q || [];
            _conv_q.push(["triggerConversion", "10033965"]);
        }
    );

})();
#8 JavaScript::Eval (size: 261) - SHA256: 989ef2cf72afba9a67e877ff15b16aa09af78e50419e3f74de4adc54133fa019
(function() {
    var d = google_tag_manager["GTM-K5K6MH"].macro(19),
        a, b = !1;
    if ("function" === typeof d.forEach) {
        d.forEach(function(e) {
            "pum_form_popup_id" === e.name && (b = !0, a = e.value)
        });
        var c = a;
        b && "48131" == a && (c = "Grow Bible Popup (48131)");
        b || (c = "Not a popup")
    }
    return c
})();
#9 JavaScript::Eval (size: 73) - SHA256: 20a33d09b9a8fc7661fbd77b663a1a20f209fdd9720b53a475aec371e94765f0
`${ $.storagesConfiguration.recently_viewed_product.namespace }_previous`
#10 JavaScript::Eval (size: 260) - SHA256: 7cf3c3facecca1157eca2b5d625ecd24ae1d9f25075b0f066e05d58c8676380e
(function() {
    var d = google_tag_manager["GTM-K5K6MH"].macro(2),
        a, b = !1;
    if ("function" === typeof d.forEach) {
        d.forEach(function(e) {
            "pum_form_popup_id" === e.name && (b = !0, a = e.value)
        });
        var c = a;
        b && "48131" == a && (c = "Grow Bible Popup (48131)");
        b || (c = "Not a popup")
    }
    return c
})();
#11 JavaScript::Eval (size: 261) - SHA256: bcbc25793de6016fdc036978d410043cf15af58b3d5bf36dc8e76829b33c879c
(function() {
    var d = google_tag_manager["GTM-K5K6MH"].macro(26),
        a, b = !1;
    if ("function" === typeof d.forEach) {
        d.forEach(function(e) {
            "pum_form_popup_id" === e.name && (b = !0, a = e.value)
        });
        var c = a;
        b && "48131" == a && (c = "Grow Bible Popup (48131)");
        b || (c = "Not a popup")
    }
    return c
})();
#12 JavaScript::Eval (size: 66) - SHA256: 5cf3ddc8bbab9b59ec6d9607e4b957f7bfcfe15ebb13d9e6d8aa71934e03d251
`${ $.storagesConfiguration.recently_compared_product.className }`
#13 JavaScript::Eval (size: 31) - SHA256: 423845742d471b3fca47622eee1d520fa6a3d35b49a124c026edf0337cbd7cab
`${ $.name }.${ $.reloadItem }`
#14 JavaScript::Eval (size: 175) - SHA256: 323dffd1342336632faba35cbf905a79ba05713aad9e98dd4fd168b0c8b7b19a
(function() {
    var a = google_tag_manager["GTM-K5K6MH"].macro(11);
    0 === google_tag_manager["GTM-K5K6MH"].macro(12).indexOf("/blog") && "ilgm.com" === a && (a = "ilgm.com/blog");
    return a
})();
#15 JavaScript::Eval (size: 13) - SHA256: 8de6518925245ff7b6e4549a5acbd8ba2c97262d10e36fc34ec91bef05eb0597
`${ $.name }`
#16 JavaScript::Eval (size: 39) - SHA256: 88160a528e8172d5e63cea12383f9788191017267ade79c19a6db77272ca8d86
`${ $.provider }:client.selectorPrefix`
#17 JavaScript::Eval (size: 439) - SHA256: c33f76153cd3970157d076fe3ab879ccee7c2b42293107cc1a415f12052f7835
(function() {
    function d(a) {
        var b = {};
        b.item_name = a.name;
        b.item_id = a.id;
        b.price = a.price;
        b.quantity = a.quantity || 1;
        b.item_brand = a.brand;
        b.item_variant = a.variant;
        b.item_category = a.category;
        b.item_category2 = a.dimension10 || a.shopify_variant_id;
        b.index = a.position || a.list_position;
        b.item_list_name = a.list;
        b.currency = a.currency || "USD";
        return b
    }
    var c = google_tag_manager["GTM-K5K6MH"].macro(7);
    if ("object" === typeof c && 0 !== c.length) return c.map(d)
})();
#18 JavaScript::Eval (size: 417) - SHA256: d37441a1b684ba7407049a2bfe6bfd4f67d9fc6485440d3f2bd60e170bddca0b
(function() {
    function d(a) {
        var b = {};
        b.item_name = a.name;
        b.item_id = a.id;
        b.price = a.price;
        b.quantity = a.quantity || 1;
        b.item_brand = a.brand;
        b.item_variant = a.variant;
        b.item_category = a.category;
        b.item_category2 = a.dimension10;
        b.index = a.position || a.list_position;
        b.item_list_name = a.list;
        b.currency = a.currency || "USD";
        return b
    }
    var c = google_tag_manager["GTM-K5K6MH"].macro(8);
    if ("object" === typeof c && 0 !== c.length) return c.map(d)
})();
#19 JavaScript::Eval (size: 261) - SHA256: 3cb96a06b9e1acee7b0f21e1aa957acc5c82e42c8071628e66f87b4f7a8242f4
(function() {
    var d = google_tag_manager["GTM-K5K6MH"].macro(28),
        a, b = !1;
    if ("function" === typeof d.forEach) {
        d.forEach(function(e) {
            "pum_form_popup_id" === e.name && (b = !0, a = e.value)
        });
        var c = a;
        b && "48131" == a && (c = "Grow Bible Popup (48131)");
        b || (c = "Not a popup")
    }
    return c
})();
#20 JavaScript::Eval (size: 62) - SHA256: fb0d32c142fa65d12fca8edc77240f5872372c7ce5c1c196b1012c360609cc44
`${ $.storageConfig.provider }:${ $.storageConfig.namespace }`
#21 JavaScript::Eval (size: 174) - SHA256: b3cde79e69b1c985176131bec0b54d766382ebdc91c65a09012b9c8d4b294508
(function() {
    var a = google_tag_manager["GTM-K5K6MH"].macro(9);
    0 === google_tag_manager["GTM-K5K6MH"].macro(10).indexOf("/blog") && "ilgm.com" === a && (a = "ilgm.com/blog");
    return a
})();
#22 JavaScript::Eval (size: 175) - SHA256: 536d1807652fc28ec3d92889efd70dc8b4f81030ff1f5072ffee6424787d99e0
(function() {
    var a = google_tag_manager["GTM-K5K6MH"].macro(29);
    0 === google_tag_manager["GTM-K5K6MH"].macro(30).indexOf("/blog") && "ilgm.com" === a && (a = "ilgm.com/blog");
    return a
})();
#23 JavaScript::Eval (size: 27) - SHA256: 4c33f08b4f77b61f05262d825b4f3d273409d43aff17a3c14dd3a5bdf9997d1d
`${ $.name.split(".")[0] }`
#24 JavaScript::Eval (size: 64) - SHA256: 2b43cd51ba69a1068f93cd23536bf0fdc9558362f72f8e95895a6b927f8be015
`${ $.storagesConfiguration.recently_viewed_product.namespace }`
#25 JavaScript::Eval (size: 38) - SHA256: 324d0dad6167292c4bddb78f7274264f69de837dae5705a9b7bd264599a5b072
`${ $.provider }:client.messagesClass`
#26 JavaScript::Eval (size: 15) - SHA256: ad79313f59713fbb63b7c0a4019899e95e900c998ebb64b76cbb30f986315c26
`.${ $.index }`
#27 JavaScript::Eval (size: 261) - SHA256: 75a08d7b39046e624ac7c596d8d0f2cb94090c48ba04d05d4fadc9949fd2be04
(function() {
    var d = google_tag_manager["GTM-K5K6MH"].macro(15),
        a, b = !1;
    if ("function" === typeof d.forEach) {
        d.forEach(function(e) {
            "pum_form_popup_id" === e.name && (b = !0, a = e.value)
        });
        var c = a;
        b && "48131" == a && (c = "Grow Bible Popup (48131)");
        b || (c = "Not a popup")
    }
    return c
})();
#28 JavaScript::Eval (size: 260) - SHA256: 9a88f6bc255cf211e0d084abeeb9402b2c334079b447dc6e59459091d1292097
(function() {
    var d = google_tag_manager["GTM-K5K6MH"].macro(3),
        a, b = !1;
    if ("function" === typeof d.forEach) {
        d.forEach(function(e) {
            "pum_form_popup_id" === e.name && (b = !0, a = e.value)
        });
        var c = a;
        b && "48131" == a && (c = "Grow Bible Popup (48131)");
        b || (c = "Not a popup")
    }
    return c
})();
#29 JavaScript::Eval (size: 83) - SHA256: 16546b79ed36a9ca2495b23fbef53975fd6d324b4b03a379a09a22cf788ba32c
(function() {
    var b = 3;
    return function(a) {
        a.set("dimension" + b, a.get("clientId"))
    }
})();
#30 JavaScript::Eval (size: 64) - SHA256: e97e88f788b2a222a68d5166bb759baf7004efc060db528dbb99224ba24b05f4
`${ $.storagesConfiguration.recently_viewed_product.className }`
#31 JavaScript::Eval (size: 66) - SHA256: a0895708b99caf0da05ef753f8ca54728087f7c13e93aef1a33e7a47c7cb0d7b
`${ $.storagesConfiguration.recently_compared_product.namespace }`
#32 JavaScript::Eval (size: 75) - SHA256: 624a5025aea3e8bee7f9f234a32abfb991efb29513aeb1f1cdc0062e12ef8961
`${ $.storagesConfiguration.recently_compared_product.namespace }_previous`
#33 JavaScript::Eval (size: 26) - SHA256: e518e33da96bfdde6c9b0d6b0bf1277492253a13f585e21f00c97537679559c1
`${ $.provider}:reloadUrl`
#34 JavaScript::Eval (size: 261) - SHA256: 934808601322c8c1d42a3647597acbb2fa40be3536c31a4b8c72ef1d10f85de4
(function() {
    var d = google_tag_manager["GTM-K5K6MH"].macro(33),
        a, b = !1;
    if ("function" === typeof d.forEach) {
        d.forEach(function(e) {
            "pum_form_popup_id" === e.name && (b = !0, a = e.value)
        });
        var c = a;
        b && "48131" == a && (c = "Grow Bible Popup (48131)");
        b || (c = "Not a popup")
    }
    return c
})();

Executed Writes (0)


HTTP Transactions (48)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 21 Sep 2022 21:23:54 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 4evlYZMCR4myS8Umq8NdmU_sHx6c1k6n9bVlFV4xuYh02j7NAdFh9g==
Age: 1540


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4844
Expires: Wed, 21 Sep 2022 23:10:18 GMT
Date: Wed, 21 Sep 2022 21:49:34 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "46E1A9E6C98245AFB7FA84BC6D9BA6844105024E2D3F56E28748E6C321475D02"
Last-Modified: Wed, 21 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4814
Expires: Wed, 21 Sep 2022 23:09:48 GMT
Date: Wed, 21 Sep 2022 21:49:34 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: YGUGWzMqm+F84NW9dSvdsfkZMLI6LgLp9ykq9BtOU2YaX2pPtJCjmtRlsxHnP7cE1iVdkL6NDzM=
x-amz-request-id: C95JQGDFXKEAQMMC
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 21 Sep 2022 21:45:48 GMT
age: 226
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 21 Sep 2022 21:49:34 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E446A8E14F8148BFEAB47A3824E1AC17B5EB987D203746599E426509CD74A050"
Last-Modified: Tue, 20 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21553
Expires: Thu, 22 Sep 2022 03:48:47 GMT
Date: Wed, 21 Sep 2022 21:49:34 GMT
Connection: keep-alive

                                        
                                            GET /rpi/ttaeu HTTP/1.1 
Host: goodmarijuanaseeds.nl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         192.254.234.35
HTTP/2 301 Moved Permanently
content-type: text/html; charset=iso-8859-1
                                        
location: https://ilgm.com?aff=1932/rpi/ttaeu
content-length: 243
date: Wed, 21 Sep 2022 21:49:34 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   243
Md5:    deccf4714ec605fec9b4e6d79ac18922
Sha1:   8cb52d85ab157dc3dcf2331869cb3e930627ec87
Sha256: 95f8bb6d36dfbfe6ce689318118bf6fb6a222ce6fc75857293f6b268d937764b

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Wed, 21 Sep 2022 21:03:22 GMT
Expires: Wed, 21 Sep 2022 21:55:43 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: CI3jTg2A0dIVSerQvK7SV6g_RnUw8ZHSqBkJEeDOZWZHToPOAlmCSA==
Age: 2772


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Cache-Control: 'max-age=158059'
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: ECS (amb/6B81)
Content-Length: 278

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3913
Cache-Control: 'max-age=158059'
Date: Wed, 21 Sep 2022 21:49:34 GMT
Last-Modified: Wed, 21 Sep 2022 20:44:22 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 4ELmYnSeR9zod7tudb0QLA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         34.215.91.121
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: y5hKvRxDMofJ5YsBsZ4PtL+oVnY=

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1
Cache-Control: 'max-age=158059'
Date: Wed, 21 Sep 2022 21:49:35 GMT
Last-Modified: Wed, 21 Sep 2022 21:49:34 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 278

                                        
                                            GET /static/version1663665297/_cache/merged/4d89a63a0fc8e30e0677e94ac7e9a055.css HTTP/1.1 
Host: ilgm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/?aff=1932/rpi/ttaeu
Cookie: PHPSESSID=nqh03fahu0m7us5jb5h13rjvr0; X-Magento-Vary=c58cc7336841735bf5ef13185766282824a9d073
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.9.189
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 21 Sep 2022 21:49:35 GMT
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=119424
etag: W/"632984d1-1d280"
expires: Wed, 20 Sep 2023 18:10:10 GMT
last-modified: Tue, 20 Sep 2022 09:16:01 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 99565
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BlgIm9f63fRpl89GIksKBze60zRU6I5HfK8VQ9YhDQXZVruvfLy1m6aznDApGZNHYsq3mLvkzHklZbcDgDv7aTH3P%2BitqxMyPuYQnDYY8HhJ40d9VT8Qmuxh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e602f9fb3d0b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size:   23178
Md5:    c91665bc873edec96259141104691118
Sha1:   eb94619fcec4b6fe04037115bab471ae5949f301
Sha256: 24f580af43e88100a89e5879ba2ca9ff9e9784d1f223a76bc43fa799408cbce6
                                        
                                            GET /?aff=1932/rpi/ttaeu HTTP/1.1 
Host: ilgm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         104.26.9.189
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Wed, 21 Sep 2022 21:49:35 GMT
vary: Accept-Encoding
set-cookie: PHPSESSID=nqh03fahu0m7us5jb5h13rjvr0; expires=Wed, 21-Sep-2022 22:49:35 GMT; Max-Age=3600; path=/; domain=ilgm.com; secure; HttpOnly; SameSite=Lax X-Magento-Vary=c58cc7336841735bf5ef13185766282824a9d073; expires=Wed, 21-Sep-2022 22:49:35 GMT; Max-Age=3600; path=/; secure; HttpOnly; SameSite=Lax
pragma: no-cache
cache-control: max-age=0, must-revalidate, no-cache, no-store
expires: Tue, 21 Sep 2021 09:13:45 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7jkh51q986UcS%2F0P8K45GYChYiKQNPoZvd7YXRsM%2FdaXmhsFzvssLCQk67SSVnKoCsF1R%2FycWpFO6R6O9s1%2BfBbVtcenKcSqjxi3tKskHt1lV08zGwtU8zuN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e602f3de850b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (60525), with CRLF, LF line terminators
Size:   53382
Md5:    d5fa01a18f42bd5fa08aab7348cd2fa7
Sha1:   be1cdfeed06b314d2111931fa5800b1289ffac2a
Sha256: 51e27b492bcc73c0c4edda182fa659a792ce06a1ac6c2a4706369352a87ff800
                                        
                                            GET /onsite/js/klaviyo.js?company_id=RHQ8nm HTTP/1.1 
Host: static.klaviyo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         151.101.86.133
HTTP/2 200 OK
content-type: application/javascript
                                        
access-control-allow-credentials: true
access-control-allow-headers:
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
allow: GET, OPTIONS
cache-control: max-age=1, stale-while-revalidate=10800
content-encoding: gzip
etag: W/"c15f4017c9121248e720fb43daa4aa5c"
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 21 Sep 2022 21:49:35 GMT
age: 3448
x-served-by: cache-lga13629-LGA, cache-bma1649-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663796976.870311,VS0,VE1
vary: Accept-Encoding
x-resp-is-stale: true
content-length: 917
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2028)
Size:   917
Md5:    dece5b6ce39b16919cf7edcc3190b079
Sha1:   799d56bdb453e1d8c8592bbb298bd22e3c36f643
Sha256: 59e6e6190546ebce56155940fe2f23f5db211bb5f7a83490439926bf13fa3f58
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4980
Expires: Wed, 21 Sep 2022 23:12:36 GMT
Date: Wed, 21 Sep 2022 21:49:36 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4980
Expires: Wed, 21 Sep 2022 23:12:36 GMT
Date: Wed, 21 Sep 2022 21:49:36 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4980
Expires: Wed, 21 Sep 2022 23:12:36 GMT
Date: Wed, 21 Sep 2022 21:49:36 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1874c3ef-e614-4fd9-9d88-b87eac5ea0e6.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9201
x-amzn-requestid: 6dbfae76-f9ab-4f31-9b62-bcf5d9ce4515
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YxzxlEYcoAMFaQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a333d-7d147481402cc46a751b72ed;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:40:13 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JEb0g486u6AjYFbf8rSbreKjh0m1GsAGbvykHl0oahmVN2ciqe5FOw==
via: 1.1 7dcaa43cd0535d889b549e6a30a57aa0.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 22:14:57 GMT
etag: "1eef1ab0099d09d1cf965b6e7b55fe2aa4e18e54"
age: 84879
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9201
Md5:    a692964324dbb9c460a1b855808d02e6
Sha1:   1eef1ab0099d09d1cf965b6e7b55fe2aa4e18e54
Sha256: 3fa9e780d62fffb635064aeed542c8e04923ff943c6080476836fab6c24e2426
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f06ad5e-83fd-449e-b227-1b9d5389e57d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10244
x-amzn-requestid: 71f08b9e-e977-48de-ad60-5192a43db517
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYwBkGqjIAMFz0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63202d3d-0af3334d085ca4a764e31bb5;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 07:11:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 7FaZfI_iYUANPdxGBld5NfneWwKJeX2nYA_gmvF9NjML5YOVhZIIoA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 19:20:13 GMT
age: 8963
etag: "b1cd04a66852694284eeef16a1cde38896e33c03"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10244
Md5:    14e6ddceb639a5f4875aecb796f95c79
Sha1:   b1cd04a66852694284eeef16a1cde38896e33c03
Sha256: 4c0657a00d7fb4caefa64c28340cad94a306cc393cffe692fcc69c65a80f2391
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60ffb31d-d07d-4e81-9477-522f011ae13e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8861
x-amzn-requestid: 873e88ab-7afc-4b14-b428-d90ec2079741
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YO2wuE0AoAMF7Gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631c3804-0d25ab397a16c78907914e23;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 07:08:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: UStTyIXPucbY9WmDl3W5bTyeT-2SJ5CTUjv8TLeexqZtKd1p2sJrNA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 03:10:59 GMT
age: 67117
etag: "56f228d7358ba9deef000f53214dc7c1dc358109"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8861
Md5:    a504981ee10d8341b64f19001464ae8a
Sha1:   56f228d7358ba9deef000f53214dc7c1dc358109
Sha256: 0ea3b6ed12f3adf9d56e7d9b61f284d28107d99f28ee4e66b4c078a9a1a0cbee
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6b35a1c-f445-4b05-b56e-ce2ad0ef2a9a.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6897
x-amzn-requestid: 509dc368-dd1c-4be7-94ff-64dbd53c199f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YoqoRG2WIAMFw6A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63268b01-1cb916c251fd5f2f3cf10435;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 03:05:37 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: vs0CTuiAdjRtfJD9qX9S5R07Hw6BWfiOAT50GwTdiSETdoqr2FNsyw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 04:14:25 GMT
age: 63311
etag: "91df60162a8322469cada0dd8eb93619f28aec1a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6897
Md5:    8bae3a7a80ff40df1d701dfc925ddeff
Sha1:   91df60162a8322469cada0dd8eb93619f28aec1a
Sha256: fab10c7ad4658bc191621d9f2042236a7b6e34448ce5215dde5b8d6a64b52952
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecaa9082-610c-41c1-ae9a-e453d87828ab.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10038
x-amzn-requestid: 4cf38a70-a706-4e6a-b854-9404727c599d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yxy1mHDCIAMF5-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a31bd-5aba5b0640221b302a19781b;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:33:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NzOpixfxr2pFiDhF5WUGmjD8r2CTn1grSkCEyWvthxRq0djbDKjknA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 22:15:05 GMT
age: 84871
etag: "54ed14436a75ba2aeb8459bad2ce70229aff4203"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10038
Md5:    dab1f2cd68979d2004ba4449d759a341
Sha1:   54ed14436a75ba2aeb8459bad2ce70229aff4203
Sha256: e782fb5ede547e1b167719068c6821c62414dcb0991bf9ac38285cb3ce8894e3
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11832
x-amzn-requestid: 75065a71-5f2d-4987-915b-9bddc772c76a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugI_EsLIAMFdmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09f-1248d25405209da3353d4a4a;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: gLh2EBTPdXvFtZuYKH1NVZebvnz4Rhs-f_rZPtfJpIWNemEk0upeOQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 22:07:08 GMT
age: 85348
etag: "8b91bc3069a3217bc719c27959d578b353b5d9dc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11832
Md5:    2ed7323b395e757f7766ea0045efdaca
Sha1:   8b91bc3069a3217bc719c27959d578b353b5d9dc
Sha256: 8daf8cb1464daa5f72bc4f1049adb4aba00b2c2dec11cb3ade3454ec2ebbfb63
                                        
                                            GET /onsite/js/runtime.9cd397946fb95e52b7a0.js?cb=1 HTTP/1.1 
Host: static.klaviyo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         151.101.86.133
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: uGl51W3BXfl+mitxv7Qq3p8mB/Y0PHoOGfj1TmWSlxW+21xiVmIrKXrFwg+q7R83YmSnK6PmA9A=
x-amz-request-id: RBVKCTQMRG92EQHW
last-modified: Tue, 20 Sep 2022 18:42:20 GMT
etag: "01c133786f488c1b88bc99974667424e"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: n44gHQ1hsMB_uBA64WYGXzsDhaIAvE_E
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Wed, 21 Sep 2022 21:49:36 GMT
age: 452
x-served-by: cache-lga13620-LGA, cache-bma1647-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 32
vary: Accept-Encoding
content-length: 8076
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (19473), with no line terminators
Size:   8076
Md5:    a0b33e3435e5549768fb53093fa009cd
Sha1:   d1d2a6b4b7194486225947ff577ef390b47c48c2
Sha256: 345adc35078549a0c6f295b3c18336b1df50618901f7833937fd33612a3ea45d
                                        
                                            GET /v3/affiliatly.js?affiliatly_code=AF-1021567 HTTP/1.1 
Host: static.affiliatly.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         172.66.43.74
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 21:49:35 GMT
last-modified: Wed, 21 Sep 2022 21:41:19 GMT
cache-control: max-age=14400
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 74e602faeecab4f9-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  C source, Unicode text, UTF-8 text, with very long lines (34317)
Size:   15185
Md5:    f25b5a41f8470ebcd7fd493a86cfd19e
Sha1:   8aadb99145d7e7f8e39fbed7912079c5434c8b1b
Sha256: 7a616f0b2108056f90b4fde847a8580c309919af03369262204ef4926979fbfb
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 21:49:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /onsite/js/static.444020cd426b0bea12c1.js?cb=1 HTTP/1.1 
Host: static-tracking.klaviyo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         151.101.86.133
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: NVmB6Kd0YFo9iCmGx+yu+eOqiC5jqbz25AtCBJn8Vs1Hbf0QGGXROARgd05prVYM5kfCwyQJ2xk=
x-amz-request-id: EYA39404SA8WM76Q
last-modified: Thu, 18 Aug 2022 15:05:14 GMT
etag: "1774dcfd43ae7a477e554d4266bbaa8e"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: ep5t_kHI_qKbZWWytxIKzh5j3YAjdqHx
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Wed, 21 Sep 2022 21:49:36 GMT
age: 452
x-served-by: cache-lga21968-LGA, cache-bma1665-BMA
x-cache: HIT, HIT
x-cache-hits: 57, 89
vary: Accept-Encoding
content-length: 5219
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12428), with no line terminators
Size:   5219
Md5:    8a51385137b20bdfcace3e12a6e9981f
Sha1:   b291ae4859ec56be11f24617f556db2be626d1f6
Sha256: 60157d9b98c625ee91011c3c06ee76809c5ac9225554e26a891462e8ed39c77d
                                        
                                            GET /onsite/js/fender_analytics.9bd929e66a2449a7cdc1.js?cb=1 HTTP/1.1 
Host: static-tracking.klaviyo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         151.101.86.133
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: 36f/ps//h2tsvtsRUgp6Mk8LzgnmM0HKjWkeHSxHbhGWZ7W/4R77UIFLmwMJGAxxLaUgzekp6vo=
x-amz-request-id: V3VGV2WY5XZ8QSWT
last-modified: Fri, 26 Aug 2022 20:33:40 GMT
etag: "d48fad1b3f959b474b934ed39d9ba542"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: DxlKU8PAW5Z2L0V.1wRK5LqPR2sBWhOg
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Wed, 21 Sep 2022 21:49:36 GMT
age: 452
x-served-by: cache-lga21973-LGA, cache-bma1665-BMA
x-cache: HIT, HIT
x-cache-hits: 5, 84
vary: Accept-Encoding
content-length: 10605
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (27584), with no line terminators
Size:   10605
Md5:    0f29e4f1e3f2addc67e4852883ecf694
Sha1:   5c059b2980e9c5356fdc0b2c727a3a86c320c5a9
Sha256: 2949ec27afb5fb53e7bba607529a9529a8c75a4d71dcbea074b88dd679f1b8c9
                                        
                                            GET /gtm.js?id=GTM-K5K6MH HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 21 Sep 2022 21:49:36 GMT
expires: Wed, 21 Sep 2022 21:49:36 GMT
cache-control: private, max-age=900
last-modified: Wed, 21 Sep 2022 21:11:33 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73101
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (26389)
Size:   73101
Md5:    2802276baa2477b4862e383b4250cf22
Sha1:   be855dbe3d8206eb30417cfb0f00bcdecfe6d444
Sha256: e7cd2c40f0b48bbe2be6ca83f717efec3feda32196fbbd301939847c45c0db39
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 21:49:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         54.230.245.100
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 21 Sep 2022 21:49:36 GMT
Last-Modified: Wed, 21 Sep 2022 20:46:56 GMT
Server: ECS (nyb/1D2D)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 5EDHEt6o2VWoCsJrXGro64j9mCl0psnTzJcKdQx3G4zr_RBQs4ukXA==
Age: 3760

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         54.230.245.100
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 21 Sep 2022 21:49:36 GMT
Last-Modified: Wed, 21 Sep 2022 20:13:55 GMT
Server: ECS (nyb/1D1B)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: pQiWas6BRCLnuFymP-VdXqphUc5K_LvoeDRau0GxW6j5oDZa_9i7UA==
Age: 5742

                                        
                                            POST /log-rep/ HTTP/1.1 
Host: 1003601.metrics.convertexperiments.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 300
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         52.57.2.210
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Wed, 21 Sep 2022 21:49:36 GMT
content-length: 2
server: nginx/1.20.0
access-control-allow-origin: https://ilgm.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   23797
Md5:    383a67941ab5fe948d87b57a4bd993eb
Sha1:   abe351bfd54b4e4189eab6e2d48cbc8cc10c9977
Sha256: 422de09866e7e7bf323b958a47ce49020f663a92655649aec0ff154f570db2de
                                        
                                            POST /log HTTP/1.1 
Host: logs.convertexperiments.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 753
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         3.74.95.251
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Wed, 21 Sep 2022 21:49:36 GMT
content-length: 2
server: nginx/1.20.0
access-control-allow-origin: https://ilgm.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   2
Md5:    99914b932bd37a50b983c5e7c90ae93b
Sha1:   bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
Sha256: 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
                                        
                                            GET /modules.f4179535429bf14e77ee.js HTTP/1.1 
Host: script.hotjar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         143.204.55.96
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 65420
date: Tue, 20 Sep 2022 16:01:07 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "4a99ec558aff503901b33da3d9b4ec1b"
last-modified: Tue, 20 Sep 2022 16:00:26 GMT
strict-transport-security: max-age=604800; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ZjPF5JvEzee0sUyaHU2nfZIyFDmCSVPwfPW4xmjF13FXbxqjJFZKMQ==
age: 107310
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (48714)
Size:   65420
Md5:    4a99ec558aff503901b33da3d9b4ec1b
Sha1:   83d1a24dacc650c18594a5334ae15a144b5704ec
Sha256: ad082098bddf0eed29c4d958450687924b052f783a834f58e59495e0c8f3143b
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Wed, 21 Sep 2022 20:41:12 GMT
expires: Wed, 21 Sep 2022 22:41:12 GMT
cache-control: public, max-age=7200
age: 4105
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   19826
Md5:    cae538dcce82598fbe43c0bf443e62dd
Sha1:   cc68ac6be9c5e0087a0000e5735b83270ace30f5
Sha256: 954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
                                        
                                            GET /box-69edcc3187336f9b0a3fbb4c73be9fe6.html HTTP/1.1 
Host: vars.hotjar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         143.204.55.118
HTTP/2 200 OK
content-type: text/html
                                        
content-length: 1044
date: Wed, 07 Sep 2022 09:17:07 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "f6a9ca04b0687ea3c0d98e8430c8c77b"
last-modified: Wed, 07 Sep 2022 09:16:57 GMT
strict-transport-security: max-age=604800; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -GymunvSZEePGOOqv9d7bWTKodab7cQjrwW4JBcS5hIOsXv0U7FkYQ==
age: 1254750
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2647)
Size:   13080
Md5:    e9d1bdd984e97bd2fdaf36e024ce0205
Sha1:   de09d7123fc9d4cec7317b93a8ba48ad212074e9
Sha256: fc753c9969d66029b355e4bde4f35cadfc57da3d4a2fcd39d1ba8782e020f49d
                                        
                                            GET /client/events/visit?drip_account_id=3196820&referrer=&url=https%3A%2F%2Filgm.com%2F%3Faff%3D1932%2Frpi%2Fttaeu&domain=ilgm.com&time_zone=UTC&enable_third_party_cookies=f&callback=Drip_94468610 HTTP/1.1 
Host: api.getdrip.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         54.230.111.70
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
content-length: 83
date: Wed, 21 Sep 2022 21:49:37 GMT
x-amzn-requestid: a5218b39-20bc-4976-ad28-59a783eb1e17
referrer-policy: strict-origin-when-cross-origin
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
x-runtime: 0.081335
strict-transport-security: max-age=31536000; includeSubDomains
x-amzn-remapped-content-length: 83
x-frame-options: SAMEORIGIN
x-amzn-remapped-connection: keep-alive
x-download-options: noopen
x-request-id: cd54f6cc-9084-4a4d-916a-ad0f109cf9da
x-amz-apigw-id: Y1IFvHEVoAMF4WA=
cache-control: max-age=0, private, must-revalidate
x-amzn-remapped-server: nginx
x-content-type-options: nosniff
etag: W/"18f0e651616d6f1eefad36770f5e202e"
x-amzn-remapped-date: Wed, 21 Sep 2022 21:49:37 GMT
x-cache: Miss from cloudfront
via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hSAVKBB-7WOkD-l3B3fpTlkqeicm-do9PatU1DZTO5GpA-4JaCym8g==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   83
Md5:    84bb2e012d493b72f1bd0502cf3375b8
Sha1:   cc8ceac7af6e2f23c078b962764d5c60cdb7eaad
Sha256: 18f0e651616d6f1eefad36770f5e202e78577b9f96e9f69de4fabb1d8367e5da
                                        
                                            GET /client/track?url=https%3A%2F%2Filgm.com%2F%3Faff%3D1932%2Frpi%2Fttaeu&visitor_uuid=509bd3234fbe490cb01c2a2c6dbad191&_action=Started%20a%20new%20session&source=drip&drip_account_id=3196820&callback=Drip_875421811 HTTP/1.1 
Host: api.getdrip.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         54.230.111.70
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
content-length: 101
date: Wed, 21 Sep 2022 21:49:37 GMT
x-amzn-requestid: 6b27a128-e799-4bed-a43e-c49b1f32b9c2
referrer-policy: strict-origin-when-cross-origin
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
x-runtime: 0.025768
strict-transport-security: max-age=31536000; includeSubDomains
x-amzn-remapped-content-length: 101
x-frame-options: SAMEORIGIN
x-amzn-remapped-connection: keep-alive
x-download-options: noopen
x-request-id: fa31a480-5c07-4051-9584-f7169730f7c8
x-amz-apigw-id: Y1IFzE7KIAMFhdA=
cache-control: max-age=0, private, must-revalidate
x-amzn-remapped-server: nginx
x-content-type-options: nosniff
etag: W/"20c3a61113f0e9d693c71397c19ad78a"
x-amzn-remapped-date: Wed, 21 Sep 2022 21:49:37 GMT
x-cache: Miss from cloudfront
via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vJcL6GPjRzskEJpzbWF_G4FPCHG3qeZL3l0vF5ptGgzaKQ8z53W92w==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   101
Md5:    b552e211e44721b5e114d265931ca34c
Sha1:   260ee563d7e028b6c8efefbc2c281ed1706d52f2
Sha256: 20c3a61113f0e9d693c71397c19ad78ae897a79ab99c847ff68ea36fd3d588c7
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 21:49:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /client/track?url=https%3A%2F%2Filgm.com%2F%3Faff%3D1932%2Frpi%2Fttaeu&visitor_uuid=509bd3234fbe490cb01c2a2c6dbad191&_action=Visited%20a%20page&source=drip&drip_account_id=3196820&callback=Drip_174147160 HTTP/1.1 
Host: api.getdrip.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         54.230.111.70
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
content-length: 101
date: Wed, 21 Sep 2022 21:49:37 GMT
x-amzn-requestid: 9437376b-322e-49f1-8813-d4979c51b52d
referrer-policy: strict-origin-when-cross-origin
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
x-runtime: 0.048099
strict-transport-security: max-age=31536000; includeSubDomains
x-amzn-remapped-content-length: 101
x-frame-options: SAMEORIGIN
x-amzn-remapped-connection: keep-alive
x-download-options: noopen
x-request-id: 20e6c306-7758-405f-ae21-a133bd49a20f
x-amz-apigw-id: Y1IFzHn2oAMFsqw=
cache-control: max-age=0, private, must-revalidate
x-amzn-remapped-server: nginx
x-content-type-options: nosniff
etag: W/"8436d4e3fd4af5e9752efe6a271bb2de"
x-amzn-remapped-date: Wed, 21 Sep 2022 21:49:37 GMT
x-cache: Miss from cloudfront
via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lXOf1wwpU5zwIqM0UNM1uX29IAsduKeWfyJxaI8UBllUxk6-TEYYFg==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   101
Md5:    96e0e9090e6bf13e743792d6c8bea115
Sha1:   6ed1e3d98bc4b34ae3b567481f0c4a65a82e9032
Sha256: 8436d4e3fd4af5e9752efe6a271bb2dec17469987720a8e54731fb09e5bb4649
                                        
                                            POST /g/collect?v=2&tid=G-DEPCSFR3BW&gtm=2oe9j0&_p=453479632&cid=836037318.1663796977&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663796976&sct=1&seg=0&dl=https%3A%2F%2Filgm.com%2F%3Faff%3D1932%2Frpi%2Fttaeu&dt=Buy%20Feminized%20%26%20Autoflower%20Marijuana%20Seeds%20Online%20%3E%3E%20ILGM&en=page_view&_fv=1&_nsi=1&_ss=1&ep.page_type=other&ep.clean_page=%2F&ep.login_state=Logged%20out&upn.shop_lifetime_value=0&up.existing_customer=No HTTP/1.1 
Host: region1.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

search
                                         216.239.34.36
HTTP/2 204 No Content
content-type: text/plain
                                        
access-control-allow-origin: https://ilgm.com
date: Wed, 21 Sep 2022 21:49:37 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /client.js HTTP/1.1 
Host: d14jnfavjicsbe.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         54.230.245.215
HTTP/2 200 OK
content-type: text/javascript
                                        
last-modified: Mon, 23 May 2022 22:40:48 GMT
x-amz-meta-md5sum: otrqY+wttznK2DSejuIkqg==
server: AmazonS3
content-encoding: gzip
date: Wed, 21 Sep 2022 21:46:50 GMT
cache-control: max-age=300
etag: W/"a2daea63ec2db739cad8349e8ee224aa"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PwtbQMUkF1DTohg64s2qOmRIqk4JKyRjoNl3fPfm-060Gun_W2VwRQ==
age: 167
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /c/hotjar-79667.js?sv=7 HTTP/1.1 
Host: static.hotjar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         54.230.111.113
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
date: Wed, 21 Sep 2022 21:48:41 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: W/91c90884bf0ee7519584f35916b08a19
strict-transport-security: max-age=604800; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: FmEMjEAdynfxKeAkNUQk7zHtnLtw10jIjSWQ6SRFjdpzDqP1B3KpmQ==
age: 56
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /3196820.js HTTP/1.1 
Host: tag.getdrip.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         143.204.55.53
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Wed, 13 Jul 2022 09:55:10 GMT
server: AmazonS3
content-encoding: gzip
date: Wed, 21 Sep 2022 21:49:36 GMT
etag: W/"d28568db9a8f5800cd0ade62ca0a37f1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ICetb89dzS2lhk_cD73t1GB4_q4n-6RM9wjz91SDp8YK9tHUE4vz2w==
age: 55
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /js/10031096-1003601.js HTTP/1.1 
Host: cdn-3.convertexperiments.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         23.14.5.113
HTTP/2 200 OK
content-type: application/javascript
                                        
x-privacy-policy: You can find our privacy policy at https://www.convert.com/privacy-notice/
vary: Accept-Encoding
content-encoding: gzip
cache-control: public, max-age=295
date: Wed, 21 Sep 2022 21:49:35 GMT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            POST /api_request.php?aid=AF-1021567&t=1663796976388 HTTP/1.1 
Host: www.affiliatly.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 127
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         172.66.43.74
HTTP/2 200 OK
content-type: text/html
                                        
date: Wed, 21 Sep 2022 21:49:36 GMT
access-control-allow-origin: *
vary: User-Agent
p3p: CP="IDC DSP COR CUR ADM OUR STP CNT"
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74e602ffea77b51e-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---