Overview

URL goodmarijuanaseeds.nl/rpi/ttaeu
IP192.254.234.35
ASNUNIFIEDLAYER-AS-1
Location United States
Report completed2022-09-29 20:38:08 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-29 2 goodmarijuanaseeds.nl/rpi/ttaeu Malware
mnemonic secure dns  No alerts detected
Quad9 DNS
Scan Date Severity Indicator Comment
2022-09-29 2 goodmarijuanaseeds.nl Sinkholed


Files

No files detected



Passive DNS (26)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS logs.convertexperiments.com (1) 44370 2019-06-28 12:17:47 UTC 2022-09-29 05:23:06 UTC 18.184.66.11
mnemonic passive DNS 1003601.metrics.convertexperiments.com (1) 0 2020-05-28 19:26:56 UTC 2022-09-29 05:23:06 UTC 52.57.2.210 Domain (convertexperiments.com) ranked at: 15227
mnemonic passive DNS api.getdrip.com (2) 20640 2018-10-18 15:45:12 UTC 2022-09-29 08:14:46 UTC 54.230.111.70
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-29 05:03:41 UTC 143.204.55.35
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-29 05:06:32 UTC 52.42.148.177
mnemonic passive DNS ocsp.sca1b.amazontrust.com (2) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 54.230.245.100
mnemonic passive DNS d14jnfavjicsbe.cloudfront.net (1) 0 2021-11-22 18:00:41 UTC 2022-09-29 06:50:27 UTC 54.230.245.48 Unknown ranking
mnemonic passive DNS script.hotjar.com (1) 887 2020-11-05 16:23:46 UTC 2022-09-29 17:47:21 UTC 143.204.55.40
mnemonic passive DNS region1.google-analytics.com (1) 0 2022-03-17 11:26:33 UTC 2022-09-29 05:08:18 UTC 216.239.34.36 Domain (google-analytics.com) ranked at: 8401
mnemonic passive DNS tag.getdrip.com (1) 20100 2018-08-25 09:40:26 UTC 2022-09-29 07:01:00 UTC 143.204.55.11
mnemonic passive DNS static.hotjar.com (1) 641 2014-11-01 05:14:27 UTC 2022-09-29 04:56:14 UTC 54.230.111.8
mnemonic passive DNS ilgm.com (1) 39164 2018-02-19 07:12:16 UTC 2022-09-29 05:23:18 UTC 104.26.9.189
mnemonic passive DNS r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-09-29 04:57:37 UTC 23.36.77.32
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-29 04:56:09 UTC 34.117.237.239
mnemonic passive DNS goodmarijuanaseeds.nl (1) 0 2019-06-09 10:17:10 UTC 2022-09-29 05:23:18 UTC 192.254.234.35 Unknown ranking
mnemonic passive DNS ocsp.digicert.com (3) 86 2012-05-21 07:02:23 UTC 2022-09-29 15:12:13 UTC 93.184.220.29
mnemonic passive DNS ocsp.pki.goog (3) 175 2017-06-14 07:23:31 UTC 2022-09-29 04:56:10 UTC 142.250.74.3
mnemonic passive DNS static-tracking.klaviyo.com (2) 4414 2021-12-02 15:31:51 UTC 2022-09-29 17:15:57 UTC 151.101.86.133
mnemonic passive DNS static.affiliatly.com (1) 28895 2018-08-27 19:39:07 UTC 2022-09-29 05:23:04 UTC 172.66.40.182
mnemonic passive DNS cdn-3.convertexperiments.com (1) 15759 2017-01-30 01:52:20 UTC 2022-09-29 10:26:50 UTC 23.14.5.113
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-27 20:08:30 UTC 2022-09-29 16:06:01 UTC 143.204.55.35
mnemonic passive DNS static.klaviyo.com (3) 4056 2018-04-18 09:49:37 UTC 2022-09-29 17:15:56 UTC 151.101.86.133
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-29 14:36:13 UTC 34.120.237.76
mnemonic passive DNS www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-09-29 04:56:27 UTC 142.250.74.72
mnemonic passive DNS www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-09-29 14:44:34 UTC 142.250.74.174
mnemonic passive DNS www.affiliatly.com (1) 104513 2014-11-04 09:17:38 UTC 2022-09-29 12:45:46 UTC 172.66.43.74


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 192.254.234.35

Date UQ / IDS / BL URL IP
2022-11-18 18:52:08 +0000
0 - 0 - 3 cpcontacts.goodmarijuanaseeds.nl/ 192.254.234.35
2022-11-18 12:20:19 +0000
0 - 0 - 34 cpanel.goodmarijuanaseeds.nl/ 192.254.234.35
2022-10-31 07:05:33 +0000
0 - 0 - 2 goodmarijuanaseeds.nl/rpi/ttaeu 192.254.234.35
2022-10-28 05:51:53 +0000
0 - 0 - 2 goodmarijuanaseeds.nl/rpi/ttaeu 192.254.234.35
2022-10-25 23:43:25 +0000
0 - 0 - 40 www.americanfinancialending.com/ 192.254.234.35

Last 5 reports on ASN: UNIFIEDLAYER-AS-1

Date UQ / IDS / BL URL IP
2022-12-02 13:53:30 +0000
44 - 0 - 44 coprwanda.com/login.php?primarymember_id=11cc (...) 192.185.105.9
2022-12-02 13:53:28 +0000
32 - 0 - 10 buscarconsultas.com.br/hub.com/SUPPORT/loginw (...) 162.241.203.180
2022-12-02 13:40:29 +0000
0 - 0 - 1 dphi.io/wp-admin/ 192.185.100.192
2022-12-02 13:34:04 +0000
0 - 0 - 13 webofthegames.com/wp-login.php?redirect_to=ww (...) 192.185.16.76
2022-12-02 13:32:47 +0000
0 - 0 - 25 www.pollenstreetsocial.com/ 50.87.232.115

Last 5 reports on domain: goodmarijuanaseeds.nl

Date UQ / IDS / BL URL IP
2022-11-18 18:52:08 +0000
0 - 0 - 3 cpcontacts.goodmarijuanaseeds.nl/ 192.254.234.35
2022-11-18 12:20:19 +0000
0 - 0 - 34 cpanel.goodmarijuanaseeds.nl/ 192.254.234.35
2022-10-31 07:05:33 +0000
0 - 0 - 2 goodmarijuanaseeds.nl/rpi/ttaeu 192.254.234.35
2022-10-28 05:51:53 +0000
0 - 0 - 2 goodmarijuanaseeds.nl/rpi/ttaeu 192.254.234.35
2022-10-23 03:56:47 +0000
0 - 0 - 2 goodmarijuanaseeds.nl/rpi/ttaeu 192.254.234.35

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-10-09 18:40:26 +0000
0 - 0 - 2 goodmarijuanaseeds.nl/rpi/ttaeu 192.254.234.35
2022-10-08 14:08:15 +0000
0 - 0 - 2 goodmarijuanaseeds.nl/rpi/ttaeu 192.254.234.35
2022-10-07 07:46:50 +0000
0 - 0 - 2 goodmarijuanaseeds.nl/rpi/ttaeu 192.254.234.35
2022-10-06 00:59:52 +0000
0 - 0 - 3 goodmarijuanaseeds.nl/rpi/ttaeu 192.254.234.35
2022-10-03 09:48:34 +0000
0 - 0 - 2 goodmarijuanaseeds.nl/rpi/ttaeu 192.254.234.35


JavaScript

Executed Scripts (55)


Executed Evals (34)

#1 JavaScript::Eval (size: 260, repeated: 1) - SHA256: 6f2aeef0feab1b61ab55c56f3984f11ee52f57f9734a4a9e8482b3ae690ee884

                                        (function() {
    var d = google_tag_manager["GTM-K5K6MH"].macro(4),
        a, b = !1;
    if ("function" === typeof d.forEach) {
        d.forEach(function(e) {
            "pum_form_popup_id" === e.name && (b = !0, a = e.value)
        });
        var c = a;
        b && "48131" == a && (c = "Grow Bible Popup (48131)");
        b || (c = "Not a popup")
    }
    return c
})();
                                    

#2 JavaScript::Eval (size: 66, repeated: 1) - SHA256: 5cf3ddc8bbab9b59ec6d9607e4b957f7bfcfe15ebb13d9e6d8aa71934e03d251

                                        `${ $.storagesConfiguration.recently_compared_product.className }`
                                    

#3 JavaScript::Eval (size: 26, repeated: 1) - SHA256: e518e33da96bfdde6c9b0d6b0bf1277492253a13f585e21f00c97537679559c1

                                        `${ $.provider}:reloadUrl`
                                    

#4 JavaScript::Eval (size: 15, repeated: 1) - SHA256: ad79313f59713fbb63b7c0a4019899e95e900c998ebb64b76cbb30f986315c26

                                        `.${ $.index }`
                                    

#5 JavaScript::Eval (size: 261, repeated: 1) - SHA256: 934808601322c8c1d42a3647597acbb2fa40be3536c31a4b8c72ef1d10f85de4

                                        (function() {
    var d = google_tag_manager["GTM-K5K6MH"].macro(33),
        a, b = !1;
    if ("function" === typeof d.forEach) {
        d.forEach(function(e) {
            "pum_form_popup_id" === e.name && (b = !0, a = e.value)
        });
        var c = a;
        b && "48131" == a && (c = "Grow Bible Popup (48131)");
        b || (c = "Not a popup")
    }
    return c
})();
                                    

#6 JavaScript::Eval (size: 260, repeated: 1) - SHA256: 7cf3c3facecca1157eca2b5d625ecd24ae1d9f25075b0f066e05d58c8676380e

                                        (function() {
    var d = google_tag_manager["GTM-K5K6MH"].macro(2),
        a, b = !1;
    if ("function" === typeof d.forEach) {
        d.forEach(function(e) {
            "pum_form_popup_id" === e.name && (b = !0, a = e.value)
        });
        var c = a;
        b && "48131" == a && (c = "Grow Bible Popup (48131)");
        b || (c = "Not a popup")
    }
    return c
})();
                                    

#7 JavaScript::Eval (size: 175, repeated: 1) - SHA256: 323dffd1342336632faba35cbf905a79ba05713aad9e98dd4fd168b0c8b7b19a

                                        (function() {
    var a = google_tag_manager["GTM-K5K6MH"].macro(11);
    0 === google_tag_manager["GTM-K5K6MH"].macro(12).indexOf("/blog") && "ilgm.com" === a && (a = "ilgm.com/blog");
    return a
})();
                                    

#8 JavaScript::Eval (size: 261, repeated: 1) - SHA256: 3cb96a06b9e1acee7b0f21e1aa957acc5c82e42c8071628e66f87b4f7a8242f4

                                        (function() {
    var d = google_tag_manager["GTM-K5K6MH"].macro(28),
        a, b = !1;
    if ("function" === typeof d.forEach) {
        d.forEach(function(e) {
            "pum_form_popup_id" === e.name && (b = !0, a = e.value)
        });
        var c = a;
        b && "48131" == a && (c = "Grow Bible Popup (48131)");
        b || (c = "Not a popup")
    }
    return c
})();
                                    

#9 JavaScript::Eval (size: 175, repeated: 1) - SHA256: 536d1807652fc28ec3d92889efd70dc8b4f81030ff1f5072ffee6424787d99e0

                                        (function() {
    var a = google_tag_manager["GTM-K5K6MH"].macro(29);
    0 === google_tag_manager["GTM-K5K6MH"].macro(30).indexOf("/blog") && "ilgm.com" === a && (a = "ilgm.com/blog");
    return a
})();
                                    

#10 JavaScript::Eval (size: 31, repeated: 1) - SHA256: 423845742d471b3fca47622eee1d520fa6a3d35b49a124c026edf0337cbd7cab

                                        `${ $.name }.${ $.reloadItem }`
                                    

#11 JavaScript::Eval (size: 417, repeated: 1) - SHA256: d37441a1b684ba7407049a2bfe6bfd4f67d9fc6485440d3f2bd60e170bddca0b

                                        (function() {
    function d(a) {
        var b = {};
        b.item_name = a.name;
        b.item_id = a.id;
        b.price = a.price;
        b.quantity = a.quantity || 1;
        b.item_brand = a.brand;
        b.item_variant = a.variant;
        b.item_category = a.category;
        b.item_category2 = a.dimension10;
        b.index = a.position || a.list_position;
        b.item_list_name = a.list;
        b.currency = a.currency || "USD";
        return b
    }
    var c = google_tag_manager["GTM-K5K6MH"].macro(8);
    if ("object" === typeof c && 0 !== c.length) return c.map(d)
})();
                                    

#12 JavaScript::Eval (size: 311, repeated: 1) - SHA256: f23377476f3e798ff6e03a399b3a0f275a09b79afdfd766e87aae1e42787aa73

                                        (function() {
    var a = new Date,
        c = -a.getTimezoneOffset(),
        d = 0 <= c ? "+" : "-",
        b = function(a) {
            a = Math.abs(Math.floor(a));
            return (10 > a ? "0" : "") + a
        };
    return a.getFullYear() + "-" + b(a.getMonth() + 1) + "-" + b(a.getDate()) + "T" + b(a.getHours()) + ":" + b(a.getMinutes()) + ":" + b(a.getSeconds()) + "." + b(a.getMilliseconds()) + d + b(c / 60) + ":" + b(c % 60)
})();
                                    

#13 JavaScript::Eval (size: 261, repeated: 1) - SHA256: 989ef2cf72afba9a67e877ff15b16aa09af78e50419e3f74de4adc54133fa019

                                        (function() {
    var d = google_tag_manager["GTM-K5K6MH"].macro(19),
        a, b = !1;
    if ("function" === typeof d.forEach) {
        d.forEach(function(e) {
            "pum_form_popup_id" === e.name && (b = !0, a = e.value)
        });
        var c = a;
        b && "48131" == a && (c = "Grow Bible Popup (48131)");
        b || (c = "Not a popup")
    }
    return c
})();
                                    

#14 JavaScript::Eval (size: 261, repeated: 1) - SHA256: bcbc25793de6016fdc036978d410043cf15af58b3d5bf36dc8e76829b33c879c

                                        (function() {
    var d = google_tag_manager["GTM-K5K6MH"].macro(26),
        a, b = !1;
    if ("function" === typeof d.forEach) {
        d.forEach(function(e) {
            "pum_form_popup_id" === e.name && (b = !0, a = e.value)
        });
        var c = a;
        b && "48131" == a && (c = "Grow Bible Popup (48131)");
        b || (c = "Not a popup")
    }
    return c
})();
                                    

#15 JavaScript::Eval (size: 64, repeated: 1) - SHA256: e97e88f788b2a222a68d5166bb759baf7004efc060db528dbb99224ba24b05f4

                                        `${ $.storagesConfiguration.recently_viewed_product.className }`
                                    

#16 JavaScript::Eval (size: 75, repeated: 1) - SHA256: 624a5025aea3e8bee7f9f234a32abfb991efb29513aeb1f1cdc0062e12ef8961

                                        `${ $.storagesConfiguration.recently_compared_product.namespace }_previous`
                                    

#17 JavaScript::Eval (size: 2518, repeated: 1) - SHA256: b54c3cdec1a294732eb9d2eb41e92ac60d5b269fc81f6389a50f2be6af9c2404

                                        console.log('global JS ver5');
// code for checking and hiding 5+5
(function() {
    function waitUntil(predicate, success, error) {
        var int = setInterval(function() {
            if (predicate()) {
                clearInterval(int);
                int = null;
                success();
            }
        }, 25);
        setTimeout(function() {
            if (int !== null) {
                clearInterval(int);
                if (typeof error === 'function') {
                    error();
                }
            }
        }, 20000);
    }

    function main() {

        if ((window.location.pathname.includes('/products/banana-kush-feminized-seeds')) || (window.location.pathname.includes('/products/banana-kush-autoflower-seeds')) || (window.location.pathname.includes('/products/northern-lights-feminized-seeds')) || (window.location.pathname.includes('/products/northern-lights-autoflower-seeds')) || (window.location.pathname.includes('/products/sour-diesel-feminized-seeds')) || (window.location.pathname.includes('/products/sour-diesel-autoflower-seeds')) || (window.location.pathname.includes('/products/cherry-pie-feminized-seeds')) || (window.location.pathname.includes('/products/maui-wowie-feminized-seeds')) || (window.location.pathname.includes('/products/white-widow-feminized-seeds')) || (window.location.pathname.includes('/products/white-widow-autoflower-seeds')) || (window.location.pathname.includes('/products/super-skunk-feminized-seeds')) || (window.location.pathname.includes('/products/super-silver-haze-feminized-seeds'))) {
            if (document.querySelectorAll('.swatch-container [option-label="5+5"]').length > 0) {
                document.querySelector('.swatch-container .swatch-option[option-label="5+5"]').parentElement.style.display = "none";
                setTimeout(() => document.querySelector('.swatch-container [option-label="10+10"]').click(), 1000);
            }
        }
    }
    waitUntil(
        function() {
            return document.querySelectorAll('.swatch-container [option-label="5+5"]').length > 0 && document.querySelectorAll('.swatch-container [option-label="10+10"]').length > 0;
        },
        function() {
            main();
        }
    );

    waitUntil(
        function() {
            return document.querySelectorAll('.swatch-container [option-label="10+10"]').length > 0;
        },
        function() {
            //visits to 10+10 page
            window._conv_q = window._conv_q || [];
            _conv_q.push(["triggerConversion", "10033965"]);
        }
    );

})();
                                    

#18 JavaScript::Eval (size: 13, repeated: 1) - SHA256: 8de6518925245ff7b6e4549a5acbd8ba2c97262d10e36fc34ec91bef05eb0597

                                        `${ $.name }`
                                    

#19 JavaScript::Eval (size: 173, repeated: 1) - SHA256: 125cc8ee3d1dca7475acdad0e9fe746e919d94a9b1eb727268deca715d00b09d

                                        (function() {
    var a = google_tag_manager["GTM-K5K6MH"].macro(5);
    0 === google_tag_manager["GTM-K5K6MH"].macro(6).indexOf("/blog") && "ilgm.com" === a && (a = "ilgm.com/blog");
    return a
})();
                                    

#20 JavaScript::Eval (size: 261, repeated: 1) - SHA256: 0049bdc9c5dfee03aae1250c05120994ad0a3d5da259760b7326bf2b62f66e20

                                        (function() {
    var d = google_tag_manager["GTM-K5K6MH"].macro(17),
        a, b = !1;
    if ("function" === typeof d.forEach) {
        d.forEach(function(e) {
            "pum_form_popup_id" === e.name && (b = !0, a = e.value)
        });
        var c = a;
        b && "48131" == a && (c = "Grow Bible Popup (48131)");
        b || (c = "Not a popup")
    }
    return c
})();
                                    

#21 JavaScript::Eval (size: 73, repeated: 1) - SHA256: 20a33d09b9a8fc7661fbd77b663a1a20f209fdd9720b53a475aec371e94765f0

                                        `${ $.storagesConfiguration.recently_viewed_product.namespace }_previous`
                                    

#22 JavaScript::Eval (size: 66, repeated: 1) - SHA256: a0895708b99caf0da05ef753f8ca54728087f7c13e93aef1a33e7a47c7cb0d7b

                                        `${ $.storagesConfiguration.recently_compared_product.namespace }`
                                    

#23 JavaScript::Eval (size: 260, repeated: 1) - SHA256: 9a88f6bc255cf211e0d084abeeb9402b2c334079b447dc6e59459091d1292097

                                        (function() {
    var d = google_tag_manager["GTM-K5K6MH"].macro(3),
        a, b = !1;
    if ("function" === typeof d.forEach) {
        d.forEach(function(e) {
            "pum_form_popup_id" === e.name && (b = !0, a = e.value)
        });
        var c = a;
        b && "48131" == a && (c = "Grow Bible Popup (48131)");
        b || (c = "Not a popup")
    }
    return c
})();
                                    

#24 JavaScript::Eval (size: 174, repeated: 1) - SHA256: b3cde79e69b1c985176131bec0b54d766382ebdc91c65a09012b9c8d4b294508

                                        (function() {
    var a = google_tag_manager["GTM-K5K6MH"].macro(9);
    0 === google_tag_manager["GTM-K5K6MH"].macro(10).indexOf("/blog") && "ilgm.com" === a && (a = "ilgm.com/blog");
    return a
})();
                                    

#25 JavaScript::Eval (size: 300, repeated: 1) - SHA256: d41e1dcde991113b31463b01bf26258e4a9ff50dc530bd1a66eb61d1c685bb7f

                                        (function() {
    var a = (new Date).getTime();
    "undefined" !== typeof performance && "function" === typeof performance.now && (a += performance.now());
    return "xxxxxxxx-xxxx-4xxx-yxxx-xxxxxxxxxxxx".replace(/[xy]/g, function(c) {
        var b = (a + 16 * Math.random()) % 16 | 0;
        a = Math.floor(a / 16);
        return ("x" === c ? b : b & 3 | 8).toString(16)
    })
})();
                                    

#26 JavaScript::Eval (size: 62, repeated: 1) - SHA256: fb0d32c142fa65d12fca8edc77240f5872372c7ce5c1c196b1012c360609cc44

                                        `${ $.storageConfig.provider }:${ $.storageConfig.namespace }`
                                    

#27 JavaScript::Eval (size: 31, repeated: 1) - SHA256: 52bc73fc061efa500df54e3991a809689dce30d2d5b0c166199f69ebaaec0269

                                        `${ $.storageConfig.provider }`
                                    

#28 JavaScript::Eval (size: 39, repeated: 1) - SHA256: 88160a528e8172d5e63cea12383f9788191017267ade79c19a6db77272ca8d86

                                        `${ $.provider }:client.selectorPrefix`
                                    

#29 JavaScript::Eval (size: 83, repeated: 1) - SHA256: 16546b79ed36a9ca2495b23fbef53975fd6d324b4b03a379a09a22cf788ba32c

                                        (function() {
    var b = 3;
    return function(a) {
        a.set("dimension" + b, a.get("clientId"))
    }
})();
                                    

#30 JavaScript::Eval (size: 261, repeated: 1) - SHA256: 75a08d7b39046e624ac7c596d8d0f2cb94090c48ba04d05d4fadc9949fd2be04

                                        (function() {
    var d = google_tag_manager["GTM-K5K6MH"].macro(15),
        a, b = !1;
    if ("function" === typeof d.forEach) {
        d.forEach(function(e) {
            "pum_form_popup_id" === e.name && (b = !0, a = e.value)
        });
        var c = a;
        b && "48131" == a && (c = "Grow Bible Popup (48131)");
        b || (c = "Not a popup")
    }
    return c
})();
                                    

#31 JavaScript::Eval (size: 27, repeated: 1) - SHA256: 4c33f08b4f77b61f05262d825b4f3d273409d43aff17a3c14dd3a5bdf9997d1d

                                        `${ $.name.split(".")[0] }`
                                    

#32 JavaScript::Eval (size: 64, repeated: 1) - SHA256: 2b43cd51ba69a1068f93cd23536bf0fdc9558362f72f8e95895a6b927f8be015

                                        `${ $.storagesConfiguration.recently_viewed_product.namespace }`
                                    

#33 JavaScript::Eval (size: 38, repeated: 1) - SHA256: 324d0dad6167292c4bddb78f7274264f69de837dae5705a9b7bd264599a5b072

                                        `${ $.provider }:client.messagesClass`
                                    

#34 JavaScript::Eval (size: 439, repeated: 1) - SHA256: c33f76153cd3970157d076fe3ab879ccee7c2b42293107cc1a415f12052f7835

                                        (function() {
    function d(a) {
        var b = {};
        b.item_name = a.name;
        b.item_id = a.id;
        b.price = a.price;
        b.quantity = a.quantity || 1;
        b.item_brand = a.brand;
        b.item_variant = a.variant;
        b.item_category = a.category;
        b.item_category2 = a.dimension10 || a.shopify_variant_id;
        b.index = a.position || a.list_position;
        b.item_list_name = a.list;
        b.currency = a.currency || "USD";
        return b
    }
    var c = google_tag_manager["GTM-K5K6MH"].macro(7);
    if ("object" === typeof c && 0 !== c.length) return c.map(d)
})();
                                    

Executed Writes (0)



HTTP Transactions (46)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 29 Sep 2022 20:15:55 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 2IYn5OZNI1P2J_ssg8kJ2BMQe2Wmy-we6xwm-kZPYSb8GIZXXy4wWg==
Age: 1322


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "2A40F957A6B1734AA3F87CFF51B673F0536732DB15B09033DD604879692DF349"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5306
Expires: Thu, 29 Sep 2022 22:06:23 GMT
Date: Thu, 29 Sep 2022 20:37:57 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 29 Sep 2022 05:28:28 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: MWnlJ0UGQMKFmyyebLs1BsboUmFF4YY_o5AKk-e3IARvYgsbCYLA1A==
age: 54570
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 29 Sep 2022 20:37:57 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E1B4FE2C9D04F5BA06BAD46294E97BEA58D8D470272B5C171A067E4C178EDE8E"
Last-Modified: Wed, 28 Sep 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 30 Sep 2022 02:37:57 GMT
Date: Thu, 29 Sep 2022 20:37:57 GMT
Connection: keep-alive

                                        
                                            GET /rpi/ttaeu HTTP/1.1 
Host: goodmarijuanaseeds.nl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         192.254.234.35
HTTP/2 301 Moved Permanently
content-type: text/html; charset=iso-8859-1
                                        
location: https://ilgm.com?aff=1932/rpi/ttaeu
content-length: 243
date: Thu, 29 Sep 2022 20:37:57 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   243
Md5:    deccf4714ec605fec9b4e6d79ac18922
Sha1:   8cb52d85ab157dc3dcf2331869cb3e930627ec87
Sha256: 95f8bb6d36dfbfe6ce689318118bf6fb6a222ce6fc75857293f6b268d937764b

Alerts:
  Blocklists:
    - fortinet: Malware
    - quad9: Sinkholed
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Thu, 29 Sep 2022 20:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Thu, 29 Sep 2022 20:31:59 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: SkfXU7YOJn2C7D2ECuoDd0VgNrCueYOwDdQSQ2msNTV-6fwOfTelDg==
Age: 504


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Cache-Control: 'max-age=158059'
Date: Thu, 29 Sep 2022 20:37:57 GMT
Server: ECS (amb/6BA7)
Content-Length: 279

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2980
Cache-Control: 'max-age=158059'
Date: Thu, 29 Sep 2022 20:37:57 GMT
Last-Modified: Thu, 29 Sep 2022 19:48:17 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: YOfmygWF9q65X6y7Dpn2tQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.42.148.177
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: l4UCoqNRF9piOwIZtAv19nlzmIc=

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1
Cache-Control: 'max-age=158059'
Date: Thu, 29 Sep 2022 20:37:58 GMT
Last-Modified: Thu, 29 Sep 2022 20:37:57 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /onsite/js/klaviyo.js?company_id=RHQ8nm HTTP/1.1 
Host: static.klaviyo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: application/javascript
                                        
access-control-allow-credentials: true
access-control-allow-headers:
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
allow: OPTIONS, GET
cache-control: max-age=1, stale-while-revalidate=10800
content-encoding: gzip
etag: W/"e75e6dfbaf67ac22cd7739f223a43386"
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 29 Sep 2022 20:37:59 GMT
age: 3175
x-served-by: cache-lga21975-LGA, cache-bma1658-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 1
x-timer: S1664483879.005243,VS0,VE1
vary: Accept-Encoding
x-resp-is-stale: true
content-length: 918
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2028)
Size:   918
Md5:    53c731b50da20ecf6c5518aa076d21c8
Sha1:   96de9c06a4de49ea5cb964266b3adf94a43813d9
Sha256: eb6af5346cf28962ecf0a212d35fc328512b609a8a1ce0e7c4814e426d63914e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9470
Expires: Thu, 29 Sep 2022 23:15:49 GMT
Date: Thu, 29 Sep 2022 20:37:59 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   9341
Md5:    8fc6ddb9b8aa2c9efd5d06b5916fff5a
Sha1:   7f06005a8fc50f65be6bf21ee500ea29279e5095
Sha256: 8f7e0df6b7ef476c62f9b1091cc5188028c891b33298280811125bedee1980d8
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9470
Expires: Thu, 29 Sep 2022 23:15:49 GMT
Date: Thu, 29 Sep 2022 20:37:59 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9470
Expires: Thu, 29 Sep 2022 23:15:49 GMT
Date: Thu, 29 Sep 2022 20:37:59 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F783cca30-851d-4c3b-97b3-dfc92f711d23.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4093
x-amzn-requestid: 4275d743-8507-4fbe-83d1-cc0da2adef7b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZMKoPHCMIAMF7wQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6334be34-5ddb717430e7b38e3ee53657;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 21:35:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: H713oiiX6wslZytV_P5NblH5vT7KZ2fv1G3DLKLrH5nw0lHOquia4w==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 21:40:48 GMT
etag: "c17c7bdfa4b40f9a0634da65c610869e5c410bf1"
age: 82631
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4093
Md5:    aed4d25286420a1405c3274931194002
Sha1:   c17c7bdfa4b40f9a0634da65c610869e5c410bf1
Sha256: f32058bdd49930b927d1f9fdfd204ed054b4f85e0d679eff067d522d42ac504a
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9470
Expires: Thu, 29 Sep 2022 23:15:49 GMT
Date: Thu, 29 Sep 2022 20:37:59 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5cbaf6d-fc16-4449-8b54-1d55f68eff4f.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 14073
x-amzn-requestid: 4ff72590-e28d-4d4b-af1a-4d62e75e3d66
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZMKnpEsJoAMFlBQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6334be30-38b014a25551aa0a2ab04ccf;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 21:35:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: gP4V4fq53Z5BFfjDlx1LCR9AhUPTq0qusBaOY_UEXjJjM6SByqDgXg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 21:41:45 GMT
etag: "72603efba82d649ce5a7a0ca45dc830c0d9ef012"
age: 82574
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   14073
Md5:    11594ce7500d8776bfd5162b17f87d72
Sha1:   72603efba82d649ce5a7a0ca45dc830c0d9ef012
Sha256: 511f5aa33750cd4a02cf3968bf165ffa521e77cb4fb7135b516d7ad14e8b9d01
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99f26bb4-2c5c-44ef-86d3-90fd05ec1ce0.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9654
x-amzn-requestid: 7277f59f-452d-4cb6-a76e-1561b4ff3de0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGW2REPzoAMFrww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63326b5b-4f5d775830c95b065ce40d3f;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 03:17:47 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: jTiWrrcC29QaFlnaiNH_KmEaphRZhWyzf1JbWb6uL00D3vOMR7Wfyg==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 03:28:09 GMT
age: 61790
etag: "44cc19b21912d07f82a88af5b2fa6d3e370459bf"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9654
Md5:    36ae9444071dd70dcf86802c370ffda9
Sha1:   44cc19b21912d07f82a88af5b2fa6d3e370459bf
Sha256: 99984d108bf31d733414f7f1352e17225ac21ac2dbfb4b1e7fa7ae80e5b6b822
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6362b4f1-5935-43c9-9147-6d019a1ea6cd.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4235
x-amzn-requestid: 60825c64-7743-4b16-b80d-d1195ccb0f23
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZMK2nFsDoAMFRwg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6334be90-1898e5d9111db7c843c1ebb4;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 21:37:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C-XC9qsktkENdI6lWZp5RQjeEvrrFMUfBq1mA5dxEjRq5tkfL5Jsxw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 21:40:46 GMT
age: 82633
etag: "2bbcd6305b4da3204bf1c04b6db23d44cfc84fbb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4235
Md5:    30471179bd7cdeecea2fa4ea98701aef
Sha1:   2bbcd6305b4da3204bf1c04b6db23d44cfc84fbb
Sha256: 967e070aec3942c64cc6c4cfdc13d430825c9e5c26dbec5bb3d66237d5978dfc
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9d0e9057-f203-4080-95b8-652ecd15effa.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7859
x-amzn-requestid: 34d0718f-46d4-446f-bb06-8449bd8f4287
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZIlO4FcBoAMFy0w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63334f2b-58ae81c9077e4f1575750f15;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 19:29:47 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: XwUZAphoqael30FgWCRQlHqBpjBOSG7rnlbPNKyojhONZ625gCUI5g==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 07:36:34 GMT
age: 46885
etag: "35ec6e80d324bb215796c590a7ffafbaea55d88e"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   14157
Md5:    f49b2b6ed9f35f90bad4e914df4ae6bb
Sha1:   12cc2c1b7084aa50d2257989ce5698dbab6fa1ba
Sha256: 1d81d2436642155cef468b6083375f1917dd760149eba3edf60e622808311a62
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75de31dd-bbf0-4a21-bfac-94f0062f4da4.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10023
x-amzn-requestid: 0cb6b9a1-0707-4094-b197-5a0add2df717
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZMK4dHJLIAMFWmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6334be9c-2d8bbb17157900f126c5bb3c;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 21:37:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wZ2hBqHAdwimAVV3p-CJFrb9zQ-CTN5ar9CB-cu0mZoENYUFTKKPWQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 ddaf46a95abcfc80e8eae76235e2127c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 21:40:43 GMT
age: 82636
etag: "e1067a2dfbc22e7eb196046d57bd1e17604dba75"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10023
Md5:    f4505f57697072468da82e0b536d0d5b
Sha1:   e1067a2dfbc22e7eb196046d57bd1e17604dba75
Sha256: b5e79054f165f38b99f93a8128284f82076523988aeb102b85dd8ff1a2870d00
                                        
                                            GET /onsite/js/sharedUtils.0bc3da446707ca1edb02.js?cb=1 HTTP/1.1 
Host: static.klaviyo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: IlT6kPnA9ssToQg2br24zjaYpouwzHuGVmlqFIP+L8Pw+7i15Yy2jhHVcSD2xOHx5RWAdZWRMJE=
x-amz-request-id: FDHRXCM9F36M1V2Y
last-modified: Thu, 22 Sep 2022 20:56:47 GMT
etag: "af06dc05c43c0e0ef631aa6578eb2b20"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: nWL.VwGMlkCnpf2w6hy7LSuPMY5QeZrD
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Thu, 29 Sep 2022 20:37:59 GMT
age: 705
x-served-by: cache-lga21967-LGA, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 295
vary: Accept-Encoding
content-length: 13237
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (34307), with no line terminators
Size:   13237
Md5:    ac1e18ce6cac8daaaef31bed3c074515
Sha1:   8ea498fa5964d40d6e9d771a57b2c2d4951c7a83
Sha256: 7c027fff21e5b62a108e839ed90d91b856969e798318524b06faf4232c490544
                                        
                                            GET /onsite/js/runtime.fc1ee1534c7a75410b9a.js?cb=1 HTTP/1.1 
Host: static.klaviyo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: mrpKJPIEBC10yvGQ2oY4wE6dR04BlP6p4H0yABGH1bmEYyUiCBzCKCABSLB1eBGU0C9VTGQ3RDM=
x-amz-request-id: 8WBKTM8H6NC4J0QW
last-modified: Thu, 29 Sep 2022 19:44:53 GMT
etag: "220292bcd73cda04fb5d16fc5ac7c5e5"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: Ma87dy.ojj6UOeEM3lRB9VIdIWgnIqZA
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Thu, 29 Sep 2022 20:37:59 GMT
age: 705
x-served-by: cache-lga13626-LGA, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 4, 50
vary: Accept-Encoding
content-length: 8076
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (19473), with no line terminators
Size:   8076
Md5:    acd5d39134042a724562a72f94670ef7
Sha1:   8ebb852a57cd0f829be8df73418c6de377055f02
Sha256: 298131dac2b14c31a0a0b6a9ddd82037bbd063cdf1e9b2ff917203c327872993
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 29 Sep 2022 20:37:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /onsite/js/static.444020cd426b0bea12c1.js?cb=1 HTTP/1.1 
Host: static-tracking.klaviyo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: NVmB6Kd0YFo9iCmGx+yu+eOqiC5jqbz25AtCBJn8Vs1Hbf0QGGXROARgd05prVYM5kfCwyQJ2xk=
x-amz-request-id: EYA39404SA8WM76Q
last-modified: Thu, 18 Aug 2022 15:05:14 GMT
etag: "1774dcfd43ae7a477e554d4266bbaa8e"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: ep5t_kHI_qKbZWWytxIKzh5j3YAjdqHx
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Thu, 29 Sep 2022 20:37:59 GMT
age: 705
x-served-by: cache-lga21968-LGA, cache-bma1668-BMA
x-cache: HIT, HIT
x-cache-hits: 57, 290
vary: Accept-Encoding
content-length: 5219
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12428), with no line terminators
Size:   5219
Md5:    8a51385137b20bdfcace3e12a6e9981f
Sha1:   b291ae4859ec56be11f24617f556db2be626d1f6
Sha256: 60157d9b98c625ee91011c3c06ee76809c5ac9225554e26a891462e8ed39c77d
                                        
                                            GET /onsite/js/fender_analytics.b753a4263579a29a452c.js?cb=1 HTTP/1.1 
Host: static-tracking.klaviyo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: AAvTkxUkmn1nhj3iNswxgEddMkNCaLEoFYU8uvfLxh/TAQztrGjDPwoZe5ofoJQtFoTaE8Fp7ME=
x-amz-request-id: ST1DZM45FMXDHFQH
last-modified: Tue, 27 Sep 2022 21:33:03 GMT
etag: "6bad3e1e666b70ad024f4e213c466fb0"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: K07yjFr4xSPCpq8xLpZz92YJ8R.g8eja
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Thu, 29 Sep 2022 20:37:59 GMT
age: 705
x-served-by: cache-lga21924-LGA, cache-bma1668-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 308
vary: Accept-Encoding
content-length: 10684
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (27732), with no line terminators
Size:   10684
Md5:    906f95b9074e0ab4e5ab14293f285191
Sha1:   f2457ae9855b67adb365356680a9f6eb6143c955
Sha256: c721196d5c3530a99c9474d91f0fcb66191b98b28ae97392c53e9509258c06c6
                                        
                                            GET /gtm.js?id=GTM-K5K6MH HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 29 Sep 2022 20:37:59 GMT
expires: Thu, 29 Sep 2022 20:37:59 GMT
cache-control: private, max-age=900
last-modified: Thu, 29 Sep 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73361
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (26389)
Size:   73361
Md5:    0a40ed4fa2a1b8a03a7c7f64c6993c96
Sha1:   d5a165ee8799d56aa59608f6d0f640bb0e26ea29
Sha256: 1de2c8efdfdaec9fdeb683cd4ce38896faa3603bc05504bbbac13dee0b14ab34
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 29 Sep 2022 20:37:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         54.230.245.100
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 29 Sep 2022 20:37:59 GMT
Last-Modified: Thu, 29 Sep 2022 19:19:27 GMT
Server: ECS (nyb/1D08)
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 3wofndg5h_iXa9pN_-aUgLpQ2LZBPl3_KYAGhWXEEq0eUOBQsUvNow==
Age: 4712

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         54.230.245.100
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=105824
Date: Thu, 29 Sep 2022 20:37:59 GMT
Etag: "6334e2ea-1d7"
Expires: Sat, 01 Oct 2022 02:01:43 GMT
Last-Modified: Thu, 29 Sep 2022 00:12:26 GMT
Server: ECS (nyb/1D23)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: arCqJHv0lnCSOQe09gkZGws_ZfZWvWq7CPDLZG6HLg3WnPcyavhAUQ==
Age: 6557

                                        
                                            POST /log HTTP/1.1 
Host: logs.convertexperiments.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 752
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         18.184.66.11
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Thu, 29 Sep 2022 20:37:59 GMT
content-length: 2
server: nginx/1.20.0
access-control-allow-origin: https://ilgm.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   20866
Md5:    7cecd2d456951ea8596979fa84ce7908
Sha1:   8829d49e6fd59f3bcf941718a7d7d87562bffefb
Sha256: 9b87709232488f1c29e56e79eeb19749098986e7ef00acf867be9f173d4484c7
                                        
                                            POST /log-rep/ HTTP/1.1 
Host: 1003601.metrics.convertexperiments.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 300
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         52.57.2.210
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Thu, 29 Sep 2022 20:37:59 GMT
content-length: 2
server: nginx/1.20.0
access-control-allow-origin: https://ilgm.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   2
Md5:    99914b932bd37a50b983c5e7c90ae93b
Sha1:   bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
Sha256: 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Thu, 29 Sep 2022 18:41:09 GMT
expires: Thu, 29 Sep 2022 20:41:09 GMT
cache-control: public, max-age=7200
age: 7011
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   19826
Md5:    cae538dcce82598fbe43c0bf443e62dd
Sha1:   cc68ac6be9c5e0087a0000e5735b83270ace30f5
Sha256: 954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
                                        
                                            GET /client.js HTTP/1.1 
Host: d14jnfavjicsbe.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.245.48
HTTP/2 200 OK
content-type: text/javascript
                                        
last-modified: Mon, 23 May 2022 22:40:48 GMT
x-amz-meta-md5sum: otrqY+wttznK2DSejuIkqg==
server: AmazonS3
content-encoding: gzip
date: Thu, 29 Sep 2022 20:33:49 GMT
cache-control: max-age=300
etag: W/"a2daea63ec2db739cad8349e8ee224aa"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fSdGFspmE1q1ZCK7bxDSOLsMw1yaBGwjb-fqJcBI6Fjek1uBRA0Xmw==
age: 252
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   42745
Md5:    e53ed3725c661af297bbb8f900fbe135
Sha1:   4f525e70f57b7b60148b546d612345a1c0dd9590
Sha256: 08d516fe9e00ee7a93b02b0333818db33504a68391c2c4b5d181a5e68ea33bee
                                        
                                            GET /modules.8203b45d0468dcab4b64.js HTTP/1.1 
Host: script.hotjar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.40
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 66188
date: Thu, 29 Sep 2022 08:21:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "8d1d8a5e8e622b17cd6f34cada8fcb94"
last-modified: Thu, 29 Sep 2022 08:20:37 GMT
strict-transport-security: max-age=604800; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: nN-kUljKp0WYxm50_fzZgLgfs9YmBKlzypiwIrxZOksUFnBLFULLhw==
age: 44214
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (48714)
Size:   66188
Md5:    8d1d8a5e8e622b17cd6f34cada8fcb94
Sha1:   092374aeb1f4e02a2d5d6310715645465a91209e
Sha256: 5d7e4a28e2df65b613dfad6aee3984dd202906cb803757d6b187a0b692bc1746
                                        
                                            POST /api_request.php?aid=AF-1021567&t=1664483876658 HTTP/1.1 
Host: www.affiliatly.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 127
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         172.66.43.74
HTTP/2 200 OK
content-type: text/html
                                        
date: Thu, 29 Sep 2022 20:37:59 GMT
access-control-allow-origin: *
vary: User-Agent
p3p: CP="IDC DSP COR CUR ADM OUR STP CNT"
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 75278517bf200b65-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 29 Sep 2022 20:38:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /g/collect?v=2&tid=G-DEPCSFR3BW&gtm=2oe9s0&_p=735431877&cid=1553444853.1664483877&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664483877&sct=1&seg=0&dl=https%3A%2F%2Filgm.com%2F%3Faff%3D1932%2Frpi%2Fttaeu&dt=Buy%20Feminized%20%26%20Autoflower%20Marijuana%20Seeds%20Online%20%3E%3E%20ILGM&en=page_view&_fv=1&_nsi=1&_ss=1&ep.page_type=other&ep.clean_page=%2F&ep.login_state=Logged%20out&upn.shop_lifetime_value=0&up.existing_customer=No HTTP/1.1 
Host: region1.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ilgm.com
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                         
                                         216.239.34.36
HTTP/2 204 No Content
content-type: text/plain
                                        
access-control-allow-origin: https://ilgm.com
date: Thu, 29 Sep 2022 20:38:00 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /client/track?url=https%3A%2F%2Filgm.com%2F%3Faff%3D1932%2Frpi%2Fttaeu&visitor_uuid=42e5d05f71a141de89601ddf2d4fa502&_action=Started%20a%20new%20session&source=drip&drip_account_id=3196820&callback=Drip_618980434 HTTP/1.1 
Host: api.getdrip.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.70
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
content-length: 101
date: Thu, 29 Sep 2022 20:38:01 GMT
x-amzn-requestid: 13b396f4-67e7-47c0-8028-b907fd5c59fe
referrer-policy: strict-origin-when-cross-origin
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
x-runtime: 0.024427
strict-transport-security: max-age=31536000; includeSubDomains
x-amzn-remapped-content-length: 101
x-frame-options: SAMEORIGIN
x-amzn-remapped-connection: keep-alive
x-download-options: noopen
x-request-id: 217c88d9-9c6a-4c01-b82c-1acac4db2bcd
x-amz-apigw-id: ZPVGbEIOIAMFmRA=
cache-control: max-age=0, private, must-revalidate
x-amzn-remapped-server: nginx
x-content-type-options: nosniff
etag: W/"8a4ac9c089581f104c762c37d4254ef1"
x-amzn-remapped-date: Thu, 29 Sep 2022 20:38:01 GMT
x-cache: Miss from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YUJAsC18WZP7Tm8to-dqnpiPNKf-cNb75ZqZfZPBVO8RMnAl-sLKqg==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   101
Md5:    7af4bf790049a966b8337abd73898196
Sha1:   a4eb8194b2f48d08c5fda1686faa74a29bb30ee5
Sha256: 8a4ac9c089581f104c762c37d4254ef15cfb2b9eb5f034bc9122b5ff7c48521b
                                        
                                            GET /client/track?url=https%3A%2F%2Filgm.com%2F%3Faff%3D1932%2Frpi%2Fttaeu&visitor_uuid=42e5d05f71a141de89601ddf2d4fa502&_action=Visited%20a%20page&source=drip&drip_account_id=3196820&callback=Drip_391775228 HTTP/1.1 
Host: api.getdrip.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.70
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
content-length: 101
date: Thu, 29 Sep 2022 20:38:01 GMT
x-amzn-requestid: 9d66e465-5603-4c66-824c-4631c099ece2
referrer-policy: strict-origin-when-cross-origin
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
x-runtime: 0.044790
strict-transport-security: max-age=31536000; includeSubDomains
x-amzn-remapped-content-length: 101
x-frame-options: SAMEORIGIN
x-amzn-remapped-connection: keep-alive
x-download-options: noopen
x-request-id: d2b1bc8f-d6b3-441c-9637-aab6980d709b
x-amz-apigw-id: ZPVGbFrGoAMF_9w=
cache-control: max-age=0, private, must-revalidate
x-amzn-remapped-server: nginx
x-content-type-options: nosniff
etag: W/"4d93fd9774983375d8937900882c53b0"
x-amzn-remapped-date: Thu, 29 Sep 2022 20:38:01 GMT
x-cache: Miss from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uW8vd8yhQUZ5MtWPol4TFmmij19cIN1zaz4OPS3a8coRgdmaDNxHwA==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   101
Md5:    e3cd75c282a22f23926b5de382d0d5fd
Sha1:   6756b042dca74c231aae27e0395a41ba1799ce81
Sha256: 4d93fd9774983375d8937900882c53b0019d7f5bcbb2ab0845c3ee695a0785ab
                                        
                                            GET /v3/affiliatly.js?affiliatly_code=AF-1021567 HTTP/1.1 
Host: static.affiliatly.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.66.40.182
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Thu, 29 Sep 2022 20:37:59 GMT
last-modified: Thu, 29 Sep 2022 19:51:49 GMT
cache-control: max-age=14400
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 752785136a280af6-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /js/10031096-1003601.js HTTP/1.1 
Host: cdn-3.convertexperiments.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.14.5.113
HTTP/2 200 OK
content-type: application/javascript
                                        
x-privacy-policy: You can find our privacy policy at https://www.convert.com/privacy-notice/
vary: Accept-Encoding
content-encoding: gzip
cache-control: public, max-age=300
date: Thu, 29 Sep 2022 20:37:59 GMT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /3196820.js HTTP/1.1 
Host: tag.getdrip.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.11
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Wed, 13 Jul 2022 09:55:10 GMT
server: AmazonS3
content-encoding: gzip
date: Thu, 29 Sep 2022 20:38:01 GMT
etag: W/"d28568db9a8f5800cd0ade62ca0a37f1"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: j2KBSmifLjE0kW_est0Ehqw1julBXiqz8oui4wWbtxM_p_QPYGLoDA==
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /c/hotjar-79667.js?sv=7 HTTP/1.1 
Host: static.hotjar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilgm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.8
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
date: Thu, 29 Sep 2022 20:38:00 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=604800; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
etag: W/f03ac9f9f2f15b71f77b19cedde83c91
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _F3NneYSNlshK2PzjPF5lIRVpM2K2f1FK0YVm0jDU6OeRnm9lpgMZA==
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /?aff=1932/rpi/ttaeu HTTP/1.1 
Host: ilgm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         104.26.9.189
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Thu, 29 Sep 2022 20:37:58 GMT
vary: Accept-Encoding
set-cookie: PHPSESSID=v8nqm3abls165pmqh850io9ld4; expires=Thu, 29-Sep-2022 21:37:58 GMT; Max-Age=3600; path=/; domain=ilgm.com; secure; HttpOnly; SameSite=Lax X-Magento-Vary=c58cc7336841735bf5ef13185766282824a9d073; expires=Thu, 29-Sep-2022 21:37:58 GMT; Max-Age=3600; path=/; secure; HttpOnly; SameSite=Lax
pragma: no-cache
cache-control: max-age=0, must-revalidate, no-cache, no-store
expires: Wed, 29 Sep 2021 09:07:28 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hHslnpqclr0kt%2FjZOcSAm6TNholxfpbhWePClbfUk%2Bg78Ys6TOaZm2Eh0aNZ3lMhc%2B5ylIIjpcZhdXcK3jbFfJL9tL47%2Fk9RBqjgtN3yifMm%2FUDeiGTW6NDq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7527850cab7cb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---