r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 861cfa99de956423d917ed0ddbea4b9c
ad65dbc394b48b04a45c205f56af296c8d008db4
5c706b2718b1698995f4feb91223779aef4bf6dc967c31f9ef9a93873197d5f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5C706B2718B1698995F4FEB91223779AEF4BF6DC967C31F9EF9A93873197D5F9"
Last-Modified: Sun, 18 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2544
Expires: Mon, 19 Sep 2022 11:08:12 GMT
Date: Mon, 19 Sep 2022 10:25:48 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 19 Sep 2022 09:57:37 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: mA_ML-KZ4ObIfh5OsFXoo4nHk9Yvcq-aKv2vpNQq-iacK99UtOLAjA==
Age: 1691
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 19 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: tm-BneO_PS_6ba4ZLWs9YSLCn7On599-PhX51ZCjO48U2E7gSGtqPA==
age: 21035
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:25:48 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Mon, 19 Sep 2022 10:03:22 GMT
Cache-Control: max-age=3600
Expires: Mon, 19 Sep 2022 10:19:51 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: rf_ATd4psbm91ku0DVViwxYF5pa-QlZLIF6jgSREdXFOwa9ELtQOag==
Age: 1346
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5c817aa82ca8ed4a4257fd1e1628b423
7905c62b6bbc582860c07b75eddae371a4b8d02b
dce1783ecfe50c83d30878b48d60e1cf3fe42a3fa4090fb5d318194de73e53d6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1694
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:25:49 GMT
Last-Modified: Mon, 19 Sep 2022 09:57:35 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
44.240.140.78101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.240.140.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: X0AqYlfXgcNGrbtCIdRBgQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: nq4G/1TYr7vrwn8Qa+xqWxEQRXc=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9888
Expires: Mon, 19 Sep 2022 13:10:38 GMT
Date: Mon, 19 Sep 2022 10:25:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9888
Expires: Mon, 19 Sep 2022 13:10:38 GMT
Date: Mon, 19 Sep 2022 10:25:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9888
Expires: Mon, 19 Sep 2022 13:10:38 GMT
Date: Mon, 19 Sep 2022 10:25:50 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e5b5676-18df-4d43-8bbd-b85ffe4f1a94.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e5b5676-18df-4d43-8bbd-b85ffe4f1a94.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1105b56cf779b6df1cbd081bbd0cda50
58c5d6f8ba1d3236d788ac55ff7cb2ec7863fb5c
10c1f0433baf51e06565ff905688075aaba8fec0a8b3f9cef34168e297f94c2c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e5b5676-18df-4d43-8bbd-b85ffe4f1a94.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5866
x-amzn-requestid: 3a7db39d-cd4f-486f-954b-39fc7464706c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YrNeAE67IAMFSoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63278f8c-66a419ac7fbd977f5f41061b;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 21:37:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: TdVz72qdwMdsuW1WsOq1qEZk2vmbXJlbppLTTsZ9PlrmN7GEph0dyQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 21:53:39 GMT
etag: "58c5d6f8ba1d3236d788ac55ff7cb2ec7863fb5c"
content-type: image/jpeg
age: 45131
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F779fe432-124a-4d1a-8abf-cfb5054b48fd.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F779fe432-124a-4d1a-8abf-cfb5054b48fd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 87bddc1f919e51c976d5377040861ea6
f5bf6c28f20414c7dd3ac1098defc46d3d68fd99
28541ca828b6358c8e6081e9f2022e7ad18a8adcb3df09a3fa079f32c08fcda6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F779fe432-124a-4d1a-8abf-cfb5054b48fd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10721
x-amzn-requestid: 5c3a2647-0af8-4cd2-8b68-df6606c6362e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yi1NMHVfoAMF-3w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63243587-2b73a75b69570a1a144a5f73;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 08:36:23 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: SpK-J7OfVkg8Gn_-wiaIKrqVl6t14P13ax8TPtsKDRXAVtHj9GWSwg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 03:43:59 GMT
age: 24111
etag: "f5bf6c28f20414c7dd3ac1098defc46d3d68fd99"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd460ce9f-ea5c-436e-8b02-8ec8233b9681.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd460ce9f-ea5c-436e-8b02-8ec8233b9681.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e4098577adb98eae5ba4a8b5e143df71
b0ad467f2837d103f8a96fb732bd34176c4c7110
83aa54020ffc684690dfb58d78608411de38ab02fee50808a8243c6b388e77c0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd460ce9f-ea5c-436e-8b02-8ec8233b9681.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5064
x-amzn-requestid: 985dbd5b-3e8a-4e22-a974-1effa6c99112
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YrOS8FyBoAMFrCQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632790df-201df5494f1513b91eefe9d5;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 21:42:55 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: GIhj3a2-SwYu2w4mLx7JiIJzFfV82-Et89ORRsx5fsGOx9nttPlCxA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 21:57:13 GMT
etag: "b0ad467f2837d103f8a96fb732bd34176c4c7110"
content-type: image/jpeg
age: 44917
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e998cc5-16fd-41d0-80c4-f7b6ce93932c.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e998cc5-16fd-41d0-80c4-f7b6ce93932c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5b174f977a78acf5f28935f44cac702d
7deb4e0fc838bcfffb532ff1f92f4036b35571f2
7e87fe13d3127a1c8e89f72c1455349d9edcb89eeb2a9b103d191095ddc69751
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e998cc5-16fd-41d0-80c4-f7b6ce93932c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5570
x-amzn-requestid: a20f5fb2-9c4a-4124-bc27-6b7cf99c5a73
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yn64FEKXoAMFbzw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63263e99-0edcfdf505c4467b31355e71;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 21:39:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Jp6TEMqaAAIs3jUsysER2sqaEob7LrzeR0vwp5I-gWSZsPxaFW4Vlg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 21:54:26 GMT
age: 45084
etag: "7deb4e0fc838bcfffb532ff1f92f4036b35571f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6582596-5079-44f5-a869-65c8766f7d1a.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6582596-5079-44f5-a869-65c8766f7d1a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash da8b8819fc21dcfb224ce0e7ecdc6772
e460ad4376cd118a6fe8b6b050af9398117d9531
9d0cf5fe17040e6c494d1596c24f01501babff37c95caa47d048b5e1aefa7697
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6582596-5079-44f5-a869-65c8766f7d1a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9901
x-amzn-requestid: e1792a3b-1893-48a6-8d01-463050259dc2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YiGMYE3IoAMFgvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6323ea4f-42ab13411e65943538101b11;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 03:15:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: XmcyJv7bahHB4wMjFmgvh2fEkJJYLPhRrISZ_DczSErdEQjXIxWUvg==
via: 1.1 0800f067ff646622f3e8e507cb9b52e8.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 03:54:31 GMT
age: 23479
etag: "e460ad4376cd118a6fe8b6b050af9398117d9531"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F928a31e7-ade8-4c58-8c67-53db1e3d019e.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F928a31e7-ade8-4c58-8c67-53db1e3d019e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 65ee14de38a7fcd768ede2f1915c74e4
85119aaf7195d59efc55e36d026bd026060195aa
62569b46e8af692f1d95d707ffdca24075ff6c68e68e13159ab7798b30a7755b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F928a31e7-ade8-4c58-8c67-53db1e3d019e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11712
x-amzn-requestid: d4547112-6faa-472e-ade1-bbbda9c3bea4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YrOSTFiXIAMFiLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632790db-151bae0c351a94a40c48bfbc;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 21:42:51 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: uRrPwbwQ6oBOYhMmxs6YquvIEBKaAC51d98J_5MWYkh-Q8Qg1LVdiw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 21:53:39 GMT
etag: "85119aaf7195d59efc55e36d026bd026060195aa"
content-type: image/jpeg
age: 45131
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/
172.67.159.177200 OK 8.3 kB URL HTTP/1.1 dominant.absencelevel.cfd/
IP 172.67.159.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Non-ISO extended-ASCII text, with very long lines (1106), with CRLF, LF, NEL line terminators
Hash f75833a6581b83bc7be227264025156a
29c2429487717b402d870569a246b220e3f69c9e
b69b389a4e858c1abe90d0fe42c796bb353cf4e8ee26afb9a9ff3e8f2c61cd2a
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 19 Sep 2022 10:25:51 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: zenid=i5iipllh0ffu0jmooe5vd7en66; path=/; domain=.dominant.absencelevel.cfd; secure; HttpOnly
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M7dhorDJiEi9%2BmyI%2Fr2HGFrQJRqLbXud3rTGXHxl6WlBhTeydXx9agwBetrzcK0ugU84IU0mz2T8IMq%2Fc9gQqrkqgRjb3VJgPJmXjnqcQps%2FcugO9BUFij368bJiUOHD922VW94ecn4dlaVV"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 74d19e93bab2b4f9-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
dominant.absencelevel.cfd/includes/templates/lw_a48/images/rank_3.gif
172.67.159.177200 OK 2.0 kB URL HTTP/2 dominant.absencelevel.cfd/includes/templates/lw_a48/images/rank_3.gif
IP 172.67.159.177:0
File type GIF image data, version 89a, 100 x 39\012- data
Hash a8a0cf82adfcc5990b7dba0d5156379f
c9ec96160b488a5a1d1a317443926c7bb54563bd
eb9a0139afb41bc80e768ff61a5a3bf3956da00bea0bb6fe6fcde50589b79065
GET /includes/templates/lw_a48/images/rank_3.gif HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/gif
content-length: 1990
last-modified: Fri, 31 Dec 2021 05:39:16 GMT
etag: "61ce9784-7c6"
expires: Wed, 19 Oct 2022 10:25:52 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tt1ICpmYTkVGe2etqoHuESl0pHxDDO%2BQxrbA0Ph2YXg%2FGuXXLBRZXd3LD%2FEj6KJLb1K5GIV7WqTcp4H3Jcgb1gTCw7V1Zx7DvrHTODRkkkKnAhh07sMEdRmmK7kGAKd8HmxJgUBCmXf0EZKG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d19eac5b0fb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/includes/templates/lw_a48/images/rank_2.gif
172.67.159.177200 OK 605 B URL HTTP/2 dominant.absencelevel.cfd/includes/templates/lw_a48/images/rank_2.gif
IP 172.67.159.177:0
File type GIF image data, version 89a, 100 x 39\012- data
Hash 8192f534aa798503e77cbf8e2eb15d57
24e72796481cfd7395cd43cdeb09edad3cf8446b
3616bc7d39ef97ce96d225530cc04796a283dabf239d3be97a21437f120832b9
GET /includes/templates/lw_a48/images/rank_2.gif HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/gif
content-length: 605
last-modified: Fri, 31 Dec 2021 05:39:16 GMT
etag: "61ce9784-25d"
expires: Wed, 19 Oct 2022 10:25:52 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BatfK1npaYhmJADjAtSyiKNBkC1MmJbwBLkHOoOvUq%2FVucBfgmKH1DWH7zT6piUuJvtMrBveTgbbeVH3cR2GidrmAr9ygM1YlkY3HtdlemP5XR0%2F%2BJzbppqAWtIX9TED%2FEzUWTF2zJVcMm6u"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d19eac5b0cb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/includes/templates/lw_a48/images/logo.png
172.67.159.177200 OK 12 kB URL HTTP/2 dominant.absencelevel.cfd/includes/templates/lw_a48/images/logo.png
IP 172.67.159.177:0
File type PNG image data, 825 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash c47507ebec7ca09f22f8b681046af853
05597e2dbd1cdf1fec185628571e1b53721e7f9b
eb40f7c36503aade659fbf86d6f455fbf0dd055bf809a14e2dce7fe0732815db
GET /includes/templates/lw_a48/images/logo.png HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/png
content-length: 11728
last-modified: Fri, 31 Dec 2021 05:39:16 GMT
etag: "61ce9784-2dd0"
expires: Wed, 19 Oct 2022 10:25:52 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AJJiEp8Rg93lTApQYUzX%2BNGPd%2BRjb%2Fc%2Bw%2F2fVJjy%2B7kdB1cyeVcPKAY%2F%2FeX%2BfolnGGm8wucWkJCgTKmaRsdyDd2zm41QjbT11g2j1l5RmWwiMFfKvrgdB0t22AAHTj8B7Q2iB3DIk4HMCh8s"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d19eac5b03b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/includes/templates/lw_a48/images/rank_7.gif
172.67.159.177200 OK 737 B URL HTTP/2 dominant.absencelevel.cfd/includes/templates/lw_a48/images/rank_7.gif
IP 172.67.159.177:0
File type GIF image data, version 89a, 100 x 39\012- data
Hash 5ae938d4c59d6c52efdc9dfa7940037b
a243882381f3e103312242b5ca2eb9b8a295a2b7
4e569edfefd853caf0af7c24d06e242ba6b4a49ddc4775186098688ea8211030
GET /includes/templates/lw_a48/images/rank_7.gif HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/gif
content-length: 737
last-modified: Fri, 31 Dec 2021 05:39:16 GMT
etag: "61ce9784-2e1"
expires: Wed, 19 Oct 2022 10:25:52 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=W4JszfV8%2BO83Kt%2Fx4uIqe42jUaYzkl2vYsH43GTXKpID4u%2BjSf7w%2FIM4A%2BVEPjCJp6wYmW34vRjNZao6wGSgo%2Brlf4pO57uWNAsSnDlPnf4NE0dvDJ3AhKg03MuHXNzcejD3jZjEw7W3zYDr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d19eac6b1cb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/includes/templates/lw_a48/images/rank_1.gif
172.67.159.177200 OK 2.0 kB URL HTTP/2 dominant.absencelevel.cfd/includes/templates/lw_a48/images/rank_1.gif
IP 172.67.159.177:0
File type GIF image data, version 89a, 100 x 39\012- data
Hash c9c1a377b2465fa88eb90f7f21fc4943
c329224a6ff30a92cb75e8d055d12185c30b54c6
0362db86a76badda7ca8dec6954d760c2bfe7b5c3e438682ff3213926d5a5c08
GET /includes/templates/lw_a48/images/rank_1.gif HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/gif
content-length: 2024
last-modified: Fri, 31 Dec 2021 05:39:16 GMT
etag: "61ce9784-7e8"
expires: Wed, 19 Oct 2022 10:25:52 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EQAg87XqWlps2Im1ngyd96wxcTnzwVGnvGVP4PLa%2Frdej%2FxVsM0oKjrY092y2tfU5SeNJtQqj7uTfEnakNu%2BlgbD7d7LWm%2FuJiqn6txybuoCOgBTPjiwpYWgqmWDqK%2BU5SjVEimajolRaKJ%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d19eac5b09b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/includes/templates/lw_a48/images/rank_8.gif
172.67.159.177200 OK 773 B URL HTTP/2 dominant.absencelevel.cfd/includes/templates/lw_a48/images/rank_8.gif
IP 172.67.159.177:0
File type GIF image data, version 89a, 100 x 39\012- data
Hash 255ef97d3abcea681cd2e8acd77ad0b1
0ca7ae48c40d965bdf794f5c41b5138d335e4e7a
cdcb9869aff9da1a51eb4b97016e57dc9420a4a292d8a88596abd29c94db8e5b
GET /includes/templates/lw_a48/images/rank_8.gif HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/gif
content-length: 773
last-modified: Fri, 31 Dec 2021 05:39:16 GMT
etag: "61ce9784-305"
expires: Wed, 19 Oct 2022 10:25:52 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1P%2F3P%2F4Db3u38ntUPeSAbRardgSnrlx%2B589SRx92MVodxZYYXe51Xg0AJ3b3jvuNhGkWLxqW%2F9Qn%2FukrOwXers9jAbSsndmQF3o9BpcamWqCyUXXTUeG9Yi%2BCxEkvQtlPuHl3HDa2ac2qla9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d19eac6b1fb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/includes/templates/lw_a48/images/rank_6.gif
172.67.159.177200 OK 766 B URL HTTP/2 dominant.absencelevel.cfd/includes/templates/lw_a48/images/rank_6.gif
IP 172.67.159.177:0
File type GIF image data, version 89a, 100 x 39\012- data
Hash da350cd90766a340c96b20ff03d127d5
30147fd19b58279252e361375df1d0c8f6d9a568
c865fc772bf6a50a3e408263080ccb0f091da74849c9d3557c17ae17514d3b1a
GET /includes/templates/lw_a48/images/rank_6.gif HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/gif
content-length: 766
last-modified: Fri, 31 Dec 2021 05:39:16 GMT
etag: "61ce9784-2fe"
expires: Wed, 19 Oct 2022 10:25:52 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1vLL4a286vzPZtJiPUxK8Vr4QxuHAW%2Fa6HX%2FjZOvjTv5CIQgumjrIbgKUNLo84ojVGuVNp%2Fo4e%2Bo7kVqHIup13Tk70HWRUXxFwLsWQ%2BnBtpDq%2FqytoVAK9PD7AbMqHA8DMSkC9HnEBarKNuJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d19eac5b19b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/includes/templates/lw_a48/images/rank_5.gif
172.67.159.177200 OK 883 B URL HTTP/2 dominant.absencelevel.cfd/includes/templates/lw_a48/images/rank_5.gif
IP 172.67.159.177:0
File type GIF image data, version 89a, 100 x 39\012- data
Hash 02ab4d95ec4727b873675dedf23fcbd6
73fb8ee0b0b7d4e12e2f90812ba109865bd55936
95e544e3858c250b62e09e90ea9b20d4a522b96f3d4658a908182c76cac0ebcc
GET /includes/templates/lw_a48/images/rank_5.gif HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/gif
content-length: 883
last-modified: Fri, 31 Dec 2021 05:39:16 GMT
etag: "61ce9784-373"
expires: Wed, 19 Oct 2022 10:25:52 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MUWLP9nYlhPUa6kGPPusVmEY8viqpLGa3mR0MTfk0j2RpOJlgV0ADfFwQ9Sm4dX1VJVnwhvxgx9uXX9W%2BTXrQzjgCEIG5k2GVqdxfd8DEptDk1TMy%2Bdr%2B5IGlw%2BaHO7aQEl4CXbVhXccnz2W"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d19eac5b14b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/includes/templates/lw_a48/images/rank_4.gif
172.67.159.177200 OK 726 B URL HTTP/2 dominant.absencelevel.cfd/includes/templates/lw_a48/images/rank_4.gif
IP 172.67.159.177:0
File type GIF image data, version 89a, 100 x 39\012- data
Hash 9e975ea97719e1ad72951890eab538b2
cb425216738dbc4b98ed7f86d2ad939d17922cc0
e5a91abf348d298145f1f237505150cc1f60673b0a21b459cdf4029ba188bcd4
GET /includes/templates/lw_a48/images/rank_4.gif HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/gif
content-length: 726
last-modified: Fri, 31 Dec 2021 05:39:16 GMT
etag: "61ce9784-2d6"
expires: Wed, 19 Oct 2022 10:25:52 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8hWL4TbrF7%2BaIb%2Fn3YSbcuNHNbGEgNqj4aDukIs95o46APYVNRbBu7r6%2FkM1S316IdYXVo8pJ2Hprg1QGCla7idPScOus%2FsFPgT8%2B9xX%2FvcA5WFEdmBGL%2FuTiFzH1QYO0%2B%2FOGu0uZSpyjexr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d19eac5b12b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/includes/templates/lw_a48/images/rank_10.gif
172.67.159.177200 OK 789 B URL HTTP/2 dominant.absencelevel.cfd/includes/templates/lw_a48/images/rank_10.gif
IP 172.67.159.177:0
File type GIF image data, version 89a, 100 x 39\012- data
Hash ba5aa31792e757343133e787184723d2
7f695ddf8ee3a36e3e8dd7b0d98e5108e9afb4dd
e4b75d485b047de1fd5cf388db63672353db7c5e6c6d27324480feb53cd0e948
GET /includes/templates/lw_a48/images/rank_10.gif HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/gif
content-length: 789
last-modified: Fri, 31 Dec 2021 05:39:16 GMT
etag: "61ce9784-315"
expires: Wed, 19 Oct 2022 10:25:52 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=36nev5nW0EVN85r4OI2QrEsUWVoDppeOihPsQnqY8jzTkNC1mmnThlcHTZ%2FRSF298xOYqUI73aPoskZdEglnFFYK%2FyjLDC4DqLm0lbcoYdT4uxOqacnNFHpTuIngeGOSzEEWa5TE06wSS%2F17"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d19eac6b25b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/includes/templates/lw_a48/images/rank_9.gif
172.67.159.177200 OK 763 B URL HTTP/2 dominant.absencelevel.cfd/includes/templates/lw_a48/images/rank_9.gif
IP 172.67.159.177:0
File type GIF image data, version 89a, 100 x 39\012- data
Hash a34576572e69e8448656b2fef0a85091
e36cb983bf59a33b4f2df30a42eea33af7e367a2
4bd758972868ca67bf4c88a6ac29fed015fa9b539a03e09e3540bfc77c992667
GET /includes/templates/lw_a48/images/rank_9.gif HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/gif
content-length: 763
last-modified: Fri, 31 Dec 2021 05:39:16 GMT
etag: "61ce9784-2fb"
expires: Wed, 19 Oct 2022 10:25:52 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J91t51BrGvccGir%2F%2BTT53AXqm9H8tACzMGRfdmLC7zigXqpN59kPpyIpDVjM%2FqghoBcTZawnvb3TzdpGhKr7mtVWAo%2FIYm0ZeoBkn6XVkAZxwaks9f9isfBWOnRlBm3nsI6ThkqoUKXcyVq8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d19eac6b22b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/includes/templates/lw_a48/images/footer-icon-shipping.png
172.67.159.177200 OK 20 kB URL HTTP/2 dominant.absencelevel.cfd/includes/templates/lw_a48/images/footer-icon-shipping.png
IP 172.67.159.177:0
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 312c0785edd7e59c81636334c05b2759
014c2b21fa1ea8a457a0b8027c427ae761c236e7
81ee56e2de839432c2d91faded3d4d0bb1cbf22edb8064f1c138e90108f08dae
GET /includes/templates/lw_a48/images/footer-icon-shipping.png HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/png
content-length: 19906
last-modified: Fri, 31 Dec 2021 05:39:16 GMT
etag: "61ce9784-4dc2"
expires: Wed, 19 Oct 2022 10:25:52 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FdU8XUcDEhYjbKsEttSyFF7PwmqKZWeOHPXfYKOz74yzgifX9vmmyH9p1%2Fu6izDmOGBZXhrSm6cVWl4QKuE5pU74GqFtNobW3KSvljdxarIvLKd45P%2FSjjrmJedN9QrUWHB2h2olTEJ%2B3yCx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d19eac5afab512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/includes/templates/lw_a48/images/footer-icon-return.png
172.67.159.177200 OK 19 kB URL HTTP/2 dominant.absencelevel.cfd/includes/templates/lw_a48/images/footer-icon-return.png
IP 172.67.159.177:0
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash d081fc477fa5126ff3130d625376024c
4746477d39b90542109a79850141c0e903e8ddfd
d181983bfd79627013b15a0a70ff30db1999b465865b052cb435476b19f9fb7f
GET /includes/templates/lw_a48/images/footer-icon-return.png HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/png
content-length: 18993
last-modified: Fri, 31 Dec 2021 05:39:16 GMT
etag: "61ce9784-4a31"
expires: Wed, 19 Oct 2022 10:25:52 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jzKQFh0p%2Bf%2FP9fhBHLWpRGHq2TyTpa0Nba6b8a6%2FlxHAOlYfpoJJyWGxsF4XOqWLxff6rHFHsBS9lKI0GqoXWj7ikdM9Ab%2BtO2SAi22J3nC9DPNgOIP%2FHUzyvnGwRQ96QLdGio1cv4B5BKt%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d19eac5af8b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/includes/templates/lw_a48/images/footer-icon-onoff.png
172.67.159.177200 OK 23 kB URL HTTP/2 dominant.absencelevel.cfd/includes/templates/lw_a48/images/footer-icon-onoff.png
IP 172.67.159.177:0
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 6123c7feb75a3c7da4b3a27823c4e553
1420b1d26af4ced92e9be5f576b4868a9fea04a3
ef7e18edb6acca77e6ac3ff6e0f5b468bd69b5ccecb847539627ce36f6d2f76c
GET /includes/templates/lw_a48/images/footer-icon-onoff.png HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/png
content-length: 23025
last-modified: Fri, 31 Dec 2021 05:39:16 GMT
etag: "61ce9784-59f1"
expires: Wed, 19 Oct 2022 10:25:52 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nyho%2F0jXeOTv4fQgXEUYfRv6aiiPtbPY91n60bLZyTqnQhm7YPLDDtbsNf8Bq1oFTsdAY109kN4xBbGy9U0v%2FRuwIqjpKTqMw8k084OIfaXJ6MF%2F9p5BSTN5m8QGLUeUHq%2FvnCNq26Wl3m0J"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d19eac5afbb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/includes/templates/lw_a48/images/footer-icon-qna.png
172.67.159.177200 OK 20 kB URL HTTP/2 dominant.absencelevel.cfd/includes/templates/lw_a48/images/footer-icon-qna.png
IP 172.67.159.177:0
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash e126def98267881f46160041fddcd283
b8f207b6e9a190c180422b99e0fb4ac4c83cd86d
b66849e3a8aebe6e23e4f8348f1f77155e6a96bb744b68d88e35ffcd80806a59
GET /includes/templates/lw_a48/images/footer-icon-qna.png HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/png
content-length: 20517
last-modified: Fri, 31 Dec 2021 05:39:16 GMT
etag: "61ce9784-5025"
expires: Wed, 19 Oct 2022 10:25:52 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D7CQtevJ53zO5tuHxC1LYhWhNCWUb9hlIaI5vON2D7LJ4d1BPoWGuU2qATA9WJs3XkpehVjpQ%2B1mMFHYRWZL3qkdlwx3dCSSyNBfqTtsCvkM6D9FGzFwyGXv69hH7FjSDmJh%2BDD%2BYxEXk9Rk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d19eac6b45b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/includes/templates/lw_a48/images/top.gif
172.67.159.177200 OK 14 kB URL HTTP/2 dominant.absencelevel.cfd/includes/templates/lw_a48/images/top.gif
IP 172.67.159.177:0
File type GIF image data, version 89a, 950 x 50\012- data
Hash c900be067f41f4c60d595ec9289bc5fc
fd9596503675318405d6f94c42080ec242770cf2
2f2bc8b2bdaabd2c222c1eef19ef429ecb345091815756b64255b985a3a7ea43
GET /includes/templates/lw_a48/images/top.gif HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/gif
content-length: 14444
last-modified: Fri, 31 Dec 2021 05:39:16 GMT
etag: "61ce9784-386c"
expires: Wed, 19 Oct 2022 10:25:52 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e%2Bkb6sxOBwq3IQKpRlAWmHVTVzL4rAWdi6vWyWXIOMsdjDqQIRcNtL7Ah%2FLUhCQOdkcg2BsiDKSy5edICjso3AqCt%2BA6OoFK4cCq7%2FkPrJMoozpxtidhCV7ML%2F%2BRrSBTtL8X5Vh3x80xjRJ%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d19eac5b02b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/includes/templates/lw_a48/images/footer-icon-pay.png
172.67.159.177200 OK 21 kB URL HTTP/2 dominant.absencelevel.cfd/includes/templates/lw_a48/images/footer-icon-pay.png
IP 172.67.159.177:0
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 350602e85bf3f5e398bc23a1a42837b0
951c76c851b8faaa677ae7eb9780f1d25c8fc717
58e6040a9c2c9ef665fff2c79e4b0ebde3af2ddcc04af1b94cd80e047464c47f
GET /includes/templates/lw_a48/images/footer-icon-pay.png HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/png
content-length: 20731
last-modified: Fri, 31 Dec 2021 05:39:16 GMT
etag: "61ce9784-50fb"
expires: Wed, 19 Oct 2022 10:25:52 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SFO3nTdjnf62sj3RLlgM%2Flst%2BgRkzQP668vIqqXhFbyrXrcozp8kxQ%2FwqVW2wsNcnDqtflKv6PSseftq6lb11ARa%2FJZqJU1rkf9W8fu6mvO3gjIqfj1su8zJqo6pBRC4f%2BOwZI4ON%2BBRH4GM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d19eac5afdb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/includes/templates/lw_a48/images/bnr_300_200.png
172.67.159.177200 OK 15 kB URL HTTP/2 dominant.absencelevel.cfd/includes/templates/lw_a48/images/bnr_300_200.png
IP 172.67.159.177:0
File type PNG image data, 300 x 200, 8-bit/color RGB, non-interlaced\012- data
Hash 8854e4a5dc51cbe404b937006fae55c3
be2d788b1187f7a7c164045a7ed9fd950214dece
aaf8e8bcb93bfe45fd480634cfd4f813ba522a17e38a578426ab091134cd4590
GET /includes/templates/lw_a48/images/bnr_300_200.png HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/png
content-length: 14847
last-modified: Fri, 31 Dec 2021 05:39:16 GMT
etag: "61ce9784-39ff"
expires: Wed, 19 Oct 2022 10:25:52 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qj3RTunTpHeiVH%2BjW41bbqFdR8eXhF9qG5vjyIkNb2QdyMwZ8%2BGfdR3rbMbdQlPdDGX9c2LfB2HBgCB6TQSUOYQquDlqXiZFx8ryEzJ42n9RQwmWCFBs7Q3RGTeKLP6w1sZF2YXDqGwVEzEj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d19eac5b07b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/includes/templates/lw_a48/images/footer-icon-userinfo.png
172.67.159.177200 OK 21 kB URL HTTP/2 dominant.absencelevel.cfd/includes/templates/lw_a48/images/footer-icon-userinfo.png
IP 172.67.159.177:0
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 282776802dbe54ad44ef05a0231549b8
abd3240c130f6453aeefa78b9604766c52a85e7f
187fcf1d9346330a0b57ddc24ec15a8982a4bebbfa1d51de001d8eea7029314e
GET /includes/templates/lw_a48/images/footer-icon-userinfo.png HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/png
content-length: 20729
last-modified: Fri, 31 Dec 2021 05:39:16 GMT
etag: "61ce9784-50f9"
expires: Wed, 19 Oct 2022 10:25:52 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sWGHfBeGto5DIKZqgnTArE5fZcFUX2yF45B%2Fhgz4BUFOuqHybd7dBkKFWjgcqxLvRoDeVxQyUZSRlXstKWKLm%2FU%2FP9rDnK2fXhOvVqgZiMkN6y5jBFULm3%2FbBbkO49VdQ%2BKXOG71nTc4lCwy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d19eac6b43b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/includes/templates/lw_a48/images/banner_24.jpg
172.67.159.177200 OK 86 kB URL HTTP/2 dominant.absencelevel.cfd/includes/templates/lw_a48/images/banner_24.jpg
IP 172.67.159.177:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 750x488, components 3\012- data
Hash ad73749103c7a6c1a4967b7f7277fa7e
0e5bf223165adeac597ca18057ca73fb42573b44
8f3ccf23f4e1baa9befeaf6d0b17212dc8b423e5f7e93c920c4c9b8596e7b75a
GET /includes/templates/lw_a48/images/banner_24.jpg HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/jpeg
content-length: 85599
last-modified: Fri, 31 Dec 2021 05:39:16 GMT
etag: "61ce9784-14e5f"
expires: Wed, 19 Oct 2022 10:25:52 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dDgNmTtC5o1I5E%2FeSJfx%2FB5vJD11dYTp2cnxxe1MNsZDZPUaJT3mr%2B4cMGlpgjsLknf3LQmmV04pia7BsGlB2Qlzuvjc9ljvjhcMe%2FG4coSEb0zhWz6kfSbR%2B%2BGTMgOohU%2F%2Fyg6xT6q1W8%2FC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d19eac6b29b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/includes/templates/lw_a48/images/model06.jpg
172.67.159.177200 OK 70 kB URL HTTP/2 dominant.absencelevel.cfd/includes/templates/lw_a48/images/model06.jpg
IP 172.67.159.177:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 750x750, components 3\012- data
Hash 1769644f13ccb88136d51725fc277883
647d49f945dbf41e1ffd89492dae998efae4f4b0
5913a8352bd55babfd27a4ee1d2e6e1553794283be777b07633fc797e9fae04d
GET /includes/templates/lw_a48/images/model06.jpg HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/jpeg
content-length: 70144
last-modified: Fri, 31 Dec 2021 05:39:16 GMT
etag: "61ce9784-11200"
expires: Wed, 19 Oct 2022 10:25:52 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PqkweJ8fqYETKJ3RUYCL%2BmyAy%2FM1DnHghmDkqn%2F8Bs6RtUSdmeFF7AIkJMQwEaz5HDx4RTwskbGdB6I%2Bofr%2F5rjo%2FVvVpfOPOVdiWOzwtkgC3NB%2B3sXQYPmR8w%2BEZpHeNlaJX5VDnXqqYd1F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d19eac6b2bb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/includes/templates/lw_a48/images/timesale0326.jpg
172.67.159.177200 OK 50 kB URL HTTP/2 dominant.absencelevel.cfd/includes/templates/lw_a48/images/timesale0326.jpg
IP 172.67.159.177:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 490x107, components 3\012- data
Hash f6cc67ecc6c0d364e8d3b95cd62d4cec
63a63b49b0b6395540123552401ba806853242ec
a60a0481f9f569aa129a7a5a849850781e33c145cd6b37a1d301d89fbf3beff8
GET /includes/templates/lw_a48/images/timesale0326.jpg HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/jpeg
content-length: 49858
last-modified: Fri, 31 Dec 2021 05:39:16 GMT
etag: "61ce9784-c2c2"
expires: Wed, 19 Oct 2022 10:25:52 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vmG5%2FYRh2RNtbesXnzhuQRg19Kbf46leFpkzEonMBTn%2Fm7gXl7jXjbq5o6XJN8OnH9NbqiGrUGxJNLFMgsch%2FFGULzWH4rDkGL9m3cOFkjZ0rvW0xdZ65CYKIvLoZQVv7ZZeQzxWeX5Sf7Jq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d19eac5b06b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/includes/templates/lw_a48/images/banner_28.jpg
172.67.159.177200 OK 112 kB URL HTTP/2 dominant.absencelevel.cfd/includes/templates/lw_a48/images/banner_28.jpg
IP 172.67.159.177:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 750x488, components 3\012- data
Size 112 kB (111989 bytes)
Hash 2b8bf560702bfbf8e95b15863d60da6b
54115b3370ca5039944b766ef5b8d49f0918cdf8
a6850acc220f7afb3ebf0ced45c3f628ed7833f0fc35e4c40135b1f7a7cf0c45
GET /includes/templates/lw_a48/images/banner_28.jpg HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/jpeg
content-length: 111989
last-modified: Fri, 31 Dec 2021 05:39:16 GMT
etag: "61ce9784-1b575"
expires: Wed, 19 Oct 2022 10:25:52 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m21b1U3JaaFM2Yu4uxP4wjLLtt6vbR4j6lo2wHMIKTyo429gQpa1hDFop6eFvKOemyjywl14peVn5fs6I%2FA4rLn4NTUUHq6fiNU00tKIHIzKgYRbT80d2vci0nV7H8cAq6bURFfZdZCjIRWo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d19eac6b2ab512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/includes/templates/lw_a48/images/1200_d210622.jpg
172.67.159.177200 OK 223 kB URL HTTP/2 dominant.absencelevel.cfd/includes/templates/lw_a48/images/1200_d210622.jpg
IP 172.67.159.177:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2021:06:23 11:43:20], progressive, precision 8, 1200x628, components 3\012- data
Size 223 kB (223212 bytes)
Hash 5020473e846f2665a31d0f98deb70c9a
b91372de2683e5216f1349c9ebdccf7cab7a3b73
0e80b9abefab3f65150d319d517380ecf911fb409d2655342920cbfb4bfce865
GET /includes/templates/lw_a48/images/1200_d210622.jpg HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/jpeg
content-length: 223212
last-modified: Fri, 31 Dec 2021 05:39:16 GMT
etag: "61ce9784-367ec"
expires: Wed, 19 Oct 2022 10:25:52 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7EWUCNR37zfmn5y6CPweBzxDv0IFtlRMIkDrKx1S9PHQMtvVyVaw4Cc9m4B%2BycfWUn1uP%2FcDzN%2BK59giJiYuUVoES2I1MIK3VgOPyKHa8Y%2FbaKTz34TinYfH8ZgHcFu%2BwhuRgPsUHNBHSMNV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d19eac5b08b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/favicon.ico
172.67.159.177200 OK 105 B URL HTTP/1.1 dominant.absencelevel.cfd/favicon.ico
IP 172.67.159.177:0
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash f5755be425622c647f7b1bfc46c779d9
1f51e79cef0a25e8d04783b4e0a7660b76b6f657
24bf4d92ad9b12374ae1fe9ab145e89e62c3953c5c6274dbbf017d2574ad8ce4
GET /favicon.ico HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
HTTP/1.1 200 OK
Date: Mon, 19 Sep 2022 10:25:53 GMT
Content-Type: image/x-icon
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 28 Dec 2017 23:11:02 GMT
ETag: W/"5a457a06-1536"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PMPSb1d9GbZJ1KLVgCga0Ua9h4zcjHoSHTk6l0Z7bMycxYKC3bRkFR%2BydadtLtZgS2pxTPHzYv0DWxF3SG97VERm4IRikMBx6%2BBiw8%2FJ5o8nLtC2H09yRFE7ydvZNX2GFbpJEDBp3uUjGXzY"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74d19eb2ba11b4f9-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc97d270b-72af-4a6b-ae64-123f7b52851e.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc97d270b-72af-4a6b-ae64-123f7b52851e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3d9fd171b51b27aa84e06e7d5a40116e
a81660dcace8f232018ce9a6d027b271d1f8a863
2c80ffd2c0c451c61623a677d1b17e8e58a40a0a7bdb5ef1cac2610bb0a7e0a8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc97d270b-72af-4a6b-ae64-123f7b52851e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8735
x-amzn-requestid: bee7087d-6431-457a-8fdc-a9eff7b14afd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YrOAZHcCIAMFTSw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63279068-4a7d282e1860a131491a4f2d;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 21:40:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: EClCCFFn_OCwRqXC7W0g-msDSm1WsTRB5kDJsAQyxIPmIwSQBSbJ9g==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 21:57:01 GMT
etag: "a81660dcace8f232018ce9a6d027b271d1f8a863"
content-type: image/jpeg
age: 44936
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/includes/templates/lw_a48/css/stylesheet_tm.css
172.67.159.177200 OK 0 B URL HTTP/2 dominant.absencelevel.cfd/includes/templates/lw_a48/css/stylesheet_tm.css
IP 172.67.159.177:0
GET /includes/templates/lw_a48/css/stylesheet_tm.css HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: text/css
last-modified: Fri, 31 Dec 2021 05:39:16 GMT
vary: Accept-Encoding
etag: W/"61ce9784-a813"
expires: Mon, 19 Sep 2022 22:25:52 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HVxCSmhsHc%2Fg5O2g0%2BsyKskpJE91SpKZQpYsi8HzLUMIGwSl1kQY8Dau%2Fu2XPME0CqOV%2FwUb3O59wHvsC0cTZRLiH1KyJSgqzGjNbmxw7CS%2F6%2F5vR4pyYrpAk%2FH7O1mqht2itd6%2FlNdUrd6O"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d19eac5b01b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/includes/templates/lw_a48/css/stylesheet.css
172.67.159.177200 OK 0 B URL HTTP/2 dominant.absencelevel.cfd/includes/templates/lw_a48/css/stylesheet.css
IP 172.67.159.177:0
GET /includes/templates/lw_a48/css/stylesheet.css HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: text/css
last-modified: Fri, 31 Dec 2021 05:39:16 GMT
vary: Accept-Encoding
etag: W/"61ce9784-3784"
expires: Mon, 19 Sep 2022 22:25:52 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k5vdQtmLo9DlybFayGRZACY7F6jBxqaXlZoeM62SIulQdbMxC1IaO0YPMpzmYUyk1%2BuxnziuBBTl0gd0%2Bt%2Bbn6XGbUspesqjyRnzW7eIkLtT5mm%2BurKrApwzr3QxyV1aj0eygqn8ofEibDwl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d19eac6b4bb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMTE4ODIyODYyNzVfMS5qcGc/MTYzNjYzNjA0NQ==
172.67.159.177200 OK 0 B URL HTTP/2 dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMTE4ODIyODYyNzVfMS5qcGc/MTYzNjYzNjA0NQ==
IP 172.67.159.177:0
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMTE4ODIyODYyNzVfMS5qcGc/MTYzNjYzNjA0NQ== HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/jpg
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6fF%2BfAsLyijf%2Fz6joAn9faZ8cj5UJ4id150kijijVj9j4jLZbqkr6Mq86T63JqxHn44GkNdBaIIEtOH9FOFgj%2BUMAHVB4oQruF4EzmEwzQOembR%2Ba5TWKnwwoFhL5n77FLjgWan4PCHu%2BfiB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d19eac6b33b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tOTg1NDM1MjcwNjhfMS5qcGc/MTYzOTEyNTg1MA==
172.67.159.177200 OK 0 B URL HTTP/2 dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tOTg1NDM1MjcwNjhfMS5qcGc/MTYzOTEyNTg1MA==
IP 172.67.159.177:0
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tOTg1NDM1MjcwNjhfMS5qcGc/MTYzOTEyNTg1MA== HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/jpg
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i41EneYSrngra8yzqBLzFkEvfxT0kKBaPNFwy%2Bsng5FwnWR1XZzMLijPtwAlnBHQo7k33Ya%2FQZ1L0WJQF3d7tzayFliQLLIH0jkSrPuHNdgUxZQi3pZouQUoxF%2BC5ggGTABNKURVKn4kphH2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d19eac5b16b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNTM4NDQ5NDcyNzFfMS5qcGc/MTYzNDg3NTAxMg==
172.67.159.177200 OK 0 B URL HTTP/2 dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNTM4NDQ5NDcyNzFfMS5qcGc/MTYzNDg3NTAxMg==
IP 172.67.159.177:0
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNTM4NDQ5NDcyNzFfMS5qcGc/MTYzNDg3NTAxMg== HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/jpg
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jVGpP7cvxw6cQWVRn3%2BAUH7hqkTmmWD%2FCO4niJUO%2FaIWOTaehntW2jJW2ll6mRhxoVU2al4YbSp722RsT5v2ba%2FeQsY%2Bc%2BY7F7tidfCMizv%2BSR7tHEHhnFKXV6LA53dl3YfWj8UHnwUe9vcf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d19eac6b35b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/includes/templates/lw_a48/css/stylesheet_index_home.css
172.67.159.177200 OK 0 B URL HTTP/2 dominant.absencelevel.cfd/includes/templates/lw_a48/css/stylesheet_index_home.css
IP 172.67.159.177:0
GET /includes/templates/lw_a48/css/stylesheet_index_home.css HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: text/css
last-modified: Fri, 31 Dec 2021 05:39:16 GMT
vary: Accept-Encoding
etag: W/"61ce9784-dfd"
expires: Mon, 19 Sep 2022 22:25:52 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TTT7unMRpN46l%2BhYA1KZyjOfbJ9Adhey5LiXjTYnDyBCm1ZJaZz%2BE0WGYv0o3SHeoKmbODO6K412Uyj8iU31AtP0ktfmdWEIvdWjRZIK3dZFo4CtE%2Fa7NOHLvGtirOfHXy3%2Fuc4Xlzclqplt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d19eac6b4db512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNzQ1MjQ4NTkzMDRfMS5qcGc/MTYzNzc1NjM3OQ==
172.67.159.177200 OK 0 B URL HTTP/2 dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNzQ1MjQ4NTkzMDRfMS5qcGc/MTYzNzc1NjM3OQ==
IP 172.67.159.177:0
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNzQ1MjQ4NTkzMDRfMS5qcGc/MTYzNzc1NjM3OQ== HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/jpg
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=reWWEJc96RI%2FdGXZDTvJKzSLNrmkg9GXA6366h2oC3o5tPl1x9QuUcEwwERScFlskox61citg2Uj5tGYq6E84TefVOYIp5b3b4%2BrlHcPOMMHGj2%2BCBVIabxy63soUJ0nxW3Wx8YALZbhuTBC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d19eac6b21b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tOTI1NDU3MzYxMzhfMS5qcGc/MTYzMTk1NjQ0Ng==
172.67.159.177200 OK 0 B URL HTTP/2 dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tOTI1NDU3MzYxMzhfMS5qcGc/MTYzMTk1NjQ0Ng==
IP 172.67.159.177:0
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tOTI1NDU3MzYxMzhfMS5qcGc/MTYzMTk1NjQ0Ng== HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/jpg
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kCbJsnfmfkSMGGHZLPh5qi1tVpV0qrAgvttP59XnkOjWLtG2uns2eMqqfX9%2BFAmURvCkzYLX1Ik2z8Nos6IHugwx0vv%2FRzl0p55oVyuEuyRwO3sTpZOzn3AhPuo0Gxe455ukc%2Fu5JfV9p3Kv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d19eac6b39b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tOTMwODA0NjM1OTRfMS5qcGc/MTYxMTcyNzI3OA==
172.67.159.177200 OK 0 B URL HTTP/2 dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tOTMwODA0NjM1OTRfMS5qcGc/MTYxMTcyNzI3OA==
IP 172.67.159.177:0
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tOTMwODA0NjM1OTRfMS5qcGc/MTYxMTcyNzI3OA== HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/jpg
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JQGeWL39W5q8C7B4dHIpsibG87O89jLIakn2dODzn3hsa1TKik86xC9I96mW4cJ51a3q9TpSuUJ3nxMoxpAw2U2ppksvzERLVxjpdTvSM29WYDEOpcr0QWTpASamBI7ydPK2QjiPFRQKhioq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d19eac6b3cb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/includes/templates/lw_a48/css/style_categories.css
172.67.159.177200 OK 0 B URL HTTP/2 dominant.absencelevel.cfd/includes/templates/lw_a48/css/style_categories.css
IP 172.67.159.177:0
GET /includes/templates/lw_a48/css/style_categories.css HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: text/css
last-modified: Fri, 31 Dec 2021 05:39:16 GMT
vary: Accept-Encoding
etag: W/"61ce9784-6cd"
expires: Mon, 19 Sep 2022 22:25:52 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YHnMQCCDsgHncsZjI5uJuVgKzlR6KIU6r%2Bu5duxCYYH%2FSbK84ztcmeka%2BIB3BwRE7rXDppbJiyWzcS8ADuDpogMqeuT%2FRaGE4XfXzHrrxvRF5XfJGsmEqkhvzf5wCAIUP2FVDdqTSw0mL2gA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d19eac6b49b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/includes/templates/lw_a48/css/stylesheet_cart.css
172.67.159.177200 OK 0 B URL HTTP/2 dominant.absencelevel.cfd/includes/templates/lw_a48/css/stylesheet_cart.css
IP 172.67.159.177:0
GET /includes/templates/lw_a48/css/stylesheet_cart.css HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: text/css
last-modified: Fri, 31 Dec 2021 05:39:16 GMT
vary: Accept-Encoding
etag: W/"61ce9784-214a"
expires: Mon, 19 Sep 2022 22:25:52 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WxHD5iEWVCXMqslNL%2FiSIO0X%2Fk8fs4Ch%2BR065hkyHK1peYk5YIwgfnQSflPinmHl9u3JeqkpJsXOSpRG3CbmXOApY6Pit%2BxlVIyWGbBPHDK2tiT9VnhswqIfcyFk7LeIVa%2B2cD06ZzkXzVHj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d19eac6b4ab512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tOTIxOTY2Njc5MDlfMS5qcGc/MTU2MTIxMzI5Ng==
172.67.159.177200 OK 0 B URL HTTP/2 dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tOTIxOTY2Njc5MDlfMS5qcGc/MTU2MTIxMzI5Ng==
IP 172.67.159.177:0
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tOTIxOTY2Njc5MDlfMS5qcGc/MTU2MTIxMzI5Ng== HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/jpg
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q5j890e1cWOOG%2BDzEznoqh97XayX0tr38xl59dyKP4lHDy%2BqCTcxZsaLSTcSo%2FVLlzWXp2rGAyX472pzy%2FPaAVmYO4N6gLAWF8Nxo%2B0CgqgYaIiUQL2e3DUgI5FvtrauHO21BuWywRwmswYM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d19eac6b3db512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/includes/templates/lw_a48/css/stylesheet_related.css
172.67.159.177200 OK 0 B URL HTTP/2 dominant.absencelevel.cfd/includes/templates/lw_a48/css/stylesheet_related.css
IP 172.67.159.177:0
GET /includes/templates/lw_a48/css/stylesheet_related.css HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: text/css
last-modified: Fri, 31 Dec 2021 05:39:16 GMT
vary: Accept-Encoding
etag: W/"61ce9784-80e"
expires: Mon, 19 Sep 2022 22:25:52 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RbNyKQGGL02YU8Bx5UFncjvaDImFAObRErkK7r9zHYR6RE%2BdX0FqyhIvEGabUvEdiEahJINTpGlqTwrOD8hPjC0jt0SSjOX0z1jpuytvcUhDceHyK4B4eEXhJnZxHBCv5Ac68hObt6ZuGR9N"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d19eac5affb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNjIzNDMyNTU3MDNfMS5qcGc/MTYyNTk2NjIzMA==
172.67.159.177200 OK 0 B URL HTTP/2 dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNjIzNDMyNTU3MDNfMS5qcGc/MTYyNTk2NjIzMA==
IP 172.67.159.177:0
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNjIzNDMyNTU3MDNfMS5qcGc/MTYyNTk2NjIzMA== HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/jpg
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AZZCvJdKwePu5DYbzL08wrwb9TVCvdTQEFdS95X%2F903aYaK%2B%2Fri45yTUfBpvnwOyA4uxQf9%2FeSOhJ7gQOTEtnFZ9m%2BgVLQVZEAXQHw%2B0Bk%2Fk9HuM%2ByPWi1%2FJh%2FoHkZokP1aQ06ReKpWHolrk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d19eac6b27b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
172.67.159.177200 OK 0 B URL HTTP/2 dominant.absencelevel.cfd/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP 172.67.159.177:0
Analyzer Verdict Alert fortinet Malware
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: application/javascript
last-modified: Thu, 15 Sep 2022 13:38:19 GMT
etag: W/"63232acb-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DmNr4jfOt9jRXUx3%2FNxG2swZCyXSC7W6jrNAKdBqpGnTqi1l9z6PcZR1CwrOUfiSVBcEULVwI%2BevtZdu%2Bc%2BRQNOOnx7OOgwzxzuSOcnrYjfsnsb%2FaR4tQMIGqqqE0kctQyZSkkMW2Nwn5pw%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d19eac6b47b512-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Wed, 21 Sep 2022 10:25:52 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tODM5ODg5NzU3NDRfMS5qcGc/MTYxMDI0Mzc1Mg==
172.67.159.177200 OK 0 B URL HTTP/2 dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tODM5ODg5NzU3NDRfMS5qcGc/MTYxMDI0Mzc1Mg==
IP 172.67.159.177:0
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tODM5ODg5NzU3NDRfMS5qcGc/MTYxMDI0Mzc1Mg== HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/jpg
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OT0t0IchHxb3hmLVBhI4%2B1%2FwaQ1ytA%2FoLKXx3ARBpZP6wLwt%2FDtID0Sp%2BeNohN8JDLW7n%2F%2FmPIp2zLIueMPWgEPZvz8ViSxe2wm4izb6Eqj9ZFgj%2Bfw3ljbc66%2B1E9r40er1BfbO5srraaL1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d19eac5b1ab512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMTkwNjk2MzIwMThfMS5qcGc/MTYyMjI5OTYzMg==
172.67.159.177200 OK 0 B URL HTTP/2 dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMTkwNjk2MzIwMThfMS5qcGc/MTYyMjI5OTYzMg==
IP 172.67.159.177:0
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMTkwNjk2MzIwMThfMS5qcGc/MTYyMjI5OTYzMg== HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/jpg
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Hc%2F11vRJoLVP0NFsh6FZr4o5ZdW1o5Xooh8NV%2FWbouisoIqcByaZMnDW%2BAMQPO2%2B87Fl3AuOOxkMYLnSn3kkWuM4EVXr4q2kOquHzAew0pRS59zeAaXxT0CHge7C%2FFLsvzMvgCyWgiFOq13u"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d19eac5b13b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNzMxODA1MzA4OTZfMS5qcGc/MTYzMDA3MDEzNQ==
172.67.159.177200 OK 0 B URL HTTP/2 dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNzMxODA1MzA4OTZfMS5qcGc/MTYzMDA3MDEzNQ==
IP 172.67.159.177:0
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNzMxODA1MzA4OTZfMS5qcGc/MTYzMDA3MDEzNQ== HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/jpg
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pnEn%2FjIsh1dEvNaqD1xcTsUATQ0ze4svKq7xZiCrj9UNGM0fpRPAMa0Axg%2BLL7EgIQ3auTQPV0X8ljBScPgFAyvFrXkjNMSHDAlJBMbmjYoZTwJd8sfZQ4Dac3fzZw05ryr8bb97I6HrTOL3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d19eac6b40b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tOTcwODcyMTgwMzBfMS5qcGc/MTYzMjc0NjgyMA==
172.67.159.177200 OK 0 B URL HTTP/2 dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tOTcwODcyMTgwMzBfMS5qcGc/MTYzMjc0NjgyMA==
IP 172.67.159.177:0
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tOTcwODcyMTgwMzBfMS5qcGc/MTYzMjc0NjgyMA== HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/jpg
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VeyYq95WHIQTXniDMiLYL7PzEKi%2F%2Fudm4OmHugX4aYwnJxfvowoIFTv0l1V88WfoGsAf6hR3itj9w%2BaPbrjUrhpO4NcfspCUCf7y8rTMUTVITb0uPdsgptuDEDTNxqMzxWc4jHqzaWLzp51N"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d19eac6b1eb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tOTg0MDM0ODQzMDJfMS5qcGc/MTYxMjI2OTM3Nw==
172.67.159.177200 OK 0 B URL HTTP/2 dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tOTg0MDM0ODQzMDJfMS5qcGc/MTYxMjI2OTM3Nw==
IP 172.67.159.177:0
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tOTg0MDM0ODQzMDJfMS5qcGc/MTYxMjI2OTM3Nw== HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/jpg
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b7scodsEVmGHkyySHxmeSJ%2FdH%2F6%2BVipa8KLrfYYm6m3vi5UNvrLsSobbSRsh8YzXQhbxmAz1U80eYvCksC9yB9yW1mi8aMR%2BomzOyXL3CGm5NpX9vQ%2B8lulQ03m7Yq5DS2Si0DxPPOrotZoJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d19eac5b0db512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNjg3MTE3MTc2NDlfMS5qcGc/MTYzOTA2OTU3Mw==
172.67.159.177200 OK 0 B URL HTTP/2 dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNjg3MTE3MTc2NDlfMS5qcGc/MTYzOTA2OTU3Mw==
IP 172.67.159.177:0
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNjg3MTE3MTc2NDlfMS5qcGc/MTYzOTA2OTU3Mw== HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/jpg
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R2hlkzyniXavzjroHxSbS9Iy2xPGCgx%2FwjtfuvXXurQ0ZTYnDyEKOJCi5DjZQ1kbX4QkOXyw%2BWst2lRO957oTMXXBXzlkSc1AyeSU2LGMGb5h4BotPqRgrxAdzTq2EgOsrMr9hU9%2FqjJY68m"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d19eac6b41b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNTE3MjU1NTkwNjRfMS5qcGc/MTYzNDc5MDU4MQ==
172.67.159.177200 OK 0 B URL HTTP/2 dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNTE3MjU1NTkwNjRfMS5qcGc/MTYzNDc5MDU4MQ==
IP 172.67.159.177:0
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNTE3MjU1NTkwNjRfMS5qcGc/MTYzNDc5MDU4MQ== HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/jpg
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kLa%2F4UKOTmlU0qKFv4ebaNb82TXE0e1ISlomFXM3Ov0PZRKO3gHojALD5cZbYjIHnUgIC4wi4BGzH0usCmw4ZRacUQSYxLmAE%2FuVrru9hwbxzgtGlSHJHBH4G%2Ft4ASfj3HYyOuMp%2B2rSau1f"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d19eac6b30b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tODAyMTAxMzI1ODNfMS5qcGc/MTYzNzk3Njk5Mw==
172.67.159.177200 OK 0 B URL HTTP/2 dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tODAyMTAxMzI1ODNfMS5qcGc/MTYzNzk3Njk5Mw==
IP 172.67.159.177:0
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tODAyMTAxMzI1ODNfMS5qcGc/MTYzNzk3Njk5Mw== HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/jpg
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sglMSTxhNuc7HP03GriQGLuR%2FrA57cjMjgliQC75a%2BSd42T%2FoZizWHP6jkd6wvnFA0ZsYs7Kym1D2St%2B3gARrWlhaRLfOE9%2B6kQAROjU1kcKdbvvVa2iFnIcDnqmvwXQhAerzR%2FprgB97%2Fos"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d19eac5b10b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/includes/templates/lw_a48/css/stylesheet_css_buttons.css
172.67.159.177200 OK 0 B URL HTTP/2 dominant.absencelevel.cfd/includes/templates/lw_a48/css/stylesheet_css_buttons.css
IP 172.67.159.177:0
GET /includes/templates/lw_a48/css/stylesheet_css_buttons.css HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: text/css
last-modified: Fri, 31 Dec 2021 05:39:16 GMT
vary: Accept-Encoding
etag: W/"61ce9784-553"
expires: Mon, 19 Sep 2022 22:25:52 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DljgJUJqGxiWhZPpvVo8vhNE9ooQTG025LkIblY4GbaG8BWNB7j4Jslel1LA26F1L8e9bvHMP2g%2BJoCk69v6UsQ2Ku1R%2F8bswBT49osRNUXQPF2a2oo0fK%2Fgf5oD7Fu8VfeG4Yu8HjKYETXI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d19eac6b4cb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNDI4MzU5ODU3NzRfMS5qcGc/MTYyODI5OTkxMg==
172.67.159.177200 OK 0 B URL HTTP/2 dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNDI4MzU5ODU3NzRfMS5qcGc/MTYyODI5OTkxMg==
IP 172.67.159.177:0
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNDI4MzU5ODU3NzRfMS5qcGc/MTYyODI5OTkxMg== HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/jpg
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1sHbGn0oiGxRTw2ZU4pSn%2BEuzVZaw%2FqIWbYRanOGcGPyTCAUdHn1Dv3kOTuKDcx4hZw2bcKW6%2BteL2hnojsFc8toeh5fv0QqACaSjhG94SNq%2B6L2UPzCX0mbzmtxXGxmc%2BnQX3qdnDPfhAOV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d19eac6b24b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMzcyMDY4ODUxMTNfMS5qcGc/MTYzMjc4NDI1OA==
172.67.159.177200 OK 0 B URL HTTP/2 dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMzcyMDY4ODUxMTNfMS5qcGc/MTYzMjc4NDI1OA==
IP 172.67.159.177:0
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMzcyMDY4ODUxMTNfMS5qcGc/MTYzMjc4NDI1OA== HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/jpg
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DwfeIFJ1djDxryXfU9vzWY9xgK7YnLl4AnwfLMDVnTY2LjrmmkNnAB4BQzG9S4VZcw38UPOIXO6%2FcDAQyrJA1GKW%2F002xic0ng3wTeIApLJsMfW9UMNdtiW3CUn4da%2BmU7ohcgNBId2dk9ww"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d19eac5b0ab512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMTE2NDc5Mjc4NzRfMS5qcGc/MTYzNzQ3MjY1MA==
172.67.159.177200 OK 0 B URL HTTP/2 dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMTE2NDc5Mjc4NzRfMS5qcGc/MTYzNzQ3MjY1MA==
IP 172.67.159.177:0
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMTE2NDc5Mjc4NzRfMS5qcGc/MTYzNzQ3MjY1MA== HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/jpg
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kl7fPKkXNCRWe4PkbBeCUUUHL4vzcI3sVue9TrhHlsovZzuciIJr8b3musuq8793bddDBgRDoJQ1Q%2BLPrFH2NDekpHJdc4kRz%2Fl1P1JbGuJAEvE5Ie1%2Fnafuh569R2FzjOrUOIkAFYQ0myel"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d19eac6b2cb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNzAzNjg3Nzc1MzBfMS5qcGc/MTYwMTIxMTc4OQ==
172.67.159.177200 OK 0 B URL HTTP/2 dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNzAzNjg3Nzc1MzBfMS5qcGc/MTYwMTIxMTc4OQ==
IP 172.67.159.177:0
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tNzAzNjg3Nzc1MzBfMS5qcGc/MTYwMTIxMTc4OQ== HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/jpg
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n6g3D8281MT5mERvyiVpyKlT8rC%2Bzb7mufeFBTZRNS%2FvZDJfNJ92amqP7loxd4GA5977tohTD98YihQXsWGrD8%2BhXczi4g1s4cnLf%2BOhMNtpWYg%2BM2gFpicsMqwe1gKXBtY8hAxfQ0te9%2Bwq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d19eac6b34b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMjc0NDY5Mzg4MTdfMS5qcGc/MTYzNTQ4OTAyMw==
172.67.159.177200 OK 0 B URL HTTP/2 dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMjc0NDY5Mzg4MTdfMS5qcGc/MTYzNTQ4OTAyMw==
IP 172.67.159.177:0
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMjc0NDY5Mzg4MTdfMS5qcGc/MTYzNTQ4OTAyMw== HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/jpg
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jL9mezn17ynQGKDmMVAX9vT8ZohGl8q%2BdRKHN6QlHoDWt%2BIr6lmRgQhORxzx5fda1BF4YOSb3LQsLyf9vZbbshEXKwecFIjOqqGULABmNZfaGD9EgJgRICf3wR3aU0o%2BKsYOBQPZf%2BchFiuW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d19eac6b32b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMTA2MzE0NTExMTdfMS5qcGc/MTYzNTkxOTI0MQ==
172.67.159.177200 OK 0 B URL HTTP/2 dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMTA2MzE0NTExMTdfMS5qcGc/MTYzNTkxOTI0MQ==
IP 172.67.159.177:0
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMTA2MzE0NTExMTdfMS5qcGc/MTYzNTkxOTI0MQ== HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/jpg
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iYov6yhyM%2FVdOe9QymFlchnZG9gozm6zCu5UHiJWEnzyJQwDax7MLCiNvRASxD3vW1h2Q1ylv8KLbwNvzWJPmvHG74rXYS1zgCWH%2Fw5LM2RkCMjeM8mc%2FFtP6ux6rWUaqdIV9NNmfLRfj4RD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d19eac6b3ab512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/includes/templates/lw_a48/font/css/font-awesome.min.css
172.67.159.177200 OK 0 B URL HTTP/2 dominant.absencelevel.cfd/includes/templates/lw_a48/font/css/font-awesome.min.css
IP 172.67.159.177:0
GET /includes/templates/lw_a48/font/css/font-awesome.min.css HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: text/css
last-modified: Fri, 31 Dec 2021 05:39:16 GMT
vary: Accept-Encoding
etag: W/"61ce9784-7918"
expires: Mon, 19 Sep 2022 22:25:52 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oy5Z%2FekPq0gmuwuka0YzlhuXCIgoRli3qLKpQ5tNbHe8y7yEnLTFfk6l6QX9CkOxX73m7XFIoODo5s2PbHBXvHAo4njLdG3ZKkfTHiHWFuBnsOFrGHVnXi%2BaeX2wkP3nKYZNqhHSZ1oS15lR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d19eac5af2b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMzQ1NjM0MTQyNzVfMS5qcGc/MTYyNzk4NzcxOA==
172.67.159.177200 OK 0 B URL HTTP/2 dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMzQ1NjM0MTQyNzVfMS5qcGc/MTYyNzk4NzcxOA==
IP 172.67.159.177:0
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMzQ1NjM0MTQyNzVfMS5qcGc/MTYyNzk4NzcxOA== HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/jpg
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WhfSuGjeLHi8FDDnkz%2FrJvminDVoqDazaomzQANG6e6TAQN2zOYKX8E%2FDrpErvq0jiCp1L5tibz8vrSm31z1M9LVgDfPQvmZPxNSBcOUEnYEUEd6lwpE6ymX4dSssERf0h9x3YCQPU34dvqd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d19eac6b36b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMjI0OTU3Mjc0NTdfMS5qcGc/MTYzMTc3MjMxMw==
172.67.159.177200 OK 0 B URL HTTP/2 dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMjI0OTU3Mjc0NTdfMS5qcGc/MTYzMTc3MjMxMw==
IP 172.67.159.177:0
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMjI0OTU3Mjc0NTdfMS5qcGc/MTYzMTc3MjMxMw== HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/jpg
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bV1LAvcUtvGoxxyVji8TKrpEqb9l7IQGRljRZ%2BUYONCTfxupK67GsKQwyLrNiU%2B1aGCNm8q%2FaTJ2i%2F2BUN06rcgbQzJFV2T%2FE%2FxYy5AicrmigtnkR12g6NFZa%2FM2UMij8ErOVry36BWeGsL6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d19eac6b2eb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMzIxMDA0ODYzNzRfMS5qcGc/MTYzODYwODI4Nw==
172.67.159.177200 OK 0 B URL HTTP/2 dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMzIxMDA0ODYzNzRfMS5qcGc/MTYzODYwODI4Nw==
IP 172.67.159.177:0
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMzIxMDA0ODYzNzRfMS5qcGc/MTYzODYwODI4Nw== HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/jpg
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=telfaSFgYMT4r3xmpt2CxaQkdDxjiHB4nPQUV0l7fy3lz37a7CWPhzQ06Fstvf1Ku4fXvUoKjyBmjgYlW7%2FjFofT6DyJK8dZajUjTA6%2FrHo%2FpPaQh3j1SeN7eaDpQ4Gxseo2P6ZdKN7vBZFp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d19eac6b2fb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMzE1MTUzNDU4NDVfMS5qcGc/MTYzNTA2MzgzNg==
172.67.159.177200 OK 0 B URL HTTP/2 dominant.absencelevel.cfd/imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMzE1MTUzNDU4NDVfMS5qcGc/MTYzNTA2MzgzNg==
IP 172.67.159.177:0
Analyzer Verdict Alert fortinet Malware
GET /imgcdn.php?pic=aHR0cHM6Ly9zdGF0aWMubWVyY2RuLm5ldC9pdGVtL2RldGFpbC9vcmlnL3Bob3Rvcy9tMzE1MTUzNDU4NDVfMS5qcGc/MTYzNTA2MzgzNg== HTTP/1.1
Host: dominant.absencelevel.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dominant.absencelevel.cfd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:25:52 GMT
content-type: image/jpg
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=He6pC5Kle%2BaAY0Ve1JAhEMPjSTYGm4MxCFr6ZRlSS8Sof2kT9D2%2FIXRKzHrK7BNpnS%2FWMw4VHlJOiJhgR2dP1L%2FA9Ude6YG6Vx5oMyQYdjCEcRtU0yBa6vAdWnCOy6btmf1rIrbQMQNHRHcp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d19eac5af5b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2