Overview

URL ae.notifymenow.click/index_v2.html
IP54.230.111.87
ASNAMAZON-02
Location United States
Report completed2022-09-18 21:28:08 UTC
StatusLoading report..
urlquery Alerts Scam / Brand infringement


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (13)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-09-18 05:00:37 UTC 23.36.76.226
mnemonic passive DNS ae.notifymenow.click (21) 0 2022-06-02 22:56:38 UTC 2022-09-18 15:09:25 UTC 54.230.111.48 Unknown ranking
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-18 19:15:51 UTC 93.184.220.29
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-18 06:05:26 UTC 52.39.57.61
mnemonic passive DNS img-getpocket.cdn.mozilla.net (4) 1631 2017-09-01 03:40:57 UTC 2022-09-18 04:20:51 UTC 34.120.237.76
mnemonic passive DNS fonts.googleapis.com (1) 8877 2014-07-21 13:19:55 UTC 2022-09-18 19:50:51 UTC 142.250.74.10
mnemonic passive DNS shaumtol.com (1) 258042 2021-09-14 15:15:35 UTC 2022-09-18 15:08:10 UTC 139.45.197.250
mnemonic passive DNS ae.notifymenow.click (21) 0 2022-06-02 22:56:38 UTC 2022-09-18 15:09:25 UTC 54.230.111.87 Unknown ranking
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-27 20:08:30 UTC 2022-09-18 16:02:06 UTC 143.204.55.27
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-18 06:05:25 UTC 143.204.55.35
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-18 04:48:15 UTC 34.117.237.239
mnemonic passive DNS ocsp.sca1b.amazontrust.com (1) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 54.230.245.39
mnemonic passive DNS cdnjs.cloudflare.com (1) 235 2020-10-20 10:17:36 UTC 2022-09-18 11:52:05 UTC 104.17.25.14


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 54.230.111.87

Date UQ / IDS / BL URL IP
2022-11-22 16:04:23 +0000
11 - 0 - 7 www.luckyboat.xyz/sweeps/MW/iPhoneXS-EN-Spinn (...) 54.230.111.87
2022-10-16 07:01:51 +0000
2 - 0 - 1 ae.notifymenow.click/index_v2.html 54.230.111.87
2022-09-18 21:28:08 +0000
2 - 0 - 0 ae.notifymenow.click/index_v2.html 54.230.111.87
2022-09-13 09:01:38 +0000
0 - 0 - 48 neweb.d3nktqlx3fpklj.amplifyapp.com/ 54.230.111.87
2022-09-06 12:06:38 +0000
0 - 0 - 2 rebrandly.com/404 54.230.111.87

Last 5 reports on ASN: AMAZON-02

Date UQ / IDS / BL URL IP
2022-12-08 19:16:37 +0000
0 - 0 - 10 www.konviene.com/ 76.76.21.61
2022-12-08 19:15:09 +0000
0 - 0 - 6 strangerthingss4scanner.com/visit/bfe884a1-4c (...) 3.76.58.161
2022-12-08 19:15:03 +0000
0 - 0 - 1 im.voelum.com/ed413f90-e3d9-4428-924e-67bcba4bbbce 3.64.65.230
2022-12-08 19:14:58 +0000
0 - 0 - 1 partivers-acting.icu/4437fcef-d8b5-48b1-b745- (...) 18.193.209.105
2022-12-08 19:14:18 +0000
0 - 0 - 6 rdr.funcontent.xyz/go/7074e809-891b-49e4-b5c0 (...) 3.70.16.242

Last 5 reports on domain: notifymenow.click

Date UQ / IDS / BL URL IP
2022-11-14 13:57:17 +0000
0 - 0 - 1 ae.notifymenow.click/index_v2.html 54.230.111.86
2022-11-09 23:13:55 +0000
0 - 0 - 1 ae.notifymenow.click/index_v2.html 54.230.111.86
2022-11-05 12:57:36 +0000
2 - 0 - 1 ae.notifymenow.click/index_v2.html 54.230.111.128
2022-11-02 13:11:53 +0000
2 - 0 - 1 ae.notifymenow.click/index_v2.html 54.230.111.86
2022-10-16 07:01:51 +0000
2 - 0 - 1 ae.notifymenow.click/index_v2.html 54.230.111.87

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-12-08 06:57:32 +0000
0 - 0 - 1 www.playthegame.site/8/index.php?domain=trckp (...) 65.2.175.86
2022-12-07 07:15:20 +0000
0 - 0 - 1 trckprop.xyz/go/2e00fca6-a544-4aa7-aa2b-67bdf (...) 3.70.16.242
2022-12-01 19:59:19 +0000
0 - 0 - 1 www.playthegame.site/8/index.php?domain=trckp (...) 65.2.175.86
2022-11-28 08:56:18 +0000
0 - 0 - 1 trckprop.xyz/go/2e00fca6-a544-4aa7-aa2b-67bdf (...) 3.70.16.242
2022-11-27 14:01:17 +0000
0 - 0 - 1 www.playthegame.site/8/index.php?domain=trckp (...) 65.2.175.86


JavaScript

Executed Scripts (9)


Executed Evals (1)

#1 JavaScript::Eval (size: 80, repeated: 1) - SHA256: 88d238702d92c6da5dabf778b20682b9f1c480c841da8c413d35256fbd47d5b6

                                        (() => {
    const a = async
    function name() {};
    window['wrj0tv8ma5c'] = true;
})()
                                    

Executed Writes (0)



HTTP Transactions (41)


Request Response
                                        
                                            GET /index_v2.html HTTP/1.1 
Host: ae.notifymenow.click
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         54.230.111.87
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: CloudFront
Date: Sun, 18 Sep 2022 21:27:57 GMT
Content-Length: 167
Connection: keep-alive
Location: https://ae.notifymenow.click/index_v2.html
X-Cache: Redirect from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Krz0nFBntCHmNa7yipmXMOYUnNbnG7T2Th9MKyu38OhPcaLUFRUpJA==


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   167
Md5:    f5d40b7259645010f9a248858ad14178
Sha1:   b3051d17a6ec8c9e166bf09a62b48261ab86957b
Sha256: 7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 18 Sep 2022 21:12:24 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: nck_-NgXD-3RYQ59XcRQwO_J84Jfvi7SZn0GJ22oS6UlZ-N8lWXtyg==
Age: 933


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    b593eb39329cfe060d55be5e4a5405e2
Sha1:   78e46c1028e9f94f8569303ad2d90d7df13a059a
Sha256: 08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "2C25A6717245BE3746F1412AF9DD1C351E12DBB93E8E08C3DDCDACF35E419514"
Last-Modified: Sun, 18 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9346
Expires: Mon, 19 Sep 2022 00:03:43 GMT
Date: Sun, 18 Sep 2022 21:27:57 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 18 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: gcCUMDKA6Sp-m18aFt1kb-GZOmcfOy_76LUR6tlOFN4W21Fxz86kIg==
age: 60764
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sun, 18 Sep 2022 21:27:57 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         54.230.245.39
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sun, 18 Sep 2022 21:27:57 GMT
Server: ECS (dcb/7EA5)
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Lf-gfYqUsX4OidT8iGeG3Cnc1_ZEIvp3VYHvb4ijQtV95jq-pKdsBQ==

                                        
                                            GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ae.notifymenow.click
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.25.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Sun, 18 Sep 2022 21:27:58 GMT
content-length: 27958
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb09ed3-15d84"
last-modified: Mon, 04 May 2020 23:01:39 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 8980182
expires: Fri, 08 Sep 2023 21:27:58 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jpouMUZZvzDlfrq6owfQ7pu5viOto1QctWypyCwaPr86K22c0xBHNUYaxGvn4vPBTgjVnA9WwFNkRSxvmIMNBBrk8vp4mqLzIlFjcA%2BRpPybaOHbmSEz11Jy4TiyEQfqx0Mbdklq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74cd2b2b8c570b45-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65451)
Size:   27958
Md5:    4b5f47439b640180cc3450f7de05d0d8
Sha1:   5a0dc9bcab80ddc409dd35fcb00a88fe6846fee2
Sha256: 1f85e8b327f42c17c025d69849914068536d9aa95412fe473ae90ffb2f4ebd82
                                        
                                            GET /Congratulations!_files/style_1.css HTTP/1.1 
Host: ae.notifymenow.click
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ae.notifymenow.click/index_v2.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.48
HTTP/2 200 OK
content-type: text/css
                                        
content-length: 0
last-modified: Sun, 29 May 2022 20:17:14 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 18 Sep 2022 03:04:19 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ryEXzL-8nyP-Uk1fDA3GZnU018IqD6S_pIWJg3dwJJWSX0kU8RFVpA==
age: 66220
X-Firefox-Spdy: h2

                                        
                                            GET /Congratulations!_files/aespinner.png HTTP/1.1 
Host: ae.notifymenow.click
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ae.notifymenow.click/index_v2.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.48
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 127517
last-modified: Sun, 29 May 2022 20:17:07 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 18 Sep 2022 18:18:03 GMT
etag: "9b4dd9cd94a9cc44d87286f9d9f7e8c6"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Wsz3vBgYcTeeUhaKM31JJ6a78DloMY81exaEBvsrosZrLl9pFZydWA==
age: 11396
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 567 x 567, 8-bit/color RGBA, non-interlaced\012- data
Size:   127517
Md5:    9b4dd9cd94a9cc44d87286f9d9f7e8c6
Sha1:   e2fcd13f9faf76f6940532971b2d0c937180ac57
Sha256: 9b58198c80aff14dc49659a24ebb1f1b59d9f05600edea4b7d9944ac80157390
                                        
                                            GET /Congratulations!_files/5.png HTTP/1.1 
Host: ae.notifymenow.click
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ae.notifymenow.click/index_v2.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.48
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 5996
last-modified: Sun, 29 May 2022 20:17:01 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 18 Sep 2022 14:20:15 GMT
etag: "8b6ae9d5f0edaeb043509b63f0798466"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hZkPDgPyYojIQNZuFxA971PSPd6N4-jdgTIndTrCrAePlzEZ04tm5w==
age: 25664
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 50 x 52, 8-bit/color RGB, non-interlaced\012- data
Size:   5996
Md5:    8b6ae9d5f0edaeb043509b63f0798466
Sha1:   b4173bc837da393ce683d5c0021dd7e541d32947
Sha256: 1fbb172f707cf016e445c0febaa6e10ec9d68f5c10de845eb8b100632664a054
                                        
                                            GET /Congratulations!_files/6.png HTTP/1.1 
Host: ae.notifymenow.click
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ae.notifymenow.click/index_v2.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.48
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 7713
last-modified: Sun, 29 May 2022 20:17:03 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 18 Sep 2022 04:32:13 GMT
etag: "d0c785a1000318f01a3004ba52bb6bed"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9N9fVsIKPpGVvHMFnCWqQUwhPB3myblSCuP2qUQxFqSIPCO_Crn6ZA==
age: 60946
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 50 x 52, 8-bit/color RGB, non-interlaced\012- data
Size:   7713
Md5:    d0c785a1000318f01a3004ba52bb6bed
Sha1:   fc2b30f76884e8a493353d53ca608da556479349
Sha256: eb2ee47bfa12e0b29d440f20470f10e4eae63ade8cabbfbe1bed8b3b27adc67b
                                        
                                            GET /Congratulations!_files/8.png HTTP/1.1 
Host: ae.notifymenow.click
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ae.notifymenow.click/index_v2.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.48
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 8160
last-modified: Sun, 29 May 2022 20:17:05 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 18 Sep 2022 03:04:19 GMT
etag: "1409b382e0a062bce0fc3f6b19fd3779"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: v3rEp8EfAsGoEzbgiF_u669YB8MovThrMRfJTs-3I4wviDTWwn4-tQ==
age: 66219
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 50 x 52, 8-bit/color RGB, non-interlaced\012- data
Size:   8160
Md5:    1409b382e0a062bce0fc3f6b19fd3779
Sha1:   0cab458ff59537802148c7e82c6c1b691a1bbaa1
Sha256: efee36fae4637e97e21a3e54d1e26a5348adbcc5db2c3f12c8974b3dcbe6cf7f
                                        
                                            GET /Congratulations!_files/7.png HTTP/1.1 
Host: ae.notifymenow.click
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ae.notifymenow.click/index_v2.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.48
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 8061
last-modified: Sun, 29 May 2022 20:17:04 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 18 Sep 2022 18:18:19 GMT
etag: "26958d2dfdbb2b9c702128456dfa9b63"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4GsvGNzPsKN5FxbV9kmKfNbeoLqfaR3a94p8-vUqGpaUt_7ePtwSRA==
age: 11380
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 50 x 52, 8-bit/color RGB, non-interlaced\012- data
Size:   8061
Md5:    26958d2dfdbb2b9c702128456dfa9b63
Sha1:   c3852725dd934e0df8c21a16a4ca1784ac24cc91
Sha256: cf36393abf98f448205bb15c4ce13fc73ecce186513f83a15b29dd01a7dfe617
                                        
                                            GET /Congratulations!_files/vvloq33mfjb.jpg HTTP/1.1 
Host: ae.notifymenow.click
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ae.notifymenow.click/index_v2.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.48
HTTP/2 200 OK
content-type: image/jpeg
                                        
content-length: 19293
last-modified: Sun, 29 May 2022 20:17:17 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 18 Sep 2022 18:18:19 GMT
etag: "e10dc7d3725ec38485f4c85f96728e60"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZwSMXwi4RFIGGqqdgyH8eNCC9_xb9XmmgZDHg0d8bWCB2vqW_IIQww==
age: 11379
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 600x338, components 3\012- data
Size:   19293
Md5:    e10dc7d3725ec38485f4c85f96728e60
Sha1:   ce54207b14c5a3fdb24c34ad171a16127289f7f5
Sha256: 0f4e4cdf276b9f0d8693ae70e32d17dd43cae085c5f2b2aa4a7eb184ed4004c1
                                        
                                            GET /Congratulations!_files/1.png HTTP/1.1 
Host: ae.notifymenow.click
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ae.notifymenow.click/index_v2.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.48
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 5288
last-modified: Sun, 29 May 2022 20:16:54 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 18 Sep 2022 04:32:13 GMT
etag: "9284629c5a1d1469a99926da868ba4ef"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jIMN_xjUy7BzJ6Bt9ztb5_2OLQR-f9PopciUZD7FE5FrTwZWyWn_Fw==
age: 60946
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 50 x 52, 8-bit/color RGB, non-interlaced\012- data
Size:   5288
Md5:    9284629c5a1d1469a99926da868ba4ef
Sha1:   e63adbb0e844ee3c5f4cf28170be35e530deb347
Sha256: 834baa58f464ff9af647c62f31c391179bbbff81b15a0294fb834603801f6199
                                        
                                            GET /Congratulations!_files/arprize.png HTTP/1.1 
Host: ae.notifymenow.click
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ae.notifymenow.click/index_v2.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.48
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 50462
last-modified: Sun, 29 May 2022 20:17:08 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 18 Sep 2022 04:32:13 GMT
etag: "99ac6f11ca6e9c9ffd7c694e958de033"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4SddfdqGF4qjNsq6X_hSZX-Yht8wcLm_m6tOM1Caj4xOlOp6PuSdzw==
age: 60946
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 212 x 186, 8-bit/color RGBA, non-interlaced\012- data
Size:   50462
Md5:    99ac6f11ca6e9c9ffd7c694e958de033
Sha1:   c8f611537d17189bbacec0041bb8e9fc52895f2e
Sha256: 5b49f1040bdfc1cb59a75594812df6416fcffbb8d488893df28c79c28f10a1f1
                                        
                                            GET /Congratulations!_files/11.png HTTP/1.1 
Host: ae.notifymenow.click
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ae.notifymenow.click/index_v2.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.48
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 4220
last-modified: Sun, 29 May 2022 20:16:56 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 18 Sep 2022 04:32:13 GMT
etag: "a37a23b2a0618413adef70fb8204160b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NZa3kcSY916tVYCJ0OnOAOXC7PrfRDOaU1iDaZTPt_Hf2OsWfrLcRg==
age: 60946
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 531 x 531, 4-bit colormap, non-interlaced\012- data
Size:   4220
Md5:    a37a23b2a0618413adef70fb8204160b
Sha1:   77ea62ed00de2374e9680384a0f0ac2c119c6875
Sha256: e036e6f8908a87aa0e5189b8096ed0e4faed461b17eb7646c9e48011d2b27b5c
                                        
                                            GET /Congratulations!_files/spin.png HTTP/1.1 
Host: ae.notifymenow.click
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ae.notifymenow.click/index_v2.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.48
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 9424
last-modified: Sun, 29 May 2022 20:17:13 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 18 Sep 2022 18:18:03 GMT
etag: "7b5a73affea89f7a61cf02447cd8b28f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ekwx983TW2M68kmAs0Zu6O6vW0oerqQU6w4gjj02gJGQ_0ebvExKKw==
age: 11396
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 136 x 137, 8-bit/color RGBA, non-interlaced\012- data
Size:   9424
Md5:    7b5a73affea89f7a61cf02447cd8b28f
Sha1:   aac3bbde34f52de14d589c9e1f1eaff0d2c86050
Sha256: 661a42f28393a654900c07858bc59ef1c608420765e93788aa3f58dcd8c84bc1
                                        
                                            GET /Congratulations!_files/bckbton.js HTTP/1.1 
Host: ae.notifymenow.click
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ae.notifymenow.click/index_v2.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.48
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 833
last-modified: Sun, 29 May 2022 20:17:09 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 18 Sep 2022 15:42:57 GMT
etag: "6d1333b717d1eabeccff8b713f875b40"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5iGoAVpnbekoD3BmC09ogaE_CF8iNvsLwqbSUc6fT0jLMWpftAWEkg==
age: 20702
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   833
Md5:    6d1333b717d1eabeccff8b713f875b40
Sha1:   0faf77a5b803e056e57edd3927d10d577b4ba3b3
Sha256: 85c19f622b39183eb4be19e8edf3ee8b75fe78f979a3fdd3b018f45e6bd8bde5
                                        
                                            GET /Congratulations!_files/3.png HTTP/1.1 
Host: ae.notifymenow.click
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ae.notifymenow.click/index_v2.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.48
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 7661
last-modified: Sun, 29 May 2022 20:16:58 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 18 Sep 2022 04:32:13 GMT
etag: "323e3fb51c2365d871a87f042144211f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Xy64m5O1MQNmVoCR59KAqxd195B3cw5pi5hUvplTFlqESiw2mygwRQ==
age: 60946
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 50 x 52, 8-bit/color RGB, non-interlaced\012- data
Size:   7661
Md5:    323e3fb51c2365d871a87f042144211f
Sha1:   754d54f55de6c70d0ddf7298989075bb274be8bf
Sha256: 2c9da7d56c6851b32eb11cf8d2af19a3316784df0980d1d54734db2e455cc641
                                        
                                            GET /Congratulations!_files/2.png HTTP/1.1 
Host: ae.notifymenow.click
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ae.notifymenow.click/index_v2.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.48
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 6706
last-modified: Sun, 29 May 2022 20:16:57 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 18 Sep 2022 07:34:44 GMT
etag: "4bd36a91211a70305638ba5255ff5f89"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: mfjLGEndsbsIQBcC2qYMWkUBUC3K8AYBAYHTtAyOx0ugH8bTaG48Lw==
age: 49995
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 50 x 52, 8-bit/color RGB, non-interlaced\012- data
Size:   6706
Md5:    4bd36a91211a70305638ba5255ff5f89
Sha1:   1471fb0d64694de870d5d5960d0096d2ab193c95
Sha256: 64dc934d6db901053a4356905bf75b42474deab1e8c4d3826ca8e114a4197629
                                        
                                            GET /Congratulations!_files/4.png HTTP/1.1 
Host: ae.notifymenow.click
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ae.notifymenow.click/index_v2.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.48
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 6795
last-modified: Sun, 29 May 2022 20:17:00 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 18 Sep 2022 04:32:13 GMT
etag: "846a9632f429bf2b60dcca80ef6e82df"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: OruFUx0ewmSCBUE4jwEs9oG2fEirZU5DgfU6OEF8ZVF89-gXPOSxBw==
age: 60946
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 50 x 52, 8-bit/color RGB, non-interlaced\012- data
Size:   6795
Md5:    846a9632f429bf2b60dcca80ef6e82df
Sha1:   a7a54f738ed4790ea783fb40a0381d5899c6fab4
Sha256: 4e6d71b6bb56a9d5727081844fcdacd005ca94fba45c92ac947129f131be5283
                                        
                                            GET /Congratulations!_files/order_me.min.css HTTP/1.1 
Host: ae.notifymenow.click
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ae.notifymenow.click/index_v2.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.48
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Sun, 29 May 2022 20:17:12 GMT
server: AmazonS3
content-encoding: br
date: Sun, 18 Sep 2022 04:32:13 GMT
etag: W/"20110e0accd463ce2baa6dc85121f550"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7Gw-cp-mGnK6mwj11BJWtCeKKh5XSz_30-kypGkswsjg6Fq56HAj6Q==
age: 60946
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1591
Md5:    7b6f1cddfc76603c78db7a0a1ca4da6f
Sha1:   c439603d9ddad2fa642cd73a1615254490f53035
Sha256: 4f1c0ead03b64bd964720a7fc886dfb9534a747d9a75b347d6ab9a252d9cbeef
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sun, 18 Sep 2022 21:03:22 GMT
Expires: Sun, 18 Sep 2022 21:08:41 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: lH8B4O0VL4zou7k5txNpFmnWpAeCxhxp20cRZWx4d7YrY8JBNFElOA==
Age: 1476


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /Congratulations!_files/sweetalert.css HTTP/1.1 
Host: ae.notifymenow.click
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ae.notifymenow.click/index_v2.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.48
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Sun, 29 May 2022 20:17:16 GMT
server: AmazonS3
content-encoding: br
date: Sun, 18 Sep 2022 03:04:19 GMT
etag: W/"2c192b2dd454462bc2b603c4ca2acff8"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zQWAZdWvCmuNhvExIRbFi4MqT1xKUgnwsralZo6F9p14WmHoBZb2gw==
age: 66220
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   3781
Md5:    a856cc13bab74cf246b23e61a3fea4a6
Sha1:   0b898e0c5e44762b0d33a6c4b484440f85d124ae
Sha256: c9f6cd0f3d2c4f8b4ec23d0324e123755e095a02611a3198f29816b07285f053
                                        
                                            GET /Congratulations!_files/like.png HTTP/1.1 
Host: ae.notifymenow.click
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ae.notifymenow.click/index_v2.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.48
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 175
last-modified: Sun, 29 May 2022 20:17:11 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 18 Sep 2022 04:32:14 GMT
etag: "7f5f867f5a1cc4c7f1bee43696ea4af9"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -372keRMs_dUHEH1-c-IE0g5b54sAWRhQL_9CoD9slvtB0P93zVkBA==
age: 60945
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 13 x 12, 4-bit colormap, non-interlaced\012- data
Size:   175
Md5:    7f5f867f5a1cc4c7f1bee43696ea4af9
Sha1:   2dfcae77833aa29271c69009dc617688fcfbea0e
Sha256: 2afc36927f6530f2e793065e7e077ddba745cf85dd81eedf5633025ba80924bd

Alerts:
  urlquery:
    - Scam / Brand infringement
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1A044C645CE74A8A5AE4C9B58A32CCDACAD7BCD7B114B045A379973F694633D9"
Last-Modified: Sun, 18 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9072
Expires: Sun, 18 Sep 2022 23:59:10 GMT
Date: Sun, 18 Sep 2022 21:27:58 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1237
Cache-Control: 'max-age=158059'
Date: Sun, 18 Sep 2022 21:27:58 GMT
Last-Modified: Sun, 18 Sep 2022 21:07:21 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: SbxOoNf/uYkNSBtS0gbYSw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.39.57.61
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: byxdOujnrveZzeHhVjhMFHuJETA=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7031
Expires: Sun, 18 Sep 2022 23:25:10 GMT
Date: Sun, 18 Sep 2022 21:27:59 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7031
Expires: Sun, 18 Sep 2022 23:25:10 GMT
Date: Sun, 18 Sep 2022 21:27:59 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7031
Expires: Sun, 18 Sep 2022 23:25:10 GMT
Date: Sun, 18 Sep 2022 21:27:59 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7031
Expires: Sun, 18 Sep 2022 23:25:10 GMT
Date: Sun, 18 Sep 2022 21:27:59 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99a57f83-dfc8-4b82-ba40-2b21aa8c0f64.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6869
x-amzn-requestid: e4e424a6-6c79-405b-8d1b-d40749ae3f0e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yn5yLHi8oAMFpXg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63263cda-22f6dae17ded045177976eaf;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 21:32:10 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: eSPLuSCIr6IOor8bQh1STKcy6i_bS6nPhndKrN_g7IrXl6U43TogYw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Sep 2022 22:29:35 GMT
etag: "451c1f67948e45909e636828e3d2a3099de922f0"
age: 82704
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6869
Md5:    51d067e534c477ce996b3e806f6a132e
Sha1:   451c1f67948e45909e636828e3d2a3099de922f0
Sha256: e13318949733eb7992695c61570cc8b2961d881a8343c677a77cd035e787bbaf
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: ae.notifymenow.click
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ae.notifymenow.click/index_v2.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.48
HTTP/2 403 Forbidden
content-type: application/xml
                                        
date: Sun, 18 Sep 2022 21:27:58 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Im14RT2npt9X8w4jUH-b367YSTxY3PwzRAp9Ryw6GfjxTJZmLi0tFA==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   5376
Md5:    4bdd072e725b6cd883c5db20a3a98e21
Sha1:   ac8494586123f589b9b59f53221b9f9e15db0adc
Sha256: 43f10ccc2f30e7110a857ea6907a0e26716ad56fa77e6c44f7866d6bb19cf515
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c670b93-3941-4322-a938-e74eba949ad6.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11919
x-amzn-requestid: 2f547c1f-2f5d-4707-8f6c-fe9dfff51383
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YbfS4FI9oAMFScw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632145ab-3c967f2653d06c1c079f88c1;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 03:08:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: QgOb-hraq20XpHk_0Cyz2UMxaIEjP8ilIXt2VuhiRJWJAOG5EuAb5A==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 05:49:05 GMT
age: 56334
etag: "786c333cf08456aea446a55c547520572e1c2df9"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11919
Md5:    f003d8b6e12692fb16dddd6827deead8
Sha1:   786c333cf08456aea446a55c547520572e1c2df9
Sha256: d79ea50cfc0f237b3de8f1826cbae1de0b1dbc632a5a06b08d9640abedded935
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd5675c7-5120-4f61-bd91-8c4d9af84130.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7788
x-amzn-requestid: 2cb48f87-8b72-4ff7-b041-a6e704b854a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YIP2-HFHoAMFssA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6319935f-693e2f2e5a0bcd9f690f21fa;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 07:01:51 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 4-H_LbXRjS1PJkVz9OIhwsaPfu8ZlL98zTZG--hdmij9Tc6KtmNSFQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Sep 2022 21:51:29 GMT
age: 84990
etag: "e139a0974317212f094fdbe59e26ca5cf6b9e56d"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7788
Md5:    7a22ab7dcdf50f4a297b8e117d336eae
Sha1:   e139a0974317212f094fdbe59e26ca5cf6b9e56d
Sha256: 9b4c23c1bb2e4fcd140ce34bf83f315f09b45202c569cb74113c2e65c4031dcd
                                        
                                            GET /pfe/current/micro.tag.min.js?z=5132492&sw=/sw-check-permissions-8f0dd.js HTTP/1.1 
Host: shaumtol.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ae.notifymenow.click/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         139.45.197.250
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 18 Sep 2022 21:27:58 GMT
last-modified: Fri, 16 Sep 2022 10:36:49 GMT
etag: W/"632451c1-1a2de"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   45653
Md5:    f28d359dea946739fdd8318c0156dfdd
Sha1:   3c91a6c4df4d5e09cdc8bec5e4e2daf5281c1f37
Sha256: 62f0f1f63aac295a0544859f1e104b865e831520a31e6e7351cafbe21d441ed2
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e47c10c-5801-4548-a632-1dcfbd043a60.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7401
x-amzn-requestid: c59249dd-f9cb-4750-8287-65789c57fd77
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yn6J-FaAoAMFZQw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63263d72-6a68d771099a6006717a547f;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 21:34:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: gOh04gufveW2WFtszuiJPyX8mDykbsFMpBh8KWSRxQnPSRcZ2fMnHg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Sep 2022 21:45:30 GMT
age: 85349
etag: "cdf6caf4cd953e7b58bbb5f9a1512a4e3e06b792"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7401
Md5:    354c71e744d302c316f492a8fb7642dc
Sha1:   cdf6caf4cd953e7b58bbb5f9a1512a4e3e06b792
Sha256: f084331bd667f56556170c595391d888391284dbb7c18794d5033d5db1f07715
                                        
                                            GET /index_v2.html HTTP/1.1 
Host: ae.notifymenow.click
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         54.230.111.48
HTTP/2 200 OK
content-type: text/html
                                        
last-modified: Wed, 01 Jun 2022 21:17:13 GMT
server: AmazonS3
content-encoding: br
date: Sun, 18 Sep 2022 14:42:29 GMT
etag: W/"43a57dd3d2ebf08e8b9626f4c6f60329"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AaMb9iBK5rx-iBGRC9W816DAVFRaSYdzFt3Roa9MjAA-b3-9dToIAA==
age: 24329
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /css?family=Roboto:400,300,700&subset=latin,cyrillic-ext HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ae.notifymenow.click/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 18 Sep 2022 21:27:58 GMT
date: Sun, 18 Sep 2022 21:27:58 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---