Overview

URL secure-account-mail-login-inbox.bubbleapps.io/
IP104.19.218.48
ASNCLOUDFLARENET
Location
Report completed2022-09-08 10:01:16 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-08 2 cutt.ly/8QdoznG Phishing
2022-09-08 2 cutt.ly/NQdomQH Phishing
2022-09-08 2 cutt.ly/6QdoRKW Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (21)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-08 04:47:56 UTC 34.117.237.239
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-08 05:41:25 UTC 34.218.168.248
mnemonic passive DNS img-getpocket.cdn.mozilla.net (4) 1631 2017-09-01 03:40:57 UTC 2022-09-08 08:49:30 UTC 34.120.237.76
mnemonic passive DNS ocsp.globalsign.com (1) 2075 2012-05-25 06:20:55 UTC 2022-09-08 04:59:41 UTC 104.18.21.226
mnemonic passive DNS r3.o.lencr.org (4) 344 2020-12-02 08:52:13 UTC 2022-09-08 04:49:00 UTC 23.36.77.32
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-08 05:13:30 UTC 143.204.55.115
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-08 05:16:49 UTC 143.204.55.25
mnemonic passive DNS ocsp.pki.goog (7) 175 2017-06-14 07:23:31 UTC 2022-09-08 04:58:43 UTC 142.250.74.3
mnemonic passive DNS d1muf25xaso8hp.cloudfront.net (1) 0 2021-11-03 11:30:21 UTC 2022-09-07 11:31:07 UTC 54.230.245.92 Unknown ranking
mnemonic passive DNS code.jquery.com (1) 634 2012-05-21 17:28:02 UTC 2022-09-08 04:34:33 UTC 69.16.175.42
mnemonic passive DNS maxcdn.bootstrapcdn.com (1) 724 2014-06-18 00:37:31 UTC 2022-09-08 04:34:27 UTC 104.18.11.207
mnemonic passive DNS secure-account-mail-login-inbox.bubbleapps.io (12) 0 2022-09-08 03:41:15 UTC 2022-09-08 07:01:06 UTC 104.19.217.48 Domain (bubbleapps.io) ranked at: 215076
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-08 06:16:46 UTC 93.184.220.29
mnemonic passive DNS cdnjs.cloudflare.com (1) 235 2020-10-20 10:17:36 UTC 2022-09-08 04:58:45 UTC 104.17.25.14
mnemonic passive DNS ocsp.sectigo.com (1) 487 2018-12-17 11:31:55 UTC 2022-09-08 05:10:10 UTC 104.18.32.68
mnemonic passive DNS ajax.googleapis.com (1) 12905 2019-10-15 17:52:08 UTC 2022-09-08 08:41:48 UTC 142.250.74.170
mnemonic passive DNS cutt.ly (4) 33038 2018-01-23 23:29:00 UTC 2022-09-07 19:16:00 UTC 104.22.1.232
mnemonic passive DNS fonts.gstatic.com (3) 0 2014-08-29 13:43:22 UTC 2022-09-08 04:58:44 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS cdn.jsdelivr.net (1) 439 2012-09-30 00:15:09 UTC 2022-09-08 04:57:09 UTC 151.101.85.229
mnemonic passive DNS notify.bubble.is (1) 139122 2017-01-30 13:43:12 UTC 2022-09-07 11:31:08 UTC 52.35.44.78
mnemonic passive DNS stackpath.bootstrapcdn.com (2) 2467 2018-04-05 04:41:29 UTC 2022-09-08 09:22:33 UTC 104.18.11.207


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 104.19.218.48

Date UQ / IDS / BL URL IP
2022-11-28 18:28:40 +0000
0 - 0 - 2 dfgytggghjutybnjjkjkhhgty.bubbleapps.io/versi (...) 104.19.218.48
2022-11-10 23:45:55 +0000
0 - 0 - 8 rickpack44.bubbleapps.io/version-test/ 104.19.218.48
2022-11-10 14:36:22 +0000
0 - 0 - 8 rickpack44.bubbleapps.io/version-test/ 104.19.218.48
2022-10-25 13:43:29 +0000
0 - 0 - 2 centre1.bubbleapps.io/ 104.19.218.48
2022-10-21 12:30:24 +0000
0 - 0 - 4 seaybngcdxs.bubbleapps.io/version-test/ 104.19.218.48

Last 5 reports on ASN: CLOUDFLARENET

Date UQ / IDS / BL URL IP
2022-12-09 06:06:15 +0000
0 - 0 - 2 www.4tube.com/videos/720178/pussy-loving-hott (...) 104.20.223.111
2022-12-09 06:05:58 +0000
0 - 0 - 1 www.lazbema.net/go/ca71c7c4-a026-43b0-aefc-89 (...) 172.67.171.69
2022-12-09 06:05:47 +0000
0 - 0 - 1 cdn.discordapp.com/attachments/10409318100429 (...) 162.159.135.233
2022-12-09 06:05:51 +0000
0 - 0 - 1 cdn.discordapp.com/attachments/10018177944736 (...) 162.159.135.233
2022-12-09 06:05:48 +0000
0 - 0 - 1 cdn.discordapp.com/attachments/10366771356219 (...) 162.159.133.233

Last 5 reports on domain: bubbleapps.io

Date UQ / IDS / BL URL IP
2022-11-28 18:28:40 +0000
0 - 0 - 2 dfgytggghjutybnjjkjkhhgty.bubbleapps.io/versi (...) 104.19.218.48
2022-11-22 17:47:45 +0000
0 - 0 - 2 westartitwith.bubbleapps.io/version-test/ 104.19.217.48
2022-11-15 15:41:18 +0000
0 - 0 - 8 app-funnelsx.bubbleapps.io/version-test/ 104.19.217.48
2022-11-10 23:45:55 +0000
0 - 0 - 8 rickpack44.bubbleapps.io/version-test/ 104.19.218.48
2022-11-10 14:36:22 +0000
0 - 0 - 8 rickpack44.bubbleapps.io/version-test/ 104.19.218.48

Last 1 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-09-09 11:11:13 +0000
0 - 0 - 14 secure-account-mail-login-inbox.bubbleapps.io/ 104.19.218.48


JavaScript

Executed Scripts (31)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (51)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A0577A8FCFA81B3F86D99566EB4429655B93A238FFD1A3752BC9AAE3D969DEEA"
Last-Modified: Tue, 06 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6657
Expires: Thu, 08 Sep 2022 11:52:02 GMT
Date: Thu, 08 Sep 2022 10:01:05 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 08 Sep 2022 09:10:02 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Tlaj32lEsMQvjoMh0ZHqDuUYtph_PT28Qpzsymz0x4QZlxFnAD1OrA==
Age: 3063


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    91dd975a7b17b2922dd23c0e49314e40
Sha1:   57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
                                        
                                            GET / HTTP/1.1 
Host: secure-account-mail-login-inbox.bubbleapps.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         104.19.217.48
HTTP/1.1 301 Moved Permanently
                                        
Date: Thu, 08 Sep 2022 10:01:05 GMT
Content-Length: 0
Connection: keep-alive
Location: https://secure-account-mail-login-inbox.bubbleapps.io/
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7476d73e5fdf0b39-OSL

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.25
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 08 Sep 2022 03:46:35 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: tA3OKtll3nZ_jZsLiSE4eRuQ1l_90L4BwtN-rSBZqJrmDvZrXzKnow==
age: 22471
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 08 Sep 2022 10:01:05 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Thu, 08 Sep 2022 09:38:18 GMT
Expires: Thu, 08 Sep 2022 10:06:58 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: X-IhE2UO_yge1dcyF7OFHAMaD2etA8wdI624VwPOOVKs87Xl2gm3kw==
Age: 1367


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6260
Cache-Control: 'max-age=158059'
Date: Thu, 08 Sep 2022 10:01:05 GMT
Last-Modified: Thu, 08 Sep 2022 08:16:45 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: PhXE3e3gavSrc6ea6gmqqA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         34.218.168.248
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 0B79C/SGGMBBq5P7QSBYVN1aC2E=

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 08 Sep 2022 10:01:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /package/static_js/64cda5fa6c8ab9739e6fc4117e82a27e80964c60561cdc56a6b6232f261e7c59/secure-account-mail-login-inbox/live/index/xnull/xfalse/xfalse/xfalse/static.js HTTP/1.1 
Host: secure-account-mail-login-inbox.bubbleapps.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-account-mail-login-inbox.bubbleapps.io/
Connection: keep-alive
Cookie: secure-account-mail-login-inbox_live_u2main=1662631265399x687540298228416300; secure-account-mail-login-inbox_live_u2main.sig=rALPkjkQ_wwQAZAotIqYi4_Hzs8; secure-account-mail-login-inbox_u1main=1662631265386x901750981925328400
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.19.217.48
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Thu, 08 Sep 2022 10:01:06 GMT
x-powered-by: Express
cache-control: public, max-age=31536000
access-control-allow-origin: *
timing-allow-origin: *
vary: Accept-Encoding
x-bubble-perf: {"total":38.5,"percents":{"top":{"bubble_cpu":24.2,"block":74.9,"capacity_rl":0,"other_pause":0,"pre_fiber":1},"sub":{"pp_userdb":0,"pp_wait_userdb":0,"http_request":0,"serverjson":22.3,"appserver_cache_misses_time":0,"redis":79.3,"fiber_queue":8.3,"capacity_wait":2.9}},"counts":{"pp_userdb":0,"http_request":0,"derived_build":0,"derived_cache_attempts":8,"derived_cache_memory_misses":8,"serverjson":13,"appserver_cache_attempts":2,"appserver_mem_cache_hits":0,"appserver_cache_hits":2,"appserver_cache_misses":0,"redis":28,"fiber_queue":27,"blocks":26},"misc":{"userdb_results":0,"userdb_data":0,"spent_time":1400262,"derived_build_time_spent":0}}
x-bubble-capacity-used: 0.022 unit-seconds used
x-bubble-capacity-limit: 0 ms slower
cf-cache-status: MISS
server: cloudflare
cf-ray: 7476d7426ec20b06-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6877)
Size:   3908
Md5:    2129fb8eb976d30b356b46a174e13ef9
Sha1:   477d035d172ed2bb00c717e2667cd737076ac6aa
Sha256: 18fe8e7f3a71e78a50696234bc4dbefe809b9b670354baf7a6db81e3a858c47a
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 08 Sep 2022 10:01:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 08 Sep 2022 10:01:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/barlow/v12/7cHpv4kjgoGqM7E_DMs5.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://secure-account-mail-login-inbox.bubbleapps.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21144
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 22:36:53 GMT
expires: Wed, 06 Sep 2023 22:36:53 GMT
cache-control: public, max-age=31536000
age: 127453
last-modified: Tue, 19 Apr 2022 19:43:23 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 21144, version 1.0\012- data
Size:   21144
Md5:    2bc7630144496092dc786ce63109e560
Sha1:   723df3658078cfed03c85e47f15fc439eb4331be
Sha256: 7c9c80a6c32c0619d61c28f28723e68c5f8f75163e77ee5cf64c39e640e0d71e
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 08 Sep 2022 10:01:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 08 Sep 2022 10:01:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/barlow/v12/7cHqv4kjgoGqM7E3q-0s51os.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://secure-account-mail-login-inbox.bubbleapps.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22052
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Sep 2022 22:44:04 GMT
expires: Tue, 05 Sep 2023 22:44:04 GMT
cache-control: public, max-age=31536000
age: 213422
last-modified: Tue, 19 Apr 2022 19:05:17 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 22052, version 1.0\012- data
Size:   22052
Md5:    f27acc0d33d769a3da576516ca236c41
Sha1:   a678c0f6905303906a2537c1ff983258286a9263
Sha256: 1f132510bc7b665bbe5fb9227b0d2daafa5513296a72f88f88d38179eded9277
                                        
                                            GET /package/early_js/c5bcb2b703c12cc31e5a643f3beafacd0fd83738d617fb5a9a2b524326bd2d5b/xfalse/early.js HTTP/1.1 
Host: secure-account-mail-login-inbox.bubbleapps.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-account-mail-login-inbox.bubbleapps.io/
Connection: keep-alive
Cookie: secure-account-mail-login-inbox_live_u2main=1662631265399x687540298228416300; secure-account-mail-login-inbox_live_u2main.sig=rALPkjkQ_wwQAZAotIqYi4_Hzs8; secure-account-mail-login-inbox_u1main=1662631265386x901750981925328400
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.19.217.48
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Thu, 08 Sep 2022 10:01:06 GMT
x-powered-by: Express
cache-control: public, max-age=31536000
access-control-allow-origin: *
timing-allow-origin: *
vary: Accept-Encoding
x-bubble-perf: {"total":16.3,"percents":{"top":{"bubble_cpu":23.1,"block":70.1,"capacity_rl":0,"other_pause":0,"pre_fiber":2.6},"sub":{"pp_userdb":0,"pp_wait_userdb":0,"http_request":0,"serverjson":0,"appserver_cache_misses_time":0,"redis":39.1,"fiber_queue":12.1,"capacity_wait":18}},"counts":{"pp_userdb":0,"http_request":0,"derived_build":0,"serverjson":0,"appserver_cache_attempts":0,"appserver_mem_cache_hits":0,"appserver_cache_hits":0,"appserver_cache_misses":0,"redis":7,"fiber_queue":10,"blocks":9},"misc":{"userdb_results":0,"userdb_data":0,"spent_time":565259,"derived_build_time_spent":0}}
x-bubble-capacity-used: 0.009 unit-seconds used
x-bubble-capacity-limit: 0 ms slower
cf-cache-status: MISS
server: cloudflare
cf-ray: 7476d7425eba0b06-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (1366)
Size:   30673
Md5:    1c1f838cd03fd94e100b3283b2088a43
Sha1:   3f1d10a55284e5afd0f67ac2d1114d8d245c39ba
Sha256: 62719635e10aab2895fba0438cae52876c6682cabaa82be19f1e592a118ff545
                                        
                                            GET /s/barlow/v12/7cHqv4kjgoGqM7E3_-gs51os.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://secure-account-mail-login-inbox.bubbleapps.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20960
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 00:05:42 GMT
expires: Thu, 07 Sep 2023 00:05:42 GMT
cache-control: public, max-age=31536000
age: 122124
last-modified: Tue, 19 Apr 2022 19:18:28 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 20960, version 1.0\012- data
Size:   20960
Md5:    d312d179276a175029c56c50e9bc9d0b
Sha1:   aa9285dd6183c696fc39ec31c221581e2d4959c1
Sha256: 7c0597b1b0c771139c958982210f05b275993037f0f3ba20d7a9300a0741dc80
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 08 Sep 2022 10:01:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /https%3A%2F%2Fs3.amazonaws.com%2Fappforest_uf%2Ff1662601467828x959135341878902800%2Findex.png?w=128&h=&auto=compress&dpr=1&fit=max HTTP/1.1 
Host: d1muf25xaso8hp.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-account-mail-login-inbox.bubbleapps.io/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.245.92
HTTP/2 200 OK
content-type: image/jpeg
                                        
content-length: 2130
last-modified: Thu, 08 Sep 2022 01:49:17 GMT
cache-control: public, max-age=86400
server: imgix
x-imgix-id: d048bb3fab6529315463f582e8537071ff51c282
x-imgix-render-farm: 01.592
date: Thu, 08 Sep 2022 01:50:01 GMT
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10060-SJC, cache-fra19155-FRA
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TzYHrlvi-kxL5-Vw7ewCCLO1tjp0fADXQ4FsALsDLS92KgiLa99AEA==
age: 29509
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 128x128, components 3\012- data
Size:   2130
Md5:    cdb3c3c22f3b5881a092af202ef64363
Sha1:   02308d0f1d2b6a4df06024518f84d86ba64cdd03
Sha256: 8fd6937b9ca879db227c651818fc422b1fbf041f22c98fb13e06b4feb00322f8
                                        
                                            GET /ajax/libs/popper.js/1.12.9/umd/popper.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-account-mail-login-inbox.bubbleapps.io/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.25.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Thu, 08 Sep 2022 10:01:06 GMT
content-length: 6157
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-4af4"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 575691
expires: Tue, 29 Aug 2023 10:01:06 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QaJ%2Br0Rl6C%2Fdlve91wj9Xj%2FjCCITXVyeMfHiMBfgdO5FBK03p2Bl%2BKj17GkqPD0dSIM1fTWhasTxW4yA2pDsFMNUYLekjrbS%2B2DDGu3IR9IxQwSHEkliUuiavUIdmRM%2FvLF%2F0boE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7476d7494b6f1c12-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (19015)
Size:   6157
Md5:    7b4114faa411d059a9a5ac4b5b4d9dee
Sha1:   277da4486916fa3a4ab3375f47bc98f58dbf90f6
Sha256: 60b3528de2f7d48cbb335d19dddef756aaacc70f73d4254a2ef17978a14ca0d9
                                        
                                            GET /npm/jquery.session@1.0.0/jquery.session.min.js HTTP/1.1 
Host: cdn.jsdelivr.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-account-mail-login-inbox.bubbleapps.io/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.229
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 1.0.0
x-jsd-version-type: version
etag: W/"91d-mUGbC+S4VCL/hIcOVNvYpS3G2rE"
content-encoding: gzip
accept-ranges: bytes
date: Thu, 08 Sep 2022 10:01:06 GMT
age: 200912
x-served-by: cache-fra19169-FRA, cache-bma1646-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
content-length: 933
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1993)
Size:   933
Md5:    2a05da4033d8d9b7de749d0d02f472ab
Sha1:   39b6fb0b84e100c26530f666c0642c42d0cd1465
Sha256: 3cfbc2b52e5e8eaf0b493050fc2515666b8efa035af845c29619c73abd56c304
                                        
                                            GET /jquery-3.2.1.slim.min.js HTTP/1.1 
Host: code.jquery.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-account-mail-login-inbox.bubbleapps.io/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         69.16.175.42
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Thu, 08 Sep 2022 10:01:06 GMT
content-encoding: gzip
content-length: 23856
last-modified: Fri, 12 Aug 2022 13:47:02 GMT
accept-ranges: bytes
server: nginx
etag: W/"62f659d6-10fdd"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1662631266.dop015.sk1.t,1662631266.cds071.sk1.hn,1662631266.cds235.sk1.c
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32012)
Size:   23856
Md5:    30f5157a965bc792a83e9bacfe265f03
Sha1:   8330886371fe27f3cbac509e0ac9712207574c66
Sha256: 4d12cab1f84ec2ac780bc8e0d865d9c61025be579c78d6532d76f0574d17fca0
                                        
                                            POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 08 Sep 2022 10:01:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "BB5FB1DCAEE06873F4C3A5F1A84883538EFDAB58"
Expires: Thu, 08 Sep 2022 20:00:00 GMT
Last-Modified: Thu, 08 Sep 2022 08:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2503
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7476d7499a8fb4fd-OSL


--- Additional Info ---
Magic:  data
Size:   1462
Md5:    c5a52092a654a2053a8a0fcb301b109f
Sha1:   570d4d6b24db1be579024deabf7db1391a703818
Sha256: 261843aa3258ddf4aae08138f53295144378d20df4322dd3f8b3256113a3cb71
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 08 Sep 2022 10:01:07 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 05 Sep 2022 07:38:40 GMT
Expires: Mon, 12 Sep 2022 07:38:39 GMT
Etag: "4be6934be7b055afe83bdd3282edcde03915da7e"
Cache-Control: max-age=336451,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7476d74abfd7fac0-OSL

                                        
                                            GET /package/dynamic_js/d4d67ca54a2b483370b457914e15e7cd5730a7bbbcebaf5a796954e1211b0612/secure-account-mail-login-inbox/live/index/xnull/xfalse/xfalse/en_us/xfalse/xfalse/dynamic.js HTTP/1.1 
Host: secure-account-mail-login-inbox.bubbleapps.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-account-mail-login-inbox.bubbleapps.io/
Connection: keep-alive
Cookie: secure-account-mail-login-inbox_live_u2main=1662631265399x687540298228416300; secure-account-mail-login-inbox_live_u2main.sig=rALPkjkQ_wwQAZAotIqYi4_Hzs8; secure-account-mail-login-inbox_u1main=1662631265386x901750981925328400
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.19.217.48
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Thu, 08 Sep 2022 10:01:05 GMT
x-powered-by: Express
cache-control: public, max-age=31536000
access-control-allow-origin: *
timing-allow-origin: *
vary: Accept-Encoding
x-bubble-perf: {"total":33.2,"percents":{"top":{"bubble_cpu":29.3,"block":68.6,"capacity_rl":0,"other_pause":0,"pre_fiber":1.4},"sub":{"pp_userdb":3,"pp_wait_userdb":0,"http_request":0,"serverjson":18.2,"appserver_cache_misses_time":0,"redis":70.1,"fiber_queue":9.6,"capacity_wait":3.1}},"counts":{"pp_userdb":1,"http_request":0,"derived_build":0,"derived_cache_attempts":3,"derived_cache_memory_misses":3,"serverjson":11,"appserver_cache_attempts":1,"appserver_mem_cache_hits":0,"appserver_cache_hits":1,"appserver_cache_misses":0,"redis":27,"fiber_queue":26,"blocks":25},"misc":{"userdb_results":0,"userdb_data":0,"spent_time":6458029,"derived_build_time_spent":0}}
x-bubble-capacity-used: 0.099 unit-seconds used
x-bubble-capacity-limit: 0 ms slower
cf-cache-status: MISS
server: cloudflare
cf-ray: 7476d7426ec70b06-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (49778)
Size:   16471
Md5:    3f83c35d9319c6aae4a4f8a288e86f1e
Sha1:   b231650827cb85505f8528fa3536a372b74b1f7b
Sha256: f7a994d811f4d17f4a7d942af49e4305c4d16d6e4b17bd730d6f6db83f0c22ac
                                        
                                            GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-account-mail-login-inbox.bubbleapps.io/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.170
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 23:24:22 GMT
expires: Thu, 07 Sep 2023 23:24:22 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
age: 38205
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   40172
Md5:    e9fa749cd2e1894c330433226f70c2a4
Sha1:   088cfae8d5d1f3ed12f56af8911e78b2fb0bfebf
Sha256: c9809c07a173b766c2c7ec6f4e02418c0c4481559fe7dae93214832fc5e4bdd9
                                        
                                            GET / HTTP/1.1 
Host: notify.bubble.is
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://secure-account-mail-login-inbox.bubbleapps.io
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: v4jo4bRLS5o1Qy7110QMsQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.35.44.78
HTTP/1.1 101 Switching Protocols
                                        
Upgrade: websocket
Connection: Upgrade
Sec-WebSocket-Accept: kYjSkXDJe/a1cupehzkbazUrfb0=

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 08 Sep 2022 10:01:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10938
Expires: Thu, 08 Sep 2022 13:03:25 GMT
Date: Thu, 08 Sep 2022 10:01:07 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10938
Expires: Thu, 08 Sep 2022 13:03:25 GMT
Date: Thu, 08 Sep 2022 10:01:07 GMT
Connection: keep-alive

                                        
                                            POST /user/m HTTP/1.1 
Host: secure-account-mail-login-inbox.bubbleapps.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-account-mail-login-inbox.bubbleapps.io/
Content-Type: application/json
cache-control: no-cache
X-Bubble-Breaking-Revision: 5
X-Bubble-R: https://secure-account-mail-login-inbox.bubbleapps.io/
X-Bubble-PL: 1662631259190x136
X-Bubble-Fiber-ID: 1662631259199x445954566928816830
X-Bubble-UTM-Data: {}
X-Requested-With: XMLHttpRequest
Content-Length: 534
Origin: https://secure-account-mail-login-inbox.bubbleapps.io
Connection: keep-alive
Cookie: secure-account-mail-login-inbox_live_u2main=1662631265399x687540298228416300; secure-account-mail-login-inbox_live_u2main.sig=rALPkjkQ_wwQAZAotIqYi4_Hzs8; secure-account-mail-login-inbox_u1main=1662631265386x901750981925328400
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.19.217.48
HTTP/2 200 OK
content-type: application/json
                                        
date: Thu, 08 Sep 2022 10:01:06 GMT
x-powered-by: Express
cache-control: no-cache
x-bubble-appname: secure-account-mail-login-inbox
x-bubble-request-took: 19
x-bubble-perf: {"total":18.9,"percents":{"top":{"bubble_cpu":17.7,"block":77.3,"capacity_rl":0,"other_pause":0,"pre_fiber":3.6},"sub":{"pp_userdb":0,"pp_wait_userdb":0,"http_request":0,"serverjson":0,"appserver_cache_misses_time":0,"redis":29.9,"fiber_queue":12.4,"capacity_wait":36.2}},"counts":{"pp_userdb":0,"http_request":0,"derived_build":0,"serverjson":0,"appserver_cache_attempts":0,"appserver_mem_cache_hits":0,"appserver_cache_hits":0,"appserver_cache_misses":0,"redis":7,"fiber_queue":8,"blocks":7},"misc":{"userdb_results":0,"userdb_data":0,"spent_time":502365,"derived_build_time_spent":0}}
x-bubble-capacity-used: 0.008 unit-seconds used
x-bubble-capacity-limit: 0 ms slower
vary: Accept-Encoding
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7476d7490e390b06-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   511
Md5:    b425152388ad69aed375b031489749e1
Sha1:   5014ad6f2903f8a8dbf5e952cacee7f5e7613ed3
Sha256: 6f6568decab7fe80235d12f7df754eac4f0af75ec7e23f7a8a749c312a9a6ed8
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10938
Expires: Thu, 08 Sep 2022 13:03:25 GMT
Date: Thu, 08 Sep 2022 10:01:07 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0564fe6-5557-4644-ba02-30e6de571e27.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7923
x-amzn-requestid: 657663ba-b3e9-4a84-9186-3f13ad230765
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9VsGsQoAMFlSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f57-6fc934984bba83fe1b91056f;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: WSGEVR0aSN0fgOzZ7GRMqgQ7z8UqIJ72nRk4_T2-C7ViLZgDMIEcDw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 79880188a81becf1687ba18c0e064230.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:28:23 GMT
age: 41564
etag: "63e6e7d760e736c45ca4778111ea8e61eb13edd6"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7923
Md5:    786824349d0ac6933b5beb4a10ce9cc7
Sha1:   63e6e7d760e736c45ca4778111ea8e61eb13edd6
Sha256: 4aea707f67116f423b68bd19e946b167b48c920693663f2b7b270c86947bffdb
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b6df26b-97aa-461c-9f22-c5c9496b5701.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8705
x-amzn-requestid: ccc5b695-35b5-49fd-b938-296a88a78ab8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9TgFOiIAMFaXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f49-12e809c767cdbba61492187c;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:17 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: iN3jcMCQ8paYD_O9gQLAswM-ITb0oY8CYmbnMDwpwS-7hPLis5TGSg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 95785220a566cd050f3ad80928463374.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:03:47 GMT
age: 43040
etag: "f6ef30b5df0e634c3a3f607d751e738e55a276c9"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8705
Md5:    24e43bc53a0b047911cff00ad4b72320
Sha1:   f6ef30b5df0e634c3a3f607d751e738e55a276c9
Sha256: 7e1406b2101c912e72f37f0257128574079e618c1af83e360acb3f29b4d44d89
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6069f6c-2029-46b3-9867-5eaeb96d65e7.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7885
x-amzn-requestid: 305dc6b7-eb3d-40ad-af89-8b60be935637
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9ThE3DIAMFRtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f49-7c0b58644e26de7f27c5b388;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Ry2D03udnweYHan_7KhC9IDhT01g9_73G40Fa10BdIX21tgK0Cgjiw==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 21:48:35 GMT
etag: "3e633bc6c4ab9adfe84899e5209d73bef1d097eb"
age: 43952
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7885
Md5:    7ca5b5d4ac26d97b5729a30ecdc688bc
Sha1:   3e633bc6c4ab9adfe84899e5209d73bef1d097eb
Sha256: 2c8275d1819d933f86df9685b76aea030842ba5a341c59ea88ffd2da99a5a3d5
                                        
                                            POST /user/hi HTTP/1.1 
Host: secure-account-mail-login-inbox.bubbleapps.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-account-mail-login-inbox.bubbleapps.io/
Content-Type: application/json
cache-control: no-cache
X-Bubble-Breaking-Revision: 5
X-Bubble-R: https://secure-account-mail-login-inbox.bubbleapps.io/
X-Bubble-PL: 1662631259190x136
X-Bubble-Epoch-ID: 1662631259125x995167295007125100
X-Bubble-Epoch-Name: Epoch: Runmode page fully loaded
X-Bubble-Fiber-ID: 1662631259189x117048854133649740
X-Bubble-UTM-Data: {}
X-Requested-With: XMLHttpRequest
Content-Length: 2
Origin: https://secure-account-mail-login-inbox.bubbleapps.io
Connection: keep-alive
Cookie: secure-account-mail-login-inbox_live_u2main=1662631265399x687540298228416300; secure-account-mail-login-inbox_live_u2main.sig=rALPkjkQ_wwQAZAotIqYi4_Hzs8; secure-account-mail-login-inbox_u1main=1662631265386x901750981925328400
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.19.217.48
HTTP/2 200 OK
content-type: application/json
                                        
date: Thu, 08 Sep 2022 10:01:07 GMT
x-powered-by: Express
set-cookie: secure-account-mail-login-inbox_u1main=1662631265386x901750981925328400; path=/; secure
cache-control: no-cache
x-bubble-appname: secure-account-mail-login-inbox
x-bubble-request-took: 21
x-bubble-perf: {"total":21.3,"percents":{"top":{"bubble_cpu":20.1,"block":75.6,"capacity_rl":0,"other_pause":0,"pre_fiber":3.9},"sub":{"pp_userdb":0,"pp_wait_userdb":0,"http_request":0,"serverjson":28.7,"appserver_cache_misses_time":0,"redis":45.8,"fiber_queue":13.2,"capacity_wait":18.4}},"counts":{"pp_userdb":0,"http_request":0,"derived_build":0,"serverjson":2,"appserver_cache_attempts":0,"appserver_mem_cache_hits":0,"appserver_cache_hits":0,"appserver_cache_misses":0,"redis":9,"fiber_queue":10,"blocks":9},"misc":{"userdb_results":0,"userdb_data":0,"spent_time":643275,"derived_build_time_spent":0}}
x-bubble-capacity-used: 0.01 unit-seconds used
x-bubble-capacity-limit: 0 ms slower
vary: Accept-Encoding
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7476d748fe090b06-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   4630
Md5:    4e3e49d7422f87203567f671ef7c24f5
Sha1:   7f4b9d60075a162d2c3174e119093e0bc16503a4
Sha256: d0a60f81ad66f688fac9d54befabba5bff82acaae1f265c343d9e469ba916ef3
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7492
x-amzn-requestid: 2c5e9ff3-c7a4-4a8f-96bf-74f0ca5d9137
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9dOHguIAMFjGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f87-70dbe6532b1a241e6dbe729e;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:39:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 6mfdlMHJozdykr4faiijvUuJPXVrJGU_n0MxJgCrZ-uWWdejGYfiAQ==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 020978022b22df6352245f09cfbc410c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:33:06 GMT
age: 41281
etag: "98c145b9326d1e6036fa9089d87a25232dd45b0b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7492
Md5:    a07d553b6441514870ed7e9e989a29a7
Sha1:   98c145b9326d1e6036fa9089d87a25232dd45b0b
Sha256: 373a586b596016baeb8de98022207c25af24c099c06077edbdfd837cffc31a0e
                                        
                                            GET /img/bg-image.jpg HTTP/1.1 
Host: secure-account-mail-login-inbox.bubbleapps.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-account-mail-login-inbox.bubbleapps.io/
Connection: keep-alive
Cookie: secure-account-mail-login-inbox_live_u2main=1662631265399x687540298228416300; secure-account-mail-login-inbox_live_u2main.sig=rALPkjkQ_wwQAZAotIqYi4_Hzs8; secure-account-mail-login-inbox_u1main=1662631265386x901750981925328400
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.19.217.48
HTTP/2 404 Not Found
content-type: text/html
                                        
date: Thu, 08 Sep 2022 10:01:06 GMT
x-powered-by: Express
referrer-policy: origin
x-frame-options: DENY
content-security-policy: frame-ancestors 'none';
cache-control: no-store
x-bubble-perf: {"total":76.3,"percents":{"top":{"bubble_cpu":33.9,"block":65.8,"capacity_rl":0,"other_pause":0,"pre_fiber":0.6},"sub":{"pp_userdb":0,"pp_wait_userdb":0,"http_request":0,"serverjson":21.8,"appserver_cache_misses_time":0,"redis":69.5,"fiber_queue":5.3,"capacity_wait":3.9}},"counts":{"pp_userdb":0,"http_request":0,"derived_build":0,"derived_cache_attempts":13,"derived_cache_memory_misses":13,"serverjson":22,"appserver_cache_attempts":2,"appserver_mem_cache_hits":0,"appserver_cache_hits":2,"appserver_cache_misses":0,"redis":48,"fiber_queue":44,"blocks":43},"misc":{"userdb_results":0,"userdb_data":0,"spent_time":3878714,"derived_build_time_spent":0}}
x-bubble-capacity-used: 0.06 unit-seconds used
x-bubble-capacity-limit: 0 ms slower
vary: Accept-Encoding
cf-cache-status: MISS
server: cloudflare
cf-ray: 7476d748edf80b06-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   11331
Md5:    cba361b74b809e8aa31b18a8e064a8b2
Sha1:   d5766429743d8bcfcb93f126d83047d8b0cfa616
Sha256: 914bb5c7046d20f9b5575af8c902a7250aa528cf6a45097dc4b3cb3bbb2870cd
                                        
                                            GET / HTTP/1.1 
Host: secure-account-mail-login-inbox.bubbleapps.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         104.19.217.48
HTTP/2 200 OK
content-type: text/html
                                        
date: Thu, 08 Sep 2022 10:01:05 GMT
x-powered-by: Express
referrer-policy: origin
x-frame-options: DENY
content-security-policy: frame-ancestors 'none';
cache-control: no-store
x-bubble-perf: {"total":80.2,"percents":{"top":{"bubble_cpu":36.3,"block":63.5,"capacity_rl":0,"other_pause":0,"pre_fiber":0.5},"sub":{"pp_userdb":0,"pp_wait_userdb":0,"http_request":0,"serverjson":32,"appserver_cache_misses_time":0,"redis":63,"fiber_queue":4.9,"capacity_wait":8.6}},"counts":{"pp_userdb":0,"http_request":0,"derived_build":0,"derived_cache_attempts":14,"derived_cache_memory_misses":14,"serverjson":29,"appserver_cache_attempts":2,"appserver_mem_cache_hits":0,"appserver_cache_hits":2,"appserver_cache_misses":0,"redis":60,"fiber_queue":52,"blocks":51},"misc":{"userdb_results":1,"userdb_data":206,"spent_time":4371059,"derived_build_time_spent":0}}
x-bubble-capacity-used: 0.067 unit-seconds used
x-bubble-capacity-limit: 0 ms slower
vary: Accept-Encoding
set-cookie: secure-account-mail-login-inbox_live_u2main=1662631265399x687540298228416300; path=/; expires=Sun, 11 Sep 2022 10:01:05 GMT; secure; httponly secure-account-mail-login-inbox_live_u2main.sig=rALPkjkQ_wwQAZAotIqYi4_Hzs8; path=/; expires=Sun, 11 Sep 2022 10:01:05 GMT; secure; httponly secure-account-mail-login-inbox_u1main=1662631265386x901750981925328400; path=/; secure
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7476d73fcbc60b06-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            POST /user/apm HTTP/1.1 
Host: secure-account-mail-login-inbox.bubbleapps.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-account-mail-login-inbox.bubbleapps.io/
Content-Type: application/json
cache-control: no-cache
X-Bubble-Breaking-Revision: 5
X-Bubble-R: https://secure-account-mail-login-inbox.bubbleapps.io/
X-Bubble-PL: 1662631259190x136
X-Bubble-Fiber-ID: 1662631261107x747706521526660500
X-Bubble-UTM-Data: {}
X-Requested-With: XMLHttpRequest
Content-Length: 1555
Origin: https://secure-account-mail-login-inbox.bubbleapps.io
Connection: keep-alive
Cookie: secure-account-mail-login-inbox_live_u2main=1662631265399x687540298228416300; secure-account-mail-login-inbox_live_u2main.sig=rALPkjkQ_wwQAZAotIqYi4_Hzs8; secure-account-mail-login-inbox_u1main=1662631265386x901750981925328400; __session:0.2582941929416067:=https:
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.19.217.48
HTTP/2 200 OK
content-type: application/json
                                        
date: Thu, 08 Sep 2022 10:01:08 GMT
x-powered-by: Express
cache-control: no-cache
x-bubble-appname: secure-account-mail-login-inbox
x-bubble-request-took: 15
x-bubble-perf: {"total":15.2,"percents":{"top":{"bubble_cpu":26.3,"block":67.9,"capacity_rl":0,"other_pause":0,"pre_fiber":5},"sub":{"pp_userdb":0,"pp_wait_userdb":0,"http_request":0,"serverjson":0,"appserver_cache_misses_time":0,"redis":36.6,"fiber_queue":15,"capacity_wait":19.2}},"counts":{"pp_userdb":0,"http_request":0,"derived_build":0,"serverjson":0,"appserver_cache_attempts":0,"appserver_mem_cache_hits":0,"appserver_cache_hits":0,"appserver_cache_misses":0,"redis":7,"fiber_queue":8,"blocks":7},"misc":{"userdb_results":0,"userdb_data":0,"spent_time":599812,"derived_build_time_spent":0}}
x-bubble-capacity-used: 0.009 unit-seconds used
x-bubble-capacity-limit: 0 ms slower
vary: Accept-Encoding
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7476d754ead30b06-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /bootstrap/4.5.2/css/bootstrap.min.css HTTP/1.1 
Host: stackpath.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-account-mail-login-inbox.bubbleapps.io/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.11.207
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Thu, 08 Sep 2022 10:01:06 GMT
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 601, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:11 GMT
cdn-cachedat: 2021-04-23 06:38:57
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 13251c3df5248784fca36d69c81e4532
cdn-cache: HIT
cf-cache-status: HIT
age: 10741570
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7476d748ee310b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /8QdoznG HTTP/1.1 
Host: cutt.ly
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-account-mail-login-inbox.bubbleapps.io/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.22.1.232
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
                                        
date: Thu, 08 Sep 2022 10:01:06 GMT
location: https://cutt.ly/guard/8QdoznG
set-cookie: PHPSESSID=8fk5m6b88apmu7nk484h71f49m; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7476d748ff2db4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /frg HTTP/1.1 
Host: secure-account-mail-login-inbox.bubbleapps.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-account-mail-login-inbox.bubbleapps.io/
Content-Type: application/json
cache-control: no-cache
X-Bubble-Breaking-Revision: 5
X-Bubble-R: https://secure-account-mail-login-inbox.bubbleapps.io/
X-Bubble-PL: 1662631259190x136
X-Bubble-Fiber-ID: 1662631262202x116653846794537500
X-Bubble-UTM-Data: {}
X-Requested-With: XMLHttpRequest
Content-Length: 79
Origin: https://secure-account-mail-login-inbox.bubbleapps.io
Connection: keep-alive
Cookie: secure-account-mail-login-inbox_live_u2main=1662631265399x687540298228416300; secure-account-mail-login-inbox_live_u2main.sig=rALPkjkQ_wwQAZAotIqYi4_Hzs8; secure-account-mail-login-inbox_u1main=1662631265386x901750981925328400; __session:0.2582941929416067:=https:
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.19.217.48
HTTP/2 200 OK
content-type: application/json
                                        
date: Thu, 08 Sep 2022 10:01:10 GMT
x-powered-by: Express
cache-control: no-cache
x-bubble-appname: secure-account-mail-login-inbox
x-bubble-request-took: 117
x-bubble-perf: {"total":117.5,"percents":{"top":{"bubble_cpu":2.9,"block":96.6,"capacity_rl":0,"other_pause":0,"pre_fiber":0.6},"sub":{"pp_userdb":0,"pp_wait_userdb":0,"http_request":0,"serverjson":0,"appserver_cache_misses_time":0,"redis":9.9,"fiber_queue":3.1,"capacity_wait":3.5}},"counts":{"pp_userdb":0,"http_request":0,"derived_build":0,"serverjson":0,"appserver_cache_attempts":0,"appserver_mem_cache_hits":0,"appserver_cache_hits":0,"appserver_cache_misses":0,"redis":9,"fiber_queue":11,"blocks":10},"misc":{"userdb_results":0,"userdb_data":0,"spent_time":518857,"derived_build_time_spent":0}}
x-bubble-capacity-used: 0.008 unit-seconds used
x-bubble-capacity-limit: 0 ms slower
vary: Accept-Encoding
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7476d75bc9310b06-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /bootstrap/4.1.3/js/bootstrap.min.js HTTP/1.1 
Host: stackpath.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-account-mail-login-inbox.bubbleapps.io/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.11.207
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Thu, 08 Sep 2022 10:01:06 GMT
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:06 GMT
cdn-cachedat: 11/15/2021 23:30:00
cdn-proxyver: 1.0
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: a35b0179a28ed953258d0fb41376a09c
cdn-cache: HIT
cf-cache-status: HIT
age: 5675114
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7476d748fe380b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /bootstrap/4.0.0/js/bootstrap.min.js HTTP/1.1 
Host: maxcdn.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-account-mail-login-inbox.bubbleapps.io/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.11.207
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Thu, 08 Sep 2022 10:01:06 GMT
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 08/04/2021 00:04:37
cdn-edgestorageid: 601
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-proxyver: 1.0
cdn-status: 200
cdn-requestid: 1a094ec5f566140ad8ed25d8ea736316
cdn-cache: HIT
cf-cache-status: HIT
age: 5675013
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7476d748fe3c0b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /AQdoI4e%22 HTTP/1.1 
Host: cutt.ly
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-account-mail-login-inbox.bubbleapps.io/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.22.1.232
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
date: Thu, 08 Sep 2022 10:01:06 GMT
set-cookie: PHPSESSID=n00nkr48r6dg8n404c3ft90upr; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7476d748ff2bb4ee-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /NQdomQH HTTP/1.1 
Host: cutt.ly
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-account-mail-login-inbox.bubbleapps.io/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.22.1.232
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
                                        
date: Thu, 08 Sep 2022 10:01:06 GMT
location: https://cutt.ly/guard/NQdomQH
set-cookie: PHPSESSID=mq4dfhbrhddbn8cbt51cqmvnbk; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7476d748ff2eb4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /package/run_css/844951fcfabba403f8bbe22878196de006f3362de64edf96ed6b74e8d637e819/secure-account-mail-login-inbox/live/index/xfalse/xfalse/run.css HTTP/1.1 
Host: secure-account-mail-login-inbox.bubbleapps.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-account-mail-login-inbox.bubbleapps.io/
Connection: keep-alive
Cookie: secure-account-mail-login-inbox_live_u2main=1662631265399x687540298228416300; secure-account-mail-login-inbox_live_u2main.sig=rALPkjkQ_wwQAZAotIqYi4_Hzs8; secure-account-mail-login-inbox_u1main=1662631265386x901750981925328400
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.19.217.48
HTTP/2 200 OK
content-type: text/css
                                        
date: Thu, 08 Sep 2022 10:01:05 GMT
cf-bgj: minify
cf-polished: origSize=52829
access-control-allow-origin: *
cache-control: public, max-age=31536000
timing-allow-origin: *
vary: Accept-Encoding
x-bubble-capacity-limit: 0 ms slower
x-bubble-capacity-used: 0.018 unit-seconds used
x-bubble-perf: {"total":23.6,"percents":{"top":{"bubble_cpu":32.3,"block":62.4,"capacity_rl":0,"other_pause":0,"pre_fiber":2},"sub":{"pp_userdb":0,"pp_wait_userdb":0,"http_request":0,"serverjson":21.8,"appserver_cache_misses_time":0,"redis":76,"fiber_queue":10,"capacity_wait":3.1}},"counts":{"pp_userdb":0,"http_request":0,"derived_build":0,"derived_cache_attempts":2,"derived_cache_memory_misses":2,"serverjson":11,"appserver_cache_attempts":1,"appserver_mem_cache_hits":0,"appserver_cache_hits":1,"appserver_cache_misses":0,"redis":20,"fiber_queue":17,"blocks":16},"misc":{"userdb_results":0,"userdb_data":0,"spent_time":1142285,"derived_build_time_spent":0}}
x-powered-by: Express
cf-cache-status: HIT
age: 13074
server: cloudflare
cf-ray: 7476d7426ebc0b06-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /package/run_js/4fba6a83aa3fef9d80504dfbd7bfc6c8fba883416a0c01805b045ccd1f25a79b/xfalse/x17/run.js HTTP/1.1 
Host: secure-account-mail-login-inbox.bubbleapps.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-account-mail-login-inbox.bubbleapps.io/
Connection: keep-alive
Cookie: secure-account-mail-login-inbox_live_u2main=1662631265399x687540298228416300; secure-account-mail-login-inbox_live_u2main.sig=rALPkjkQ_wwQAZAotIqYi4_Hzs8; secure-account-mail-login-inbox_u1main=1662631265386x901750981925328400
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.19.217.48
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Thu, 08 Sep 2022 10:01:05 GMT
x-powered-by: Express
cache-control: public, max-age=31536000
access-control-allow-origin: *
timing-allow-origin: *
vary: Accept-Encoding
x-bubble-perf: {"total":15.7,"percents":{"top":{"bubble_cpu":22,"block":71.6,"capacity_rl":0,"other_pause":0,"pre_fiber":2.5},"sub":{"pp_userdb":0,"pp_wait_userdb":0,"http_request":0,"serverjson":0,"appserver_cache_misses_time":0,"redis":35.6,"fiber_queue":14,"capacity_wait":25.4}},"counts":{"pp_userdb":0,"http_request":0,"derived_build":0,"serverjson":0,"appserver_cache_attempts":0,"appserver_mem_cache_hits":0,"appserver_cache_hits":0,"appserver_cache_misses":0,"redis":7,"fiber_queue":8,"blocks":7},"misc":{"userdb_results":0,"userdb_data":0,"spent_time":518821,"derived_build_time_spent":0}}
x-bubble-capacity-used: 0.008 unit-seconds used
x-bubble-capacity-limit: 0 ms slower
cf-cache-status: MISS
server: cloudflare
cf-ray: 7476d7426ec00b06-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /6QdoRKW HTTP/1.1 
Host: cutt.ly
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-account-mail-login-inbox.bubbleapps.io/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.22.1.232
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
                                        
date: Thu, 08 Sep 2022 10:01:06 GMT
location: https://cutt.ly/guard/6QdoRKW
set-cookie: PHPSESSID=1qnje5bm3umsqe14a9vai7ikln; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7476d748ff29b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing