| ontop22.bubbleapps.io/version-test |  104.19.218.48 | 301 Moved Permanently | 0 B |
URL HTTP/1.1ontop22.bubbleapps.io/version-test IP104.19.218.48:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| openphish | Facebook, Inc. | |
GET /version-test HTTP/1.1
Host: ontop22.bubbleapps.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 29 Oct 2022 09:06:11 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://ontop22.bubbleapps.io/version-test
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 761ac0f22b7e0b55-OSL
|
|
| r3.o.lencr.org/ |  23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash82788b8b26eeba7f492106ea47729bbb 823b2d3c336d11064a6b809057bed46bb65a7969 7671d088ba1420ffa01dbd63c5f7ab28d52d3591bc04c4cc182d1f9e64a7f2f8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7671D088BA1420FFA01DBD63C5F7AB28D52D3591BC04C4CC182D1F9E64A7F2F8"
Last-Modified: Sat, 29 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14611
Expires: Sat, 29 Oct 2022 13:09:42 GMT
Date: Sat, 29 Oct 2022 09:06:11 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ |  93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash922281894182eba1fc67c2d8678e3238 e169209341b09bf4f14ebb3fc7c07b03f2121bf1 37516083f7655af68d7e426efca6f9f3709a80318ac7bb8cc492c183916141b1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6115
Cache-Control: max-age=94011
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 09:06:11 GMT
Etag: "635ba15b-1d7"
Expires: Sun, 30 Oct 2022 11:13:02 GMT
Last-Modified: Fri, 28 Oct 2022 09:31:07 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash922281894182eba1fc67c2d8678e3238 e169209341b09bf4f14ebb3fc7c07b03f2121bf1 37516083f7655af68d7e426efca6f9f3709a80318ac7bb8cc492c183916141b1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3602
Cache-Control: max-age=91498
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 09:06:11 GMT
Etag: "635ba15b-1d7"
Expires: Sun, 30 Oct 2022 10:31:09 GMT
Last-Modified: Fri, 28 Oct 2022 09:31:07 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash42d84e61e6aa4d3cce623adccfafc3e2 0dba69e98be53c153a6726ff934b2d55feb20d75 2f53662c68c9ea7be85837310861c8007fd039e5e4d8eb8f0d8948d5d1571a03
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2F53662C68C9EA7BE85837310861C8007FD039E5E4D8EB8F0D8948D5D1571A03"
Last-Modified: Thu, 27 Oct 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6427
Expires: Sat, 29 Oct 2022 10:53:18 GMT
Date: Sat, 29 Oct 2022 09:06:11 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain |  34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash67d5a988edcda47bc3b3b3f65d32b4b6 d4f0e0da8b3690cc7da925026d3414b68c7d954f 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: JIi1tnU/BHT8UeVqSNqN/vgL2jehgY5evk1tvA/mHJ/zfrTzSwYIu2Xx9SiRjomKZ9WIm9EfcEE=
x-amz-request-id: 6ENC8DE76PQ9CFF7
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 29 Oct 2022 08:43:59 GMT
age: 1332
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hashc93937d5a3c7b519d03abe2e35fd935a 7395f9f6356cf9ba9ccfa8b86d752cf420ffa1e7 16b4278b51830ed6f42bb09bd623f5c180e4a3722f200db080b3d20452e3c07b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=132505
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 09:06:11 GMT
Etag: "635c4f9c-117"
Expires: Sun, 30 Oct 2022 21:54:36 GMT
Last-Modified: Fri, 28 Oct 2022 21:54:36 GMT
Server: nginx
Content-Length: 279
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 09:06:11 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashd23430a3322d9d62a11844dcb41e6b36 b3798f6bdf72e31d2bd38ee609bb8f5701a337b1 2e310b291a80f54bac4ddca876398ec04a17517464b17f8f290ee0a3d3f28156
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 863
Cache-Control: max-age=170096
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 09:06:11 GMT
Etag: "635cdf14-1d7"
Expires: Mon, 31 Oct 2022 08:21:07 GMT
Last-Modified: Sat, 29 Oct 2022 08:06:44 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
|
|
| push.services.mozilla.com/ | 34.212.166.60 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP34.212.166.60:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: b1pGttd+0Rhb0fF4wsyfNQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Tzs5TA6Zsi1UnfmLn8EaPUGNfAw=
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hasha34a3d6697eb937f0b134e68e9fb2b99 dc432dc7c8692383d17e593a93e60857d9398082 e11fbf49eb07b649e29e7965e888397956e4476873c9e55812ef10f722bbc994
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 09:06:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hasha34a3d6697eb937f0b134e68e9fb2b99 dc432dc7c8692383d17e593a93e60857d9398082 e11fbf49eb07b649e29e7965e888397956e4476873c9e55812ef10f722bbc994
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 09:06:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash89643d2109e09c2c32f8e67de2d35df0 7d57d55fe52e166f75f93efab1a784e840c25757 672d341ec656ed18d6484ab814ab4f888b37624bfb49e9c2d95860168246b46b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 09:06:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash89643d2109e09c2c32f8e67de2d35df0 7d57d55fe52e166f75f93efab1a784e840c25757 672d341ec656ed18d6484ab814ab4f888b37624bfb49e9c2d95860168246b46b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 09:06:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/barlow/v12/7cHpv4kjgoGqM7E_DMs5.woff2 | 216.58.207.195 | 200 OK | 21 kB |
URL HTTP/2fonts.gstatic.com/s/barlow/v12/7cHpv4kjgoGqM7E_DMs5.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 21144, version 1.0\012- data Hash2bc7630144496092dc786ce63109e560 723df3658078cfed03c85e47f15fc439eb4331be 7c9c80a6c32c0619d61c28f28723e68c5f8f75163e77ee5cf64c39e640e0d71e
GET /s/barlow/v12/7cHpv4kjgoGqM7E_DMs5.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ontop22.bubbleapps.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21144
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 25 Oct 2022 22:37:04 GMT
expires: Wed, 25 Oct 2023 22:37:04 GMT
cache-control: public, max-age=31536000
age: 296948
last-modified: Tue, 19 Apr 2022 19:43:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash89643d2109e09c2c32f8e67de2d35df0 7d57d55fe52e166f75f93efab1a784e840c25757 672d341ec656ed18d6484ab814ab4f888b37624bfb49e9c2d95860168246b46b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 09:06:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash89643d2109e09c2c32f8e67de2d35df0 7d57d55fe52e166f75f93efab1a784e840c25757 672d341ec656ed18d6484ab814ab4f888b37624bfb49e9c2d95860168246b46b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 09:06:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.googleapis.com/css?family=Barlow:regular%7CBarlow:500%7CBarlow:600%7CBarlow:800 | 142.250.74.10 | 200 OK | 22 kB |
URL HTTP/2fonts.googleapis.com/css?family=Barlow:regular%7CBarlow:500%7CBarlow:600%7CBarlow:800 IP142.250.74.10:0
Hashd12c192138d4589a3e85a00051d163c6 b82dfccb9338dd337be5a586140d1baa21aa35a8 22f1d5e46b0cbaeefa5bc749e13d771182f84c9e341d7c332303302e6107a8cb
GET /css?family=Barlow:regular%7CBarlow:500%7CBarlow:600%7CBarlow:800 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ontop22.bubbleapps.io/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 29 Oct 2022 09:06:12 GMT
date: Sat, 29 Oct 2022 09:06:12 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E3q-0s51os.woff2 | 216.58.207.195 | 200 OK | 22 kB |
URL HTTP/2fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E3q-0s51os.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 22052, version 1.0\012- data Hashf27acc0d33d769a3da576516ca236c41 a678c0f6905303906a2537c1ff983258286a9263 1f132510bc7b665bbe5fb9227b0d2daafa5513296a72f88f88d38179eded9277
GET /s/barlow/v12/7cHqv4kjgoGqM7E3q-0s51os.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ontop22.bubbleapps.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22052
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 24 Oct 2022 22:47:03 GMT
expires: Tue, 24 Oct 2023 22:47:03 GMT
cache-control: public, max-age=31536000
age: 382749
last-modified: Tue, 19 Apr 2022 19:05:17 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E3_-gs51os.woff2 | 216.58.207.195 | 200 OK | 21 kB |
URL HTTP/2fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E3_-gs51os.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 20960, version 1.0\012- data Hashd312d179276a175029c56c50e9bc9d0b aa9285dd6183c696fc39ec31c221581e2d4959c1 7c0597b1b0c771139c958982210f05b275993037f0f3ba20d7a9300a0741dc80
GET /s/barlow/v12/7cHqv4kjgoGqM7E3_-gs51os.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ontop22.bubbleapps.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20960
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 26 Oct 2022 00:06:18 GMT
expires: Thu, 26 Oct 2023 00:06:18 GMT
cache-control: public, max-age=31536000
age: 291594
last-modified: Tue, 19 Apr 2022 19:18:28 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash89643d2109e09c2c32f8e67de2d35df0 7d57d55fe52e166f75f93efab1a784e840c25757 672d341ec656ed18d6484ab814ab4f888b37624bfb49e9c2d95860168246b46b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 09:06:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ontop22.bubbleapps.io/package/early_js/c5bcb2b703c12cc31e5a643f3beafacd0fd83738d617fb5a9a2b524326bd2d5b/xfalse/early.js | 104.19.217.48 | 200 OK | 9.4 kB |
URL HTTP/2ontop22.bubbleapps.io/package/early_js/c5bcb2b703c12cc31e5a643f3beafacd0fd83738d617fb5a9a2b524326bd2d5b/xfalse/early.js IP104.19.217.48:0
File typeUnicode text, UTF-8 text, with very long lines (1366) Hash029c7ae6669d20f064223a3a9142bcd9 50054a8bde40aa23f976c1801621d3a9e71ecbdc ba40891f8babacdc63760c64bd68a68cb5cd6177220324d7776acac39f3ed847
GET /package/early_js/c5bcb2b703c12cc31e5a643f3beafacd0fd83738d617fb5a9a2b524326bd2d5b/xfalse/early.js HTTP/1.1
Host: ontop22.bubbleapps.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ontop22.bubbleapps.io/
Connection: keep-alive
Cookie: ontop22_test_u2main=1667034371416x775425107817054200; ontop22_test_u2main.sig=y7Axb_yjA5j76T4fX3V6wicAV-M; ontop22_u1_testmain=1667034371399x769958386805165800
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 09:06:12 GMT
content-type: application/javascript
x-powered-by: Express
cache-control: public, max-age=31536000
access-control-allow-origin: *
timing-allow-origin: *
vary: Accept-Encoding
x-bubble-perf: {"total":9.1,"percents":{"top":{"bubble_cpu":25,"block":65.4,"capacity_rl":0,"other_pause":0,"pre_fiber":4.5},"sub":{"pp_userdb":0,"pp_wait_userdb":0,"http_request":0,"serverjson":0,"appserver_cache_misses_time":0,"redis":26.3,"fiber_queue":19.9,"capacity_wait":20.9}},"counts":{"pp_userdb":0,"http_request":0,"derived_build":0,"serverjson":0,"appserver_cache_attempts":0,"appserver_mem_cache_hits":0,"appserver_cache_hits":0,"appserver_cache_misses":0,"redis":5,"fiber_queue":6,"blocks":5},"misc":{"userdb_results":0,"userdb_data":0,"spent_time":341747,"derived_build_time_spent":0}}
x-bubble-capacity-used: 0.005 unit-seconds used
x-bubble-capacity-limit: 0 ms slower
cf-cache-status: MISS
server: cloudflare
cf-ray: 761ac0f74fa7b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashd74fd61a9f3caa5eada0b6b9f7154475 eb94382c5deaf0de61635a7d4ecc89928ef84e65 b8fe819d80e3dbca42f89e4654dfb96aa886892d265b475c7e23c780120aa5cd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B8FE819D80E3DBCA42F89E4654DFB96AA886892D265B475C7E23C780120AA5CD"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5709
Expires: Sat, 29 Oct 2022 10:41:22 GMT
Date: Sat, 29 Oct 2022 09:06:13 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashd74fd61a9f3caa5eada0b6b9f7154475 eb94382c5deaf0de61635a7d4ecc89928ef84e65 b8fe819d80e3dbca42f89e4654dfb96aa886892d265b475c7e23c780120aa5cd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B8FE819D80E3DBCA42F89E4654DFB96AA886892D265B475C7E23C780120AA5CD"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5709
Expires: Sat, 29 Oct 2022 10:41:22 GMT
Date: Sat, 29 Oct 2022 09:06:13 GMT
Connection: keep-alive
|
|
| ontop22.bubbleapps.io/package/run_js/57ede5ebebb00d4983d40cd9c693ffe1a585d529b2e95487f5455eb2970470b6/xfalse/x17/run.js | 104.19.217.48 | 200 OK | 632 kB |
URL HTTP/2ontop22.bubbleapps.io/package/run_js/57ede5ebebb00d4983d40cd9c693ffe1a585d529b2e95487f5455eb2970470b6/xfalse/x17/run.js IP104.19.217.48:0
File typeASCII text, with very long lines (32030) Size632 kB (631986 bytes) Hash59cfe8d977e81a11d8f7a308b3554999 e12a1be436d9146cf4ec790938267a0e38042766 cb9f8f0bc4cbf9e6289c88b49c92b86c1f884bb191e113cda7b945ebe441a6c8
GET /package/run_js/57ede5ebebb00d4983d40cd9c693ffe1a585d529b2e95487f5455eb2970470b6/xfalse/x17/run.js HTTP/1.1
Host: ontop22.bubbleapps.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ontop22.bubbleapps.io/
Connection: keep-alive
Cookie: ontop22_test_u2main=1667034371416x775425107817054200; ontop22_test_u2main.sig=y7Axb_yjA5j76T4fX3V6wicAV-M; ontop22_u1_testmain=1667034371399x769958386805165800
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 09:06:12 GMT
content-type: application/javascript
x-powered-by: Express
cache-control: public, max-age=31536000
access-control-allow-origin: *
timing-allow-origin: *
vary: Accept-Encoding
x-bubble-perf: {"total":19.2,"percents":{"top":{"bubble_cpu":12.6,"block":81.3,"capacity_rl":0,"other_pause":0,"pre_fiber":2.1},"sub":{"pp_userdb":0,"pp_wait_userdb":0,"http_request":0,"serverjson":0,"appserver_cache_misses_time":0,"redis":30.3,"fiber_queue":13.2,"capacity_wait":38.7}},"counts":{"pp_userdb":0,"http_request":0,"derived_build":0,"serverjson":0,"appserver_cache_attempts":0,"appserver_mem_cache_hits":0,"appserver_cache_hits":0,"appserver_cache_misses":0,"redis":5,"fiber_queue":6,"blocks":5},"misc":{"userdb_results":0,"userdb_data":0,"spent_time":362006,"derived_build_time_spent":0}}
x-bubble-capacity-used: 0.006 unit-seconds used
x-bubble-capacity-limit: 0 ms slower
cf-cache-status: MISS
server: cloudflare
cf-ray: 761ac0f74fa9b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ontop22.bubbleapps.io/version-test/user/hi | 104.19.217.48 | 200 OK | 3.9 kB |
URL HTTP/2ontop22.bubbleapps.io/version-test/user/hi IP104.19.217.48:0
File typeJSON data\012- , ASCII text, with no line terminators Hash1c38494908c8212767aabf7abd056819 da878c5b5dd4e78d98b0402e9893a2a98a13eaab 20b7b6f476415ae638601c66acbf0ae46050ad2ad0b9fafbad482e99ad41b98a
POST /version-test/user/hi HTTP/1.1
Host: ontop22.bubbleapps.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ontop22.bubbleapps.io/
Content-Type: application/json
cache-control: no-cache
X-Bubble-Breaking-Revision: 5
X-Bubble-R: https://ontop22.bubbleapps.io/version-test
X-Bubble-PL: 1667034370942x137
X-Bubble-Epoch-ID: 1667034370919x280816231067168670
X-Bubble-Epoch-Name: Epoch: Runmode page fully loaded
X-Bubble-Fiber-ID: 1667034370942x584985456484240300
X-Bubble-UTM-Data: {}
X-Requested-With: XMLHttpRequest
Content-Length: 2
Origin: https://ontop22.bubbleapps.io
Connection: keep-alive
Cookie: ontop22_test_u2main=1667034371416x775425107817054200; ontop22_test_u2main.sig=y7Axb_yjA5j76T4fX3V6wicAV-M; ontop22_u1_testmain=1667034371399x769958386805165800
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 09:06:13 GMT
content-type: application/json
x-powered-by: Express
set-cookie: ontop22_u1_testmain=1667034371399x769958386805165800; path=/; secure
cache-control: no-cache
x-bubble-appname: ontop22
x-bubble-request-took: 48
x-bubble-perf: {"total":48.6,"percents":{"top":{"bubble_cpu":5.7,"block":78.4,"capacity_rl":0,"other_pause":0,"pre_fiber":14.5},"sub":{"pp_userdb":0,"pp_wait_userdb":0,"http_request":0,"serverjson":0.4,"appserver_cache_misses_time":0,"redis":47.5,"fiber_queue":31.2,"capacity_wait":13.2}},"counts":{"pp_userdb":0,"http_request":0,"derived_build":0,"serverjson":2,"appserver_cache_attempts":0,"appserver_mem_cache_hits":0,"appserver_cache_hits":0,"appserver_cache_misses":0,"redis":5,"fiber_queue":6,"blocks":5},"misc":{"userdb_results":0,"userdb_data":0,"spent_time":416087,"derived_build_time_spent":0}}
x-bubble-capacity-used: 0.006 unit-seconds used
x-bubble-capacity-limit: 0 ms slower
vary: Accept-Encoding
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 761ac0ff2f5db524-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashd74fd61a9f3caa5eada0b6b9f7154475 eb94382c5deaf0de61635a7d4ecc89928ef84e65 b8fe819d80e3dbca42f89e4654dfb96aa886892d265b475c7e23c780120aa5cd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B8FE819D80E3DBCA42F89E4654DFB96AA886892D265B475C7E23C780120AA5CD"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5709
Expires: Sat, 29 Oct 2022 10:41:22 GMT
Date: Sat, 29 Oct 2022 09:06:13 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F007f3bba-2985-446d-85be-45a95428ae23.jpeg | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F007f3bba-2985-446d-85be-45a95428ae23.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashcd57e4f1e64d2282aad00780e649ac34 be92efe8b83090c8c95e159440afe9373982704a 0b0479242cb87c137b9e86af1ce16c5a06be025737f6804df93cecf5b01a3101
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F007f3bba-2985-446d-85be-45a95428ae23.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11862
x-amzn-requestid: d3687685-2491-42df-9127-4167cb1f295f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: avCIcHghoAMFkbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635c4a35-2c1243410c85c8464edd1f5f;Sampled=0
x-amzn-remapped-date: Fri, 28 Oct 2022 21:31:33 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 3yKckBPMKX5M2CmYiEsdYyxiFqA0SIeo245j5hvexq76o1VkDjfGwQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Fri, 28 Oct 2022 21:47:05 GMT
age: 40748
etag: "be92efe8b83090c8c95e159440afe9373982704a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdeda76f5-b5fb-4f5b-ab0d-9b70604a9001.jpeg | 34.120.237.76 | 200 OK | 4.1 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdeda76f5-b5fb-4f5b-ab0d-9b70604a9001.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash961d75546dcb911d8c4eabdf92e2346c 0b14fc9db8520e7d65dc5517cfb1f5f2b63773b1 28f3c64fa9a4ea9af8a3e0455842c7174b6ca0b7ba017c05cf4b40b8bc95fd15
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdeda76f5-b5fb-4f5b-ab0d-9b70604a9001.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4059
x-amzn-requestid: 7efeb95f-2f14-4a8b-8a5b-facb6de9044e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z3yJDGNToAMFpjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634630a0-0a42c04e037908c2198b6f5b;Sampled=0
x-amzn-remapped-date: Wed, 12 Oct 2022 03:12:32 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Hvwda_iou20Ti01Pn_CkuYDXKGMXdj313gj9tu7OF14DU7KPl-TflA==
via: 1.1 7f06047c304d80ea094816a27c933914.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Fri, 28 Oct 2022 22:11:05 GMT
age: 39308
etag: "0b14fc9db8520e7d65dc5517cfb1f5f2b63773b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79049f5d-175e-4d0f-94ea-6d5a1fcadca0.jpeg | 34.120.237.76 | 200 OK | 9.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79049f5d-175e-4d0f-94ea-6d5a1fcadca0.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashfb1110221ffc54766308cbf62f94cd9f 926f36919d5875592200b78d286edcb4c3ba884c 8344d57bc8358da2a5911c62a344a3dcf819ce44dac0da0624c73ab40ac1ef44
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79049f5d-175e-4d0f-94ea-6d5a1fcadca0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9460
x-amzn-requestid: c1eef336-bec0-47f0-bd30-17de593de8f5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: asgW3E8uIAMFpgg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635b475e-60346ff475ec335e0499d17f;Sampled=0
x-amzn-remapped-date: Fri, 28 Oct 2022 03:07:10 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: P3-UxGtr6HKLtsZUHXV_4CgAd3LQBceo_1NUwrfWhWoGoTEKS7KGAw==
via: 1.1 946b9edb2009c5508a0fbbd636f95014.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 28 Oct 2022 21:51:02 GMT
age: 40511
etag: "926f36919d5875592200b78d286edcb4c3ba884c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ontop22.bubbleapps.io/package/dynamic_js/3ea1c4a3efb327fcbee645d2d7faea8fec656e891d887e4b4fbe0d2c617785eb/ontop22/test/index/xnull/xfalse/xfalse/en_us/xfalse/xfalse/dynamic.js | 104.19.217.48 | 200 OK | 23 kB |
URL HTTP/2ontop22.bubbleapps.io/package/dynamic_js/3ea1c4a3efb327fcbee645d2d7faea8fec656e891d887e4b4fbe0d2c617785eb/ontop22/test/index/xnull/xfalse/xfalse/en_us/xfalse/xfalse/dynamic.js IP104.19.217.48:0
File typeUnicode text, UTF-8 text, with very long lines (36859) Hashdbc0c834b871ab40204c6b3b8042951c 5bf86028fa36a39e44599675425f00dd3f94be02 02eaa5366d70ef1c5051e71df2724a16c60f26e2c2286ade364efd0074b0549f
GET /package/dynamic_js/3ea1c4a3efb327fcbee645d2d7faea8fec656e891d887e4b4fbe0d2c617785eb/ontop22/test/index/xnull/xfalse/xfalse/en_us/xfalse/xfalse/dynamic.js HTTP/1.1
Host: ontop22.bubbleapps.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ontop22.bubbleapps.io/
Connection: keep-alive
Cookie: ontop22_test_u2main=1667034371416x775425107817054200; ontop22_test_u2main.sig=y7Axb_yjA5j76T4fX3V6wicAV-M; ontop22_u1_testmain=1667034371399x769958386805165800
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 09:06:12 GMT
content-type: application/javascript
x-powered-by: Express
cache-control: public, max-age=31536000
access-control-allow-origin: *
timing-allow-origin: *
vary: Accept-Encoding
x-bubble-perf: {"total":28.3,"percents":{"top":{"bubble_cpu":21.5,"block":75.8,"capacity_rl":0,"other_pause":0,"pre_fiber":1.9},"sub":{"pp_userdb":0,"pp_wait_userdb":0,"http_request":0,"serverjson":15.9,"appserver_cache_misses_time":0,"redis":74.7,"fiber_queue":12.4,"capacity_wait":14}},"counts":{"pp_userdb":0,"http_request":0,"derived_build":0,"derived_cache_attempts":2,"derived_cache_memory_misses":2,"serverjson":9,"appserver_cache_attempts":1,"appserver_mem_cache_hits":0,"appserver_cache_hits":1,"appserver_cache_misses":0,"redis":17,"fiber_queue":15,"blocks":14},"misc":{"userdb_results":0,"userdb_data":0,"spent_time":911867,"derived_build_time_spent":0}}
x-bubble-capacity-used: 0.014 unit-seconds used
x-bubble-capacity-limit: 0 ms slower
cf-cache-status: MISS
server: cloudflare
cf-ray: 761ac0f74fabb524-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ontop22.bubbleapps.io/package/run_css/477d3313059fa7ebc0d2f94b6e5631deaeeeb7a94666a553adc4fed5c3457e35/ontop22/test/index/xfalse/xfalse/run.css | 104.19.217.48 | 200 OK | 14 kB |
URL HTTP/2ontop22.bubbleapps.io/package/run_css/477d3313059fa7ebc0d2f94b6e5631deaeeeb7a94666a553adc4fed5c3457e35/ontop22/test/index/xfalse/xfalse/run.css IP104.19.217.48:0
File typeASCII text, with very long lines (41906), with no line terminators Hash263454cac9e7fa11980087f4081dbf32 dfb10bb778a0fd7b4a23aff30f2c474c242210ff 9ab767fc7557244289e038d7e5793d72278cf8edcb6ece0fe175e0e0ba2c3806
GET /package/run_css/477d3313059fa7ebc0d2f94b6e5631deaeeeb7a94666a553adc4fed5c3457e35/ontop22/test/index/xfalse/xfalse/run.css HTTP/1.1
Host: ontop22.bubbleapps.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ontop22.bubbleapps.io/
Connection: keep-alive
Cookie: ontop22_test_u2main=1667034371416x775425107817054200; ontop22_test_u2main.sig=y7Axb_yjA5j76T4fX3V6wicAV-M; ontop22_u1_testmain=1667034371399x769958386805165800
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 09:06:11 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=53995
access-control-allow-origin: *
cache-control: public, max-age=31536000
timing-allow-origin: *
vary: Accept-Encoding
x-bubble-capacity-limit: 0 ms slower
x-bubble-capacity-used: 0.018 unit-seconds used
x-bubble-perf: {"total":25.7,"percents":{"top":{"bubble_cpu":30.6,"block":66,"capacity_rl":0,"other_pause":0,"pre_fiber":2.4},"sub":{"pp_userdb":0,"pp_wait_userdb":0,"http_request":0,"serverjson":24.5,"appserver_cache_misses_time":0,"redis":64.5,"fiber_queue":13.2,"capacity_wait":13.2}},"counts":{"pp_userdb":0,"http_request":0,"derived_build":0,"derived_cache_attempts":2,"derived_cache_memory_misses":2,"serverjson":11,"appserver_cache_attempts":1,"appserver_mem_cache_hits":0,"appserver_cache_hits":1,"appserver_cache_misses":0,"redis":18,"fiber_queue":16,"blocks":15},"misc":{"userdb_results":0,"userdb_data":0,"spent_time":1181933,"derived_build_time_spent":0}}
x-powered-by: Express
cf-cache-status: HIT
age: 242582
server: cloudflare
cf-ray: 761ac0f74fa8b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ocsp.sectigo.com/ | 172.64.155.188 | 200 OK | 472 B |
IP172.64.155.188:0
Hashe8684082a824e452760f798b3a3ae962 c02690486a43f2f74970b84e4ce8e3ea69f167af 9b0465ed4a515f3af45e33ae5ea856abbeb132370a9e3fcc568ffc62498eb91f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 29 Oct 2022 09:06:13 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 27 Oct 2022 19:38:43 GMT
Expires: Thu, 03 Nov 2022 19:38:42 GMT
Etag: "c02690486a43f2f74970b84e4ce8e3ea69f167af"
Cache-Control: max-age=469348,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 761ac101ce2f1bfe-OSL
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hash9ee98cbbd14a3650d497c767abd9dc25 26d732cd08ba98fc8a258c7d9c54b265cef782bf b379dfd02e4213af4e623caa683125d46574778ce821a70b2dc93d8bf1812c3f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3729
Cache-Control: max-age=112478
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 09:06:13 GMT
Etag: "635bf2d2-117"
Expires: Sun, 30 Oct 2022 16:20:51 GMT
Last-Modified: Fri, 28 Oct 2022 15:18:42 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 279
|
|
| get.geojs.io/v1/ip/geo.json | 172.67.70.233 | 200 OK | 478 B |
URL HTTP/2get.geojs.io/v1/ip/geo.json IP172.67.70.233:0
File typeJSON data\012- , ASCII text Hash99e5f05bcece59674f54341dcf0d75a7 de63162522bf1238308a6de60eb12c3d79cd1409 7db334d454434743574f409956b8a4d654c3f416d1a5e604cff0ab576d22648b
GET /v1/ip/geo.json HTTP/1.1
Host: get.geojs.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ontop22.bubbleapps.io/
Origin: https://ontop22.bubbleapps.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 29 Oct 2022 09:06:13 GMT
content-type: application/json
x-request-id: 1540a6adcfa356300a22cd4e1e63e40d-AMS
strict-transport-security: max-age=15552000; includeSubDomains; preload
access-control-allow-origin: *
access-control-allow-methods: GET
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, private, max-age=0
x-geojs-location: AMS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mGNW52Kmyd0qb5rKyocl0apzgZ6%2Bkr4qA1GcDkH00VKls2aJclHH63KcVHSbb2pnaqqceZATFh0QJCY4ILDHsdMrlv8xhBXFJjJqLpzVq8Re58BOT5ONEzQMTsg1iA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 761ac103afe41bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| notify.bubble.is/ | 52.35.44.78 | 101 Switching Protocols | 0 B |
IP52.35.44.78:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: notify.bubble.is
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://ontop22.bubbleapps.io
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 52PFl8ELSNJyWPrJP9LVNg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Upgrade: websocket
Connection: Upgrade
Sec-WebSocket-Accept: G7/rZSldWTzXRza4D6cqK0BY5Bw=
|
|
| d1muf25xaso8hp.cloudfront.net/https%3A%2F%2Fs3.amazonaws.com%2Fappforest_uf%2Ff1530294839424x143528842134401200%2FIcon-no-clearspace.png?w=128&h=&auto=compress&dpr=1&fit=max | 54.230.245.141 | 200 OK | 3.5 kB |
URL HTTP/2d1muf25xaso8hp.cloudfront.net/https%3A%2F%2Fs3.amazonaws.com%2Fappforest_uf%2Ff1530294839424x143528842134401200%2FIcon-no-clearspace.png?w=128&h=&auto=compress&dpr=1&fit=max IP54.230.245.141:0
File typePNG image data, 128 x 138, 8-bit colormap, non-interlaced\012- data Hash9d5a4f94a6a08c3092885adc7aee5c9b c5d38b5e75b7cfc357fafe699ab8449e0736fe29 0b3e4a2596ffa4b1a01ba67c562919bb75480d14e28262165f56c0622c1db440
GET /https%3A%2F%2Fs3.amazonaws.com%2Fappforest_uf%2Ff1530294839424x143528842134401200%2FIcon-no-clearspace.png?w=128&h=&auto=compress&dpr=1&fit=max HTTP/1.1
Host: d1muf25xaso8hp.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ontop22.bubbleapps.io/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 3522
last-modified: Tue, 30 Aug 2022 16:20:11 GMT
cache-control: public, max-age=315360000
server: imgix
x-imgix-id: 863d8120db36963dd577449531a5c5aa623ab5c0
x-imgix-render-farm: 01.1
date: Fri, 02 Sep 2022 00:27:35 GMT
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10030-SJC, cache-fra19145-FRA
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: G95YMBFzbW_Y7PIB7hTMDXoISMLb5IYA3c4v6FjV6LWpM0SSu02cYw==
age: 5157962
X-Firefox-Spdy: h2
|
|
| ocsp.sectigo.com/ | 172.64.155.188 | 200 OK | 472 B |
IP172.64.155.188:0
Hash91d070979fc0dbb3e015452e88489d82 75804236cff0f75a88329d7d9f65494e72a816f8 89633d493830c5cba2cbc4fa270d4d7ceb0c05380238d480d0cf5563fdac36b8
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 29 Oct 2022 09:06:14 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 29 Oct 2022 05:29:14 GMT
Expires: Sat, 05 Nov 2022 05:29:13 GMT
Etag: "75804236cff0f75a88329d7d9f65494e72a816f8"
Cache-Control: max-age=591179,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 761ac105394d1bfe-OSL
|
|
| ocsp.sectigo.com/ | 172.64.155.188 | 200 OK | 472 B |
IP172.64.155.188:0
Hash91d070979fc0dbb3e015452e88489d82 75804236cff0f75a88329d7d9f65494e72a816f8 89633d493830c5cba2cbc4fa270d4d7ceb0c05380238d480d0cf5563fdac36b8
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 29 Oct 2022 09:06:14 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 29 Oct 2022 05:29:14 GMT
Expires: Sat, 05 Nov 2022 05:29:13 GMT
Etag: "75804236cff0f75a88329d7d9f65494e72a816f8"
Cache-Control: max-age=591179,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 761ac1054a5e1c0e-OSL
|
|
| widgets.amung.us/classic/00/26.png | 172.67.8.141 | 200 OK | 1.5 kB |
URL HTTP/2widgets.amung.us/classic/00/26.png IP172.67.8.141:0
File typePNG image data, 81 x 29, 8-bit colormap, non-interlaced\012- data Hashf3e33adc73b6733f5a758c8efc294413 f36703ebcb0ccb54158aad46e6607a833fb05b2f ec363ee13cd1edb3d96ef604f49daeee491ad458be547a7a519a735c184ff19e
GET /classic/00/26.png HTTP/1.1
Host: widgets.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ontop22.bubbleapps.io/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 09:06:14 GMT
content-type: image/png
content-length: 1499
last-modified: Sun, 13 Jun 2010 09:03:09 GMT
etag: "4c149ecd-5db"
expires: Thu, 20 Oct 2022 22:58:45 GMT
cache-control: max-age=2678400
access-control-allow-origin: *
cf-cache-status: HIT
age: 814049
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 761ac1076b32b4f7-OSL
X-Firefox-Spdy: h2
|
|
| ontop22.bubbleapps.io/version-test | 104.19.217.48 | 200 OK | 0 B |
URL HTTP/2ontop22.bubbleapps.io/version-test IP104.19.217.48:0
| Analyzer | Verdict | Alert |
|---|
| openphish | Facebook, Inc. | |
GET /version-test HTTP/1.1
Host: ontop22.bubbleapps.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sat, 29 Oct 2022 09:06:11 GMT
content-type: text/html
x-powered-by: Express
referrer-policy: origin
x-frame-options: DENY
content-security-policy: frame-ancestors 'none';
cache-control: no-store
x-bubble-perf: {"total":114.4,"percents":{"top":{"bubble_cpu":46.4,"block":53.2,"capacity_rl":0,"other_pause":0,"pre_fiber":0.6},"sub":{"pp_userdb":0,"pp_wait_userdb":0,"http_request":0,"serverjson":26.9,"appserver_cache_misses_time":0,"redis":53.6,"fiber_queue":6.5,"capacity_wait":2}},"counts":{"pp_userdb":0,"http_request":0,"derived_build":0,"derived_cache_attempts":14,"derived_cache_memory_misses":14,"serverjson":29,"appserver_cache_attempts":2,"appserver_mem_cache_hits":0,"appserver_cache_hits":2,"appserver_cache_misses":0,"redis":62,"fiber_queue":58,"blocks":57},"misc":{"userdb_results":1,"userdb_data":206,"spent_time":7962081,"derived_build_time_spent":0}}
x-bubble-capacity-used: 0.122 unit-seconds used
x-bubble-capacity-limit: 0 ms slower
vary: Accept-Encoding
set-cookie: ontop22_test_u2main=1667034371416x775425107817054200; path=/; expires=Tue, 01 Nov 2022 09:06:11 GMT; secure; httponly
ontop22_test_u2main.sig=y7Axb_yjA5j76T4fX3V6wicAV-M; path=/; expires=Tue, 01 Nov 2022 09:06:11 GMT; secure; httponly
ontop22_u1_testmain=1667034371399x769958386805165800; path=/; secure
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 761ac0f45cd3b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| whos.amung.us/widget/moisesfxss00 | 172.67.8.141 | 307 Temporary Redirect | 0 B |
URL HTTP/2whos.amung.us/widget/moisesfxss00 IP172.67.8.141:0
GET /widget/moisesfxss00 HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ontop22.bubbleapps.io/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
date: Sat, 29 Oct 2022 09:06:14 GMT
content-type: text/html; charset=UTF-8
location: https://widgets.amung.us/classic/00/26.png
cache-control: no-cache, no-store, must-revalidate
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 761ac1059932b4f7-OSL
X-Firefox-Spdy: h2
|
|
| ontop22.bubbleapps.io/version-test/user/apm | 104.19.217.48 | 200 OK | 0 B |
URL HTTP/2ontop22.bubbleapps.io/version-test/user/apm IP104.19.217.48:0
POST /version-test/user/apm HTTP/1.1
Host: ontop22.bubbleapps.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ontop22.bubbleapps.io/
Content-Type: application/json
cache-control: no-cache
X-Bubble-Breaking-Revision: 5
X-Bubble-R: https://ontop22.bubbleapps.io/version-test
X-Bubble-PL: 1667034370942x137
X-Bubble-Fiber-ID: 1667034372886x549677933692862660
X-Bubble-UTM-Data: {}
X-Requested-With: XMLHttpRequest
Content-Length: 3108
Origin: https://ontop22.bubbleapps.io
Connection: keep-alive
Cookie: ontop22_test_u2main=1667034371416x775425107817054200; ontop22_test_u2main.sig=y7Axb_yjA5j76T4fX3V6wicAV-M; ontop22_u1_testmain=1667034371399x769958386805165800
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 09:06:15 GMT
content-type: application/json
x-powered-by: Express
cache-control: no-cache
x-bubble-appname: ontop22
x-bubble-request-took: 15
x-bubble-perf: {"total":14.4,"percents":{"top":{"bubble_cpu":24.5,"block":63.8,"capacity_rl":0,"other_pause":0,"pre_fiber":10.5},"sub":{"pp_userdb":0,"pp_wait_userdb":0,"http_request":0,"serverjson":0,"appserver_cache_misses_time":0,"redis":30.1,"fiber_queue":24.8,"capacity_wait":14.7}},"counts":{"pp_userdb":0,"http_request":0,"derived_build":0,"serverjson":0,"appserver_cache_attempts":0,"appserver_mem_cache_hits":0,"appserver_cache_hits":0,"appserver_cache_misses":0,"redis":6,"fiber_queue":7,"blocks":6},"misc":{"userdb_results":0,"userdb_data":0,"spent_time":529075,"derived_build_time_spent":0}}
x-bubble-capacity-used: 0.008 unit-seconds used
x-bubble-capacity-limit: 0 ms slower
vary: Accept-Encoding
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 761ac10b5d39b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ontop22.bubbleapps.io/package/static_js/15a30e9fe524456b70aaf5ac25d1724d37660264edb050671ebf68de05239fca/ontop22/test/index/xnull/xfalse/xfalse/xfalse/static.js | 104.19.217.48 | 200 OK | 0 B |
URL HTTP/2ontop22.bubbleapps.io/package/static_js/15a30e9fe524456b70aaf5ac25d1724d37660264edb050671ebf68de05239fca/ontop22/test/index/xnull/xfalse/xfalse/xfalse/static.js IP104.19.217.48:0
GET /package/static_js/15a30e9fe524456b70aaf5ac25d1724d37660264edb050671ebf68de05239fca/ontop22/test/index/xnull/xfalse/xfalse/xfalse/static.js HTTP/1.1
Host: ontop22.bubbleapps.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ontop22.bubbleapps.io/
Connection: keep-alive
Cookie: ontop22_test_u2main=1667034371416x775425107817054200; ontop22_test_u2main.sig=y7Axb_yjA5j76T4fX3V6wicAV-M; ontop22_u1_testmain=1667034371399x769958386805165800
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 09:06:12 GMT
content-type: application/javascript
x-powered-by: Express
cache-control: public, max-age=31536000
access-control-allow-origin: *
timing-allow-origin: *
vary: Accept-Encoding
x-bubble-perf: {"total":80.7,"percents":{"top":{"bubble_cpu":10.2,"block":89.2,"capacity_rl":0,"other_pause":0,"pre_fiber":0.5},"sub":{"pp_userdb":0,"pp_wait_userdb":0,"http_request":0,"serverjson":22.3,"appserver_cache_misses_time":0,"redis":34.3,"fiber_queue":3.5,"capacity_wait":2.7}},"counts":{"pp_userdb":0,"http_request":0,"derived_build":0,"derived_cache_attempts":8,"derived_cache_memory_misses":8,"serverjson":13,"appserver_cache_attempts":2,"appserver_mem_cache_hits":0,"appserver_cache_hits":2,"appserver_cache_misses":0,"redis":26,"fiber_queue":25,"blocks":24},"misc":{"userdb_results":0,"userdb_data":0,"spent_time":1239044,"derived_build_time_spent":0}}
x-bubble-capacity-used: 0.019 unit-seconds used
x-bubble-capacity-limit: 0 ms slower
cf-cache-status: MISS
server: cloudflare
cf-ray: 761ac0f74faab524-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ontop22.bubbleapps.io/version-test/user/m | 104.19.217.48 | 200 OK | 0 B |
URL HTTP/2ontop22.bubbleapps.io/version-test/user/m IP104.19.217.48:0
POST /version-test/user/m HTTP/1.1
Host: ontop22.bubbleapps.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ontop22.bubbleapps.io/
Content-Type: application/json
cache-control: no-cache
X-Bubble-Breaking-Revision: 5
X-Bubble-R: https://ontop22.bubbleapps.io/version-test
X-Bubble-PL: 1667034370942x137
X-Bubble-Fiber-ID: 1667034371074x626252623794822900
X-Bubble-UTM-Data: {}
X-Requested-With: XMLHttpRequest
Content-Length: 535
Origin: https://ontop22.bubbleapps.io
Connection: keep-alive
Cookie: ontop22_test_u2main=1667034371416x775425107817054200; ontop22_test_u2main.sig=y7Axb_yjA5j76T4fX3V6wicAV-M; ontop22_u1_testmain=1667034371399x769958386805165800
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 09:06:13 GMT
content-type: application/json
x-powered-by: Express
cache-control: no-cache
x-bubble-appname: ontop22
x-bubble-request-took: 11
x-bubble-perf: {"total":10.9,"percents":{"top":{"bubble_cpu":24,"block":70.2,"capacity_rl":0,"other_pause":0,"pre_fiber":5.2},"sub":{"pp_userdb":0,"pp_wait_userdb":0,"http_request":0,"serverjson":0,"appserver_cache_misses_time":0,"redis":36.4,"fiber_queue":8.1,"capacity_wait":26.8}},"counts":{"pp_userdb":0,"http_request":0,"derived_build":0,"serverjson":0,"appserver_cache_attempts":0,"appserver_mem_cache_hits":0,"appserver_cache_hits":0,"appserver_cache_misses":0,"redis":5,"fiber_queue":6,"blocks":5},"misc":{"userdb_results":0,"userdb_data":0,"spent_time":391377,"derived_build_time_spent":0}}
x-bubble-capacity-used: 0.006 unit-seconds used
x-bubble-capacity-limit: 0 ms slower
vary: Accept-Encoding
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 761ac1000834b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ontop22.bubbleapps.io/version-test/api/1.1/init/data?location=https%3A%2F%2Fontop22.bubbleapps.io%2Fversion-test | 104.19.217.48 | 200 OK | 0 B |
URL HTTP/2ontop22.bubbleapps.io/version-test/api/1.1/init/data?location=https%3A%2F%2Fontop22.bubbleapps.io%2Fversion-test IP104.19.217.48:0
GET /version-test/api/1.1/init/data?location=https%3A%2F%2Fontop22.bubbleapps.io%2Fversion-test HTTP/1.1
Host: ontop22.bubbleapps.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ontop22.bubbleapps.io/
Connection: keep-alive
Cookie: ontop22_test_u2main=1667034371416x775425107817054200; ontop22_test_u2main.sig=y7Axb_yjA5j76T4fX3V6wicAV-M; ontop22_u1_testmain=1667034371399x769958386805165800
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 09:06:12 GMT
content-type: text/html
x-powered-by: Express
x-bubble-perf: {"total":25,"percents":{"top":{"bubble_cpu":21.1,"block":75.4,"capacity_rl":0,"other_pause":0,"pre_fiber":1.4},"sub":{"pp_userdb":8,"pp_wait_userdb":0,"http_request":0,"serverjson":8.4,"appserver_cache_misses_time":0,"redis":50,"fiber_queue":9.5,"capacity_wait":11.3}},"counts":{"pp_userdb":1,"http_request":0,"derived_build":0,"derived_cache_attempts":1,"derived_cache_memory_misses":1,"serverjson":2,"appserver_cache_attempts":0,"appserver_mem_cache_hits":0,"appserver_cache_hits":0,"appserver_cache_misses":0,"redis":16,"fiber_queue":18,"blocks":17},"misc":{"userdb_results":0,"userdb_data":0,"spent_time":5790031,"derived_build_time_spent":0}}
x-bubble-capacity-used: 0.089 unit-seconds used
x-bubble-capacity-limit: 0 ms slower
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 761ac0fa19f1b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| whos.amung.us/widget/blackmamba01 | 172.67.8.141 | 307 Temporary Redirect | 0 B |
URL HTTP/2whos.amung.us/widget/blackmamba01 IP172.67.8.141:0
GET /widget/blackmamba01 HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ontop22.bubbleapps.io/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
date: Sat, 29 Oct 2022 09:06:14 GMT
content-type: text/html; charset=UTF-8
location: https://widgets.amung.us/classic/00/26.png
cache-control: no-cache, no-store, must-revalidate
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 761ac1058928b4f7-OSL
X-Firefox-Spdy: h2
|
|
| 6pkv.com/newsrd2022/?api=1&lan=facebooknew&ht=2&counter0=blackmamba01 |  45.132.157.56 | 200 OK | 0 B |
URL HTTP/26pkv.com/newsrd2022/?api=1&lan=facebooknew&ht=2&counter0=blackmamba01 IP45.132.157.56:0 ASN#47583 Hostinger International Limited
GET /newsrd2022/?api=1&lan=facebooknew&ht=2&counter0=blackmamba01 HTTP/1.1
Host: 6pkv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ontop22.bubbleapps.io/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-powered-by: PHP/7.4.32
set-cookie: PHPSESSID=7894281307b6f482e4349d5c6d34274b; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: application/javascript
content-encoding: br
vary: Accept-Encoding
date: Sat, 29 Oct 2022 09:06:12 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| get.geojs.io/v1/ip/geo.json | 172.67.70.233 | 200 OK | 0 B |
URL HTTP/2get.geojs.io/v1/ip/geo.json IP172.67.70.233:0
GET /v1/ip/geo.json HTTP/1.1
Host: get.geojs.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ontop22.bubbleapps.io/
Origin: https://ontop22.bubbleapps.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 09:06:14 GMT
content-type: application/json
x-request-id: b1b50710e1cee8a3d923dc0efaa2939c-AMS
strict-transport-security: max-age=15552000; includeSubDomains; preload
access-control-allow-origin: *
access-control-allow-methods: GET
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, private, max-age=0
x-geojs-location: AMS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XdS27yYEcReGu%2BD%2FfVXPbWhM0Huxwj9a46JwsjSjRlcZYyCCzAznWGr1wdMJKB2IUsso1BQMZjsptcce%2FyNZweYfZBsOhn0Sso%2BP1%2BEk0NcqaM66DnA%2Fi%2B%2BvyfyumA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 761ac10adf5d1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
104.19.217.48