Report - app.bonus.ly/

Report Overview

Submitted URL
app.bonus.ly/
IP
104.18.11.197
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-19 13:50:43
Access
public
Website Title
Sign In - Bonusly
Final URL
bonus.ly/users/sign_in_start
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
browser-intake-datadoghq.com	5640	2020-08-06	2023-01-14	2024-03-31	2.2 kB	1.3 kB	3.233.147.183
bat.bing.com	387	1996-01-29	2014-04-08	2024-04-18	2.2 kB	34 kB	204.79.197.237
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-19	2.6 kB	244 kB	142.250.74.106
widget.intercom.io	2417	2011-08-15	2020-07-20	2024-04-19	373 B	3.4 kB	54.230.111.53
js.intercomcdn.com	2440	2013-04-25	2020-02-19	2024-04-18	815 B	392 kB	54.230.111.118
www.google.no	25607	2001-02-26	2016-04-05	2024-04-19	554 B	578 B	142.250.74.163
js.hs-banner.com	2426	2020-03-09	2020-03-26	2024-04-18	378 B	86 kB	104.18.34.229
tag.clearbitscripts.com	34567	2021-08-10	2021-08-26	2024-04-18	411 B	648 B	143.204.55.5
app.bonus.lyle-touch-icon-180x180.png	unknown	unknown	No data	No data	400 B	0 B	0.0.0.0
assets.trybento.co	698885	2019-11-18	2021-03-05	2024-03-01	853 B	265 kB	143.204.55.17
bonus.ly	71151	2012-01-01	2014-02-08	2023-11-08	5.7 kB	32 kB	104.18.10.197
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-18	5.8 kB	320 kB	142.250.74.67
ajax.googleapis.com	12905	2005-01-25	2013-08-16	2024-04-19	851 B	101 kB	142.250.74.106
www.gstatic.com	unknown	2008-02-11	2016-07-26	2024-04-18	3.4 kB	446 kB	142.250.74.99
survey.survicate.com	7683	2013-06-10	2018-10-14	2024-04-18	418 B	12 kB	194.242.11.186
js.hsadspixel.net	3795	2017-04-21	2017-07-25	2024-04-18	364 B	7.8 kB	104.17.223.152
js.hsleadflows.net	4609	2017-01-23	2017-02-22	2024-04-19	395 B	565 kB	104.18.138.17
mfe.bonus.ly	unknown	unknown	No data	No data	17 kB	1.3 MB	104.18.11.197
udon.trybento.co	600087	2019-11-18	2020-11-06	2024-02-20	395 B	837 B	3.81.204.83
code.jquery.com	634	2005-12-10	2012-05-21	2024-04-19	397 B	32 kB	151.101.194.137
d2yyd1h5u9mauk.cloudfront.net	unknown	2008-04-25	2016-08-01	2024-04-17	428 B	98 kB	54.230.241.171
grow.clearbitjs.com	39355	2018-07-09	2021-06-23	2024-03-22	389 B	514 B	216.24.57.252
surveys-static.survicate.com	13597	2013-06-10	2019-04-12	2024-04-15	399 B	10 kB	194.242.11.186
app.bonus.ly	unknown	unknown	No data	No data	9.2 kB	308 kB	104.18.11.197
js.hs-scripts.com	2571	2016-07-11	2016-08-09	2024-04-19	367 B	1.5 kB	104.16.140.209
recognition-production-cdn-aws.bonus.ly	unknown	2012-01-01	2022-07-19	2023-11-07	12 kB	4.8 MB	104.18.11.197
region1.analytics.google.com	unknown	1997-09-15	2022-03-17	2024-04-19	1.5 kB	750 B	216.239.34.36
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-04-19	1.2 kB	551 kB	142.250.74.168
static.cloudflareinsights.com	1294	2019-08-30	2019-09-24	2024-04-18	466 B	32 kB	104.16.80.73
www.google.com	7	1997-09-15	2015-05-10	2024-03-23	4.9 kB	522 kB	142.250.74.164

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-19	medium	app.bonus.lyle-touch-icon-180x180.png	Sinkholed

ThreatFox

No alerts detected

JavaScript (59)

	URL	Size	First Seen	Last Seen
	recognition-production-cdn-aws.bonus.ly/packs/js/484-5415322c7fe6f1693f3c.js	2.1 MB	2024-04-19	2024-05-02
Pretty URL recognition-production-cdn-aws.bonus.ly/packs/js/484-5415322c7fe6f1693f3c.js IP 104.18.11.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 15:50:55 Last Seen2024-05-02 19:54:28 Times Seen3 Hash 053134f21a6430ed38fb02a973a3596c e2e02c6ded63bf6de28bb674a6d98f5263e4b237 c34b30165d42c731365739c6b6e08197c3d8668cc024a2f6a78d0aa2dcbdb62c Loading...

	www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG	0 B	2023-03-07	2024-05-02
Pretty URL www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-02 22:13:57 Times Seen37284756 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	bonus.ly/users/sign_in_start	871 B	2024-04-19	2024-05-02
Pretty URL bonus.ly/users/sign_in_start IP 104.18.11.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-19 15:50:55 Last Seen2024-05-02 20:03:29 Times Seen4 Hash 79fa86a0b60e999e3a1034cd9f1938bb 6b580c780d6f659ef4d8b26eb7577d3d9deb7b5e bb680bfee58fb10dbf3cac4c4f9e41ba2c7099350052565835c4a3509f5dc57a Loading...

	js.hs-scripts.com/1973303.js	2.4 kB	2024-04-19	2024-04-19
Pretty URL js.hs-scripts.com/1973303.js IP 104.16.140.209 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 15:50:55 Last Seen2024-04-19 15:50:55 Times Seen1 Hash 4f693dd4ad341e9c9cfdaea51320c68a 3499ac9023416c4cd379dad1fafc94c989b0c023 250aab5c9693fdac8a7851e98b0e444868dc5e713b97f0a29315660f78a2d9ce Loading...

	js.hs-banner.com/v2/1973303/banner.js	84 kB	2024-04-19	2024-05-02
Pretty URL js.hs-banner.com/v2/1973303/banner.js IP 104.18.34.229 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 15:50:55 Last Seen2024-05-02 20:03:29 Times Seen4 Hash efb2817c0ebef304d14ffbc93c93de51 b82ffc3d8e6e122dc993afba2cd0b643a9616fbc 0031c27c46bc7be2527850eb6f03645bf6c91332fd8afe1b33a861d0a19646e4 Loading...

	recognition-production-cdn-aws.bonus.ly/packs/js/runtime-f3c8b02644462af8959e.js	2.5 kB	2024-04-19	2024-05-02
Pretty URL recognition-production-cdn-aws.bonus.ly/packs/js/runtime-f3c8b02644462af8959e.js IP 104.18.11.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 15:50:55 Last Seen2024-05-02 19:54:29 Times Seen3 Hash 2f8215cae8847a8df629cff805b784f1 47f5e8a0ff2fb798428c9b8d9bf32a57a36ea83f fa33e2a32304d7c5f075c9e5d46bfa92521caff006f7441a454e76193b9bab22 Loading...

	www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js	518 kB	2024-04-16	2024-04-24
Pretty URL www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js IP 142.250.74.99 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 08:39:13 Last Seen2024-04-24 17:56:53 Times Seen2481 Hash 8326c23d6b3eed35bc3e62f3294587fd edda17e74e53e85073e5eac9cb6be2163dbfa23c 57f03d3ba66117edc152646341120dd3a1d7d71b9a98a3723af5a8ae61bcb3ab Loading...

	js.hs-scripts.com/1973303.js	2.5 kB	2024-04-19	2024-04-19
Pretty URL js.hs-scripts.com/1973303.js IP 104.16.140.209 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 15:50:55 Last Seen2024-04-19 15:50:58 Times Seen2 Hash d6913e388845da223e47f012afb196f8 abf700cd3ecf0631fc72a028805ce824b087de63 a8b1c8250a4bb58fc797cf52ddd96bdba5e310a0197124196077d4c6ab14eb15 Loading...

	static.cloudflareinsights.com/beacon.min.js/v55bfa2fee65d44688e90c00735ed189a1713218998793	19 kB	2024-04-17	2024-05-02
Pretty URL static.cloudflareinsights.com/beacon.min.js/v55bfa2fee65d44688e90c00735ed189a1713218998793 IP 104.16.80.73 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 04:05:01 Last Seen2024-05-02 17:09:07 Times Seen1485 Hash 3be93fd15d2f7dee2fc0c8981c6fa5c6 8cd88c36fad3e96641dbc4d781f5ddbe5123312f 17106bf803d42bcf2f2bdf778ece084d3f91c68e7ea41dae7bff61fefa573dee Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-05-02
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-02 22:13:02 Times Seen343685 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	bat.bing.com/p/insights/s/0.7.31	35 kB	2024-04-16	2024-04-24
Pretty URL bat.bing.com/p/insights/s/0.7.31 IP 204.79.197.237 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 18:49:43 Last Seen2024-04-24 02:01:06 Times Seen51 Hash 714414d8f323460d6a8187161a8b77eb c8d90ade715d2878ac79bfa8576e15ff217a2df8 fc0e5bdf4287f4e976558d72d9e58269b0d4261b5a23570acb065a26d13ff9f0 Loading...

	js.hsadspixel.net/fb.js	6.3 kB	2024-04-17	2024-04-19
Pretty URL js.hsadspixel.net/fb.js IP 104.17.223.152 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 23:24:05 Last Seen2024-04-19 15:50:55 Times Seen31 Hash af6b1be17376533273533217c0a71f6a a43d53fd2910cb1314f94b8342a79a3da88c4dd6 fd884a8d1c58f106fc1a0e94ba23a306a04cb6289baf56f96880e3900c1938ab Loading...

	bat.bing.com/bat.js	46 kB	2024-03-01	2024-05-02
Pretty URL bat.bing.com/bat.js IP 204.79.197.237 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-01 02:46:32 Last Seen2024-05-02 22:13:05 Times Seen4148 Hash 72bca04fd669eb89fc65d59052d0fc00 27e60aef86f0cb1b2f6b6ed9df9a4e3ba88efd21 823804a7807864b44093a3843788f4cd076e89cf4a6fdeb8d153ae5c2c2df721 Loading...

	code.jquery.com/jquery-3.6.0.min.js	90 kB	2023-03-07	2024-05-02
Pretty URL code.jquery.com/jquery-3.6.0.min.js IP 151.101.194.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-05-02 22:04:12 Times Seen265108 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG&co=aHR0cHM6Ly9ib251cy5seTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=enjfjo3dob0b	69 B	2023-03-07	2024-05-02
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG&co=aHR0cHM6Ly9ib251cy5seTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=enjfjo3dob0b IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:05 Last Seen2024-05-02 21:45:15 Times Seen100537 Hash 45ecf7458f42da80ac248ad42d610372 a5b3edf8328769bc754e6e616a957ceed4fdadd7 75867e75b209895995014b43c3d711476e3437481e5fbec91a4da674302558bf Loading...

	www.google.com/js/bg/RWTT3oxVpjnMak3qs5vv7tg5xSkq7YqXMGNs3aBXMhQ.js	18 kB	2024-04-12	2024-04-22
Pretty URL www.google.com/js/bg/RWTT3oxVpjnMak3qs5vv7tg5xSkq7YqXMGNs3aBXMhQ.js IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-12 14:56:36 Last Seen2024-04-22 17:00:49 Times Seen620 Hash a0b566c1ba416a3899181051b4e22648 6e24d55d8094a8e96bbcdb2c8b2baec42ad59128 4564d3de8c55a639cc6a4deab39befeed839c5292aed8a9730636cdda0573214 Loading...

	bonus.ly/users/sign_in_start	154 B	2023-03-26	2024-05-02
Pretty URL bonus.ly/users/sign_in_start IP 104.18.11.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-26 01:59:08 Last Seen2024-05-02 20:03:29 Times Seen7 Hash e42075e376632ee9a909abd37643f309 587bf677890eff5dbe9c425a40753df484a0ec2a 196f87453ba77b4bd5cf0c06402ff6f6cf40c6ef4fb9434c795fd798b3af3a14 Loading...

	bonus.ly/users/sign_in_start	359 B	2024-04-19	2024-05-02
Pretty URL bonus.ly/users/sign_in_start IP 104.18.11.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-19 15:50:55 Last Seen2024-05-02 20:03:29 Times Seen4 Hash 82c5d5ef3891ce078f44a160a663064d f3a9322a89722e3f47d698123b229be9e8c91d65 e2f586463b048cb3adee1ccbab0200f80ade07f650ff6d2787f8c507962c3290 Loading...

	js.hsleadflows.net/leadflows.js	564 kB	2024-04-03	2024-05-02
Pretty URL js.hsleadflows.net/leadflows.js IP 104.18.138.17 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-03 12:27:47 Last Seen2024-05-02 22:09:00 Times Seen223 Hash d252299cef5b9176cf0435e72e0baeeb 968a62d85c0d2e1322c27631422dfd196a427865 efb5dc6835aeb8a8e1615ca49df1828cfaf708dc73651c5f1c651f2d2ab3907a Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG&co=aHR0cHM6Ly9ib251cy5seTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=enjfjo3dob0b	37 kB	2024-04-19	2024-04-19
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG&co=aHR0cHM6Ly9ib251cy5seTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=enjfjo3dob0b IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-19 15:50:55 Last Seen2024-04-19 15:50:55 Times Seen1 Hash a438ae7d2cc8814ed5cb48f88d350ca4 f29aba70b880f6ec7bd39345eaf92151f5614f8c f00f7b0daebf1cae5785cfc17932aa81cd27518ab6a5165ff6bc04da2828ed7a Loading...

	bonus.ly/users/sign_in_start	2.4 kB	2024-04-19	2024-05-02
Pretty URL bonus.ly/users/sign_in_start IP 104.18.11.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-19 15:50:55 Last Seen2024-05-02 20:03:29 Times Seen4 Hash 6e0a9403f7309eec2bb799a36d459aa0 632cf6b2c1c3738a57c15402d37b10f08a4af699 93fae23299b13e190cc5c712b8b6b0d92507aa1c74a1ab8364cf91623a322292 Loading...

	bat.bing.com/p/insights/t/17372234	741 B	2024-04-19	2024-04-19
Pretty URL bat.bing.com/p/insights/t/17372234 IP 204.79.197.237 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 15:50:55 Last Seen2024-04-19 15:50:55 Times Seen1 Hash ce3a900b9ed83cd791ce47d723747c14 08ed97bfdf69e5852ec085a4fdf0c90cb484514d 75750f86c24f6d24883b85469f351508398225fb76fb422678d2a397f2b14e5b Loading...

	recognition-production-cdn-aws.bonus.ly/assets/vendor-196a2a97844c9f71dc83ffd159ef261b17b8f5ed52cd6be4110088abea2903f3.js	1.1 MB	2024-04-19	2024-05-02
Pretty URL recognition-production-cdn-aws.bonus.ly/assets/vendor-196a2a97844c9f71dc83ffd159ef261b17b8f5ed52cd6be4110088abea2903f3.js IP 104.18.11.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 15:50:55 Last Seen2024-05-02 19:54:30 Times Seen3 Hash 67a0ca029635ee0960efc4ba48706d2a 2e5a9fdca770941d50ff02a04060cc6abb10518d 24dbc7b305be18e9e042c49a39f4cd365b90ceff91847f4479c74292d4491c88 Loading...

	recognition-production-cdn-aws.bonus.ly/packs/js/application-68426ef476247fdf3da5.js	228 B	2024-04-19	2024-05-02
Pretty URL recognition-production-cdn-aws.bonus.ly/packs/js/application-68426ef476247fdf3da5.js IP 104.18.11.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 15:50:56 Last Seen2024-05-02 19:54:30 Times Seen4 Hash 631f0b84f35c323c9e9f9b788b964da4 c8fd38440d8be411834539185bb35c23a0730366 4d556416926b93085d5512f9ab81dbf3cf7a4f64ecddafbc5f6cc14e155dfe1f Loading...

	recognition-production-cdn-aws.bonus.ly/assets/funnel_in-bd4d605ee03324548cc405a6ef7410c4ed0dfba304c4201acdd475f2033a4104.js	93 kB	2024-04-19	2024-05-02
Pretty URL recognition-production-cdn-aws.bonus.ly/assets/funnel_in-bd4d605ee03324548cc405a6ef7410c4ed0dfba304c4201acdd475f2033a4104.js IP 104.18.11.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 15:50:56 Last Seen2024-05-02 19:54:31 Times Seen6 Hash ba58f73511d358b2929c64838687ed0a 48bd27243b533345ec1278a119102a03911b352a 0205964603d7a7fb880107ea47e0b48ed030e175fc4ea43fb52d92a3e21fb386 Loading...

	unknown	2.9 kB	2023-08-09	2024-05-02
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-09 20:18:34 Last Seen2024-05-02 20:03:29 Times Seen13 Hash f16f41748f85955a55e2d58f96bcd7b3 c35d7d0ca73e6f9090f97e7989df9244f6ba3922 a4f14b8f55388bf251472053cb39681f2c7b2e0d6740126ed69380d5a258afeb Loading...

	bonus.ly/users/sandbox%20eval%20code	147 B	2023-04-11	2024-05-02
Pretty URL bonus.ly/users/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-02 22:13:02 Times Seen344191 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	recognition-production-cdn-aws.bonus.ly/packs/js/496-9bc224a6b28c248414c9.js	3.6 MB	2024-04-19	2024-04-19
Pretty URL recognition-production-cdn-aws.bonus.ly/packs/js/496-9bc224a6b28c248414c9.js IP 104.18.11.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 15:50:56 Last Seen2024-04-19 15:50:58 Times Seen2 Hash 4f4546a278ff32b5db52e510e82e23b8 5b47297ad5e04aa6b1a1066e1668eb438fa6c6c9 296e75f399c84058091c4d7e39fd6b0b377c31482fd96c31ca2f5b0af99873b6 Loading...

	grow.clearbitjs.com/api/pixel.js?v=1713534614027	100 B	2023-09-04	2024-05-02
Pretty URL grow.clearbitjs.com/api/pixel.js?v=1713534614027 IP 216.24.57.252 ASN #397273 RENDER Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-04 00:08:50 Last Seen2024-05-02 20:03:30 Times Seen128 Hash 68234aee269e33a1d420349be29ed3bd 33724eaf48ae22a8bdc532da6ecb2685e4ca61e9 6c4bdad53042e2bd6e5a231bfcd66d19dc33f507edc2b847ff3c58aca74ff138 Loading...

	bonus.ly/users/sign_in_start	1.3 kB	2024-04-19	2024-05-02
Pretty URL bonus.ly/users/sign_in_start IP 104.18.11.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-19 15:50:56 Last Seen2024-05-02 20:03:29 Times Seen4 Hash 6b03e2b6bc3686ab5740aa49c8f44751 e1d1df2e17aaaf316406f3dd6f8af0f2f12e6dc8 35c266a5717d5074b6459fd176a461f2eb83c83470fcfa7f00bcbe60b60ec754 Loading...

	bat.bing.com/p/action/17372234.js	1.4 kB	2024-04-19	2024-05-02
Pretty URL bat.bing.com/p/action/17372234.js IP 204.79.197.237 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 15:50:56 Last Seen2024-05-02 20:03:29 Times Seen4 Hash 6a06e41ae041b32177d0ec0468ad53b7 f29e44c87c1fcfcb7791d5d1781863a15f33dd05 d3300fcf1f6e1d505a54720a04eb23c0ea7e98599c8ba2ff8fa85bf43a2d679c Loading...

	ajax.googleapis.com/ajax/libs/jqueryui/1.12.1/jquery-ui.min.js	254 kB	2023-03-07	2024-05-02
Pretty URL ajax.googleapis.com/ajax/libs/jqueryui/1.12.1/jquery-ui.min.js IP 142.250.74.106 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:22 Last Seen2024-05-02 20:12:33 Times Seen5687 Hash 0a497d4661df7b82feee14332ce0bdaf f77d06b0c5dedef1f1db051a44a2b0d7f233ba3a 55accff7b642c2d7a402cbe03c1494c0f14a76bc03dee9d47d219562b6a152a5 Loading...

	www.googletagmanager.com/gtag/js?id=G-LYH0R10SEC&l=dataLayer&cx=c	284 kB	2024-04-19	2024-04-19
Pretty URL www.googletagmanager.com/gtag/js?id=G-LYH0R10SEC&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 15:50:56 Last Seen2024-04-19 15:50:58 Times Seen2 Hash 28e5c629de90f2e5f0e8fa79aa5fb217 af76f401e3c219288a8d79f2eee70f6e8c4f3ec4 ccd0b727ca609c8f5a5020640fd316d47f95a731a1c5bd9449709cea2a6f3247 Loading...

	www.googletagmanager.com/gtag/destination?id=AW-991155754&l=dataLayer&cx=c	252 kB	2024-04-19	2024-04-19
Pretty URL www.googletagmanager.com/gtag/destination?id=AW-991155754&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 15:50:56 Last Seen2024-04-19 15:50:58 Times Seen2 Hash b6a71db4d456810d64b1e90b16e32750 2bbcf905607cc601153541533cfd8bd3f034dfb0 cf14ffaafe3afbfebd07f167888e7341da106cd32c9a6d678bb1d9746a544d18 Loading...

	bonus.ly/users/sign_in_start	25 B	2024-04-19	2024-05-02
Pretty URL bonus.ly/users/sign_in_start IP 104.18.11.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-19 15:50:56 Last Seen2024-05-02 20:03:29 Times Seen4 Hash 36810b4b59e69de9e7ce58e28f026b4f 729e435cc30b2e9863b7c0fcb4c280e3b4b7f006 fab0e9f9e5745fbe23c4fdd979824b6a6967aefc1d5ca23b33d3f589f96020d5 Loading...

	unknown	422 B	2024-04-19	2024-05-02
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 15:50:57 Last Seen2024-05-02 20:03:29 Times Seen4 Hash b4585b9512ac08a5b4e61f199f28b1c2 d4ad0f90dcd9a381c279ca27cea6864f3fd7c439 f18cc556ba661cde594c932beb486fdf767c22499a48eea01e9c3e1ae4b109a2 Loading...

	unknown	260 B	2024-04-19	2024-05-02
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 15:50:57 Last Seen2024-05-02 20:03:29 Times Seen4 Hash 98a4a12f8e23b23ea65b1cd3cb9b4d61 80dc7aea653466e680738dbdbbe9d2893d1969e1 9c743965ba0bcc3d75ecb09109a382546356dd910bf65002b6b2bfe11f76027a Loading...

	bonus.ly/users/sign_in_start	125 B	2024-04-19	2024-05-02
Pretty URL bonus.ly/users/sign_in_start IP 104.18.11.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-19 15:50:57 Last Seen2024-05-02 19:54:29 Times Seen3 Hash a894953f51e512551c2b3c34cd9b0118 99696bc9a38432f843dcffd031eb07e956a528e1 5f4c8ad216e3a4bcde592ee7ce5a5d98e3e7583e6d0f18503535b28e5df5f734 Loading...

	unknown	417 B	2024-04-19	2024-05-02
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 15:50:57 Last Seen2024-05-02 20:03:29 Times Seen4 Hash 7fee752cbea90a071da2a0234f636295 99dcb81faa6cfcd9f44d89fdf4f57c8925d916e6 44a1c31c808bf8c11498272bb1d5a3ae46bca516aac10b15a62bb80f4af998e9 Loading...

	unknown	200 B	2023-03-07	2024-05-02
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:50 Last Seen2024-05-02 20:03:29 Times Seen83 Hash bafc5b0b0a2206743d62227fc9d8711a b9c2e0bde5b2d77c7ed09d71b4194cd90f975a5c 015ed3189f153691f38c39a380ab0a604ac8bf8eb8cf88d8029db74807e86ee7 Loading...

	unknown	197 B	2023-03-07	2024-05-02
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:52 Last Seen2024-05-02 20:03:29 Times Seen1798 Hash 33da6fbd440964f02ed4bfe1d0919874 7b2a563fe1eabd7c1b7caafd938e23c622105075 e27c41c2f1adae8906364a83d8ec4eb7c634ecfedc6891e4d34b06c233581792 Loading...

	bonus.ly/users/sign_in_start	961 B	2024-04-19	2024-05-02
Pretty URL bonus.ly/users/sign_in_start IP 104.18.11.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-19 15:50:57 Last Seen2024-05-02 19:54:29 Times Seen3 Hash a90354bb26bf4d136eeb529db814dd22 063ca8e95f27653c44734041ec89a784ed24fd72 68b118fd1f7d21ad12ab89149eee1e3f418ee01309219109b6d0688c8d68b33a Loading...

	recognition-production-cdn-aws.bonus.ly/packs/js/users-8cfe9e5be42693d3ff55.js	635 B	2024-04-19	2024-05-02
Pretty URL recognition-production-cdn-aws.bonus.ly/packs/js/users-8cfe9e5be42693d3ff55.js IP 104.18.11.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 15:50:57 Last Seen2024-05-02 19:54:29 Times Seen3 Hash 10fcd1e7828e2424b7bcbd716b42474e 58986a7ebd263b56f845991ee9b6d859759ec0a3 9befa7d5f4293df1fc91ee774ff2b0e0ed097dbb20e9b4e77def2bad3ad2ef3e Loading...

	recognition-production-cdn-aws.bonus.ly/assets/application-47f7a660947558065375643961243529f2cae4f0a7b6492482e87f56877a71ff.js	337 kB	2024-04-19	2024-04-30
Pretty URL recognition-production-cdn-aws.bonus.ly/assets/application-47f7a660947558065375643961243529f2cae4f0a7b6492482e87f56877a71ff.js IP 104.18.11.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 15:50:57 Last Seen2024-04-30 17:45:24 Times Seen4 Hash 0a1be4bc67782cfd8cfafe954f8fcab9 defddb6f92b7b8b483abc1f691d3c6e7d010ca6e 4900c433a7b8b0032cebf5013dcad73fcd885cb56e106aa6bfe36a376fe03106 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-N5K2M3S	366 kB	2024-04-19	2024-04-19
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-N5K2M3S IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 15:50:57 Last Seen2024-04-19 15:50:57 Times Seen1 Hash b46ae2af142ec1eb14e5d670d5037319 433288710c62a5441b5cef3568526e134a5cb6ae 098634972641c9564bbacc12f4d5f329ea61e5aa41d2d2fbbde1430a0fe0649e Loading...

	unknown	312 B	2024-04-19	2024-05-02
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 15:50:57 Last Seen2024-05-02 20:03:29 Times Seen4 Hash a6b6c572697391e13777af3b14c2c666 4a62f363a3fae6da42072f0b9b2c2f369cc157b3 d759dbb9d94b0b25db4d653eedc3b18fe0d154fa7f35bb7e2556ff084495711c Loading...

	www.google.com/js/bg/jxnhk5jmHgJtz4Dlh1rT_zslgZiPJPGjuH1uymS8TXw.js	18 kB	2024-04-19	2024-04-29
Pretty URL www.google.com/js/bg/jxnhk5jmHgJtz4Dlh1rT_zslgZiPJPGjuH1uymS8TXw.js IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 09:16:41 Last Seen2024-04-29 22:07:01 Times Seen535 Hash 96dda94f567100c20e439dfefadb0776 1a7d2dc18f5c6ebcce4fcc8797648711d25cf548 8f19e19398e61e026dcf80e5875ad3ff3b2581988f24f1a3b87d6eca64bc4d7c Loading...

	bonus.ly/users/sign_in_start	339 B	2024-04-19	2024-05-02
Pretty URL bonus.ly/users/sign_in_start IP 104.18.11.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-19 15:50:57 Last Seen2024-05-02 19:54:29 Times Seen3 Hash 94b7c09d098adf968035b4944e82d680 074f2a4c8e6f7085b83c7a98b6320b919818094a 2288a340b6719f105b329ae49e0cf1b7f2ba63d3d33fa76391bc129f2b6a1c25 Loading...

	recognition-production-cdn-aws.bonus.ly/packs/js/124-25e43b36d0ead4768804.js	99 kB	2024-04-19	2024-05-02
Pretty URL recognition-production-cdn-aws.bonus.ly/packs/js/124-25e43b36d0ead4768804.js IP 104.18.11.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 15:50:57 Last Seen2024-05-02 19:54:30 Times Seen6 Hash 62933eeb8f08628fefd6a1b63563dbe9 16b3b4b58cf79a6805bf6ce009ff6addbca782dc df56aae28aaa1d966e1bf34dd301238c6444a4672da9e779c75ef508f4727ab5 Loading...

	www.google.com/recaptcha/api.js?onload=recaptchaLoaded	908 B	2024-04-19	2024-04-19
Pretty URL www.google.com/recaptcha/api.js?onload=recaptchaLoaded IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 15:50:57 Last Seen2024-04-19 15:50:57 Times Seen1 Hash d39d36f1cb8027a88ec16762f695f6e3 4131f341c8fa2777d0d33e09336245203e02c6ea 2a78c2ea4f03d93723a9081f1aab176456035a055f1124304b54ee05fa1b2dcb Loading...

		Size	First Seen	Last Seen
	#1 Eval - c0687bb6dffb4f3defe731864f4e4ed8	20 kB	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 15:50:57 Last Seen2024-04-19 15:50:57 Times Seen1 Hash c0687bb6dffb4f3defe731864f4e4ed8 597753f1d34bc78c357ab436cb65a83e34112442 14b8e77334b2b1a197366a0e2b5d2cf597333b92685fcf8cb6d28c259e070686 Loading...

	#2 Eval - d7f3a36c9e4057af149c4a67cd9cea23	62 B	2024-04-12	2024-04-22
Pretty Observations First Seen2024-04-12 14:56:36 Last Seen2024-04-22 17:00:48 Times Seen288 Hash d7f3a36c9e4057af149c4a67cd9cea23 df510c4d9191b310a86d88275eb2d8af466e18d3 4029caf99140b5e2c374d4491d8d6ba2877fad979f34a74e632827619f4de10e Loading...

	#3 Eval - b286affcbdbe9c998aaf983a1e355e14	19 kB	2024-04-19	2024-04-19
Pretty Observations First Seen2024-04-19 15:50:57 Last Seen2024-04-19 15:50:57 Times Seen1 Hash b286affcbdbe9c998aaf983a1e355e14 88def69c5de919f7f6122fc6912bedf78b691304 8cec6bbaf9e88c87c18e72fdb9b34f3e95ecf64017d40494f81c4c752f593c65 Loading...

	#4 Eval - d82b93833a9d4586c944a6735ea648a2	22 B	2024-04-12	2024-04-22
Pretty Observations First Seen2024-04-12 14:56:36 Last Seen2024-04-22 17:00:48 Times Seen290 Hash d82b93833a9d4586c944a6735ea648a2 a3c2823ad7981da69eeffcd799dba3d4ec0111b7 1e06a833698d8b74eecd9c2675c499bb7b164e8183e44d22aca379fb9dec47ae Loading...

	#5 Eval - 7684a041dbeafc5914518a2ccd7cf237	22 B	2024-04-12	2024-04-22
Pretty Observations First Seen2024-04-12 14:56:36 Last Seen2024-04-22 17:00:48 Times Seen289 Hash 7684a041dbeafc5914518a2ccd7cf237 53a194ab0bdd334419c8abe23c2d10e52ae41c8f 4c6849fcc9dbf7c86cb2455fa3ab9949ed39dccdbe53813c785fc6a1e40f877f Loading...

	#6 Eval - 53072ab578cceb5b28e1589a4df51b11	22 B	2024-04-19	2024-04-29
Pretty Observations First Seen2024-04-19 09:16:42 Last Seen2024-04-29 22:07:00 Times Seen250 Hash 53072ab578cceb5b28e1589a4df51b11 2db3ebb55219372ec3eb73a5824205a6447f1a48 5d1d26c4a76a199fde80287910c906cc46cc89ebecaf5569458fd3dee85c475b Loading...

	#7 Eval - 0b743a48549dfe6038648fbe052dc9e8	64 B	2024-04-19	2024-04-29
Pretty Observations First Seen2024-04-19 09:16:42 Last Seen2024-04-29 22:07:00 Times Seen253 Hash 0b743a48549dfe6038648fbe052dc9e8 3ca866d2b737d3f6d2c3632e37af0c170bab816b bcd3bcf74701095809373df486712ba6ed63bfac0a35738dcb9ebd951628fe69 Loading...

	#8 Eval - 787d3f0e560f601b183f398c58135e39	22 B	2024-04-19	2024-04-29
Pretty Observations First Seen2024-04-19 09:16:42 Last Seen2024-04-29 22:07:00 Times Seen254 Hash 787d3f0e560f601b183f398c58135e39 e33b69391c5892259580af47d5173425fa7fec82 ad3ee3243c4eb1b6ff972a7c426fe8160b8871facefeb7b2f454376be27e1e0c Loading...

		Size	First Seen	Last Seen
	#1 Write - fe364450e1391215f596d043488f989f	15 B	2023-03-07	2024-05-02
Pretty Observations First Seen2023-03-07 01:02:47 Last Seen2024-05-02 21:12:35 Times Seen14442 Hash fe364450e1391215f596d043488f989f d1848aa7b5cfd853609db178070771ad67d351e9 c77e5168dffda66b8dc13f1425b4d3630a6656a3e5acf707f4393277ba3c8b5e Loading...

HTTP Transactions (134)

URL IP Response Size

app.bonus.ly/static/js/1.9c192e18.chunk.js

104.18.11.197

200 OK

7.8 kB

URL GET HTTP/3
app.bonus.ly/static/js/1.9c192e18.chunk.js
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JavaScript source, ASCII text, with very long lines (19523), with no line terminators
Size
7.8 kB (7801 bytes)
Hash
212cd9d2d99fd92dd9764d9312ed3380
37969211588cc4ebd2c66f3e57cc00de3f26ed49
26cdd85d294abd0306d2e0049197aba7beb8708fb06cff6d9e011620befcaa0a

HTTP Headers

GET /static/js/1.9c192e18.chunk.js HTTP/1.1
Host: app.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.bonus.ly/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=19571
etag: W/"c58a79c8199f90b757919d50002f19fd"
last-modified: Wed, 17 Apr 2024 16:48:13 GMT
x-amz-id-2: dv6xxbu6YqghKjut0LiBk9H3G8KB6a+bBkhMkmdI3Ktv1Z3e8EPGwteWf3Tjz+JcA+PrefEsImw=
x-amz-request-id: 8213K4A3Q0BB5F9Y
cf-cache-status: HIT
age: 2240
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cba1b46b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

assets.trybento.co/bento-embed.js

143.204.55.17

200 OK

991 B

URL GET HTTP/2
assets.trybento.co/bento-embed.js
IP
143.204.55.17:443
ASN
#16509 AMAZON-02

Requested by
https://app.bonus.ly/
Certificate
IssuerAmazon
Subjectassets.trybento.co
FingerprintFC:6C:28:1E:7A:E7:44:CE:46:83:DE:D0:6A:C0:9C:24:7D:09:21:7E
ValidityTue, 05 Dec 2023 00:00:00 GMT - Thu, 02 Jan 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (990)
Size
991 B (991 bytes)
Hash
ec279ac8bc44b291412b9256b7d3287d
94867cd38cc288d23102058065db3a92e2bf135d
70af1b16761130cdf6e16f07846bb9f534371d6f4a34e76e8612bf732bc4d408

HTTP Headers

GET /bento-embed.js HTTP/1.1
Host: assets.trybento.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
content-length: 991
date: Thu, 18 Apr 2024 16:57:31 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-expose-headers: Access-Control-Allow-Origin
last-modified: Thu, 18 Apr 2024 16:57:26 GMT
etag: "ec279ac8bc44b291412b9256b7d3287d"
x-amz-server-side-encryption: AES256
x-amz-version-id: vU_SKx.48MWmXEEdGn4.oohIhVmDUr34
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6hEWmVJ5oL32dOMkOXfXFxt9b3N3AYLvXz5tqrbcaGcEr5-emuxUXw==
age: 75161
X-Firefox-Spdy: h2

app.bonus.ly/static/js/255.3ae7e0be.chunk.js

104.18.11.197

200 OK

136 kB

URL GET HTTP/3
app.bonus.ly/static/js/255.3ae7e0be.chunk.js
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
136 kB (136230 bytes)
Hash
f2c24570df67bbca7a862a1e448fc155
40afedc695173156e7f356f1ba21c80784fa3bcb
80f1aeb860a2d173fa3df3bf29b2d56d01f6f468d454e9c3e47e387e49b9a345

HTTP Headers

GET /static/js/255.3ae7e0be.chunk.js HTTP/1.1
Host: app.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.bonus.ly/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=348933
etag: W/"5bca70850277a26d716dc48d516bba08"
last-modified: Wed, 17 Apr 2024 16:48:14 GMT
x-amz-id-2: Clb7lOawv1mjeBxUJBGMLEXy6jqAmCpSGrOvLEKiqCktJF3V5z+6klKjiTBZU1Wp3GkDfIH1Uho=
x-amz-request-id: 8219HQG8HZXAQPAS
cf-cache-status: HIT
age: 2240
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cba1b47b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

app.bonus.ly/cdn-cgi/challenge-platform/h/b/jsd/r/876d5cb74eea56b5

104.18.11.197

200 OK

0 B

URL POST HTTP/3
app.bonus.ly/cdn-cgi/challenge-platform/h/b/jsd/r/876d5cb74eea56b5
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/jsd/r/876d5cb74eea56b5 HTTP/1.1
Host: app.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12140
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Referer: https://app.bonus.ly/
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA; path=/; expires=Sat, 19-Apr-25 13:50:11 GMT; domain=.bonus.ly; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbc9dc1b50f-OSL
alt-svc: h3=":443"; ma=86400

app.bonus.ly/logo192.png

104.18.11.197

200 OK

6.3 kB

URL GET HTTP/3
app.bonus.ly/logo192.png
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
RIFF (little-endian) data, Web/P image
Size
6.3 kB (6260 bytes)
Hash
0a5140bcd51e1f830116a539419127b5
8cde056c73c8b97ddc08d2b9676ad135f750f8d0
9f320f9e5b8325718863033e8a797a3ada565e513d963b43c67f0c58d5019ca7

HTTP Headers

GET /logo192.png HTTP/1.1
Host: app.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.bonus.ly/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:12 GMT
content-type: image/webp
content-length: 6260
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=16632
content-disposition: inline; filename="logo192.webp"
etag: "b43d0bb64acde31919cadf4c221ca2e4"
last-modified: Wed, 17 Apr 2024 16:48:13 GMT
vary: Accept
x-amz-id-2: gkW87k11ZOuMO3e7J6edk9GYmLmf38+M2ozO09pmu/IvnInaWjNZ5qV/pv821JvBelKjU6eqzSc=
x-amz-request-id: 9FSEJF6YN03AQTKQ
cf-cache-status: HIT
age: 2240
accept-ranges: bytes
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbd9ed3b50f-OSL
alt-svc: h3=":443"; ma=86400

udon.trybento.co/embed/get-url

3.81.204.83

200 OK

82 B

URL GET HTTP/2
udon.trybento.co/embed/get-url
IP
3.81.204.83:443
ASN
#14618 AMAZON-AES

Requested by
https://app.bonus.ly/
Certificate
IssuerAmazon
Subject*.trybento.co
Fingerprint58:BB:A3:80:7C:B7:C4:0F:96:D3:B4:5F:5C:41:36:A9:38:09:37:A6
ValiditySun, 14 Jan 2024 00:00:00 GMT - Tue, 11 Feb 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
82 B (82 bytes)
Hash
e1cba320dcb191fe54ebba53cd255d29
300b8f69c45b0a3076b762f33953369612d5d077
03a647b10c65a4319f83345833d5a223177e65d75f3de96389e9e053d044e187

HTTP Headers

GET /embed/get-url HTTP/1.1
Host: udon.trybento.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:50:12 GMT
content-type: text/plain
content-length: 82
x-request-id: i8pbnuvfx
access-control-allow-origin: *
content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
x-dns-prefetch-control: off
expect-ct: max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
referrer-policy: no-referrer
x-xss-protection: 0
X-Firefox-Spdy: h2

mfe.bonus.ly/rewards/remoteEntry.js?v=2

104.18.11.197

200 OK

30 kB

URL GET HTTP/3
mfe.bonus.ly/rewards/remoteEntry.js?v=2
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JavaScript source, ASCII text, with very long lines (8314), with no line terminators
Size
30 kB (29731 bytes)
Hash
33d323bf74cc491920914f84a7612402
95c1baea94ea88e14ea68fbf6dead6397787b7b1
680a74521e646db671d07eed2a5f1bf9629754bb95719947bbfe59b620d8a9da

HTTP Headers

GET /rewards/remoteEntry.js?v=2 HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=8354
etag: W/"4c9a1ddb247abef52ed3b11bceb53d77"
last-modified: Thu, 18 Apr 2024 17:42:25 GMT
x-amz-id-2: XZP/OPbQnUymomj1jGy7662CF6FUhnuv4EmYxDNNnGufe1bWxIEvL9tYVllGW6nnXEzzSufyk9Q=
x-amz-request-id: SGXBDS9C9Q6G5W2F
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:41 GMT
cache-control: public, max-age=30
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbb1c3bb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

mfe.bonus.ly/vertical-navbar/remoteEntry.js?v=2

104.18.11.197

200 OK

4.7 kB

URL GET HTTP/3
mfe.bonus.ly/vertical-navbar/remoteEntry.js?v=2
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JavaScript source, ASCII text, with very long lines (7862), with no line terminators
Size
4.7 kB (4724 bytes)
Hash
6cdb168d1ceef18c3a4c25cf76c1cbb9
fbf978c006fe0b50194f6869b135d63d0615faa7
fb997552f87be975eba1c0fe5588206258d8832a8efe615c19ea1ad19088abf5

HTTP Headers

GET /vertical-navbar/remoteEntry.js?v=2 HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=7902
etag: W/"186e8516d8680c630782b14b6b68759d"
last-modified: Wed, 17 Apr 2024 16:48:11 GMT
x-amz-id-2: Qp3As6ikrnNc7sFa/mhlyFVoINzzxWZlfUm0vwcZKcbTnA0ySpOKi1pgn7SF6d4M4+D8znM1aww=
x-amz-request-id: BMQ5GMTKWDJXKTFQ
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:41 GMT
cache-control: public, max-age=30
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbb1c40b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

mfe.bonus.ly/feedback/remoteEntry.js?v=2

104.18.11.197

200 OK

9.2 kB

URL GET HTTP/3
mfe.bonus.ly/feedback/remoteEntry.js?v=2
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JavaScript source, ASCII text, with very long lines (7931), with no line terminators
Size
9.2 kB (9222 bytes)
Hash
1cac0c97d36b34d471ccd5abc92436fa
83ae3112eb355af01fc3151cbc2e5f1c65fefd61
44592705c114a188facabd7b52dba8787123cf7e481980b12b522d5823fcbd75

HTTP Headers

GET /feedback/remoteEntry.js?v=2 HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=7971
etag: W/"6d184a333b22e1fc48a9155590b9e061"
last-modified: Thu, 18 Apr 2024 21:16:40 GMT
x-amz-id-2: Nr+dLPb29d7OvqNbcI8AWcXjWdeAUQkVfu10CyGSsJPYNUYwFlk06xLJIvy5fG0AlQ7mA6srW/w=
x-amz-request-id: 8R8ANHPB5T28AVWC
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:41 GMT
cache-control: public, max-age=30
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbb1c39b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

survey.survicate.com/workspaces/4f96e9087951347a39990d174842e973/web_surveys.js

194.242.11.186

200 OK

10 kB

URL GET HTTP/2
survey.survicate.com/workspaces/4f96e9087951347a39990d174842e973/web_surveys.js
IP
194.242.11.186:443
ASN
#34989 ServeTheWorld AS

Requested by
https://app.bonus.ly/
Certificate
IssuerSectigo Limited
Subject*.survicate.com
FingerprintCD:E8:76:3B:3F:D9:2D:8D:E9:6D:72:DB:39:4E:E7:6B:0A:3F:49:6A
ValidityMon, 18 Sep 2023 00:00:00 GMT - Sat, 31 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (2691), with no line terminators
Size
10 kB (10227 bytes)
Hash
3e1196195442a9c92cc134d260c3aac7
0bb21da078b60e2ac3a1c543c7b8a2a5eb0ce5a1
2f8d137e24ade14dc678d8171c3d81efb99ea35deaf54e87c353976d9cb91306

HTTP Headers

GET /workspaces/4f96e9087951347a39990d174842e973/web_surveys.js HTTP/1.1
Host: survey.survicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 1158558
cdn-uid: 039640c0-4b09-428d-a0ae-513ccdd44502
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=300
etag: W/"3e1196195442a9c92cc134d260c3aac7"
last-modified: Fri, 22 Mar 2024 22:18:43 GMT
x-amz-id-2: Uu8Hb91CxUGuDRILdK/fbzQVvURhFGkf9sgsvU3iyjldNsBVYAuN+HUTkRR9ld4LFoB13oTlxyE=
x-amz-request-id: M0XY17SZ8QAZ88AZ
x-amz-version-id: k4QSIV48N5rnKxB3TqrhwMgTERPEyIEd
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 03/25/2024 07:34:46
cdn-edgestorageid: 830
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
report-to: { "group": "csp-endpoint-survey", "max_age": 10886400, "endpoints": [{ "url": "https://panel-api.survicate.com/_/report_csp/survey" }] }
content-security-policy: default-src 'self' 'unsafe-inline' https://surveys-static.survicate.com; connect-src https://respondent.survicate.com 'self'; img-src https://*; font-src https://surveys-static.survicate.com https://use.typekit.net https://fonts.gstatic.com; report-to csp-endpoint-survey;
cdn-status: 200
cdn-requestid: dfa54d029b2091bd5594d2047f960734
cdn-cache: REVALIDATED
content-encoding: br
X-Firefox-Spdy: h2

mfe.bonus.ly/bonus-feed/remoteEntry.js?v=2

104.18.11.197

200 OK

22 kB

URL GET HTTP/3
mfe.bonus.ly/bonus-feed/remoteEntry.js?v=2
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JavaScript source, ASCII text, with very long lines (9976), with no line terminators
Size
22 kB (21971 bytes)
Hash
13b8c580e7cae374704dedcc28fb8687
1c2713d435ca81a27874744463fe5b9ace84bf06
2a64ba526ca4cfd3dc1863f0970c55bb782c1069fa0f42009c404307e72fc35c

HTTP Headers

GET /bonus-feed/remoteEntry.js?v=2 HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=10016
etag: W/"7b5d132c8fbc76012599cac3b5b638b3"
last-modified: Thu, 18 Apr 2024 21:16:41 GMT
x-amz-id-2: 2lCcj7UoAudyuDU82uRUbUrtUoLZFZdWuKlMMPdLB1rMdSG0U4S934AQYbpBNrwVEC4q4aQHAGw=
x-amz-request-id: SMP27SWPS66H24NQ
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:41 GMT
cache-control: public, max-age=30
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbb1c37b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

mfe.bonus.ly/vertical-navbar/static/js/660.369c08a1.chunk.js

104.18.11.197

200 OK

30 kB

URL GET HTTP/3
mfe.bonus.ly/vertical-navbar/static/js/660.369c08a1.chunk.js
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JavaScript source, ASCII text, with very long lines (4281), with no line terminators
Size
30 kB (29629 bytes)
Hash
57f41a0c4129f012fb32be515caa5b26
22b0a4e01000f6b4dbe45fb1215419fae45d7bb3
5f6bb9dbb0f654a3e0dd7991364fb95a6cf96b435621f37d8e75c2e685f1b44e

HTTP Headers

GET /vertical-navbar/static/js/660.369c08a1.chunk.js HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=4331
etag: W/"7644b6feecd77b91e3349b0cbf9eedd9"
last-modified: Wed, 17 Apr 2024 16:48:13 GMT
x-amz-id-2: ZIBXLiUi46lbZp6rEmbYlZOzXwM8FmXfQ9JyaOzorI1vcP7q/RnLJix4rIyYxYIlOVQA2PUs6H8=
x-amz-request-id: 821BAZ9BYCHARCGE
cf-cache-status: HIT
age: 2239
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbcade7b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

assets.trybento.co/bento-embed-552145ec898233111cc6da60dc9afdabbbeaba64.js

143.204.55.17

200 OK

262 kB

URL GET HTTP/2
assets.trybento.co/bento-embed-552145ec898233111cc6da60dc9afdabbbeaba64.js
IP
143.204.55.17:443
ASN
#16509 AMAZON-02

Requested by
https://app.bonus.ly/
Certificate
IssuerAmazon
Subjectassets.trybento.co
FingerprintFC:6C:28:1E:7A:E7:44:CE:46:83:DE:D0:6A:C0:9C:24:7D:09:21:7E
ValidityTue, 05 Dec 2023 00:00:00 GMT - Thu, 02 Jan 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (21312)
Size
262 kB (262536 bytes)
Hash
3675f19a54b0df1253238e660a33a6ab
117e12cc2bcd2ab5ffff2b59e10378d0944ea6c7
3867ef552ca1395f65c275ed7f21ee605a78db9fad49809ac597bc5252720326

HTTP Headers

GET /bento-embed-552145ec898233111cc6da60dc9afdabbbeaba64.js HTTP/1.1
Host: assets.trybento.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/javascript
date: Thu, 18 Apr 2024 17:08:53 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-expose-headers: Access-Control-Allow-Origin
last-modified: Thu, 18 Apr 2024 16:57:26 GMT
x-amz-expiration: expiry-date="Fri, 03 May 2024 00:00:00 GMT", rule-id="Clean old embed js"
etag: W/"3675f19a54b0df1253238e660a33a6ab"
x-amz-server-side-encryption: AES256
x-amz-version-id: rogXq.cQliOfRwF2_.EKv1lAj3XiWa0H
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -uiKgtyOe7BTCWPGpb_ZD4vZNTDA3V52iHe0Tv9bgSYqU-oY9gLIUA==
age: 74479
X-Firefox-Spdy: h2

bonus.ly/amplitude/features/sdk/v2/vardata?v=0

104.18.10.197

200 OK

0 B

URL GET HTTP/2
bonus.ly/amplitude/features/sdk/v2/vardata?v=0
IP
104.18.10.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /amplitude/features/sdk/v2/vardata?v=0 HTTP/1.1
Host: bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization,x-amp-exp-user
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:50:12 GMT
content-length: 0
access-control-allow-credentials: true
access-control-max-age: 1800
access-control-allow-methods: GET,POST,HEAD
x-amzn-trace-id: Root=1-6622721d-7b2231617260add930c42912
accept-ranges: bytes
age: 1143
x-served-by: cache-iad-kjyo7100025-IAD
x-cache: HIT
x-cache-hits: 170
x-timer: S1713534612.447963,VS0,VE0
vary: Origin,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
cache-control: no-store
access-control-allow-origin: https://app.bonus.ly
access-control-allow-headers: authorization,x-amp-exp-user
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-envoy-upstream-service-time: 2
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=SV.ssb6EbfF6jPFy3Z5AfTFx19vuzX.d9Ej69Wh.xZ4-1713534612-1.0.1.1-hY9moX7aspm7T_eTrc6x.Pms95aJLBrgb.lU44QcROa8r02RxRjSFqa_HSOVvAKpj5Yqp1XDpjK0iNWZ.NSRdg; path=/; expires=Fri, 19-Apr-24 14:20:12 GMT; domain=.bonus.ly; HttpOnly; Secure; SameSite=None
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbf5d01b4f3-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

142.250.74.67

200 OK

47 kB

URL GET HTTP/2
fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 46704, version 1.0
Size
47 kB (46704 bytes)
Hash
30a274cd01b6eeb0b082c918b0697f1e
393311bde26b99a4ad935fa55bad1dce7994388b
88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42

HTTP Headers

GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:14:19 GMT
expires: Wed, 16 Apr 2025 07:14:19 GMT
cache-control: public, max-age=31536000
age: 282953
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

app.bonus.ly/cdn-cgi/rum?

104.18.11.197

204 No Content

0 B

URL POST HTTP/3
app.bonus.ly/cdn-cgi/rum?
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: app.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.bonus.ly/
content-type: application/json
Content-Length: 1029
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA; _dd_s=rum=2&id=904c3bbe-f830-4db7-a62f-830348bfeff1&created=1713534612099&expire=1713535512099
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
date: Fri, 19 Apr 2024 13:50:12 GMT
access-control-allow-origin: https://app.bonus.ly
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 876d5cc14a83b50f-OSL
x-frame-options: DENY
x-content-type-options: nosniff

widget.intercom.io/widget/qoq90gzb

54.230.111.53

200 OK

2.7 kB

URL GET HTTP/2
widget.intercom.io/widget/qoq90gzb
IP
54.230.111.53:443
ASN
#16509 AMAZON-02

Requested by
https://app.bonus.ly/
Certificate
IssuerAmazon
Subject*.intercom.com
Fingerprint84:3F:75:36:86:5B:6C:03:88:CA:23:42:18:14:5B:D4:46:C7:9D:A3
ValidityMon, 15 Jan 2024 00:00:00 GMT - Tue, 11 Feb 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (6952), with no line terminators
Size
2.7 kB (2703 bytes)
Hash
d3eaa06d2c71698d06e7d4326aaae69d
569f74410798fd1271b73fa44fe954a1ba48024e
b6cda272c61430ac2dcacaa227a0ee467e4076ef52a49733e5eacde674c70a90

HTTP Headers

GET /widget/qoq90gzb HTTP/1.1
Host: widget.intercom.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 2703
date: Fri, 19 Apr 2024 13:47:43 GMT
last-modified: Fri, 19 Apr 2024 13:47:40 GMT
etag: "a29fabb76a711e1d92f7ab1d61affaee"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, s-maxage=300, public
content-encoding: gzip
x-amz-version-id: 5XttHh5YRzJS05MK7nlhLLaAUhBM0PIb
accept-ranges: bytes
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: XwIJCd_IQvCGJpE_GnBYNxdCd9U2ursUxm93U8A_iyhbyi55pUIs0w==
age: 149
cross-origin-resource-policy: cross-origin
vary: Origin
X-Firefox-Spdy: h2

js.intercomcdn.com/vendor.3c93d520.js

54.230.111.118

200 OK

200 kB

URL GET HTTP/2
js.intercomcdn.com/vendor.3c93d520.js
IP
54.230.111.118:443
ASN
#16509 AMAZON-02

Requested by
https://app.bonus.ly/
Certificate
IssuerAmazon
Subject*.intercomcdn.com
FingerprintF0:2D:F5:73:71:5F:38:F6:2E:50:83:A3:D4:8A:21:C7:7B:AA:C2:D1
ValidityFri, 01 Dec 2023 00:00:00 GMT - Sun, 29 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65463)
Size
200 kB (199538 bytes)
Hash
c177eaf4151ad6227a05f5cab0bbf9cd
ce143e55432d9bb551e979e363b04bd946b95517
435cb0f1190cd35b8b97f5880fc476af842e6c25a09f070b5e2d4df237f425f0

HTTP Headers

GET /vendor.3c93d520.js HTTP/1.1
Host: js.intercomcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://app.bonus.ly/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 199538
last-modified: Thu, 18 Apr 2024 16:10:36 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: _1P4lkxjhmXx0cJY0uYIgFac__RqipNe
accept-ranges: bytes
server: AmazonS3
date: Fri, 19 Apr 2024 13:40:24 GMT
cache-control: max-age=31536000, s-maxage=7200, public
etag: "3597ec82a600527eb54fdeaecd5174a4"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 8sOgC_nOTu-C8n6CdbuQb_17F6Ya737QelbbpY9PeIQMbuEPQHEeWg==
age: 589
strict-transport-security: max-age=31536000; includeSubDomains; preload
cross-origin-resource-policy: cross-origin
X-Firefox-Spdy: h2

js.intercomcdn.com/frame.90c03f14.js

54.230.111.118

200 OK

191 kB

URL GET HTTP/2
js.intercomcdn.com/frame.90c03f14.js
IP
54.230.111.118:443
ASN
#16509 AMAZON-02

Requested by
https://app.bonus.ly/
Certificate
IssuerAmazon
Subject*.intercomcdn.com
FingerprintF0:2D:F5:73:71:5F:38:F6:2E:50:83:A3:D4:8A:21:C7:7B:AA:C2:D1
ValidityFri, 01 Dec 2023 00:00:00 GMT - Sun, 29 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65464)
Size
191 kB (190891 bytes)
Hash
dcb7fd87c5bf9842da292002f666dfdf
4fe325e355c4581799000bd9a5270a2e7cf060d9
f2372336ee952db1064c31dafbd67f5a51fa4ffa6d2655ed694d5f34c8365a0e

HTTP Headers

GET /frame.90c03f14.js HTTP/1.1
Host: js.intercomcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://app.bonus.ly/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 190891
date: Fri, 19 Apr 2024 13:47:44 GMT
last-modified: Fri, 19 Apr 2024 13:43:04 GMT
etag: "d27736d99a0f5199eb23172f6c11c447"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, s-maxage=7200, public
content-encoding: gzip
x-amz-version-id: sp3ePOUZHR1seBwqorXSWbt_yzAbd0qT
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: GDFfxEhcPjdzmYTTYf_bGdGt-mtWZQjzyYyEH0Zhl_7nVxzYN_YBzQ==
age: 149
strict-transport-security: max-age=31536000; includeSubDomains; preload
cross-origin-resource-policy: cross-origin
X-Firefox-Spdy: h2

bonus.ly/api/v2/jwt

104.18.10.197

200 OK

0 B

URL OPTIONS HTTP/2
bonus.ly/api/v2/jwt
IP
104.18.10.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/v2/jwt HTTP/1.1
Host: bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-bonusly-source
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:50:12 GMT
content-length: 0
access-control-allow-origin: https://app.bonus.ly
access-control-allow-methods: GET, HEAD, POST, PUT, PATCH, DELETE, OPTIONS
access-control-expose-headers: 
access-control-max-age: 7200
access-control-allow-credentials: true
access-control-allow-headers: x-bonusly-source
x-envoy-upstream-service-time: 5
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=KdQvmvWUOtVRAn9DTq8EcrSNfzcPlmJeOUw0Pcst32k-1713534612-1.0.1.1-fDdrIlMiNRqGouaQ2CD8HT_pNG1MTGOim.VlRcmS6SpNzPtlhoWu.e8L_4cNxXR_bA.21Hm5Xb3iqQqzLRNDFA; path=/; expires=Fri, 19-Apr-24 14:20:12 GMT; domain=.bonus.ly; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbf5d03b4f3-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

mfe.bonus.ly/one-on-ones/remoteEntry.js?v=2

104.18.11.197

200 OK

6.6 kB

URL GET HTTP/3
mfe.bonus.ly/one-on-ones/remoteEntry.js?v=2
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JavaScript source, ASCII text, with very long lines (9125), with no line terminators
Size
6.6 kB (6558 bytes)
Hash
d3c93005bffaaa0a0ee2569310fec606
0820137029ccadc06bc1de590b69db1a65ad1c9f
e3e95ed181b2b2fad16f548a7cfedbed914ecac73e05c27986d4f80a62b43fe9

HTTP Headers

GET /one-on-ones/remoteEntry.js?v=2 HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=9165
etag: W/"154f1ef679800757057d0349efe84479"
last-modified: Thu, 18 Apr 2024 21:16:40 GMT
x-amz-id-2: LFPGJ60809YG7xlP39Sy9j2pRltcxFOQS4M7+IV1J0345/x1s0narIyNc/FvTTvWf438Ar7R2cg=
x-amz-request-id: 8R83M8B92MGWGHVC
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:41 GMT
cache-control: public, max-age=30
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbb1c44b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

app.bonus.ly/favicon.ico

104.18.11.197

200 OK

7.2 kB

URL GET HTTP/3
app.bonus.ly/favicon.ico
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel
Size
7.2 kB (7157 bytes)
Hash
a616a726862176f332ad01305dff39aa
88f1e2f4d0558c783f7c8ad94443cefa136a8219
55910e1f7adc123c5daba3930baf7a7b3335f93d9d67f43d0c871336333dc5a9

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: app.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.bonus.ly/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:12 GMT
content-type: image/vnd.microsoft.icon
x-amz-id-2: lvfiXcAoE1jAnOgUdMQiYH0d9oZOJs5sm2AUgCoOH8oVmFTCREp8oQ8ZxvM4AzPHBWSjcFwjb5I=
x-amz-request-id: 82123E5YNMY6H0H6
last-modified: Wed, 17 Apr 2024 16:48:13 GMT
etag: W/"a616a726862176f332ad01305dff39aa"
cf-cache-status: HIT
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbd9ed4b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A5.13.0%2Capi%3Abeacon%2Cenv%3Aproduction%2Cservice%3Amonarch%2Cversion%3A1.1.0&dd-api-key=pubd81c2cabb32a289ccded45586130bed5&dd-evp-origin-version=5.13.0&dd-evp-origin=browser&dd-request-id=c50bbed2-491b-42fc-aa55-5a3361d61211&batch_time=1713534613202

3.233.147.183

202 Accepted

53 B

URL POST HTTP/2
browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A5.13.0%2Capi%3Abeacon%2Cenv%3Aproduction%2Cservice%3Amonarch%2Cversion%3A1.1.0&dd-api-key=pubd81c2cabb32a289ccded45586130bed5&dd-evp-origin-version=5.13.0&dd-evp-origin=browser&dd-request-id=c50bbed2-491b-42fc-aa55-5a3361d61211&batch_time=1713534613202
IP
3.233.147.183:443
ASN
#14618 AMAZON-AES

Requested by
https://app.bonus.ly/
Certificate
IssuerDigiCert Inc
Subject*.browser-intake-datadoghq.com
Fingerprint90:98:16:E4:5F:36:C7:67:0F:C6:18:49:63:19:73:FC:82:36:C1:4E
ValiditySat, 17 Jun 2023 00:00:00 GMT - Tue, 18 Jun 2024 23:59:59 GMT

File type
JSON text data
Size
53 B (53 bytes)
Hash
9e2c7810fa2381944c977a08f896a05d
9e74a023be0a55a0de375494cf721c00f55608db
96f7088c0d4b636826b4df88149f56e0bed4f8e75c2703a605b8edae012ef921

HTTP Headers

POST /api/v2/rum?ddsource=browser&ddtags=sdk_version%3A5.13.0%2Capi%3Abeacon%2Cenv%3Aproduction%2Cservice%3Amonarch%2Cversion%3A1.1.0&dd-api-key=pubd81c2cabb32a289ccded45586130bed5&dd-evp-origin-version=5.13.0&dd-evp-origin=browser&dd-request-id=c50bbed2-491b-42fc-aa55-5a3361d61211&batch_time=1713534613202 HTTP/1.1
Host: browser-intake-datadoghq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 13692
Origin: null
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 202 Accepted
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: application/json
content-length: 53
dd-request-id: c50bbed2-491b-42fc-aa55-5a3361d61211
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2

app.bonus.ly/cdn-cgi/rum?

104.18.11.197

204 No Content

0 B

URL POST HTTP/3
app.bonus.ly/cdn-cgi/rum?
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: app.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.bonus.ly/
Content-Type: application/json
Content-Length: 452
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA; _dd_s=rum=2&id=904c3bbe-f830-4db7-a62f-830348bfeff1&created=1713534612099&expire=1713535512099
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/3 204 No Content
date: Fri, 19 Apr 2024 13:50:13 GMT
access-control-allow-origin: https://app.bonus.ly
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 876d5cc59f56b50f-OSL
x-frame-options: DENY
x-content-type-options: nosniff

bonus.ly/amplitude/features/sdk/v2/vardata?v=0

104.18.10.197

200 OK

8.3 kB

URL GET HTTP/2
bonus.ly/amplitude/features/sdk/v2/vardata?v=0
IP
104.18.10.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JSON text data
Size
8.3 kB (8297 bytes)
Hash
ce93eaaa3969d7575e5bab2074a7359d
e39e3d07998f7be4e9a9e5f3bc69a9c2d8100a5e
e955691da6997a80c046c2262963b0dc69bfaf731ecd487a6b06173333b3e97f

HTTP Headers

GET /amplitude/features/sdk/v2/vardata?v=0 HTTP/1.1
Host: bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Authorization: Api-Key server-mfqXX6Fo69f5hz8qlLmFOpm3MlXRFhLJ
X-Amp-Exp-User: eyJsaWJyYXJ5IjoiZXhwZXJpbWVudC1qcy1jbGllbnQvMS4xMC4wIiwibGFuZ3VhZ2UiOiJlbi1VUyIsInBsYXRmb3JtIjoiV2ViIiwib3MiOiJGaXJlZm94IDk2IiwiZGV2aWNlX21vZGVsIjoiTGludXgiLCJ1c2VyX3Byb3BlcnRpZXMiOnt9fQ
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:50:12 GMT
content-type: application/json;charset=utf-8
access-control-allow-origin: https://app.bonus.ly
access-control-allow-credentials: true
x-amzn-trace-id: Self=1-66227694-36a31e525f39da59616072de;Root=1-66227694-6076e3214db9a0cf040529bf
age: 0
x-served-by: cache-iad-kjyo7100121-IAD
x-cache: MISS
x-cache-hits: 0
x-timer: S1713534613.724137,VS0,VE90
vary: Origin, Origin
cache-control: no-store
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-envoy-upstream-service-time: 92
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=1Sew8_0KloqmfkJCblMzyH_BP1p6Jtm2hREcIEri3YQ-1713534612-1.0.1.1-GcjBZjxF.5TlNqRAVR4uLSH0qhOaoWe2no1WIGiO5JYbIiiS_HYLRYL7uYZfldcFkeD5cRjvWbrtYNZ_oVtWyw; path=/; expires=Fri, 19-Apr-24 14:20:12 GMT; domain=.bonus.ly; HttpOnly; Secure; SameSite=None
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cc11e8cb4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jqueryui/1.12.1/jquery-ui.min.js

142.250.74.106

200 OK

68 kB

URL GET HTTP/3
ajax.googleapis.com/ajax/libs/jqueryui/1.12.1/jquery-ui.min.js
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
JavaScript source, ASCII text, with very long lines (32073)
Size
68 kB (67948 bytes)
Hash
0a497d4661df7b82feee14332ce0bdaf
f77d06b0c5dedef1f1db051a44a2b0d7f233ba3a
55accff7b642c2d7a402cbe03c1494c0f14a76bc03dee9d47d219562b6a152a5

HTTP Headers

GET /ajax/libs/jqueryui/1.12.1/jquery-ui.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 67948
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 23:02:19 GMT
expires: Tue, 15 Apr 2025 23:02:19 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 312474
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

code.jquery.com/jquery-3.6.0.min.js

151.101.194.137

200 OK

31 kB

URL GET HTTP/2
code.jquery.com/jquery-3.6.0.min.js
IP
151.101.194.137:443
ASN
#54113 FASTLY

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
31 kB (30875 bytes)
Hash
8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e

HTTP Headers

GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15d9d"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 19 Apr 2024 13:50:13 GMT
age: 5992233
x-served-by: cache-lga21931-LGA, cache-hel1410024-HEL
x-cache: HIT, HIT
x-cache-hits: 22, 200081
x-timer: S1713534614.547218,VS0,VE0
vary: Accept-Encoding
content-length: 30875
X-Firefox-Spdy: h2

fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

142.250.74.67

200 OK

47 kB

URL GET HTTP/2
fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 46704, version 1.0
Size
47 kB (46704 bytes)
Hash
30a274cd01b6eeb0b082c918b0697f1e
393311bde26b99a4ad935fa55bad1dce7994388b
88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42

HTTP Headers

GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bonus.ly
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:14:19 GMT
expires: Wed, 16 Apr 2025 07:14:19 GMT
cache-control: public, max-age=31536000
age: 282954
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

142.250.74.67

200 OK

47 kB

URL GET HTTP/2
fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 46704, version 1.0
Size
47 kB (46704 bytes)
Hash
30a274cd01b6eeb0b082c918b0697f1e
393311bde26b99a4ad935fa55bad1dce7994388b
88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42

HTTP Headers

GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bonus.ly
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:14:19 GMT
expires: Wed, 16 Apr 2025 07:14:19 GMT
cache-control: public, max-age=31536000
age: 282954
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

142.250.74.67

200 OK

47 kB

URL GET HTTP/2
fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 46704, version 1.0
Size
47 kB (46704 bytes)
Hash
30a274cd01b6eeb0b082c918b0697f1e
393311bde26b99a4ad935fa55bad1dce7994388b
88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42

HTTP Headers

GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bonus.ly
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:14:19 GMT
expires: Wed, 16 Apr 2025 07:14:19 GMT
cache-control: public, max-age=31536000
age: 282954
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.com/recaptcha/api.js?onload=recaptchaLoaded

142.250.74.164

200 OK

115 kB

URL GET HTTP/2
www.google.com/recaptcha/api.js?onload=recaptchaLoaded
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintCC:CC:99:46:65:6C:77:0B:C8:AA:AD:5E:58:B6:2D:19:B2:C7:0B:06
ValidityMon, 04 Mar 2024 07:19:07 GMT - Mon, 27 May 2024 07:19:06 GMT

File type
gzip compressed data
Size
115 kB (114609 bytes)
Hash
eb7d33c2c19d0466baff8b6ca969918c
9ddb7fb6db886ea5cbc0910ff624333efedb53cb
1284ba5b701b5b3e8678653193ce7c7878d8314b4389623f3e89e8cdc52d508e

HTTP Headers

GET /recaptcha/api.js?onload=recaptchaLoaded HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Fri, 19 Apr 2024 13:50:13 GMT
date: Fri, 19 Apr 2024 13:50:13 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

recognition-production-cdn-aws.bonus.ly/assets/logo-new/logo-sm-a582f5b30d8a1d042357e823f83d484f11d3f4c3d81436b1d4301382a81fd119.svg

104.18.11.197

200 OK

70 kB

URL GET HTTP/3
recognition-production-cdn-aws.bonus.ly/assets/logo-new/logo-sm-a582f5b30d8a1d042357e823f83d484f11d3f4c3d81436b1d4301382a81fd119.svg
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
SVG Scalable Vector Graphics image
Size
70 kB (69693 bytes)
Hash
357cd147e820add1dfbb6f2429f86d5a
e04e8149bd1d4dffa134dfbb10812ad164c61ded
83e9cfe685505dc4e7b07160ed056cbffccc0a499f6c5497667dba75ff69b475

HTTP Headers

GET /assets/logo-new/logo-sm-a582f5b30d8a1d042357e823f83d484f11d3f4c3d81436b1d4301382a81fd119.svg HTTP/1.1
Host: recognition-production-cdn-aws.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Jun 2023 17:20:55 GMT
etag: W/"357cd147e820add1dfbb6f2429f86d5a"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31557600
expires: Fri, 21 Jun 2024 23:20:54 GMT
x-amz-version-id: LsPZbti89TjqcKc75OBsRgrQbCESsngb
x-cache: Hit from cloudfront
via: 1.1 2922b040e786628776b5684dc8791b62.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: D4nD-5crK21L05GtVwoZ16-1BbymepZS004O9QpVHYMxZ1KKwqDJMQ==
vary: Origin, Accept-Encoding
cf-cache-status: HIT
age: 1272951
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cc5efb3b50f-OSL
content-encoding: br

www.googletagmanager.com/gtag/destination?id=AW-991155754&l=dataLayer&cx=c

142.250.74.168

200 OK

87 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/destination?id=AW-991155754&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D
ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT

File type
JavaScript source, ASCII text, with very long lines (4179)
Size
87 kB (87085 bytes)
Hash
b6a71db4d456810d64b1e90b16e32750
2bbcf905607cc601153541533cfd8bd3f034dfb0
cf14ffaafe3afbfebd07f167888e7341da106cd32c9a6d678bb1d9746a544d18

HTTP Headers

GET /gtag/destination?id=AW-991155754&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 19 Apr 2024 13:50:14 GMT
expires: Fri, 19 Apr 2024 13:50:14 GMT
cache-control: private, max-age=900
last-modified: Fri, 19 Apr 2024 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 87085
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.googletagmanager.com/gtag/js?id=G-LYH0R10SEC&l=dataLayer&cx=c

142.250.74.168

200 OK

97 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-LYH0R10SEC&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D
ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT

File type
JavaScript source, ASCII text, with very long lines (5955)
Size
97 kB (96791 bytes)
Hash
28e5c629de90f2e5f0e8fa79aa5fb217
af76f401e3c219288a8d79f2eee70f6e8c4f3ec4
ccd0b727ca609c8f5a5020640fd316d47f95a731a1c5bd9449709cea2a6f3247

HTTP Headers

GET /gtag/js?id=G-LYH0R10SEC&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 19 Apr 2024 13:50:14 GMT
expires: Fri, 19 Apr 2024 13:50:14 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 96791
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

recognition-production-cdn-aws.bonus.ly/assets/lib/emojione.sprites-8638750142717a73b47d5f8ac1e710ec2dc15a7e603faca7b55e885f86c1402a.css

104.18.11.197

200 OK

43 kB

URL GET HTTP/3
recognition-production-cdn-aws.bonus.ly/assets/lib/emojione.sprites-8638750142717a73b47d5f8ac1e710ec2dc15a7e603faca7b55e885f86c1402a.css
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
43 kB (43067 bytes)
Hash
f67da67f30921bec81b6d387e0cc14c0
bb7bd8268c6853261d6b794677421e32ec0367e8
61b356eebaefd79960aeb0e201ecc895ab277c85db03e46ed553a3d68107b338

HTTP Headers

GET /assets/lib/emojione.sprites-8638750142717a73b47d5f8ac1e710ec2dc15a7e603faca7b55e885f86c1402a.css HTTP/1.1
Host: recognition-production-cdn-aws.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: text/css
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=157707
alt-svc: h3=":443"; ma=86400
etag: W/"9d5dcefa79c7cc9530465e131c46f180"
expires: Fri, 21 Jun 2024 23:20:51 GMT
last-modified: Thu, 22 Jun 2023 17:20:52 GMT
vary: Origin, Accept-Encoding
via: 1.1 163a559a90b919cdbd95acf4deecc98a.cloudfront.net (CloudFront)
x-amz-cf-id: SMys7Ajp5bqtf_lH4mzV5tGX13A3jmL1JAVN2dzNHhMhJtV4ZKqsqg==
x-amz-cf-pop: ARN1-C1
x-amz-server-side-encryption: AES256
x-amz-version-id: mmNj3zyO6_qIk1yePVcVvCv9hoLZk79m
x-cache: Hit from cloudfront
cf-cache-status: HIT
age: 1322052
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cc5efa0b50f-OSL
content-encoding: br

recognition-production-cdn-aws.bonus.ly/packs/js/496-9bc224a6b28c248414c9.js

104.18.11.197

200 OK

911 kB

URL GET HTTP/3
recognition-production-cdn-aws.bonus.ly/packs/js/496-9bc224a6b28c248414c9.js
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
911 kB (910973 bytes)
Hash
4f4546a278ff32b5db52e510e82e23b8
5b47297ad5e04aa6b1a1066e1668eb438fa6c6c9
296e75f399c84058091c4d7e39fd6b0b377c31482fd96c31ca2f5b0af99873b6

HTTP Headers

GET /packs/js/496-9bc224a6b28c248414c9.js HTTP/1.1
Host: recognition-production-cdn-aws.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=3562299
alt-svc: h3=":443"; ma=86400
etag: W/"edff5bf7b5340850350620be26aa60e9"
last-modified: Tue, 16 Apr 2024 21:25:41 GMT
vary: Origin, Accept-Encoding
via: 1.1 169057b8db0fb379ccba5daa74680acc.cloudfront.net (CloudFront)
x-amz-cf-id: zdWW6-Ta00igG5hQDsSIv9TaxuWjeWJXZS3WjFUFbciDXy9jSbEk1w==
x-amz-cf-pop: CPH50-C2
x-amz-server-side-encryption: AES256
x-amz-version-id: NlZ.pfBD6aGpEzuIlIL5aKWIHt92ux79
x-cache: Hit from cloudfront
cf-cache-status: HIT
age: 2268
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cc5ffbfb50f-OSL
content-encoding: br

bonus.ly/apple-touch-icon-180x180.png

104.18.11.197

301 Moved Permanently

167 B

URL GET HTTP/3
bonus.ly/apple-touch-icon-180x180.png
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
167 B (167 bytes)
Hash
0104c301c5e02bd6148b8703d19b3a73
7436e0b4b1f8c222c38069890b75fa2baf9ca620
446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f

HTTP Headers

GET /apple-touch-icon-180x180.png HTTP/1.1
Host: bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonus.ly/users/sign_in_start
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA; _special_sauce_session=hjYsSEWCgHqAW%2BOxqJ8sU9P%2BIO6BrsvMxcX7cWYzxK5U33n%2Bn2XXlVmFp1APV5bDVTOSKSqMqra16oslSvv%2BXXDk03x6%2BOh6%2FHVqe8K4hWFCBYqNw%2BuesEdOpsQkUq5Nm7JYLe5H3Cf5wEpDGpjvz7Re%2BpeH6lz7%2FkvAg%2FUVgiAS58dbB5lwURiG6S5gSCRo4CXiMxBVBEYnF%2F%2BSCzP1kVs2Wuj7mJ9Mb41UYIXFBQzZY1LSrjytLKyigq5bou1uHPeUUSCHhA5QH%2BEJb4wp%2B20T5wi3QkpaQ3s5H%2FzPROswqUsg5RfhxALTetYsQ4QDN2n2iLg4skhjKbihSBThufKJnos%3D--qDtMNm0Z0tp5Jo2z--w8wkdJPEXl3ilHR6Np29qA%3D%3D; _gcl_au=1.1.2025866715.1713534614; _ga_LYH0R10SEC=GS1.1.1713534614.1.0.1713534614.60.0.0; _ga=GA1.1.1590843329.1713534614
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 301 Moved Permanently
date: Fri, 19 Apr 2024 13:50:14 GMT
content-type: text/html
content-length: 167
location: https://app.bonus.lyle-touch-icon-180x180.png
cache-control: max-age=3600
expires: Fri, 19 Apr 2024 14:50:14 GMT
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5ccc6f58b50f-OSL
alt-svc: h3=":443"; ma=86400

bat.bing.com/bat.js

204.79.197.237

200 OK

13 kB

URL GET HTTP/2
bat.bing.com/bat.js
IP
204.79.197.237:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerMicrosoft Corporation
Subjectwww.bing.com
Fingerprint77:7D:3C:1C:6F:BE:03:46:50:D9:71:BC:6C:5F:A0:36:1C:35:1F:02
ValidityThu, 18 Apr 2024 02:05:34 GMT - Thu, 27 Jun 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (46429), with no line terminators
Size
13 kB (13261 bytes)
Hash
72bca04fd669eb89fc65d59052d0fc00
27e60aef86f0cb1b2f6b6ed9df9a4e3ba88efd21
823804a7807864b44093a3843788f4cd076e89cf4a6fdeb8d153ae5c2c2df721

HTTP Headers

GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 13261
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 29 Feb 2024 19:58:06 GMT
accept-ranges: bytes
etag: "01b4e9c496bda1:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 9695394FA68E41B19EC3C00638F0E9DD Ref B: OSL30EDGE0507 Ref C: 2024-04-19T13:50:14Z
date: Fri, 19 Apr 2024 13:50:13 GMT
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-LYH0R10SEC&cid=1590843329.1713534614&gtm=45je44h0v870573331z879280153za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=200352989

142.250.74.163

200 OK

42 B

URL GET HTTP/2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-LYH0R10SEC&cid=1590843329.1713534614&gtm=45je44h0v870573331z879280153za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=200352989
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.no
Fingerprint0E:DD:25:54:7B:C3:7F:EC:27:35:B1:EC:15:C4:B7:D2:09:71:3B:68
ValidityMon, 04 Mar 2024 07:26:33 GMT - Mon, 27 May 2024 07:26:32 GMT

File type
GIF image data, version 89a, 1 x 1
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-LYH0R10SEC&cid=1590843329.1713534614&gtm=45je44h0v870573331z879280153za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=200352989 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 19 Apr 2024 13:50:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Open+Sans:400,400italic,600,600italic,700,700italic,800,800italic

142.250.74.106

200 OK

208 kB

URL GET HTTP/3
fonts.googleapis.com/css?family=Open+Sans:400,400italic,600,600italic,700,700italic,800,800italic
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
gzip compressed data, max compression
Size
208 kB (208275 bytes)
Hash
850cc35d99edef655150ea7e95393e35
43dde186749909be4762a271bfa2b0870ac3f168
e436fb06b03907b5a5cc2ffe41e2781a15751804d32ff9640e6ce661278764d9

HTTP Headers

GET /css?family=Open+Sans:400,400italic,600,600italic,700,700italic,800,800italic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 19 Apr 2024 13:50:13 GMT
date: Fri, 19 Apr 2024 13:50:13 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

js.hs-scripts.com/1973303.js

104.16.140.209

200 OK

608 B

URL GET HTTP/2
js.hs-scripts.com/1973303.js
IP
104.16.140.209:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerLet's Encrypt
Subjecths-scripts.com
Fingerprint10:6A:CE:54:F8:1D:59:1E:1F:7D:DB:76:07:FC:FF:1A:7D:70:E9:BD
ValidityMon, 01 Apr 2024 23:22:11 GMT - Sun, 30 Jun 2024 23:22:10 GMT

File type
ASCII text, with very long lines (524)
Size
608 B (608 bytes)
Hash
d6913e388845da223e47f012afb196f8
abf700cd3ecf0631fc72a028805ce824b087de63
a8b1c8250a4bb58fc797cf52ddd96bdba5e310a0197124196077d4c6ab14eb15

HTTP Headers

GET /1973303.js HTTP/1.1
Host: js.hs-scripts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: application/javascript;charset=utf-8
vary: origin, Accept-Encoding
access-control-allow-credentials: true
x-content-type-options: nosniff
access-control-max-age: 3600
x-envoy-upstream-service-time: 9
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: a94436a3-3c7c-4c03-a41b-86dc7fb05ae3
x-evy-trace-served-by-pod: iad02/hubapi-td/envoy-proxy-5d47c8d44f-gdzmx
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: a94436a3-3c7c-4c03-a41b-86dc7fb05ae3
last-modified: Fri, 19 Apr 2024 13:33:10 GMT
cf-cache-status: EXPIRED
expires: Fri, 19 Apr 2024 13:51:43 GMT
cache-control: public, max-age=90
server: cloudflare
cf-ray: 876d5cc65fde1bfa-OSL
content-encoding: br
X-Firefox-Spdy: h2

bat.bing.com/action/0?ti=17372234&tm=gtm002&Ver=2&mid=17edd087-547c-4006-a36b-b14511561cc7&sid=bfd46380fe5311ee8b4fd147b80d9606&vid=bfd49960fe5311ee8211d36a7a543a10&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=Sign%20In%20-%20Bonusly&p=https%3A%2F%2Fbonus.ly%2Fusers%2Fsign_in_start&r=&lt=1652&evt=pageLoad&sv=1&rn=174153

204.79.197.237

204 No Content

0 B

URL GET HTTP/2
bat.bing.com/action/0?ti=17372234&tm=gtm002&Ver=2&mid=17edd087-547c-4006-a36b-b14511561cc7&sid=bfd46380fe5311ee8b4fd147b80d9606&vid=bfd49960fe5311ee8211d36a7a543a10&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=Sign%20In%20-%20Bonusly&p=https%3A%2F%2Fbonus.ly%2Fusers%2Fsign_in_start&r=&lt=1652&evt=pageLoad&sv=1&rn=174153
IP
204.79.197.237:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerMicrosoft Corporation
Subjectwww.bing.com
Fingerprint77:7D:3C:1C:6F:BE:03:46:50:D9:71:BC:6C:5F:A0:36:1C:35:1F:02
ValidityThu, 18 Apr 2024 02:05:34 GMT - Thu, 27 Jun 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /action/0?ti=17372234&tm=gtm002&Ver=2&mid=17edd087-547c-4006-a36b-b14511561cc7&sid=bfd46380fe5311ee8b4fd147b80d9606&vid=bfd49960fe5311ee8211d36a7a543a10&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=Sign%20In%20-%20Bonusly&p=https%3A%2F%2Fbonus.ly%2Fusers%2Fsign_in_start&r=&lt=1652&evt=pageLoad&sv=1&rn=174153 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=2C28623F284A6D4038B6765929BF6C77; domain=.bing.com; expires=Wed, 14-May-2025 13:50:15 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 45D61AF9FFBF4774B1D465EB84A5A377 Ref B: OSL30EDGE0507 Ref C: 2024-04-19T13:50:15Z
date: Fri, 19 Apr 2024 13:50:14 GMT
X-Firefox-Spdy: h2

static.cloudflareinsights.com/beacon.min.js/v55bfa2fee65d44688e90c00735ed189a1713218998793

104.16.80.73

200 OK

32 kB

URL GET HTTP/2
static.cloudflareinsights.com/beacon.min.js/v55bfa2fee65d44688e90c00735ed189a1713218998793
IP
104.16.80.73:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerGoogle Trust Services LLC
Subjectcloudflareinsights.com
Fingerprint73:92:5A:16:97:55:FC:A5:32:7C:F3:9D:0C:84:EF:F3:2F:AA:B5:00
ValiditySun, 10 Mar 2024 02:33:42 GMT - Sat, 08 Jun 2024 02:33:41 GMT

File type
gzip compressed data, from Unix
Size
32 kB (31633 bytes)
Hash
6bd0ae257d3c997d7c668f971fb3931c
6116527ba865b1503f45fbbd6d1d4c5215fbd595
e5335471b8ce2a28f82c177b603bd7a9cc245001b99502521bbd98a5635aa69f

HTTP Headers

GET /beacon.min.js/v55bfa2fee65d44688e90c00735ed189a1713218998793 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2024.4.0"
last-modified: Mon, 15 Apr 2024 22:09:58 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d5cc60b78b518-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

bat.bing.com/p/insights/s/0.7.31

204.79.197.237

200 OK

15 kB

URL GET HTTP/2
bat.bing.com/p/insights/s/0.7.31
IP
204.79.197.237:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerMicrosoft Corporation
Subjectwww.bing.com
Fingerprint77:7D:3C:1C:6F:BE:03:46:50:D9:71:BC:6C:5F:A0:36:1C:35:1F:02
ValidityThu, 18 Apr 2024 02:05:34 GMT - Thu, 27 Jun 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (35384), with CRLF line terminators
Size
15 kB (14999 bytes)
Hash
714414d8f323460d6a8187161a8b77eb
c8d90ade715d2878ac79bfa8576e15ff217a2df8
fc0e5bdf4287f4e976558d72d9e58269b0d4261b5a23570acb065a26d13ff9f0

HTTP Headers

GET /p/insights/s/0.7.31 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=86400
content-length: 14999
content-type: application/javascript;charset=utf-8
content-encoding: br
last-modified: Thu, 18 Apr 2024 10:16:29 GMT
etag: W/"0x8DC5F909CCE45BB"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-ms-request-id: c8bba10b-401e-0078-368e-918d23000000
x-ms-version: 2018-03-28
access-control-allow-origin: *
x-azure-ref: 20240419T135015Z-er1c6ff8956crpb9t7xxx184cg000000097g00000000cu3v
x-fd-int-roxy-purgeid: 51562430
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 8486565F30AA4B06B66A659D9E872F3D Ref B: OSL30EDGE0507 Ref C: 2024-04-19T13:50:15Z
date: Fri, 19 Apr 2024 13:50:14 GMT
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/styles__ltr.css

142.250.74.99

200 OK

25 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/styles__ltr.css
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG&co=aHR0cHM6Ly9ib251cy5seTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=enjfjo3dob0b
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
ASCII text, with very long lines (56412), with no line terminators
Size
25 kB (24617 bytes)
Hash
2c00b9f417b688224937053cd0c284a5
17b4c18ebc129055dd25f214c3f11e03e9df2d82
1e754b107428162c65a26d399b66db3daaea09616bf8620d9de4bc689ce48eed

HTTP Headers

GET /recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24617
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 16:10:44 GMT
expires: Tue, 15 Apr 2025 16:10:44 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 02:01:04 GMT
content-type: text/css
vary: Accept-Encoding
age: 337171
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js

142.250.74.99

200 OK

206 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG&co=aHR0cHM6Ly9ib251cy5seTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=enjfjo3dob0b
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
JavaScript source, ASCII text, with very long lines (597)
Size
206 kB (206057 bytes)
Hash
8326c23d6b3eed35bc3e62f3294587fd
edda17e74e53e85073e5eac9cb6be2163dbfa23c
57f03d3ba66117edc152646341120dd3a1d7d71b9a98a3723af5a8ae61bcb3ab

HTTP Headers

GET /recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 206057
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 16:10:43 GMT
expires: Tue, 15 Apr 2025 16:10:43 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 02:01:04 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 337172
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.67

200 OK

15 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG&co=aHR0cHM6Ly9ib251cy5seTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=enjfjo3dob0b
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:43:03 GMT
expires: Fri, 18 Apr 2025 02:43:03 GMT
cache-control: public, max-age=31536000
age: 126432
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

142.250.74.67

200 OK

16 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15552, version 1.0
Size
16 kB (15552 bytes)
Hash
285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:25:07 GMT
expires: Fri, 18 Apr 2025 17:25:07 GMT
cache-control: public, max-age=31536000
age: 73508
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/js/bg/jxnhk5jmHgJtz4Dlh1rT_zslgZiPJPGjuH1uymS8TXw.js

142.250.74.164

200 OK

7.5 kB

URL GET HTTP/3
www.google.com/js/bg/jxnhk5jmHgJtz4Dlh1rT_zslgZiPJPGjuH1uymS8TXw.js
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG&co=aHR0cHM6Ly9ib251cy5seTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=enjfjo3dob0b
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D
ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT

File type
JavaScript source, ASCII text, with very long lines (17661)
Size
7.5 kB (7465 bytes)
Hash
96dda94f567100c20e439dfefadb0776
1a7d2dc18f5c6ebcce4fcc8797648711d25cf548
8f19e19398e61e026dcf80e5875ad3ff3b2581988f24f1a3b87d6eca64bc4d7c

HTTP Headers

GET /js/bg/jxnhk5jmHgJtz4Dlh1rT_zslgZiPJPGjuH1uymS8TXw.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG&co=aHR0cHM6Ly9ib251cy5seTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=enjfjo3dob0b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 7465
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 05:06:09 GMT
expires: Thu, 17 Apr 2025 05:06:09 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 16 Apr 2024 13:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 204246
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/api2/logo_48.png

142.250.74.99

200 OK

2.2 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/api2/logo_48.png
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG&co=aHR0cHM6Ly9ib251cy5seTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=enjfjo3dob0b
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Size
2.2 kB (2228 bytes)
Hash
ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a

HTTP Headers

GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:35:26 GMT
expires: Thu, 25 Apr 2024 17:35:26 GMT
cache-control: public, max-age=604800
age: 72889
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/recaptcha/api2/webworker.js?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC

142.250.74.164

200 OK

206 kB

URL GET HTTP/3
www.google.com/recaptcha/api2/webworker.js?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG&co=aHR0cHM6Ly9ib251cy5seTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=enjfjo3dob0b
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D
ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT

File type
JavaScript source, ASCII text, with very long lines (597)
Size
206 kB (206169 bytes)
Hash
cc7146073f3cd862905d3706b50af59b
337e481f0127a520fd5e4e46065da454513da1f3
20a324fa421e66b9256335997260ed6697c2915f93df1300c158b1139745cdfb

HTTP Headers

GET /recaptcha/api2/webworker.js?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG&co=aHR0cHM6Ly9ib251cy5seTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=enjfjo3dob0b
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Fri, 19 Apr 2024 13:50:15 GMT
date: Fri, 19 Apr 2024 13:50:15 GMT
cache-control: private, max-age=300
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

bonus.ly/cdn-cgi/rum?

104.18.11.197

204 No Content

0 B

URL POST HTTP/3
bonus.ly/cdn-cgi/rum?
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonus.ly/users/sign_in_start
content-type: application/json
Content-Length: 1051
Origin: https://bonus.ly
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA; _special_sauce_session=hjYsSEWCgHqAW%2BOxqJ8sU9P%2BIO6BrsvMxcX7cWYzxK5U33n%2Bn2XXlVmFp1APV5bDVTOSKSqMqra16oslSvv%2BXXDk03x6%2BOh6%2FHVqe8K4hWFCBYqNw%2BuesEdOpsQkUq5Nm7JYLe5H3Cf5wEpDGpjvz7Re%2BpeH6lz7%2FkvAg%2FUVgiAS58dbB5lwURiG6S5gSCRo4CXiMxBVBEYnF%2F%2BSCzP1kVs2Wuj7mJ9Mb41UYIXFBQzZY1LSrjytLKyigq5bou1uHPeUUSCHhA5QH%2BEJb4wp%2B20T5wi3QkpaQ3s5H%2FzPROswqUsg5RfhxALTetYsQ4QDN2n2iLg4skhjKbihSBThufKJnos%3D--qDtMNm0Z0tp5Jo2z--w8wkdJPEXl3ilHR6Np29qA%3D%3D; _gcl_au=1.1.2025866715.1713534614; _ga_LYH0R10SEC=GS1.1.1713534614.1.0.1713534614.60.0.0; _ga=GA1.1.1590843329.1713534614; _uetvid=bfd49960fe5311ee8211d36a7a543a10; _uetsid=bfd46380fe5311ee8b4fd147b80d9606|1nxaidk|2|fl2|0|1570
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
date: Fri, 19 Apr 2024 13:50:15 GMT
access-control-allow-origin: https://bonus.ly
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 876d5cd4a88bb50f-OSL
x-frame-options: DENY
x-content-type-options: nosniff

www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG

142.250.74.164

200 OK

26 kB

URL GET HTTP/3
www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D
ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT

File type
HTML document, ASCII text, with very long lines (56439)
Size
26 kB (25818 bytes)
Hash
22c6d52dc63ddcf43c5e9ea24076243f
aac1635f14542123e37d83252ca3de072caceb05
51e370b2921fb04de2140664b1503343ae0a8a492d8f647f61ff8444cfd43cb9

HTTP Headers

GET /recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 19 Apr 2024 13:50:16 GMT
content-security-policy: script-src 'nonce-wx54bvit2A8NWa_r3oe_2w' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js

142.250.74.99

200 OK

206 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG&co=aHR0cHM6Ly9ib251cy5seTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=enjfjo3dob0b
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
JavaScript source, ASCII text, with very long lines (597)
Size
206 kB (206057 bytes)
Hash
8326c23d6b3eed35bc3e62f3294587fd
edda17e74e53e85073e5eac9cb6be2163dbfa23c
57f03d3ba66117edc152646341120dd3a1d7d71b9a98a3723af5a8ae61bcb3ab

HTTP Headers

GET /recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 206057
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 16:10:43 GMT
expires: Tue, 15 Apr 2025 16:10:43 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 02:01:04 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 337173
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.67

200 OK

15 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG&co=aHR0cHM6Ly9ib251cy5seTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=enjfjo3dob0b
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:43:03 GMT
expires: Fri, 18 Apr 2025 02:43:03 GMT
cache-control: public, max-age=31536000
age: 126433
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

142.250.74.67

200 OK

16 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15552, version 1.0
Size
16 kB (15552 bytes)
Hash
285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:25:07 GMT
expires: Fri, 18 Apr 2025 17:25:07 GMT
cache-control: public, max-age=31536000
age: 73509
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2

142.250.74.67

200 OK

15 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15340, version 1.0
Size
15 kB (15340 bytes)
Hash
19b7a0adfdd4f808b53af7e2ce2ad4e5
81d5d4c7b5035ad10cce63cf7100295e0c51fdda
c912a9ce0c3122d4b2b29ad26bfe06b0390d1a5bdaa5d6128692c0befd1dfbbd

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15340
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 21:52:08 GMT
expires: Tue, 15 Apr 2025 21:52:08 GMT
cache-control: public, max-age=31536000
age: 316688
last-modified: Mon, 16 Oct 2017 17:33:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/api2/refresh_2x.png

142.250.74.99

200 OK

600 B

URL GET HTTP/3
www.gstatic.com/recaptcha/api2/refresh_2x.png
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced
Size
600 B (600 bytes)
Hash
0f2a4639b8a4cb30c76e8333c00d30a6
57e273a270bb864970d747c74b3f0a7c8e515b13
44b988703019cd6bfa86c91840fecf2a42b611b364e3eea2f4eb63bf62714e98

HTTP Headers

GET /recaptcha/api2/refresh_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 12:26:13 GMT
expires: Tue, 23 Apr 2024 12:26:13 GMT
cache-control: public, max-age=604800
age: 264243
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

recognition-production-cdn-aws.bonus.ly/assets/logo/bonusly_favicon_16-05302cdc73efed5db28d28fcf7c20218ddea91205f0b0b2cbe5e082420a303e7.ico

104.18.11.197

8.3 kB

URL GET
recognition-production-cdn-aws.bonus.ly/assets/logo/bonusly_favicon_16-05302cdc73efed5db28d28fcf7c20218ddea91205f0b0b2cbe5e082420a303e7.ico
IP
104.18.11.197:0
ASN
#13335 CLOUDFLARENET

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel
Size
8.3 kB (8279 bytes)
Hash
08df10b3c2ede2a0d098b1a6f88f9b3f
2886408e1ce68075642f05856b61c000e68fc6b3
b872d3d0fcc711be26e695fdf32ce579d94ff34c1eb560afd3e1932e37bf0b7d

HTTP Headers

GET /assets/logo/bonusly_favicon_16-05302cdc73efed5db28d28fcf7c20218ddea91205f0b0b2cbe5e082420a303e7.ico HTTP/1.1
Host: recognition-production-cdn-aws.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA; _gcl_au=1.1.2025866715.1713534614; _ga_LYH0R10SEC=GS1.1.1713534614.1.0.1713534614.60.0.0; _ga=GA1.1.1590843329.1713534614
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:14 GMT
content-type: image/vnd.microsoft.icon
last-modified: Thu, 22 Jun 2023 17:20:53 GMT
etag: W/"08df10b3c2ede2a0d098b1a6f88f9b3f"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31557600
expires: Fri, 21 Jun 2024 23:20:52 GMT
x-amz-version-id: c7VxGFGkYhWKV85qmtUNLf.1a7JyYRUC
x-cache: Hit from cloudfront
via: 1.1 8021f954d329869476f935f2fb14e66e.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: UF7T-4Dpbnj0aIxhnSS__XOL8Cm0opoGZqlKChMPDfbMMDJC6_YVZQ==
vary: Origin, Accept-Encoding
cf-cache-status: HIT
age: 1322051
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5ccc6f5fb50f-OSL
content-encoding: br

www.google.com/recaptcha/api2/anchor?ar=1&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG&co=aHR0cHM6Ly9ib251cy5seTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=enjfjo3dob0b

142.250.74.164

200 OK

77 kB

URL GET HTTP/3
www.google.com/recaptcha/api2/anchor?ar=1&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG&co=aHR0cHM6Ly9ib251cy5seTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=enjfjo3dob0b
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D
ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT

File type
gzip compressed data
Size
77 kB (77060 bytes)
Hash
82edc3f431e476a1375bf1b425d9bd6c
377197a0cd05623ea4d52fafe97d8f89c674a2b9
f957e64849babfa1e19000c93c62fd6f6a637db7e41e8fd61183c48d4f28eb02

HTTP Headers

GET /recaptcha/api2/anchor?ar=1&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG&co=aHR0cHM6Ly9ib251cy5seTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=enjfjo3dob0b HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 19 Apr 2024 13:50:15 GMT
content-security-policy: script-src 'nonce-Pos-XA2ouabITVOeGWGMtA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

app.bonus.ly/static/js/440.f2642946.chunk.js

104.18.11.197

200 OK

67 kB

URL GET HTTP/3
app.bonus.ly/static/js/440.f2642946.chunk.js
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
67 kB (67373 bytes)
Hash
8285fa44e3a518e2ee281c506c928b80
3e55314d595c718e81309b4db2b629b2d04a3a4b
eb76eb530bd9b93eec9c2f141a5356a9f88cba000e976cb29658cb489bbad50e

HTTP Headers

GET /static/js/440.f2642946.chunk.js HTTP/1.1
Host: app.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.bonus.ly/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=336115
etag: W/"69f0f3174528083d2469c51b761a51c4"
last-modified: Wed, 17 Apr 2024 16:48:15 GMT
x-amz-id-2: vCJDgh/a9o99tKIpLsUeBJ5TIeTmnZA7otl66Er1mdVj+M10rCDR6DNI/hw7RmKPG6tir5HarEI=
x-amz-request-id: 8217339VBXD6HDVD
cf-cache-status: HIT
age: 2240
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cba6b93b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

region1.analytics.google.com/g/collect?v=2&tid=G-LYH0R10SEC&gtm=45je44h0v870573331za200&_p=1713534613669&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1590843329.1713534614&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AEA&_s=2&sid=1713534614&sct=1&seg=0&dl=https%3A%2F%2Fbonus.ly%2Fusers%2Fsign_in_start&dt=Sign%20In%20-%20Bonusly&en=scroll&epn.percent_scrolled=90&tfd=6127

216.239.34.36

204 No Content

0 B

URL GET HTTP/3
region1.analytics.google.com/g/collect?v=2&tid=G-LYH0R10SEC&gtm=45je44h0v870573331za200&_p=1713534613669&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1590843329.1713534614&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AEA&_s=2&sid=1713534614&sct=1&seg=0&dl=https%3A%2F%2Fbonus.ly%2Fusers%2Fsign_in_start&dt=Sign%20In%20-%20Bonusly&en=scroll&epn.percent_scrolled=90&tfd=6127
IP
216.239.34.36:443
ASN
#15169 GOOGLE

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D
ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /g/collect?v=2&tid=G-LYH0R10SEC&gtm=45je44h0v870573331za200&_p=1713534613669&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1590843329.1713534614&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AEA&_s=2&sid=1713534614&sct=1&seg=0&dl=https%3A%2F%2Fbonus.ly%2Fusers%2Fsign_in_start&dt=Sign%20In%20-%20Bonusly&en=scroll&epn.percent_scrolled=90&tfd=6127 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
access-control-allow-origin: *
date: Fri, 19 Apr 2024 13:50:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

mfe.bonus.ly/manager-enablement/remoteEntry.js?v=2

104.18.11.197

200 OK

45 kB

URL GET HTTP/3
mfe.bonus.ly/manager-enablement/remoteEntry.js?v=2
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JavaScript source, ASCII text, with very long lines (9297), with no line terminators
Size
45 kB (45230 bytes)
Hash
354eb65c148edb7bce1d465df9486786
e40dd96acb0aad4ad2d20886a6a892a2ce410026
89642a720427f6300829de62df6eb7dcc91b71e97c699bc1e08afcd1906186a2

HTTP Headers

GET /manager-enablement/remoteEntry.js?v=2 HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=9337
etag: W/"2682cc2aa33d67e90c98cefb6b1b5f90"
last-modified: Thu, 18 Apr 2024 18:53:31 GMT
x-amz-id-2: msfQNJ0hWBy0+9vdgiCfOoRUPUpl4gHBnzea0vLW3DAXzkj6fnxHyhHC4QBF3jAnDPUz6UeE+oU=
x-amz-request-id: GAJQXX8WTAREXERS
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:41 GMT
cache-control: public, max-age=30
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbb1c41b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

mfe.bonus.ly/bookmark/remoteEntry.js?v=2

104.18.11.197

200 OK

8.0 kB

URL GET HTTP/3
mfe.bonus.ly/bookmark/remoteEntry.js?v=2
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JavaScript source, ASCII text, with very long lines (8268), with no line terminators
Size
8.0 kB (7998 bytes)
Hash
2b63cbfc233b5f1174d055b026b0e683
c372dc1e5bf51e7d0f5215c8957ba380efe523f7
ffdc24587cf556575e91d77fba5f89c80c108067b77ad6dec15046a0c885501f

HTTP Headers

GET /bookmark/remoteEntry.js?v=2 HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=8038
etag: W/"7a87b8d57d8f7c3d4b21f7abef5cb57c"
last-modified: Thu, 18 Apr 2024 21:16:41 GMT
x-amz-id-2: lf43YrvC8dYwIKl//+YGyS4PxraWFju+4RF+BTnhAvhIkz1reU9iYMrX/2eNxG+0d6vuXrgV/40=
x-amz-request-id: SMP8ZRTWE78582WG
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:41 GMT
cache-control: public, max-age=30
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbb1c42b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

mfe.bonus.ly/invite-users-modal/remoteEntry.js?v=2

104.18.11.197

200 OK

8.2 kB

URL GET HTTP/3
mfe.bonus.ly/invite-users-modal/remoteEntry.js?v=2
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JavaScript source, ASCII text, with very long lines (8433), with no line terminators
Size
8.2 kB (8175 bytes)
Hash
eda6e37dac581b015d6c017f946a0017
65027790a7434e5ba7b158f47a2112e87db16480
4aa63879f6bc97d012d7d1aebe6099a871630cd9c44e9700bb04c94ca389bac5

HTTP Headers

GET /invite-users-modal/remoteEntry.js?v=2 HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=8215
etag: W/"a45336eb7af8ead36712b5b100639c46"
last-modified: Wed, 17 Apr 2024 16:48:09 GMT
x-amz-id-2: TS4/3xhaPxH0Ox8KREt6BMEzP355udoEcRSJaKi4xSb8LhDjggzMRvjyI+xcTSAjiy5HERQPEsE=
x-amz-request-id: BMQ7Z5C4CKBT0QRW
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:41 GMT
cache-control: public, max-age=30
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbb1c43b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

mfe.bonus.ly/translations/locales/en/common.json

104.18.11.197

200 OK

1.1 kB

URL GET HTTP/3
mfe.bonus.ly/translations/locales/en/common.json
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
ASCII text, with very long lines (1337), with no line terminators
Size
1.1 kB (1107 bytes)
Hash
786eabbae94ac40338935d029f6c6cd1
1cdf608ed4d1b996d31263b90624b82976c39230
dcacb0e429293a4826950c0e944ddeee9b7ffd6c67c982f9fe9d37243b83647c

HTTP Headers

GET /translations/locales/en/common.json HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:12 GMT
content-type: application/json
x-amz-id-2: fHkpOFzHEye8yWVtz+dDsQyEVUhE/+JqDI/8JJ9h0xutLTlayLVbwn/Hafclv2jPlPaExtnP2l4=
x-amz-request-id: C6B5MNAY70DH1FEA
access-control-allow-origin: https://app.bonus.ly
access-control-allow-methods: GET
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Thu, 18 Apr 2024 17:42:24 GMT
etag: W/"b204375511e890906931d5ce14d29dfe"
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:42 GMT
cache-control: public, max-age=30
set-cookie: __cf_bm=uOD_WS1pgqDdP9PqzwCbaPWNRkGn5EAEjthkwlKsleg-1713534612-1.0.1.1-sdZn2LrJYIyLiSM_Z51yEXMK1MR2.xVmUcQ2LqIxzGS6kv6jYcyyu9iqlQx5iTGAlFVvfIkSSuDQ9NXyO6vdMQ; path=/; expires=Fri, 19-Apr-24 14:20:12 GMT; domain=.bonus.ly; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbebfcab50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A5.13.0%2Capi%3Axhr%2Cenv%3Aproduction%2Cservice%3Amonarch%2Cversion%3A1.1.0&dd-api-key=pubd81c2cabb32a289ccded45586130bed5&dd-evp-origin-version=5.13.0&dd-evp-origin=browser&dd-request-id=eec1e23f-615f-443f-9138-7cad4c8f4c7f&batch_time=1713534612307

3.233.147.183

202 Accepted

53 B

URL POST HTTP/2
browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A5.13.0%2Capi%3Axhr%2Cenv%3Aproduction%2Cservice%3Amonarch%2Cversion%3A1.1.0&dd-api-key=pubd81c2cabb32a289ccded45586130bed5&dd-evp-origin-version=5.13.0&dd-evp-origin=browser&dd-request-id=eec1e23f-615f-443f-9138-7cad4c8f4c7f&batch_time=1713534612307
IP
3.233.147.183:443
ASN
#14618 AMAZON-AES

Requested by
https://app.bonus.ly/
Certificate
IssuerDigiCert Inc
Subject*.browser-intake-datadoghq.com
Fingerprint90:98:16:E4:5F:36:C7:67:0F:C6:18:49:63:19:73:FC:82:36:C1:4E
ValiditySat, 17 Jun 2023 00:00:00 GMT - Tue, 18 Jun 2024 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
53 B (53 bytes)
Hash
20f4c7640033676408751ce86461a1dc
10b82c860c010badbd6548079270aefa482a2bdb
cc18201e7121fb38fb50b5511301a2ad83a6126c8e63b54b29827e999ab26108

HTTP Headers

POST /api/v2/rum?ddsource=browser&ddtags=sdk_version%3A5.13.0%2Capi%3Axhr%2Cenv%3Aproduction%2Cservice%3Amonarch%2Cversion%3A1.1.0&dd-api-key=pubd81c2cabb32a289ccded45586130bed5&dd-evp-origin-version=5.13.0&dd-evp-origin=browser&dd-request-id=eec1e23f-615f-443f-9138-7cad4c8f4c7f&batch_time=1713534612307 HTTP/1.1
Host: browser-intake-datadoghq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 15974
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 202 Accepted
date: Fri, 19 Apr 2024 13:50:12 GMT
content-type: application/json
content-length: 53
dd-request-id: eec1e23f-615f-443f-9138-7cad4c8f4c7f
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/api2/audio_2x.png

142.250.74.99

200 OK

530 B

URL GET HTTP/3
www.gstatic.com/recaptcha/api2/audio_2x.png
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced
Size
530 B (530 bytes)
Hash
88e0f42c9fa4f94aa8bcd54d1685c180
5ad9d47a49b82718baa3be88550a0b3350270c42
89c62095126fca89ea1511cf35b49b8306162946b0c26d6f60c5506c51d85992

HTTP Headers

GET /recaptcha/api2/audio_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 530
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 01:43:57 GMT
expires: Tue, 23 Apr 2024 01:43:57 GMT
cache-control: public, max-age=604800
age: 302779
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

mfe.bonus.ly/admin-rewards/remoteEntry.js?v=2

104.18.11.197

200 OK

8.4 kB

URL GET HTTP/3
mfe.bonus.ly/admin-rewards/remoteEntry.js?v=2
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JavaScript source, ASCII text, with very long lines (8611), with no line terminators
Size
8.4 kB (8351 bytes)
Hash
7c0e37ed12e99b7c05753f94c869b7c4
b94a2e03ffbb1c109cd39b6f805235bf30358d80
0a95a6ce03bfdd8fd082f5bcb07a2505ca70851d4991ea578b70c803616ec179

HTTP Headers

GET /admin-rewards/remoteEntry.js?v=2 HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=8391
etag: W/"fa4803ef2f284994c43b4ef21872bcc0"
last-modified: Wed, 17 Apr 2024 16:48:14 GMT
x-amz-id-2: 0936LoChKgsMhOnV9r2zYLfY4Aywc/GK6Job18tFdwFS3OLa1qOHcOqOzE1FL8X79iwph+DF3qg=
x-amz-request-id: BMQ83KWV9735PH6Z
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:41 GMT
cache-control: public, max-age=30
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbb1c47b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

d2yyd1h5u9mauk.cloudfront.net/integrations/web/v1/library/MsFAGIKA8MYr3PFu/delighted.js

54.230.241.171

200 OK

93 kB

URL GET HTTP/1.1
d2yyd1h5u9mauk.cloudfront.net/integrations/web/v1/library/MsFAGIKA8MYr3PFu/delighted.js
IP
54.230.241.171:443
ASN
#16509 AMAZON-02

Requested by
https://app.bonus.ly/
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (32828)
Size
93 kB (93172 bytes)
Hash
9a5e0e0da615e2376d00272f1efe0abd
306de296170f1061b861396473cd5288ee520d07
256e76066555db79917763a3ea5c2132d5ba83f9f18370e6c731966409512dbb

HTTP Headers

GET /integrations/web/v1/library/MsFAGIKA8MYr3PFu/delighted.js HTTP/1.1
Host: d2yyd1h5u9mauk.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Fri, 19 Apr 2024 13:50:12 GMT
Status: 200 OK
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
X-UA-Compatible: IE=Edge,chrome=1
Cache-Control: max-age=120, public
Content-Security-Policy: default-src 'self'; font-src 'self' data: https://fonts.gstatic.com https://js.intercomcdn.com http://fonts.intercomcdn.com http://*.auryc.com https://dcx14qs33eg2z.cloudfront.net; style-src 'self' 'unsafe-inline' https://accounts.google.com https://cdn.weglot.com https://fonts.googleapis.com https://tagmanager.google.com https://heapanalytics.com https://app-sj30.marketo.com https://cdn.zapier.com https://dcx14qs33eg2z.cloudfront.net; object-src 'none'; media-src 'self' https://beacon-v2.helpscout.net https://js.intercomcdn.com/ https://dcx14qs33eg2z.cloudfront.net; img-src 'self' data: http: https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://accounts.google.com https://app.intercom.io https://app.pendo.io https://a.opmnstr.com https://api.omappapi.com https://analytics.twitter.com https://app-sj30.marketo.com https://bat.bing.com https://beacon-v2.helpscout.net https://cdn.heapanalytics.com https://cdn.pendo.io https://cdn.weglot.com https://connect.facebook.net https://ct.capterra.com https://data.pendo.io https://googleads.g.doubleclick.net https://heapanalytics.com https://js.intercomcdn.com https://js.pusher.com https://js.stripe.com https://munchkin.marketo.net https://pendo-io-static.storage.googleapis.com https://pendo-static-5802606298267648.storage.googleapis.com https://platform.twitter.com https://risk.clearbit.com https://rum-static.pingdom.net https://script.crazyegg.com https://snap.licdn.com https://ssl.google-analytics.com https://static.ads-twitter.com https://tagmanager.google.com https://tpc.googlesyndication.com https://widget.intercom.io https://www.google-analytics.com https://www.google.com https://www.googleadservices.com https://www.googletagmanager.com https://zapier.com https://cdn.zapier.com https://*.quora.com https://js.sentry-cdn.com https://browser.sentry-cdn.com https://public.profitwell.com https://static.profitwell.com https://polyfill.io https://d3dy5gmtp8yhk7.cloudfront.net/ https://d2yyd1h5u9mauk.cloudfront.net https://dcx14qs33eg2z.cloudfront.net; frame-src 'self' https://accounts.google.com https://app.pendo.io https://js.stripe.com https://beacon-v2.helpscout.net https://bid.g.doubleclick.net https://td.doubleclick.net https://tpc.googlesyndication.com https://app-sj30.marketo.com https://qglobalops.co1.qualtrics.com; connect-src 'self' https://delighted.com https://*.delighted.com https://api.delighted.com https://accounts.google.com https://api-iam.intercom.io https://api-ping.intercom.io https://api.intercom.io https://api.zapier.com https://zapier.com https://app.pendo.io https://bat.bing.com https://beaconapi.helpscout.net https://chatapi.helpscout.net https://api.weglot.com https://cdn.weglot.com https://cdn-api-weglot.com https://d3hb14vkzrxvla.cloudfront.net https://data.pendo.io https://heapanalytics.com https://px.ads.linkedin.com https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://pendo-static-5802606298267648.storage.googleapis.com https://platform.twitter.com https://risk.clearbit.com https://script.crazyegg.com https://stats.g.doubleclick.net https://tracking.crazyegg.com https://uploads.intercomcdn.com https://uploads.intercomusercontent.com https://www.google-analytics.com https://www.google.com https://www2.profitwell.com https://099-SJL-057.mktorest.com https://*.pusher.com https://js.sentry-cdn.com https://browser.sentry-cdn.com https://*.quora.com https://*.auryc.com wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io wss://ws.pusher.com wss://ws.pusherapp.com https://dcx14qs33eg2z.cloudfront.net; report-uri https://fb4qdnkh2k.execute-api.us-east-1.amazonaws.com/default
X-Request-Id: 6c7429f09ca0a7e74263ca5658f4d555
X-Runtime: 0.058409
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Miss from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: n0M09UjWmklu0WSRZ8lr6ktS7uZtkSndHCxj7SixEPbFa3NlyeGbzw==

app.bonus.ly/static/js/main.64f845f0.js

104.18.11.197

200 OK

16 kB

URL GET HTTP/3
app.bonus.ly/static/js/main.64f845f0.js
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JavaScript source, ASCII text, with very long lines (15810), with no line terminators
Size
16 kB (15810 bytes)
Hash
070a2ed742824ceee1fa84401599ce6c
cf905a02b72452d458a416eab45da745fd0ac6cf
3855e843ad349545b101a97aea92a9c5324923b4289ae7a1852c7b730441ce8b

HTTP Headers

GET /static/js/main.64f845f0.js HTTP/1.1
Host: app.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.bonus.ly/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=15852
etag: W/"abb9400e14b751a2fdf003e07681f751"
last-modified: Wed, 17 Apr 2024 16:48:17 GMT
x-amz-id-2: SgA1PL3K62493a/QlxcRuF7842RQuuKyBWgtYo2frLdGTnepjc271o5R59oS8gsmZNj18xlZRz0=
x-amz-request-id: BMQ7R3C16QJQXFRA
cf-cache-status: HIT
age: 2240
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cb9aaedb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

mfe.bonus.ly/admin-dashboard-mfe/remoteEntry.js?v=2

104.18.11.197

200 OK

7.9 kB

URL GET HTTP/3
mfe.bonus.ly/admin-dashboard-mfe/remoteEntry.js?v=2
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JavaScript source, ASCII text, with very long lines (8135), with no line terminators
Size
7.9 kB (7881 bytes)
Hash
b7e7caf7a077f4f854c6c24f0ff1396d
e29050c6c203c857ac8961e8288f96d17df8e28c
645c48353f2bfdf605a878c7a203e7ba14c1b83938479554f6782f6b3ce4966e

HTTP Headers

GET /admin-dashboard-mfe/remoteEntry.js?v=2 HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=7921
etag: W/"c025c9af8311b4d709d04a94b9641ded"
last-modified: Wed, 17 Apr 2024 16:48:12 GMT
x-amz-id-2: t8koCQEcHzue1swMHPVRFmfdqsQjiVXDfg7Iec11qX/+8tNPXH/xG6SPiAuWL5PSWtNmgqnJamg=
x-amz-request-id: BMQCAKP4TAMMR9CX
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:41 GMT
cache-control: public, max-age=30
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbb1c45b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

mfe.bonus.ly/translations/locales/en/components.json

104.18.11.197

200 OK

1.3 kB

URL GET HTTP/3
mfe.bonus.ly/translations/locales/en/components.json
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
ASCII text, with very long lines (1572), with no line terminators
Size
1.3 kB (1325 bytes)
Hash
53f151563d94a4e29a02f325626fb117
baa52ba0b83794dceb3b489fca2aaf1de8b06131
b9242cdda5a3c3c39433a3e24d149036e38eeda33d1fde708f013c87260d97f3

HTTP Headers

GET /translations/locales/en/components.json HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:12 GMT
content-type: application/json
x-amz-id-2: gUU+BqcJ6HjdFFB8avRGVQ44YBNCV8P1q9IJYA5/ZyKitaoDjudUw82QdZTD38n93K5gHg2mnnA=
x-amz-request-id: C6BD28KWD89YYSX2
access-control-allow-origin: https://app.bonus.ly
access-control-allow-methods: GET
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Thu, 18 Apr 2024 17:42:24 GMT
etag: W/"9d847e3dfd9a867fcb95fcbee8c911e2"
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:42 GMT
cache-control: public, max-age=30
set-cookie: __cf_bm=7eDmZRrnOPKWCWLGEoJ9hGw61qjQc0dDbvSkx4qW39I-1713534612-1.0.1.1-x7Q0.kq0_J5J60vv5yeOGmTnK1HmrCeLsJIOWwT01S7C12m6U8G_yQQByrMCqJxWU3fKe9QpiqpRb0oYcx.0UA; path=/; expires=Fri, 19-Apr-24 14:20:12 GMT; domain=.bonus.ly; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbebfcbb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

js.hs-banner.com/v2/1973303/banner.js

104.18.34.229

200 OK

84 kB

URL GET HTTP/2
js.hs-banner.com/v2/1973303/banner.js
IP
104.18.34.229:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerLet's Encrypt
Subjecths-banner.com
FingerprintFD:CD:8E:97:D4:7A:91:8A:CF:B0:8D:03:EF:EB:A1:49:9F:F6:62:40
ValidityMon, 01 Apr 2024 01:01:12 GMT - Sun, 30 Jun 2024 01:01:11 GMT

File type

Size
84 kB (84276 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /v2/1973303/banner.js HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:50:14 GMT
content-type: text/javascript; charset=UTF-8
x-amz-id-2: QVvSENr2IYjI9UN4AYGrvWww7SOBzckgRuAni6UtR7fosNiyHNLPWo4cY+s+ycMNd6Sb67YtmMo=
x-amz-request-id: YTE0TF4WR9P3V8J5
last-modified: Thu, 18 Apr 2024 18:46:08 GMT
etag: W/"818f27497c41523933681dc5866ff063"
x-amz-server-side-encryption: AES256
cache-control: max-age=300,public
x-amz-version-id: LdlLL5IutHWMwGYc0gdgcrSVn2_ik7ZY
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin, Accept-Encoding
expires: Fri, 19 Apr 2024 13:55:14 GMT
x-envoy-upstream-service-time: 43
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: 50f2c523-42e5-4c74-ab38-dae13af1a03c
x-evy-trace-served-by-pod: iad02/analytics-js-proxy-td/envoy-proxy-6685c9958f-snf7h
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: 50f2c523-42e5-4c74-ab38-dae13af1a03c
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 876d5cc94caa56a4-OSL
content-encoding: br
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Plus+Jakarta+Sans:wght@600;800&display=swap

142.250.74.106

200 OK

3.2 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Plus+Jakarta+Sans:wght@600;800&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://app.bonus.ly/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
ASCII text, with very long lines (3294), with no line terminators
Size
3.2 kB (3222 bytes)
Hash
0ef38bab3cd0b23f0ce8f50de4e971dd
d5e2a9a0ab139e63b0a8836af0ddf412cef6713f
4a974670b1e7330d3437e2284ac90dbaef9cb552f4a9772f2efd8b65a799496e

HTTP Headers

GET /css2?family=Plus+Jakarta+Sans:wght@600;800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 19 Apr 2024 13:50:11 GMT
date: Fri, 19 Apr 2024 13:50:11 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

mfe.bonus.ly/vertical-navbar/static/js/885.7bd9bc53.chunk.js

104.18.11.197

200 OK

132 kB

URL GET HTTP/3
mfe.bonus.ly/vertical-navbar/static/js/885.7bd9bc53.chunk.js
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
132 kB (132186 bytes)
Hash
7bb528ae3a7da8da110158cfafe5cefd
ebad693a6b8cc3d0440b7f1c408ecc2114899961
0ca973e20ba1a8ae96e8eca6dc295cc165cb7663e0bff78e0a666ce9f59a715f

HTTP Headers

GET /vertical-navbar/static/js/885.7bd9bc53.chunk.js HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=132239
etag: W/"80d76819827a7662955d510cd337c6da"
last-modified: Wed, 17 Apr 2024 16:48:14 GMT
x-amz-id-2: ChYLuj2Fccqa8an7pbs8eMSDG1F+oyH1ksv6zYkqG5UC8o/pW8Em0BYElzvvf2iu9+erfgbIldE=
x-amz-request-id: 8219N0971JEKRPBD
cf-cache-status: HIT
age: 2239
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbc9dc7b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

mfe.bonus.ly/vertical-navbar/static/js/334.d9a0c33c.chunk.js

104.18.11.197

200 OK

808 B

URL GET HTTP/3
mfe.bonus.ly/vertical-navbar/static/js/334.d9a0c33c.chunk.js
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
ASCII text, with very long lines (818), with no line terminators
Size
808 B (808 bytes)
Hash
357ce8101ac309e5f844d0c25b010e34
93b7f03269e518874c71b000221feccdb9542e28
376a34dac8c36cc908212355926833620c94dec0925d4e04b471b52ebb2d227f

HTTP Headers

GET /vertical-navbar/static/js/334.d9a0c33c.chunk.js HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=858
etag: W/"00c7fd5d6b47429acb3a83c396010d0b"
last-modified: Wed, 17 Apr 2024 16:48:12 GMT
x-amz-id-2: f0FVMz3ZZx1tXCmX+IrInAtyZMp1BFD5wtObak7zlKT/DyZBZ0HsSAEVPtvH1hqlMK7z1S047YE=
x-amz-request-id: 821FC732M16EMTR7
cf-cache-status: HIT
age: 2239
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbcaddbb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

recognition-production-cdn-aws.bonus.ly/packs/js/484-5415322c7fe6f1693f3c.js

104.18.11.197

200 OK

2.1 MB

URL GET HTTP/3
recognition-production-cdn-aws.bonus.ly/packs/js/484-5415322c7fe6f1693f3c.js
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type

Size
2.1 MB (2123936 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /packs/js/484-5415322c7fe6f1693f3c.js HTTP/1.1
Host: recognition-production-cdn-aws.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=2123996
alt-svc: h3=":443"; ma=86400
etag: W/"a32e344ebd60a920042ce09fe6835107"
last-modified: Wed, 14 Feb 2024 23:46:08 GMT
vary: Origin, Accept-Encoding
via: 1.1 d2344bac503cfadf51884e9930680ffe.cloudfront.net (CloudFront)
x-amz-cf-id: xDfbqKR8CU99v7Sew7DUSGyh7acRmPYGC7yFrZ8JjVr7h4eGvsqCrg==
x-amz-cf-pop: ARN1-C1
x-amz-server-side-encryption: AES256
x-amz-version-id: 61q2s_IuHPaE.XzpEFdHuifV2_Y1x0ur
x-cache: Hit from cloudfront
cf-cache-status: HIT
age: 2268
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cc5ffb8b50f-OSL
content-encoding: br

www.google.com/recaptcha/api2/reload?k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG

142.250.74.164

200 OK

19 kB

URL POST HTTP/3
www.google.com/recaptcha/api2/reload?k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D
ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT

File type
ASCII text, with very long lines (19357)
Size
19 kB (19362 bytes)
Hash
66547bf572c6c6b243572ed0a93a5ae3
66bccb7679ee0af85ea3eb095b318d096f9411db
9e9406de6989f8c446e842ecaa352407a064eec39500b71c17d7b631567258f0

HTTP Headers

POST /recaptcha/api2/reload?k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-protobuffer
Content-Length: 7213
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/json; charset=utf-8
content-encoding: gzip
date: Fri, 19 Apr 2024 13:50:16 GMT
expires: Fri, 19 Apr 2024 13:50:16 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
set-cookie: _GRECAPTCHA=09ALYNOahEOdUfxqh3GtUrgLYcGL1wLK4ikMpwo8XKJChIyjPNQAEDF4Hsd-wfG3CXG_avWzuRyV0odGNfFX1cmGA;Path=/recaptcha;Expires=Wed, 16-Oct-2024 13:50:16 GMT;Secure;HttpOnly;Priority=HIGH;SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

mfe.bonus.ly/vertical-navbar/static/js/551.688bcd5a.chunk.js

104.18.11.197

200 OK

134 kB

URL GET HTTP/3
mfe.bonus.ly/vertical-navbar/static/js/551.688bcd5a.chunk.js
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
134 kB (133877 bytes)
Hash
544750a2649b58b78afa9b406698e2a8
462f6c5b8661bae1832338e19f5c9f8b298f5574
3ce9c36fe68c451969ca90f896b910fe044990d51e078e3b39aa3ea2cbec1230

HTTP Headers

GET /vertical-navbar/static/js/551.688bcd5a.chunk.js HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=133927
etag: W/"7674cbddf1cfcce467850a9185f8fb84"
last-modified: Wed, 17 Apr 2024 16:48:12 GMT
x-amz-id-2: 734C+Ns1x5kvSJnCpT71l03tJlL2p3FhGTPioj6WBLldWXodSApYqJD06dqqGAP+aEi1pCLBUxY=
x-amz-request-id: 2E57XTPZJKNSS062
cf-cache-status: HIT
age: 2239
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbc9dc4b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

recognition-production-cdn-aws.bonus.ly/packs/css/application-2e3e5ceb.css

104.18.11.197

200 OK

9.2 kB

URL GET HTTP/3
recognition-production-cdn-aws.bonus.ly/packs/css/application-2e3e5ceb.css
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
ASCII text, with very long lines (9185), with no line terminators
Size
9.2 kB (9177 bytes)
Hash
b249b697713acd1495665d482a85f569
2f75a4289e7f246f212b041fdf56df20ba92e8c9
f0c98acbfe71f9a284cdf37f7365ddec719a7ce8b3988fafc2e3345c170874c2

HTTP Headers

GET /packs/css/application-2e3e5ceb.css HTTP/1.1
Host: recognition-production-cdn-aws.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=9232
alt-svc: h3=":443"; ma=86400
etag: W/"222b9e593fcdc258a85eee898f926cc2"
last-modified: Thu, 22 Jun 2023 17:22:26 GMT
vary: Origin, Accept-Encoding
via: 1.1 844de3d616579278fb702fc6b9b5c9a2.cloudfront.net (CloudFront)
x-amz-cf-id: aD8iOCit_aHFl4cYLeaDO8Mqz-jSuP3Hjpq4d9C2x3OSyFnDVLXNRg==
x-amz-cf-pop: ARN1-C1
x-amz-server-side-encryption: AES256
x-amz-version-id: Kl6qTqGT6RA_6mgn6fIJqJ0Wr3oNXHtR
x-cache: Hit from cloudfront
cf-cache-status: HIT
age: 1179
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cc5efb1b50f-OSL
content-encoding: br

mfe.bonus.ly/navigation/remoteEntry.js?v=2

104.18.11.197

200 OK

8.1 kB

URL GET HTTP/3
mfe.bonus.ly/navigation/remoteEntry.js?v=2
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JavaScript source, ASCII text, with very long lines (8350), with no line terminators
Size
8.1 kB (8094 bytes)
Hash
140593399d2cc5c07809cb9beab1bfe1
93cda7589619578d2edc53a8dcd4224629ce22b9
bcac480085b6f68f16f55d258e693748f04f307173fc6521a79f9d60a82be966

HTTP Headers

GET /navigation/remoteEntry.js?v=2 HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=8134
etag: W/"58d931b05768eb1b5bca5e9a80751668"
last-modified: Thu, 11 Apr 2024 22:32:35 GMT
x-amz-id-2: xRxVLvcsTpx9qw66nQHWqhHZ7yoy1YkZtH6Y/1ukC5mHCws3La9QT0wWZBOWa/G0CGgaEjFBTNc=
x-amz-request-id: RKCDQ54WAQVR244X
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:41 GMT
cache-control: public, max-age=30
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbb1c3eb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

app.bonus.ly/

104.18.11.197

200 OK

5.3 kB

URL User Request GET HTTP/2
app.bonus.ly/
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
HTML document, ASCII text, with very long lines (5516), with no line terminators
Size
5.3 kB (5323 bytes)
Hash
1967b32a93c1878bcd3367495b6a4bca
33bab467b1fbf5db8400186f979d7669bd51740f
48badb9d90a406d406b047268bb52440e748af0f1792c68db32483339ec0c5fb

HTTP Headers

GET / HTTP/1.1
Host: app.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/html
x-amz-id-2: 4H0IBeGPqgT/micKQt1FibUbgcmm9oXYKa3zNCVQWYsx1PaH7uCz0KFHehaq+1FrrqaPBCcT9Mg=
x-amz-request-id: VM92B171N3M3BTA3
last-modified: Wed, 17 Apr 2024 16:48:13 GMT
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; path=/; expires=Fri, 19-Apr-24 14:20:11 GMT; domain=.bonus.ly; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cb74eea56b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

recognition-production-cdn-aws.bonus.ly/assets/auth-ceea783bfecb6acd7f9486d2af9c6f9c980beeaed5766d3621fee49ce39cbf41.css

104.18.11.197

200 OK

15 kB

URL GET HTTP/3
recognition-production-cdn-aws.bonus.ly/assets/auth-ceea783bfecb6acd7f9486d2af9c6f9c980beeaed5766d3621fee49ce39cbf41.css
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
ASCII text, with very long lines (15443), with no line terminators
Size
15 kB (15443 bytes)
Hash
296ef92bdb5505466c1dddfade812a50
149a0eb3e391b0f35c67632dcf633b0be523f7d8
23928b452ffa424227c46cd52990683486dd13ce5cbb412b9ce8962870f54b33

HTTP Headers

GET /assets/auth-ceea783bfecb6acd7f9486d2af9c6f9c980beeaed5766d3621fee49ce39cbf41.css HTTP/1.1
Host: recognition-production-cdn-aws.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: text/css
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=15631
alt-svc: h3=":443"; ma=86400
etag: W/"a243433d80fa73cd8474b521209546a0"
expires: Wed, 25 Dec 2024 23:34:21 GMT
last-modified: Tue, 26 Dec 2023 17:34:23 GMT
vary: Origin, Accept-Encoding
via: 1.1 60f2c4b6c07455537be83f75f12576e8.cloudfront.net (CloudFront)
x-amz-cf-id: GHLmHTKEEy0fc-U0u_CzOhRcE6z73JWRq-FLSLbW0IKiNGb5rvMgEQ==
x-amz-cf-pop: ARN1-C1
x-amz-server-side-encryption: AES256
x-amz-version-id: y10UNpXhKwGjf1Mcm1f62_TGnuTztRhj
x-cache: Hit from cloudfront
cf-cache-status: HIT
age: 106211
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cc5efa1b50f-OSL
content-encoding: br

browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A5.13.0%2Capi%3Axhr%2Cenv%3Aproduction%2Cservice%3Amonarch%2Cversion%3A1.1.0&dd-api-key=pubd81c2cabb32a289ccded45586130bed5&dd-evp-origin-version=5.13.0&dd-evp-origin=browser&dd-request-id=d1e36b5e-441d-445d-8c71-0c066525844e&batch_time=1713534612320

3.233.147.183

202 Accepted

53 B

URL POST HTTP/2
browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A5.13.0%2Capi%3Axhr%2Cenv%3Aproduction%2Cservice%3Amonarch%2Cversion%3A1.1.0&dd-api-key=pubd81c2cabb32a289ccded45586130bed5&dd-evp-origin-version=5.13.0&dd-evp-origin=browser&dd-request-id=d1e36b5e-441d-445d-8c71-0c066525844e&batch_time=1713534612320
IP
3.233.147.183:443
ASN
#14618 AMAZON-AES

Requested by
https://app.bonus.ly/
Certificate
IssuerDigiCert Inc
Subject*.browser-intake-datadoghq.com
Fingerprint90:98:16:E4:5F:36:C7:67:0F:C6:18:49:63:19:73:FC:82:36:C1:4E
ValiditySat, 17 Jun 2023 00:00:00 GMT - Tue, 18 Jun 2024 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
53 B (53 bytes)
Hash
9240bb6664b09abbee68cd7575ca6d20
63bdb12b5c711d0c7b463db27346added5af0c37
7124997c4d4dee54a7af745df2a350f41a5997dde3d3ac34b08bb8b525cf9451

HTTP Headers

POST /api/v2/rum?ddsource=browser&ddtags=sdk_version%3A5.13.0%2Capi%3Axhr%2Cenv%3Aproduction%2Cservice%3Amonarch%2Cversion%3A1.1.0&dd-api-key=pubd81c2cabb32a289ccded45586130bed5&dd-evp-origin-version=5.13.0&dd-evp-origin=browser&dd-request-id=d1e36b5e-441d-445d-8c71-0c066525844e&batch_time=1713534612320 HTTP/1.1
Host: browser-intake-datadoghq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 16320
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 202 Accepted
date: Fri, 19 Apr 2024 13:50:12 GMT
content-type: application/json
content-length: 53
dd-request-id: d1e36b5e-441d-445d-8c71-0c066525844e
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2

js.hsadspixel.net/fb.js

104.17.223.152

200 OK

6.3 kB

URL GET HTTP/2
js.hsadspixel.net/fb.js
IP
104.17.223.152:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerLet's Encrypt
Subjecthsadspixel.net
Fingerprint89:04:B6:FD:E6:3E:5E:C8:E4:39:2D:83:6E:38:CC:9C:BE:A2:08:4D
ValidityTue, 16 Apr 2024 02:15:45 GMT - Mon, 15 Jul 2024 02:15:44 GMT

File type
JavaScript source, ASCII text, with very long lines (6486), with no line terminators
Size
6.3 kB (6291 bytes)
Hash
facef7d1cfc8bdbf02cfb401e5088c39
3ecc75b16660a35ee985ec70ba963b1670e92c07
38fba8eb92db43287027468a8fdabaa43a1269fe0ce303a7d911e10e60886875

HTTP Headers

GET /fb.js HTTP/1.1
Host: js.hsadspixel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Wed, 17 Apr 2024 20:10:21 UTC
etag: W/"af6b1be17376533273533217c0a71f6a"
x-amz-server-side-encryption: AES256
x-amz-version-id: yrGjwNdKXYEuiEn.zEhaUY64xmcE_TpR
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f01dafb3bec9893b47152910d47900a4.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: cA2fzj5KD2vAdoI3KkZF9SWRDq5UXdqdrSldrnYJK4Qu6OdjTpi16g==
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://send.hsbrowserreports.com/csp/report?resource=adsscriptloaderstatic/static-1.550/bundles/pixels-release.js&cfRay=875f1d9f1b9c5699-ARN
cache-control: max-age=600
x-hs-target-asset: adsscriptloaderstatic/static-1.550/bundles/pixels-release.js
x-content-type-options: nosniff
x-hs-cache-status: HIT
x-envoy-upstream-service-time: 3
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: 0d13981b-589a-4f41-adb6-4099f8dd72a4
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-68b7f7fbff-72bsp
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: 0d13981b-589a-4f41-adb6-4099f8dd72a4
cache-tag: staticjsapp-AdsScriptLoaderCloudflare-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 312
server: cloudflare
cf-ray: 876d5cc96a11568b-OSL
content-encoding: br
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/api2/info_2x.png

142.250.74.99

200 OK

665 B

URL GET HTTP/3
www.gstatic.com/recaptcha/api2/info_2x.png
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced
Size
665 B (665 bytes)
Hash
07bf314aab04047b9e9a959ee6f63da3
17bef6602672e2fd9956381e01356245144003e5
55eaf62cb05da20088dc12b39d7d254d046cb1fd61ddf3ae641f1439efd0a5ee

HTTP Headers

GET /recaptcha/api2/info_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 665
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:20:08 GMT
expires: Tue, 23 Apr 2024 07:20:08 GMT
cache-control: public, max-age=604800
age: 282608
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

app.bonus.ly/static/css/440.418f0169.chunk.css

104.18.11.197

200 OK

6.0 kB

URL GET HTTP/3
app.bonus.ly/static/css/440.418f0169.chunk.css
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
ASCII text, with very long lines (6043), with no line terminators
Size
6.0 kB (6039 bytes)
Hash
19874152b41248daef4559842c7e8da6
a72c3a15b50f4d0c9b3b2a2e3941b81970fc03b2
36b3a0fec4f2a1cf1cab19363a450611b065f1be2d5a96aedea7dde9d5b33542

HTTP Headers

GET /static/css/440.418f0169.chunk.css HTTP/1.1
Host: app.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.bonus.ly/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=6095
etag: W/"8f19a44fee86cee3a08b4309f80e7d01"
last-modified: Wed, 17 Apr 2024 16:48:13 GMT
x-amz-id-2: FKSzLk+dexc0MMoeQEhxv3jhgV2JIgn6piMrnxUjySqgO1J+CfS5Pq0ZqzY6XO55C3aFPguQJmg=
x-amz-request-id: 821AWMG5GYQYZRCA
cf-cache-status: HIT
age: 2240
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cba6b91b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css2?family=Inter:wght@400..700&display=swap

142.250.74.106

200 OK

2.4 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Inter:wght@400..700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://app.bonus.ly/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
ASCII text, with very long lines (2505), with no line terminators
Size
2.4 kB (2442 bytes)
Hash
41376c3cfbbf752648b5dcd689bdb062
f91fe8dff6d3ac80167795f0a6c14575add479c0
8e89f2d92fce8e9cf3d726cde63840d5ad197b6be67740e730817703fb2cb0f1

HTTP Headers

GET /css2?family=Inter:wght@400..700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 19 Apr 2024 13:50:11 GMT
date: Fri, 19 Apr 2024 13:50:11 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

recognition-production-cdn-aws.bonus.ly/packs/js/runtime-f3c8b02644462af8959e.js

104.18.11.197

200 OK

2.5 kB

URL GET HTTP/3
recognition-production-cdn-aws.bonus.ly/packs/js/runtime-f3c8b02644462af8959e.js
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JavaScript source, ASCII text, with very long lines (2549), with no line terminators
Size
2.5 kB (2523 bytes)
Hash
e9c0e08d5bf42e6d2ba6c064cd8db911
1879bdd66527c217bb6cbd0cb72eff497c35ac56
9d5b675d9450549593740a3d3f52ae9459e46e58c5976bf93f52d6ad77d51ae2

HTTP Headers

GET /packs/js/runtime-f3c8b02644462af8959e.js HTTP/1.1
Host: recognition-production-cdn-aws.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=2580
alt-svc: h3=":443"; ma=86400
etag: W/"85d86def779080be3a15dd5a441e203b"
last-modified: Thu, 22 Jun 2023 17:22:35 GMT
vary: Origin, Accept-Encoding
via: 1.1 b475a5f7d95ff68ca0dc588e3c9a3230.cloudfront.net (CloudFront)
x-amz-cf-id: GWBTgW9yvDXhybFtVlNLQfaTP6m3ot1RfVLxCQQ7j4wgN0ocuzborA==
x-amz-cf-pop: ARN1-C1
x-amz-server-side-encryption: AES256
x-amz-version-id: Z98JZECq6lU2p6SYPCY6dD.60_N.IbN4
x-cache: Hit from cloudfront
cf-cache-status: HIT
age: 1179
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cc5ffb6b50f-OSL
content-encoding: br

recognition-production-cdn-aws.bonus.ly/packs/js/users-8cfe9e5be42693d3ff55.js

104.18.11.197

200 OK

635 B

URL GET HTTP/3
recognition-production-cdn-aws.bonus.ly/packs/js/users-8cfe9e5be42693d3ff55.js
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JavaScript source, ASCII text, with very long lines (653), with no line terminators
Size
635 B (635 bytes)
Hash
bbf2fbfbe6db20322b47a1dc20dca589
4cc0bf25e8e3660ab4cc74639ff944ee720c4128
f9284372114a5ab38e9a4d3202798da1a79d2b5e88eebf6656dc80d6c6de3839

HTTP Headers

GET /packs/js/users-8cfe9e5be42693d3ff55.js HTTP/1.1
Host: recognition-production-cdn-aws.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=690
alt-svc: h3=":443"; ma=86400
etag: W/"8b03a8a69621ac8c12f3b4d6159dd163"
last-modified: Thu, 22 Jun 2023 17:22:37 GMT
vary: Origin, Accept-Encoding
via: 1.1 60f2c4b6c07455537be83f75f12576e8.cloudfront.net (CloudFront)
x-amz-cf-id: 6AB1kBhGpUL4AwLKXXdk182uMh8AqcULhyK6BwtHWlX0ThLsWN1TVg==
x-amz-cf-pop: ARN1-C1
x-amz-server-side-encryption: AES256
x-amz-version-id: ubyqqCtV.y9LoU7VsXGcbFZFVHkIbfaq
x-cache: Hit from cloudfront
cf-cache-status: HIT
age: 1179
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cc60fceb50f-OSL
content-encoding: br

app.bonus.ly/static/js/181.f2b241f5.chunk.js

104.18.11.197

200 OK

32 kB

URL GET HTTP/3
app.bonus.ly/static/js/181.f2b241f5.chunk.js
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JavaScript source, ASCII text, with very long lines (31662), with no line terminators
Size
32 kB (31662 bytes)
Hash
91bedad8683e09c70f0c54f321b3de94
bc1b2fc5f7aecfaf2a9eff58c1879fbacf9b5fad
e93ed8641f51adc8acf9b1194c7dfeb9ca10275ed75cb08ea853dec3fcba7256

HTTP Headers

GET /static/js/181.f2b241f5.chunk.js HTTP/1.1
Host: app.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.bonus.ly/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=31717
etag: W/"5992a69186654684fd814892b7e8fa37"
last-modified: Wed, 17 Apr 2024 16:48:14 GMT
x-amz-id-2: gouvAtrQqSQ3YNOW3eFySDcXH404hxJfZzuDwrRAFB8VaWPsQRZY2lVtDk3bqj63ZWWU2xA2xGg=
x-amz-request-id: 8213FEXKHCN8V3DZ
cf-cache-status: HIT
age: 2240
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cba1b44b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

mfe.bonus.ly/vertical-navbar/static/js/338.dc031733.chunk.js

104.18.11.197

200 OK

13 kB

URL GET HTTP/3
mfe.bonus.ly/vertical-navbar/static/js/338.dc031733.chunk.js
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JavaScript source, ASCII text, with very long lines (13275), with no line terminators
Size
13 kB (13275 bytes)
Hash
1d778769521d545ee07ee2ad10f2bea4
c1835e622e693a42399f5f34d6e73f47f02f2cce
67d6a583f5f78925673e4e9b8d0c8443ee0fc2f6bcd08e2cbb18fee6fc97a746

HTTP Headers

GET /vertical-navbar/static/js/338.dc031733.chunk.js HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=13325
etag: W/"c96910e31736d186083e180e47e07466"
last-modified: Wed, 17 Apr 2024 16:48:12 GMT
x-amz-id-2: zvwXesJ8Gxpy3/1xmPuPDfZmkUXFQa+qCpttrLPiQlQP+qTLmiley4UVHlO/caGTnGYUMMqInXQ=
x-amz-request-id: 9D0GGQVTQ0HQA8DY
cf-cache-status: HIT
age: 2239
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbc9dcab50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

mfe.bonus.ly/translations/locales/en/rewards.json

104.18.11.197

200 OK

7.1 kB

URL GET HTTP/3
mfe.bonus.ly/translations/locales/en/rewards.json
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
ASCII text, with very long lines (8193), with no line terminators
Size
7.1 kB (7113 bytes)
Hash
c2f3835acfa1892c11c3cc623c0510d0
ac596fcd6d8a3ec489082f2d0ac117fc4228f67f
c2cd8c228e3690072c413f91723257be2c177c97c0151e1c0097197870e70845

HTTP Headers

GET /translations/locales/en/rewards.json HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:12 GMT
content-type: application/json
x-amz-id-2: 1397u/sLaUBNQnF6jnFRq/xxjR8rePqqR1UyBKL1SNDe5Iyiwd26aJa+KkRe8UxSkwGmi0oNYXA=
x-amz-request-id: C6BEA9B1WHCFGBPH
access-control-allow-origin: https://app.bonus.ly
access-control-allow-methods: GET
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Thu, 18 Apr 2024 17:42:24 GMT
etag: W/"103e13db793eb100e925a1d685b42eed"
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:42 GMT
cache-control: public, max-age=30
set-cookie: __cf_bm=lKzXC_0Dgv9tjnOJTYo6hRI2A9gyLj7VOqXb6tgReF8-1713534612-1.0.1.1-7qxdwYsLNYCsADhJUPZjmjcR90_5wPwYPx2CnJdIcXmjyrb9CV8iX7HU88LkTyk.tGSGOzxuTq1yZvHlRp7cgw; path=/; expires=Fri, 19-Apr-24 14:20:12 GMT; domain=.bonus.ly; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbecfe3b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

recognition-production-cdn-aws.bonus.ly/assets/application-47f7a660947558065375643961243529f2cae4f0a7b6492482e87f56877a71ff.js

104.18.11.197

200 OK

337 kB

URL GET HTTP/3
recognition-production-cdn-aws.bonus.ly/assets/application-47f7a660947558065375643961243529f2cae4f0a7b6492482e87f56877a71ff.js
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
337 kB (336617 bytes)
Hash
0a1be4bc67782cfd8cfafe954f8fcab9
defddb6f92b7b8b483abc1f691d3c6e7d010ca6e
4900c433a7b8b0032cebf5013dcad73fcd885cb56e106aa6bfe36a376fe03106

HTTP Headers

GET /assets/application-47f7a660947558065375643961243529f2cae4f0a7b6492482e87f56877a71ff.js HTTP/1.1
Host: recognition-production-cdn-aws.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: application/javascript
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=336626
alt-svc: h3=":443"; ma=86400
etag: W/"6e3b3fdde6ef55447f29abecd68153fe"
expires: Wed, 26 Feb 2025 20:02:39 GMT
last-modified: Tue, 27 Feb 2024 14:02:40 GMT
vary: Origin, Accept-Encoding
via: 1.1 9ee3245d13c492e7e4abb0f2de012802.cloudfront.net (CloudFront)
x-amz-cf-id: 71EbCMCOSrAB9fXRmPSMo_wwoM508nM0woO1KDt5Me6lIl36A1xohg==
x-amz-cf-pop: ARN1-C1
x-amz-server-side-encryption: AES256
x-amz-version-id: XXfrMvPbmgYv5w.7rwJtAlmC_XYrTIH6
x-cache: Hit from cloudfront
cf-cache-status: HIT
age: 106211
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cc5efaeb50f-OSL
content-encoding: br

app.bonus.ly/cdn-cgi/challenge-platform/scripts/jsd/main.js

104.18.11.197

302 Found

7.8 kB

URL GET HTTP/3
app.bonus.ly/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type

Size
7.8 kB (7782 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: app.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 302 Found
date: Fri, 19 Apr 2024 13:50:11 GMT
content-length: 0
cache-control: max-age=300, public
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbadbf9b50f-OSL
alt-svc: h3=":443"; ma=86400

mfe.bonus.ly/vertical-navbar/static/js/462.7145f117.chunk.js

104.18.11.197

200 OK

6.6 kB

URL GET HTTP/3
mfe.bonus.ly/vertical-navbar/static/js/462.7145f117.chunk.js
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JavaScript source, ASCII text, with very long lines (6774), with no line terminators
Size
6.6 kB (6647 bytes)
Hash
e04877b8627b96235873d13106f5ec2f
b6b9208fabbb234a154657aa62080f2e8adfef3f
43eb0db68fa44852e99d4c1ccacb09682e3cfbae115733a003ca22f7229b2cc3

HTTP Headers

GET /vertical-navbar/static/js/462.7145f117.chunk.js HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=6697
etag: W/"d055e7e2faa7f77cf1cd28ee094d3922"
last-modified: Wed, 17 Apr 2024 16:48:12 GMT
x-amz-id-2: F7u+tTBXHZWcLZWv8Aha+wPSQdo1guqWPoDbLfAx0GsfddpBhtkx+6hPP947Tnr5UQWbZJFWAfA=
x-amz-request-id: 821D22P5FR2K8531
cf-cache-status: HIT
age: 2239
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbc9dc2b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

recognition-production-cdn-aws.bonus.ly/assets/vendor-196a2a97844c9f71dc83ffd159ef261b17b8f5ed52cd6be4110088abea2903f3.js

104.18.11.197

200 OK

1.1 MB

URL GET HTTP/3
recognition-production-cdn-aws.bonus.ly/assets/vendor-196a2a97844c9f71dc83ffd159ef261b17b8f5ed52cd6be4110088abea2903f3.js
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type

Size
1.1 MB (1094454 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /assets/vendor-196a2a97844c9f71dc83ffd159ef261b17b8f5ed52cd6be4110088abea2903f3.js HTTP/1.1
Host: recognition-production-cdn-aws.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: application/javascript
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=1098143
alt-svc: h3=":443"; ma=86400
etag: W/"5bd287872f239c55c773f8755c3b80d0"
expires: Thu, 26 Dec 2024 01:56:56 GMT
last-modified: Tue, 26 Dec 2023 19:56:58 GMT
vary: Origin, Accept-Encoding
via: 1.1 60f2c4b6c07455537be83f75f12576e8.cloudfront.net (CloudFront)
x-amz-cf-id: dIu3LC09gEUyMXNZCRCu2InunKHva6B24wHeuOkcWt_G1HnHVVEbkQ==
x-amz-cf-pop: ARN1-C1
x-amz-server-side-encryption: AES256
x-amz-version-id: Mt2VeqPH0H1DCI7BAKoztCS5z7Z0ukga
x-cache: Hit from cloudfront
cf-cache-status: HIT
age: 1322052
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cc5efacb50f-OSL
content-encoding: br

mfe.bonus.ly/vertical-navbar/static/js/15.a5db7b6a.chunk.js

104.18.11.197

200 OK

77 kB

URL GET HTTP/3
mfe.bonus.ly/vertical-navbar/static/js/15.a5db7b6a.chunk.js
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
77 kB (77161 bytes)
Hash
814eeb6fa498d9ec446d527341aea6ec
af320d31413c2eee791a262f26856488161b6ddb
fc48548f866014fead9e318ccf7a73ad409a2791de0535be23d40e7ae76b5230

HTTP Headers

GET /vertical-navbar/static/js/15.a5db7b6a.chunk.js HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=77210
etag: W/"dcdabf8c9f1e1a2b7b5ddd76cac449b6"
last-modified: Wed, 17 Apr 2024 16:48:12 GMT
x-amz-id-2: r6fLhXCcGFe4RTYLYZlZg0DahEZ8qKuA8ztCv+aiSvp5lU1a+0waqA0glChnv8nTz2GTTbnG++M=
x-amz-request-id: 8219JZYW74CK301F
cf-cache-status: HIT
age: 2239
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbcaddcb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

recognition-production-cdn-aws.bonus.ly/packs/js/application-68426ef476247fdf3da5.js

104.18.11.197

200 OK

228 B

URL GET HTTP/3
recognition-production-cdn-aws.bonus.ly/packs/js/application-68426ef476247fdf3da5.js
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JavaScript source, ASCII text, with no line terminators
Size
228 B (228 bytes)
Hash
4ac34453fdfd584593fbec38724e9006
9c8d6de2f3ff6d79b7d8518719a8a216da431bc6
cd972fe72ae1869bd4667674f055f3130ede44728fbd87b45cc31be99663e08a

HTTP Headers

GET /packs/js/application-68426ef476247fdf3da5.js HTTP/1.1
Host: recognition-production-cdn-aws.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=289
alt-svc: h3=":443"; ma=86400
etag: W/"f7a0d46807b912ce99ad52e166ce3ef7"
last-modified: Wed, 24 Jan 2024 18:54:55 GMT
vary: Origin, Accept-Encoding
via: 1.1 b58b188f0b591d63a56e49672312d538.cloudfront.net (CloudFront)
x-amz-cf-id: MpZwM_Fxm9f4d3039hJ48cPpof5ndNZa0ul35Dw2wRVePF7nCWkQUw==
x-amz-cf-pop: ARN1-C1
x-amz-server-side-encryption: AES256
x-amz-version-id: GAQMUeEvyNghV7fxvailbDlSqbEm4ohB
x-cache: Hit from cloudfront
cf-cache-status: HIT
age: 2268
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cc5ffc1b50f-OSL
content-encoding: br

mfe.bonus.ly/vertical-navbar/static/js/881.ca0d3e5d.chunk.js

104.18.11.197

200 OK

87 kB

URL GET HTTP/3
mfe.bonus.ly/vertical-navbar/static/js/881.ca0d3e5d.chunk.js
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
87 kB (86661 bytes)
Hash
d3b0e578a8a9e63fc0e643b55f27051d
bcaca54d052c5afd90ccd78d4ced32c06852d912
6ce99f7e39a03d6e4d3039b89672b7e72029a9c155ff1b3712f46d651e8ca689

HTTP Headers

GET /vertical-navbar/static/js/881.ca0d3e5d.chunk.js HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=86716
etag: W/"e99278a731561c3506f53c6cb60e4bbc"
last-modified: Wed, 17 Apr 2024 16:48:14 GMT
x-amz-id-2: AgHM/pa7qZLa+DTFKYX74IRWFWS5p5iR183mszdDH8tQl2TJvxAL/IOxyGOE7dVesudPeJZJ/Tg=
x-amz-request-id: 821F0RH63TNHCM31
cf-cache-status: HIT
age: 2239
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbcade0b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

mfe.bonus.ly/translations/locales/en/bookmarks.json

104.18.11.197

200 OK

2.4 kB

URL GET HTTP/3
mfe.bonus.ly/translations/locales/en/bookmarks.json
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
ASCII text, with very long lines (2810), with no line terminators
Size
2.4 kB (2427 bytes)
Hash
e080b96a2ea9f6372f864bbf27b7ba27
9510141b0a9b51ac89b03ed2b1b5dafdc2e2f278
437b3367b9c8d6580069d05779ae7c63446ec08e7293a0b6c94c32c70becb3f0

HTTP Headers

GET /translations/locales/en/bookmarks.json HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:12 GMT
content-type: application/json
x-amz-id-2: 3LGtBcfLRKz80nDhjlIFu2aWPGSo6u3pMA/H0kripOTcd0yESMzI9dMavriTBGGuHKXq0f3zyRc=
x-amz-request-id: C6BCCMDD5CSB5A44
access-control-allow-origin: https://app.bonus.ly
access-control-allow-methods: GET
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Thu, 18 Apr 2024 17:42:24 GMT
etag: W/"1ad01e07dbf49106ef22e716092c0a81"
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:42 GMT
cache-control: public, max-age=30
set-cookie: __cf_bm=NxFDh1oY3BKLVXiGczvcs4cViPVvItx.lvOJXJ_VtaM-1713534612-1.0.1.1-EvY6OWZsdNQvV.UHHpkAaPICDr2cDvBnrNWkjtKbM_eNNxa0CMmO_VRLvfu84bsl5Eog0_FUj7uHPYlixsIXYA; path=/; expires=Fri, 19-Apr-24 14:20:12 GMT; domain=.bonus.ly; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbeafc7b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.google.com/recaptcha/api2/payload?p=06AFcWeA7-bcei4Dquc6qshjgEXbthm0Eif0qEofwNcbS2vhTBnLphnBNB_NiFKe0NxAsx08SUqyxs0iNOFSdbn-mH_Tom09igbY9MenNE-iH2ECEJ9GC7BFtzyKBE4PAcEBYHBZc97xqHy7IYcZoysooZhcsbxar2u9U0g5qsBYVe2AkkEN_D0YslJ3FHNLiLQsF4kg8GO-LS&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG

142.250.74.164

200 OK

48 kB

URL GET HTTP/3
www.google.com/recaptcha/api2/payload?p=06AFcWeA7-bcei4Dquc6qshjgEXbthm0Eif0qEofwNcbS2vhTBnLphnBNB_NiFKe0NxAsx08SUqyxs0iNOFSdbn-mH_Tom09igbY9MenNE-iH2ECEJ9GC7BFtzyKBE4PAcEBYHBZc97xqHy7IYcZoysooZhcsbxar2u9U0g5qsBYVe2AkkEN_D0YslJ3FHNLiLQsF4kg8GO-LS&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D
ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 450x450, components 3
Size
48 kB (48196 bytes)
Hash
8db4c58b27958be3c800e3c9b10b8e64
1dfd80a75e03bc2a25a3734136d5c7cd9d850ed1
b1852fe79a3d4b6e9adb8d52e3d3ff51d180c3ef390cbc2c94dbe1adc59afffa

HTTP Headers

GET /recaptcha/api2/payload?p=06AFcWeA7-bcei4Dquc6qshjgEXbthm0Eif0qEofwNcbS2vhTBnLphnBNB_NiFKe0NxAsx08SUqyxs0iNOFSdbn-mH_Tom09igbY9MenNE-iH2ECEJ9GC7BFtzyKBE4PAcEBYHBZc97xqHy7IYcZoysooZhcsbxar2u9U0g5qsBYVe2AkkEN_D0YslJ3FHNLiLQsF4kg8GO-LS&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG
Cookie: _GRECAPTCHA=09ALYNOahEOdUfxqh3GtUrgLYcGL1wLK4ikMpwo8XKJChIyjPNQAEDF4Hsd-wfG3CXG_avWzuRyV0odGNfFX1cmGA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: image/jpeg
expires: Fri, 19 Apr 2024 13:50:16 GMT
date: Fri, 19 Apr 2024 13:50:16 GMT
cache-control: private, max-age=30
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

ajax.googleapis.com/ajax/libs/jqueryui/1.12.1/themes/smoothness/jquery-ui.min.css

142.250.74.106

200 OK

31 kB

URL GET HTTP/3
ajax.googleapis.com/ajax/libs/jqueryui/1.12.1/themes/smoothness/jquery-ui.min.css
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
ASCII text, with very long lines (29523)
Size
31 kB (31286 bytes)
Hash
3c2a865c832a1322285c55c6ed99abb2
b456f4c43e3d45f0a85811e2c60b2256dfd2efdb
be92933b839bd4ce1b67c440bd9bd832d8a7333d578c7d1061d00edbceb557d3

HTTP Headers

GET /ajax/libs/jqueryui/1.12.1/themes/smoothness/jquery-ui.min.css HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 7645
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 22:10:52 GMT
expires: Tue, 15 Apr 2025 22:10:52 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 315561
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

grow.clearbitjs.com/api/pixel.js?v=1713534614027

216.24.57.252

200 OK

100 B

URL GET HTTP/2
grow.clearbitjs.com/api/pixel.js?v=1713534614027
IP
216.24.57.252:443
ASN
#397273 RENDER

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerLet's Encrypt
Subjectgrow.clearbitjs.com
FingerprintBC:C5:FC:1B:D0:61:CF:C8:B6:19:27:5D:7B:CE:A8:A7:A3:DF:0E:35
ValidityTue, 19 Mar 2024 07:19:16 GMT - Mon, 17 Jun 2024 07:19:15 GMT

File type
ASCII text, with no line terminators
Size
100 B (100 bytes)
Hash
68234aee269e33a1d420349be29ed3bd
33724eaf48ae22a8bdc532da6ecb2685e4ca61e9
6c4bdad53042e2bd6e5a231bfcd66d19dc33f507edc2b847ff3c58aca74ff138

HTTP Headers

GET /api/pixel.js?v=1713534614027 HTTP/1.1
Host: grow.clearbitjs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:50:14 GMT
content-type: text/javascript
cf-ray: 876d5ccade4e56a4-OSL
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding
rndr-id: 66d35ddf-db12-4d4b
x-content-type-options: nosniff
x-render-origin-server: Render
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

mfe.bonus.ly/translations/locales/en/feedback.json

104.18.11.197

200 OK

4.9 kB

URL GET HTTP/3
mfe.bonus.ly/translations/locales/en/feedback.json
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
ASCII text, with very long lines (5798), with no line terminators
Size
4.9 kB (4908 bytes)
Hash
8a9a5f59a0a94b5453a61b7223df8726
0bdbeff7cf4559d9080ab0b2f3366bf1435f707e
434db42a89e110a7759a03aa1659ce79410cc9a37e1f1860b0f6ff98ad613bb8

HTTP Headers

GET /translations/locales/en/feedback.json HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:12 GMT
content-type: application/json
x-amz-id-2: tFaDiBE3EJbZbik/QH5wNFNBHe3MTge+MJpaDNn98PLv0x7OPpux17lXOJ7t9IciImI1FWQuNfY=
x-amz-request-id: C6B3XGM7Y74RGQDZ
access-control-allow-origin: https://app.bonus.ly
access-control-allow-methods: GET
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Thu, 18 Apr 2024 17:42:24 GMT
etag: W/"d5e753033fcd45f66c53168506c0c575"
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:42 GMT
cache-control: public, max-age=30
set-cookie: __cf_bm=4g37ryEv2JdG83QI1NZBkkekQumubwKYjKhbyK4arRM-1713534612-1.0.1.1-oBkLE9SHhS.a_kzwnvF0rHrdAGFcGXz.LWxeMNy8vJ7uNWIF_lre9FesYP1aBfiNMxryLOnmuPUH8gSi8crA_A; path=/; expires=Fri, 19-Apr-24 14:20:12 GMT; domain=.bonus.ly; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=xD9o7D4Gq6Z4qstshXx7rT99b3yYkKG9X0Q5Wk4BTq0-1713534612-1.0.1.1-LiIbYA3xDZE97pJGrctYaYc76x_IsE4g0LC73a9aPDd3C8tGkLSqSg8VyU0o5evMfDdnSRVsa.NyrTwnKa7OkbAFqHqSDhpptkwWIC2JedMtr5oUtEmn7VU7E9bQZSvorPktzOv_nfpoboYcznHfGg"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; connect-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=xD9o7D4Gq6Z4qstshXx7rT99b3yYkKG9X0Q5Wk4BTq0-1713534612-1.0.1.1-LiIbYA3xDZE97pJGrctYaYc76x_IsE4g0LC73a9aPDd3C8tGkLSqSg8VyU0o5evMfDdnSRVsa.NyrTwnKa7OkbAFqHqSDhpptkwWIC2JedMtr5oUtEmn7VU7E9bQZSvorPktzOv_nfpoboYcznHfGg; report-to cf-csp-endpoint
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbebfceb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

region1.analytics.google.com/g/collect?v=2&tid=G-LYH0R10SEC&gtm=45je44h0v870573331z879280153za200&_p=1713534613669&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1590843329.1713534614&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713534614&sct=1&seg=0&dl=https%3A%2F%2Fbonus.ly%2Fusers%2Fsign_in_start&dt=Sign%20In%20-%20Bonusly&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=1095

216.239.34.36

204 No Content

0 B

URL GET HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-LYH0R10SEC&gtm=45je44h0v870573331z879280153za200&_p=1713534613669&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1590843329.1713534614&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713534614&sct=1&seg=0&dl=https%3A%2F%2Fbonus.ly%2Fusers%2Fsign_in_start&dt=Sign%20In%20-%20Bonusly&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=1095
IP
216.239.34.36:443
ASN
#15169 GOOGLE

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D
ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /g/collect?v=2&tid=G-LYH0R10SEC&gtm=45je44h0v870573331z879280153za200&_p=1713534613669&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1590843329.1713534614&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713534614&sct=1&seg=0&dl=https%3A%2F%2Fbonus.ly%2Fusers%2Fsign_in_start&dt=Sign%20In%20-%20Bonusly&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=1095 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
access-control-allow-origin: *
date: Fri, 19 Apr 2024 13:50:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.com/js/bg/RWTT3oxVpjnMak3qs5vv7tg5xSkq7YqXMGNs3aBXMhQ.js

142.250.74.164

200 OK

18 kB

URL GET HTTP/3
www.google.com/js/bg/RWTT3oxVpjnMak3qs5vv7tg5xSkq7YqXMGNs3aBXMhQ.js
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D
ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT

File type
JavaScript source, ASCII text, with very long lines (17614)
Size
18 kB (18209 bytes)
Hash
a0b566c1ba416a3899181051b4e22648
6e24d55d8094a8e96bbcdb2c8b2baec42ad59128
4564d3de8c55a639cc6a4deab39befeed839c5292aed8a9730636cdda0573214

HTTP Headers

GET /js/bg/RWTT3oxVpjnMak3qs5vv7tg5xSkq7YqXMGNs3aBXMhQ.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 7470
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 05:03:42 GMT
expires: Thu, 17 Apr 2025 05:03:42 GMT
cache-control: public, max-age=31536000
age: 204394
last-modified: Thu, 04 Apr 2024 18:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

app.bonus.ly/cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js

104.18.11.197

200 OK

7.8 kB

URL GET HTTP/3
app.bonus.ly/cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JavaScript source, ASCII text, with very long lines (7782), with no line terminators
Size
7.8 kB (7782 bytes)
Hash
ec56bd03721706681f9c02f822c80d1e
6901ac2619288d83544c47fd6a33784c89136b79
631a476a4d4741d3f00f2d862bad7b8f05950edccffc6d1d9c7b9fdbdb5c9bd8

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js HTTP/1.1
Host: app.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: application/javascript; charset=UTF-8
vary: accept-encoding
cache-control: max-age=14400, public
content-encoding: br
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbb4c85b50f-OSL
alt-svc: h3=":443"; ma=86400

mfe.bonus.ly/vertical-navbar/static/js/180.fc9981fe.chunk.js

104.18.11.197

200 OK

22 kB

URL GET HTTP/3
mfe.bonus.ly/vertical-navbar/static/js/180.fc9981fe.chunk.js
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JavaScript source, ASCII text, with very long lines (22485), with no line terminators
Size
22 kB (22485 bytes)
Hash
9490dc0103119ed3c4599f6aafd0649e
01e11f4c98d21ce95a45cf01b59d9715358cf635
786ed807de9e608ceefdf7e3d49912f3cbd1ee234eed28bc5df4a68ab354429c

HTTP Headers

GET /vertical-navbar/static/js/180.fc9981fe.chunk.js HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=22532
etag: W/"921298d5872ecd887f5dcfb519cf3fe6"
last-modified: Wed, 17 Apr 2024 16:48:11 GMT
x-amz-id-2: FKAZQyfOCQbCYckH8H9kyqzuCekOcm3wUYg12flqKkueZbQ6m4SdG0KoyrS2Yu4dgMzTwDeCHKU=
x-amz-request-id: 82110XVHV1YTSBX7
cf-cache-status: HIT
age: 2239
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbc9dd0b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

mfe.bonus.ly/translations/locales/en/vertical_navbar.json

104.18.11.197

200 OK

3.2 kB

URL GET HTTP/3
mfe.bonus.ly/translations/locales/en/vertical_navbar.json
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
ASCII text, with very long lines (3977), with no line terminators
Size
3.2 kB (3192 bytes)
Hash
350920dd187478ec6bdbc5c244579225
bb7f443151e623811608c98e20a993974ee10a33
e79c2baa8cb0042f5fa7a23225cf54514545ce7684bec12f035d013a86d5d765

HTTP Headers

GET /translations/locales/en/vertical_navbar.json HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:12 GMT
content-type: application/json
x-amz-id-2: Fcqf5HN0BjaDxquUO73z7+55hkWflqaH957h7SnoCy9CmrYcHkywr03QdbpTEYW9emcG9OdFOI8=
x-amz-request-id: C6B54QC1W4PRMFN2
access-control-allow-origin: https://app.bonus.ly
access-control-allow-methods: GET
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Thu, 18 Apr 2024 17:42:24 GMT
etag: W/"01ac3cdb4d2a3a613a92cbbc6e2caab0"
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:42 GMT
cache-control: public, max-age=30
set-cookie: __cf_bm=UkGCsp3MmUQxZfDRHkWSwD__Bybs1wx1SBJpTXz7K.w-1713534612-1.0.1.1-x4ZoRCc_6Md3N0osbHVZKj9FoyYFEWKbNoBh20D7NycZfBaqktbQcwMjP9J09vhLlUs8YmHbFCNk2vX6F.TMzw; path=/; expires=Fri, 19-Apr-24 14:20:12 GMT; domain=.bonus.ly; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbecfe7b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

recognition-production-cdn-aws.bonus.ly/packs/js/124-25e43b36d0ead4768804.js

104.18.11.197

200 OK

99 kB

URL GET HTTP/3
recognition-production-cdn-aws.bonus.ly/packs/js/124-25e43b36d0ead4768804.js
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
99 kB (99212 bytes)
Hash
62933eeb8f08628fefd6a1b63563dbe9
16b3b4b58cf79a6805bf6ce009ff6addbca782dc
df56aae28aaa1d966e1bf34dd301238c6444a4672da9e779c75ef508f4727ab5

HTTP Headers

GET /packs/js/124-25e43b36d0ead4768804.js HTTP/1.1
Host: recognition-production-cdn-aws.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=99266
alt-svc: h3=":443"; ma=86400
etag: W/"a30bdb8a20d23fdede75f7779a45aa53"
last-modified: Thu, 22 Jun 2023 17:22:28 GMT
vary: Origin, Accept-Encoding
via: 1.1 8021f954d329869476f935f2fb14e66e.cloudfront.net (CloudFront)
x-amz-cf-id: ODfkH9G3ThpwXa2PLDHAgBUA_9f2CcUJL2eu9ppk4K8XrbOuhx9q8A==
x-amz-cf-pop: ARN1-C1
x-amz-server-side-encryption: AES256
x-amz-version-id: q4zwcA6DKw8hkJZ4582A7doYZDVwg2UV
x-cache: Hit from cloudfront
cf-cache-status: HIT
age: 2268
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cc5ffbbb50f-OSL
content-encoding: br

mfe.bonus.ly/translations/locales/en/recognition.json

104.18.11.197

200 OK

16 kB

URL GET HTTP/3
mfe.bonus.ly/translations/locales/en/recognition.json
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type

Size
16 kB (15510 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /translations/locales/en/recognition.json HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:12 GMT
content-type: application/json
x-amz-id-2: qgJBqAJBd/EhCkD+Ln4jQzc08WW14F3W3qUyoSHJcxSh+k193agPaVnkBPYTxtzBiyMbvKkO+q4=
x-amz-request-id: C6B40CC4PHZ7RKP2
access-control-allow-origin: https://app.bonus.ly
access-control-allow-methods: GET
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Thu, 18 Apr 2024 17:42:24 GMT
etag: W/"f6119a79b2833913aee901c90297de21"
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:42 GMT
cache-control: public, max-age=30
set-cookie: __cf_bm=XB.Xbpjz60vXH8rK.DcACWo0CBwVv2W28qnjIrF0dmQ-1713534612-1.0.1.1-QkML4sZcc5I3ccs1RrRu2ytRgmbqN4jpWWILbP3pZl5OBxVqYGGNNZFgykka9i3hMrAHMzNBWC467_mGAVsSYA; path=/; expires=Fri, 19-Apr-24 14:20:12 GMT; domain=.bonus.ly; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbecfe1b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

recognition-production-cdn-aws.bonus.ly/assets/funnel_in-bd4d605ee03324548cc405a6ef7410c4ed0dfba304c4201acdd475f2033a4104.js

104.18.11.197

200 OK

93 kB

URL GET HTTP/3
recognition-production-cdn-aws.bonus.ly/assets/funnel_in-bd4d605ee03324548cc405a6ef7410c4ed0dfba304c4201acdd475f2033a4104.js
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
93 kB (92613 bytes)
Hash
ba58f73511d358b2929c64838687ed0a
48bd27243b533345ec1278a119102a03911b352a
0205964603d7a7fb880107ea47e0b48ed030e175fc4ea43fb52d92a3e21fb386

HTTP Headers

GET /assets/funnel_in-bd4d605ee03324548cc405a6ef7410c4ed0dfba304c4201acdd475f2033a4104.js HTTP/1.1
Host: recognition-production-cdn-aws.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: application/javascript
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=93718
alt-svc: h3=":443"; ma=86400
etag: W/"fa12a5f32aac8dead6dee5133f0b9abb"
expires: Fri, 21 Jun 2024 23:20:26 GMT
last-modified: Thu, 22 Jun 2023 17:20:27 GMT
vary: Origin, Accept-Encoding
via: 1.1 1132899b9bc2928e13b30713fd82f9b0.cloudfront.net (CloudFront)
x-amz-cf-id: Xv6ETbYhw8wIt0DbEK5osQVvNFM2qy9yBiqpDvzr3XkvuEOg3gvcfg==
x-amz-cf-pop: ARN1-C1
x-amz-server-side-encryption: AES256
x-amz-version-id: TgwOZKGKs2iNQHdFtCCRvtPYd3wbSqfG
x-cache: Hit from cloudfront
cf-cache-status: HIT
age: 1272952
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cc5efb2b50f-OSL
content-encoding: br

js.hsleadflows.net/leadflows.js

104.18.138.17

200 OK

564 kB

URL GET HTTP/2
js.hsleadflows.net/leadflows.js
IP
104.18.138.17:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerLet's Encrypt
Subjecthsleadflows.net
Fingerprint2A:AE:F1:03:2C:4F:72:27:B3:89:5D:9B:C9:B1:AC:12:FE:A9:CA:8E
ValidityFri, 05 Apr 2024 00:07:39 GMT - Thu, 04 Jul 2024 00:07:38 GMT

File type

Size
564 kB (563723 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /leadflows.js HTTP/1.1
Host: js.hsleadflows.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Wed, 03 Apr 2024 09:27:53 UTC
etag: W/"d252299cef5b9176cf0435e72e0baeeb"
x-amz-server-side-encryption: AES256
x-amz-version-id: FzXUOelq5PzvbDhLOc3Au0ThiCBuXHAc
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 a4f9ca051b97c1ac09e2af244690d376.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: a-s25epoPshycSJGRVwIwoDOpT3Vo6gMkFWOzXeU1RLTWDNdW9Gn3Q==
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://send.hsbrowserreports.com/csp/report?resource=lead-flows-js/static-1.1338/bundle/main/lead-flows-release.js&cfRay=86e844565dac95f6-ARN
cache-control: s-maxage=86400, max-age=0
x-hs-target-asset: lead-flows-js/static-1.1338/bundle/main/lead-flows-release.js
x-content-type-options: nosniff
x-hs-cache-status: MISS
x-envoy-upstream-service-time: 8
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: fa87450d-8426-49dd-ac5e-4b459263a350
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-68b7f7fbff-trtck
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: fa87450d-8426-49dd-ac5e-4b459263a350
cache-tag: staticjsapp-lead-flows-cloudflare-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 31636
server: cloudflare
cf-ray: 876d5cc958e75694-OSL
content-encoding: br
X-Firefox-Spdy: h2

tag.clearbitscripts.com/v1/pk_314ecea713d6fc4d1b570380427eb5fa/tags.js

143.204.55.5

403 Forbidden

82 B

URL GET HTTP/2
tag.clearbitscripts.com/v1/pk_314ecea713d6fc4d1b570380427eb5fa/tags.js
IP
143.204.55.5:443
ASN
#16509 AMAZON-02

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerAmazon
Subjectclearbitscripts.com
FingerprintCE:14:DE:34:40:8E:00:D4:A3:F4:06:A4:C2:AC:24:38:32:33:E5:94
ValiditySun, 11 Jun 2023 00:00:00 GMT - Tue, 09 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with no line terminators
Size
82 B (82 bytes)
Hash
a5a8a7c1bd5c7f96f134c2097360d930
a4bb7bd4506cdc055afbab69f15235f2f95cb349
abfbc3e2e7d27cb1742b6f9bbbb19d747d659fe3b6660f319e21cfbe617d05b3

HTTP Headers

GET /v1/pk_314ecea713d6fc4d1b570380427eb5fa/tags.js HTTP/1.1
Host: tag.clearbitscripts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 403 Forbidden
content-type: application/javascript;charset=utf-8
cache-control: private, max-age=600
vary: Accept-Encoding
content-encoding: gzip
date: Fri, 19 Apr 2024 13:50:14 GMT
x-envoy-response-flags: -
server: Clearbit
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-cache: Error from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ldGQ06vgDKYN2eFdU3lAw5A5v99TUbCgT0odaojmA1SzdC9YLsjDTA==
X-Firefox-Spdy: h2

mfe.bonus.ly/datacomponents/remoteEntry.js

104.18.11.197

200 OK

8.3 kB

URL GET HTTP/3
mfe.bonus.ly/datacomponents/remoteEntry.js
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JavaScript source, ASCII text, with very long lines (8609), with no line terminators
Size
8.3 kB (8335 bytes)
Hash
e56e5b297d6e576765a454bcf35fe91e
a46368f6b85b6fc3c3c6f5363bf22f668cd1ef16
9ba6f7a55df1be2c848cd831836dbe1a7ca9cf950b96115edf59172c9b03d2b7

HTTP Headers

GET /datacomponents/remoteEntry.js HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=8375
etag: W/"7fa659f255c31204b01ce7f8bf92e6c9"
last-modified: Thu, 18 Apr 2024 18:53:29 GMT
x-amz-id-2: dG5GKFldABpZoH6bPcfnDyCM03qOaAM63fdvStExzJTi3lUjlgr0l1hxCbCI3g9AJcHBdFBgX6c=
x-amz-request-id: GAJQ2CXJK4Y51TNH
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:41 GMT
cache-control: public, max-age=30
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbb8cb5b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

mfe.bonus.ly/translations/locales/en/navigation.json

104.18.11.197

200 OK

3.0 kB

URL GET HTTP/3
mfe.bonus.ly/translations/locales/en/navigation.json
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
ASCII text, with very long lines (3504), with no line terminators
Size
3.0 kB (3039 bytes)
Hash
3ec936ead41169a44de4acd7a77f8fb7
b3de0276499174e2575fa6a1cb6780c45eafbdd7
228075fec32b58b593de8c86eac4f9311879ba63bfe3e8e5acb2093e3b975a3a

HTTP Headers

GET /translations/locales/en/navigation.json HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:12 GMT
content-type: application/json
x-amz-id-2: i412YVddfdCVCuKG8FtND+vCURhdzyXwr4g/DoN+x0BtQjk/hDLgICOJYsWESnvoCGrgBKlI8Jg=
x-amz-request-id: C6B16S9WZZ1GC7C5
access-control-allow-origin: https://app.bonus.ly
access-control-allow-methods: GET
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Thu, 18 Apr 2024 17:42:24 GMT
etag: W/"e422d5d10d6dab110d30ccbb23528d80"
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:42 GMT
cache-control: public, max-age=30
set-cookie: __cf_bm=bZvcKZNIdSj7qptqjF.qyhawuCQdr1COYP5kdSuVRwI-1713534612-1.0.1.1-uWUT8Y83oZisQICh_X8heheYHjD8NiGLJrz4VU5yveSIKJsuqAEZt9ytvRupqGDFReJgTKYGgSNH_NCd1LI88Q; path=/; expires=Fri, 19-Apr-24 14:20:12 GMT; domain=.bonus.ly; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbecfd8b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css2?family=Plus+Jakarta+Sans:wght@300;425;500;600;700;800&display=swap

142.250.74.106

200 OK

9.7 kB

URL GET HTTP/3
fonts.googleapis.com/css2?family=Plus+Jakarta+Sans:wght@300;425;500;600;700;800&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
ASCII text, with very long lines (9882), with no line terminators
Size
9.7 kB (9666 bytes)
Hash
d2584239111938976a55e66b7e6d8a00
92efe0c680da776201be3b427c342bfcd63fce5d
1b5c013947cd8756d47d4e97341547de0aaa81547a11f5c81f87f18abae8d63a

HTTP Headers

GET /css2?family=Plus+Jakarta+Sans:wght@300;425;500;600;700;800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 19 Apr 2024 13:50:13 GMT
date: Fri, 19 Apr 2024 13:50:13 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.googletagmanager.com/gtm.js?id=GTM-N5K2M3S

142.250.74.168

200 OK

366 kB

URL GET HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-N5K2M3S
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D
ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT

File type

Size
366 kB (365650 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /gtm.js?id=GTM-N5K2M3S HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 19 Apr 2024 13:50:13 GMT
expires: Fri, 19 Apr 2024 13:50:13 GMT
cache-control: private, max-age=900
last-modified: Fri, 19 Apr 2024 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 114035
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

recognition-production-cdn-aws.bonus.ly/assets/auth/bubbles-large-ce1be2801397d0d898caaca439b317b8de20aa3669628718943f39ad585f054b.svg

104.18.11.197

200 OK

995 B

URL GET HTTP/3
recognition-production-cdn-aws.bonus.ly/assets/auth/bubbles-large-ce1be2801397d0d898caaca439b317b8de20aa3669628718943f39ad585f054b.svg
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
SVG Scalable Vector Graphics image
Size
995 B (995 bytes)
Hash
e30839be1a20a2610e8ea91b54d10feb
b50a917cc63c300797573108057a9ce70f8152ab
3687d73b35be538fa3f5d46c86d02b3319692605bec1611f383b43244f93e925

HTTP Headers

GET /assets/auth/bubbles-large-ce1be2801397d0d898caaca439b317b8de20aa3669628718943f39ad585f054b.svg HTTP/1.1
Host: recognition-production-cdn-aws.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://recognition-production-cdn-aws.bonus.ly/assets/auth-ceea783bfecb6acd7f9486d2af9c6f9c980beeaed5766d3621fee49ce39cbf41.css
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Jun 2023 17:19:18 GMT
etag: W/"4ef692508e9d83cf274162a8ee6760d5"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31557600
expires: Fri, 21 Jun 2024 23:19:17 GMT
x-amz-version-id: Fg5KYq7JsLpja9fYwHdKyrOEorOcn1va
x-cache: Hit from cloudfront
via: 1.1 b4b5a8fc69875a192be2508de7e5a5e8.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: XIT2R2mpjqJmK3rpX0BzGhJCKgtQOD3KCEeV0FyEhBl5Rs96XHzKBA==
vary: Origin, Accept-Encoding
cf-cache-status: HIT
age: 1272951
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cc7ca4ab50f-OSL
content-encoding: br

fonts.googleapis.com/css2?family=Lato:ital,wght@0,400;0,700;1,400&display=swap

142.250.74.106

200 OK

2.3 kB

URL GET HTTP/3
fonts.googleapis.com/css2?family=Lato:ital,wght@0,400;0,700;1,400&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
ASCII text, with very long lines (2350), with no line terminators
Size
2.3 kB (2296 bytes)
Hash
b9468f03130d81cf9fe03353b81c9b30
eddecebcc388892441f24156a105b9f7ec9d8b7d
cd010d1147a4d6daae18b4a590e36ca01851ef1749feea22aaf06cb8444d7d2d

HTTP Headers

GET /css2?family=Lato:ital,wght@0,400;0,700;1,400&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 19 Apr 2024 13:50:14 GMT
date: Fri, 19 Apr 2024 13:50:14 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

mfe.bonus.ly/translations/locales/en/monarch.json

104.18.11.197

200 OK

1.4 kB

URL GET HTTP/3
mfe.bonus.ly/translations/locales/en/monarch.json
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
ASCII text, with very long lines (1623), with no line terminators
Size
1.4 kB (1442 bytes)
Hash
52b62d2d717c9401063340dae5d0f71d
54636858d647d2696bdca34c7339f3d6082a119d
266986f479faf4ac897415e56e10d49c2238cdea4a915de7a2751c9f8f035fd0

HTTP Headers

GET /translations/locales/en/monarch.json HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:12 GMT
content-type: application/json
x-amz-id-2: BLiORM3N7bPt3YoDu2QV2VJxEaQSpMsDugK+3ecjs+sgoU0vE8PTCXxfsQPfvSmzAfYMgzvNEwQ=
x-amz-request-id: C6B05E9A66D6DJ5J
access-control-allow-origin: https://app.bonus.ly
access-control-allow-methods: GET
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Thu, 18 Apr 2024 17:42:24 GMT
etag: W/"edabd1ad15f6fcfed9958492b0db68df"
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:42 GMT
cache-control: public, max-age=30
set-cookie: __cf_bm=Q1RBwUjcyWC9vdk9cv3KTD13HjfRYGPzql5iJLBQYcg-1713534612-1.0.1.1-F6EVc_Hz6J1aZ9PKbY1yvE5Czh4YWDv5jpys6VSVO19fnJVD2.2fEeuR9zPAbKPqwcdW.jAbkXECT3FllnPA0w; path=/; expires=Fri, 19-Apr-24 14:20:12 GMT; domain=.bonus.ly; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbecfd5b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2

142.250.74.67

200 OK

24 kB

URL GET HTTP/3
fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23580, version 1.0
Size
24 kB (23580 bytes)
Hash
e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537

HTTP Headers

GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bonus.ly
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:21:46 GMT
expires: Fri, 18 Apr 2025 17:21:46 GMT
cache-control: public, max-age=31536000
age: 73708
last-modified: Tue, 02 May 2023 15:17:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

bat.bing.com/p/insights/t/17372234

204.79.197.237

200 OK

741 B

URL GET HTTP/2
bat.bing.com/p/insights/t/17372234
IP
204.79.197.237:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerMicrosoft Corporation
Subjectwww.bing.com
Fingerprint77:7D:3C:1C:6F:BE:03:46:50:D9:71:BC:6C:5F:A0:36:1C:35:1F:02
ValidityThu, 18 Apr 2024 02:05:34 GMT - Thu, 27 Jun 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (801), with no line terminators
Size
741 B (741 bytes)
Hash
1e28038f36f422aa5f55223b8b788647
a0df14edb8432ec5f9303be243522fc1c7c8001a
dad365641292d822f8ef4a7406bb639240f4107b85c47b393f2b562414fa8150

HTTP Headers

GET /p/insights/t/17372234 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: no-cache, no-store
content-length: 625
content-type: application/x-javascript
content-encoding: gzip
expires: -1
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
x-azure-ref: 20240419T135015Z-r1c9df5b4952ffsrwtvv02y3ts00000000eg00000000auxn
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 0C8FB293E9D34E1D81802AE538B9FC34 Ref B: OSL30EDGE0507 Ref C: 2024-04-19T13:50:15Z
date: Fri, 19 Apr 2024 13:50:14 GMT
X-Firefox-Spdy: h2

mfe.bonus.ly/vertical-navbar/static/js/389.83d0500d.chunk.js

104.18.11.197

200 OK

6.8 kB

URL GET HTTP/3
mfe.bonus.ly/vertical-navbar/static/js/389.83d0500d.chunk.js
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JavaScript source, ASCII text, with very long lines (6932), with no line terminators
Size
6.8 kB (6832 bytes)
Hash
fd84d17a9a5c9a9a833f4895ffa8e9e2
32fdc2e8047f923a98409094bd9250051aa71fd4
a0a10696d8d13ffc781e8ee18b5696b2a3537d0e1ab42da341b6f7adaa53c141

HTTP Headers

GET /vertical-navbar/static/js/389.83d0500d.chunk.js HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=6882
etag: W/"6082e9d741a95179f66bfe6829dd2e4b"
last-modified: Wed, 17 Apr 2024 16:48:12 GMT
x-amz-id-2: UDqVqjr/i9BFhuWIR6CMGjTIAadUFU+QPSzjkrI1/BXFO2OQx9eeFEbGY2PcGDSvfY0WkTQ6Wpw=
x-amz-request-id: 821D8TKZKNMW20G1
cf-cache-status: HIT
age: 2239
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbc9dc5b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

mfe.bonus.ly/vertical-navbar/static/js/133.18b73386.chunk.js

104.18.11.197

200 OK

541 kB

URL GET HTTP/3
mfe.bonus.ly/vertical-navbar/static/js/133.18b73386.chunk.js
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
541 kB (540670 bytes)
Hash
25e90fa38c8ac5acd0916f76ad9b366e
cce01748ec92000f865f73ba1c32b5a7d370d740
fd40abf3d49f92241fb42ac18685e4e01e8a967734d30bd244dfb51def4b1617

HTTP Headers

GET /vertical-navbar/static/js/133.18b73386.chunk.js HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=540722
etag: W/"5c148d4d596a7250c442317337a3802e"
last-modified: Wed, 17 Apr 2024 16:48:11 GMT
x-amz-id-2: OgX1XaQtQ/KW2TM7YjhqXzQXF3iLtp1LQSmxhlQR9TZi/I75mA0bxX9rENIi4AMdUCU2HiH+IGk=
x-amz-request-id: 821B0FJX39XE0GQ5
cf-cache-status: HIT
age: 2239
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbcaddab50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

app.bonus.lyle-touch-icon-180x180.png/

0.0.0.0

0 B

URL GET
app.bonus.lyle-touch-icon-180x180.png/
IP
0.0.0.0:0
ASN
#0

Requested by
https://bonus.ly/users/sign_in_start

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: app.bonus.lyle-touch-icon-180x180.png
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

surveys-static.survicate.com/fonts/fonts.css

194.242.11.186

200 OK

8.6 kB

URL GET HTTP/2
surveys-static.survicate.com/fonts/fonts.css
IP
194.242.11.186:443
ASN
#34989 ServeTheWorld AS

Requested by
https://app.bonus.ly/
Certificate
IssuerSectigo Limited
Subject*.survicate.com
FingerprintCD:E8:76:3B:3F:D9:2D:8D:E9:6D:72:DB:39:4E:E7:6B:0A:3F:49:6A
ValidityMon, 18 Sep 2023 00:00:00 GMT - Sat, 31 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (8648), with no line terminators
Size
8.6 kB (8648 bytes)
Hash
c010d2df3fedabc7f87b52ab6c64fb45
40bb597fd9421b31d3db4c776736e48a3e16ebed
789e8685a564e07274fec164118e89fa040ff2779c6efe3d781b94aeea6f06eb

HTTP Headers

GET /fonts/fonts.css HTTP/1.1
Host: surveys-static.survicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/css
server: BunnyCDN-NO1-830
cdn-pullzone: 1133799
cdn-uid: 039640c0-4b09-428d-a0ae-513ccdd44502
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=604800
etag: W/"c010d2df3fedabc7f87b52ab6c64fb45"
last-modified: Mon, 11 Mar 2024 12:12:11 GMT
x-amz-id-2: LR2rqnqVKgZWAjNp6s3p7LwMX1oyI44z0TF5pTyorJPG7WBcUsMYDbdsec++yuU4wJlqAWfk+yM=
x-amz-request-id: 7DAZPE4NHHRTMSDA
x-amz-version-id: 0MpdULBlih82WDf4ohSkRSpw5864DG4c
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 03/13/2024 08:57:16
cdn-edgestorageid: 830
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: default-src 'self'
cdn-status: 200
cdn-requestid: 8d56252b0d4cc6af58e4dba942e348c7
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

mfe.bonus.ly/translations/locales/en/invite_users.json

104.18.11.197

200 OK

936 B

URL GET HTTP/3
mfe.bonus.ly/translations/locales/en/invite_users.json
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://app.bonus.ly/
Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
ASCII text, with very long lines (1046), with no line terminators
Size
936 B (936 bytes)
Hash
656c9b90ad3498ad4938c7aaf39032e7
fa97017f5a994eb28cbb77685f7df2edc6470988
521c1dd5443a8b2b3bac2216575c220ce49a885b07a1a3ff955b8e7d83071d01

HTTP Headers

GET /translations/locales/en/invite_users.json HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:12 GMT
content-type: application/json
x-amz-id-2: dKLo4fuEbYUszmIEeQOmRiKzsO0h+UZbJmb9coBb/veBXPRGqjp/80V8Q2Mjx0Cs8qcI+cZB8QE=
x-amz-request-id: C6BCKPYAE7T2YJP9
access-control-allow-origin: https://app.bonus.ly
access-control-allow-methods: GET
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Thu, 18 Apr 2024 17:42:24 GMT
etag: W/"4741aab6628e0038a594d1b52584c606"
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:42 GMT
cache-control: public, max-age=30
set-cookie: __cf_bm=odMtvkp16.nmjix20ceMtXG60ISB5jyN8tL3RjK6q1I-1713534612-1.0.1.1-1svtbi.pCl7FRRTNDSPeMKMqV24I8TC6Xy6e.0QUSZSMdwb.3OaiRMx7wzOnXvPa20N_wTOGAfX1mUfCbvvZEg; path=/; expires=Fri, 19-Apr-24 14:20:12 GMT; domain=.bonus.ly; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbecfd3b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

bonus.ly/users/sign_in_start

104.18.11.197

200 OK

14 kB

URL User Request GET HTTP/3
bonus.ly/users/sign_in_start
IP
104.18.11.197:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectbonus.ly
Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90
ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT

File type
HTML document, ASCII text, with very long lines (2089)
Size
14 kB (13453 bytes)
Hash
745e15064384ebdabac47b9b8162e174
bd53e344f91385b867863397dbc9b9bf9e47c2f6
c4d5b2482f0dbc3abb05d2d1ebb950c8bd30ba1ebeb9eecdf16713055a9e968b

HTTP Headers

GET /users/sign_in_start HTTP/1.1
Host: bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA; _special_sauce_session=cxRZK68NXcXPxmynzVzYsUfmKjBJLHYhYJU5Zf3H5XZSBcne5fInVDbOHhnD5AxPUn1sL7MI1JzO9K8gtP4%2BTIG%2FBX8e5rqcS3oi1R9xHWelT7h%2BYhU2VuKNp6xQoaOxEvvWaqVb5bRzxL1NwVpnM3ODA65fGl44N0w4zeZ%2FRPsebmJh00Lcz3DgLAHFbr2topJZlQVSrl7%2B%2FZGynVS3JR2k2So%3D--%2FnKZQZC8ju1PhhBk--E4Vc%2BmcgyzeSyiG7BcC2mA%3D%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: text/html; charset=utf-8
x-download-options: noopen
x-permitted-cross-domain-policies: none
link: <https://recognition-production-cdn-aws.bonus.ly/assets/lib/emojione.sprites-8638750142717a73b47d5f8ac1e710ec2dc15a7e603faca7b55e885f86c1402a.css>; rel=preload; as=style; nopush,<https://recognition-production-cdn-aws.bonus.ly/assets/auth-ceea783bfecb6acd7f9486d2af9c6f9c980beeaed5766d3621fee49ce39cbf41.css>; rel=preload; as=style; nopush,<//ajax.googleapis.com/ajax/libs/jqueryui/1.12.1/themes/smoothness/jquery-ui.min.css>; rel=preload; as=style; nopush,<//code.jquery.com/jquery-3.6.0.min.js>; rel=preload; as=script; crossorigin=anonymous; integrity=sha256-/xUj+3OJU5yExlq6GSYGSHk7tPXikynS7ogEvDej/m4=; nopush,<//ajax.googleapis.com/ajax/libs/jqueryui/1.12.1/jquery-ui.min.js>; rel=preload; as=script; nopush,<https://recognition-production-cdn-aws.bonus.ly/assets/vendor-196a2a97844c9f71dc83ffd159ef261b17b8f5ed52cd6be4110088abea2903f3.js>; rel=preload; as=script; nopush,<https://recognition-production-cdn-aws.bonus.ly/assets/application-47f7a660947558065375643961243529f2cae4f0a7b6492482e87f56877a71ff.js>; rel=preload; as=script; nopush,<https://recognition-production-cdn-aws.bonus.ly/packs/css/application-2e3e5ceb.css>; rel=preload; as=style; nopush,<//ajax.googleapis.com/ajax/libs/jqueryui/1.12.1/jquery-ui.min.js>; rel=preload; as=script; nopush,<https://recognition-production-cdn-aws.bonus.ly/assets/funnel_in-bd4d605ee03324548cc405a6ef7410c4ed0dfba304c4201acdd475f2033a4104.js>; rel=preload; as=script; nopush
cache-control: max-age=0, private, must-revalidate
content-security-policy: default-src 'self'; font-src 'self' fonts.gstatic.com fonts.googleapis.com js.intercomcdn.com *.jquery.com recognition-production-cdn-aws.bonus.ly *.bootstrapcdn.com script.hotjar.com surveys-static.survicate.com; img-src * data: blob:; object-src 'self' recognition-production-cdn-aws.bonus.ly; script-src 'self' 'unsafe-inline' connect.facebook.net graph.facebook.com googleads.g.doubleclick.net js.hs-analytics.net js.hs-scripts.com js.hsforms.net js.usemessages.com forms.hsforms.com js.hsleadflows.net js.chilipiper.com *.chilipiper.com *.hsadspixel.net ws.zoominfo.com/ recognition-production-cdn-aws.bonus.ly *.bnsly.co *.google.com *.googleadservices.com *.googleapis.com *.googletagmanager.com *.google-analytics.com *.gstatic.com *.hubspot.com *.intercom.io *.intercomcdn.com *.jquery.com *.linkedin.com *.stripe.com *.twimg.com *.twitter.com zapier.com static.ads-twitter.com hotjar.com *.hotjar.com www.instagram.com *.licdn.com *.clearbit.com *.clearbitjs.com *.clearbitscripts.com js.hs-banner.com bat.bing.com ct.capterra.com *.vimeo.com js.chargebee.com *.intellimize.com *.intellimize.co *.intellimizeio.com mfe.bonus.ly data-component-library.bonus.ly data-component-library-staging.bonusly.dev datalayerapi-staging.bonusly.dev datalayerapi.bonusly.dev bonus.ly/api/ums edge.fullstory.com cdn.merge.dev cdn.amplitude.com *.trybento.co static.cloudflareinsights.com survey.survicate.com surveys-static.survicate.com *.visualwebsiteoptimizer.com app.vwo.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.bonus.ly *.google.com js.chilipiper.com *.chilipiper.com js.chargebee.com *.jquery.com zapier.com bonus.ly/api/ums surveys-static.survicate.com *.visualwebsiteoptimizer.com app.vwo.com s3.amazonaws.com; connect-src 'self' https://*.intercom.io wss://*.intercom.io wss://*.bonus.ly/cable wss://*.hotjar.com api.hubspot.com forms.hubspot.com cta-service-cms2.hubspot.com *.hubapi.com analytics.google.com syndication.twitter.com uploads.intercomcdn.com uploads.intercomusercontent.com *.algolianet.com *.algolia.net www.google-analytics.com www.facebook.com *.hotjar.io *.hotjar.com *.doubleclick.net log.intellimize.co *.clearbit.com api.lever.co js.chilipiper.com *.chilipiper.com edge.fullstory.com rs.fullstory.com *.bonus.ly *.hsforms.com *.linkedin.com *.zapier.com *.zapier-staging.com bonus.ly/api/datalayer rum.browser-intake-datadoghq.com logs.browser-intake-datadoghq.com bonus.ly/api/ums api.amplitude.com api.lab.amplitude.com api2.amplitude.com *.trybento.co wss://*.trybento.co respondent.survicate.com *.visualwebsiteoptimizer.com app.vwo.com; frame-ancestors 'self' *.bonus.ly *.bonusly.dev *.screencloud.com *.screen.cloud *.screencloudapps.com *.next.sc http://localhost:* staffspace.oma.org http://10.0.0.14:* *.sharepoint.com *.it1.be dashboard.skilljar.com app.resplendentdata.com *.jancare.com *.valotalive.com *.valota.live http://swr-apps-v:* https://aceandcompany.intranet.digital *.kaufmanrossin.com *.coda.io dev.coda.io:* *.risevision.com; frame-src 'self' fast.wistia.net js.stripe.com share.intercom.io bonus.ly *.bonus.ly *.bonusly.dev *.hubspot.com *.doubleclick.net *.google.com *.twitter.com *.vimeo.com *.hsforms.com *.youtube.com www.instagram.com *.hotjar.com api.intellimize.co js.chilipiper.com *.chilipiper.com my.pima.app bonusly.chargebee.com bonusly-test.chargebee.com js.chargebee.com *.intellimizeio.com intercom-sheets.com cdn.merge.dev *.trybento.co app.vwo.com *.visualwebsiteoptimizer.com; media-src js.intercomcdn.com media.tenor.com *.bonus.ly *.bonusly.dev
set-cookie: _special_sauce_session=hjYsSEWCgHqAW%2BOxqJ8sU9P%2BIO6BrsvMxcX7cWYzxK5U33n%2Bn2XXlVmFp1APV5bDVTOSKSqMqra16oslSvv%2BXXDk03x6%2BOh6%2FHVqe8K4hWFCBYqNw%2BuesEdOpsQkUq5Nm7JYLe5H3Cf5wEpDGpjvz7Re%2BpeH6lz7%2FkvAg%2FUVgiAS58dbB5lwURiG6S5gSCRo4CXiMxBVBEYnF%2F%2BSCzP1kVs2Wuj7mJ9Mb41UYIXFBQzZY1LSrjytLKyigq5bou1uHPeUUSCHhA5QH%2BEJb4wp%2B20T5wi3QkpaQ3s5H%2FzPROswqUsg5RfhxALTetYsQ4QDN2n2iLg4skhjKbihSBThufKJnos%3D--qDtMNm0Z0tp5Jo2z--w8wkdJPEXl3ilHR6Np29qA%3D%3D; path=/; expires=Fri, 17 May 2024 13:50:13 GMT; HttpOnly; SameSite=Lax
x-request-id: ea339233-d47b-4bd7-a0f3-40bc6e2c8cd0
x-runtime: 0.011564
x-envoy-upstream-service-time: 14
cf-cache-status: DYNAMIC
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cc49e26b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css2?family=Inter:wght@300;425;500;600;700;800&display=swap

142.250.74.106

200 OK

14 kB

URL GET HTTP/3
fonts.googleapis.com/css2?family=Inter:wght@300;425;500;600;700;800&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
ASCII text
Size
14 kB (14484 bytes)
Hash
91c3949046a80ab946840a03604ee0e8
46c8eb58926d1840e6b6e14eca27b60e3289f7e2
d5488de984bd6dbc85670c760415e3f796aa8d92e7b11f43ea072fa6da3ee0b6

HTTP Headers

GET /css2?family=Inter:wght@300;425;500;600;700;800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 19 Apr 2024 13:50:13 GMT
date: Fri, 19 Apr 2024 13:50:13 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

bat.bing.com/p/action/17372234.js

204.79.197.237

200 OK

1.4 kB

URL GET HTTP/2
bat.bing.com/p/action/17372234.js
IP
204.79.197.237:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerMicrosoft Corporation
Subjectwww.bing.com
Fingerprint77:7D:3C:1C:6F:BE:03:46:50:D9:71:BC:6C:5F:A0:36:1C:35:1F:02
ValidityThu, 18 Apr 2024 02:05:34 GMT - Thu, 27 Jun 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (1449), with no line terminators
Size
1.4 kB (1385 bytes)
Hash
1b07cf4e7f8d252bf177efb89eba65af
cabb6eaf3fc92657fc228ddd817ef214fe21a7d0
9352664f84ca426c2f10fe6e661121f22b718ab04c4a1f7bc434238dae6c2674

HTTP Headers

GET /p/action/17372234.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: private,max-age=60
content-type: application/javascript; charset=utf-8
content-encoding: br
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: E047E22F7B184354B5C623D340E2ADD5 Ref B: OSL30EDGE0507 Ref C: 2024-04-19T13:50:15Z
date: Fri, 19 Apr 2024 13:50:14 GMT
X-Firefox-Spdy: h2

fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2

142.250.74.67

200 OK

23 kB

URL GET HTTP/3
fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://bonus.ly/users/sign_in_start
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23040, version 1.0
Size
23 kB (23040 bytes)
Hash
de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49

HTTP Headers

GET /s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bonus.ly
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 02:02:47 GMT
expires: Wed, 16 Apr 2025 02:02:47 GMT
cache-control: public, max-age=31536000
age: 301647
last-modified: Tue, 02 May 2023 15:07:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (59)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML