| app.bonus.ly/static/js/1.9c192e18.chunk.js | 104.18.11.197 | 200 OK | 7.8 kB |
URL GET HTTP/3app.bonus.ly/static/js/1.9c192e18.chunk.js IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeJavaScript source, ASCII text, with very long lines (19523), with no line terminators Hash212cd9d2d99fd92dd9764d9312ed3380 37969211588cc4ebd2c66f3e57cc00de3f26ed49 26cdd85d294abd0306d2e0049197aba7beb8708fb06cff6d9e011620befcaa0a
GET /static/js/1.9c192e18.chunk.js HTTP/1.1
Host: app.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.bonus.ly/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=19571
etag: W/"c58a79c8199f90b757919d50002f19fd"
last-modified: Wed, 17 Apr 2024 16:48:13 GMT
x-amz-id-2: dv6xxbu6YqghKjut0LiBk9H3G8KB6a+bBkhMkmdI3Ktv1Z3e8EPGwteWf3Tjz+JcA+PrefEsImw=
x-amz-request-id: 8213K4A3Q0BB5F9Y
cf-cache-status: HIT
age: 2240
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cba1b46b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| assets.trybento.co/bento-embed.js | 143.204.55.17 | 200 OK | 991 B |
URL GET HTTP/2assets.trybento.co/bento-embed.js IP143.204.55.17:443
CertificateIssuerAmazon Subjectassets.trybento.co FingerprintFC:6C:28:1E:7A:E7:44:CE:46:83:DE:D0:6A:C0:9C:24:7D:09:21:7E ValidityTue, 05 Dec 2023 00:00:00 GMT - Thu, 02 Jan 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (990) Hashec279ac8bc44b291412b9256b7d3287d 94867cd38cc288d23102058065db3a92e2bf135d 70af1b16761130cdf6e16f07846bb9f534371d6f4a34e76e8612bf732bc4d408
GET /bento-embed.js HTTP/1.1
Host: assets.trybento.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
content-length: 991
date: Thu, 18 Apr 2024 16:57:31 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-expose-headers: Access-Control-Allow-Origin
last-modified: Thu, 18 Apr 2024 16:57:26 GMT
etag: "ec279ac8bc44b291412b9256b7d3287d"
x-amz-server-side-encryption: AES256
x-amz-version-id: vU_SKx.48MWmXEEdGn4.oohIhVmDUr34
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6hEWmVJ5oL32dOMkOXfXFxt9b3N3AYLvXz5tqrbcaGcEr5-emuxUXw==
age: 75161
X-Firefox-Spdy: h2
|
|
| app.bonus.ly/static/js/255.3ae7e0be.chunk.js | 104.18.11.197 | 200 OK | 136 kB |
URL GET HTTP/3app.bonus.ly/static/js/255.3ae7e0be.chunk.js IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size136 kB (136230 bytes) Hashf2c24570df67bbca7a862a1e448fc155 40afedc695173156e7f356f1ba21c80784fa3bcb 80f1aeb860a2d173fa3df3bf29b2d56d01f6f468d454e9c3e47e387e49b9a345
GET /static/js/255.3ae7e0be.chunk.js HTTP/1.1
Host: app.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.bonus.ly/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=348933
etag: W/"5bca70850277a26d716dc48d516bba08"
last-modified: Wed, 17 Apr 2024 16:48:14 GMT
x-amz-id-2: Clb7lOawv1mjeBxUJBGMLEXy6jqAmCpSGrOvLEKiqCktJF3V5z+6klKjiTBZU1Wp3GkDfIH1Uho=
x-amz-request-id: 8219HQG8HZXAQPAS
cf-cache-status: HIT
age: 2240
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cba1b47b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| app.bonus.ly/cdn-cgi/challenge-platform/h/b/jsd/r/876d5cb74eea56b5 | 104.18.11.197 | 200 OK | 0 B |
URL POST HTTP/3app.bonus.ly/cdn-cgi/challenge-platform/h/b/jsd/r/876d5cb74eea56b5 IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/challenge-platform/h/b/jsd/r/876d5cb74eea56b5 HTTP/1.1
Host: app.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12140
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Referer: https://app.bonus.ly/
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA; path=/; expires=Sat, 19-Apr-25 13:50:11 GMT; domain=.bonus.ly; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbc9dc1b50f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| app.bonus.ly/logo192.png | 104.18.11.197 | 200 OK | 6.3 kB |
IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeRIFF (little-endian) data, Web/P image Hash0a5140bcd51e1f830116a539419127b5 8cde056c73c8b97ddc08d2b9676ad135f750f8d0 9f320f9e5b8325718863033e8a797a3ada565e513d963b43c67f0c58d5019ca7
GET /logo192.png HTTP/1.1
Host: app.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.bonus.ly/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:12 GMT
content-type: image/webp
content-length: 6260
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=16632
content-disposition: inline; filename="logo192.webp"
etag: "b43d0bb64acde31919cadf4c221ca2e4"
last-modified: Wed, 17 Apr 2024 16:48:13 GMT
vary: Accept
x-amz-id-2: gkW87k11ZOuMO3e7J6edk9GYmLmf38+M2ozO09pmu/IvnInaWjNZ5qV/pv821JvBelKjU6eqzSc=
x-amz-request-id: 9FSEJF6YN03AQTKQ
cf-cache-status: HIT
age: 2240
accept-ranges: bytes
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbd9ed3b50f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| udon.trybento.co/embed/get-url | 3.81.204.83 | 200 OK | 82 B |
URL GET HTTP/2udon.trybento.co/embed/get-url IP3.81.204.83:443
CertificateIssuerAmazon Subject*.trybento.co Fingerprint58:BB:A3:80:7C:B7:C4:0F:96:D3:B4:5F:5C:41:36:A9:38:09:37:A6 ValiditySun, 14 Jan 2024 00:00:00 GMT - Tue, 11 Feb 2025 23:59:59 GMT
File typeASCII text, with no line terminators Hashe1cba320dcb191fe54ebba53cd255d29 300b8f69c45b0a3076b762f33953369612d5d077 03a647b10c65a4319f83345833d5a223177e65d75f3de96389e9e053d044e187
GET /embed/get-url HTTP/1.1
Host: udon.trybento.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:50:12 GMT
content-type: text/plain
content-length: 82
x-request-id: i8pbnuvfx
access-control-allow-origin: *
content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
x-dns-prefetch-control: off
expect-ct: max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
referrer-policy: no-referrer
x-xss-protection: 0
X-Firefox-Spdy: h2
|
|
| mfe.bonus.ly/rewards/remoteEntry.js?v=2 | 104.18.11.197 | 200 OK | 30 kB |
URL GET HTTP/3mfe.bonus.ly/rewards/remoteEntry.js?v=2 IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeJavaScript source, ASCII text, with very long lines (8314), with no line terminators Hash33d323bf74cc491920914f84a7612402 95c1baea94ea88e14ea68fbf6dead6397787b7b1 680a74521e646db671d07eed2a5f1bf9629754bb95719947bbfe59b620d8a9da
GET /rewards/remoteEntry.js?v=2 HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=8354
etag: W/"4c9a1ddb247abef52ed3b11bceb53d77"
last-modified: Thu, 18 Apr 2024 17:42:25 GMT
x-amz-id-2: XZP/OPbQnUymomj1jGy7662CF6FUhnuv4EmYxDNNnGufe1bWxIEvL9tYVllGW6nnXEzzSufyk9Q=
x-amz-request-id: SGXBDS9C9Q6G5W2F
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:41 GMT
cache-control: public, max-age=30
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbb1c3bb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| mfe.bonus.ly/vertical-navbar/remoteEntry.js?v=2 | 104.18.11.197 | 200 OK | 4.7 kB |
URL GET HTTP/3mfe.bonus.ly/vertical-navbar/remoteEntry.js?v=2 IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeJavaScript source, ASCII text, with very long lines (7862), with no line terminators Hash6cdb168d1ceef18c3a4c25cf76c1cbb9 fbf978c006fe0b50194f6869b135d63d0615faa7 fb997552f87be975eba1c0fe5588206258d8832a8efe615c19ea1ad19088abf5
GET /vertical-navbar/remoteEntry.js?v=2 HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=7902
etag: W/"186e8516d8680c630782b14b6b68759d"
last-modified: Wed, 17 Apr 2024 16:48:11 GMT
x-amz-id-2: Qp3As6ikrnNc7sFa/mhlyFVoINzzxWZlfUm0vwcZKcbTnA0ySpOKi1pgn7SF6d4M4+D8znM1aww=
x-amz-request-id: BMQ5GMTKWDJXKTFQ
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:41 GMT
cache-control: public, max-age=30
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbb1c40b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| mfe.bonus.ly/feedback/remoteEntry.js?v=2 | 104.18.11.197 | 200 OK | 9.2 kB |
URL GET HTTP/3mfe.bonus.ly/feedback/remoteEntry.js?v=2 IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeJavaScript source, ASCII text, with very long lines (7931), with no line terminators Hash1cac0c97d36b34d471ccd5abc92436fa 83ae3112eb355af01fc3151cbc2e5f1c65fefd61 44592705c114a188facabd7b52dba8787123cf7e481980b12b522d5823fcbd75
GET /feedback/remoteEntry.js?v=2 HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=7971
etag: W/"6d184a333b22e1fc48a9155590b9e061"
last-modified: Thu, 18 Apr 2024 21:16:40 GMT
x-amz-id-2: Nr+dLPb29d7OvqNbcI8AWcXjWdeAUQkVfu10CyGSsJPYNUYwFlk06xLJIvy5fG0AlQ7mA6srW/w=
x-amz-request-id: 8R8ANHPB5T28AVWC
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:41 GMT
cache-control: public, max-age=30
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbb1c39b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| survey.survicate.com/workspaces/4f96e9087951347a39990d174842e973/web_surveys.js | 194.242.11.186 | 200 OK | 10 kB |
URL GET HTTP/2survey.survicate.com/workspaces/4f96e9087951347a39990d174842e973/web_surveys.js IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
CertificateIssuerSectigo Limited Subject*.survicate.com FingerprintCD:E8:76:3B:3F:D9:2D:8D:E9:6D:72:DB:39:4E:E7:6B:0A:3F:49:6A ValidityMon, 18 Sep 2023 00:00:00 GMT - Sat, 31 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (2691), with no line terminators Hash3e1196195442a9c92cc134d260c3aac7 0bb21da078b60e2ac3a1c543c7b8a2a5eb0ce5a1 2f8d137e24ade14dc678d8171c3d81efb99ea35deaf54e87c353976d9cb91306
GET /workspaces/4f96e9087951347a39990d174842e973/web_surveys.js HTTP/1.1
Host: survey.survicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 1158558
cdn-uid: 039640c0-4b09-428d-a0ae-513ccdd44502
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=300
etag: W/"3e1196195442a9c92cc134d260c3aac7"
last-modified: Fri, 22 Mar 2024 22:18:43 GMT
x-amz-id-2: Uu8Hb91CxUGuDRILdK/fbzQVvURhFGkf9sgsvU3iyjldNsBVYAuN+HUTkRR9ld4LFoB13oTlxyE=
x-amz-request-id: M0XY17SZ8QAZ88AZ
x-amz-version-id: k4QSIV48N5rnKxB3TqrhwMgTERPEyIEd
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 03/25/2024 07:34:46
cdn-edgestorageid: 830
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
report-to: { "group": "csp-endpoint-survey", "max_age": 10886400, "endpoints": [{ "url": "https://panel-api.survicate.com/_/report_csp/survey" }] }
content-security-policy: default-src 'self' 'unsafe-inline' https://surveys-static.survicate.com; connect-src https://respondent.survicate.com 'self'; img-src https://*; font-src https://surveys-static.survicate.com https://use.typekit.net https://fonts.gstatic.com; report-to csp-endpoint-survey;
cdn-status: 200
cdn-requestid: dfa54d029b2091bd5594d2047f960734
cdn-cache: REVALIDATED
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mfe.bonus.ly/bonus-feed/remoteEntry.js?v=2 | 104.18.11.197 | 200 OK | 22 kB |
URL GET HTTP/3mfe.bonus.ly/bonus-feed/remoteEntry.js?v=2 IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeJavaScript source, ASCII text, with very long lines (9976), with no line terminators Hash13b8c580e7cae374704dedcc28fb8687 1c2713d435ca81a27874744463fe5b9ace84bf06 2a64ba526ca4cfd3dc1863f0970c55bb782c1069fa0f42009c404307e72fc35c
GET /bonus-feed/remoteEntry.js?v=2 HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=10016
etag: W/"7b5d132c8fbc76012599cac3b5b638b3"
last-modified: Thu, 18 Apr 2024 21:16:41 GMT
x-amz-id-2: 2lCcj7UoAudyuDU82uRUbUrtUoLZFZdWuKlMMPdLB1rMdSG0U4S934AQYbpBNrwVEC4q4aQHAGw=
x-amz-request-id: SMP27SWPS66H24NQ
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:41 GMT
cache-control: public, max-age=30
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbb1c37b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| mfe.bonus.ly/vertical-navbar/static/js/660.369c08a1.chunk.js | 104.18.11.197 | 200 OK | 30 kB |
URL GET HTTP/3mfe.bonus.ly/vertical-navbar/static/js/660.369c08a1.chunk.js IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeJavaScript source, ASCII text, with very long lines (4281), with no line terminators Hash57f41a0c4129f012fb32be515caa5b26 22b0a4e01000f6b4dbe45fb1215419fae45d7bb3 5f6bb9dbb0f654a3e0dd7991364fb95a6cf96b435621f37d8e75c2e685f1b44e
GET /vertical-navbar/static/js/660.369c08a1.chunk.js HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=4331
etag: W/"7644b6feecd77b91e3349b0cbf9eedd9"
last-modified: Wed, 17 Apr 2024 16:48:13 GMT
x-amz-id-2: ZIBXLiUi46lbZp6rEmbYlZOzXwM8FmXfQ9JyaOzorI1vcP7q/RnLJix4rIyYxYIlOVQA2PUs6H8=
x-amz-request-id: 821BAZ9BYCHARCGE
cf-cache-status: HIT
age: 2239
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbcade7b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| assets.trybento.co/bento-embed-552145ec898233111cc6da60dc9afdabbbeaba64.js | 143.204.55.17 | 200 OK | 262 kB |
URL GET HTTP/2assets.trybento.co/bento-embed-552145ec898233111cc6da60dc9afdabbbeaba64.js IP143.204.55.17:443
CertificateIssuerAmazon Subjectassets.trybento.co FingerprintFC:6C:28:1E:7A:E7:44:CE:46:83:DE:D0:6A:C0:9C:24:7D:09:21:7E ValidityTue, 05 Dec 2023 00:00:00 GMT - Thu, 02 Jan 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (21312) Size262 kB (262536 bytes) Hash3675f19a54b0df1253238e660a33a6ab 117e12cc2bcd2ab5ffff2b59e10378d0944ea6c7 3867ef552ca1395f65c275ed7f21ee605a78db9fad49809ac597bc5252720326
GET /bento-embed-552145ec898233111cc6da60dc9afdabbbeaba64.js HTTP/1.1
Host: assets.trybento.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
date: Thu, 18 Apr 2024 17:08:53 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-expose-headers: Access-Control-Allow-Origin
last-modified: Thu, 18 Apr 2024 16:57:26 GMT
x-amz-expiration: expiry-date="Fri, 03 May 2024 00:00:00 GMT", rule-id="Clean old embed js"
etag: W/"3675f19a54b0df1253238e660a33a6ab"
x-amz-server-side-encryption: AES256
x-amz-version-id: rogXq.cQliOfRwF2_.EKv1lAj3XiWa0H
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -uiKgtyOe7BTCWPGpb_ZD4vZNTDA3V52iHe0Tv9bgSYqU-oY9gLIUA==
age: 74479
X-Firefox-Spdy: h2
|
|
| bonus.ly/amplitude/features/sdk/v2/vardata?v=0 | 104.18.10.197 | 200 OK | 0 B |
URL GET HTTP/2bonus.ly/amplitude/features/sdk/v2/vardata?v=0 IP104.18.10.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /amplitude/features/sdk/v2/vardata?v=0 HTTP/1.1
Host: bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization,x-amp-exp-user
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:50:12 GMT
content-length: 0
access-control-allow-credentials: true
access-control-max-age: 1800
access-control-allow-methods: GET,POST,HEAD
x-amzn-trace-id: Root=1-6622721d-7b2231617260add930c42912
accept-ranges: bytes
age: 1143
x-served-by: cache-iad-kjyo7100025-IAD
x-cache: HIT
x-cache-hits: 170
x-timer: S1713534612.447963,VS0,VE0
vary: Origin,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
cache-control: no-store
access-control-allow-origin: https://app.bonus.ly
access-control-allow-headers: authorization,x-amp-exp-user
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-envoy-upstream-service-time: 2
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=SV.ssb6EbfF6jPFy3Z5AfTFx19vuzX.d9Ej69Wh.xZ4-1713534612-1.0.1.1-hY9moX7aspm7T_eTrc6x.Pms95aJLBrgb.lU44QcROa8r02RxRjSFqa_HSOVvAKpj5Yqp1XDpjK0iNWZ.NSRdg; path=/; expires=Fri, 19-Apr-24 14:20:12 GMT; domain=.bonus.ly; HttpOnly; Secure; SameSite=None
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbf5d01b4f3-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 | 142.250.74.67 | 200 OK | 47 kB |
URL GET HTTP/2fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 IP142.250.74.67:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 46704, version 1.0 Hash30a274cd01b6eeb0b082c918b0697f1e 393311bde26b99a4ad935fa55bad1dce7994388b 88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42
GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:14:19 GMT
expires: Wed, 16 Apr 2025 07:14:19 GMT
cache-control: public, max-age=31536000
age: 282953
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| app.bonus.ly/cdn-cgi/rum? | 104.18.11.197 | 204 No Content | 0 B |
URL POST HTTP/3app.bonus.ly/cdn-cgi/rum? IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: app.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.bonus.ly/
content-type: application/json
Content-Length: 1029
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA; _dd_s=rum=2&id=904c3bbe-f830-4db7-a62f-830348bfeff1&created=1713534612099&expire=1713535512099
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Fri, 19 Apr 2024 13:50:12 GMT
access-control-allow-origin: https://app.bonus.ly
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 876d5cc14a83b50f-OSL
x-frame-options: DENY
x-content-type-options: nosniff
|
|
| widget.intercom.io/widget/qoq90gzb | 54.230.111.53 | 200 OK | 2.7 kB |
URL GET HTTP/2widget.intercom.io/widget/qoq90gzb IP54.230.111.53:443
CertificateIssuerAmazon Subject*.intercom.com Fingerprint84:3F:75:36:86:5B:6C:03:88:CA:23:42:18:14:5B:D4:46:C7:9D:A3 ValidityMon, 15 Jan 2024 00:00:00 GMT - Tue, 11 Feb 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (6952), with no line terminators Hashd3eaa06d2c71698d06e7d4326aaae69d 569f74410798fd1271b73fa44fe954a1ba48024e b6cda272c61430ac2dcacaa227a0ee467e4076ef52a49733e5eacde674c70a90
GET /widget/qoq90gzb HTTP/1.1
Host: widget.intercom.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 2703
date: Fri, 19 Apr 2024 13:47:43 GMT
last-modified: Fri, 19 Apr 2024 13:47:40 GMT
etag: "a29fabb76a711e1d92f7ab1d61affaee"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, s-maxage=300, public
content-encoding: gzip
x-amz-version-id: 5XttHh5YRzJS05MK7nlhLLaAUhBM0PIb
accept-ranges: bytes
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: XwIJCd_IQvCGJpE_GnBYNxdCd9U2ursUxm93U8A_iyhbyi55pUIs0w==
age: 149
cross-origin-resource-policy: cross-origin
vary: Origin
X-Firefox-Spdy: h2
|
|
| js.intercomcdn.com/vendor.3c93d520.js | 54.230.111.118 | 200 OK | 200 kB |
URL GET HTTP/2js.intercomcdn.com/vendor.3c93d520.js IP54.230.111.118:443
CertificateIssuerAmazon Subject*.intercomcdn.com FingerprintF0:2D:F5:73:71:5F:38:F6:2E:50:83:A3:D4:8A:21:C7:7B:AA:C2:D1 ValidityFri, 01 Dec 2023 00:00:00 GMT - Sun, 29 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65463) Size200 kB (199538 bytes) Hashc177eaf4151ad6227a05f5cab0bbf9cd ce143e55432d9bb551e979e363b04bd946b95517 435cb0f1190cd35b8b97f5880fc476af842e6c25a09f070b5e2d4df237f425f0
GET /vendor.3c93d520.js HTTP/1.1
Host: js.intercomcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://app.bonus.ly/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 199538
last-modified: Thu, 18 Apr 2024 16:10:36 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: _1P4lkxjhmXx0cJY0uYIgFac__RqipNe
accept-ranges: bytes
server: AmazonS3
date: Fri, 19 Apr 2024 13:40:24 GMT
cache-control: max-age=31536000, s-maxage=7200, public
etag: "3597ec82a600527eb54fdeaecd5174a4"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 8sOgC_nOTu-C8n6CdbuQb_17F6Ya737QelbbpY9PeIQMbuEPQHEeWg==
age: 589
strict-transport-security: max-age=31536000; includeSubDomains; preload
cross-origin-resource-policy: cross-origin
X-Firefox-Spdy: h2
|
|
| js.intercomcdn.com/frame.90c03f14.js | 54.230.111.118 | 200 OK | 191 kB |
URL GET HTTP/2js.intercomcdn.com/frame.90c03f14.js IP54.230.111.118:443
CertificateIssuerAmazon Subject*.intercomcdn.com FingerprintF0:2D:F5:73:71:5F:38:F6:2E:50:83:A3:D4:8A:21:C7:7B:AA:C2:D1 ValidityFri, 01 Dec 2023 00:00:00 GMT - Sun, 29 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65464) Size191 kB (190891 bytes) Hashdcb7fd87c5bf9842da292002f666dfdf 4fe325e355c4581799000bd9a5270a2e7cf060d9 f2372336ee952db1064c31dafbd67f5a51fa4ffa6d2655ed694d5f34c8365a0e
GET /frame.90c03f14.js HTTP/1.1
Host: js.intercomcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://app.bonus.ly/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 190891
date: Fri, 19 Apr 2024 13:47:44 GMT
last-modified: Fri, 19 Apr 2024 13:43:04 GMT
etag: "d27736d99a0f5199eb23172f6c11c447"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, s-maxage=7200, public
content-encoding: gzip
x-amz-version-id: sp3ePOUZHR1seBwqorXSWbt_yzAbd0qT
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: GDFfxEhcPjdzmYTTYf_bGdGt-mtWZQjzyYyEH0Zhl_7nVxzYN_YBzQ==
age: 149
strict-transport-security: max-age=31536000; includeSubDomains; preload
cross-origin-resource-policy: cross-origin
X-Firefox-Spdy: h2
|
|
| bonus.ly/api/v2/jwt | 104.18.10.197 | 200 OK | 0 B |
IP104.18.10.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v2/jwt HTTP/1.1
Host: bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-bonusly-source
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:50:12 GMT
content-length: 0
access-control-allow-origin: https://app.bonus.ly
access-control-allow-methods: GET, HEAD, POST, PUT, PATCH, DELETE, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
access-control-allow-credentials: true
access-control-allow-headers: x-bonusly-source
x-envoy-upstream-service-time: 5
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=KdQvmvWUOtVRAn9DTq8EcrSNfzcPlmJeOUw0Pcst32k-1713534612-1.0.1.1-fDdrIlMiNRqGouaQ2CD8HT_pNG1MTGOim.VlRcmS6SpNzPtlhoWu.e8L_4cNxXR_bA.21Hm5Xb3iqQqzLRNDFA; path=/; expires=Fri, 19-Apr-24 14:20:12 GMT; domain=.bonus.ly; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbf5d03b4f3-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| mfe.bonus.ly/one-on-ones/remoteEntry.js?v=2 | 104.18.11.197 | 200 OK | 6.6 kB |
URL GET HTTP/3mfe.bonus.ly/one-on-ones/remoteEntry.js?v=2 IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeJavaScript source, ASCII text, with very long lines (9125), with no line terminators Hashd3c93005bffaaa0a0ee2569310fec606 0820137029ccadc06bc1de590b69db1a65ad1c9f e3e95ed181b2b2fad16f548a7cfedbed914ecac73e05c27986d4f80a62b43fe9
GET /one-on-ones/remoteEntry.js?v=2 HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=9165
etag: W/"154f1ef679800757057d0349efe84479"
last-modified: Thu, 18 Apr 2024 21:16:40 GMT
x-amz-id-2: LFPGJ60809YG7xlP39Sy9j2pRltcxFOQS4M7+IV1J0345/x1s0narIyNc/FvTTvWf438Ar7R2cg=
x-amz-request-id: 8R83M8B92MGWGHVC
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:41 GMT
cache-control: public, max-age=30
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbb1c44b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| app.bonus.ly/favicon.ico | 104.18.11.197 | 200 OK | 7.2 kB |
IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeMS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel Hasha616a726862176f332ad01305dff39aa 88f1e2f4d0558c783f7c8ad94443cefa136a8219 55910e1f7adc123c5daba3930baf7a7b3335f93d9d67f43d0c871336333dc5a9
GET /favicon.ico HTTP/1.1
Host: app.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.bonus.ly/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:12 GMT
content-type: image/vnd.microsoft.icon
x-amz-id-2: lvfiXcAoE1jAnOgUdMQiYH0d9oZOJs5sm2AUgCoOH8oVmFTCREp8oQ8ZxvM4AzPHBWSjcFwjb5I=
x-amz-request-id: 82123E5YNMY6H0H6
last-modified: Wed, 17 Apr 2024 16:48:13 GMT
etag: W/"a616a726862176f332ad01305dff39aa"
cf-cache-status: HIT
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbd9ed4b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A5.13.0%2Capi%3Abeacon%2Cenv%3Aproduction%2Cservice%3Amonarch%2Cversion%3A1.1.0&dd-api-key=pubd81c2cabb32a289ccded45586130bed5&dd-evp-origin-version=5.13.0&dd-evp-origin=browser&dd-request-id=c50bbed2-491b-42fc-aa55-5a3361d61211&batch_time=1713534613202 | 3.233.147.183 | 202 Accepted | 53 B |
URL POST HTTP/2browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A5.13.0%2Capi%3Abeacon%2Cenv%3Aproduction%2Cservice%3Amonarch%2Cversion%3A1.1.0&dd-api-key=pubd81c2cabb32a289ccded45586130bed5&dd-evp-origin-version=5.13.0&dd-evp-origin=browser&dd-request-id=c50bbed2-491b-42fc-aa55-5a3361d61211&batch_time=1713534613202 IP3.233.147.183:443
CertificateIssuerDigiCert Inc Subject*.browser-intake-datadoghq.com Fingerprint90:98:16:E4:5F:36:C7:67:0F:C6:18:49:63:19:73:FC:82:36:C1:4E ValiditySat, 17 Jun 2023 00:00:00 GMT - Tue, 18 Jun 2024 23:59:59 GMT
Hash9e2c7810fa2381944c977a08f896a05d 9e74a023be0a55a0de375494cf721c00f55608db 96f7088c0d4b636826b4df88149f56e0bed4f8e75c2703a605b8edae012ef921
POST /api/v2/rum?ddsource=browser&ddtags=sdk_version%3A5.13.0%2Capi%3Abeacon%2Cenv%3Aproduction%2Cservice%3Amonarch%2Cversion%3A1.1.0&dd-api-key=pubd81c2cabb32a289ccded45586130bed5&dd-evp-origin-version=5.13.0&dd-evp-origin=browser&dd-request-id=c50bbed2-491b-42fc-aa55-5a3361d61211&batch_time=1713534613202 HTTP/1.1
Host: browser-intake-datadoghq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 13692
Origin: null
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: application/json
content-length: 53
dd-request-id: c50bbed2-491b-42fc-aa55-5a3361d61211
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| app.bonus.ly/cdn-cgi/rum? | 104.18.11.197 | 204 No Content | 0 B |
URL POST HTTP/3app.bonus.ly/cdn-cgi/rum? IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: app.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.bonus.ly/
Content-Type: application/json
Content-Length: 452
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA; _dd_s=rum=2&id=904c3bbe-f830-4db7-a62f-830348bfeff1&created=1713534612099&expire=1713535512099
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/3 204 No Content
date: Fri, 19 Apr 2024 13:50:13 GMT
access-control-allow-origin: https://app.bonus.ly
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 876d5cc59f56b50f-OSL
x-frame-options: DENY
x-content-type-options: nosniff
|
|
| bonus.ly/amplitude/features/sdk/v2/vardata?v=0 | 104.18.10.197 | 200 OK | 8.3 kB |
URL GET HTTP/2bonus.ly/amplitude/features/sdk/v2/vardata?v=0 IP104.18.10.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
Hashce93eaaa3969d7575e5bab2074a7359d e39e3d07998f7be4e9a9e5f3bc69a9c2d8100a5e e955691da6997a80c046c2262963b0dc69bfaf731ecd487a6b06173333b3e97f
GET /amplitude/features/sdk/v2/vardata?v=0 HTTP/1.1
Host: bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Authorization: Api-Key server-mfqXX6Fo69f5hz8qlLmFOpm3MlXRFhLJ
X-Amp-Exp-User: eyJsaWJyYXJ5IjoiZXhwZXJpbWVudC1qcy1jbGllbnQvMS4xMC4wIiwibGFuZ3VhZ2UiOiJlbi1VUyIsInBsYXRmb3JtIjoiV2ViIiwib3MiOiJGaXJlZm94IDk2IiwiZGV2aWNlX21vZGVsIjoiTGludXgiLCJ1c2VyX3Byb3BlcnRpZXMiOnt9fQ
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:50:12 GMT
content-type: application/json;charset=utf-8
access-control-allow-origin: https://app.bonus.ly
access-control-allow-credentials: true
x-amzn-trace-id: Self=1-66227694-36a31e525f39da59616072de;Root=1-66227694-6076e3214db9a0cf040529bf
age: 0
x-served-by: cache-iad-kjyo7100121-IAD
x-cache: MISS
x-cache-hits: 0
x-timer: S1713534613.724137,VS0,VE90
vary: Origin, Origin
cache-control: no-store
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-envoy-upstream-service-time: 92
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=1Sew8_0KloqmfkJCblMzyH_BP1p6Jtm2hREcIEri3YQ-1713534612-1.0.1.1-GcjBZjxF.5TlNqRAVR4uLSH0qhOaoWe2no1WIGiO5JYbIiiS_HYLRYL7uYZfldcFkeD5cRjvWbrtYNZ_oVtWyw; path=/; expires=Fri, 19-Apr-24 14:20:12 GMT; domain=.bonus.ly; HttpOnly; Secure; SameSite=None
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cc11e8cb4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jqueryui/1.12.1/jquery-ui.min.js | 142.250.74.106 | 200 OK | 68 kB |
URL GET HTTP/3ajax.googleapis.com/ajax/libs/jqueryui/1.12.1/jquery-ui.min.js IP142.250.74.106:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeJavaScript source, ASCII text, with very long lines (32073) Hash0a497d4661df7b82feee14332ce0bdaf f77d06b0c5dedef1f1db051a44a2b0d7f233ba3a 55accff7b642c2d7a402cbe03c1494c0f14a76bc03dee9d47d219562b6a152a5
GET /ajax/libs/jqueryui/1.12.1/jquery-ui.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 67948
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 23:02:19 GMT
expires: Tue, 15 Apr 2025 23:02:19 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 312474
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| code.jquery.com/jquery-3.6.0.min.js | 151.101.194.137 | 200 OK | 31 kB |
URL GET HTTP/2code.jquery.com/jquery-3.6.0.min.js IP151.101.194.137:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15d9d"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 19 Apr 2024 13:50:13 GMT
age: 5992233
x-served-by: cache-lga21931-LGA, cache-hel1410024-HEL
x-cache: HIT, HIT
x-cache-hits: 22, 200081
x-timer: S1713534614.547218,VS0,VE0
vary: Accept-Encoding
content-length: 30875
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 | 142.250.74.67 | 200 OK | 47 kB |
URL GET HTTP/2fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 IP142.250.74.67:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 46704, version 1.0 Hash30a274cd01b6eeb0b082c918b0697f1e 393311bde26b99a4ad935fa55bad1dce7994388b 88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42
GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bonus.ly
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:14:19 GMT
expires: Wed, 16 Apr 2025 07:14:19 GMT
cache-control: public, max-age=31536000
age: 282954
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 | 142.250.74.67 | 200 OK | 47 kB |
URL GET HTTP/2fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 IP142.250.74.67:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 46704, version 1.0 Hash30a274cd01b6eeb0b082c918b0697f1e 393311bde26b99a4ad935fa55bad1dce7994388b 88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42
GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bonus.ly
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:14:19 GMT
expires: Wed, 16 Apr 2025 07:14:19 GMT
cache-control: public, max-age=31536000
age: 282954
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 | 142.250.74.67 | 200 OK | 47 kB |
URL GET HTTP/2fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 IP142.250.74.67:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 46704, version 1.0 Hash30a274cd01b6eeb0b082c918b0697f1e 393311bde26b99a4ad935fa55bad1dce7994388b 88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42
GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bonus.ly
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:14:19 GMT
expires: Wed, 16 Apr 2025 07:14:19 GMT
cache-control: public, max-age=31536000
age: 282954
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api.js?onload=recaptchaLoaded | 142.250.74.164 | 200 OK | 115 kB |
URL GET HTTP/2www.google.com/recaptcha/api.js?onload=recaptchaLoaded IP142.250.74.164:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintCC:CC:99:46:65:6C:77:0B:C8:AA:AD:5E:58:B6:2D:19:B2:C7:0B:06 ValidityMon, 04 Mar 2024 07:19:07 GMT - Mon, 27 May 2024 07:19:06 GMT
Size115 kB (114609 bytes) Hasheb7d33c2c19d0466baff8b6ca969918c 9ddb7fb6db886ea5cbc0910ff624333efedb53cb 1284ba5b701b5b3e8678653193ce7c7878d8314b4389623f3e89e8cdc52d508e
GET /recaptcha/api.js?onload=recaptchaLoaded HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Fri, 19 Apr 2024 13:50:13 GMT
date: Fri, 19 Apr 2024 13:50:13 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| recognition-production-cdn-aws.bonus.ly/assets/logo-new/logo-sm-a582f5b30d8a1d042357e823f83d484f11d3f4c3d81436b1d4301382a81fd119.svg | 104.18.11.197 | 200 OK | 70 kB |
URL GET HTTP/3recognition-production-cdn-aws.bonus.ly/assets/logo-new/logo-sm-a582f5b30d8a1d042357e823f83d484f11d3f4c3d81436b1d4301382a81fd119.svg IP104.18.11.197:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeSVG Scalable Vector Graphics image Hash357cd147e820add1dfbb6f2429f86d5a e04e8149bd1d4dffa134dfbb10812ad164c61ded 83e9cfe685505dc4e7b07160ed056cbffccc0a499f6c5497667dba75ff69b475
GET /assets/logo-new/logo-sm-a582f5b30d8a1d042357e823f83d484f11d3f4c3d81436b1d4301382a81fd119.svg HTTP/1.1
Host: recognition-production-cdn-aws.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Jun 2023 17:20:55 GMT
etag: W/"357cd147e820add1dfbb6f2429f86d5a"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31557600
expires: Fri, 21 Jun 2024 23:20:54 GMT
x-amz-version-id: LsPZbti89TjqcKc75OBsRgrQbCESsngb
x-cache: Hit from cloudfront
via: 1.1 2922b040e786628776b5684dc8791b62.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: D4nD-5crK21L05GtVwoZ16-1BbymepZS004O9QpVHYMxZ1KKwqDJMQ==
vary: Origin, Accept-Encoding
cf-cache-status: HIT
age: 1272951
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cc5efb3b50f-OSL
content-encoding: br
|
|
| www.googletagmanager.com/gtag/destination?id=AW-991155754&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 87 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/destination?id=AW-991155754&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
File typeJavaScript source, ASCII text, with very long lines (4179) Hashb6a71db4d456810d64b1e90b16e32750 2bbcf905607cc601153541533cfd8bd3f034dfb0 cf14ffaafe3afbfebd07f167888e7341da106cd32c9a6d678bb1d9746a544d18
GET /gtag/destination?id=AW-991155754&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 19 Apr 2024 13:50:14 GMT
expires: Fri, 19 Apr 2024 13:50:14 GMT
cache-control: private, max-age=900
last-modified: Fri, 19 Apr 2024 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 87085
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.googletagmanager.com/gtag/js?id=G-LYH0R10SEC&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 97 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-LYH0R10SEC&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
File typeJavaScript source, ASCII text, with very long lines (5955) Hash28e5c629de90f2e5f0e8fa79aa5fb217 af76f401e3c219288a8d79f2eee70f6e8c4f3ec4 ccd0b727ca609c8f5a5020640fd316d47f95a731a1c5bd9449709cea2a6f3247
GET /gtag/js?id=G-LYH0R10SEC&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 19 Apr 2024 13:50:14 GMT
expires: Fri, 19 Apr 2024 13:50:14 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 96791
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| recognition-production-cdn-aws.bonus.ly/assets/lib/emojione.sprites-8638750142717a73b47d5f8ac1e710ec2dc15a7e603faca7b55e885f86c1402a.css | 104.18.11.197 | 200 OK | 43 kB |
URL GET HTTP/3recognition-production-cdn-aws.bonus.ly/assets/lib/emojione.sprites-8638750142717a73b47d5f8ac1e710ec2dc15a7e603faca7b55e885f86c1402a.css IP104.18.11.197:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hashf67da67f30921bec81b6d387e0cc14c0 bb7bd8268c6853261d6b794677421e32ec0367e8 61b356eebaefd79960aeb0e201ecc895ab277c85db03e46ed553a3d68107b338
GET /assets/lib/emojione.sprites-8638750142717a73b47d5f8ac1e710ec2dc15a7e603faca7b55e885f86c1402a.css HTTP/1.1
Host: recognition-production-cdn-aws.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: text/css
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=157707
alt-svc: h3=":443"; ma=86400
etag: W/"9d5dcefa79c7cc9530465e131c46f180"
expires: Fri, 21 Jun 2024 23:20:51 GMT
last-modified: Thu, 22 Jun 2023 17:20:52 GMT
vary: Origin, Accept-Encoding
via: 1.1 163a559a90b919cdbd95acf4deecc98a.cloudfront.net (CloudFront)
x-amz-cf-id: SMys7Ajp5bqtf_lH4mzV5tGX13A3jmL1JAVN2dzNHhMhJtV4ZKqsqg==
x-amz-cf-pop: ARN1-C1
x-amz-server-side-encryption: AES256
x-amz-version-id: mmNj3zyO6_qIk1yePVcVvCv9hoLZk79m
x-cache: Hit from cloudfront
cf-cache-status: HIT
age: 1322052
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cc5efa0b50f-OSL
content-encoding: br
|
|
| recognition-production-cdn-aws.bonus.ly/packs/js/496-9bc224a6b28c248414c9.js | 104.18.11.197 | 200 OK | 911 kB |
URL GET HTTP/3recognition-production-cdn-aws.bonus.ly/packs/js/496-9bc224a6b28c248414c9.js IP104.18.11.197:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size911 kB (910973 bytes) Hash4f4546a278ff32b5db52e510e82e23b8 5b47297ad5e04aa6b1a1066e1668eb438fa6c6c9 296e75f399c84058091c4d7e39fd6b0b377c31482fd96c31ca2f5b0af99873b6
GET /packs/js/496-9bc224a6b28c248414c9.js HTTP/1.1
Host: recognition-production-cdn-aws.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=3562299
alt-svc: h3=":443"; ma=86400
etag: W/"edff5bf7b5340850350620be26aa60e9"
last-modified: Tue, 16 Apr 2024 21:25:41 GMT
vary: Origin, Accept-Encoding
via: 1.1 169057b8db0fb379ccba5daa74680acc.cloudfront.net (CloudFront)
x-amz-cf-id: zdWW6-Ta00igG5hQDsSIv9TaxuWjeWJXZS3WjFUFbciDXy9jSbEk1w==
x-amz-cf-pop: CPH50-C2
x-amz-server-side-encryption: AES256
x-amz-version-id: NlZ.pfBD6aGpEzuIlIL5aKWIHt92ux79
x-cache: Hit from cloudfront
cf-cache-status: HIT
age: 2268
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cc5ffbfb50f-OSL
content-encoding: br
|
|
| bonus.ly/apple-touch-icon-180x180.png | 104.18.11.197 | 301 Moved Permanently | 167 B |
URL GET HTTP/3bonus.ly/apple-touch-icon-180x180.png IP104.18.11.197:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash0104c301c5e02bd6148b8703d19b3a73 7436e0b4b1f8c222c38069890b75fa2baf9ca620 446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f
GET /apple-touch-icon-180x180.png HTTP/1.1
Host: bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonus.ly/users/sign_in_start
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA; _special_sauce_session=hjYsSEWCgHqAW%2BOxqJ8sU9P%2BIO6BrsvMxcX7cWYzxK5U33n%2Bn2XXlVmFp1APV5bDVTOSKSqMqra16oslSvv%2BXXDk03x6%2BOh6%2FHVqe8K4hWFCBYqNw%2BuesEdOpsQkUq5Nm7JYLe5H3Cf5wEpDGpjvz7Re%2BpeH6lz7%2FkvAg%2FUVgiAS58dbB5lwURiG6S5gSCRo4CXiMxBVBEYnF%2F%2BSCzP1kVs2Wuj7mJ9Mb41UYIXFBQzZY1LSrjytLKyigq5bou1uHPeUUSCHhA5QH%2BEJb4wp%2B20T5wi3QkpaQ3s5H%2FzPROswqUsg5RfhxALTetYsQ4QDN2n2iLg4skhjKbihSBThufKJnos%3D--qDtMNm0Z0tp5Jo2z--w8wkdJPEXl3ilHR6Np29qA%3D%3D; _gcl_au=1.1.2025866715.1713534614; _ga_LYH0R10SEC=GS1.1.1713534614.1.0.1713534614.60.0.0; _ga=GA1.1.1590843329.1713534614
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 301 Moved Permanently
date: Fri, 19 Apr 2024 13:50:14 GMT
content-type: text/html
content-length: 167
location: https://app.bonus.lyle-touch-icon-180x180.png
cache-control: max-age=3600
expires: Fri, 19 Apr 2024 14:50:14 GMT
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5ccc6f58b50f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| bat.bing.com/bat.js | 204.79.197.237 | 200 OK | 13 kB |
IP204.79.197.237:443 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerMicrosoft Corporation Subjectwww.bing.com Fingerprint77:7D:3C:1C:6F:BE:03:46:50:D9:71:BC:6C:5F:A0:36:1C:35:1F:02 ValidityThu, 18 Apr 2024 02:05:34 GMT - Thu, 27 Jun 2024 23:59:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (46429), with no line terminators Hash72bca04fd669eb89fc65d59052d0fc00 27e60aef86f0cb1b2f6b6ed9df9a4e3ba88efd21 823804a7807864b44093a3843788f4cd076e89cf4a6fdeb8d153ae5c2c2df721
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 13261
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 29 Feb 2024 19:58:06 GMT
accept-ranges: bytes
etag: "01b4e9c496bda1:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 9695394FA68E41B19EC3C00638F0E9DD Ref B: OSL30EDGE0507 Ref C: 2024-04-19T13:50:14Z
date: Fri, 19 Apr 2024 13:50:13 GMT
X-Firefox-Spdy: h2
|
|
| www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-LYH0R10SEC&cid=1590843329.1713534614>m=45je44h0v870573331z879280153za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=200352989 | 142.250.74.163 | 200 OK | 42 B |
URL GET HTTP/2www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-LYH0R10SEC&cid=1590843329.1713534614>m=45je44h0v870573331z879280153za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=200352989 IP142.250.74.163:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerGoogle Trust Services LLC Subject*.google.no Fingerprint0E:DD:25:54:7B:C3:7F:EC:27:35:B1:EC:15:C4:B7:D2:09:71:3B:68 ValidityMon, 04 Mar 2024 07:26:33 GMT - Mon, 27 May 2024 07:26:32 GMT
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-LYH0R10SEC&cid=1590843329.1713534614>m=45je44h0v870573331z879280153za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=200352989 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 19 Apr 2024 13:50:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Open+Sans:400,400italic,600,600italic,700,700italic,800,800italic | 142.250.74.106 | 200 OK | 208 kB |
URL GET HTTP/3fonts.googleapis.com/css?family=Open+Sans:400,400italic,600,600italic,700,700italic,800,800italic IP142.250.74.106:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typegzip compressed data, max compression Size208 kB (208275 bytes) Hash850cc35d99edef655150ea7e95393e35 43dde186749909be4762a271bfa2b0870ac3f168 e436fb06b03907b5a5cc2ffe41e2781a15751804d32ff9640e6ce661278764d9
GET /css?family=Open+Sans:400,400italic,600,600italic,700,700italic,800,800italic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 19 Apr 2024 13:50:13 GMT
date: Fri, 19 Apr 2024 13:50:13 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| js.hs-scripts.com/1973303.js | 104.16.140.209 | 200 OK | 608 B |
URL GET HTTP/2js.hs-scripts.com/1973303.js IP104.16.140.209:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerLet's Encrypt Subjecths-scripts.com Fingerprint10:6A:CE:54:F8:1D:59:1E:1F:7D:DB:76:07:FC:FF:1A:7D:70:E9:BD ValidityMon, 01 Apr 2024 23:22:11 GMT - Sun, 30 Jun 2024 23:22:10 GMT
File typeASCII text, with very long lines (524) Hashd6913e388845da223e47f012afb196f8 abf700cd3ecf0631fc72a028805ce824b087de63 a8b1c8250a4bb58fc797cf52ddd96bdba5e310a0197124196077d4c6ab14eb15
GET /1973303.js HTTP/1.1
Host: js.hs-scripts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: application/javascript;charset=utf-8
vary: origin, Accept-Encoding
access-control-allow-credentials: true
x-content-type-options: nosniff
access-control-max-age: 3600
x-envoy-upstream-service-time: 9
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: a94436a3-3c7c-4c03-a41b-86dc7fb05ae3
x-evy-trace-served-by-pod: iad02/hubapi-td/envoy-proxy-5d47c8d44f-gdzmx
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: a94436a3-3c7c-4c03-a41b-86dc7fb05ae3
last-modified: Fri, 19 Apr 2024 13:33:10 GMT
cf-cache-status: EXPIRED
expires: Fri, 19 Apr 2024 13:51:43 GMT
cache-control: public, max-age=90
server: cloudflare
cf-ray: 876d5cc65fde1bfa-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bat.bing.com/action/0?ti=17372234&tm=gtm002&Ver=2&mid=17edd087-547c-4006-a36b-b14511561cc7&sid=bfd46380fe5311ee8b4fd147b80d9606&vid=bfd49960fe5311ee8211d36a7a543a10&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=Sign%20In%20-%20Bonusly&p=https%3A%2F%2Fbonus.ly%2Fusers%2Fsign_in_start&r=<=1652&evt=pageLoad&sv=1&rn=174153 | 204.79.197.237 | 204 No Content | 0 B |
URL GET HTTP/2bat.bing.com/action/0?ti=17372234&tm=gtm002&Ver=2&mid=17edd087-547c-4006-a36b-b14511561cc7&sid=bfd46380fe5311ee8b4fd147b80d9606&vid=bfd49960fe5311ee8211d36a7a543a10&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=Sign%20In%20-%20Bonusly&p=https%3A%2F%2Fbonus.ly%2Fusers%2Fsign_in_start&r=<=1652&evt=pageLoad&sv=1&rn=174153 IP204.79.197.237:443 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerMicrosoft Corporation Subjectwww.bing.com Fingerprint77:7D:3C:1C:6F:BE:03:46:50:D9:71:BC:6C:5F:A0:36:1C:35:1F:02 ValidityThu, 18 Apr 2024 02:05:34 GMT - Thu, 27 Jun 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=17372234&tm=gtm002&Ver=2&mid=17edd087-547c-4006-a36b-b14511561cc7&sid=bfd46380fe5311ee8b4fd147b80d9606&vid=bfd49960fe5311ee8211d36a7a543a10&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=Sign%20In%20-%20Bonusly&p=https%3A%2F%2Fbonus.ly%2Fusers%2Fsign_in_start&r=<=1652&evt=pageLoad&sv=1&rn=174153 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=2C28623F284A6D4038B6765929BF6C77; domain=.bing.com; expires=Wed, 14-May-2025 13:50:15 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 45D61AF9FFBF4774B1D465EB84A5A377 Ref B: OSL30EDGE0507 Ref C: 2024-04-19T13:50:15Z
date: Fri, 19 Apr 2024 13:50:14 GMT
X-Firefox-Spdy: h2
|
|
| static.cloudflareinsights.com/beacon.min.js/v55bfa2fee65d44688e90c00735ed189a1713218998793 | 104.16.80.73 | 200 OK | 32 kB |
URL GET HTTP/2static.cloudflareinsights.com/beacon.min.js/v55bfa2fee65d44688e90c00735ed189a1713218998793 IP104.16.80.73:443
CertificateIssuerGoogle Trust Services LLC Subjectcloudflareinsights.com Fingerprint73:92:5A:16:97:55:FC:A5:32:7C:F3:9D:0C:84:EF:F3:2F:AA:B5:00 ValiditySun, 10 Mar 2024 02:33:42 GMT - Sat, 08 Jun 2024 02:33:41 GMT
File typegzip compressed data, from Unix Hash6bd0ae257d3c997d7c668f971fb3931c 6116527ba865b1503f45fbbd6d1d4c5215fbd595 e5335471b8ce2a28f82c177b603bd7a9cc245001b99502521bbd98a5635aa69f
GET /beacon.min.js/v55bfa2fee65d44688e90c00735ed189a1713218998793 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2024.4.0"
last-modified: Mon, 15 Apr 2024 22:09:58 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d5cc60b78b518-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| bat.bing.com/p/insights/s/0.7.31 | 204.79.197.237 | 200 OK | 15 kB |
URL GET HTTP/2bat.bing.com/p/insights/s/0.7.31 IP204.79.197.237:443 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerMicrosoft Corporation Subjectwww.bing.com Fingerprint77:7D:3C:1C:6F:BE:03:46:50:D9:71:BC:6C:5F:A0:36:1C:35:1F:02 ValidityThu, 18 Apr 2024 02:05:34 GMT - Thu, 27 Jun 2024 23:59:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (35384), with CRLF line terminators Hash714414d8f323460d6a8187161a8b77eb c8d90ade715d2878ac79bfa8576e15ff217a2df8 fc0e5bdf4287f4e976558d72d9e58269b0d4261b5a23570acb065a26d13ff9f0
GET /p/insights/s/0.7.31 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=86400
content-length: 14999
content-type: application/javascript;charset=utf-8
content-encoding: br
last-modified: Thu, 18 Apr 2024 10:16:29 GMT
etag: W/"0x8DC5F909CCE45BB"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-ms-request-id: c8bba10b-401e-0078-368e-918d23000000
x-ms-version: 2018-03-28
access-control-allow-origin: *
x-azure-ref: 20240419T135015Z-er1c6ff8956crpb9t7xxx184cg000000097g00000000cu3v
x-fd-int-roxy-purgeid: 51562430
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 8486565F30AA4B06B66A659D9E872F3D Ref B: OSL30EDGE0507 Ref C: 2024-04-19T13:50:15Z
date: Fri, 19 Apr 2024 13:50:14 GMT
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/styles__ltr.css | 142.250.74.99 | 200 OK | 25 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/styles__ltr.css IP142.250.74.99:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG&co=aHR0cHM6Ly9ib251cy5seTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=enjfjo3dob0b CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeASCII text, with very long lines (56412), with no line terminators Hash2c00b9f417b688224937053cd0c284a5 17b4c18ebc129055dd25f214c3f11e03e9df2d82 1e754b107428162c65a26d399b66db3daaea09616bf8620d9de4bc689ce48eed
GET /recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24617
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 16:10:44 GMT
expires: Tue, 15 Apr 2025 16:10:44 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 02:01:04 GMT
content-type: text/css
vary: Accept-Encoding
age: 337171
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js | 142.250.74.99 | 200 OK | 206 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js IP142.250.74.99:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG&co=aHR0cHM6Ly9ib251cy5seTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=enjfjo3dob0b CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeJavaScript source, ASCII text, with very long lines (597) Size206 kB (206057 bytes) Hash8326c23d6b3eed35bc3e62f3294587fd edda17e74e53e85073e5eac9cb6be2163dbfa23c 57f03d3ba66117edc152646341120dd3a1d7d71b9a98a3723af5a8ae61bcb3ab
GET /recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 206057
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 16:10:43 GMT
expires: Tue, 15 Apr 2025 16:10:43 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 02:01:04 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 337172
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 142.250.74.67 | 200 OK | 15 kB |
URL GET HTTP/3fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP142.250.74.67:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG&co=aHR0cHM6Ly9ib251cy5seTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=enjfjo3dob0b CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:43:03 GMT
expires: Fri, 18 Apr 2025 02:43:03 GMT
cache-control: public, max-age=31536000
age: 126432
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 142.250.74.67 | 200 OK | 16 kB |
URL GET HTTP/3fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP142.250.74.67:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0 Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:25:07 GMT
expires: Fri, 18 Apr 2025 17:25:07 GMT
cache-control: public, max-age=31536000
age: 73508
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/js/bg/jxnhk5jmHgJtz4Dlh1rT_zslgZiPJPGjuH1uymS8TXw.js | 142.250.74.164 | 200 OK | 7.5 kB |
URL GET HTTP/3www.google.com/js/bg/jxnhk5jmHgJtz4Dlh1rT_zslgZiPJPGjuH1uymS8TXw.js IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG&co=aHR0cHM6Ly9ib251cy5seTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=enjfjo3dob0b CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (17661) Hash96dda94f567100c20e439dfefadb0776 1a7d2dc18f5c6ebcce4fcc8797648711d25cf548 8f19e19398e61e026dcf80e5875ad3ff3b2581988f24f1a3b87d6eca64bc4d7c
GET /js/bg/jxnhk5jmHgJtz4Dlh1rT_zslgZiPJPGjuH1uymS8TXw.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG&co=aHR0cHM6Ly9ib251cy5seTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=enjfjo3dob0b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 7465
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 05:06:09 GMT
expires: Thu, 17 Apr 2025 05:06:09 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 16 Apr 2024 13:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 204246
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/api2/logo_48.png | 142.250.74.99 | 200 OK | 2.2 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/api2/logo_48.png IP142.250.74.99:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG&co=aHR0cHM6Ly9ib251cy5seTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=enjfjo3dob0b CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typePNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced Hashef9941290c50cd3866e2ba6b793f010d 4736508c795667dcea21f8d864233031223b7832 1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:35:26 GMT
expires: Thu, 25 Apr 2024 17:35:26 GMT
cache-control: public, max-age=604800
age: 72889
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/recaptcha/api2/webworker.js?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC | 142.250.74.164 | 200 OK | 206 kB |
URL GET HTTP/3www.google.com/recaptcha/api2/webworker.js?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG&co=aHR0cHM6Ly9ib251cy5seTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=enjfjo3dob0b CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (597) Size206 kB (206169 bytes) Hashcc7146073f3cd862905d3706b50af59b 337e481f0127a520fd5e4e46065da454513da1f3 20a324fa421e66b9256335997260ed6697c2915f93df1300c158b1139745cdfb
GET /recaptcha/api2/webworker.js?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG&co=aHR0cHM6Ly9ib251cy5seTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=enjfjo3dob0b
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Fri, 19 Apr 2024 13:50:15 GMT
date: Fri, 19 Apr 2024 13:50:15 GMT
cache-control: private, max-age=300
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| bonus.ly/cdn-cgi/rum? | 104.18.11.197 | 204 No Content | 0 B |
IP104.18.11.197:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonus.ly/users/sign_in_start
content-type: application/json
Content-Length: 1051
Origin: https://bonus.ly
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA; _special_sauce_session=hjYsSEWCgHqAW%2BOxqJ8sU9P%2BIO6BrsvMxcX7cWYzxK5U33n%2Bn2XXlVmFp1APV5bDVTOSKSqMqra16oslSvv%2BXXDk03x6%2BOh6%2FHVqe8K4hWFCBYqNw%2BuesEdOpsQkUq5Nm7JYLe5H3Cf5wEpDGpjvz7Re%2BpeH6lz7%2FkvAg%2FUVgiAS58dbB5lwURiG6S5gSCRo4CXiMxBVBEYnF%2F%2BSCzP1kVs2Wuj7mJ9Mb41UYIXFBQzZY1LSrjytLKyigq5bou1uHPeUUSCHhA5QH%2BEJb4wp%2B20T5wi3QkpaQ3s5H%2FzPROswqUsg5RfhxALTetYsQ4QDN2n2iLg4skhjKbihSBThufKJnos%3D--qDtMNm0Z0tp5Jo2z--w8wkdJPEXl3ilHR6Np29qA%3D%3D; _gcl_au=1.1.2025866715.1713534614; _ga_LYH0R10SEC=GS1.1.1713534614.1.0.1713534614.60.0.0; _ga=GA1.1.1590843329.1713534614; _uetvid=bfd49960fe5311ee8211d36a7a543a10; _uetsid=bfd46380fe5311ee8b4fd147b80d9606|1nxaidk|2|fl2|0|1570
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Fri, 19 Apr 2024 13:50:15 GMT
access-control-allow-origin: https://bonus.ly
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 876d5cd4a88bb50f-OSL
x-frame-options: DENY
x-content-type-options: nosniff
|
|
| www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG | 142.250.74.164 | 200 OK | 26 kB |
URL GET HTTP/3www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG IP142.250.74.164:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeHTML document, ASCII text, with very long lines (56439) Hash22c6d52dc63ddcf43c5e9ea24076243f aac1635f14542123e37d83252ca3de072caceb05 51e370b2921fb04de2140664b1503343ae0a8a492d8f647f61ff8444cfd43cb9
GET /recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 19 Apr 2024 13:50:16 GMT
content-security-policy: script-src 'nonce-wx54bvit2A8NWa_r3oe_2w' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js | 142.250.74.99 | 200 OK | 206 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js IP142.250.74.99:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG&co=aHR0cHM6Ly9ib251cy5seTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=enjfjo3dob0b CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeJavaScript source, ASCII text, with very long lines (597) Size206 kB (206057 bytes) Hash8326c23d6b3eed35bc3e62f3294587fd edda17e74e53e85073e5eac9cb6be2163dbfa23c 57f03d3ba66117edc152646341120dd3a1d7d71b9a98a3723af5a8ae61bcb3ab
GET /recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 206057
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 16:10:43 GMT
expires: Tue, 15 Apr 2025 16:10:43 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 02:01:04 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 337173
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 142.250.74.67 | 200 OK | 15 kB |
URL GET HTTP/3fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP142.250.74.67:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG&co=aHR0cHM6Ly9ib251cy5seTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=enjfjo3dob0b CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:43:03 GMT
expires: Fri, 18 Apr 2025 02:43:03 GMT
cache-control: public, max-age=31536000
age: 126433
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 142.250.74.67 | 200 OK | 16 kB |
URL GET HTTP/3fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP142.250.74.67:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0 Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:25:07 GMT
expires: Fri, 18 Apr 2025 17:25:07 GMT
cache-control: public, max-age=31536000
age: 73509
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 | 142.250.74.67 | 200 OK | 15 kB |
URL GET HTTP/3fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 IP142.250.74.67:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15340, version 1.0 Hash19b7a0adfdd4f808b53af7e2ce2ad4e5 81d5d4c7b5035ad10cce63cf7100295e0c51fdda c912a9ce0c3122d4b2b29ad26bfe06b0390d1a5bdaa5d6128692c0befd1dfbbd
GET /s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15340
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 21:52:08 GMT
expires: Tue, 15 Apr 2025 21:52:08 GMT
cache-control: public, max-age=31536000
age: 316688
last-modified: Mon, 16 Oct 2017 17:33:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/api2/refresh_2x.png | 142.250.74.99 | 200 OK | 600 B |
URL GET HTTP/3www.gstatic.com/recaptcha/api2/refresh_2x.png IP142.250.74.99:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typePNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced Hash0f2a4639b8a4cb30c76e8333c00d30a6 57e273a270bb864970d747c74b3f0a7c8e515b13 44b988703019cd6bfa86c91840fecf2a42b611b364e3eea2f4eb63bf62714e98
GET /recaptcha/api2/refresh_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 12:26:13 GMT
expires: Tue, 23 Apr 2024 12:26:13 GMT
cache-control: public, max-age=604800
age: 264243
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| recognition-production-cdn-aws.bonus.ly/assets/logo/bonusly_favicon_16-05302cdc73efed5db28d28fcf7c20218ddea91205f0b0b2cbe5e082420a303e7.ico | 104.18.11.197 | | 8.3 kB |
URL GET recognition-production-cdn-aws.bonus.ly/assets/logo/bonusly_favicon_16-05302cdc73efed5db28d28fcf7c20218ddea91205f0b0b2cbe5e082420a303e7.ico IP104.18.11.197:0
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeMS Windows icon resource - 1 icon, 32x32, 32 bits/pixel Hash08df10b3c2ede2a0d098b1a6f88f9b3f 2886408e1ce68075642f05856b61c000e68fc6b3 b872d3d0fcc711be26e695fdf32ce579d94ff34c1eb560afd3e1932e37bf0b7d
GET /assets/logo/bonusly_favicon_16-05302cdc73efed5db28d28fcf7c20218ddea91205f0b0b2cbe5e082420a303e7.ico HTTP/1.1
Host: recognition-production-cdn-aws.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA; _gcl_au=1.1.2025866715.1713534614; _ga_LYH0R10SEC=GS1.1.1713534614.1.0.1713534614.60.0.0; _ga=GA1.1.1590843329.1713534614
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:14 GMT
content-type: image/vnd.microsoft.icon
last-modified: Thu, 22 Jun 2023 17:20:53 GMT
etag: W/"08df10b3c2ede2a0d098b1a6f88f9b3f"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31557600
expires: Fri, 21 Jun 2024 23:20:52 GMT
x-amz-version-id: c7VxGFGkYhWKV85qmtUNLf.1a7JyYRUC
x-cache: Hit from cloudfront
via: 1.1 8021f954d329869476f935f2fb14e66e.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: UF7T-4Dpbnj0aIxhnSS__XOL8Cm0opoGZqlKChMPDfbMMDJC6_YVZQ==
vary: Origin, Accept-Encoding
cf-cache-status: HIT
age: 1322051
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5ccc6f5fb50f-OSL
content-encoding: br
|
|
| www.google.com/recaptcha/api2/anchor?ar=1&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG&co=aHR0cHM6Ly9ib251cy5seTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=enjfjo3dob0b | 142.250.74.164 | 200 OK | 77 kB |
URL GET HTTP/3www.google.com/recaptcha/api2/anchor?ar=1&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG&co=aHR0cHM6Ly9ib251cy5seTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=enjfjo3dob0b IP142.250.74.164:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hash82edc3f431e476a1375bf1b425d9bd6c 377197a0cd05623ea4d52fafe97d8f89c674a2b9 f957e64849babfa1e19000c93c62fd6f6a637db7e41e8fd61183c48d4f28eb02
GET /recaptcha/api2/anchor?ar=1&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG&co=aHR0cHM6Ly9ib251cy5seTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=enjfjo3dob0b HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 19 Apr 2024 13:50:15 GMT
content-security-policy: script-src 'nonce-Pos-XA2ouabITVOeGWGMtA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| app.bonus.ly/static/js/440.f2642946.chunk.js | 104.18.11.197 | 200 OK | 67 kB |
URL GET HTTP/3app.bonus.ly/static/js/440.f2642946.chunk.js IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash8285fa44e3a518e2ee281c506c928b80 3e55314d595c718e81309b4db2b629b2d04a3a4b eb76eb530bd9b93eec9c2f141a5356a9f88cba000e976cb29658cb489bbad50e
GET /static/js/440.f2642946.chunk.js HTTP/1.1
Host: app.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.bonus.ly/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=336115
etag: W/"69f0f3174528083d2469c51b761a51c4"
last-modified: Wed, 17 Apr 2024 16:48:15 GMT
x-amz-id-2: vCJDgh/a9o99tKIpLsUeBJ5TIeTmnZA7otl66Er1mdVj+M10rCDR6DNI/hw7RmKPG6tir5HarEI=
x-amz-request-id: 8217339VBXD6HDVD
cf-cache-status: HIT
age: 2240
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cba6b93b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-LYH0R10SEC>m=45je44h0v870573331za200&_p=1713534613669&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1590843329.1713534614&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AEA&_s=2&sid=1713534614&sct=1&seg=0&dl=https%3A%2F%2Fbonus.ly%2Fusers%2Fsign_in_start&dt=Sign%20In%20-%20Bonusly&en=scroll&epn.percent_scrolled=90&tfd=6127 | 216.239.34.36 | 204 No Content | 0 B |
URL GET HTTP/3region1.analytics.google.com/g/collect?v=2&tid=G-LYH0R10SEC>m=45je44h0v870573331za200&_p=1713534613669&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1590843329.1713534614&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AEA&_s=2&sid=1713534614&sct=1&seg=0&dl=https%3A%2F%2Fbonus.ly%2Fusers%2Fsign_in_start&dt=Sign%20In%20-%20Bonusly&en=scroll&epn.percent_scrolled=90&tfd=6127 IP216.239.34.36:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /g/collect?v=2&tid=G-LYH0R10SEC>m=45je44h0v870573331za200&_p=1713534613669&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1590843329.1713534614&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AEA&_s=2&sid=1713534614&sct=1&seg=0&dl=https%3A%2F%2Fbonus.ly%2Fusers%2Fsign_in_start&dt=Sign%20In%20-%20Bonusly&en=scroll&epn.percent_scrolled=90&tfd=6127 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: *
date: Fri, 19 Apr 2024 13:50:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| mfe.bonus.ly/manager-enablement/remoteEntry.js?v=2 | 104.18.11.197 | 200 OK | 45 kB |
URL GET HTTP/3mfe.bonus.ly/manager-enablement/remoteEntry.js?v=2 IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeJavaScript source, ASCII text, with very long lines (9297), with no line terminators Hash354eb65c148edb7bce1d465df9486786 e40dd96acb0aad4ad2d20886a6a892a2ce410026 89642a720427f6300829de62df6eb7dcc91b71e97c699bc1e08afcd1906186a2
GET /manager-enablement/remoteEntry.js?v=2 HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=9337
etag: W/"2682cc2aa33d67e90c98cefb6b1b5f90"
last-modified: Thu, 18 Apr 2024 18:53:31 GMT
x-amz-id-2: msfQNJ0hWBy0+9vdgiCfOoRUPUpl4gHBnzea0vLW3DAXzkj6fnxHyhHC4QBF3jAnDPUz6UeE+oU=
x-amz-request-id: GAJQXX8WTAREXERS
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:41 GMT
cache-control: public, max-age=30
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbb1c41b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| mfe.bonus.ly/bookmark/remoteEntry.js?v=2 | 104.18.11.197 | 200 OK | 8.0 kB |
URL GET HTTP/3mfe.bonus.ly/bookmark/remoteEntry.js?v=2 IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeJavaScript source, ASCII text, with very long lines (8268), with no line terminators Hash2b63cbfc233b5f1174d055b026b0e683 c372dc1e5bf51e7d0f5215c8957ba380efe523f7 ffdc24587cf556575e91d77fba5f89c80c108067b77ad6dec15046a0c885501f
GET /bookmark/remoteEntry.js?v=2 HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=8038
etag: W/"7a87b8d57d8f7c3d4b21f7abef5cb57c"
last-modified: Thu, 18 Apr 2024 21:16:41 GMT
x-amz-id-2: lf43YrvC8dYwIKl//+YGyS4PxraWFju+4RF+BTnhAvhIkz1reU9iYMrX/2eNxG+0d6vuXrgV/40=
x-amz-request-id: SMP8ZRTWE78582WG
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:41 GMT
cache-control: public, max-age=30
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbb1c42b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| mfe.bonus.ly/invite-users-modal/remoteEntry.js?v=2 | 104.18.11.197 | 200 OK | 8.2 kB |
URL GET HTTP/3mfe.bonus.ly/invite-users-modal/remoteEntry.js?v=2 IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeJavaScript source, ASCII text, with very long lines (8433), with no line terminators Hasheda6e37dac581b015d6c017f946a0017 65027790a7434e5ba7b158f47a2112e87db16480 4aa63879f6bc97d012d7d1aebe6099a871630cd9c44e9700bb04c94ca389bac5
GET /invite-users-modal/remoteEntry.js?v=2 HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=8215
etag: W/"a45336eb7af8ead36712b5b100639c46"
last-modified: Wed, 17 Apr 2024 16:48:09 GMT
x-amz-id-2: TS4/3xhaPxH0Ox8KREt6BMEzP355udoEcRSJaKi4xSb8LhDjggzMRvjyI+xcTSAjiy5HERQPEsE=
x-amz-request-id: BMQ7Z5C4CKBT0QRW
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:41 GMT
cache-control: public, max-age=30
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbb1c43b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| mfe.bonus.ly/translations/locales/en/common.json | 104.18.11.197 | 200 OK | 1.1 kB |
URL GET HTTP/3mfe.bonus.ly/translations/locales/en/common.json IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeASCII text, with very long lines (1337), with no line terminators Hash786eabbae94ac40338935d029f6c6cd1 1cdf608ed4d1b996d31263b90624b82976c39230 dcacb0e429293a4826950c0e944ddeee9b7ffd6c67c982f9fe9d37243b83647c
GET /translations/locales/en/common.json HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:12 GMT
content-type: application/json
x-amz-id-2: fHkpOFzHEye8yWVtz+dDsQyEVUhE/+JqDI/8JJ9h0xutLTlayLVbwn/Hafclv2jPlPaExtnP2l4=
x-amz-request-id: C6B5MNAY70DH1FEA
access-control-allow-origin: https://app.bonus.ly
access-control-allow-methods: GET
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Thu, 18 Apr 2024 17:42:24 GMT
etag: W/"b204375511e890906931d5ce14d29dfe"
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:42 GMT
cache-control: public, max-age=30
set-cookie: __cf_bm=uOD_WS1pgqDdP9PqzwCbaPWNRkGn5EAEjthkwlKsleg-1713534612-1.0.1.1-sdZn2LrJYIyLiSM_Z51yEXMK1MR2.xVmUcQ2LqIxzGS6kv6jYcyyu9iqlQx5iTGAlFVvfIkSSuDQ9NXyO6vdMQ; path=/; expires=Fri, 19-Apr-24 14:20:12 GMT; domain=.bonus.ly; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbebfcab50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A5.13.0%2Capi%3Axhr%2Cenv%3Aproduction%2Cservice%3Amonarch%2Cversion%3A1.1.0&dd-api-key=pubd81c2cabb32a289ccded45586130bed5&dd-evp-origin-version=5.13.0&dd-evp-origin=browser&dd-request-id=eec1e23f-615f-443f-9138-7cad4c8f4c7f&batch_time=1713534612307 | 3.233.147.183 | 202 Accepted | 53 B |
URL POST HTTP/2browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A5.13.0%2Capi%3Axhr%2Cenv%3Aproduction%2Cservice%3Amonarch%2Cversion%3A1.1.0&dd-api-key=pubd81c2cabb32a289ccded45586130bed5&dd-evp-origin-version=5.13.0&dd-evp-origin=browser&dd-request-id=eec1e23f-615f-443f-9138-7cad4c8f4c7f&batch_time=1713534612307 IP3.233.147.183:443
CertificateIssuerDigiCert Inc Subject*.browser-intake-datadoghq.com Fingerprint90:98:16:E4:5F:36:C7:67:0F:C6:18:49:63:19:73:FC:82:36:C1:4E ValiditySat, 17 Jun 2023 00:00:00 GMT - Tue, 18 Jun 2024 23:59:59 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hash20f4c7640033676408751ce86461a1dc 10b82c860c010badbd6548079270aefa482a2bdb cc18201e7121fb38fb50b5511301a2ad83a6126c8e63b54b29827e999ab26108
POST /api/v2/rum?ddsource=browser&ddtags=sdk_version%3A5.13.0%2Capi%3Axhr%2Cenv%3Aproduction%2Cservice%3Amonarch%2Cversion%3A1.1.0&dd-api-key=pubd81c2cabb32a289ccded45586130bed5&dd-evp-origin-version=5.13.0&dd-evp-origin=browser&dd-request-id=eec1e23f-615f-443f-9138-7cad4c8f4c7f&batch_time=1713534612307 HTTP/1.1
Host: browser-intake-datadoghq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 15974
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 202 Accepted
date: Fri, 19 Apr 2024 13:50:12 GMT
content-type: application/json
content-length: 53
dd-request-id: eec1e23f-615f-443f-9138-7cad4c8f4c7f
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/api2/audio_2x.png | 142.250.74.99 | 200 OK | 530 B |
URL GET HTTP/3www.gstatic.com/recaptcha/api2/audio_2x.png IP142.250.74.99:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typePNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced Hash88e0f42c9fa4f94aa8bcd54d1685c180 5ad9d47a49b82718baa3be88550a0b3350270c42 89c62095126fca89ea1511cf35b49b8306162946b0c26d6f60c5506c51d85992
GET /recaptcha/api2/audio_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 530
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 01:43:57 GMT
expires: Tue, 23 Apr 2024 01:43:57 GMT
cache-control: public, max-age=604800
age: 302779
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| mfe.bonus.ly/admin-rewards/remoteEntry.js?v=2 | 104.18.11.197 | 200 OK | 8.4 kB |
URL GET HTTP/3mfe.bonus.ly/admin-rewards/remoteEntry.js?v=2 IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeJavaScript source, ASCII text, with very long lines (8611), with no line terminators Hash7c0e37ed12e99b7c05753f94c869b7c4 b94a2e03ffbb1c109cd39b6f805235bf30358d80 0a95a6ce03bfdd8fd082f5bcb07a2505ca70851d4991ea578b70c803616ec179
GET /admin-rewards/remoteEntry.js?v=2 HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=8391
etag: W/"fa4803ef2f284994c43b4ef21872bcc0"
last-modified: Wed, 17 Apr 2024 16:48:14 GMT
x-amz-id-2: 0936LoChKgsMhOnV9r2zYLfY4Aywc/GK6Job18tFdwFS3OLa1qOHcOqOzE1FL8X79iwph+DF3qg=
x-amz-request-id: BMQ83KWV9735PH6Z
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:41 GMT
cache-control: public, max-age=30
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbb1c47b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| d2yyd1h5u9mauk.cloudfront.net/integrations/web/v1/library/MsFAGIKA8MYr3PFu/delighted.js | 54.230.241.171 | 200 OK | 93 kB |
URL GET HTTP/1.1d2yyd1h5u9mauk.cloudfront.net/integrations/web/v1/library/MsFAGIKA8MYr3PFu/delighted.js IP54.230.241.171:443
CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32828) Hash9a5e0e0da615e2376d00272f1efe0abd 306de296170f1061b861396473cd5288ee520d07 256e76066555db79917763a3ea5c2132d5ba83f9f18370e6c731966409512dbb
GET /integrations/web/v1/library/MsFAGIKA8MYr3PFu/delighted.js HTTP/1.1
Host: d2yyd1h5u9mauk.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Fri, 19 Apr 2024 13:50:12 GMT
Status: 200 OK
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
X-UA-Compatible: IE=Edge,chrome=1
Cache-Control: max-age=120, public
Content-Security-Policy: default-src 'self'; font-src 'self' data: https://fonts.gstatic.com https://js.intercomcdn.com http://fonts.intercomcdn.com http://*.auryc.com https://dcx14qs33eg2z.cloudfront.net; style-src 'self' 'unsafe-inline' https://accounts.google.com https://cdn.weglot.com https://fonts.googleapis.com https://tagmanager.google.com https://heapanalytics.com https://app-sj30.marketo.com https://cdn.zapier.com https://dcx14qs33eg2z.cloudfront.net; object-src 'none'; media-src 'self' https://beacon-v2.helpscout.net https://js.intercomcdn.com/ https://dcx14qs33eg2z.cloudfront.net; img-src 'self' data: http: https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://accounts.google.com https://app.intercom.io https://app.pendo.io https://a.opmnstr.com https://api.omappapi.com https://analytics.twitter.com https://app-sj30.marketo.com https://bat.bing.com https://beacon-v2.helpscout.net https://cdn.heapanalytics.com https://cdn.pendo.io https://cdn.weglot.com https://connect.facebook.net https://ct.capterra.com https://data.pendo.io https://googleads.g.doubleclick.net https://heapanalytics.com https://js.intercomcdn.com https://js.pusher.com https://js.stripe.com https://munchkin.marketo.net https://pendo-io-static.storage.googleapis.com https://pendo-static-5802606298267648.storage.googleapis.com https://platform.twitter.com https://risk.clearbit.com https://rum-static.pingdom.net https://script.crazyegg.com https://snap.licdn.com https://ssl.google-analytics.com https://static.ads-twitter.com https://tagmanager.google.com https://tpc.googlesyndication.com https://widget.intercom.io https://www.google-analytics.com https://www.google.com https://www.googleadservices.com https://www.googletagmanager.com https://zapier.com https://cdn.zapier.com https://*.quora.com https://js.sentry-cdn.com https://browser.sentry-cdn.com https://public.profitwell.com https://static.profitwell.com https://polyfill.io https://d3dy5gmtp8yhk7.cloudfront.net/ https://d2yyd1h5u9mauk.cloudfront.net https://dcx14qs33eg2z.cloudfront.net; frame-src 'self' https://accounts.google.com https://app.pendo.io https://js.stripe.com https://beacon-v2.helpscout.net https://bid.g.doubleclick.net https://td.doubleclick.net https://tpc.googlesyndication.com https://app-sj30.marketo.com https://qglobalops.co1.qualtrics.com; connect-src 'self' https://delighted.com https://*.delighted.com https://api.delighted.com https://accounts.google.com https://api-iam.intercom.io https://api-ping.intercom.io https://api.intercom.io https://api.zapier.com https://zapier.com https://app.pendo.io https://bat.bing.com https://beaconapi.helpscout.net https://chatapi.helpscout.net https://api.weglot.com https://cdn.weglot.com https://cdn-api-weglot.com https://d3hb14vkzrxvla.cloudfront.net https://data.pendo.io https://heapanalytics.com https://px.ads.linkedin.com https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://pendo-static-5802606298267648.storage.googleapis.com https://platform.twitter.com https://risk.clearbit.com https://script.crazyegg.com https://stats.g.doubleclick.net https://tracking.crazyegg.com https://uploads.intercomcdn.com https://uploads.intercomusercontent.com https://www.google-analytics.com https://www.google.com https://www2.profitwell.com https://099-SJL-057.mktorest.com https://*.pusher.com https://js.sentry-cdn.com https://browser.sentry-cdn.com https://*.quora.com https://*.auryc.com wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io wss://ws.pusher.com wss://ws.pusherapp.com https://dcx14qs33eg2z.cloudfront.net; report-uri https://fb4qdnkh2k.execute-api.us-east-1.amazonaws.com/default
X-Request-Id: 6c7429f09ca0a7e74263ca5658f4d555
X-Runtime: 0.058409
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Miss from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: n0M09UjWmklu0WSRZ8lr6ktS7uZtkSndHCxj7SixEPbFa3NlyeGbzw==
|
|
| app.bonus.ly/static/js/main.64f845f0.js | 104.18.11.197 | 200 OK | 16 kB |
URL GET HTTP/3app.bonus.ly/static/js/main.64f845f0.js IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeJavaScript source, ASCII text, with very long lines (15810), with no line terminators Hash070a2ed742824ceee1fa84401599ce6c cf905a02b72452d458a416eab45da745fd0ac6cf 3855e843ad349545b101a97aea92a9c5324923b4289ae7a1852c7b730441ce8b
GET /static/js/main.64f845f0.js HTTP/1.1
Host: app.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.bonus.ly/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=15852
etag: W/"abb9400e14b751a2fdf003e07681f751"
last-modified: Wed, 17 Apr 2024 16:48:17 GMT
x-amz-id-2: SgA1PL3K62493a/QlxcRuF7842RQuuKyBWgtYo2frLdGTnepjc271o5R59oS8gsmZNj18xlZRz0=
x-amz-request-id: BMQ7R3C16QJQXFRA
cf-cache-status: HIT
age: 2240
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cb9aaedb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| mfe.bonus.ly/admin-dashboard-mfe/remoteEntry.js?v=2 | 104.18.11.197 | 200 OK | 7.9 kB |
URL GET HTTP/3mfe.bonus.ly/admin-dashboard-mfe/remoteEntry.js?v=2 IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeJavaScript source, ASCII text, with very long lines (8135), with no line terminators Hashb7e7caf7a077f4f854c6c24f0ff1396d e29050c6c203c857ac8961e8288f96d17df8e28c 645c48353f2bfdf605a878c7a203e7ba14c1b83938479554f6782f6b3ce4966e
GET /admin-dashboard-mfe/remoteEntry.js?v=2 HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=7921
etag: W/"c025c9af8311b4d709d04a94b9641ded"
last-modified: Wed, 17 Apr 2024 16:48:12 GMT
x-amz-id-2: t8koCQEcHzue1swMHPVRFmfdqsQjiVXDfg7Iec11qX/+8tNPXH/xG6SPiAuWL5PSWtNmgqnJamg=
x-amz-request-id: BMQCAKP4TAMMR9CX
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:41 GMT
cache-control: public, max-age=30
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbb1c45b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| mfe.bonus.ly/translations/locales/en/components.json | 104.18.11.197 | 200 OK | 1.3 kB |
URL GET HTTP/3mfe.bonus.ly/translations/locales/en/components.json IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeASCII text, with very long lines (1572), with no line terminators Hash53f151563d94a4e29a02f325626fb117 baa52ba0b83794dceb3b489fca2aaf1de8b06131 b9242cdda5a3c3c39433a3e24d149036e38eeda33d1fde708f013c87260d97f3
GET /translations/locales/en/components.json HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:12 GMT
content-type: application/json
x-amz-id-2: gUU+BqcJ6HjdFFB8avRGVQ44YBNCV8P1q9IJYA5/ZyKitaoDjudUw82QdZTD38n93K5gHg2mnnA=
x-amz-request-id: C6BD28KWD89YYSX2
access-control-allow-origin: https://app.bonus.ly
access-control-allow-methods: GET
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Thu, 18 Apr 2024 17:42:24 GMT
etag: W/"9d847e3dfd9a867fcb95fcbee8c911e2"
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:42 GMT
cache-control: public, max-age=30
set-cookie: __cf_bm=7eDmZRrnOPKWCWLGEoJ9hGw61qjQc0dDbvSkx4qW39I-1713534612-1.0.1.1-x7Q0.kq0_J5J60vv5yeOGmTnK1HmrCeLsJIOWwT01S7C12m6U8G_yQQByrMCqJxWU3fKe9QpiqpRb0oYcx.0UA; path=/; expires=Fri, 19-Apr-24 14:20:12 GMT; domain=.bonus.ly; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbebfcbb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| js.hs-banner.com/v2/1973303/banner.js | 104.18.34.229 | 200 OK | 84 kB |
URL GET HTTP/2js.hs-banner.com/v2/1973303/banner.js IP104.18.34.229:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerLet's Encrypt Subjecths-banner.com FingerprintFD:CD:8E:97:D4:7A:91:8A:CF:B0:8D:03:EF:EB:A1:49:9F:F6:62:40 ValidityMon, 01 Apr 2024 01:01:12 GMT - Sun, 30 Jun 2024 01:01:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v2/1973303/banner.js HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:50:14 GMT
content-type: text/javascript; charset=UTF-8
x-amz-id-2: QVvSENr2IYjI9UN4AYGrvWww7SOBzckgRuAni6UtR7fosNiyHNLPWo4cY+s+ycMNd6Sb67YtmMo=
x-amz-request-id: YTE0TF4WR9P3V8J5
last-modified: Thu, 18 Apr 2024 18:46:08 GMT
etag: W/"818f27497c41523933681dc5866ff063"
x-amz-server-side-encryption: AES256
cache-control: max-age=300,public
x-amz-version-id: LdlLL5IutHWMwGYc0gdgcrSVn2_ik7ZY
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin, Accept-Encoding
expires: Fri, 19 Apr 2024 13:55:14 GMT
x-envoy-upstream-service-time: 43
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: 50f2c523-42e5-4c74-ab38-dae13af1a03c
x-evy-trace-served-by-pod: iad02/analytics-js-proxy-td/envoy-proxy-6685c9958f-snf7h
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: 50f2c523-42e5-4c74-ab38-dae13af1a03c
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 876d5cc94caa56a4-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Plus+Jakarta+Sans:wght@600;800&display=swap | 142.250.74.106 | 200 OK | 3.2 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Plus+Jakarta+Sans:wght@600;800&display=swap IP142.250.74.106:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeASCII text, with very long lines (3294), with no line terminators Hash0ef38bab3cd0b23f0ce8f50de4e971dd d5e2a9a0ab139e63b0a8836af0ddf412cef6713f 4a974670b1e7330d3437e2284ac90dbaef9cb552f4a9772f2efd8b65a799496e
GET /css2?family=Plus+Jakarta+Sans:wght@600;800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 19 Apr 2024 13:50:11 GMT
date: Fri, 19 Apr 2024 13:50:11 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| mfe.bonus.ly/vertical-navbar/static/js/885.7bd9bc53.chunk.js | 104.18.11.197 | 200 OK | 132 kB |
URL GET HTTP/3mfe.bonus.ly/vertical-navbar/static/js/885.7bd9bc53.chunk.js IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size132 kB (132186 bytes) Hash7bb528ae3a7da8da110158cfafe5cefd ebad693a6b8cc3d0440b7f1c408ecc2114899961 0ca973e20ba1a8ae96e8eca6dc295cc165cb7663e0bff78e0a666ce9f59a715f
GET /vertical-navbar/static/js/885.7bd9bc53.chunk.js HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=132239
etag: W/"80d76819827a7662955d510cd337c6da"
last-modified: Wed, 17 Apr 2024 16:48:14 GMT
x-amz-id-2: ChYLuj2Fccqa8an7pbs8eMSDG1F+oyH1ksv6zYkqG5UC8o/pW8Em0BYElzvvf2iu9+erfgbIldE=
x-amz-request-id: 8219N0971JEKRPBD
cf-cache-status: HIT
age: 2239
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbc9dc7b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| mfe.bonus.ly/vertical-navbar/static/js/334.d9a0c33c.chunk.js | 104.18.11.197 | 200 OK | 808 B |
URL GET HTTP/3mfe.bonus.ly/vertical-navbar/static/js/334.d9a0c33c.chunk.js IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeASCII text, with very long lines (818), with no line terminators Hash357ce8101ac309e5f844d0c25b010e34 93b7f03269e518874c71b000221feccdb9542e28 376a34dac8c36cc908212355926833620c94dec0925d4e04b471b52ebb2d227f
GET /vertical-navbar/static/js/334.d9a0c33c.chunk.js HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=858
etag: W/"00c7fd5d6b47429acb3a83c396010d0b"
last-modified: Wed, 17 Apr 2024 16:48:12 GMT
x-amz-id-2: f0FVMz3ZZx1tXCmX+IrInAtyZMp1BFD5wtObak7zlKT/DyZBZ0HsSAEVPtvH1hqlMK7z1S047YE=
x-amz-request-id: 821FC732M16EMTR7
cf-cache-status: HIT
age: 2239
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbcaddbb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| recognition-production-cdn-aws.bonus.ly/packs/js/484-5415322c7fe6f1693f3c.js | 104.18.11.197 | 200 OK | 2.1 MB |
URL GET HTTP/3recognition-production-cdn-aws.bonus.ly/packs/js/484-5415322c7fe6f1693f3c.js IP104.18.11.197:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
Size2.1 MB (2123936 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /packs/js/484-5415322c7fe6f1693f3c.js HTTP/1.1
Host: recognition-production-cdn-aws.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=2123996
alt-svc: h3=":443"; ma=86400
etag: W/"a32e344ebd60a920042ce09fe6835107"
last-modified: Wed, 14 Feb 2024 23:46:08 GMT
vary: Origin, Accept-Encoding
via: 1.1 d2344bac503cfadf51884e9930680ffe.cloudfront.net (CloudFront)
x-amz-cf-id: xDfbqKR8CU99v7Sew7DUSGyh7acRmPYGC7yFrZ8JjVr7h4eGvsqCrg==
x-amz-cf-pop: ARN1-C1
x-amz-server-side-encryption: AES256
x-amz-version-id: 61q2s_IuHPaE.XzpEFdHuifV2_Y1x0ur
x-cache: Hit from cloudfront
cf-cache-status: HIT
age: 2268
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cc5ffb8b50f-OSL
content-encoding: br
|
|
| www.google.com/recaptcha/api2/reload?k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG | 142.250.74.164 | 200 OK | 19 kB |
URL POST HTTP/3www.google.com/recaptcha/api2/reload?k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeASCII text, with very long lines (19357) Hash66547bf572c6c6b243572ed0a93a5ae3 66bccb7679ee0af85ea3eb095b318d096f9411db 9e9406de6989f8c446e842ecaa352407a064eec39500b71c17d7b631567258f0
POST /recaptcha/api2/reload?k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-protobuffer
Content-Length: 7213
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/json; charset=utf-8
content-encoding: gzip
date: Fri, 19 Apr 2024 13:50:16 GMT
expires: Fri, 19 Apr 2024 13:50:16 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
set-cookie: _GRECAPTCHA=09ALYNOahEOdUfxqh3GtUrgLYcGL1wLK4ikMpwo8XKJChIyjPNQAEDF4Hsd-wfG3CXG_avWzuRyV0odGNfFX1cmGA;Path=/recaptcha;Expires=Wed, 16-Oct-2024 13:50:16 GMT;Secure;HttpOnly;Priority=HIGH;SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| mfe.bonus.ly/vertical-navbar/static/js/551.688bcd5a.chunk.js | 104.18.11.197 | 200 OK | 134 kB |
URL GET HTTP/3mfe.bonus.ly/vertical-navbar/static/js/551.688bcd5a.chunk.js IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size134 kB (133877 bytes) Hash544750a2649b58b78afa9b406698e2a8 462f6c5b8661bae1832338e19f5c9f8b298f5574 3ce9c36fe68c451969ca90f896b910fe044990d51e078e3b39aa3ea2cbec1230
GET /vertical-navbar/static/js/551.688bcd5a.chunk.js HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=133927
etag: W/"7674cbddf1cfcce467850a9185f8fb84"
last-modified: Wed, 17 Apr 2024 16:48:12 GMT
x-amz-id-2: 734C+Ns1x5kvSJnCpT71l03tJlL2p3FhGTPioj6WBLldWXodSApYqJD06dqqGAP+aEi1pCLBUxY=
x-amz-request-id: 2E57XTPZJKNSS062
cf-cache-status: HIT
age: 2239
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbc9dc4b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| recognition-production-cdn-aws.bonus.ly/packs/css/application-2e3e5ceb.css | 104.18.11.197 | 200 OK | 9.2 kB |
URL GET HTTP/3recognition-production-cdn-aws.bonus.ly/packs/css/application-2e3e5ceb.css IP104.18.11.197:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeASCII text, with very long lines (9185), with no line terminators Hashb249b697713acd1495665d482a85f569 2f75a4289e7f246f212b041fdf56df20ba92e8c9 f0c98acbfe71f9a284cdf37f7365ddec719a7ce8b3988fafc2e3345c170874c2
GET /packs/css/application-2e3e5ceb.css HTTP/1.1
Host: recognition-production-cdn-aws.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=9232
alt-svc: h3=":443"; ma=86400
etag: W/"222b9e593fcdc258a85eee898f926cc2"
last-modified: Thu, 22 Jun 2023 17:22:26 GMT
vary: Origin, Accept-Encoding
via: 1.1 844de3d616579278fb702fc6b9b5c9a2.cloudfront.net (CloudFront)
x-amz-cf-id: aD8iOCit_aHFl4cYLeaDO8Mqz-jSuP3Hjpq4d9C2x3OSyFnDVLXNRg==
x-amz-cf-pop: ARN1-C1
x-amz-server-side-encryption: AES256
x-amz-version-id: Kl6qTqGT6RA_6mgn6fIJqJ0Wr3oNXHtR
x-cache: Hit from cloudfront
cf-cache-status: HIT
age: 1179
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cc5efb1b50f-OSL
content-encoding: br
|
|
| mfe.bonus.ly/navigation/remoteEntry.js?v=2 | 104.18.11.197 | 200 OK | 8.1 kB |
URL GET HTTP/3mfe.bonus.ly/navigation/remoteEntry.js?v=2 IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeJavaScript source, ASCII text, with very long lines (8350), with no line terminators Hash140593399d2cc5c07809cb9beab1bfe1 93cda7589619578d2edc53a8dcd4224629ce22b9 bcac480085b6f68f16f55d258e693748f04f307173fc6521a79f9d60a82be966
GET /navigation/remoteEntry.js?v=2 HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=8134
etag: W/"58d931b05768eb1b5bca5e9a80751668"
last-modified: Thu, 11 Apr 2024 22:32:35 GMT
x-amz-id-2: xRxVLvcsTpx9qw66nQHWqhHZ7yoy1YkZtH6Y/1ukC5mHCws3La9QT0wWZBOWa/G0CGgaEjFBTNc=
x-amz-request-id: RKCDQ54WAQVR244X
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:41 GMT
cache-control: public, max-age=30
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbb1c3eb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| | 104.18.11.197 | 200 OK | 5.3 kB |
URL User Request GET HTTP/2IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeHTML document, ASCII text, with very long lines (5516), with no line terminators Hash1967b32a93c1878bcd3367495b6a4bca 33bab467b1fbf5db8400186f979d7669bd51740f 48badb9d90a406d406b047268bb52440e748af0f1792c68db32483339ec0c5fb
GET / HTTP/1.1
Host: app.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/html
x-amz-id-2: 4H0IBeGPqgT/micKQt1FibUbgcmm9oXYKa3zNCVQWYsx1PaH7uCz0KFHehaq+1FrrqaPBCcT9Mg=
x-amz-request-id: VM92B171N3M3BTA3
last-modified: Wed, 17 Apr 2024 16:48:13 GMT
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; path=/; expires=Fri, 19-Apr-24 14:20:11 GMT; domain=.bonus.ly; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cb74eea56b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| recognition-production-cdn-aws.bonus.ly/assets/auth-ceea783bfecb6acd7f9486d2af9c6f9c980beeaed5766d3621fee49ce39cbf41.css | 104.18.11.197 | 200 OK | 15 kB |
URL GET HTTP/3recognition-production-cdn-aws.bonus.ly/assets/auth-ceea783bfecb6acd7f9486d2af9c6f9c980beeaed5766d3621fee49ce39cbf41.css IP104.18.11.197:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeASCII text, with very long lines (15443), with no line terminators Hash296ef92bdb5505466c1dddfade812a50 149a0eb3e391b0f35c67632dcf633b0be523f7d8 23928b452ffa424227c46cd52990683486dd13ce5cbb412b9ce8962870f54b33
GET /assets/auth-ceea783bfecb6acd7f9486d2af9c6f9c980beeaed5766d3621fee49ce39cbf41.css HTTP/1.1
Host: recognition-production-cdn-aws.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: text/css
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=15631
alt-svc: h3=":443"; ma=86400
etag: W/"a243433d80fa73cd8474b521209546a0"
expires: Wed, 25 Dec 2024 23:34:21 GMT
last-modified: Tue, 26 Dec 2023 17:34:23 GMT
vary: Origin, Accept-Encoding
via: 1.1 60f2c4b6c07455537be83f75f12576e8.cloudfront.net (CloudFront)
x-amz-cf-id: GHLmHTKEEy0fc-U0u_CzOhRcE6z73JWRq-FLSLbW0IKiNGb5rvMgEQ==
x-amz-cf-pop: ARN1-C1
x-amz-server-side-encryption: AES256
x-amz-version-id: y10UNpXhKwGjf1Mcm1f62_TGnuTztRhj
x-cache: Hit from cloudfront
cf-cache-status: HIT
age: 106211
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cc5efa1b50f-OSL
content-encoding: br
|
|
| browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A5.13.0%2Capi%3Axhr%2Cenv%3Aproduction%2Cservice%3Amonarch%2Cversion%3A1.1.0&dd-api-key=pubd81c2cabb32a289ccded45586130bed5&dd-evp-origin-version=5.13.0&dd-evp-origin=browser&dd-request-id=d1e36b5e-441d-445d-8c71-0c066525844e&batch_time=1713534612320 | 3.233.147.183 | 202 Accepted | 53 B |
URL POST HTTP/2browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A5.13.0%2Capi%3Axhr%2Cenv%3Aproduction%2Cservice%3Amonarch%2Cversion%3A1.1.0&dd-api-key=pubd81c2cabb32a289ccded45586130bed5&dd-evp-origin-version=5.13.0&dd-evp-origin=browser&dd-request-id=d1e36b5e-441d-445d-8c71-0c066525844e&batch_time=1713534612320 IP3.233.147.183:443
CertificateIssuerDigiCert Inc Subject*.browser-intake-datadoghq.com Fingerprint90:98:16:E4:5F:36:C7:67:0F:C6:18:49:63:19:73:FC:82:36:C1:4E ValiditySat, 17 Jun 2023 00:00:00 GMT - Tue, 18 Jun 2024 23:59:59 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hash9240bb6664b09abbee68cd7575ca6d20 63bdb12b5c711d0c7b463db27346added5af0c37 7124997c4d4dee54a7af745df2a350f41a5997dde3d3ac34b08bb8b525cf9451
POST /api/v2/rum?ddsource=browser&ddtags=sdk_version%3A5.13.0%2Capi%3Axhr%2Cenv%3Aproduction%2Cservice%3Amonarch%2Cversion%3A1.1.0&dd-api-key=pubd81c2cabb32a289ccded45586130bed5&dd-evp-origin-version=5.13.0&dd-evp-origin=browser&dd-request-id=d1e36b5e-441d-445d-8c71-0c066525844e&batch_time=1713534612320 HTTP/1.1
Host: browser-intake-datadoghq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 16320
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 202 Accepted
date: Fri, 19 Apr 2024 13:50:12 GMT
content-type: application/json
content-length: 53
dd-request-id: d1e36b5e-441d-445d-8c71-0c066525844e
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| js.hsadspixel.net/fb.js | 104.17.223.152 | 200 OK | 6.3 kB |
IP104.17.223.152:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerLet's Encrypt Subjecthsadspixel.net Fingerprint89:04:B6:FD:E6:3E:5E:C8:E4:39:2D:83:6E:38:CC:9C:BE:A2:08:4D ValidityTue, 16 Apr 2024 02:15:45 GMT - Mon, 15 Jul 2024 02:15:44 GMT
File typeJavaScript source, ASCII text, with very long lines (6486), with no line terminators Hashfacef7d1cfc8bdbf02cfb401e5088c39 3ecc75b16660a35ee985ec70ba963b1670e92c07 38fba8eb92db43287027468a8fdabaa43a1269fe0ce303a7d911e10e60886875
GET /fb.js HTTP/1.1
Host: js.hsadspixel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Wed, 17 Apr 2024 20:10:21 UTC
etag: W/"af6b1be17376533273533217c0a71f6a"
x-amz-server-side-encryption: AES256
x-amz-version-id: yrGjwNdKXYEuiEn.zEhaUY64xmcE_TpR
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f01dafb3bec9893b47152910d47900a4.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: cA2fzj5KD2vAdoI3KkZF9SWRDq5UXdqdrSldrnYJK4Qu6OdjTpi16g==
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://send.hsbrowserreports.com/csp/report?resource=adsscriptloaderstatic/static-1.550/bundles/pixels-release.js&cfRay=875f1d9f1b9c5699-ARN
cache-control: max-age=600
x-hs-target-asset: adsscriptloaderstatic/static-1.550/bundles/pixels-release.js
x-content-type-options: nosniff
x-hs-cache-status: HIT
x-envoy-upstream-service-time: 3
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: 0d13981b-589a-4f41-adb6-4099f8dd72a4
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-68b7f7fbff-72bsp
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: 0d13981b-589a-4f41-adb6-4099f8dd72a4
cache-tag: staticjsapp-AdsScriptLoaderCloudflare-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 312
server: cloudflare
cf-ray: 876d5cc96a11568b-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/api2/info_2x.png | 142.250.74.99 | 200 OK | 665 B |
URL GET HTTP/3www.gstatic.com/recaptcha/api2/info_2x.png IP142.250.74.99:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typePNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced Hash07bf314aab04047b9e9a959ee6f63da3 17bef6602672e2fd9956381e01356245144003e5 55eaf62cb05da20088dc12b39d7d254d046cb1fd61ddf3ae641f1439efd0a5ee
GET /recaptcha/api2/info_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 665
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:20:08 GMT
expires: Tue, 23 Apr 2024 07:20:08 GMT
cache-control: public, max-age=604800
age: 282608
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| app.bonus.ly/static/css/440.418f0169.chunk.css | 104.18.11.197 | 200 OK | 6.0 kB |
URL GET HTTP/3app.bonus.ly/static/css/440.418f0169.chunk.css IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeASCII text, with very long lines (6043), with no line terminators Hash19874152b41248daef4559842c7e8da6 a72c3a15b50f4d0c9b3b2a2e3941b81970fc03b2 36b3a0fec4f2a1cf1cab19363a450611b065f1be2d5a96aedea7dde9d5b33542
GET /static/css/440.418f0169.chunk.css HTTP/1.1
Host: app.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.bonus.ly/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=6095
etag: W/"8f19a44fee86cee3a08b4309f80e7d01"
last-modified: Wed, 17 Apr 2024 16:48:13 GMT
x-amz-id-2: FKSzLk+dexc0MMoeQEhxv3jhgV2JIgn6piMrnxUjySqgO1J+CfS5Pq0ZqzY6XO55C3aFPguQJmg=
x-amz-request-id: 821AWMG5GYQYZRCA
cf-cache-status: HIT
age: 2240
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cba6b91b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css2?family=Inter:wght@400..700&display=swap | 142.250.74.106 | 200 OK | 2.4 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Inter:wght@400..700&display=swap IP142.250.74.106:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeASCII text, with very long lines (2505), with no line terminators Hash41376c3cfbbf752648b5dcd689bdb062 f91fe8dff6d3ac80167795f0a6c14575add479c0 8e89f2d92fce8e9cf3d726cde63840d5ad197b6be67740e730817703fb2cb0f1
GET /css2?family=Inter:wght@400..700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 19 Apr 2024 13:50:11 GMT
date: Fri, 19 Apr 2024 13:50:11 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| recognition-production-cdn-aws.bonus.ly/packs/js/runtime-f3c8b02644462af8959e.js | 104.18.11.197 | 200 OK | 2.5 kB |
URL GET HTTP/3recognition-production-cdn-aws.bonus.ly/packs/js/runtime-f3c8b02644462af8959e.js IP104.18.11.197:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeJavaScript source, ASCII text, with very long lines (2549), with no line terminators Hashe9c0e08d5bf42e6d2ba6c064cd8db911 1879bdd66527c217bb6cbd0cb72eff497c35ac56 9d5b675d9450549593740a3d3f52ae9459e46e58c5976bf93f52d6ad77d51ae2
GET /packs/js/runtime-f3c8b02644462af8959e.js HTTP/1.1
Host: recognition-production-cdn-aws.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=2580
alt-svc: h3=":443"; ma=86400
etag: W/"85d86def779080be3a15dd5a441e203b"
last-modified: Thu, 22 Jun 2023 17:22:35 GMT
vary: Origin, Accept-Encoding
via: 1.1 b475a5f7d95ff68ca0dc588e3c9a3230.cloudfront.net (CloudFront)
x-amz-cf-id: GWBTgW9yvDXhybFtVlNLQfaTP6m3ot1RfVLxCQQ7j4wgN0ocuzborA==
x-amz-cf-pop: ARN1-C1
x-amz-server-side-encryption: AES256
x-amz-version-id: Z98JZECq6lU2p6SYPCY6dD.60_N.IbN4
x-cache: Hit from cloudfront
cf-cache-status: HIT
age: 1179
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cc5ffb6b50f-OSL
content-encoding: br
|
|
| recognition-production-cdn-aws.bonus.ly/packs/js/users-8cfe9e5be42693d3ff55.js | 104.18.11.197 | 200 OK | 635 B |
URL GET HTTP/3recognition-production-cdn-aws.bonus.ly/packs/js/users-8cfe9e5be42693d3ff55.js IP104.18.11.197:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeJavaScript source, ASCII text, with very long lines (653), with no line terminators Hashbbf2fbfbe6db20322b47a1dc20dca589 4cc0bf25e8e3660ab4cc74639ff944ee720c4128 f9284372114a5ab38e9a4d3202798da1a79d2b5e88eebf6656dc80d6c6de3839
GET /packs/js/users-8cfe9e5be42693d3ff55.js HTTP/1.1
Host: recognition-production-cdn-aws.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=690
alt-svc: h3=":443"; ma=86400
etag: W/"8b03a8a69621ac8c12f3b4d6159dd163"
last-modified: Thu, 22 Jun 2023 17:22:37 GMT
vary: Origin, Accept-Encoding
via: 1.1 60f2c4b6c07455537be83f75f12576e8.cloudfront.net (CloudFront)
x-amz-cf-id: 6AB1kBhGpUL4AwLKXXdk182uMh8AqcULhyK6BwtHWlX0ThLsWN1TVg==
x-amz-cf-pop: ARN1-C1
x-amz-server-side-encryption: AES256
x-amz-version-id: ubyqqCtV.y9LoU7VsXGcbFZFVHkIbfaq
x-cache: Hit from cloudfront
cf-cache-status: HIT
age: 1179
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cc60fceb50f-OSL
content-encoding: br
|
|
| app.bonus.ly/static/js/181.f2b241f5.chunk.js | 104.18.11.197 | 200 OK | 32 kB |
URL GET HTTP/3app.bonus.ly/static/js/181.f2b241f5.chunk.js IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeJavaScript source, ASCII text, with very long lines (31662), with no line terminators Hash91bedad8683e09c70f0c54f321b3de94 bc1b2fc5f7aecfaf2a9eff58c1879fbacf9b5fad e93ed8641f51adc8acf9b1194c7dfeb9ca10275ed75cb08ea853dec3fcba7256
GET /static/js/181.f2b241f5.chunk.js HTTP/1.1
Host: app.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.bonus.ly/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=31717
etag: W/"5992a69186654684fd814892b7e8fa37"
last-modified: Wed, 17 Apr 2024 16:48:14 GMT
x-amz-id-2: gouvAtrQqSQ3YNOW3eFySDcXH404hxJfZzuDwrRAFB8VaWPsQRZY2lVtDk3bqj63ZWWU2xA2xGg=
x-amz-request-id: 8213FEXKHCN8V3DZ
cf-cache-status: HIT
age: 2240
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cba1b44b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| mfe.bonus.ly/vertical-navbar/static/js/338.dc031733.chunk.js | 104.18.11.197 | 200 OK | 13 kB |
URL GET HTTP/3mfe.bonus.ly/vertical-navbar/static/js/338.dc031733.chunk.js IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeJavaScript source, ASCII text, with very long lines (13275), with no line terminators Hash1d778769521d545ee07ee2ad10f2bea4 c1835e622e693a42399f5f34d6e73f47f02f2cce 67d6a583f5f78925673e4e9b8d0c8443ee0fc2f6bcd08e2cbb18fee6fc97a746
GET /vertical-navbar/static/js/338.dc031733.chunk.js HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=13325
etag: W/"c96910e31736d186083e180e47e07466"
last-modified: Wed, 17 Apr 2024 16:48:12 GMT
x-amz-id-2: zvwXesJ8Gxpy3/1xmPuPDfZmkUXFQa+qCpttrLPiQlQP+qTLmiley4UVHlO/caGTnGYUMMqInXQ=
x-amz-request-id: 9D0GGQVTQ0HQA8DY
cf-cache-status: HIT
age: 2239
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbc9dcab50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| mfe.bonus.ly/translations/locales/en/rewards.json | 104.18.11.197 | 200 OK | 7.1 kB |
URL GET HTTP/3mfe.bonus.ly/translations/locales/en/rewards.json IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeASCII text, with very long lines (8193), with no line terminators Hashc2f3835acfa1892c11c3cc623c0510d0 ac596fcd6d8a3ec489082f2d0ac117fc4228f67f c2cd8c228e3690072c413f91723257be2c177c97c0151e1c0097197870e70845
GET /translations/locales/en/rewards.json HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:12 GMT
content-type: application/json
x-amz-id-2: 1397u/sLaUBNQnF6jnFRq/xxjR8rePqqR1UyBKL1SNDe5Iyiwd26aJa+KkRe8UxSkwGmi0oNYXA=
x-amz-request-id: C6BEA9B1WHCFGBPH
access-control-allow-origin: https://app.bonus.ly
access-control-allow-methods: GET
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Thu, 18 Apr 2024 17:42:24 GMT
etag: W/"103e13db793eb100e925a1d685b42eed"
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:42 GMT
cache-control: public, max-age=30
set-cookie: __cf_bm=lKzXC_0Dgv9tjnOJTYo6hRI2A9gyLj7VOqXb6tgReF8-1713534612-1.0.1.1-7qxdwYsLNYCsADhJUPZjmjcR90_5wPwYPx2CnJdIcXmjyrb9CV8iX7HU88LkTyk.tGSGOzxuTq1yZvHlRp7cgw; path=/; expires=Fri, 19-Apr-24 14:20:12 GMT; domain=.bonus.ly; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbecfe3b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| recognition-production-cdn-aws.bonus.ly/assets/application-47f7a660947558065375643961243529f2cae4f0a7b6492482e87f56877a71ff.js | 104.18.11.197 | 200 OK | 337 kB |
URL GET HTTP/3recognition-production-cdn-aws.bonus.ly/assets/application-47f7a660947558065375643961243529f2cae4f0a7b6492482e87f56877a71ff.js IP104.18.11.197:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size337 kB (336617 bytes) Hash0a1be4bc67782cfd8cfafe954f8fcab9 defddb6f92b7b8b483abc1f691d3c6e7d010ca6e 4900c433a7b8b0032cebf5013dcad73fcd885cb56e106aa6bfe36a376fe03106
GET /assets/application-47f7a660947558065375643961243529f2cae4f0a7b6492482e87f56877a71ff.js HTTP/1.1
Host: recognition-production-cdn-aws.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: application/javascript
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=336626
alt-svc: h3=":443"; ma=86400
etag: W/"6e3b3fdde6ef55447f29abecd68153fe"
expires: Wed, 26 Feb 2025 20:02:39 GMT
last-modified: Tue, 27 Feb 2024 14:02:40 GMT
vary: Origin, Accept-Encoding
via: 1.1 9ee3245d13c492e7e4abb0f2de012802.cloudfront.net (CloudFront)
x-amz-cf-id: 71EbCMCOSrAB9fXRmPSMo_wwoM508nM0woO1KDt5Me6lIl36A1xohg==
x-amz-cf-pop: ARN1-C1
x-amz-server-side-encryption: AES256
x-amz-version-id: XXfrMvPbmgYv5w.7rwJtAlmC_XYrTIH6
x-cache: Hit from cloudfront
cf-cache-status: HIT
age: 106211
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cc5efaeb50f-OSL
content-encoding: br
|
|
| app.bonus.ly/cdn-cgi/challenge-platform/scripts/jsd/main.js | 104.18.11.197 | 302 Found | 7.8 kB |
URL GET HTTP/3app.bonus.ly/cdn-cgi/challenge-platform/scripts/jsd/main.js IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: app.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Fri, 19 Apr 2024 13:50:11 GMT
content-length: 0
cache-control: max-age=300, public
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbadbf9b50f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| mfe.bonus.ly/vertical-navbar/static/js/462.7145f117.chunk.js | 104.18.11.197 | 200 OK | 6.6 kB |
URL GET HTTP/3mfe.bonus.ly/vertical-navbar/static/js/462.7145f117.chunk.js IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeJavaScript source, ASCII text, with very long lines (6774), with no line terminators Hashe04877b8627b96235873d13106f5ec2f b6b9208fabbb234a154657aa62080f2e8adfef3f 43eb0db68fa44852e99d4c1ccacb09682e3cfbae115733a003ca22f7229b2cc3
GET /vertical-navbar/static/js/462.7145f117.chunk.js HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=6697
etag: W/"d055e7e2faa7f77cf1cd28ee094d3922"
last-modified: Wed, 17 Apr 2024 16:48:12 GMT
x-amz-id-2: F7u+tTBXHZWcLZWv8Aha+wPSQdo1guqWPoDbLfAx0GsfddpBhtkx+6hPP947Tnr5UQWbZJFWAfA=
x-amz-request-id: 821D22P5FR2K8531
cf-cache-status: HIT
age: 2239
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbc9dc2b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| recognition-production-cdn-aws.bonus.ly/assets/vendor-196a2a97844c9f71dc83ffd159ef261b17b8f5ed52cd6be4110088abea2903f3.js | 104.18.11.197 | 200 OK | 1.1 MB |
URL GET HTTP/3recognition-production-cdn-aws.bonus.ly/assets/vendor-196a2a97844c9f71dc83ffd159ef261b17b8f5ed52cd6be4110088abea2903f3.js IP104.18.11.197:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
Size1.1 MB (1094454 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/vendor-196a2a97844c9f71dc83ffd159ef261b17b8f5ed52cd6be4110088abea2903f3.js HTTP/1.1
Host: recognition-production-cdn-aws.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: application/javascript
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=1098143
alt-svc: h3=":443"; ma=86400
etag: W/"5bd287872f239c55c773f8755c3b80d0"
expires: Thu, 26 Dec 2024 01:56:56 GMT
last-modified: Tue, 26 Dec 2023 19:56:58 GMT
vary: Origin, Accept-Encoding
via: 1.1 60f2c4b6c07455537be83f75f12576e8.cloudfront.net (CloudFront)
x-amz-cf-id: dIu3LC09gEUyMXNZCRCu2InunKHva6B24wHeuOkcWt_G1HnHVVEbkQ==
x-amz-cf-pop: ARN1-C1
x-amz-server-side-encryption: AES256
x-amz-version-id: Mt2VeqPH0H1DCI7BAKoztCS5z7Z0ukga
x-cache: Hit from cloudfront
cf-cache-status: HIT
age: 1322052
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cc5efacb50f-OSL
content-encoding: br
|
|
| mfe.bonus.ly/vertical-navbar/static/js/15.a5db7b6a.chunk.js | 104.18.11.197 | 200 OK | 77 kB |
URL GET HTTP/3mfe.bonus.ly/vertical-navbar/static/js/15.a5db7b6a.chunk.js IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash814eeb6fa498d9ec446d527341aea6ec af320d31413c2eee791a262f26856488161b6ddb fc48548f866014fead9e318ccf7a73ad409a2791de0535be23d40e7ae76b5230
GET /vertical-navbar/static/js/15.a5db7b6a.chunk.js HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=77210
etag: W/"dcdabf8c9f1e1a2b7b5ddd76cac449b6"
last-modified: Wed, 17 Apr 2024 16:48:12 GMT
x-amz-id-2: r6fLhXCcGFe4RTYLYZlZg0DahEZ8qKuA8ztCv+aiSvp5lU1a+0waqA0glChnv8nTz2GTTbnG++M=
x-amz-request-id: 8219JZYW74CK301F
cf-cache-status: HIT
age: 2239
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbcaddcb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| recognition-production-cdn-aws.bonus.ly/packs/js/application-68426ef476247fdf3da5.js | 104.18.11.197 | 200 OK | 228 B |
URL GET HTTP/3recognition-production-cdn-aws.bonus.ly/packs/js/application-68426ef476247fdf3da5.js IP104.18.11.197:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeJavaScript source, ASCII text, with no line terminators Hash4ac34453fdfd584593fbec38724e9006 9c8d6de2f3ff6d79b7d8518719a8a216da431bc6 cd972fe72ae1869bd4667674f055f3130ede44728fbd87b45cc31be99663e08a
GET /packs/js/application-68426ef476247fdf3da5.js HTTP/1.1
Host: recognition-production-cdn-aws.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=289
alt-svc: h3=":443"; ma=86400
etag: W/"f7a0d46807b912ce99ad52e166ce3ef7"
last-modified: Wed, 24 Jan 2024 18:54:55 GMT
vary: Origin, Accept-Encoding
via: 1.1 b58b188f0b591d63a56e49672312d538.cloudfront.net (CloudFront)
x-amz-cf-id: MpZwM_Fxm9f4d3039hJ48cPpof5ndNZa0ul35Dw2wRVePF7nCWkQUw==
x-amz-cf-pop: ARN1-C1
x-amz-server-side-encryption: AES256
x-amz-version-id: GAQMUeEvyNghV7fxvailbDlSqbEm4ohB
x-cache: Hit from cloudfront
cf-cache-status: HIT
age: 2268
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cc5ffc1b50f-OSL
content-encoding: br
|
|
| mfe.bonus.ly/vertical-navbar/static/js/881.ca0d3e5d.chunk.js | 104.18.11.197 | 200 OK | 87 kB |
URL GET HTTP/3mfe.bonus.ly/vertical-navbar/static/js/881.ca0d3e5d.chunk.js IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashd3b0e578a8a9e63fc0e643b55f27051d bcaca54d052c5afd90ccd78d4ced32c06852d912 6ce99f7e39a03d6e4d3039b89672b7e72029a9c155ff1b3712f46d651e8ca689
GET /vertical-navbar/static/js/881.ca0d3e5d.chunk.js HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=86716
etag: W/"e99278a731561c3506f53c6cb60e4bbc"
last-modified: Wed, 17 Apr 2024 16:48:14 GMT
x-amz-id-2: AgHM/pa7qZLa+DTFKYX74IRWFWS5p5iR183mszdDH8tQl2TJvxAL/IOxyGOE7dVesudPeJZJ/Tg=
x-amz-request-id: 821F0RH63TNHCM31
cf-cache-status: HIT
age: 2239
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbcade0b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| mfe.bonus.ly/translations/locales/en/bookmarks.json | 104.18.11.197 | 200 OK | 2.4 kB |
URL GET HTTP/3mfe.bonus.ly/translations/locales/en/bookmarks.json IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeASCII text, with very long lines (2810), with no line terminators Hashe080b96a2ea9f6372f864bbf27b7ba27 9510141b0a9b51ac89b03ed2b1b5dafdc2e2f278 437b3367b9c8d6580069d05779ae7c63446ec08e7293a0b6c94c32c70becb3f0
GET /translations/locales/en/bookmarks.json HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:12 GMT
content-type: application/json
x-amz-id-2: 3LGtBcfLRKz80nDhjlIFu2aWPGSo6u3pMA/H0kripOTcd0yESMzI9dMavriTBGGuHKXq0f3zyRc=
x-amz-request-id: C6BCCMDD5CSB5A44
access-control-allow-origin: https://app.bonus.ly
access-control-allow-methods: GET
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Thu, 18 Apr 2024 17:42:24 GMT
etag: W/"1ad01e07dbf49106ef22e716092c0a81"
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:42 GMT
cache-control: public, max-age=30
set-cookie: __cf_bm=NxFDh1oY3BKLVXiGczvcs4cViPVvItx.lvOJXJ_VtaM-1713534612-1.0.1.1-EvY6OWZsdNQvV.UHHpkAaPICDr2cDvBnrNWkjtKbM_eNNxa0CMmO_VRLvfu84bsl5Eog0_FUj7uHPYlixsIXYA; path=/; expires=Fri, 19-Apr-24 14:20:12 GMT; domain=.bonus.ly; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbeafc7b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.google.com/recaptcha/api2/payload?p=06AFcWeA7-bcei4Dquc6qshjgEXbthm0Eif0qEofwNcbS2vhTBnLphnBNB_NiFKe0NxAsx08SUqyxs0iNOFSdbn-mH_Tom09igbY9MenNE-iH2ECEJ9GC7BFtzyKBE4PAcEBYHBZc97xqHy7IYcZoysooZhcsbxar2u9U0g5qsBYVe2AkkEN_D0YslJ3FHNLiLQsF4kg8GO-LS&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG | 142.250.74.164 | 200 OK | 48 kB |
URL GET HTTP/3www.google.com/recaptcha/api2/payload?p=06AFcWeA7-bcei4Dquc6qshjgEXbthm0Eif0qEofwNcbS2vhTBnLphnBNB_NiFKe0NxAsx08SUqyxs0iNOFSdbn-mH_Tom09igbY9MenNE-iH2ECEJ9GC7BFtzyKBE4PAcEBYHBZc97xqHy7IYcZoysooZhcsbxar2u9U0g5qsBYVe2AkkEN_D0YslJ3FHNLiLQsF4kg8GO-LS&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 450x450, components 3 Hash8db4c58b27958be3c800e3c9b10b8e64 1dfd80a75e03bc2a25a3734136d5c7cd9d850ed1 b1852fe79a3d4b6e9adb8d52e3d3ff51d180c3ef390cbc2c94dbe1adc59afffa
GET /recaptcha/api2/payload?p=06AFcWeA7-bcei4Dquc6qshjgEXbthm0Eif0qEofwNcbS2vhTBnLphnBNB_NiFKe0NxAsx08SUqyxs0iNOFSdbn-mH_Tom09igbY9MenNE-iH2ECEJ9GC7BFtzyKBE4PAcEBYHBZc97xqHy7IYcZoysooZhcsbxar2u9U0g5qsBYVe2AkkEN_D0YslJ3FHNLiLQsF4kg8GO-LS&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG
Cookie: _GRECAPTCHA=09ALYNOahEOdUfxqh3GtUrgLYcGL1wLK4ikMpwo8XKJChIyjPNQAEDF4Hsd-wfG3CXG_avWzuRyV0odGNfFX1cmGA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: image/jpeg
expires: Fri, 19 Apr 2024 13:50:16 GMT
date: Fri, 19 Apr 2024 13:50:16 GMT
cache-control: private, max-age=30
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| ajax.googleapis.com/ajax/libs/jqueryui/1.12.1/themes/smoothness/jquery-ui.min.css | 142.250.74.106 | 200 OK | 31 kB |
URL GET HTTP/3ajax.googleapis.com/ajax/libs/jqueryui/1.12.1/themes/smoothness/jquery-ui.min.css IP142.250.74.106:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeASCII text, with very long lines (29523) Hash3c2a865c832a1322285c55c6ed99abb2 b456f4c43e3d45f0a85811e2c60b2256dfd2efdb be92933b839bd4ce1b67c440bd9bd832d8a7333d578c7d1061d00edbceb557d3
GET /ajax/libs/jqueryui/1.12.1/themes/smoothness/jquery-ui.min.css HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 7645
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 22:10:52 GMT
expires: Tue, 15 Apr 2025 22:10:52 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 315561
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| grow.clearbitjs.com/api/pixel.js?v=1713534614027 | 216.24.57.252 | 200 OK | 100 B |
URL GET HTTP/2grow.clearbitjs.com/api/pixel.js?v=1713534614027 IP216.24.57.252:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerLet's Encrypt Subjectgrow.clearbitjs.com FingerprintBC:C5:FC:1B:D0:61:CF:C8:B6:19:27:5D:7B:CE:A8:A7:A3:DF:0E:35 ValidityTue, 19 Mar 2024 07:19:16 GMT - Mon, 17 Jun 2024 07:19:15 GMT
File typeASCII text, with no line terminators Hash68234aee269e33a1d420349be29ed3bd 33724eaf48ae22a8bdc532da6ecb2685e4ca61e9 6c4bdad53042e2bd6e5a231bfcd66d19dc33f507edc2b847ff3c58aca74ff138
GET /api/pixel.js?v=1713534614027 HTTP/1.1
Host: grow.clearbitjs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:50:14 GMT
content-type: text/javascript
cf-ray: 876d5ccade4e56a4-OSL
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding
rndr-id: 66d35ddf-db12-4d4b
x-content-type-options: nosniff
x-render-origin-server: Render
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| mfe.bonus.ly/translations/locales/en/feedback.json | 104.18.11.197 | 200 OK | 4.9 kB |
URL GET HTTP/3mfe.bonus.ly/translations/locales/en/feedback.json IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeASCII text, with very long lines (5798), with no line terminators Hash8a9a5f59a0a94b5453a61b7223df8726 0bdbeff7cf4559d9080ab0b2f3366bf1435f707e 434db42a89e110a7759a03aa1659ce79410cc9a37e1f1860b0f6ff98ad613bb8
GET /translations/locales/en/feedback.json HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:12 GMT
content-type: application/json
x-amz-id-2: tFaDiBE3EJbZbik/QH5wNFNBHe3MTge+MJpaDNn98PLv0x7OPpux17lXOJ7t9IciImI1FWQuNfY=
x-amz-request-id: C6B3XGM7Y74RGQDZ
access-control-allow-origin: https://app.bonus.ly
access-control-allow-methods: GET
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Thu, 18 Apr 2024 17:42:24 GMT
etag: W/"d5e753033fcd45f66c53168506c0c575"
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:42 GMT
cache-control: public, max-age=30
set-cookie: __cf_bm=4g37ryEv2JdG83QI1NZBkkekQumubwKYjKhbyK4arRM-1713534612-1.0.1.1-oBkLE9SHhS.a_kzwnvF0rHrdAGFcGXz.LWxeMNy8vJ7uNWIF_lre9FesYP1aBfiNMxryLOnmuPUH8gSi8crA_A; path=/; expires=Fri, 19-Apr-24 14:20:12 GMT; domain=.bonus.ly; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=xD9o7D4Gq6Z4qstshXx7rT99b3yYkKG9X0Q5Wk4BTq0-1713534612-1.0.1.1-LiIbYA3xDZE97pJGrctYaYc76x_IsE4g0LC73a9aPDd3C8tGkLSqSg8VyU0o5evMfDdnSRVsa.NyrTwnKa7OkbAFqHqSDhpptkwWIC2JedMtr5oUtEmn7VU7E9bQZSvorPktzOv_nfpoboYcznHfGg"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; connect-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=xD9o7D4Gq6Z4qstshXx7rT99b3yYkKG9X0Q5Wk4BTq0-1713534612-1.0.1.1-LiIbYA3xDZE97pJGrctYaYc76x_IsE4g0LC73a9aPDd3C8tGkLSqSg8VyU0o5evMfDdnSRVsa.NyrTwnKa7OkbAFqHqSDhpptkwWIC2JedMtr5oUtEmn7VU7E9bQZSvorPktzOv_nfpoboYcznHfGg; report-to cf-csp-endpoint
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbebfceb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-LYH0R10SEC>m=45je44h0v870573331z879280153za200&_p=1713534613669&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1590843329.1713534614&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713534614&sct=1&seg=0&dl=https%3A%2F%2Fbonus.ly%2Fusers%2Fsign_in_start&dt=Sign%20In%20-%20Bonusly&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=1095 | 216.239.34.36 | 204 No Content | 0 B |
URL GET HTTP/2region1.analytics.google.com/g/collect?v=2&tid=G-LYH0R10SEC>m=45je44h0v870573331z879280153za200&_p=1713534613669&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1590843329.1713534614&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713534614&sct=1&seg=0&dl=https%3A%2F%2Fbonus.ly%2Fusers%2Fsign_in_start&dt=Sign%20In%20-%20Bonusly&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=1095 IP216.239.34.36:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /g/collect?v=2&tid=G-LYH0R10SEC>m=45je44h0v870573331z879280153za200&_p=1713534613669&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1590843329.1713534614&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713534614&sct=1&seg=0&dl=https%3A%2F%2Fbonus.ly%2Fusers%2Fsign_in_start&dt=Sign%20In%20-%20Bonusly&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=1095 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-origin: *
date: Fri, 19 Apr 2024 13:50:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.com/js/bg/RWTT3oxVpjnMak3qs5vv7tg5xSkq7YqXMGNs3aBXMhQ.js | 142.250.74.164 | 200 OK | 18 kB |
URL GET HTTP/3www.google.com/js/bg/RWTT3oxVpjnMak3qs5vv7tg5xSkq7YqXMGNs3aBXMhQ.js IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (17614) Hasha0b566c1ba416a3899181051b4e22648 6e24d55d8094a8e96bbcdb2c8b2baec42ad59128 4564d3de8c55a639cc6a4deab39befeed839c5292aed8a9730636cdda0573214
GET /js/bg/RWTT3oxVpjnMak3qs5vv7tg5xSkq7YqXMGNs3aBXMhQ.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6Lem1BgUAAAAAHzWJvTYdYq_xabbmxhZTQ5UH4kG
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 7470
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 05:03:42 GMT
expires: Thu, 17 Apr 2025 05:03:42 GMT
cache-control: public, max-age=31536000
age: 204394
last-modified: Thu, 04 Apr 2024 18:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| app.bonus.ly/cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js | 104.18.11.197 | 200 OK | 7.8 kB |
URL GET HTTP/3app.bonus.ly/cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeJavaScript source, ASCII text, with very long lines (7782), with no line terminators Hashec56bd03721706681f9c02f822c80d1e 6901ac2619288d83544c47fd6a33784c89136b79 631a476a4d4741d3f00f2d862bad7b8f05950edccffc6d1d9c7b9fdbdb5c9bd8
GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js HTTP/1.1
Host: app.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: application/javascript; charset=UTF-8
vary: accept-encoding
cache-control: max-age=14400, public
content-encoding: br
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbb4c85b50f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| mfe.bonus.ly/vertical-navbar/static/js/180.fc9981fe.chunk.js | 104.18.11.197 | 200 OK | 22 kB |
URL GET HTTP/3mfe.bonus.ly/vertical-navbar/static/js/180.fc9981fe.chunk.js IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeJavaScript source, ASCII text, with very long lines (22485), with no line terminators Hash9490dc0103119ed3c4599f6aafd0649e 01e11f4c98d21ce95a45cf01b59d9715358cf635 786ed807de9e608ceefdf7e3d49912f3cbd1ee234eed28bc5df4a68ab354429c
GET /vertical-navbar/static/js/180.fc9981fe.chunk.js HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=22532
etag: W/"921298d5872ecd887f5dcfb519cf3fe6"
last-modified: Wed, 17 Apr 2024 16:48:11 GMT
x-amz-id-2: FKAZQyfOCQbCYckH8H9kyqzuCekOcm3wUYg12flqKkueZbQ6m4SdG0KoyrS2Yu4dgMzTwDeCHKU=
x-amz-request-id: 82110XVHV1YTSBX7
cf-cache-status: HIT
age: 2239
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbc9dd0b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| mfe.bonus.ly/translations/locales/en/vertical_navbar.json | 104.18.11.197 | 200 OK | 3.2 kB |
URL GET HTTP/3mfe.bonus.ly/translations/locales/en/vertical_navbar.json IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeASCII text, with very long lines (3977), with no line terminators Hash350920dd187478ec6bdbc5c244579225 bb7f443151e623811608c98e20a993974ee10a33 e79c2baa8cb0042f5fa7a23225cf54514545ce7684bec12f035d013a86d5d765
GET /translations/locales/en/vertical_navbar.json HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:12 GMT
content-type: application/json
x-amz-id-2: Fcqf5HN0BjaDxquUO73z7+55hkWflqaH957h7SnoCy9CmrYcHkywr03QdbpTEYW9emcG9OdFOI8=
x-amz-request-id: C6B54QC1W4PRMFN2
access-control-allow-origin: https://app.bonus.ly
access-control-allow-methods: GET
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Thu, 18 Apr 2024 17:42:24 GMT
etag: W/"01ac3cdb4d2a3a613a92cbbc6e2caab0"
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:42 GMT
cache-control: public, max-age=30
set-cookie: __cf_bm=UkGCsp3MmUQxZfDRHkWSwD__Bybs1wx1SBJpTXz7K.w-1713534612-1.0.1.1-x4ZoRCc_6Md3N0osbHVZKj9FoyYFEWKbNoBh20D7NycZfBaqktbQcwMjP9J09vhLlUs8YmHbFCNk2vX6F.TMzw; path=/; expires=Fri, 19-Apr-24 14:20:12 GMT; domain=.bonus.ly; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbecfe7b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| recognition-production-cdn-aws.bonus.ly/packs/js/124-25e43b36d0ead4768804.js | 104.18.11.197 | 200 OK | 99 kB |
URL GET HTTP/3recognition-production-cdn-aws.bonus.ly/packs/js/124-25e43b36d0ead4768804.js IP104.18.11.197:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash62933eeb8f08628fefd6a1b63563dbe9 16b3b4b58cf79a6805bf6ce009ff6addbca782dc df56aae28aaa1d966e1bf34dd301238c6444a4672da9e779c75ef508f4727ab5
GET /packs/js/124-25e43b36d0ead4768804.js HTTP/1.1
Host: recognition-production-cdn-aws.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=99266
alt-svc: h3=":443"; ma=86400
etag: W/"a30bdb8a20d23fdede75f7779a45aa53"
last-modified: Thu, 22 Jun 2023 17:22:28 GMT
vary: Origin, Accept-Encoding
via: 1.1 8021f954d329869476f935f2fb14e66e.cloudfront.net (CloudFront)
x-amz-cf-id: ODfkH9G3ThpwXa2PLDHAgBUA_9f2CcUJL2eu9ppk4K8XrbOuhx9q8A==
x-amz-cf-pop: ARN1-C1
x-amz-server-side-encryption: AES256
x-amz-version-id: q4zwcA6DKw8hkJZ4582A7doYZDVwg2UV
x-cache: Hit from cloudfront
cf-cache-status: HIT
age: 2268
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cc5ffbbb50f-OSL
content-encoding: br
|
|
| mfe.bonus.ly/translations/locales/en/recognition.json | 104.18.11.197 | 200 OK | 16 kB |
URL GET HTTP/3mfe.bonus.ly/translations/locales/en/recognition.json IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /translations/locales/en/recognition.json HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:12 GMT
content-type: application/json
x-amz-id-2: qgJBqAJBd/EhCkD+Ln4jQzc08WW14F3W3qUyoSHJcxSh+k193agPaVnkBPYTxtzBiyMbvKkO+q4=
x-amz-request-id: C6B40CC4PHZ7RKP2
access-control-allow-origin: https://app.bonus.ly
access-control-allow-methods: GET
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Thu, 18 Apr 2024 17:42:24 GMT
etag: W/"f6119a79b2833913aee901c90297de21"
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:42 GMT
cache-control: public, max-age=30
set-cookie: __cf_bm=XB.Xbpjz60vXH8rK.DcACWo0CBwVv2W28qnjIrF0dmQ-1713534612-1.0.1.1-QkML4sZcc5I3ccs1RrRu2ytRgmbqN4jpWWILbP3pZl5OBxVqYGGNNZFgykka9i3hMrAHMzNBWC467_mGAVsSYA; path=/; expires=Fri, 19-Apr-24 14:20:12 GMT; domain=.bonus.ly; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbecfe1b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| recognition-production-cdn-aws.bonus.ly/assets/funnel_in-bd4d605ee03324548cc405a6ef7410c4ed0dfba304c4201acdd475f2033a4104.js | 104.18.11.197 | 200 OK | 93 kB |
URL GET HTTP/3recognition-production-cdn-aws.bonus.ly/assets/funnel_in-bd4d605ee03324548cc405a6ef7410c4ed0dfba304c4201acdd475f2033a4104.js IP104.18.11.197:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashba58f73511d358b2929c64838687ed0a 48bd27243b533345ec1278a119102a03911b352a 0205964603d7a7fb880107ea47e0b48ed030e175fc4ea43fb52d92a3e21fb386
GET /assets/funnel_in-bd4d605ee03324548cc405a6ef7410c4ed0dfba304c4201acdd475f2033a4104.js HTTP/1.1
Host: recognition-production-cdn-aws.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: application/javascript
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=93718
alt-svc: h3=":443"; ma=86400
etag: W/"fa12a5f32aac8dead6dee5133f0b9abb"
expires: Fri, 21 Jun 2024 23:20:26 GMT
last-modified: Thu, 22 Jun 2023 17:20:27 GMT
vary: Origin, Accept-Encoding
via: 1.1 1132899b9bc2928e13b30713fd82f9b0.cloudfront.net (CloudFront)
x-amz-cf-id: Xv6ETbYhw8wIt0DbEK5osQVvNFM2qy9yBiqpDvzr3XkvuEOg3gvcfg==
x-amz-cf-pop: ARN1-C1
x-amz-server-side-encryption: AES256
x-amz-version-id: TgwOZKGKs2iNQHdFtCCRvtPYd3wbSqfG
x-cache: Hit from cloudfront
cf-cache-status: HIT
age: 1272952
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cc5efb2b50f-OSL
content-encoding: br
|
|
| js.hsleadflows.net/leadflows.js | 104.18.138.17 | 200 OK | 564 kB |
URL GET HTTP/2js.hsleadflows.net/leadflows.js IP104.18.138.17:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerLet's Encrypt Subjecthsleadflows.net Fingerprint2A:AE:F1:03:2C:4F:72:27:B3:89:5D:9B:C9:B1:AC:12:FE:A9:CA:8E ValidityFri, 05 Apr 2024 00:07:39 GMT - Thu, 04 Jul 2024 00:07:38 GMT
Size564 kB (563723 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /leadflows.js HTTP/1.1
Host: js.hsleadflows.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Wed, 03 Apr 2024 09:27:53 UTC
etag: W/"d252299cef5b9176cf0435e72e0baeeb"
x-amz-server-side-encryption: AES256
x-amz-version-id: FzXUOelq5PzvbDhLOc3Au0ThiCBuXHAc
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 a4f9ca051b97c1ac09e2af244690d376.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: a-s25epoPshycSJGRVwIwoDOpT3Vo6gMkFWOzXeU1RLTWDNdW9Gn3Q==
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://send.hsbrowserreports.com/csp/report?resource=lead-flows-js/static-1.1338/bundle/main/lead-flows-release.js&cfRay=86e844565dac95f6-ARN
cache-control: s-maxage=86400, max-age=0
x-hs-target-asset: lead-flows-js/static-1.1338/bundle/main/lead-flows-release.js
x-content-type-options: nosniff
x-hs-cache-status: MISS
x-envoy-upstream-service-time: 8
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: fa87450d-8426-49dd-ac5e-4b459263a350
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-68b7f7fbff-trtck
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: fa87450d-8426-49dd-ac5e-4b459263a350
cache-tag: staticjsapp-lead-flows-cloudflare-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 31636
server: cloudflare
cf-ray: 876d5cc958e75694-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| tag.clearbitscripts.com/v1/pk_314ecea713d6fc4d1b570380427eb5fa/tags.js | 143.204.55.5 | 403 Forbidden | 82 B |
URL GET HTTP/2tag.clearbitscripts.com/v1/pk_314ecea713d6fc4d1b570380427eb5fa/tags.js IP143.204.55.5:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerAmazon Subjectclearbitscripts.com FingerprintCE:14:DE:34:40:8E:00:D4:A3:F4:06:A4:C2:AC:24:38:32:33:E5:94 ValiditySun, 11 Jun 2023 00:00:00 GMT - Tue, 09 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with no line terminators Hasha5a8a7c1bd5c7f96f134c2097360d930 a4bb7bd4506cdc055afbab69f15235f2f95cb349 abfbc3e2e7d27cb1742b6f9bbbb19d747d659fe3b6660f319e21cfbe617d05b3
GET /v1/pk_314ecea713d6fc4d1b570380427eb5fa/tags.js HTTP/1.1
Host: tag.clearbitscripts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
content-type: application/javascript;charset=utf-8
cache-control: private, max-age=600
vary: Accept-Encoding
content-encoding: gzip
date: Fri, 19 Apr 2024 13:50:14 GMT
x-envoy-response-flags: -
server: Clearbit
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-cache: Error from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ldGQ06vgDKYN2eFdU3lAw5A5v99TUbCgT0odaojmA1SzdC9YLsjDTA==
X-Firefox-Spdy: h2
|
|
| mfe.bonus.ly/datacomponents/remoteEntry.js | 104.18.11.197 | 200 OK | 8.3 kB |
URL GET HTTP/3mfe.bonus.ly/datacomponents/remoteEntry.js IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeJavaScript source, ASCII text, with very long lines (8609), with no line terminators Hashe56e5b297d6e576765a454bcf35fe91e a46368f6b85b6fc3c3c6f5363bf22f668cd1ef16 9ba6f7a55df1be2c848cd831836dbe1a7ca9cf950b96115edf59172c9b03d2b7
GET /datacomponents/remoteEntry.js HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=8375
etag: W/"7fa659f255c31204b01ce7f8bf92e6c9"
last-modified: Thu, 18 Apr 2024 18:53:29 GMT
x-amz-id-2: dG5GKFldABpZoH6bPcfnDyCM03qOaAM63fdvStExzJTi3lUjlgr0l1hxCbCI3g9AJcHBdFBgX6c=
x-amz-request-id: GAJQ2CXJK4Y51TNH
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:41 GMT
cache-control: public, max-age=30
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbb8cb5b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| mfe.bonus.ly/translations/locales/en/navigation.json | 104.18.11.197 | 200 OK | 3.0 kB |
URL GET HTTP/3mfe.bonus.ly/translations/locales/en/navigation.json IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeASCII text, with very long lines (3504), with no line terminators Hash3ec936ead41169a44de4acd7a77f8fb7 b3de0276499174e2575fa6a1cb6780c45eafbdd7 228075fec32b58b593de8c86eac4f9311879ba63bfe3e8e5acb2093e3b975a3a
GET /translations/locales/en/navigation.json HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:12 GMT
content-type: application/json
x-amz-id-2: i412YVddfdCVCuKG8FtND+vCURhdzyXwr4g/DoN+x0BtQjk/hDLgICOJYsWESnvoCGrgBKlI8Jg=
x-amz-request-id: C6B16S9WZZ1GC7C5
access-control-allow-origin: https://app.bonus.ly
access-control-allow-methods: GET
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Thu, 18 Apr 2024 17:42:24 GMT
etag: W/"e422d5d10d6dab110d30ccbb23528d80"
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:42 GMT
cache-control: public, max-age=30
set-cookie: __cf_bm=bZvcKZNIdSj7qptqjF.qyhawuCQdr1COYP5kdSuVRwI-1713534612-1.0.1.1-uWUT8Y83oZisQICh_X8heheYHjD8NiGLJrz4VU5yveSIKJsuqAEZt9ytvRupqGDFReJgTKYGgSNH_NCd1LI88Q; path=/; expires=Fri, 19-Apr-24 14:20:12 GMT; domain=.bonus.ly; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbecfd8b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css2?family=Plus+Jakarta+Sans:wght@300;425;500;600;700;800&display=swap | 142.250.74.106 | 200 OK | 9.7 kB |
URL GET HTTP/3fonts.googleapis.com/css2?family=Plus+Jakarta+Sans:wght@300;425;500;600;700;800&display=swap IP142.250.74.106:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeASCII text, with very long lines (9882), with no line terminators Hashd2584239111938976a55e66b7e6d8a00 92efe0c680da776201be3b427c342bfcd63fce5d 1b5c013947cd8756d47d4e97341547de0aaa81547a11f5c81f87f18abae8d63a
GET /css2?family=Plus+Jakarta+Sans:wght@300;425;500;600;700;800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 19 Apr 2024 13:50:13 GMT
date: Fri, 19 Apr 2024 13:50:13 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.googletagmanager.com/gtm.js?id=GTM-N5K2M3S | 142.250.74.168 | 200 OK | 366 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-N5K2M3S IP142.250.74.168:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
Size366 kB (365650 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /gtm.js?id=GTM-N5K2M3S HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 19 Apr 2024 13:50:13 GMT
expires: Fri, 19 Apr 2024 13:50:13 GMT
cache-control: private, max-age=900
last-modified: Fri, 19 Apr 2024 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 114035
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| recognition-production-cdn-aws.bonus.ly/assets/auth/bubbles-large-ce1be2801397d0d898caaca439b317b8de20aa3669628718943f39ad585f054b.svg | 104.18.11.197 | 200 OK | 995 B |
URL GET HTTP/3recognition-production-cdn-aws.bonus.ly/assets/auth/bubbles-large-ce1be2801397d0d898caaca439b317b8de20aa3669628718943f39ad585f054b.svg IP104.18.11.197:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeSVG Scalable Vector Graphics image Hashe30839be1a20a2610e8ea91b54d10feb b50a917cc63c300797573108057a9ce70f8152ab 3687d73b35be538fa3f5d46c86d02b3319692605bec1611f383b43244f93e925
GET /assets/auth/bubbles-large-ce1be2801397d0d898caaca439b317b8de20aa3669628718943f39ad585f054b.svg HTTP/1.1
Host: recognition-production-cdn-aws.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://recognition-production-cdn-aws.bonus.ly/assets/auth-ceea783bfecb6acd7f9486d2af9c6f9c980beeaed5766d3621fee49ce39cbf41.css
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Jun 2023 17:19:18 GMT
etag: W/"4ef692508e9d83cf274162a8ee6760d5"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31557600
expires: Fri, 21 Jun 2024 23:19:17 GMT
x-amz-version-id: Fg5KYq7JsLpja9fYwHdKyrOEorOcn1va
x-cache: Hit from cloudfront
via: 1.1 b4b5a8fc69875a192be2508de7e5a5e8.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: XIT2R2mpjqJmK3rpX0BzGhJCKgtQOD3KCEeV0FyEhBl5Rs96XHzKBA==
vary: Origin, Accept-Encoding
cf-cache-status: HIT
age: 1272951
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cc7ca4ab50f-OSL
content-encoding: br
|
|
| fonts.googleapis.com/css2?family=Lato:ital,wght@0,400;0,700;1,400&display=swap | 142.250.74.106 | 200 OK | 2.3 kB |
URL GET HTTP/3fonts.googleapis.com/css2?family=Lato:ital,wght@0,400;0,700;1,400&display=swap IP142.250.74.106:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeASCII text, with very long lines (2350), with no line terminators Hashb9468f03130d81cf9fe03353b81c9b30 eddecebcc388892441f24156a105b9f7ec9d8b7d cd010d1147a4d6daae18b4a590e36ca01851ef1749feea22aaf06cb8444d7d2d
GET /css2?family=Lato:ital,wght@0,400;0,700;1,400&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 19 Apr 2024 13:50:14 GMT
date: Fri, 19 Apr 2024 13:50:14 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| mfe.bonus.ly/translations/locales/en/monarch.json | 104.18.11.197 | 200 OK | 1.4 kB |
URL GET HTTP/3mfe.bonus.ly/translations/locales/en/monarch.json IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeASCII text, with very long lines (1623), with no line terminators Hash52b62d2d717c9401063340dae5d0f71d 54636858d647d2696bdca34c7339f3d6082a119d 266986f479faf4ac897415e56e10d49c2238cdea4a915de7a2751c9f8f035fd0
GET /translations/locales/en/monarch.json HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:12 GMT
content-type: application/json
x-amz-id-2: BLiORM3N7bPt3YoDu2QV2VJxEaQSpMsDugK+3ecjs+sgoU0vE8PTCXxfsQPfvSmzAfYMgzvNEwQ=
x-amz-request-id: C6B05E9A66D6DJ5J
access-control-allow-origin: https://app.bonus.ly
access-control-allow-methods: GET
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Thu, 18 Apr 2024 17:42:24 GMT
etag: W/"edabd1ad15f6fcfed9958492b0db68df"
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:42 GMT
cache-control: public, max-age=30
set-cookie: __cf_bm=Q1RBwUjcyWC9vdk9cv3KTD13HjfRYGPzql5iJLBQYcg-1713534612-1.0.1.1-F6EVc_Hz6J1aZ9PKbY1yvE5Czh4YWDv5jpys6VSVO19fnJVD2.2fEeuR9zPAbKPqwcdW.jAbkXECT3FllnPA0w; path=/; expires=Fri, 19-Apr-24 14:20:12 GMT; domain=.bonus.ly; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbecfd5b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 | 142.250.74.67 | 200 OK | 24 kB |
URL GET HTTP/3fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 IP142.250.74.67:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 23580, version 1.0 Hashe1b3b5908c9cf23dfb2b9c52b9a023ab fcd4136085f2a03481d9958cc6793a5ed98e714c 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bonus.ly
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:21:46 GMT
expires: Fri, 18 Apr 2025 17:21:46 GMT
cache-control: public, max-age=31536000
age: 73708
last-modified: Tue, 02 May 2023 15:17:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| bat.bing.com/p/insights/t/17372234 | 204.79.197.237 | 200 OK | 741 B |
URL GET HTTP/2bat.bing.com/p/insights/t/17372234 IP204.79.197.237:443 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerMicrosoft Corporation Subjectwww.bing.com Fingerprint77:7D:3C:1C:6F:BE:03:46:50:D9:71:BC:6C:5F:A0:36:1C:35:1F:02 ValidityThu, 18 Apr 2024 02:05:34 GMT - Thu, 27 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (801), with no line terminators Hash1e28038f36f422aa5f55223b8b788647 a0df14edb8432ec5f9303be243522fc1c7c8001a dad365641292d822f8ef4a7406bb639240f4107b85c47b393f2b562414fa8150
GET /p/insights/t/17372234 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: no-cache, no-store
content-length: 625
content-type: application/x-javascript
content-encoding: gzip
expires: -1
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
x-azure-ref: 20240419T135015Z-r1c9df5b4952ffsrwtvv02y3ts00000000eg00000000auxn
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 0C8FB293E9D34E1D81802AE538B9FC34 Ref B: OSL30EDGE0507 Ref C: 2024-04-19T13:50:15Z
date: Fri, 19 Apr 2024 13:50:14 GMT
X-Firefox-Spdy: h2
|
|
| mfe.bonus.ly/vertical-navbar/static/js/389.83d0500d.chunk.js | 104.18.11.197 | 200 OK | 6.8 kB |
URL GET HTTP/3mfe.bonus.ly/vertical-navbar/static/js/389.83d0500d.chunk.js IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeJavaScript source, ASCII text, with very long lines (6932), with no line terminators Hashfd84d17a9a5c9a9a833f4895ffa8e9e2 32fdc2e8047f923a98409094bd9250051aa71fd4 a0a10696d8d13ffc781e8ee18b5696b2a3537d0e1ab42da341b6f7adaa53c141
GET /vertical-navbar/static/js/389.83d0500d.chunk.js HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=6882
etag: W/"6082e9d741a95179f66bfe6829dd2e4b"
last-modified: Wed, 17 Apr 2024 16:48:12 GMT
x-amz-id-2: UDqVqjr/i9BFhuWIR6CMGjTIAadUFU+QPSzjkrI1/BXFO2OQx9eeFEbGY2PcGDSvfY0WkTQ6Wpw=
x-amz-request-id: 821D8TKZKNMW20G1
cf-cache-status: HIT
age: 2239
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbc9dc5b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| mfe.bonus.ly/vertical-navbar/static/js/133.18b73386.chunk.js | 104.18.11.197 | 200 OK | 541 kB |
URL GET HTTP/3mfe.bonus.ly/vertical-navbar/static/js/133.18b73386.chunk.js IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size541 kB (540670 bytes) Hash25e90fa38c8ac5acd0916f76ad9b366e cce01748ec92000f865f73ba1c32b5a7d370d740 fd40abf3d49f92241fb42ac18685e4e01e8a967734d30bd244dfb51def4b1617
GET /vertical-navbar/static/js/133.18b73386.chunk.js HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=540722
etag: W/"5c148d4d596a7250c442317337a3802e"
last-modified: Wed, 17 Apr 2024 16:48:11 GMT
x-amz-id-2: OgX1XaQtQ/KW2TM7YjhqXzQXF3iLtp1LQSmxhlQR9TZi/I75mA0bxX9rENIi4AMdUCU2HiH+IGk=
x-amz-request-id: 821B0FJX39XE0GQ5
cf-cache-status: HIT
age: 2239
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbcaddab50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| app.bonus.lyle-touch-icon-180x180.png/ | 0.0.0.0 | | 0 B |
URL GET app.bonus.lyle-touch-icon-180x180.png/ IP0.0.0.0:0
Requested byhttps://bonus.ly/users/sign_in_start
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: app.bonus.lyle-touch-icon-180x180.png
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| surveys-static.survicate.com/fonts/fonts.css | 194.242.11.186 | 200 OK | 8.6 kB |
URL GET HTTP/2surveys-static.survicate.com/fonts/fonts.css IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
CertificateIssuerSectigo Limited Subject*.survicate.com FingerprintCD:E8:76:3B:3F:D9:2D:8D:E9:6D:72:DB:39:4E:E7:6B:0A:3F:49:6A ValidityMon, 18 Sep 2023 00:00:00 GMT - Sat, 31 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (8648), with no line terminators Hashc010d2df3fedabc7f87b52ab6c64fb45 40bb597fd9421b31d3db4c776736e48a3e16ebed 789e8685a564e07274fec164118e89fa040ff2779c6efe3d781b94aeea6f06eb
GET /fonts/fonts.css HTTP/1.1
Host: surveys-static.survicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:50:11 GMT
content-type: text/css
server: BunnyCDN-NO1-830
cdn-pullzone: 1133799
cdn-uid: 039640c0-4b09-428d-a0ae-513ccdd44502
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=604800
etag: W/"c010d2df3fedabc7f87b52ab6c64fb45"
last-modified: Mon, 11 Mar 2024 12:12:11 GMT
x-amz-id-2: LR2rqnqVKgZWAjNp6s3p7LwMX1oyI44z0TF5pTyorJPG7WBcUsMYDbdsec++yuU4wJlqAWfk+yM=
x-amz-request-id: 7DAZPE4NHHRTMSDA
x-amz-version-id: 0MpdULBlih82WDf4ohSkRSpw5864DG4c
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 03/13/2024 08:57:16
cdn-edgestorageid: 830
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: default-src 'self'
cdn-status: 200
cdn-requestid: 8d56252b0d4cc6af58e4dba942e348c7
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mfe.bonus.ly/translations/locales/en/invite_users.json | 104.18.11.197 | 200 OK | 936 B |
URL GET HTTP/3mfe.bonus.ly/translations/locales/en/invite_users.json IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeASCII text, with very long lines (1046), with no line terminators Hash656c9b90ad3498ad4938c7aaf39032e7 fa97017f5a994eb28cbb77685f7df2edc6470988 521c1dd5443a8b2b3bac2216575c220ce49a885b07a1a3ff955b8e7d83071d01
GET /translations/locales/en/invite_users.json HTTP/1.1
Host: mfe.bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.bonus.ly
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:12 GMT
content-type: application/json
x-amz-id-2: dKLo4fuEbYUszmIEeQOmRiKzsO0h+UZbJmb9coBb/veBXPRGqjp/80V8Q2Mjx0Cs8qcI+cZB8QE=
x-amz-request-id: C6BCKPYAE7T2YJP9
access-control-allow-origin: https://app.bonus.ly
access-control-allow-methods: GET
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Thu, 18 Apr 2024 17:42:24 GMT
etag: W/"4741aab6628e0038a594d1b52584c606"
cf-cache-status: HIT
age: 2240
expires: Fri, 19 Apr 2024 13:50:42 GMT
cache-control: public, max-age=30
set-cookie: __cf_bm=odMtvkp16.nmjix20ceMtXG60ISB5jyN8tL3RjK6q1I-1713534612-1.0.1.1-1svtbi.pCl7FRRTNDSPeMKMqV24I8TC6Xy6e.0QUSZSMdwb.3OaiRMx7wzOnXvPa20N_wTOGAfX1mUfCbvvZEg; path=/; expires=Fri, 19-Apr-24 14:20:12 GMT; domain=.bonus.ly; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cbecfd3b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bonus.ly/users/sign_in_start | 104.18.11.197 | 200 OK | 14 kB |
URL User Request GET HTTP/3bonus.ly/users/sign_in_start IP104.18.11.197:443
CertificateIssuerLet's Encrypt Subjectbonus.ly Fingerprint7B:C7:B5:20:22:E3:BB:C4:64:20:A4:9C:EC:49:3D:43:49:7D:53:90 ValidityFri, 01 Mar 2024 19:52:05 GMT - Thu, 30 May 2024 19:52:04 GMT
File typeHTML document, ASCII text, with very long lines (2089) Hash745e15064384ebdabac47b9b8162e174 bd53e344f91385b867863397dbc9b9bf9e47c2f6 c4d5b2482f0dbc3abb05d2d1ebb950c8bd30ba1ebeb9eecdf16713055a9e968b
GET /users/sign_in_start HTTP/1.1
Host: bonus.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S4hR1FhrI9Aq7gfhhbatJsTJV3fN1yTCzAWmxyWDJrI-1713534611-1.0.1.1-ogwQggIAcH6hdltUJ9.sRcqxFwK00eWBp22l9noWeYuPUwzLARFPPPA7yy.P23U1VvQ7NiDDHTnGx6xQqep4dw; cf_clearance=xQj59apWGYEfAAgla4hM0Dy3filEIWbyEW2VXyF7al8-1713534611-1.0.1.1-PJc.q3I1A0FAOXt5GEtztxCvdC4f16fkptYhN_havxSNEpXwWUMdmJww8XV8jVfijHMA9evji3khq6bR98l7kA; _special_sauce_session=cxRZK68NXcXPxmynzVzYsUfmKjBJLHYhYJU5Zf3H5XZSBcne5fInVDbOHhnD5AxPUn1sL7MI1JzO9K8gtP4%2BTIG%2FBX8e5rqcS3oi1R9xHWelT7h%2BYhU2VuKNp6xQoaOxEvvWaqVb5bRzxL1NwVpnM3ODA65fGl44N0w4zeZ%2FRPsebmJh00Lcz3DgLAHFbr2topJZlQVSrl7%2B%2FZGynVS3JR2k2So%3D--%2FnKZQZC8ju1PhhBk--E4Vc%2BmcgyzeSyiG7BcC2mA%3D%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:50:13 GMT
content-type: text/html; charset=utf-8
x-download-options: noopen
x-permitted-cross-domain-policies: none
link: <https://recognition-production-cdn-aws.bonus.ly/assets/lib/emojione.sprites-8638750142717a73b47d5f8ac1e710ec2dc15a7e603faca7b55e885f86c1402a.css>; rel=preload; as=style; nopush,<https://recognition-production-cdn-aws.bonus.ly/assets/auth-ceea783bfecb6acd7f9486d2af9c6f9c980beeaed5766d3621fee49ce39cbf41.css>; rel=preload; as=style; nopush,<//ajax.googleapis.com/ajax/libs/jqueryui/1.12.1/themes/smoothness/jquery-ui.min.css>; rel=preload; as=style; nopush,<//code.jquery.com/jquery-3.6.0.min.js>; rel=preload; as=script; crossorigin=anonymous; integrity=sha256-/xUj+3OJU5yExlq6GSYGSHk7tPXikynS7ogEvDej/m4=; nopush,<//ajax.googleapis.com/ajax/libs/jqueryui/1.12.1/jquery-ui.min.js>; rel=preload; as=script; nopush,<https://recognition-production-cdn-aws.bonus.ly/assets/vendor-196a2a97844c9f71dc83ffd159ef261b17b8f5ed52cd6be4110088abea2903f3.js>; rel=preload; as=script; nopush,<https://recognition-production-cdn-aws.bonus.ly/assets/application-47f7a660947558065375643961243529f2cae4f0a7b6492482e87f56877a71ff.js>; rel=preload; as=script; nopush,<https://recognition-production-cdn-aws.bonus.ly/packs/css/application-2e3e5ceb.css>; rel=preload; as=style; nopush,<//ajax.googleapis.com/ajax/libs/jqueryui/1.12.1/jquery-ui.min.js>; rel=preload; as=script; nopush,<https://recognition-production-cdn-aws.bonus.ly/assets/funnel_in-bd4d605ee03324548cc405a6ef7410c4ed0dfba304c4201acdd475f2033a4104.js>; rel=preload; as=script; nopush
cache-control: max-age=0, private, must-revalidate
content-security-policy: default-src 'self'; font-src 'self' fonts.gstatic.com fonts.googleapis.com js.intercomcdn.com *.jquery.com recognition-production-cdn-aws.bonus.ly *.bootstrapcdn.com script.hotjar.com surveys-static.survicate.com; img-src * data: blob:; object-src 'self' recognition-production-cdn-aws.bonus.ly; script-src 'self' 'unsafe-inline' connect.facebook.net graph.facebook.com googleads.g.doubleclick.net js.hs-analytics.net js.hs-scripts.com js.hsforms.net js.usemessages.com forms.hsforms.com js.hsleadflows.net js.chilipiper.com *.chilipiper.com *.hsadspixel.net ws.zoominfo.com/ recognition-production-cdn-aws.bonus.ly *.bnsly.co *.google.com *.googleadservices.com *.googleapis.com *.googletagmanager.com *.google-analytics.com *.gstatic.com *.hubspot.com *.intercom.io *.intercomcdn.com *.jquery.com *.linkedin.com *.stripe.com *.twimg.com *.twitter.com zapier.com static.ads-twitter.com hotjar.com *.hotjar.com www.instagram.com *.licdn.com *.clearbit.com *.clearbitjs.com *.clearbitscripts.com js.hs-banner.com bat.bing.com ct.capterra.com *.vimeo.com js.chargebee.com *.intellimize.com *.intellimize.co *.intellimizeio.com mfe.bonus.ly data-component-library.bonus.ly data-component-library-staging.bonusly.dev datalayerapi-staging.bonusly.dev datalayerapi.bonusly.dev bonus.ly/api/ums edge.fullstory.com cdn.merge.dev cdn.amplitude.com *.trybento.co static.cloudflareinsights.com survey.survicate.com surveys-static.survicate.com *.visualwebsiteoptimizer.com app.vwo.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.bonus.ly *.google.com js.chilipiper.com *.chilipiper.com js.chargebee.com *.jquery.com zapier.com bonus.ly/api/ums surveys-static.survicate.com *.visualwebsiteoptimizer.com app.vwo.com s3.amazonaws.com; connect-src 'self' https://*.intercom.io wss://*.intercom.io wss://*.bonus.ly/cable wss://*.hotjar.com api.hubspot.com forms.hubspot.com cta-service-cms2.hubspot.com *.hubapi.com analytics.google.com syndication.twitter.com uploads.intercomcdn.com uploads.intercomusercontent.com *.algolianet.com *.algolia.net www.google-analytics.com www.facebook.com *.hotjar.io *.hotjar.com *.doubleclick.net log.intellimize.co *.clearbit.com api.lever.co js.chilipiper.com *.chilipiper.com edge.fullstory.com rs.fullstory.com *.bonus.ly *.hsforms.com *.linkedin.com *.zapier.com *.zapier-staging.com bonus.ly/api/datalayer rum.browser-intake-datadoghq.com logs.browser-intake-datadoghq.com bonus.ly/api/ums api.amplitude.com api.lab.amplitude.com api2.amplitude.com *.trybento.co wss://*.trybento.co respondent.survicate.com *.visualwebsiteoptimizer.com app.vwo.com; frame-ancestors 'self' *.bonus.ly *.bonusly.dev *.screencloud.com *.screen.cloud *.screencloudapps.com *.next.sc http://localhost:* staffspace.oma.org http://10.0.0.14:* *.sharepoint.com *.it1.be dashboard.skilljar.com app.resplendentdata.com *.jancare.com *.valotalive.com *.valota.live http://swr-apps-v:* https://aceandcompany.intranet.digital *.kaufmanrossin.com *.coda.io dev.coda.io:* *.risevision.com; frame-src 'self' fast.wistia.net js.stripe.com share.intercom.io bonus.ly *.bonus.ly *.bonusly.dev *.hubspot.com *.doubleclick.net *.google.com *.twitter.com *.vimeo.com *.hsforms.com *.youtube.com www.instagram.com *.hotjar.com api.intellimize.co js.chilipiper.com *.chilipiper.com my.pima.app bonusly.chargebee.com bonusly-test.chargebee.com js.chargebee.com *.intellimizeio.com intercom-sheets.com cdn.merge.dev *.trybento.co app.vwo.com *.visualwebsiteoptimizer.com; media-src js.intercomcdn.com media.tenor.com *.bonus.ly *.bonusly.dev
set-cookie: _special_sauce_session=hjYsSEWCgHqAW%2BOxqJ8sU9P%2BIO6BrsvMxcX7cWYzxK5U33n%2Bn2XXlVmFp1APV5bDVTOSKSqMqra16oslSvv%2BXXDk03x6%2BOh6%2FHVqe8K4hWFCBYqNw%2BuesEdOpsQkUq5Nm7JYLe5H3Cf5wEpDGpjvz7Re%2BpeH6lz7%2FkvAg%2FUVgiAS58dbB5lwURiG6S5gSCRo4CXiMxBVBEYnF%2F%2BSCzP1kVs2Wuj7mJ9Mb41UYIXFBQzZY1LSrjytLKyigq5bou1uHPeUUSCHhA5QH%2BEJb4wp%2B20T5wi3QkpaQ3s5H%2FzPROswqUsg5RfhxALTetYsQ4QDN2n2iLg4skhjKbihSBThufKJnos%3D--qDtMNm0Z0tp5Jo2z--w8wkdJPEXl3ilHR6Np29qA%3D%3D; path=/; expires=Fri, 17 May 2024 13:50:13 GMT; HttpOnly; SameSite=Lax
x-request-id: ea339233-d47b-4bd7-a0f3-40bc6e2c8cd0
x-runtime: 0.011564
x-envoy-upstream-service-time: 14
cf-cache-status: DYNAMIC
strict-transport-security: max-age=15552000; includeSubDomains; preload
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 876d5cc49e26b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css2?family=Inter:wght@300;425;500;600;700;800&display=swap | 142.250.74.106 | 200 OK | 14 kB |
URL GET HTTP/3fonts.googleapis.com/css2?family=Inter:wght@300;425;500;600;700;800&display=swap IP142.250.74.106:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hash91c3949046a80ab946840a03604ee0e8 46c8eb58926d1840e6b6e14eca27b60e3289f7e2 d5488de984bd6dbc85670c760415e3f796aa8d92e7b11f43ea072fa6da3ee0b6
GET /css2?family=Inter:wght@300;425;500;600;700;800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 19 Apr 2024 13:50:13 GMT
date: Fri, 19 Apr 2024 13:50:13 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| bat.bing.com/p/action/17372234.js | 204.79.197.237 | 200 OK | 1.4 kB |
URL GET HTTP/2bat.bing.com/p/action/17372234.js IP204.79.197.237:443 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerMicrosoft Corporation Subjectwww.bing.com Fingerprint77:7D:3C:1C:6F:BE:03:46:50:D9:71:BC:6C:5F:A0:36:1C:35:1F:02 ValidityThu, 18 Apr 2024 02:05:34 GMT - Thu, 27 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (1449), with no line terminators Hash1b07cf4e7f8d252bf177efb89eba65af cabb6eaf3fc92657fc228ddd817ef214fe21a7d0 9352664f84ca426c2f10fe6e661121f22b718ab04c4a1f7bc434238dae6c2674
GET /p/action/17372234.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: private,max-age=60
content-type: application/javascript; charset=utf-8
content-encoding: br
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: E047E22F7B184354B5C623D340E2ADD5 Ref B: OSL30EDGE0507 Ref C: 2024-04-19T13:50:15Z
date: Fri, 19 Apr 2024 13:50:14 GMT
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 | 142.250.74.67 | 200 OK | 23 kB |
URL GET HTTP/3fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 IP142.250.74.67:443
Requested byhttps://bonus.ly/users/sign_in_start CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 23040, version 1.0 Hashde69cf9e514df447d1b0bb16f49d2457 2ac78601179c3a63ba3f3f3081556b12ddcaf655 c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bonus.ly
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 02:02:47 GMT
expires: Wed, 16 Apr 2025 02:02:47 GMT
cache-control: public, max-age=31536000
age: 301647
last-modified: Tue, 02 May 2023 15:07:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|