spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
200 OK 1.1 kB URL User Request GET HTTP/1.1 spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
IP
Certificate IssuerDigiCert Inc
Subjectspafinder-partner.blackhawknetwork.com
FingerprintFE:A9:BD:AE:72:6F:7D:6B:0D:37:21:69:D2:4E:EA:AE:39:E6:99:40
ValidityWed, 12 Jul 2023 00:00:00 GMT - Sun, 11 Aug 2024 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (387)
Hash ef7cec6a0c67d693824aba245a124a21
261ea6bfde703ea6d2cd3cbaa5581103c0c1b5b8
797aa2774edc2bc319baf27169fddcd17929c5346beebd710f3209cca38835c0
GET /spafinder.com/public/login HTTP/1.1
Host: spafinder-partner.blackhawknetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 12:26:07 GMT
Server: Apache
X-DataDome: protected
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
Set-Cookie: datadome=S9HMgiYD2ijpgKaM9x2IKZaT5gChHQCv7T6Z76NqFjYu2PZ1KyLBHlZYFSdTmUkclB27ij2BvuIME90RkpDyDR22wJuRLFRK7OFdU8Cysjaoujjp4r0onCHgKD6dyntE; Max-Age=31536000; Domain=.blackhawknetwork.com; Path=/; Secure; SameSite=Lax
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
Content-Type: text/html; charset=UTF-8
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Fri, 22 Mar 2024 10:47:09 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Permitted-Cross-Domain-Policies: master-only
X-Frame-Options: DENY, SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
200 OK 5.6 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (30837)
Hash 269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 12:26:07 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 114047
expires: Wed, 30 Apr 2025 12:26:07 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dEDmCODzzYINQF5gGZTMOMMIopZT0ygNS34NH3o252TiQUUj4EfmyeNs9M%2Bi9rl4ppkq6BqasEo%2FnxodLaLmDTX7SWb3Ylunbgy0qlF1eoq1FBIJFS8zqevr%2FXw19Zu8wGJ%2BQwTR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8819ea73fbc956c7-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/quill/1.3.6/quill.snow.min.css
200 OK 3.0 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/quill/1.3.6/quill.snow.min.css
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (22025)
Hash 2dc4da475378586d499e93472d4a62d6
cb3a180a682bea714b436c6f296436b84841cdbd
a9cfef31b3d283bfc97f133029e32fdf0971ee88c6df71577d87ced14248b1cd
GET /ajax/libs/quill/1.3.6/quill.snow.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 12:26:07 GMT
content-type: text/css; charset=utf-8
content-length: 2980
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fae-56b3"
last-modified: Mon, 04 May 2020 16:15:42 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 796929
expires: Wed, 30 Apr 2025 12:26:07 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TNt5%2ByVnpiLdVy%2F9gOFA2bhUg0wWqmCbCNiHcjO3gW%2FUebFn%2Fp9K%2Ff%2BotEvoTxNfWcQZu3vdNP4pzKkLClsI9X84F3lIiaEC89TRfsHCUlnd3EZNFHk5I%2BMRCn5e9DXphbht84uu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8819ea740bd456c7-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
content.blackhawknetwork.com/riskwidget/v1/widget.js
200 OK 69 kB URL GET HTTP/1.1 content.blackhawknetwork.com/riskwidget/v1/widget.js
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerDigiCert Inc
Subjectcontent.blackhawknetwork.com
Fingerprint5C:C0:7B:ED:4D:DC:10:7B:6B:4C:B2:93:9E:88:1F:01:5A:BC:53:90
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65472)
Hash 5401164ccd39fd5367254a85e0091059
3e2dd39c34e770164c10517e687f75ab05a3ee6f
f6b2adfcb0ba3b72660726be9801512ca7e447fcdc945010825a2ca4331d611c
GET /riskwidget/v1/widget.js HTTP/1.1
Host: content.blackhawknetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/
Cookie: datadome=S9HMgiYD2ijpgKaM9x2IKZaT5gChHQCv7T6Z76NqFjYu2PZ1KyLBHlZYFSdTmUkclB27ij2BvuIME90RkpDyDR22wJuRLFRK7OFdU8Cysjaoujjp4r0onCHgKD6dyntE
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Date: Fri, 10 May 2024 01:09:52 GMT
Last-Modified: Thu, 02 May 2024 22:10:31 GMT
ETag: W/"5401164ccd39fd5367254a85e0091059"
x-amz-server-side-encryption: AES256
x-amz-version-id: JdqPl35toFt00Gdy.vm.PExciTm2KLB.
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: kUciDC398dkYj5vsVqLgyxcs8X2NLvehYW8IuLcUP_Z6tW6ScwGP1A==
Age: 40576
consent.trustarc.com/log?domain=blackhawknetwork.com&country=no&state=&behavior=implied&session=50c9642b-51b7-4dc4-9c3a-3b6c971e3f09&userType=NEW&c=afbe
200 OK 43 B URL GET HTTP/2 consent.trustarc.com/log?domain=blackhawknetwork.com&country=no&state=&behavior=implied&session=50c9642b-51b7-4dc4-9c3a-3b6c971e3f09&userType=NEW&c=afbe
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerAmazon
Subject*.trustarc.com
FingerprintA6:0F:35:43:F6:5C:F6:F9:58:6E:4B:6A:7A:A5:8F:5B:13:45:DA:37
ValiditySat, 16 Mar 2024 00:00:00 GMT - Mon, 14 Apr 2025 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /log?domain=blackhawknetwork.com&country=no&state=&behavior=implied&session=50c9642b-51b7-4dc4-9c3a-3b6c971e3f09&userType=NEW&c=afbe HTTP/1.1
Host: consent.trustarc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 43
date: Fri, 10 May 2024 12:26:07 GMT
cache-control: private, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-security-policy: object-src 'none'; frame-ancestors https://*.trustarc.com https://*.prod.internal.trustarc.com https://*.trustarc.eu https://*.prod.internal.trustarc.eu https://*.staging.internal.trustarc.com https://*.trustarc-svc.net https://*.truste-svc.net https://*.qa.truste-svc.net https://*.dev.truste-svc.net http://localhost:* https://*.nymity.com https://*.qanym;; upgrade-insecure-requests; block-all-mixed-content; report-uri https://csp-reporter.tools.trustarc-svc.net/report
cross-origin-embedder-policy: unsafe-none
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: cross-origin
expect-ct: enforce, max-age=60
permissions-policy: geolocation=(), camera=(), speaker=(), microphone=(), vibrate=()
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-cache: Miss from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _Wy3BMaLz3gyC0i5mZb4TkGAvTa2eC3ziMeHAX1Mw-tZqLzKrAwmxA==
vary: Origin
X-Firefox-Spdy: h2
spafinder-partner.blackhawknetwork.com/styles.efe0e57b84855c649280.css
200 OK 24 kB URL GET HTTP/1.1 spafinder-partner.blackhawknetwork.com/styles.efe0e57b84855c649280.css
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerDigiCert Inc
Subjectspafinder-partner.blackhawknetwork.com
FingerprintFE:A9:BD:AE:72:6F:7D:6B:0D:37:21:69:D2:4E:EA:AE:39:E6:99:40
ValidityWed, 12 Jul 2023 00:00:00 GMT - Sun, 11 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 3c9e5e7e2607cf3ccca3a58910b3056b
2718d9847de15a87d1214d2d268ba424671da1e1
aad0476d33b53eb1880aa114043f2604d240e84dd98671072c04d8742e8f52cb
GET /styles.efe0e57b84855c649280.css HTTP/1.1
Host: spafinder-partner.blackhawknetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Cookie: datadome=S9HMgiYD2ijpgKaM9x2IKZaT5gChHQCv7T6Z76NqFjYu2PZ1KyLBHlZYFSdTmUkclB27ij2BvuIME90RkpDyDR22wJuRLFRK7OFdU8Cysjaoujjp4r0onCHgKD6dyntE
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 12:26:07 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
Content-Type: text/css; charset=UTF-8
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Fri, 22 Mar 2024 10:47:09 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Permitted-Cross-Domain-Policies: master-only
X-Frame-Options: DENY, SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
200 OK 77 kB URL GET HTTP/3 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://spafinder-partner.blackhawknetwork.com
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 12:26:07 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 77160
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e5f-12d68"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 156700
expires: Wed, 30 Apr 2025 12:26:07 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=07AOLm6awhHHw%2FH9NHtUWUO7KbcE3Tos%2F6zUmgxaYGWvZaL1Q%2B6jAbL4TDT8YPwWYsWIQSyC%2Bvkq0qbasmC3tb6oBbQATeI9GfDdDc9ez7IR33ZUJoP1MqN7Xu%2FP1K7pEuA%2F7oLK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8819ea764e8fb517-OSL
alt-svc: h3=":443"; ma=86400
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://spafinder-partner.blackhawknetwork.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 May 2024 06:08:19 GMT
expires: Sat, 10 May 2025 06:08:19 GMT
cache-control: public, max-age=31536000
age: 22668
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
spafinder-partner.blackhawknetwork.com/runtime.b0964bd425e673c4654f.js
200 OK 1.6 kB URL GET HTTP/1.1 spafinder-partner.blackhawknetwork.com/runtime.b0964bd425e673c4654f.js
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerDigiCert Inc
Subjectspafinder-partner.blackhawknetwork.com
FingerprintFE:A9:BD:AE:72:6F:7D:6B:0D:37:21:69:D2:4E:EA:AE:39:E6:99:40
ValidityWed, 12 Jul 2023 00:00:00 GMT - Sun, 11 Aug 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (2990), with no line terminators
Hash 20a718193ca0febdb73ab385534cfebc
8331190d3a7571938ed3ca29b0f2595568fb6cf8
352dbe493c4f16fa292da217f1bf836805dd56c8b26df5ccfdf5fe48bf803278
GET /runtime.b0964bd425e673c4654f.js HTTP/1.1
Host: spafinder-partner.blackhawknetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Cookie: datadome=S9HMgiYD2ijpgKaM9x2IKZaT5gChHQCv7T6Z76NqFjYu2PZ1KyLBHlZYFSdTmUkclB27ij2BvuIME90RkpDyDR22wJuRLFRK7OFdU8Cysjaoujjp4r0onCHgKD6dyntE
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 12:26:07 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
Content-Type: application/javascript; charset=UTF-8
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Fri, 22 Mar 2024 10:47:09 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Permitted-Cross-Domain-Policies: master-only
X-Frame-Options: DENY, SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
spafinder-partner.blackhawknetwork.com/polyfills.907ece6ca91b85213c89.js
200 OK 23 kB URL GET HTTP/1.1 spafinder-partner.blackhawknetwork.com/polyfills.907ece6ca91b85213c89.js
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerDigiCert Inc
Subjectspafinder-partner.blackhawknetwork.com
FingerprintFE:A9:BD:AE:72:6F:7D:6B:0D:37:21:69:D2:4E:EA:AE:39:E6:99:40
ValidityWed, 12 Jul 2023 00:00:00 GMT - Sun, 11 Aug 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (14861)
Hash 067a0379dda486e54e0b40aaf065b2a5
c14d164dfdbe0ea4240da4d47442b67fc71cfe8a
53d9584fee53f64956bb61eee902219e88a20a135d8e4eb16d5d2d6e8ac94aa3
GET /polyfills.907ece6ca91b85213c89.js HTTP/1.1
Host: spafinder-partner.blackhawknetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Cookie: datadome=S9HMgiYD2ijpgKaM9x2IKZaT5gChHQCv7T6Z76NqFjYu2PZ1KyLBHlZYFSdTmUkclB27ij2BvuIME90RkpDyDR22wJuRLFRK7OFdU8Cysjaoujjp4r0onCHgKD6dyntE
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 12:26:07 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
Content-Type: application/javascript; charset=UTF-8
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Fri, 22 Mar 2024 10:47:09 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Permitted-Cross-Domain-Policies: master-only
X-Frame-Options: DENY, SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
spafinder-partner.blackhawknetwork.com/main.853c8fa40487a7c6d584.js
200 OK 32 kB URL GET HTTP/1.1 spafinder-partner.blackhawknetwork.com/main.853c8fa40487a7c6d584.js
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerDigiCert Inc
Subjectspafinder-partner.blackhawknetwork.com
FingerprintFE:A9:BD:AE:72:6F:7D:6B:0D:37:21:69:D2:4E:EA:AE:39:E6:99:40
ValidityWed, 12 Jul 2023 00:00:00 GMT - Sun, 11 Aug 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash f005ecf0d0ea4db5d43321abe42947f7
afc4e01b10220def273b2f4eb670f65a0bfa4580
8b8fb62663bd5565c93254d7e75c3a8c5f4a73b54809a754e043165d7de9e2b4
GET /main.853c8fa40487a7c6d584.js HTTP/1.1
Host: spafinder-partner.blackhawknetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Cookie: datadome=S9HMgiYD2ijpgKaM9x2IKZaT5gChHQCv7T6Z76NqFjYu2PZ1KyLBHlZYFSdTmUkclB27ij2BvuIME90RkpDyDR22wJuRLFRK7OFdU8Cysjaoujjp4r0onCHgKD6dyntE
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 12:26:07 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
Content-Type: application/javascript; charset=UTF-8
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Fri, 22 Mar 2024 10:47:09 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Permitted-Cross-Domain-Policies: master-only
X-Frame-Options: DENY, SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
spafinder-partner.blackhawknetwork.com/scripts.454f46972c81057c220c.js
200 OK 73 kB URL GET HTTP/1.1 spafinder-partner.blackhawknetwork.com/scripts.454f46972c81057c220c.js
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerDigiCert Inc
Subjectspafinder-partner.blackhawknetwork.com
FingerprintFE:A9:BD:AE:72:6F:7D:6B:0D:37:21:69:D2:4E:EA:AE:39:E6:99:40
ValidityWed, 12 Jul 2023 00:00:00 GMT - Sun, 11 Aug 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 30669ef9316f6399b33681aa76e4acd2
9238e6c396587fb88cb606c3bfb1ac0e5dc452aa
558901a6a1943052f5869dc4b2de30f8f3d53481cf06c099e41f9d8107c86d6a
GET /scripts.454f46972c81057c220c.js HTTP/1.1
Host: spafinder-partner.blackhawknetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Cookie: datadome=S9HMgiYD2ijpgKaM9x2IKZaT5gChHQCv7T6Z76NqFjYu2PZ1KyLBHlZYFSdTmUkclB27ij2BvuIME90RkpDyDR22wJuRLFRK7OFdU8Cysjaoujjp4r0onCHgKD6dyntE
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 12:26:07 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
Content-Type: application/javascript; charset=UTF-8
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Fri, 22 Mar 2024 10:47:09 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Permitted-Cross-Domain-Policies: master-only
X-Frame-Options: DENY, SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
fonts.googleapis.com/css?family=Roboto:300italic,400italic,600italic,400,700,300
200 OK 1.4 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Roboto:300italic,400italic,600italic,400,700,300
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File type gzip compressed data, max compression
Hash 96edbe11936a3c307fd55bdb933b7f59
0c7ae2e641c7109ece295503dd7befa5e5cfd4e5
604f2a3f85126732bffe13f9e55849cbcd6fa3b4cb89ee7504b55025718ad692
GET /css?family=Roboto:300italic,400italic,600italic,400,700,300 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 12:26:07 GMT
date: Fri, 10 May 2024 12:26:07 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
spafinder-partner.blackhawknetwork.com/vendor.cd6a3aff24db2f4bb0fa.js
200 OK 213 kB URL GET HTTP/1.1 spafinder-partner.blackhawknetwork.com/vendor.cd6a3aff24db2f4bb0fa.js
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerDigiCert Inc
Subjectspafinder-partner.blackhawknetwork.com
FingerprintFE:A9:BD:AE:72:6F:7D:6B:0D:37:21:69:D2:4E:EA:AE:39:E6:99:40
ValidityWed, 12 Jul 2023 00:00:00 GMT - Sun, 11 Aug 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (17911)
Size 213 kB (212619 bytes)
Hash b229b901989644face6dfead8f68eb6b
c5d002b28f910ea483abbb1cbfec4d0cf367e104
0235959d23c1f1c10e085e56e7a0ab441153a6be1fe2f7209b696402ec31cb55
GET /vendor.cd6a3aff24db2f4bb0fa.js HTTP/1.1
Host: spafinder-partner.blackhawknetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Cookie: datadome=S9HMgiYD2ijpgKaM9x2IKZaT5gChHQCv7T6Z76NqFjYu2PZ1KyLBHlZYFSdTmUkclB27ij2BvuIME90RkpDyDR22wJuRLFRK7OFdU8Cysjaoujjp4r0onCHgKD6dyntE
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 12:26:07 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
Content-Type: application/javascript; charset=UTF-8
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Fri, 22 Mar 2024 10:47:09 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Permitted-Cross-Domain-Policies: master-only
X-Frame-Options: DENY, SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
spafinder-partner.blackhawknetwork.com/3.37de353e9cf92ed38206.js
200 OK 27 kB URL GET HTTP/1.1 spafinder-partner.blackhawknetwork.com/3.37de353e9cf92ed38206.js
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerDigiCert Inc
Subjectspafinder-partner.blackhawknetwork.com
FingerprintFE:A9:BD:AE:72:6F:7D:6B:0D:37:21:69:D2:4E:EA:AE:39:E6:99:40
ValidityWed, 12 Jul 2023 00:00:00 GMT - Sun, 11 Aug 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 6fea238c2e18ba0e5c2195c03be9745d
51a3af5ca9a14f859bfe7e47e4f2543bca7b0820
7a73da55bd720c6594a335df6a96e55a0a3f40642d4197948457b8efb46d395b
GET /3.37de353e9cf92ed38206.js HTTP/1.1
Host: spafinder-partner.blackhawknetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Cookie: datadome=S9HMgiYD2ijpgKaM9x2IKZaT5gChHQCv7T6Z76NqFjYu2PZ1KyLBHlZYFSdTmUkclB27ij2BvuIME90RkpDyDR22wJuRLFRK7OFdU8Cysjaoujjp4r0onCHgKD6dyntE; TAsessionID=50c9642b-51b7-4dc4-9c3a-3b6c971e3f09|NEW; notice_behavior=implied,eu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 12:26:08 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
Content-Type: application/javascript; charset=UTF-8
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Fri, 22 Mar 2024 10:47:09 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Permitted-Cross-Domain-Policies: master-only
X-Frame-Options: DENY, SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
spafinder-partner.blackhawknetwork.com/common.e936499c20bbf3577676.js
200 OK 2.4 kB URL GET HTTP/1.1 spafinder-partner.blackhawknetwork.com/common.e936499c20bbf3577676.js
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerDigiCert Inc
Subjectspafinder-partner.blackhawknetwork.com
FingerprintFE:A9:BD:AE:72:6F:7D:6B:0D:37:21:69:D2:4E:EA:AE:39:E6:99:40
ValidityWed, 12 Jul 2023 00:00:00 GMT - Sun, 11 Aug 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (9829), with no line terminators
Hash 7a83f3619ec987310aad559e0b44883e
4da3a59448ea2792982bfa586366fcad737569f5
f3025aff74fc5994bcd51b9dadf6df765320fff78e4ac30fb2d098cecbb89577
GET /common.e936499c20bbf3577676.js HTTP/1.1
Host: spafinder-partner.blackhawknetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Cookie: datadome=S9HMgiYD2ijpgKaM9x2IKZaT5gChHQCv7T6Z76NqFjYu2PZ1KyLBHlZYFSdTmUkclB27ij2BvuIME90RkpDyDR22wJuRLFRK7OFdU8Cysjaoujjp4r0onCHgKD6dyntE; TAsessionID=50c9642b-51b7-4dc4-9c3a-3b6c971e3f09|NEW; notice_behavior=implied,eu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 12:26:08 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
Content-Type: application/javascript; charset=UTF-8
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Fri, 22 Mar 2024 10:47:09 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Permitted-Cross-Domain-Policies: master-only
X-Frame-Options: DENY, SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
spafinder-partner.blackhawknetwork.com/1.c8ec2ac5b7edca1f4702.js
200 OK 3.9 kB URL GET HTTP/1.1 spafinder-partner.blackhawknetwork.com/1.c8ec2ac5b7edca1f4702.js
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerDigiCert Inc
Subjectspafinder-partner.blackhawknetwork.com
FingerprintFE:A9:BD:AE:72:6F:7D:6B:0D:37:21:69:D2:4E:EA:AE:39:E6:99:40
ValidityWed, 12 Jul 2023 00:00:00 GMT - Sun, 11 Aug 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (15226), with no line terminators
Hash d6fd451b1dcf77f7f5a1bb56cfabf71f
f80afb7ea39257d12d9c10856b4ad05c0f5a3dc4
767a7ceb8b466da826035fcb1911c1f5538752bb833a03a1b1d1a883d56a07c3
GET /1.c8ec2ac5b7edca1f4702.js HTTP/1.1
Host: spafinder-partner.blackhawknetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Cookie: datadome=S9HMgiYD2ijpgKaM9x2IKZaT5gChHQCv7T6Z76NqFjYu2PZ1KyLBHlZYFSdTmUkclB27ij2BvuIME90RkpDyDR22wJuRLFRK7OFdU8Cysjaoujjp4r0onCHgKD6dyntE; TAsessionID=50c9642b-51b7-4dc4-9c3a-3b6c971e3f09|NEW; notice_behavior=implied,eu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 12:26:08 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
Content-Type: application/javascript; charset=UTF-8
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Fri, 22 Mar 2024 10:47:09 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Permitted-Cross-Domain-Policies: master-only
X-Frame-Options: DENY, SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
spafinder-partner.blackhawknetwork.com/4.de8573c1e142fe8905a0.js
200 OK 24 kB URL GET HTTP/1.1 spafinder-partner.blackhawknetwork.com/4.de8573c1e142fe8905a0.js
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerDigiCert Inc
Subjectspafinder-partner.blackhawknetwork.com
FingerprintFE:A9:BD:AE:72:6F:7D:6B:0D:37:21:69:D2:4E:EA:AE:39:E6:99:40
ValidityWed, 12 Jul 2023 00:00:00 GMT - Sun, 11 Aug 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (36757)
Hash 08997017d12a34298ceb2d6d7512609e
b088ff029bef0d464ac9970a7ceb2d5d10546189
6ca89c5752262505c6f609a88d422532f7e3e2b661ede81ce09b3f5795022386
GET /4.de8573c1e142fe8905a0.js HTTP/1.1
Host: spafinder-partner.blackhawknetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Cookie: datadome=S9HMgiYD2ijpgKaM9x2IKZaT5gChHQCv7T6Z76NqFjYu2PZ1KyLBHlZYFSdTmUkclB27ij2BvuIME90RkpDyDR22wJuRLFRK7OFdU8Cysjaoujjp4r0onCHgKD6dyntE; TAsessionID=50c9642b-51b7-4dc4-9c3a-3b6c971e3f09|NEW; notice_behavior=implied,eu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 12:26:08 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
Content-Type: application/javascript; charset=UTF-8
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Fri, 22 Mar 2024 10:47:09 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Permitted-Cross-Domain-Policies: master-only
X-Frame-Options: DENY, SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
spafinder-partner.blackhawknetwork.com/12.d8db9bd9ac368440a904.js
200 OK 28 kB URL GET HTTP/1.1 spafinder-partner.blackhawknetwork.com/12.d8db9bd9ac368440a904.js
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerDigiCert Inc
Subjectspafinder-partner.blackhawknetwork.com
FingerprintFE:A9:BD:AE:72:6F:7D:6B:0D:37:21:69:D2:4E:EA:AE:39:E6:99:40
ValidityWed, 12 Jul 2023 00:00:00 GMT - Sun, 11 Aug 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 115f9e0323938fb107dc4f6806519ef3
eaf25c91129c039f870a3f1f446dba95300a9143
ec8a997718315fe106460bf01891d7b1a3d092de2e672f33bb97ceba3925b823
GET /12.d8db9bd9ac368440a904.js HTTP/1.1
Host: spafinder-partner.blackhawknetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Cookie: datadome=S9HMgiYD2ijpgKaM9x2IKZaT5gChHQCv7T6Z76NqFjYu2PZ1KyLBHlZYFSdTmUkclB27ij2BvuIME90RkpDyDR22wJuRLFRK7OFdU8Cysjaoujjp4r0onCHgKD6dyntE; TAsessionID=50c9642b-51b7-4dc4-9c3a-3b6c971e3f09|NEW; notice_behavior=implied,eu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 12:26:08 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
Content-Type: application/javascript; charset=UTF-8
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Fri, 22 Mar 2024 10:47:09 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Permitted-Cross-Domain-Policies: master-only
X-Frame-Options: DENY, SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
spafinder-partner.blackhawknetwork.com/api/amp2MerchantApi/v1/public/account/id/?host=spafinder.com
200 OK 50 B URL GET HTTP/1.1 spafinder-partner.blackhawknetwork.com/api/amp2MerchantApi/v1/public/account/id/?host=spafinder.com
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerDigiCert Inc
Subjectspafinder-partner.blackhawknetwork.com
FingerprintFE:A9:BD:AE:72:6F:7D:6B:0D:37:21:69:D2:4E:EA:AE:39:E6:99:40
ValidityWed, 12 Jul 2023 00:00:00 GMT - Sun, 11 Aug 2024 23:59:59 GMT
Hash cb0d19b7e5e051881839d1b5834dc893
59b19aae9faddb078f2daa8ef1b8a3a280b5a2a0
a5da98ff6de3f65882cb36d241e743a41b2abcc37af4bf43287341ecb579432a
GET /api/amp2MerchantApi/v1/public/account/id/?host=spafinder.com HTTP/1.1
Host: spafinder-partner.blackhawknetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Cookie: datadome=S9HMgiYD2ijpgKaM9x2IKZaT5gChHQCv7T6Z76NqFjYu2PZ1KyLBHlZYFSdTmUkclB27ij2BvuIME90RkpDyDR22wJuRLFRK7OFdU8Cysjaoujjp4r0onCHgKD6dyntE; TAsessionID=50c9642b-51b7-4dc4-9c3a-3b6c971e3f09|NEW; notice_behavior=implied,eu
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 12:26:09 GMT
Server: Apache
X-DataDome: protected
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
Set-Cookie: datadome=dRbzUsb3sJfVm0mTYKkqOpfxVOXTlDqg9qFNoYRLJWzPdfQ2f1c9IbbZPO0ZiD23gI25UQnd3ur7gohRmvamhsr2CMMo0F_Pd5g9qB7XfSKYr2szShUJMKJiQ6PD7QTi; Max-Age=31536000; Domain=.blackhawknetwork.com; Path=/; Secure; SameSite=Lax
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
Content-Type: application/json;charset=UTF-8
access-control-allow-origin: https://spafinder-partner.blackhawknetwork.com
Vary: Origin,Accept-Encoding
access-control-allow-credentials: true
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
Content-Encoding: gzip
X-Permitted-Cross-Domain-Policies: master-only
X-Frame-Options: DENY, SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
spafinder-partner.blackhawknetwork.com/api/amp2MerchantApi/v1/featureflag/IS_SITE_ACTIVE
200 OK 81 B URL GET HTTP/1.1 spafinder-partner.blackhawknetwork.com/api/amp2MerchantApi/v1/featureflag/IS_SITE_ACTIVE
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerDigiCert Inc
Subjectspafinder-partner.blackhawknetwork.com
FingerprintFE:A9:BD:AE:72:6F:7D:6B:0D:37:21:69:D2:4E:EA:AE:39:E6:99:40
ValidityWed, 12 Jul 2023 00:00:00 GMT - Sun, 11 Aug 2024 23:59:59 GMT
Hash 162e465ea01742f7e7de9b229201c3d4
b93fb1ad219e0d09dafe133eb72535679b3810a8
e1fe27d67682a0c25345fe8943df4bdd142b80ee0a7f3cb09b73216e58c6cfd2
GET /api/amp2MerchantApi/v1/featureflag/IS_SITE_ACTIVE HTTP/1.1
Host: spafinder-partner.blackhawknetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Cookie: datadome=S9HMgiYD2ijpgKaM9x2IKZaT5gChHQCv7T6Z76NqFjYu2PZ1KyLBHlZYFSdTmUkclB27ij2BvuIME90RkpDyDR22wJuRLFRK7OFdU8Cysjaoujjp4r0onCHgKD6dyntE; TAsessionID=50c9642b-51b7-4dc4-9c3a-3b6c971e3f09|NEW; notice_behavior=implied,eu
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 12:26:09 GMT
Server: Apache
X-DataDome: protected
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
Set-Cookie: datadome=R~Dr2sgCkpPc1~1lTxsMw4wQ_l~og9_D~cAu04fD9Dubu5Shpy6skubJC57SDW2MgeIADVW7gvGlD3y_dZniusQy6_dyaY2gr4mXvc~RHxlhsWVQiR~HAwpx3wG9c_6y; Max-Age=31536000; Domain=.blackhawknetwork.com; Path=/; Secure; SameSite=Lax
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
Content-Type: application/json;charset=UTF-8
access-control-allow-origin: https://spafinder-partner.blackhawknetwork.com
Vary: Origin,Accept-Encoding
access-control-allow-credentials: true
Content-Encoding: gzip
X-Permitted-Cross-Domain-Policies: master-only
X-Frame-Options: DENY, SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
notification.blackhawknetwork.com/riskService/v1/riskWidget/getRiskProviders
200 0 B URL OPTIONS HTTP/1.1 notification.blackhawknetwork.com/riskService/v1/riskWidget/getRiskProviders
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerDigiCert Inc
Subjectnotification.blackhawknetwork.com
Fingerprint10:71:86:0C:C0:6A:6E:E3:BB:64:6D:37:A2:28:BE:7A:11:69:90:29
ValidityWed, 12 Jul 2023 00:00:00 GMT - Sun, 11 Aug 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /riskService/v1/riskWidget/getRiskProviders HTTP/1.1
Host: notification.blackhawknetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,requestid,tenantid,unique-id
Referer: https://spafinder-partner.blackhawknetwork.com/
Origin: https://spafinder-partner.blackhawknetwork.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Fri, 10 May 2024 12:26:08 GMT
Server: Apache
X-DataDome: protected
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
Set-Cookie: datadome=~zZ2dyWbUwQ865eejcJ4FZaEdbU74mAFXU16mzYwUneFfkIkPEoMhi34bOey_g1TVr7ZkN2XLUsVoSK2llviAfOloKSj3fu30XDbjdmeQ0HlmWu6b7dKOiYU20~IuGm6; Max-Age=31536000; Domain=.blackhawknetwork.com; Path=/; Secure; SameSite=Lax
Access-Control-Allow-Origin: https://spafinder-partner.blackhawknetwork.com
Access-Control-Allow-Methods: POST, PUT, GET, OPTIONS, DELETE
Vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
Allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
Content-Length: 0
Access-Control-Allow-Headers: Access-Control-Allow-Headers, Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, requestId, unique-id, merchantId, tenantId, certificateId, role, clientConfigId, *
Access-Control-Expose-Headers: *, *
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
spafinder-partner.blackhawknetwork.com/api/amp2MerchantApi/v1/public/account
200 OK 595 B URL GET HTTP/1.1 spafinder-partner.blackhawknetwork.com/api/amp2MerchantApi/v1/public/account
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerDigiCert Inc
Subjectspafinder-partner.blackhawknetwork.com
FingerprintFE:A9:BD:AE:72:6F:7D:6B:0D:37:21:69:D2:4E:EA:AE:39:E6:99:40
ValidityWed, 12 Jul 2023 00:00:00 GMT - Sun, 11 Aug 2024 23:59:59 GMT
Hash 0d077815472c86743e69ed143aa2f4d5
483abdcd3e44fd3dede0b9f08fa40b39f920f0e8
bff69297a10e2cab8ab1636071a4a25a7f1b554c47d0fdcafc45676538f9c89c
GET /api/amp2MerchantApi/v1/public/account HTTP/1.1
Host: spafinder-partner.blackhawknetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
AccountKey: spa-us
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Cookie: datadome=dRbzUsb3sJfVm0mTYKkqOpfxVOXTlDqg9qFNoYRLJWzPdfQ2f1c9IbbZPO0ZiD23gI25UQnd3ur7gohRmvamhsr2CMMo0F_Pd5g9qB7XfSKYr2szShUJMKJiQ6PD7QTi; TAsessionID=50c9642b-51b7-4dc4-9c3a-3b6c971e3f09|NEW; notice_behavior=implied,eu
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 12:26:09 GMT
Server: Apache
X-DataDome: protected
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
Set-Cookie: datadome=2zU9jF4iCTYeJqa69aBzVydsgLQhe8CO9NQ4LpvrUoPQWXKA73XZJrpI21YVl2qBwU1Ct4fSZD9zLWMquC71ZedNc7nOdICj0M7u9pkSk4ko2igx1wzVkL631UIoTDgj; Max-Age=31536000; Domain=.blackhawknetwork.com; Path=/; Secure; SameSite=Lax
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
Content-Type: application/json;charset=UTF-8
access-control-allow-origin: https://spafinder-partner.blackhawknetwork.com
Vary: Origin,Accept-Encoding
access-control-allow-credentials: true
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
Content-Encoding: gzip
X-Permitted-Cross-Domain-Policies: master-only
X-Frame-Options: DENY, SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
consent.trustarc.com/bannermsg?action=views&domain=blackhawknetwork.com&behavior=implied&country=no&language=en&rand=0.7181654864608197&session=50c9642b-51b7-4dc4-9c3a-3b6c971e3f09&userType=NEW
200 OK 43 B URL GET HTTP/2 consent.trustarc.com/bannermsg?action=views&domain=blackhawknetwork.com&behavior=implied&country=no&language=en&rand=0.7181654864608197&session=50c9642b-51b7-4dc4-9c3a-3b6c971e3f09&userType=NEW
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerAmazon
Subject*.trustarc.com
FingerprintA6:0F:35:43:F6:5C:F6:F9:58:6E:4B:6A:7A:A5:8F:5B:13:45:DA:37
ValiditySat, 16 Mar 2024 00:00:00 GMT - Mon, 14 Apr 2025 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /bannermsg?action=views&domain=blackhawknetwork.com&behavior=implied&country=no&language=en&rand=0.7181654864608197&session=50c9642b-51b7-4dc4-9c3a-3b6c971e3f09&userType=NEW HTTP/1.1
Host: consent.trustarc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 43
date: Fri, 10 May 2024 12:26:09 GMT
cache-control: private, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-security-policy: object-src 'none'; frame-ancestors https://*.trustarc.com https://*.prod.internal.trustarc.com https://*.trustarc.eu https://*.prod.internal.trustarc.eu https://*.staging.internal.trustarc.com https://*.trustarc-svc.net https://*.truste-svc.net https://*.qa.truste-svc.net https://*.dev.truste-svc.net http://localhost:* https://*.nymity.com https://*.qanym;; upgrade-insecure-requests; block-all-mixed-content; report-uri https://csp-reporter.tools.trustarc-svc.net/report
cross-origin-embedder-policy: unsafe-none
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: cross-origin
expect-ct: enforce, max-age=60
permissions-policy: geolocation=(), camera=(), speaker=(), microphone=(), vibrate=()
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-cache: Miss from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: AeWr5rkmVmQ5olCSfIpBEOMpMIUtdwI5Ii0RmeAi1zDm92qP6hQKlA==
vary: Origin
X-Firefox-Spdy: h2
spafinder-partner.blackhawknetwork.com/api/amp2MerchantApi/v1/public/account/gtm/?type=MERCHANT_PORTAL
200 OK 86 B URL GET HTTP/1.1 spafinder-partner.blackhawknetwork.com/api/amp2MerchantApi/v1/public/account/gtm/?type=MERCHANT_PORTAL
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerDigiCert Inc
Subjectspafinder-partner.blackhawknetwork.com
FingerprintFE:A9:BD:AE:72:6F:7D:6B:0D:37:21:69:D2:4E:EA:AE:39:E6:99:40
ValidityWed, 12 Jul 2023 00:00:00 GMT - Sun, 11 Aug 2024 23:59:59 GMT
Hash 0b0c3cca741ec2630d884f0fffae784f
20086565e734d5a8197297f50d76d468080abbf9
0c621df136058da827a566d62e1a4b9498c47f399ddc332719ec0de3d1a4294c
GET /api/amp2MerchantApi/v1/public/account/gtm/?type=MERCHANT_PORTAL HTTP/1.1
Host: spafinder-partner.blackhawknetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
AccountKey: spa-us
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Cookie: datadome=2zU9jF4iCTYeJqa69aBzVydsgLQhe8CO9NQ4LpvrUoPQWXKA73XZJrpI21YVl2qBwU1Ct4fSZD9zLWMquC71ZedNc7nOdICj0M7u9pkSk4ko2igx1wzVkL631UIoTDgj; TAsessionID=50c9642b-51b7-4dc4-9c3a-3b6c971e3f09|NEW; notice_behavior=implied,eu
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 12:26:09 GMT
Server: Apache
X-DataDome: protected
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
Set-Cookie: datadome=samSYxGyVLR6JIbGgKm3P8fNZBKDWgxi8tNrLJI2SSXjJT4ysSVcnWLTPnb1dbS2D25NQ_KoXRBtanonibwkJizgIolvv5_6Ol0P4ItA13Uw1wncKP5Dhd4UXkjVKFjY; Max-Age=31536000; Domain=.blackhawknetwork.com; Path=/; Secure; SameSite=Lax
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
Content-Type: application/json;charset=UTF-8
access-control-allow-origin: https://spafinder-partner.blackhawknetwork.com
Vary: Origin,Accept-Encoding
access-control-allow-credentials: true
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
Content-Encoding: gzip
X-Permitted-Cross-Domain-Policies: master-only
X-Frame-Options: DENY, SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
spafinder-partner.blackhawknetwork.com/api/amp2MerchantApi/internal/recaptcha
200 OK 65 B URL GET HTTP/1.1 spafinder-partner.blackhawknetwork.com/api/amp2MerchantApi/internal/recaptcha
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerDigiCert Inc
Subjectspafinder-partner.blackhawknetwork.com
FingerprintFE:A9:BD:AE:72:6F:7D:6B:0D:37:21:69:D2:4E:EA:AE:39:E6:99:40
ValidityWed, 12 Jul 2023 00:00:00 GMT - Sun, 11 Aug 2024 23:59:59 GMT
Hash d2f7094d75a00c35bca4c8fff088e937
5d87767fdba51c831251d7831f46e60d22b39f32
053e85def2a6da95558af42b635bb9e6092bde5aa1b8fc63e3ffac9d74e689a3
GET /api/amp2MerchantApi/internal/recaptcha HTTP/1.1
Host: spafinder-partner.blackhawknetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
AccountKey: spa-us
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Cookie: datadome=2zU9jF4iCTYeJqa69aBzVydsgLQhe8CO9NQ4LpvrUoPQWXKA73XZJrpI21YVl2qBwU1Ct4fSZD9zLWMquC71ZedNc7nOdICj0M7u9pkSk4ko2igx1wzVkL631UIoTDgj; TAsessionID=50c9642b-51b7-4dc4-9c3a-3b6c971e3f09|NEW; notice_behavior=implied,eu
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 12:26:09 GMT
Server: Apache
X-DataDome: protected
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
Set-Cookie: datadome=BQ8EKm8Hb_vRTpX7RwpyIRsQOsSCEQhmqfyJR9SHRwWxOm5_64LMbg8PYCVbc6n9ZxX9_Ys~v1vehDwyVuqFjF_jmAYzm3v5k0XbN~NIOm8VByRWGVhRE~1zrqcRPU2K; Max-Age=31536000; Domain=.blackhawknetwork.com; Path=/; Secure; SameSite=Lax
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
Content-Type: application/json; charset=utf-8
Content-Length: 65
Vary: Accept-Encoding
X-Permitted-Cross-Domain-Policies: master-only
X-Frame-Options: DENY, SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
notification.blackhawknetwork.com/riskService/v1/riskWidget/getRiskProviders
200 211 B URL OPTIONS HTTP/1.1 notification.blackhawknetwork.com/riskService/v1/riskWidget/getRiskProviders
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerDigiCert Inc
Subjectnotification.blackhawknetwork.com
Fingerprint10:71:86:0C:C0:6A:6E:E3:BB:64:6D:37:A2:28:BE:7A:11:69:90:29
ValidityWed, 12 Jul 2023 00:00:00 GMT - Sun, 11 Aug 2024 23:59:59 GMT
Hash b34b30587b92cda83aa804d95a1e11cc
db0738ff093cf8ea13163c03bbdc99426f04b752
986bdb2e66e03609890d7a14d343ca77b436f61867f30669b5cc8b24ec2d0cf3
POST /riskService/v1/riskWidget/getRiskProviders HTTP/1.1
Host: notification.blackhawknetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
requestId: 10e788dc-f227-4662-815e-fd05333520ef
unique-id: 10e788dc-f227-4662-815e-fd05333520ef
tenantId: M90DL0TH95890NMRPAC631TQ8C
Content-Length: 41
Origin: https://spafinder-partner.blackhawknetwork.com
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Fri, 10 May 2024 12:26:08 GMT
Server: Apache
X-DataDome: protected
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
Set-Cookie: datadome=iKCEc0r0nvGm1~0XxkvExyMItGhhpHW77kBmLtSAC1nabkhlMmNi6Iy75Fz1cc00OHfsu~7jwrfRGZTK_g1a6q_KNuXzobiPMCEzMBOqqOVsUDn2GxJHyVFac8Ze9VYy; Max-Age=31536000; Domain=.blackhawknetwork.com; Path=/; Secure; SameSite=Lax
Access-Control-Allow-Origin: https://spafinder-partner.blackhawknetwork.com
Access-Control-Allow-Methods: POST, PUT, GET, OPTIONS, DELETE
vary: accept-encoding
Content-Encoding: gzip
Content-Type: application/json
Access-Control-Allow-Headers: Access-Control-Allow-Headers, Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, requestId, unique-id, merchantId, tenantId, certificateId, role, clientConfigId, *
Access-Control-Expose-Headers: *, *
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
spafinder-partner.blackhawknetwork.com/api/amp2MerchantApi/v1/public/account/settings
200 OK 43 B URL GET HTTP/1.1 spafinder-partner.blackhawknetwork.com/api/amp2MerchantApi/v1/public/account/settings
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerDigiCert Inc
Subjectspafinder-partner.blackhawknetwork.com
FingerprintFE:A9:BD:AE:72:6F:7D:6B:0D:37:21:69:D2:4E:EA:AE:39:E6:99:40
ValidityWed, 12 Jul 2023 00:00:00 GMT - Sun, 11 Aug 2024 23:59:59 GMT
Hash f5c5ff58426eae8433e5ae9a6a48209f
48f9be183750033b9660923c1272cc088469d8c7
ec5f9d942c7d6c8ef56fcaaedd55071b55b9d0cf55596c7fe5180743f1291770
GET /api/amp2MerchantApi/v1/public/account/settings HTTP/1.1
Host: spafinder-partner.blackhawknetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
AccountKey: spa-us
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Cookie: datadome=2zU9jF4iCTYeJqa69aBzVydsgLQhe8CO9NQ4LpvrUoPQWXKA73XZJrpI21YVl2qBwU1Ct4fSZD9zLWMquC71ZedNc7nOdICj0M7u9pkSk4ko2igx1wzVkL631UIoTDgj; TAsessionID=50c9642b-51b7-4dc4-9c3a-3b6c971e3f09|NEW; notice_behavior=implied,eu
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 12:26:09 GMT
Server: Apache
X-DataDome: protected
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
Set-Cookie: datadome=px8yy1Qt1xI3NfHNqKZ1WR37NRq1Q42epklnviPlVfQjHFIYtuHgSI~L8A~UXGK9AezyZ27xU6o5YD4Ee36fpDgvNHzPdXEBkfiRhQtw2yuV5vNeXItODp1xlW7F5bZx; Max-Age=31536000; Domain=.blackhawknetwork.com; Path=/; Secure; SameSite=Lax
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
Content-Type: application/json;charset=UTF-8
access-control-allow-origin: https://spafinder-partner.blackhawknetwork.com
Vary: Origin,Accept-Encoding
access-control-allow-credentials: true
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
Content-Encoding: gzip
X-Permitted-Cross-Domain-Policies: master-only
X-Frame-Options: DENY, SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
spafinder-partner.blackhawknetwork.com/api/amp2MerchantApi/v1/public/locales
200 OK 66 B URL GET HTTP/1.1 spafinder-partner.blackhawknetwork.com/api/amp2MerchantApi/v1/public/locales
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerDigiCert Inc
Subjectspafinder-partner.blackhawknetwork.com
FingerprintFE:A9:BD:AE:72:6F:7D:6B:0D:37:21:69:D2:4E:EA:AE:39:E6:99:40
ValidityWed, 12 Jul 2023 00:00:00 GMT - Sun, 11 Aug 2024 23:59:59 GMT
Hash 70118d5aac7df2398ee78bd59074edbb
72aba323e2cde8bd8c58fea831589fff7aae54ee
f1eddd97ef102c6464ae65d81b2b3444f6bfb3dc8d23c972affcec47a6d3c63f
GET /api/amp2MerchantApi/v1/public/locales HTTP/1.1
Host: spafinder-partner.blackhawknetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
AccountKey: spa-us
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Cookie: datadome=2zU9jF4iCTYeJqa69aBzVydsgLQhe8CO9NQ4LpvrUoPQWXKA73XZJrpI21YVl2qBwU1Ct4fSZD9zLWMquC71ZedNc7nOdICj0M7u9pkSk4ko2igx1wzVkL631UIoTDgj; TAsessionID=50c9642b-51b7-4dc4-9c3a-3b6c971e3f09|NEW; notice_behavior=implied,eu
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 12:26:09 GMT
Server: Apache
X-DataDome: protected
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
Set-Cookie: datadome=F3t1H3X1qI7813BzZfHYiHySIdmP6OqT~HAxE56B8Z8dg97zHr3JTXY32FB~Je4XhBt0xabkN0K9NUD_VEN2jIcZhc0Kx~CcX5U~tDOA3a8ZUoA1ptCk65ORjcR52jot; Max-Age=31536000; Domain=.blackhawknetwork.com; Path=/; Secure; SameSite=Lax
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
Content-Type: application/json;charset=UTF-8
access-control-allow-origin: https://spafinder-partner.blackhawknetwork.com
Vary: Origin,Accept-Encoding
access-control-allow-credentials: true
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
Content-Encoding: gzip
X-Permitted-Cross-Domain-Policies: master-only
X-Frame-Options: DENY, SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
spafinder-partner.blackhawknetwork.com/api/amp2MerchantApi/v1/public/templates/pages/?templateKey=LOGIN_BOTTOM
200 OK 495 B URL GET HTTP/1.1 spafinder-partner.blackhawknetwork.com/api/amp2MerchantApi/v1/public/templates/pages/?templateKey=LOGIN_BOTTOM
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerDigiCert Inc
Subjectspafinder-partner.blackhawknetwork.com
FingerprintFE:A9:BD:AE:72:6F:7D:6B:0D:37:21:69:D2:4E:EA:AE:39:E6:99:40
ValidityWed, 12 Jul 2023 00:00:00 GMT - Sun, 11 Aug 2024 23:59:59 GMT
Hash fd36c1061f6dfd8c0b35f33d8627f06f
1eb8fc7d9dff147685acdf1a05ff12e25d8dd210
18e0484752d74152cc822301a237b211249d5f38ffe85afe7b125ec445778580
GET /api/amp2MerchantApi/v1/public/templates/pages/?templateKey=LOGIN_BOTTOM HTTP/1.1
Host: spafinder-partner.blackhawknetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
AccountKey: spa-us
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Cookie: datadome=2zU9jF4iCTYeJqa69aBzVydsgLQhe8CO9NQ4LpvrUoPQWXKA73XZJrpI21YVl2qBwU1Ct4fSZD9zLWMquC71ZedNc7nOdICj0M7u9pkSk4ko2igx1wzVkL631UIoTDgj; TAsessionID=50c9642b-51b7-4dc4-9c3a-3b6c971e3f09|NEW; notice_behavior=implied,eu
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 12:26:09 GMT
Server: Apache
X-DataDome: protected
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
Set-Cookie: datadome=3XUBpet1ENE6QMgeSZgeQWre4GjckLnfCoEmy~gUNIkBI_bJbWXMWyfHuttlyoewMeSEgy5IrKvMR0vuaPwK6UxEdnXV4ZdRoG6mrAhDSrnjOAwf3hHoqJ_dI50Yu2CS; Max-Age=31536000; Domain=.blackhawknetwork.com; Path=/; Secure; SameSite=Lax
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
Content-Type: application/json;charset=UTF-8
access-control-allow-origin: https://spafinder-partner.blackhawknetwork.com
Vary: Origin,Accept-Encoding
access-control-allow-credentials: true
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
Content-Encoding: gzip
X-Permitted-Cross-Domain-Policies: master-only
X-Frame-Options: DENY, SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
www.googletagmanager.com/gtm.js?id=GTM-PT8HNXX
200 OK 79 kB URL GET HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-PT8HNXX
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File type JavaScript source, ASCII text, with very long lines (5615)
Hash 4bb82c01363887534470a1b08caf36a5
18ef8697836823538f6fd79f4b845ea9aa8f527c
b9589774fc4852ba8be35dcd79eb5d5d959cecf79fbacb5fceb36191a0a6b9ff
GET /gtm.js?id=GTM-PT8HNXX HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 10 May 2024 12:26:10 GMT
expires: Fri, 10 May 2024 12:26:10 GMT
cache-control: private, max-age=900
last-modified: Fri, 10 May 2024 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79168
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
spafinder-partner.blackhawknetwork.com/api/amp2MerchantApi/v1/public/localization/?searchPrefix[]=mp.title&searchPrefix[]=mp.error-occurred&searchPrefix[]=mp.agreements&searchPrefix[]=mp.no-access&searchPrefix[]=mp.common&searchPrefix[]=mp.cookie-banner&searchPrefix[]=mp.enum&searchPrefix[]=mp.reports&searchPrefix[]=mp.login&searchPrefix[]=mp.signup&searchPrefix[]=mp.help-screen&searchPrefix[]=mp.dashboard&searchPrefix[]=mp.offers&searchPrefix[]=mp.redemption&searchPrefix[]=mp.subscriptions&searchPrefix[]=mp.legal-details&searchPrefix[]=mp.listing-wizard&searchPrefix[]=mp.edit-listing&searchPrefix[]=mp.set-password&searchPrefix[]=mp.reset-password&searchPrefix[]=mp.change-password&searchPrefix[]=mp.forgot-password&searchPrefix[]=mp.weak-password&searchPrefix[]=mp.pos-terminal&searchPrefix[]=mp.payment-form&searchPrefix[]=mp.settings&searchPrefix[]=mp.change-login-email&searchPrefix[]=mp.no-active-stores&searchPrefix[]=mp.auth-messages&searchPrefix[]=mp.page-not-found&searchPrefix[]=mp.invite&searchPrefix[]=mp.tax-id&localeShortName=en
200 OK 17 kB URL GET HTTP/1.1 spafinder-partner.blackhawknetwork.com/api/amp2MerchantApi/v1/public/localization/?searchPrefix[]=mp.title&searchPrefix[]=mp.error-occurred&searchPrefix[]=mp.agreements&searchPrefix[]=mp.no-access&searchPrefix[]=mp.common&searchPrefix[]=mp.cookie-banner&searchPrefix[]=mp.enum&searchPrefix[]=mp.reports&searchPrefix[]=mp.login&searchPrefix[]=mp.signup&searchPrefix[]=mp.help-screen&searchPrefix[]=mp.dashboard&searchPrefix[]=mp.offers&searchPrefix[]=mp.redemption&searchPrefix[]=mp.subscriptions&searchPrefix[]=mp.legal-details&searchPrefix[]=mp.listing-wizard&searchPrefix[]=mp.edit-listing&searchPrefix[]=mp.set-password&searchPrefix[]=mp.reset-password&searchPrefix[]=mp.change-password&searchPrefix[]=mp.forgot-password&searchPrefix[]=mp.weak-password&searchPrefix[]=mp.pos-terminal&searchPrefix[]=mp.payment-form&searchPrefix[]=mp.settings&searchPrefix[]=mp.change-login-email&searchPrefix[]=mp.no-active-stores&searchPrefix[]=mp.auth-messages&searchPrefix[]=mp.page-not-found&searchPrefix[]=mp.invite&searchPrefix[]=mp.tax-id&localeShortName=en
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerDigiCert Inc
Subjectspafinder-partner.blackhawknetwork.com
FingerprintFE:A9:BD:AE:72:6F:7D:6B:0D:37:21:69:D2:4E:EA:AE:39:E6:99:40
ValidityWed, 12 Jul 2023 00:00:00 GMT - Sun, 11 Aug 2024 23:59:59 GMT
Hash 4ac27248286574ff894363c5244215cb
aae0966ce1538d6381fe8712e2665a4515f825ea
80f725f17fdd5fe077eb5c47c481b54be46da6ef11497d018bc8c2b372451aad
GET /api/amp2MerchantApi/v1/public/localization/?searchPrefix[]=mp.title&searchPrefix[]=mp.error-occurred&searchPrefix[]=mp.agreements&searchPrefix[]=mp.no-access&searchPrefix[]=mp.common&searchPrefix[]=mp.cookie-banner&searchPrefix[]=mp.enum&searchPrefix[]=mp.reports&searchPrefix[]=mp.login&searchPrefix[]=mp.signup&searchPrefix[]=mp.help-screen&searchPrefix[]=mp.dashboard&searchPrefix[]=mp.offers&searchPrefix[]=mp.redemption&searchPrefix[]=mp.subscriptions&searchPrefix[]=mp.legal-details&searchPrefix[]=mp.listing-wizard&searchPrefix[]=mp.edit-listing&searchPrefix[]=mp.set-password&searchPrefix[]=mp.reset-password&searchPrefix[]=mp.change-password&searchPrefix[]=mp.forgot-password&searchPrefix[]=mp.weak-password&searchPrefix[]=mp.pos-terminal&searchPrefix[]=mp.payment-form&searchPrefix[]=mp.settings&searchPrefix[]=mp.change-login-email&searchPrefix[]=mp.no-active-stores&searchPrefix[]=mp.auth-messages&searchPrefix[]=mp.page-not-found&searchPrefix[]=mp.invite&searchPrefix[]=mp.tax-id&localeShortName=en HTTP/1.1
Host: spafinder-partner.blackhawknetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
AccountKey: spa-us
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Cookie: datadome=3XUBpet1ENE6QMgeSZgeQWre4GjckLnfCoEmy~gUNIkBI_bJbWXMWyfHuttlyoewMeSEgy5IrKvMR0vuaPwK6UxEdnXV4ZdRoG6mrAhDSrnjOAwf3hHoqJ_dI50Yu2CS; TAsessionID=50c9642b-51b7-4dc4-9c3a-3b6c971e3f09|NEW; notice_behavior=implied,eu
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 12:26:10 GMT
Server: Apache
X-DataDome: protected
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
Set-Cookie: datadome=CnhsKkcF_WcGzrOD1oXcay7CDuN7wbGq1oc9WMwgEFD93BnTzCs4XpsFB8azoGZqDu4Z6VL5mJVJFGfCJkfEhU1cTrPl8Dt9U90jjxtziTU0h4wPaL19SUywrMvl6vy0; Max-Age=31536000; Domain=.blackhawknetwork.com; Path=/; Secure; SameSite=Lax
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
Content-Type: application/json;charset=UTF-8
access-control-allow-origin: https://spafinder-partner.blackhawknetwork.com
Vary: Origin,Accept-Encoding
access-control-allow-credentials: true
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
Content-Encoding: gzip
X-Permitted-Cross-Domain-Policies: master-only
X-Frame-Options: DENY, SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Transfer-Encoding: chunked
api.sardine.ai/assets/loader.min.js
200 OK 25 kB URL GET HTTP/2 api.sardine.ai/assets/loader.min.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerGoogle Trust Services LLC
Subjectsardine.ai
FingerprintED:C7:13:27:CC:A4:CE:CE:52:6B:D7:12:57:79:80:6D:85:AA:5C:DC
ValiditySat, 13 Apr 2024 19:59:04 GMT - Fri, 12 Jul 2024 20:54:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash d53a151dcf95f5edd156c2c5c744c59b
412bb9aa34325a7b3cf2fb50e29da3f4db81ac76
941c41908ab8508fe1510b2c2bdbedca1c05fac823b281dcb9c61e7f5ef7191f
GET /assets/loader.min.js HTTP/1.1
Host: api.sardine.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-goog-generation: 1712675736703689
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 25029
content-encoding: gzip
content-language: en
x-goog-hash: crc32c=yFbKsg==, md5=CpdsJm+ute95411fNPD0wQ==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 25029
access-control-allow-origin: *
access-control-expose-headers: *
x-guploader-uploadid: ABPtcPqN9F_4YJqNtvGkDwAPjHdr9XEt1bk6BowQxXF-1yCuAuzy5hvdkD9AxdVzIF4994-lKQsWCVeEkg
server: UploadServer
date: Fri, 10 May 2024 12:12:26 GMT
expires: Fri, 10 May 2024 12:42:26 GMT
cache-control: public, max-age=1800,no-transform
age: 824
last-modified: Tue, 09 Apr 2024 15:15:36 GMT
etag: "0a976c266faeb5ef79e35d5f34f0f4c1"
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
api.sardine.ai/assets/collector.min.34d364f.html?r=2024-04-08-34d364f
209 B URL api.sardine.ai/assets/collector.min.34d364f.html?r=2024-04-08-34d364f
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerGoogle Trust Services LLC
Subjectsardine.ai
FingerprintED:C7:13:27:CC:A4:CE:CE:52:6B:D7:12:57:79:80:6D:85:AA:5C:DC
ValiditySat, 13 Apr 2024 19:59:04 GMT - Fri, 12 Jul 2024 20:54:59 GMT
File type HTML document, ASCII text, with no line terminators
Hash 95d8cdb08482446ee85fd99bf20a8bc7
fe9198c6d134f06eeeb9a4a5715e8ed11ca5bedf
68818c457d0d4cfa753b4434e5e3d3cd16da6f214e84cbef529fd15a83b5981e
GET /assets/collector.min.34d364f.html?r=2024-04-08-34d364f HTTP/1.1
Host: api.sardine.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ABPtcPq3b4e-glyp7bNhiLKPU2BgVbC0bvkVhiI2uBsr4r6FBi-Aa-0GviWR9ynA_910GQNwiwx-Euniqg
x-goog-generation: 1712675736658551
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 209
content-encoding: gzip
content-language: en
x-goog-hash: crc32c=usruUQ==, md5=BXwpaOwCZtEpPWNsoT37Ow==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 209
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
date: Fri, 10 May 2024 12:23:06 GMT
expires: Fri, 10 May 2024 12:53:06 GMT
cache-control: public, max-age=1800,no-transform
age: 184
last-modified: Tue, 09 Apr 2024 15:15:36 GMT
etag: "057c2968ec0266d1293d636ca13dfb3b"
content-type: text/html
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
insights-spafinder.web.app/insights-reports.umd.min.js
200 OK 353 kB URL GET HTTP/2 insights-spafinder.web.app/insights-reports.umd.min.js
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerGoogle Trust Services LLC
Subjectweb.app
Fingerprint6C:B8:FC:5E:5B:DF:AB:31:E6:02:C5:A6:D8:E2:D0:77:BB:5D:BC:7B
ValidityThu, 21 Mar 2024 15:14:42 GMT - Wed, 19 Jun 2024 15:14:41 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (42999)
Size 353 kB (353255 bytes)
Hash bcfe2990b8ea170334ffd81366e2f0c0
ca5b31e5a22269dd68274a07d528df729cd0acfa
320d5d63ac365799d9d749356b83dae5e0d11cd95601603c917fef1531566591
GET /insights-reports.umd.min.js HTTP/1.1
Host: insights-spafinder.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: "f8f605cbe153f6eecd30ecfc8c38d3e503341f939c85635e73d1f93839b12ed6-br"
last-modified: Fri, 02 Feb 2024 18:40:31 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Fri, 10 May 2024 12:26:10 GMT
x-served-by: cache-hel1410025-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1715343970.787557,VS0,VE490
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 353255
X-Firefox-Spdy: h2
bhn-amp2-merchant-us-west-1.s3.amazonaws.com/amp/files/spa_logo.png
200 OK 7.7 kB URL GET HTTP/1.1 bhn-amp2-merchant-us-west-1.s3.amazonaws.com/amp/files/spa_logo.png
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerAmazon
Subject*.s3.amazonaws.com
FingerprintDC:41:A6:3E:EE:32:6F:36:76:5A:EF:9D:17:AF:14:13:E3:05:C6:D1
ValidityTue, 10 Oct 2023 00:00:00 GMT - Wed, 03 Jul 2024 23:59:59 GMT
File type PNG image data, 900 x 135, 8-bit/color RGBA, non-interlaced
Hash 289d6d9eb9ca99a01131505868ee5e2d
ebcce4a9dcf40758fdd559db6c1c37e720f2213a
1b26488ffef6b81ac4be6997b56ce79adeed9ef7c245238e8bd675217c710093
GET /amp/files/spa_logo.png HTTP/1.1
Host: bhn-amp2-merchant-us-west-1.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: OXa7yMlKZDf1GQcsQ4+LVBlIN4qoWMXUois6+ZJD1pMLJpl98k4D5pmMj9QfHV4/nXuxp+GSKGY=
x-amz-request-id: 5AAFJ6WK6W2S0WG8
Date: Fri, 10 May 2024 12:26:11 GMT
Last-Modified: Wed, 10 Oct 2018 16:20:45 GMT
ETag: "289d6d9eb9ca99a01131505868ee5e2d"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 7660
api.sardine.ai/assets/collector.min.34d364f.js
200 OK 44 kB URL GET HTTP/3 api.sardine.ai/assets/collector.min.34d364f.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://api.sardine.ai/assets/collector.min.34d364f.html?r=2024-04-08-34d364f#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
Certificate IssuerGoogle Trust Services LLC
Subjectsardine.ai
FingerprintED:C7:13:27:CC:A4:CE:CE:52:6B:D7:12:57:79:80:6D:85:AA:5C:DC
ValiditySat, 13 Apr 2024 19:59:04 GMT - Fri, 12 Jul 2024 20:54:59 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash d0b57a08a5e47434248855c6bfe26bd0
b32929c150a122a10804c492ffae4459aa871a81
10addfd4676949c3cae1b2d34b069c21b7cefb0da5785c214827eb3c2969eba0
GET /assets/collector.min.34d364f.js HTTP/1.1
Host: api.sardine.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://api.sardine.ai/assets/collector.min.34d364f.html?r=2024-04-08-34d364f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
x-guploader-uploadid: ABPtcPp_gl9aR19-zYfX6tFcsgHJHh0DKiM5V9xhHkiGbLa--j1tXssvWteZtjVpqwb83PRRurc
x-goog-generation: 1712675736622932
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 43891
content-encoding: gzip
content-language: en
x-goog-hash: crc32c=JreHKw==, md5=K9r4gbIFsYle0Yi2Jk91mw==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 43891
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
date: Fri, 10 May 2024 12:13:53 GMT
expires: Fri, 10 May 2024 12:43:53 GMT
cache-control: public, max-age=1800,no-transform
age: 737
last-modified: Tue, 09 Apr 2024 15:15:36 GMT
etag: "2bdaf881b205b1895ed188b6264f759b"
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js
200 OK 204 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcJdHgUAAAAAMZeKpvB9UoW303VoYGrXEiLsNaT&co=aHR0cHM6Ly9zcGFmaW5kZXItcGFydG5lci5ibGFja2hhd2tuZXR3b3JrLmNvbTo0NDM.&hl=en&type=image&v=vjbW55W42X033PfTdVf6Ft4q&theme=light&size=normal&badge=bottomright&cb=z3jr8nbcz7vd
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File type JavaScript source, ASCII text, with very long lines (632)
Size 204 kB (204445 bytes)
Hash add520996e437bff5d081315da187fbf
2e489fe16f3712bf36df00b03a8a5af8fa8d4b42
922b951591d52d44aa7015ebc95cab08192aa435b64f9016673ac5da1124a8b4
GET /recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://spafinder-partner.blackhawknetwork.com
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 204445
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 16:12:34 GMT
expires: Tue, 06 May 2025 16:12:34 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 05 May 2024 20:00:16 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 332016
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
spafinder-partner.blackhawknetwork.com/assets/i/favicon-spafinder.png
200 OK 6.3 kB URL GET HTTP/1.1 spafinder-partner.blackhawknetwork.com/assets/i/favicon-spafinder.png
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerDigiCert Inc
Subjectspafinder-partner.blackhawknetwork.com
FingerprintFE:A9:BD:AE:72:6F:7D:6B:0D:37:21:69:D2:4E:EA:AE:39:E6:99:40
ValidityWed, 12 Jul 2023 00:00:00 GMT - Sun, 11 Aug 2024 23:59:59 GMT
File type PNG image data, 189 x 189, 8-bit/color RGBA, non-interlaced
Hash 758f281989c99258eea57f89c4589cbe
e42104c5cb5fe91844649eb56bd99fb0cbc382b0
9204e1412db57416398e8a8ee48c0897a27ae0276dcb93048bf789006d83ab56
GET /assets/i/favicon-spafinder.png HTTP/1.1
Host: spafinder-partner.blackhawknetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Cookie: datadome=CnhsKkcF_WcGzrOD1oXcay7CDuN7wbGq1oc9WMwgEFD93BnTzCs4XpsFB8azoGZqDu4Z6VL5mJVJFGfCJkfEhU1cTrPl8Dt9U90jjxtziTU0h4wPaL19SUywrMvl6vy0; TAsessionID=50c9642b-51b7-4dc4-9c3a-3b6c971e3f09|NEW; notice_behavior=implied,eu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 12:26:11 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
Content-Type: image/png
Content-Length: 6278
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Fri, 22 Mar 2024 10:47:09 GMT
X-Permitted-Cross-Domain-Policies: master-only
X-Frame-Options: DENY, SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
bdm72r5fjem9mqsv4qtex2fbuz8tp7ep9k1t1oq5e7fb5fwsdpyax8uyscw.d.sardine.ai/bg.png
200 OK 81 B URL GET HTTP/2 bdm72r5fjem9mqsv4qtex2fbuz8tp7ep9k1t1oq5e7fb5fwsdpyax8uyscw.d.sardine.ai/bg.png
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://api.sardine.ai/assets/collector.min.34d364f.html?r=2024-04-08-34d364f#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
Certificate IssuerGoogle Trust Services LLC
Subjectd.sardine.ai
FingerprintE4:52:2E:E2:FE:6C:F5:D9:00:64:97:1F:99:9B:D5:CA:AE:CC:6E:CA
ValiditySun, 05 May 2024 00:05:24 GMT - Sat, 03 Aug 2024 01:01:19 GMT
File type PNG image data, 2 x 1, 8-bit/color RGBA, non-interlaced
Hash e2a8bf5590621c652078f690087c47a3
5876e80139b5fade4af402004ac683c650e7624a
05c362bd48e67b7a442ce2470b259a424596beb8b225401e5cdc627b654f0d06
GET /bg.png HTTP/1.1
Host: bdm72r5fjem9mqsv4qtex2fbuz8tp7ep9k1t1oq5e7fb5fwsdpyax8uyscw.d.sardine.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://api.sardine.ai/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-guploader-uploadid: ABPtcPpRdchGV6FrewsRuNMxLl_FXFz7v7xqIFcNZnkGFMLZaZ-l3cosv1DIeICVxKuooVW5Blo
x-goog-generation: 1699715039510755
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 81
x-goog-hash: crc32c=RCQxPg==, md5=4qi/VZBiHGUgePaQCHxHow==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 81
server: UploadServer
date: Fri, 10 May 2024 12:08:45 GMT
age: 1046
last-modified: Sat, 11 Nov 2023 15:03:59 GMT
etag: "e2a8bf5590621c652078f690087c47a3"
content-type: image/png
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
api.sardine.ai/v1/events/stream
0 B URL api.sardine.ai/v1/events/stream
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerGoogle Trust Services LLC
Subjectsardine.ai
FingerprintED:C7:13:27:CC:A4:CE:CE:52:6B:D7:12:57:79:80:6D:85:AA:5C:DC
ValiditySat, 13 Apr 2024 19:59:04 GMT - Fri, 12 Jul 2024 20:54:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v1/events/stream HTTP/1.1
Host: api.sardine.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://api.sardine.ai
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: FEj9pPTLAaEQ860Vg2HAMw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Fri, 10 May 2024 12:26:11 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: hTLJ0ApDZhr+vow2s0IfbtsUkSQ=
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/styles__ltr.css
200 OK 25 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/styles__ltr.css
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcJdHgUAAAAAMZeKpvB9UoW303VoYGrXEiLsNaT&co=aHR0cHM6Ly9zcGFmaW5kZXItcGFydG5lci5ibGFja2hhd2tuZXR3b3JrLmNvbTo0NDM.&hl=en&type=image&v=vjbW55W42X033PfTdVf6Ft4q&theme=light&size=normal&badge=bottomright&cb=z3jr8nbcz7vd
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File type ASCII text, with very long lines (56412), with no line terminators
Hash 2c00b9f417b688224937053cd0c284a5
17b4c18ebc129055dd25f214c3f11e03e9df2d82
1e754b107428162c65a26d399b66db3daaea09616bf8620d9de4bc689ce48eed
GET /recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24617
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 19:34:32 GMT
expires: Tue, 06 May 2025 19:34:32 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 05 May 2024 20:00:16 GMT
content-type: text/css
vary: Accept-Encoding
age: 319899
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js
200 OK 204 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcJdHgUAAAAAMZeKpvB9UoW303VoYGrXEiLsNaT&co=aHR0cHM6Ly9zcGFmaW5kZXItcGFydG5lci5ibGFja2hhd2tuZXR3b3JrLmNvbTo0NDM.&hl=en&type=image&v=vjbW55W42X033PfTdVf6Ft4q&theme=light&size=normal&badge=bottomright&cb=z3jr8nbcz7vd
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File type JavaScript source, ASCII text, with very long lines (632)
Size 204 kB (204445 bytes)
Hash add520996e437bff5d081315da187fbf
2e489fe16f3712bf36df00b03a8a5af8fa8d4b42
922b951591d52d44aa7015ebc95cab08192aa435b64f9016673ac5da1124a8b4
GET /recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 204445
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 16:12:34 GMT
expires: Tue, 06 May 2025 16:12:34 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 05 May 2024 20:00:16 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 332017
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 15 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcJdHgUAAAAAMZeKpvB9UoW303VoYGrXEiLsNaT&co=aHR0cHM6Ly9zcGFmaW5kZXItcGFydG5lci5ibGFja2hhd2tuZXR3b3JrLmNvbTo0NDM.&hl=en&type=image&v=vjbW55W42X033PfTdVf6Ft4q&theme=light&size=normal&badge=bottomright&cb=z3jr8nbcz7vd
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 05 May 2024 18:37:19 GMT
expires: Mon, 05 May 2025 18:37:19 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 409732
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/recaptcha/api2/webworker.js?hl=en&v=vjbW55W42X033PfTdVf6Ft4q
200 OK 2.3 kB URL GET HTTP/3 www.google.com/recaptcha/api2/webworker.js?hl=en&v=vjbW55W42X033PfTdVf6Ft4q
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcJdHgUAAAAAMZeKpvB9UoW303VoYGrXEiLsNaT&co=aHR0cHM6Ly9zcGFmaW5kZXItcGFydG5lci5ibGFja2hhd2tuZXR3b3JrLmNvbTo0NDM.&hl=en&type=image&v=vjbW55W42X033PfTdVf6Ft4q&theme=light&size=normal&badge=bottomright&cb=z3jr8nbcz7vd
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
Hash c6706c47fb76abfef475b22947d327c1
fb80906ec3634f828b62d6545ad9bd62fb937ac4
bb43b0c7e62a11decbc66d012ab27a3dbb95aac8266fd51637d84d7355197ea8
GET /recaptcha/api2/webworker.js?hl=en&v=vjbW55W42X033PfTdVf6Ft4q HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcJdHgUAAAAAMZeKpvB9UoW303VoYGrXEiLsNaT&co=aHR0cHM6Ly9zcGFmaW5kZXItcGFydG5lci5ibGFja2hhd2tuZXR3b3JrLmNvbTo0NDM.&hl=en&type=image&v=vjbW55W42X033PfTdVf6Ft4q&theme=light&size=normal&badge=bottomright&cb=z3jr8nbcz7vd
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Fri, 10 May 2024 12:26:11 GMT
date: Fri, 10 May 2024 12:26:11 GMT
cache-control: private, max-age=300
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/js/bg/EghGp72f3L_y9HVk4Nn8Vk_BAMWB9fGIEzP3DzvQDW8.js
200 OK 7.4 kB URL GET HTTP/3 www.google.com/js/bg/EghGp72f3L_y9HVk4Nn8Vk_BAMWB9fGIEzP3DzvQDW8.js
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcJdHgUAAAAAMZeKpvB9UoW303VoYGrXEiLsNaT&co=aHR0cHM6Ly9zcGFmaW5kZXItcGFydG5lci5ibGFja2hhd2tuZXR3b3JrLmNvbTo0NDM.&hl=en&type=image&v=vjbW55W42X033PfTdVf6Ft4q&theme=light&size=normal&badge=bottomright&cb=z3jr8nbcz7vd
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File type JavaScript source, ASCII text, with very long lines (17542)
Hash 7c111ad0cbb18935696bc8bb0846ec26
a9c77f0678ff71a4032e787999ada733e7da10cf
120846a7bd9fdcbff2f47564e0d9fc564fc100c581f5f1881333f70f3bd00d6f
GET /js/bg/EghGp72f3L_y9HVk4Nn8Vk_BAMWB9fGIEzP3DzvQDW8.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcJdHgUAAAAAMZeKpvB9UoW303VoYGrXEiLsNaT&co=aHR0cHM6Ly9zcGFmaW5kZXItcGFydG5lci5ibGFja2hhd2tuZXR3b3JrLmNvbTo0NDM.&hl=en&type=image&v=vjbW55W42X033PfTdVf6Ft4q&theme=light&size=normal&badge=bottomright&cb=z3jr8nbcz7vd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 7438
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 15:13:02 GMT
expires: Fri, 09 May 2025 15:13:02 GMT
cache-control: public, max-age=31536000
age: 76389
last-modified: Mon, 29 Apr 2024 11:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js
200 OK 204 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcJdHgUAAAAAMZeKpvB9UoW303VoYGrXEiLsNaT&co=aHR0cHM6Ly9zcGFmaW5kZXItcGFydG5lci5ibGFja2hhd2tuZXR3b3JrLmNvbTo0NDM.&hl=en&type=image&v=vjbW55W42X033PfTdVf6Ft4q&theme=light&size=normal&badge=bottomright&cb=z3jr8nbcz7vd
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File type JavaScript source, ASCII text, with very long lines (632)
Size 204 kB (204445 bytes)
Hash add520996e437bff5d081315da187fbf
2e489fe16f3712bf36df00b03a8a5af8fa8d4b42
922b951591d52d44aa7015ebc95cab08192aa435b64f9016673ac5da1124a8b4
GET /recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 204445
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 16:12:34 GMT
expires: Tue, 06 May 2025 16:12:34 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 05 May 2024 20:00:16 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 332017
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
api.sardine.ai/v1/events
200 OK 487 B IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://api.sardine.ai/assets/collector.min.34d364f.html?r=2024-04-08-34d364f#eyJsb2FkZXJJbml0VGltZSI6MTcxNTM0Mzk3MDI2NiwiZW5hYmxlQmlvbWV0cmljcyI6dHJ1ZSwicmV2aXNpb24iOiIyMDI0LTA0LTA4LTM0ZDM2NGYiLCJvcmlnaW4iOiJodHRwczovL3NwYWZpbmRlci1wYXJ0bmVyLmJsYWNraGF3a25ldHdvcmsuY29tIiwiY29sbGVjdG9yRG9tYWluIjoiYXBpLnNhcmRpbmUuYWkiLCJwaXhlbFVSTCI6Imh0dHBzOi8vcC5zYXJkaW5lLmFpL3YxL2IucG5nIiwiZEJhc2VEb21haW4iOiJkLnNhcmRpbmUuYWkiLCJsb2NhdGlvbiI6Imh0dHBzOi8vc3BhZmluZGVyLXBhcnRuZXIuYmxhY2toYXdrbmV0d29yay5jb20vc3BhZmluZGVyLmNvbS9wdWJsaWMvbG9naW4iLCJyZWZlcnJlciI6IiIsInV1aWQiOiI1YzM4YzVjNC0wZGMyLTRkY2ItYTBkYi03YWMwMDI0Yzg0ODMiLCJjbGllbnRJZCI6IjAyOGJkY2NlLTM2YTMtNDNjNi1hN2JkLTRhMDUyZGQ5YTcyNCIsInNlc3Npb25LZXkiOiJIOFpQTjVMR0o1SlBGWVE3QlZaNDkwUlM1TSIsImZsb3ciOiJvdGhlciIsImVudmlyb25tZW50IjoicHJvZHVjdGlvbiJ9
Certificate IssuerGoogle Trust Services LLC
Subjectsardine.ai
FingerprintED:C7:13:27:CC:A4:CE:CE:52:6B:D7:12:57:79:80:6D:85:AA:5C:DC
ValiditySat, 13 Apr 2024 19:59:04 GMT - Fri, 12 Jul 2024 20:54:59 GMT
Hash 47355f0def72c7e03083d0a241426546
b4f2dfdf4123771fcf1ad7d3a335f0d720efc83a
e50e131dbda7fa450df9f48ab66ca566a10c3f9a916f4ad16cb7d71288a0bae8
POST /v1/events HTTP/1.1
Host: api.sardine.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 31171
Origin: https://api.sardine.ai
DNT: 1
Connection: keep-alive
Referer: https://api.sardine.ai/assets/collector.min.34d364f.html?r=2024-04-08-34d364f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 12:26:11 GMT
content-type: application/json
content-length: 487
access-control-allow-headers: Origin, Content-Type, Accept, Authorization
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: https://docs.sardine.ai
set-cookie: _immortal|deviceToken=eyJhbGciOiJkaXIiLCJjdHkiOiJKV1QiLCJlbmMiOiJBMTI4R0NNIiwidHlwIjoiSldUIn0..4o34F2xS-1QNyom-._2pCBBHKJqef4fykOd98smNtjl6Oo53rai43zLB7a1DIU-JoQAu2rK4uZWv3qNB57Rdlqz8Hl-MyNawiME875bm1Fp-_34rLpJX1XGxBUHEKMevepHzhH3zMJPU_y1pJArzkDr2PHkvAQgDCTNCvClAV0pMzOb52LCoNaMe7eb-vt80lapSWPHVtXMyOjRejShdaxAFBFeB7oZMLlFfP33Dsjl4NMXcB8Gp08p5409zIStQ7l6j38aLqmzLuFvqNPtKvUqW7KjxVcHvpsBeJT-QcMpfMbCI.fs0EsomT92eIOoorzJ5KRw; Path=/; Expires=Sat, 10 May 2025 12:26:11 GMT; Secure; SameSite=None
x-request-id: 8b2acdfc5bbe41ab92212f5ac981ef07
x-version-id: d5a438d
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
notification.blackhawknetwork.com/riskService/v1/riskWidget/sessionDetails
200 0 B URL POST HTTP/1.1 notification.blackhawknetwork.com/riskService/v1/riskWidget/sessionDetails
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerDigiCert Inc
Subjectnotification.blackhawknetwork.com
Fingerprint10:71:86:0C:C0:6A:6E:E3:BB:64:6D:37:A2:28:BE:7A:11:69:90:29
ValidityWed, 12 Jul 2023 00:00:00 GMT - Sun, 11 Aug 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /riskService/v1/riskWidget/sessionDetails HTTP/1.1
Host: notification.blackhawknetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,requestid,tenantid,unique-id
Referer: https://spafinder-partner.blackhawknetwork.com/
Origin: https://spafinder-partner.blackhawknetwork.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Fri, 10 May 2024 12:26:11 GMT
Server: Apache
X-DataDome: protected
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
Set-Cookie: datadome=BCm59ViTL4rq3MqiIQrlNm2TwaabSVZ5UnBc3zBJuvM_BbkYe_dC5i9Q~UFEhYoQhT7Vz7xAwuYU0946IuCZX29WsI2e3iieL0JsutG5pieWegXfbqc7~FiJhPdx0AYN; Max-Age=31536000; Domain=.blackhawknetwork.com; Path=/; Secure; SameSite=Lax
Access-Control-Allow-Origin: https://spafinder-partner.blackhawknetwork.com
Access-Control-Allow-Methods: POST, PUT, GET, OPTIONS, DELETE
Vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
Allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
Content-Length: 0
Access-Control-Allow-Headers: Access-Control-Allow-Headers, Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, requestId, unique-id, merchantId, tenantId, certificateId, role, clientConfigId, *
Access-Control-Expose-Headers: *, *
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/styles__ltr.css
200 OK 25 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/styles__ltr.css
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcJdHgUAAAAAMZeKpvB9UoW303VoYGrXEiLsNaT&co=aHR0cHM6Ly9zcGFmaW5kZXItcGFydG5lci5ibGFja2hhd2tuZXR3b3JrLmNvbTo0NDM.&hl=en&type=image&v=vjbW55W42X033PfTdVf6Ft4q&theme=light&size=normal&badge=bottomright&cb=z3jr8nbcz7vd
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File type ASCII text, with very long lines (56412), with no line terminators
Hash 2c00b9f417b688224937053cd0c284a5
17b4c18ebc129055dd25f214c3f11e03e9df2d82
1e754b107428162c65a26d399b66db3daaea09616bf8620d9de4bc689ce48eed
GET /recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24617
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 19:34:32 GMT
expires: Tue, 06 May 2025 19:34:32 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 05 May 2024 20:00:16 GMT
content-type: text/css
vary: Accept-Encoding
age: 319900
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js
200 OK 204 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcJdHgUAAAAAMZeKpvB9UoW303VoYGrXEiLsNaT&co=aHR0cHM6Ly9zcGFmaW5kZXItcGFydG5lci5ibGFja2hhd2tuZXR3b3JrLmNvbTo0NDM.&hl=en&type=image&v=vjbW55W42X033PfTdVf6Ft4q&theme=light&size=normal&badge=bottomright&cb=z3jr8nbcz7vd
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File type JavaScript source, ASCII text, with very long lines (632)
Size 204 kB (204445 bytes)
Hash add520996e437bff5d081315da187fbf
2e489fe16f3712bf36df00b03a8a5af8fa8d4b42
922b951591d52d44aa7015ebc95cab08192aa435b64f9016673ac5da1124a8b4
GET /recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 204445
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 16:12:34 GMT
expires: Tue, 06 May 2025 16:12:34 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 05 May 2024 20:00:16 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 332018
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
notification.blackhawknetwork.com/riskService/v1/riskWidget/sessionDetails
200 70 B URL POST HTTP/1.1 notification.blackhawknetwork.com/riskService/v1/riskWidget/sessionDetails
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerDigiCert Inc
Subjectnotification.blackhawknetwork.com
Fingerprint10:71:86:0C:C0:6A:6E:E3:BB:64:6D:37:A2:28:BE:7A:11:69:90:29
ValidityWed, 12 Jul 2023 00:00:00 GMT - Sun, 11 Aug 2024 23:59:59 GMT
Hash df09e694531d07afa89e2f6e56277907
ec838267e333e43826c6a91a291e313c9c3a303d
5b87bff55c7c4c942218dc989d1126af8442139fcdc1ab0b333861a34182d9b2
POST /riskService/v1/riskWidget/sessionDetails HTTP/1.1
Host: notification.blackhawknetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
requestId: 635e5ac9-804b-47d3-8868-135d27067602
unique-id: 635e5ac9-804b-47d3-8868-135d27067602
tenantId: M90DL0TH95890NMRPAC631TQ8C
Content-Length: 342
Origin: https://spafinder-partner.blackhawknetwork.com
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Fri, 10 May 2024 12:26:11 GMT
Server: Apache
X-DataDome: protected
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
Set-Cookie: datadome=oD~cRnaha8JGtpC118kp4h8Kh68RStGPNrcCaH08zySK~7S3NOeucDjCIrmzJ3BtA8xbkXaP2axCIVfBgzsbsXB171PP~hJ6qvSJ0uNysnV3JhuDOaHEA~LvBOCoxo_y; Max-Age=31536000; Domain=.blackhawknetwork.com; Path=/; Secure; SameSite=Lax
Access-Control-Allow-Origin: https://spafinder-partner.blackhawknetwork.com
Access-Control-Allow-Methods: POST, PUT, GET, OPTIONS, DELETE
vary: accept-encoding
Content-Encoding: gzip
Content-Type: application/json
Access-Control-Allow-Headers: Access-Control-Allow-Headers, Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, requestId, unique-id, merchantId, tenantId, certificateId, role, clientConfigId, *
Access-Control-Expose-Headers: *, *
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
api.sardine.ai/v1/events/unload
3 B URL api.sardine.ai/v1/events/unload
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerGoogle Trust Services LLC
Subjectsardine.ai
FingerprintED:C7:13:27:CC:A4:CE:CE:52:6B:D7:12:57:79:80:6D:85:AA:5C:DC
ValiditySat, 13 Apr 2024 19:59:04 GMT - Fri, 12 Jul 2024 20:54:59 GMT
Hash 8a80554c91d9fca8acb82f023de02f11
5f36b2ea290645ee34d943220a14b54ee5ea5be5
ca3d163bab055381827226140568f3bef7eaac187cebd76878e0b63e9e442356
POST /v1/events/unload HTTP/1.1
Host: api.sardine.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 929
Origin: https://api.sardine.ai
DNT: 1
Connection: keep-alive
Referer: https://api.sardine.ai/assets/collector.min.34d364f.html?r=2024-04-08-34d364f
Cookie: _immortal|deviceToken=eyJhbGciOiJkaXIiLCJjdHkiOiJKV1QiLCJlbmMiOiJBMTI4R0NNIiwidHlwIjoiSldUIn0..4o34F2xS-1QNyom-._2pCBBHKJqef4fykOd98smNtjl6Oo53rai43zLB7a1DIU-JoQAu2rK4uZWv3qNB57Rdlqz8Hl-MyNawiME875bm1Fp-_34rLpJX1XGxBUHEKMevepHzhH3zMJPU_y1pJArzkDr2PHkvAQgDCTNCvClAV0pMzOb52LCoNaMe7eb-vt80lapSWPHVtXMyOjRejShdaxAFBFeB7oZMLlFfP33Dsjl4NMXcB8Gp08p5409zIStQ7l6j38aLqmzLuFvqNPtKvUqW7KjxVcHvpsBeJT-QcMpfMbCI.fs0EsomT92eIOoorzJ5KRw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 12:26:33 GMT
content-type: application/json
content-length: 3
access-control-allow-headers: Origin, Content-Type, Accept, Authorization
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: https://docs.sardine.ai
x-request-id: 4e0cbe80215113270455fe141a0f021c
x-version-id: d5a438d
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/recaptcha/api2/anchor?ar=1&k=6LcJdHgUAAAAAMZeKpvB9UoW303VoYGrXEiLsNaT&co=aHR0cHM6Ly9zcGFmaW5kZXItcGFydG5lci5ibGFja2hhd2tuZXR3b3JrLmNvbTo0NDM.&hl=en&type=image&v=vjbW55W42X033PfTdVf6Ft4q&theme=light&size=normal&badge=bottomright&cb=z3jr8nbcz7vd
200 OK 47 kB URL GET HTTP/3 www.google.com/recaptcha/api2/anchor?ar=1&k=6LcJdHgUAAAAAMZeKpvB9UoW303VoYGrXEiLsNaT&co=aHR0cHM6Ly9zcGFmaW5kZXItcGFydG5lci5ibGFja2hhd2tuZXR3b3JrLmNvbTo0NDM.&hl=en&type=image&v=vjbW55W42X033PfTdVf6Ft4q&theme=light&size=normal&badge=bottomright&cb=z3jr8nbcz7vd
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File type HTML document, ASCII text, with very long lines (38648)
Hash 928c72b16077aa45a49e031cc302a895
53ea3e94f3cd045448bb91e0311c6af90d023b42
06916dc0836126fd46c85dbb08fd8ad89ce05d5bfa471c5598c59fe6a4fda264
GET /recaptcha/api2/anchor?ar=1&k=6LcJdHgUAAAAAMZeKpvB9UoW303VoYGrXEiLsNaT&co=aHR0cHM6Ly9zcGFmaW5kZXItcGFydG5lci5ibGFja2hhd2tuZXR3b3JrLmNvbTo0NDM.&hl=en&type=image&v=vjbW55W42X033PfTdVf6Ft4q&theme=light&size=normal&badge=bottomright&cb=z3jr8nbcz7vd HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 10 May 2024 12:26:11 GMT
content-security-policy: script-src 'nonce-8grvcJvrgVVY_APzQnCuWA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
api.ipify.org/
0 B IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: api.ipify.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://spafinder-partner.blackhawknetwork.com/
Origin: https://spafinder-partner.blackhawknetwork.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
www.gstatic.com/recaptcha/api2/logo_48.png
200 OK 2.2 kB URL GET HTTP/3 www.gstatic.com/recaptcha/api2/logo_48.png
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcJdHgUAAAAAMZeKpvB9UoW303VoYGrXEiLsNaT&co=aHR0cHM6Ly9zcGFmaW5kZXItcGFydG5lci5ibGFja2hhd2tuZXR3b3JrLmNvbTo0NDM.&hl=en&type=image&v=vjbW55W42X033PfTdVf6Ft4q&theme=light&size=normal&badge=bottomright&cb=z3jr8nbcz7vd
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Hash ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 02:54:07 GMT
expires: Thu, 16 May 2024 02:54:07 GMT
cache-control: public, max-age=604800
age: 120724
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
consent.trustarc.com/notice?domain=blackhawknetwork.com&c=teconsent&js=nj¬iceType=bb&text=true>m=1
200 OK 37 kB URL GET HTTP/2 consent.trustarc.com/notice?domain=blackhawknetwork.com&c=teconsent&js=nj¬iceType=bb&text=true>m=1
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerAmazon
Subject*.trustarc.com
FingerprintA6:0F:35:43:F6:5C:F6:F9:58:6E:4B:6A:7A:A5:8F:5B:13:45:DA:37
ValiditySat, 16 Mar 2024 00:00:00 GMT - Mon, 14 Apr 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (6580)
Hash 79f23bbf659cf4e249e119e0d6e00845
ec2f6992f6d78a3a53c1bf1551b964d9b85f5b7f
6af817c1766e888b169ce56c615d683452182adeba5cfd7ec92d304e1cb16361
GET /notice?domain=blackhawknetwork.com&c=teconsent&js=nj¬iceType=bb&text=true>m=1 HTTP/1.1
Host: consent.trustarc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://spafinder-partner.blackhawknetwork.com
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Fri, 10 May 2024 12:26:07 GMT
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cx_pTJWQ5acyBduVwRx_UHkQHosaYWwhp6PC3q7Y4Avd1f9vJV5kOQ==
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
consent.trustarc.com/asset/notice.js/v/v1.7-3281
200 OK 95 kB URL GET HTTP/2 consent.trustarc.com/asset/notice.js/v/v1.7-3281
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerAmazon
Subject*.trustarc.com
FingerprintA6:0F:35:43:F6:5C:F6:F9:58:6E:4B:6A:7A:A5:8F:5B:13:45:DA:37
ValiditySat, 16 Mar 2024 00:00:00 GMT - Mon, 14 Apr 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (2026)
Hash 78cf569cd2c33a1bdb1aaa174318959f
2d7f6c6f39ab4779630464a800280a4e3b172d66
5eeb76abbd17b81bc8a7f6722be1f0b980897bce2c1fe38bbe9f126573486d25
GET /asset/notice.js/v/v1.7-3281 HTTP/1.1
Host: consent.trustarc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://spafinder-partner.blackhawknetwork.com
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
last-modified: Thu, 2 May 2024 01:55:11 GMT
pragma: public
content-encoding: gzip
date: Fri, 10 May 2024 11:33:06 GMT
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: eCk7IXKL8OmKBcYOBcUwiZ5T1PFIipLO27dfdk9LHsFln4ErNLTH4Q==
age: 3183
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
consent.trustarc.com/get?name=RobotoBold.ttf
200 OK 136 kB URL GET HTTP/2 consent.trustarc.com/get?name=RobotoBold.ttf
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerAmazon
Subject*.trustarc.com
FingerprintA6:0F:35:43:F6:5C:F6:F9:58:6E:4B:6A:7A:A5:8F:5B:13:45:DA:37
ValiditySat, 16 Mar 2024 00:00:00 GMT - Mon, 14 Apr 2025 23:59:59 GMT
File type TrueType Font data, 17 tables, 1st "GPOS", 27 names, Macintosh, Font data copyright Google 2012RobotoBoldGoogle:Roboto Bold:2013Roboto BoldVersion 1.100141; 201
Size 136 kB (135820 bytes)
Hash afa7a91dadd77b23634a0fdf18c148f3
6cbb57ba2355cf442e06899898ff5af55867103e
9287925cae90ac480804094ff0876832065e2db116470da1f524d79ed9c18b70
GET /get?name=RobotoBold.ttf HTTP/1.1
Host: consent.trustarc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://spafinder-partner.blackhawknetwork.com
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: font/ttf
date: Fri, 10 May 2024 12:07:26 GMT
pragma: public
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: FlDTPqD-jwx4IFBY944wdlQjMEciCxmNjcpLMYFPaiPl0p0e080tiA==
age: 1123
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
api.sardine.ai/v1/events/stream
101 Switching Protocols 0 B URL GET HTTP/1.1 api.sardine.ai/v1/events/stream
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://api.sardine.ai/assets/collector.min.34d364f.html?r=2024-04-08-34d364f#eyJsb2FkZXJJbml0VGltZSI6MTcxNTM0Mzk3MDI2NiwiZW5hYmxlQmlvbWV0cmljcyI6dHJ1ZSwicmV2aXNpb24iOiIyMDI0LTA0LTA4LTM0ZDM2NGYiLCJvcmlnaW4iOiJodHRwczovL3NwYWZpbmRlci1wYXJ0bmVyLmJsYWNraGF3a25ldHdvcmsuY29tIiwiY29sbGVjdG9yRG9tYWluIjoiYXBpLnNhcmRpbmUuYWkiLCJwaXhlbFVSTCI6Imh0dHBzOi8vcC5zYXJkaW5lLmFpL3YxL2IucG5nIiwiZEJhc2VEb21haW4iOiJkLnNhcmRpbmUuYWkiLCJsb2NhdGlvbiI6Imh0dHBzOi8vc3BhZmluZGVyLXBhcnRuZXIuYmxhY2toYXdrbmV0d29yay5jb20vc3BhZmluZGVyLmNvbS9wdWJsaWMvbG9naW4iLCJyZWZlcnJlciI6IiIsInV1aWQiOiI1YzM4YzVjNC0wZGMyLTRkY2ItYTBkYi03YWMwMDI0Yzg0ODMiLCJjbGllbnRJZCI6IjAyOGJkY2NlLTM2YTMtNDNjNi1hN2JkLTRhMDUyZGQ5YTcyNCIsInNlc3Npb25LZXkiOiJIOFpQTjVMR0o1SlBGWVE3QlZaNDkwUlM1TSIsImZsb3ciOiJvdGhlciIsImVudmlyb25tZW50IjoicHJvZHVjdGlvbiJ9
Certificate IssuerGoogle Trust Services LLC
Subjectsardine.ai
FingerprintED:C7:13:27:CC:A4:CE:CE:52:6B:D7:12:57:79:80:6D:85:AA:5C:DC
ValiditySat, 13 Apr 2024 19:59:04 GMT - Fri, 12 Jul 2024 20:54:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v1/events/stream HTTP/1.1
Host: api.sardine.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://api.sardine.ai
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: FEj9pPTLAaEQ860Vg2HAMw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Fri, 10 May 2024 12:26:11 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: hTLJ0ApDZhr+vow2s0IfbtsUkSQ=
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
consent.trustarc.com/get?name=RobotoRegular.ttf
200 OK 145 kB URL GET HTTP/2 consent.trustarc.com/get?name=RobotoRegular.ttf
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerAmazon
Subject*.trustarc.com
FingerprintA6:0F:35:43:F6:5C:F6:F9:58:6E:4B:6A:7A:A5:8F:5B:13:45:DA:37
ValiditySat, 16 Mar 2024 00:00:00 GMT - Mon, 14 Apr 2025 23:59:59 GMT
File type TrueType Font data, 17 tables, 1st "GPOS", 27 names, Macintosh, Font data copyright Google 2012RobotoRegularGoogle:Roboto Regular:2013Roboto RegularVersion 1.10
Size 145 kB (145348 bytes)
Hash 54a91b0619ccf9373d525109268219dc
1d1d41fcadc571decb6444211b7993b99ce926e2
b2efabca5ea4bc56eea829713706b5cd0788b82aca153bd4adde9b1573933b4f
GET /get?name=RobotoRegular.ttf HTTP/1.1
Host: consent.trustarc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://spafinder-partner.blackhawknetwork.com
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: font/ttf
date: Fri, 10 May 2024 12:20:56 GMT
pragma: public
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: D6b6uvC-4xqkHIK7F0icb2gZTdOJKwKUikae07TSm6gtDxE3s62YLQ==
age: 313
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
p.sardine.ai/v1/b.png?sessionKey=H8ZPN5LGJ5JPFYQ7BVZ490RS5M&clientId=028bdcce-36a3-43c6-a7bd-4a052dd9a724&flow=other
200 OK 68 B URL GET HTTP/2 p.sardine.ai/v1/b.png?sessionKey=H8ZPN5LGJ5JPFYQ7BVZ490RS5M&clientId=028bdcce-36a3-43c6-a7bd-4a052dd9a724&flow=other
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://api.sardine.ai/assets/collector.min.34d364f.html?r=2024-04-08-34d364f#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
Certificate IssuerLet's Encrypt
Subjectp.sardine.ai
Fingerprint71:5D:A7:93:D4:D3:32:8B:3F:5F:8F:F9:4D:EA:F2:65:F8:AA:F9:EA
ValiditySun, 31 Mar 2024 23:01:38 GMT - Sat, 29 Jun 2024 23:01:37 GMT
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced
Hash 91e42db1c66c0b276abf6234dc50b2eb
c1986af3c26609b8b7d8933f99c51c1a89e9ea6b
63ef318d96b5d0d0ceba6e04a4e622b1158335cdc67c49e27839132c6f655058
GET /v1/b.png?sessionKey=H8ZPN5LGJ5JPFYQ7BVZ490RS5M&clientId=028bdcce-36a3-43c6-a7bd-4a052dd9a724&flow=other HTTP/1.1
Host: p.sardine.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://api.sardine.ai/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
content-type: image/png
expires: Thu, 01 Jan 1970 00:00:00 UTC
pragma: no-cache
x-accel-expires: 0
x-request-id: bf046366-9571-4098-a1cd-402da6f8751b
x-version-id: 5bea65f
date: Fri, 10 May 2024 12:26:11 GMT
X-Firefox-Spdy: h2
api.sardine.ai/assets/collector.min.34d364f.html?r=2024-04-08-34d364f
200 OK 263 B URL GET HTTP/2 api.sardine.ai/assets/collector.min.34d364f.html?r=2024-04-08-34d364f
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerGoogle Trust Services LLC
Subjectsardine.ai
FingerprintED:C7:13:27:CC:A4:CE:CE:52:6B:D7:12:57:79:80:6D:85:AA:5C:DC
ValiditySat, 13 Apr 2024 19:59:04 GMT - Fri, 12 Jul 2024 20:54:59 GMT
File type HTML document, ASCII text, with no line terminators
Hash 2e3b31bba7824b4b21b92e1332a04709
f8fae7d0953862bed2026ac48f2d1bccecf7601e
ff4398904e7aab32ddf55a03e33d064ae66310331f5ae8bc5bf0f086ec88d06d
GET /assets/collector.min.34d364f.html?r=2024-04-08-34d364f HTTP/1.1
Host: api.sardine.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-guploader-uploadid: ABPtcPq3b4e-glyp7bNhiLKPU2BgVbC0bvkVhiI2uBsr4r6FBi-Aa-0GviWR9ynA_910GQNwiwx-Euniqg
x-goog-generation: 1712675736658551
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 209
content-encoding: gzip
content-language: en
x-goog-hash: crc32c=usruUQ==, md5=BXwpaOwCZtEpPWNsoT37Ow==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 209
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
date: Fri, 10 May 2024 12:23:06 GMT
expires: Fri, 10 May 2024 12:53:06 GMT
cache-control: public, max-age=1800,no-transform
age: 184
last-modified: Tue, 09 Apr 2024 15:15:36 GMT
etag: "057c2968ec0266d1293d636ca13dfb3b"
content-type: text/html
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?onload=reCaptchaOnloadCallback&render=explicit
200 OK 918 B URL GET HTTP/2 www.google.com/recaptcha/api.js?onload=reCaptchaOnloadCallback&render=explicit
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintC6:A2:DC:31:5A:53:FA:DD:55:71:A3:F4:DD:43:3D:16:71:B8:B3:99
ValidityTue, 16 Apr 2024 04:20:32 GMT - Tue, 09 Jul 2024 04:20:31 GMT
File type JavaScript source, ASCII text, with very long lines (918), with no line terminators
Hash 664911c5abd4cd3df8e14875c2b28f19
55b3b11c9678b67a39c33a23e532d1e72d7fe146
0e77a0626b6b5c74d2180df0f28cb78cc206ae8ad8c6ea1e5d631d6d758fe91b
GET /recaptcha/api.js?onload=reCaptchaOnloadCallback&render=explicit HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Fri, 10 May 2024 12:26:10 GMT
date: Fri, 10 May 2024 12:26:10 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/recaptcha/api2/bframe?hl=en&v=vjbW55W42X033PfTdVf6Ft4q&k=6LcJdHgUAAAAAMZeKpvB9UoW303VoYGrXEiLsNaT
200 OK 7.4 kB URL GET HTTP/3 www.google.com/recaptcha/api2/bframe?hl=en&v=vjbW55W42X033PfTdVf6Ft4q&k=6LcJdHgUAAAAAMZeKpvB9UoW303VoYGrXEiLsNaT
IP
Requested by https://spafinder-partner.blackhawknetwork.com/spafinder.com/public/login
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File type HTML document, ASCII text, with very long lines (7675), with no line terminators
Hash d03ba2a47c9edbeaf15c385ebd071a13
c4c2b4de81f8ca597e7baa544da06caa408acbc0
25e1620cc3380a5d19a02ccfe8fa3cb767e5bb76cc59dccfe0cfba0ade0ec112
GET /recaptcha/api2/bframe?hl=en&v=vjbW55W42X033PfTdVf6Ft4q&k=6LcJdHgUAAAAAMZeKpvB9UoW303VoYGrXEiLsNaT HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spafinder-partner.blackhawknetwork.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 10 May 2024 12:26:12 GMT
content-security-policy: script-src 'nonce-sP-4AlB2l0kRX8MX1BdARQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
54.176.231.193
0.0.0.0