| dipity.com/timeline/Ursula-Burns/ | 185.53.177.31 | | 1.3 kB |
URL dipity.com/timeline/Ursula-Burns/ IP185.53.177.31:0 ASN#61969 Team Internet AG
File typeHTML document, ASCII text, with very long lines (357) Hashcbfce811baf269a9cda276d3bad21f17 b4f4fc7a730e41220f191c01a53da60ba36bccc5 3e7758970756aaa333bfd23ff1c79b81a8c6875fe13af74a9ce77e883dacce19
GET /timeline/Ursula-Burns/ HTTP/1.1
Host: dipity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 May 2024 14:35:34 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Redirect: zeropark_zeroclick
X-Buckets: bucket011
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_ED/MT2XpFSYT/4jYmc6fYlFchhvK7S0zAhdltnF8mtFrkibpgephiJwKbUyevPRKYD/o6xvq6tfZQHBzVi6j4g==
X-Template: tpl_CleanPeppermintBlack_twoclick
X-Language: norwegian
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
X-Domain: dipity.com
X-Subdomain:
Content-Encoding: gzip
|
|
| d38psrni17bvxu.cloudfront.net/scripts/js3.js | 54.230.241.199 | | 1.1 kB |
URL d38psrni17bvxu.cloudfront.net/scripts/js3.js IP54.230.241.199:0
File typeASCII text, with very long lines (468) Hasha66b149a7ebc798955373415d683f32a 15ceaba8cfae8368600620ae97aa26ae7331d626 036c94653e84e6078c087abeb3ac8804491d27b27938839ae3df42b31e2238d9
GET /scripts/js3.js HTTP/1.1
Host: d38psrni17bvxu.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://dipity.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 1096
Connection: keep-alive
Server: nginx
Date: Sat, 04 May 2024 04:33:15 GMT
Last-Modified: Thu, 21 Mar 2024 11:48:11 GMT
Accept-Ranges: bytes
ETag: "65fc1e7b-448"
X-Cache: Hit from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 4fIHaGyUR-Y_qRZL2TuCUz7c07KRW3Ewjx9yAWX6V-i48OqGnKqbfA==
Age: 36139
|
|
| dipity.com/track.php?domain=dipity.com&toggle=browserjs&uid=MTcxNDgzMzMzNC4xNzE0OmZiZTdhNGViOGQ4NzAxOGY3YTE2Y2E3MjgwN2Q5Y2ExMGVjZjk2NzdkMDA4MTZkMTNlZDI2NTI0NDBmYzNhZjc6NjYzNjQ3YjYyOWRiYQ%3D%3D | 185.53.177.31 | | 20 B |
URL dipity.com/track.php?domain=dipity.com&toggle=browserjs&uid=MTcxNDgzMzMzNC4xNzE0OmZiZTdhNGViOGQ4NzAxOGY3YTE2Y2E3MjgwN2Q5Y2ExMGVjZjk2NzdkMDA4MTZkMTNlZDI2NTI0NDBmYzNhZjc6NjYzNjQ3YjYyOWRiYQ%3D%3D IP185.53.177.31:0 ASN#61969 Team Internet AG
File typegzip compressed data, max speed, from Unix Hasha4745abc5e7fdb89cc6df3069f3c6e69 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /track.php?domain=dipity.com&toggle=browserjs&uid=MTcxNDgzMzMzNC4xNzE0OmZiZTdhNGViOGQ4NzAxOGY3YTE2Y2E3MjgwN2Q5Y2ExMGVjZjk2NzdkMDA4MTZkMTNlZDI2NTI0NDBmYzNhZjc6NjYzNjQ3YjYyOWRiYQ%3D%3D HTTP/1.1
Host: dipity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://dipity.com/timeline/Ursula-Burns/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 May 2024 14:35:35 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Custom-Track: browserjs
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Access-Control-Allow-Origin: *
Content-Encoding: gzip
|
|
| dipity.com/ls.php?t=663647b6&token=8b5c84552fec546f0e965f902408cb7b504ab837 | 185.53.177.31 | | 16 B |
URL dipity.com/ls.php?t=663647b6&token=8b5c84552fec546f0e965f902408cb7b504ab837 IP185.53.177.31:0 ASN#61969 Team Internet AG
Hash7363e85fe9edee6f053a4b319588c086 a15e2127145548437173fc17f3e980e3f3dee2d0 c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97
GET /ls.php?t=663647b6&token=8b5c84552fec546f0e965f902408cb7b504ab837 HTTP/1.1
Host: dipity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://dipity.com/timeline/Ursula-Burns/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 201 Created
Server: nginx
Date: Sat, 04 May 2024 14:35:35 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
X-Log-Success: 663647b7cdde4b53ed0748b8
Charset: utf-8
Access-Control-Allow-Origin:
Access-Control-Allow-Methods: POST, OPTIONS
Access-Control-Max-Age: 86400
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_KJJobahrT1P2V0ux7BISYNZzpN04aT4ZAzI2z2hC7aCzGPDZWjoUbU1JjvGsPnvCSPM64+cXkydsBc1gFAzdTA==
|
|
| dipity.com/favicon.ico | 185.53.177.31 | | 0 B |
IP185.53.177.31:0 ASN#61969 Team Internet AG
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: dipity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://dipity.com/timeline/Ursula-Burns/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 May 2024 14:35:35 GMT
Content-Type: image/x-icon
Content-Length: 0
Connection: keep-alive
Last-Modified: Mon, 22 Apr 2024 09:36:26 GMT
ETag: "66262f9a-0"
Accept-Ranges: bytes
|
|
| dipity.com/track.php?click=4da66f0e21539490cb93a4bc4e3d15b9d6bca8eb&domain=dipity.com&uid=MTcxNDgzMzMzNC4xNzE0OmZiZTdhNGViOGQ4NzAxOGY3YTE2Y2E3MjgwN2Q5Y2ExMGVjZjk2NzdkMDA4MTZkMTNlZDI2NTI0NDBmYzNhZjc6NjYzNjQ3YjYyOWRiYQ%3D%3D&ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTF8fHx8fHw2NjM2NDdiNjI5ZDkwfHx8MTcxNDgzMzMzNC40OTI1fGY4MGZjNmI3OWMyODFlNDg3ODg5MTMxOGQ5MDczZDhkZDg2ZmY0NTZ8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXw4YjVjODQ1NTJmZWM1NDZmMGU5NjVmOTAyNDA4Y2I3YjUwNGFiODM3fDB8fDB8MHx8&kw=&search=&pcat=&bucket=&clientID=&adtest=off | 185.53.177.31 | | 20 B |
URL dipity.com/track.php?click=4da66f0e21539490cb93a4bc4e3d15b9d6bca8eb&domain=dipity.com&uid=MTcxNDgzMzMzNC4xNzE0OmZiZTdhNGViOGQ4NzAxOGY3YTE2Y2E3MjgwN2Q5Y2ExMGVjZjk2NzdkMDA4MTZkMTNlZDI2NTI0NDBmYzNhZjc6NjYzNjQ3YjYyOWRiYQ%3D%3D&ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTF8fHx8fHw2NjM2NDdiNjI5ZDkwfHx8MTcxNDgzMzMzNC40OTI1fGY4MGZjNmI3OWMyODFlNDg3ODg5MTMxOGQ5MDczZDhkZDg2ZmY0NTZ8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXw4YjVjODQ1NTJmZWM1NDZmMGU5NjVmOTAyNDA4Y2I3YjUwNGFiODM3fDB8fDB8MHx8&kw=&search=&pcat=&bucket=&clientID=&adtest=off IP185.53.177.31:0 ASN#61969 Team Internet AG
File typegzip compressed data, max speed, from Unix Hasha4745abc5e7fdb89cc6df3069f3c6e69 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /track.php?click=4da66f0e21539490cb93a4bc4e3d15b9d6bca8eb&domain=dipity.com&uid=MTcxNDgzMzMzNC4xNzE0OmZiZTdhNGViOGQ4NzAxOGY3YTE2Y2E3MjgwN2Q5Y2ExMGVjZjk2NzdkMDA4MTZkMTNlZDI2NTI0NDBmYzNhZjc6NjYzNjQ3YjYyOWRiYQ%3D%3D&ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTF8fHx8fHw2NjM2NDdiNjI5ZDkwfHx8MTcxNDgzMzMzNC40OTI1fGY4MGZjNmI3OWMyODFlNDg3ODg5MTMxOGQ5MDczZDhkZDg2ZmY0NTZ8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXw4YjVjODQ1NTJmZWM1NDZmMGU5NjVmOTAyNDA4Y2I3YjUwNGFiODM3fDB8fDB8MHx8&kw=&search=&pcat=&bucket=&clientID=&adtest=off HTTP/1.1
Host: dipity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://dipity.com/timeline/Ursula-Burns/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 May 2024 14:35:35 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-View-Match: true
X-Custom-Track: none
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Access-Control-Allow-Origin: *
Content-Encoding: gzip
|
|
| hrode-cok.com/zclkvisitor/90ed0402-0a23-11ef-a230-12ae76adff97/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=07fd6ea3-b06c-11ee-ad77-123af5e664ff | 35.172.149.84 | | 2.7 kB |
URL hrode-cok.com/zclkvisitor/90ed0402-0a23-11ef-a230-12ae76adff97/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=07fd6ea3-b06c-11ee-ad77-123af5e664ff IP35.172.149.84:0
File typeHTML document, ASCII text, with very long lines (400) Hash2f3cd89c8a7768f233bba7635c9178e2 f56823b2c4ca5e5f57591e78aadb855a79f11339 b5e0918fbf10a4f668fd9f78b4bc44ee8dc71e319741ebe455693e205d6262c2
GET /zclkvisitor/90ed0402-0a23-11ef-a230-12ae76adff97/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=07fd6ea3-b06c-11ee-ad77-123af5e664ff HTTP/1.1
Host: hrode-cok.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://dipity.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Sat, 04 May 2024 14:35:36 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 2730
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
|
|
| hrode-cok.com/zclkredirect?visitid=90ed0402-0a23-11ef-a230-12ae76adff97&type=js&browserWidth=1280&browserHeight=1024&iframeDetected=false&webdriverDetected=false&gpu=undefined&timezone=UTC%2B00%3A00&timezoneName=UTC | 35.172.149.84 | | 346 B |
URL hrode-cok.com/zclkredirect?visitid=90ed0402-0a23-11ef-a230-12ae76adff97&type=js&browserWidth=1280&browserHeight=1024&iframeDetected=false&webdriverDetected=false&gpu=undefined&timezone=UTC%2B00%3A00&timezoneName=UTC IP35.172.149.84:0
File typeHTML document, ASCII text Hash01db0ee50551513e0b961193ad066d95 068054963117f0308086501991b2c801d4e8b68c dc009c89f4218d87398bc36726afbcbf60f0040199f8c9549b95ec9a6ce7deb5
GET /zclkredirect?visitid=90ed0402-0a23-11ef-a230-12ae76adff97&type=js&browserWidth=1280&browserHeight=1024&iframeDetected=false&webdriverDetected=false&gpu=undefined&timezone=UTC%2B00%3A00&timezoneName=UTC HTTP/1.1
Host: hrode-cok.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hrode-cok.com/zclkvisitor/90ed0402-0a23-11ef-a230-12ae76adff97/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=07fd6ea3-b06c-11ee-ad77-123af5e664ff
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Sat, 04 May 2024 14:35:36 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 346
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
redirected: JS
|
|
| plorexdry.com/r/b?s=6246150796&s2=lateritious-falcon&s3=mike-roc-2wvsqnsgf | 5.9.85.57 | | 0 B |
URL plorexdry.com/r/b?s=6246150796&s2=lateritious-falcon&s3=mike-roc-2wvsqnsgf IP5.9.85.57:0 ASN#24940 Hetzner Online GmbH
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/b?s=6246150796&s2=lateritious-falcon&s3=mike-roc-2wvsqnsgf HTTP/1.1
Host: plorexdry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://hrode-cok.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Sat, 04 May 2024 14:35:36 GMT
Server: Apache/2.4.37 (CentOS Stream) OpenSSL/1.1.1k
Referrer-Policy: no-referrer
Location: https://buybutwhere.com/buy/with/be4/in?store=secure.booking.com&nid=76&sid1=6246150796&sid2=lateritious-falcon&sid3=mike-roc-2wvsqnsgf&url=https%3A%2F%2Fsecure.booking.com&rtb_key=faac978c4a30908f30edaec78c5657c7
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| hrode-cok.com/favicon.ico | 35.172.149.84 | | 653 B |
URL hrode-cok.com/favicon.ico IP35.172.149.84:0
File typeHTML document, Unicode text, UTF-8 text, with very long lines (649), with no line terminators Hashba2732b1b2fa2626ffaa15f62f9e7d66 203d4e7fbb1d80449d6e4e1f3ae7a9bf8625debe 879861cb72fe9fbb476dab246021c4c83b4066327de2529e05ec54d3afb0a1c8
GET /favicon.ico HTTP/1.1
Host: hrode-cok.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://hrode-cok.com/zclkredirect?visitid=90ed0402-0a23-11ef-a230-12ae76adff97&type=js&browserWidth=1280&browserHeight=1024&iframeDetected=false&webdriverDetected=false&gpu=undefined&timezone=UTC%2B00%3A00&timezoneName=UTC
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404
Date: Sat, 04 May 2024 14:35:37 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 653
Connection: keep-alive
Content-Language: en
|
|
| buybutwhere.com/buy/with/be4/in?store=secure.booking.com&nid=76&sid1=6246150796&sid2=lateritious-falcon&sid3=mike-roc-2wvsqnsgf&url=https%3A%2F%2Fsecure.booking.com&rtb_key=faac978c4a30908f30edaec78c5657c7 | 116.203.4.24 | | 29 kB |
URL buybutwhere.com/buy/with/be4/in?store=secure.booking.com&nid=76&sid1=6246150796&sid2=lateritious-falcon&sid3=mike-roc-2wvsqnsgf&url=https%3A%2F%2Fsecure.booking.com&rtb_key=faac978c4a30908f30edaec78c5657c7 IP116.203.4.24:0 ASN#24940 Hetzner Online GmbH
Hasha4b3b3807fa40ef5f7f291602679ef3c 003f95263ce5b06106af3d700a962e8251981f8d fe3ac3fee47614c736f84b9b1d73220090ffc9d96a79f58b0b89636928ae689e
GET /buy/with/be4/in?store=secure.booking.com&nid=76&sid1=6246150796&sid2=lateritious-falcon&sid3=mike-roc-2wvsqnsgf&url=https%3A%2F%2Fsecure.booking.com&rtb_key=faac978c4a30908f30edaec78c5657c7 HTTP/1.1
Host: buybutwhere.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
content-type: text/html; charset=UTF-8
location: https://buybutwhere.com/buy/in?store=secure.booking.com
cache-control: no-cache, private
date: Sat, 04 May 2024 14:35:37 GMT
referrer-policy: no-referrer
X-Firefox-Spdy: h2
|
|
| cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/OtAutoBlock.js | 104.19.177.52 | 200 OK | 2.9 kB |
URL GET HTTP/2cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/OtAutoBlock.js IP104.19.177.52:443
CertificateIssuerCloudflare, Inc. Subjectcookielaw.org FingerprintC9:7F:A3:0A:53:6E:A6:6C:2F:D0:E2:2C:F5:35:B4:BC:81:90:40:31 ValidityFri, 01 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (5355) Hashdf2b513603c3c4aedbd7366aa07309b1 fcc212f92202477f31e4b2c796a65409de1a2bc2 433a9b7ed2172aa877cc638cbe2583eaef8af74a9d30e26d0bd9dbd05e0a364e
GET /consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/OtAutoBlock.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 14:35:39 GMT
content-type: application/x-javascript
content-length: 2947
cf-ray: 87e937f13cbe0b55-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 80277
cache-control: public, max-age=86400
content-encoding: gzip
etag: 0x8DC5A219320657A
expires: Sun, 05 May 2024 14:35:39 GMT
last-modified: Thu, 11 Apr 2024 12:19:02 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
content-md5: qG47vuVKqisfZ6e8XK7n8Q==
x-content-type-options: nosniff
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 21591f0d-f01e-003b-7f0a-8c7c27000000
x-ms-version: 2009-09-19
server: cloudflare
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/static/js/crossorigin_check_cloudfront_sd/2454015045ef79168d452ff4e7f30bdadff0aa81.js | 143.204.55.112 | 200 OK | 95 B |
URL GET HTTP/2cf.bstatic.com/static/js/crossorigin_check_cloudfront_sd/2454015045ef79168d452ff4e7f30bdadff0aa81.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash335be8900580e9c3875dba57334294ae a86597d2ddfa410df13bceca86fdf9a2291fe798 8a882fd19a15567e53a5c3c08d22cdab714fa87734ed92d854c4e8fdf3940b1f
GET /static/js/crossorigin_check_cloudfront_sd/2454015045ef79168d452ff4e7f30bdadff0aa81.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 95
server: nginx
date: Wed, 24 Apr 2024 13:02:21 GMT
last-modified: Wed, 10 Apr 2019 11:21:38 GMT
expires: Fri, 24 May 2024 13:02:21 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "5cadd1c2-5f"
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: s-udU9XYYI6DY0qU4C-LGPRdoSyRb8RbpAMKyZlNQjw876QmvonnEA==
age: 869598
X-Firefox-Spdy: h2
|
|
| cdn.cookielaw.org/scripttemplates/otSDKStub.js | 104.19.177.52 | 200 OK | 6.9 kB |
URL GET HTTP/2cdn.cookielaw.org/scripttemplates/otSDKStub.js IP104.19.177.52:443
CertificateIssuerCloudflare, Inc. Subjectcookielaw.org FingerprintC9:7F:A3:0A:53:6E:A6:6C:2F:D0:E2:2C:F5:35:B4:BC:81:90:40:31 ValidityFri, 01 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (21229) Hash0cd317a7b9c520801230e944f7d50e41 e3985ff0c2e8b1eaacb617c7c5af5bebfcbceda6 6f08699117c1f15f6d35e7b4380d12d18a1881f075e177b5853b1017a3307544
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 14:35:39 GMT
content-type: application/javascript
content-length: 6882
content-encoding: gzip
content-md5: cfMMgqnnnYda745QhUdJrw==
last-modified: Thu, 02 May 2024 18:04:40 GMT
etag: 0x8DC6AD2569D1DB7
x-ms-request-id: 81aa8688-601e-0010-3e74-9d778f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 80285
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e937f56a150b55-OSL
X-Firefox-Spdy: h2
|
|
| | 54.230.111.45 | 200 OK | 145 kB |
URL User Request GET HTTP/2IP54.230.111.45:443
CertificateIssuerDigiCert Inc Subject*.booking.com FingerprintC7:72:77:E2:B0:F2:0E:46:E1:DC:98:03:30:6C:05:F2:10:E1:02:36 ValidityWed, 01 May 2024 00:00:00 GMT - Tue, 25 Mar 2025 23:59:59 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (5978) Size145 kB (144719 bytes) Hash2044a47da2c63537e0b060126c314851 ddb6e3dc0c13792e43af69cfe72a21728cbc2640 4d3c338b076ba4e9eeab4898dae30f9fd7e6f5757926989a96e85d346fe8152e
GET / HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbXpFeYC4TUhAfCgx9gXBg4eyJKfuuYfkKNO6ASObvYEssPCO3DIzayugpqw3fu%2BWAInbww54R%2BdCxWHm09nJYZn7j9ykQ1c19q5W20Op2Pmf03QSZ3Uq3gcYrkwEKxKVK3O9HtYfHZpLnEGUKd9j2T7%2Btv0%2B7SDHu; bkng_sso_auth=CAIQsOnuTRpmvKlZYXYJUdjpVbdMvQwNjHrvsml6L4VkiK7tISGV++DO0XXfwqYqcvGv6N5B0jJ+At6IQOX9CzDigoeY7Dt/FQmXvzsPX5q9kGIjFfD+w/XIrSbe9Qmi3qompOLVKk1Ncna0zA0n; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3D047e10e5-e3e9-42f5-8d41-1b74123b97ba%26consentedAt%3D2024-05-04T14%3A35%3A38.319Z%26expiresAt%3D2024-10-31T14%3A35%3A38.319Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
server: nginx
date: Sat, 04 May 2024 14:35:38 GMT
cache-control: private
vary: Accept-Encoding, User-Agent
content-encoding: br
link: <https://cf.bstatic.com/static/css/gprof_icons_cloudfront_sd.iq_ltr/851d9d90e70b111207ec88dd198b5ea33b3330f9.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/incentives_cloudfront_sd.iq_ltr/f1558a6e9832a4eb8cfe1d3d14db176bd3564335.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/index_cloudfront_sd.iq_ltr/b376a4c8f7809544f3c3100ecadbc9b3ab82d340.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/main_cloudfront_sd.iq_ltr/20a6c256bf2f70ab749c365177dd554b83100a0a.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/main_exps_cloudfront_sd.iq_ltr/c4cea6cc4a62eba0342cfa9f4b20714a610dd010.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/5b5ab8ab66a5ce3092875d0725122439c4f2dfdd.css>; rel=preload; as=style
nel: {"max_age":604800,"report_to":"default"}
report-to: {"group":"default","max_age":604800,"endpoints":[{"url":"https://nellie.booking.com/report"}]}
set-cookie: _implmdnbl=2__1__0; path=/; expires=Mon, 06-May-2019 14:35:38 GMT; HttpOnly
px_init=0; domain=booking.com; expires=Sat, 05-Nov-2078 05:11:16 GMT; SameSite=Strict; secure; HttpOnly
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPedXipW9P%2Bn9MYWYmjSTOk7tlRnW%2BYurihW6uF4NqE0Zj1oDgS60ARakX9Ktpe7w%2BCQf%2BRgETSsisK%2BsydahBVbfBmNPR4P93MujHAlvxWC4XeJDhSnxzyRsfx72ZN%2BHcNf26Ggy7zJxo83DyxVVBDnv; domain=.booking.com; path=/; expires=Thu, 03-May-2029 14:35:38 GMT; Secure; HTTPOnly; SameSite=None
pcm_personalization_disabled=0; domain=booking.com; path=/; expires=Thu, 31-Oct-2024 14:35:38 GMT; Secure; HTTPOnly
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-recruiting: Like HTTP headers? Come write ours: https://careers.booking.com
x-terms-of-service: https://www.booking.com/content/terms.html
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3FIqlmNyAdxKVlmyH_dPUVPDqcdlNhbrl8kjruW3iqOoNB0L-0wQqg==
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/css/f41dcaf5.2d147025.chunk.css | 143.204.55.112 | 200 OK | 168 B |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/css/f41dcaf5.2d147025.chunk.css IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
Hasheeda5dd37765ed38629a2b5045df0596 8524510507034b7988377827324a597542b1c2df 46eaccbe6cea8abf35886171377406c2f001356a8191e260f99b786588ebe88a
GET /psb/capla/static/css/f41dcaf5.2d147025.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 168
date: Fri, 03 May 2024 16:51:00 GMT
last-modified: Fri, 03 May 2024 14:37:54 GMT
etag: "eeda5dd37765ed38629a2b5045df0596"
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: 4ArWE7JLb0jG2LjYxcgUhf0MLwDsu4qL
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: UWYx7toTyUzO7aDOtYzjNWH3m7ZT2h7j6bKK_zYjzs3ozC9e_emi_Q==
age: 78280
vary: Origin
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/static/css/gprof_icons_cloudfront_sd.iq_ltr/851d9d90e70b111207ec88dd198b5ea33b3330f9.css | 143.204.55.112 | 200 OK | 28 kB |
URL GET HTTP/2cf.bstatic.com/static/css/gprof_icons_cloudfront_sd.iq_ltr/851d9d90e70b111207ec88dd198b5ea33b3330f9.css IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hashdae3d23d11d452a14d5b43d39fda3537 458f3de294c17819136653e9780f1755034bebd8 372c3a9cf7a9619ce8e71c71dff3dafbf3883f1aa7cd1ecb44981ea5dba3d1cd
GET /static/css/gprof_icons_cloudfront_sd.iq_ltr/851d9d90e70b111207ec88dd198b5ea33b3330f9.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Sun, 28 Apr 2024 13:25:10 GMT
last-modified: Wed, 28 Feb 2024 12:32:03 GMT
expires: Tue, 28 May 2024 13:25:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: W/"65df27c3-29126"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: QgQjBdqJ6S5DlIOiC7HtxQuV-A-rA_tf13Z3-ngQdKfXcyF7ZMVzQQ==
age: 522629
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/static/js/error_catcher_bec_cloudfront_sd/0acd2ada6c74d5dec978a04ea837952bdf050cd2.js | 143.204.55.112 | 200 OK | 2.6 kB |
URL GET HTTP/2cf.bstatic.com/static/js/error_catcher_bec_cloudfront_sd/0acd2ada6c74d5dec978a04ea837952bdf050cd2.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (6155), with no line terminators Hash1e32438142fcd82e3c2aea1ec4900c2e 70f7f4732872c739c76969d77fe36d1d53333950 c3f06cf6ded52069a79551343aca5f2269a048cedb9fbacd3cfff7136980659c
GET /static/js/error_catcher_bec_cloudfront_sd/0acd2ada6c74d5dec978a04ea837952bdf050cd2.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 18 Apr 2024 02:01:56 GMT
last-modified: Wed, 21 Dec 2022 14:29:30 GMT
expires: Sat, 18 May 2024 02:01:56 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: W/"63a3184a-180b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: q486GDfuxD1SFCe34td3FVtSy9qnmgbh_w6pUqrWomDhAhu2YjTrxg==
age: 1427623
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/css/8067d7e4.25886bdc.chunk.css | 143.204.55.112 | 200 OK | 374 B |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/css/8067d7e4.25886bdc.chunk.css IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
Hash016566cf5ecce0a1e5c9c10bd57404ff 8ee2612610b3c7bf3508fd0fcd29b25edf5b10ac e38b7bd2a4207aaaf46438ebe2e49bcb7c98ec9c2225c5a8c805b66fa1e12823
GET /psb/capla/static/css/8067d7e4.25886bdc.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 374
last-modified: Thu, 02 May 2024 05:20:33 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: XflZlghWHJSdKQz96Seb_wpdRn3JNkXk
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 May 2024 18:18:12 GMT
etag: "016566cf5ecce0a1e5c9c10bd57404ff"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: YP95DvZ9MUSq2cdTbp41sx7eRd03S8Rjnyk9n8p9vTtD8iOYWV4p1Q==
age: 73048
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/js/4a89d2db.6c0ec4b3.chunk.js | 143.204.55.112 | 200 OK | 375 B |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/js/4a89d2db.6c0ec4b3.chunk.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text Hash71d148d7e362a60e9a0c56222e4c1c42 efa6833affafa5ee32cc538c0ee386673c92d169 eefd6838a88ff46efd00a91c0c63f124352bac2d328f583e87cafe87056aad31
GET /psb/capla/static/js/4a89d2db.6c0ec4b3.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 375
last-modified: Thu, 02 May 2024 14:18:22 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: RP1XS7ANYYqnLTjd_w3ILm90zcw1YOpj
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 May 2024 00:39:05 GMT
etag: "71d148d7e362a60e9a0c56222e4c1c42"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RE2MK5uHkdTns4_3Q2SJMpN87rpfqw0JT2sIRfukH1iVqcT5DRZg0w==
age: 50195
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/static/img/tfl/group_logos/logo_booking/27c8d1832de6a3123b6ee45b59ae2f81b0d9d0d0.png | 143.204.55.112 | 200 OK | 1.6 kB |
URL GET HTTP/2cf.bstatic.com/static/img/tfl/group_logos/logo_booking/27c8d1832de6a3123b6ee45b59ae2f81b0d9d0d0.png IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typePNG image data, 91 x 26, 8-bit/color RGBA, non-interlaced Hash3e32efd25ac0214b375fc8a6a32890f2 cd46a79db7e53e19d5869b3cb3e7aa22ee523479 807c8a1b498e17d227cf48a640b778bdc4398a9852493cb2f40bf0f33651d0dd
GET /static/img/tfl/group_logos/logo_booking/27c8d1832de6a3123b6ee45b59ae2f81b0d9d0d0.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1628
server: nginx
date: Thu, 18 Apr 2024 02:07:47 GMT
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
etag: "5cadd1d3-65c"
expires: Sat, 18 May 2024 02:07:47 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: egWV-TpIVmiXC_-sTqeqLGfGr6x-W10KRtrESzpOYM_uD5vHpOgkkQ==
age: 1427272
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/static/img/tfl/group_logos/logo_priceline/f80e129541f2a952d470df2447373390f3dd4e44.png | 143.204.55.112 | 200 OK | 1.6 kB |
URL GET HTTP/2cf.bstatic.com/static/img/tfl/group_logos/logo_priceline/f80e129541f2a952d470df2447373390f3dd4e44.png IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typePNG image data, 91 x 26, 8-bit colormap, non-interlaced Hashb6d0b31340d7a113f63b936e23d06f78 268e3856da737f7e56e679258949ef70ddde47f4 18c62988860a8ffd90bab6376b4fe36a723bd39403c420d3943aa3eb5a0029c5
GET /static/img/tfl/group_logos/logo_priceline/f80e129541f2a952d470df2447373390f3dd4e44.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1591
server: nginx
date: Wed, 10 Apr 2024 22:50:42 GMT
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
expires: Fri, 10 May 2024 22:50:42 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "5cadd1d3-637"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xAur3ZaUQFNG4asoW-fZKqu9b_BcJ21am094ELBBExnrT4TOT17RVA==
age: 2043897
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/static/img/tfl/group_logos/logo_kayak/83ef7122074473a6566094e957ff834badb58ce6.png | 143.204.55.112 | 200 OK | 1.2 kB |
URL GET HTTP/2cf.bstatic.com/static/img/tfl/group_logos/logo_kayak/83ef7122074473a6566094e957ff834badb58ce6.png IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typePNG image data, 79 x 26, 8-bit/color RGBA, non-interlaced Hash6384185cbe9a4f106857a3cb85caea98 0e31a4fe2ce98a8b4fda60687aa71079b4d3a95b 5839f0330821cf08029beddd6d248170da1af16cd7aff253e7bd075d591f5d42
GET /static/img/tfl/group_logos/logo_kayak/83ef7122074473a6566094e957ff834badb58ce6.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1154
server: nginx
date: Mon, 15 Apr 2024 09:33:28 GMT
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
expires: Wed, 15 May 2024 09:33:28 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "5cadd1d3-482"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: QGlVJboiudwQNo_a3n9OpQdW6dDzPT8rGI8Sqw63-UQ3Usa2UosnmA==
age: 1659731
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/js/63bff8e9.4864432d.chunk.js | 143.204.55.112 | 200 OK | 443 B |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/js/63bff8e9.4864432d.chunk.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (331) Hasha66afbfef1af9029cd7f664f0f3fcac4 c5c8f38763022f77b3c8230dc914b9c293be54f5 9a859ec86b152952569c2952534a3bb7366b588cee1f7da11bd6e45c771c915b
GET /psb/capla/static/js/63bff8e9.4864432d.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 443
last-modified: Fri, 03 May 2024 05:19:56 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: gJclGOLmOMoSjB1Jvv.GmH4riGguDP5_
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 May 2024 05:20:19 GMT
etag: "a66afbfef1af9029cd7f664f0f3fcac4"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: N5LtGLrdS572bkY6azazDk2HXUYlb7gYaZ-kKGDn0QAfB_diqb5hMA==
age: 33321
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/static/img/tfl/group_logos/logo_agoda/1c9191b6a3651bf030e41e99a153b64f449845ed.png | 143.204.55.112 | 200 OK | 2.1 kB |
URL GET HTTP/2cf.bstatic.com/static/img/tfl/group_logos/logo_agoda/1c9191b6a3651bf030e41e99a153b64f449845ed.png IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typePNG image data, 70 x 26, 8-bit/color RGBA, non-interlaced Hash27e71a5124018e16eae0b8897618623d d0d54d88b04edfc71f338c19eab9994632bc6ced 1d6e86e59ab7235a8343f494c8e8da6cc02c5a98a75d682401340e6d06935f20
GET /static/img/tfl/group_logos/logo_agoda/1c9191b6a3651bf030e41e99a153b64f449845ed.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2146
server: nginx
date: Tue, 09 Apr 2024 12:44:34 GMT
last-modified: Thu, 12 Mar 2020 10:15:57 GMT
expires: Thu, 09 May 2024 12:44:34 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "5e6a0bdd-862"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: OzmrW2PFbldnvDTmjWbtsx5X6q1dPNuy4xRDJvH2_2LcDnnvwDqG3A==
age: 2166665
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/static/img/tfl/group_logos/logo_opentable/a4b50503eda6c15773d6e61c238230eb42fb050d.png | 143.204.55.112 | 200 OK | 2.3 kB |
URL GET HTTP/2cf.bstatic.com/static/img/tfl/group_logos/logo_opentable/a4b50503eda6c15773d6e61c238230eb42fb050d.png IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typePNG image data, 95 x 26, 8-bit/color RGBA, non-interlaced Hashd05a0ab9bf394439a1584a2b0d44db5c 183c28023d3ba3358a7a5df1db887582ae5340ed b23272a9692c4ec3c020935917e9d096490876c976abec1290bd3cc9aae13974
GET /static/img/tfl/group_logos/logo_opentable/a4b50503eda6c15773d6e61c238230eb42fb050d.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2344
server: nginx
date: Mon, 15 Apr 2024 09:33:29 GMT
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
expires: Wed, 15 May 2024 09:33:29 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "5cadd1d3-928"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ZnvbFV62do3lVF6P12J_LA_6g6QCL-NYfKxBM20xyP90lQ_q52j1qw==
age: 1659730
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/xphoto/540x405/266633264.webp?k=7f9eb9bcfb7cd9189036fd6b28f51eb2373fb877f2b10681ae8abbb7a0c63613&o= | 143.204.55.112 | 200 OK | 36 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/xphoto/540x405/266633264.webp?k=7f9eb9bcfb7cd9189036fd6b28f51eb2373fb877f2b10681ae8abbb7a0c63613&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 540x405, Scaling: [none]x[none], YUV color, decoders should clamp Hash2734d49802304b58bd96baa315cf3d4c aa8a92ec31c4439eca9c03450caf1bd2f30ead1b fc88ac4859f8dc20571c0e75518c6f919069c94cc2e57a4c818fe697684e3c58
GET /xdata/images/xphoto/540x405/266633264.webp?k=7f9eb9bcfb7cd9189036fd6b28f51eb2373fb877f2b10681ae8abbb7a0c63613&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Thu, 11 Apr 2024 21:19:24 GMT
etag: "fd71ca1d4ae81d5c5ce8bc184e9100bca098389a"
content-language: 33502
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: DSeJxACSzO4547lLRHb705ZxpVUfn0NKndaLHMWxYZedIq5NDcZ-kA==
age: 1962975
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/static/css/main_exps_cloudfront_sd.iq_ltr/c4cea6cc4a62eba0342cfa9f4b20714a610dd010.css | 143.204.55.112 | 200 OK | 30 kB |
URL GET HTTP/2cf.bstatic.com/static/css/main_exps_cloudfront_sd.iq_ltr/c4cea6cc4a62eba0342cfa9f4b20714a610dd010.css IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash5fb437a50d4157ccab9dd95f29cab05e 9807cf3919edbeb9cdd541f487c90f9fd89a18fa 490060aab13b9e2240a32e60d539396d602ec3df52e0c574df5baf3bd44f8bd1
GET /static/css/main_exps_cloudfront_sd.iq_ltr/c4cea6cc4a62eba0342cfa9f4b20714a610dd010.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Sun, 28 Apr 2024 13:25:10 GMT
last-modified: Wed, 28 Feb 2024 12:32:03 GMT
expires: Tue, 28 May 2024 13:25:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: W/"65df27c3-216e5"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ECm8S90O3z8iOPtl7diaBhGQdV5cJ2QtJzto7M9zy2rOYo9LXB9ZrA==
age: 522629
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/css/282e5b08.820b9364.chunk.css | 143.204.55.112 | 200 OK | 42 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/css/282e5b08.820b9364.chunk.css IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typegzip compressed data, from Unix Hashd6ab115441bd928033e432ae372295d1 34fbc41cb363192c44a4670f05624f6d95f779a5 144897b60b250f64c7a1e70445169f3d48ecd1532c48d2cd44a3742018cd97fb
GET /psb/capla/static/css/282e5b08.820b9364.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Fri, 03 May 2024 16:16:51 GMT
last-modified: Fri, 03 May 2024 14:37:54 GMT
etag: W/"5d0099a8b1145841f1e0acf7f4411552"
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: 2DEveIjGLnS8cthG_1aZpSRyerdG3c7r
server: AmazonS3
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7L0S-_aiMbh7Eix2c2z-cTiVVU91tx_XStPbfVnwkXrYMQBCJX52oQ==
age: 80329
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| t-cf.bstatic.com/design-assets/assets/v3.81.0/fonts-brand/BookingRegular.woff | 143.204.55.112 | 200 OK | 40 kB |
URL GET HTTP/2t-cf.bstatic.com/design-assets/assets/v3.81.0/fonts-brand/BookingRegular.woff IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeWeb Open Font Format, TrueType, length 40120, version 2.0 Hashf2953af89807609f49b87237180bb450 bcef01e9e586a9a6c567602272c1a7955b77b0ca b02a3f6dfeb4ebf05d30eaecc8473664f1720190639cbfe43b2a7f9a00246e56
GET /design-assets/assets/v3.81.0/fonts-brand/BookingRegular.woff HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://cf.bstatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: font/woff
content-length: 40120
last-modified: Tue, 25 Jul 2023 15:38:06 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 May 2024 01:59:24 GMT
etag: "f2953af89807609f49b87237180bb450"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: K-BjWHXRXQEWyWpreoW8-1RMr9MA43peDscIBLpX2KzoymuLwxPjYw==
age: 46387
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/static/css/index_cloudfront_sd.iq_ltr/b376a4c8f7809544f3c3100ecadbc9b3ab82d340.css | 143.204.55.112 | 200 OK | 93 kB |
URL GET HTTP/2cf.bstatic.com/static/css/index_cloudfront_sd.iq_ltr/b376a4c8f7809544f3c3100ecadbc9b3ab82d340.css IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash48b5eba05a92f0ff4dc9e7366a74165f 8bbb41f6480b0de9350386afd77291b87dcc334c 6ce8cf8eaa84bc93a7dda9710e9d63ef318b0697d6dc1e7492c90ea85fc13926
GET /static/css/index_cloudfront_sd.iq_ltr/b376a4c8f7809544f3c3100ecadbc9b3ab82d340.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Fri, 12 Apr 2024 08:57:10 GMT
last-modified: Wed, 28 Feb 2024 12:32:03 GMT
expires: Sun, 12 May 2024 08:57:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: W/"65df27c3-55577"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: fIC_GAk9ahzKVkS_i7ch_ejbhvMprXGokSbb_8HUG0QAtnBZ_ov-Ng==
age: 1921109
X-Firefox-Spdy: h2
|
|
| t-cf.bstatic.com/design-assets/assets/v3.109.0/images-flags/Us@3x.png | 143.204.55.112 | 200 OK | 950 B |
URL GET HTTP/2t-cf.bstatic.com/design-assets/assets/v3.109.0/images-flags/Us@3x.png IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typePNG image data, 72 x 72, 8-bit colormap, non-interlaced Hash025b409525836b9e0913038b2556d2cf 187b28fad3a710b3712b56e53be8fc4e142d9abc bf146c2fcd8c33fdea4570acc5f92bc73b337b1efbbb2c318089f7bea5396672
GET /design-assets/assets/v3.109.0/images-flags/Us@3x.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 950
last-modified: Tue, 05 Dec 2023 13:24:05 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 May 2024 01:08:18 GMT
etag: "025b409525836b9e0913038b2556d2cf"
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -mEf8istLo7MOSNxulHMrT2U9EkmkWEOe8vzaLPVthqPldAVKmH9ZA==
age: 83700
vary: Origin
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/static/img/favicon/4a3b40c4059be39cbf1ebaa5f97dbb7d150926b9.png | 143.204.55.112 | 200 OK | 3.3 kB |
URL GET HTTP/2cf.bstatic.com/static/img/favicon/4a3b40c4059be39cbf1ebaa5f97dbb7d150926b9.png IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typePNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced Hash799af703ff428e33a7db434613c9c030 75648638d71e25179744da725db599612e6d983e 6d71962600b1166ed95cf3f5af9298da2d3cd134466350b41202eb1dd17447c8
GET /static/img/favicon/4a3b40c4059be39cbf1ebaa5f97dbb7d150926b9.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 3323
server: nginx
date: Sun, 28 Apr 2024 04:49:08 GMT
last-modified: Thu, 29 Jun 2023 10:02:49 GMT
expires: Tue, 28 May 2024 04:49:08 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "649d56c9-cfb"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3dyBY1azzqETp2_lgYGDdE68xA4HNa70ZMKFerMT_IFi_-I2SOYTRQ==
age: 553592
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/static/js/landingpage_cloudfront_sd/4417f0cf113c3ec51a8190be88e7c373a6d9295d.js | 143.204.55.112 | 200 OK | 68 kB |
URL GET HTTP/2cf.bstatic.com/static/js/landingpage_cloudfront_sd/4417f0cf113c3ec51a8190be88e7c373a6d9295d.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (51645) Hash261cd9524de1941c0adbbc5ab40e071f b1d444cb7950cdaba1a586656133d83230716535 90217691ef650ad862929297ef8a897d5fed3d2a44b042274c20b0529907e375
GET /static/js/landingpage_cloudfront_sd/4417f0cf113c3ec51a8190be88e7c373a6d9295d.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Sat, 20 Apr 2024 09:45:23 GMT
last-modified: Wed, 20 Sep 2023 10:48:00 GMT
expires: Mon, 20 May 2024 09:45:23 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: W/"650acde0-55863"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: prNC2gzNp70uCVJeDv2mJ12fFVPNdfhl_SGbydLB13xW-bM87LaPtw==
age: 1227016
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/xphoto/540x405/288300879.webp?k=20a291605b4d1cc6c15b1ee3f9598c22ddb81a8d5ed73135330e426f8d2b9629&o= | 143.204.55.112 | 200 OK | 34 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/xphoto/540x405/288300879.webp?k=20a291605b4d1cc6c15b1ee3f9598c22ddb81a8d5ed73135330e426f8d2b9629&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 540x405, Scaling: [none]x[none], YUV color, decoders should clamp Hashc131a8df102f55e71ef681dc2f013be0 9784d1184395e0d153253ceea93be1f29f855f26 858ed10112187550225cceace051bdd146540d8fd05b59e45196601aa41b1061
GET /xdata/images/xphoto/540x405/288300879.webp?k=20a291605b4d1cc6c15b1ee3f9598c22ddb81a8d5ed73135330e426f8d2b9629&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Mon, 15 Apr 2024 07:14:58 GMT
content-language: 33828
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "295b294e3a0689b395787df4e43c129bf4669e6d"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hpq2SRAUxAuURfDmdIkMxPsvBajOGi3jYEv13lDuHp_eESslFojG7Q==
age: 1668041
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/css/b9a82cb8.c62928a4.chunk.css | 143.204.55.112 | 200 OK | 374 B |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/css/b9a82cb8.c62928a4.chunk.css IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
Hashd4cb397172a601054d15e416b713f8b5 162c867ed5844026ad8ee199e3fca6cffe035d78 ff95def5529ada643fd4b60ea36b338ec8dda2f277c4238430cde9ba13eb89ec
GET /psb/capla/static/css/b9a82cb8.c62928a4.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 374
last-modified: Thu, 02 May 2024 05:19:31 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: MNxJHcDDNAeo1AQais.u0J85gpaURV53
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 May 2024 22:47:15 GMT
etag: "d4cb397172a601054d15e416b713f8b5"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rHXQAZ1koXNcZF0beXFlle74T0Kb_Sx-cTz1muoukurvDVmREPck5g==
age: 56907
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/js/3c29a897.dce7e67d.chunk.js | 143.204.55.112 | 200 OK | 12 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/js/3c29a897.dce7e67d.chunk.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typegzip compressed data, from Unix Hash0cf0f43258e39874ae9f06503f4f63f4 2b945a37fbc02c062b515cf4d22c43f099efdf6b 7916fde0575007def660d6dccd2d533d61cfb9e5710db552de70609a31627d17
GET /psb/capla/static/js/3c29a897.dce7e67d.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 02 May 2024 12:39:35 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: 347WxTSXVIkD6F.KXulCINiLrYQbUB5h
server: AmazonS3
content-encoding: gzip
date: Fri, 03 May 2024 18:18:12 GMT
etag: W/"1123aa748b6d9f96d6a404f3d006bff3"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: CB2jV5QP4Y4o56YZk6StTNa875s6LuE77QbPDcR_BF2yrLOgqPYOVA==
age: 73049
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/static/js/index_cloudfront_sd/e64ce34a683735e0f27e41e3d22d10a6c576e920.js | 143.204.55.112 | 200 OK | 7.3 kB |
URL GET HTTP/2cf.bstatic.com/static/js/index_cloudfront_sd/e64ce34a683735e0f27e41e3d22d10a6c576e920.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (23732), with no line terminators Hash209dc9b30dcd3b727078b4f7fc68d0af a74ae8f860b1d9c5302e255c710fa703e47e02c4 8e984299f527fa22171bb69828e972113f4b4f5acb1de47da9027cd9452125f2
GET /static/js/index_cloudfront_sd/e64ce34a683735e0f27e41e3d22d10a6c576e920.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 02 May 2024 12:14:01 GMT
last-modified: Wed, 01 May 2024 14:05:24 GMT
etag: W/"66324c24-5cb4"
expires: Sat, 01 Jun 2024 12:14:01 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: UMFY08GowlZTVBCrq-KRo3_M1tLsrtyNFHHUwRwemJBLGnnOQU7pHg==
age: 181298
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/xphoto/540x405/281113733.webp?k=43768154acdf2261706ad890b1e6196e0b261f88de846c23d3bf5693de202238&o= | 143.204.55.112 | 200 OK | 64 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/xphoto/540x405/281113733.webp?k=43768154acdf2261706ad890b1e6196e0b261f88de846c23d3bf5693de202238&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 540x405, Scaling: [none]x[none], YUV color, decoders should clamp Hash484a7d60ca18590a28cc27335f367102 53947bc7219754a68cf38937a2039ce8c59fe910 ae116b03718ba2d353e1f5830b50ee0517db9b3beda3f5b061beeeed42a8243f
GET /xdata/images/xphoto/540x405/281113733.webp?k=43768154acdf2261706ad890b1e6196e0b261f88de846c23d3bf5693de202238&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Mon, 08 Apr 2024 08:16:27 GMT
content-language: 49288
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "fade909831cdda8e557d517b4aec62b3721f38e5"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: SXHOz_Kdr4faAPcZf6l3Wq1QTUP3F0jdIXSNqQva5k0qZAa6xW57qA==
age: 2269152
X-Firefox-Spdy: h2
|
|
| accommodations.booking.com/orca/chunk-metadata?chunk=3c29a897&mfe=b-index-lp-web-mfe&lang=en-us&namespace=GbTNLDRX | 54.230.111.53 | 200 OK | 0 B |
URL OPTIONS HTTP/2accommodations.booking.com/orca/chunk-metadata?chunk=3c29a897&mfe=b-index-lp-web-mfe&lang=en-us&namespace=GbTNLDRX IP54.230.111.53:443
CertificateIssuerDigiCert Inc Subject*.booking.com FingerprintC7:72:77:E2:B0:F2:0E:46:E1:DC:98:03:30:6C:05:F2:10:E1:02:36 ValidityWed, 01 May 2024 00:00:00 GMT - Tue, 25 Mar 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /orca/chunk-metadata?chunk=3c29a897&mfe=b-index-lp-web-mfe&lang=en-us&namespace=GbTNLDRX HTTP/1.1
Host: accommodations.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-booking-et-serialized-state
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 0
server: nginx
date: Sat, 04 May 2024 14:35:41 GMT
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
vary: Origin
access-control-allow-headers: x-booking-et-serialized-state
access-control-allow-methods: HEAD,OPTIONS,GET,POST
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
x-xss-protection: 1; mode=block
strict-transport-security: max-age=2592000; includeSubDomains
x-cache: Miss from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ubOwy-msxBO0FiEHZHQubJQQRwq3YD4nLJW9pltkpu4jPorVYjj8Pg==
X-Firefox-Spdy: h2
|
|
| accommodations.booking.com/orca/chunk-metadata?chunk=b9a82cb8&mfe=b-index-lp-web-mfe&lang=en-us&namespace=ZWJQSUBX | 54.230.111.53 | 200 OK | 0 B |
URL GET HTTP/2accommodations.booking.com/orca/chunk-metadata?chunk=b9a82cb8&mfe=b-index-lp-web-mfe&lang=en-us&namespace=ZWJQSUBX IP54.230.111.53:443
CertificateIssuerDigiCert Inc Subject*.booking.com FingerprintC7:72:77:E2:B0:F2:0E:46:E1:DC:98:03:30:6C:05:F2:10:E1:02:36 ValidityWed, 01 May 2024 00:00:00 GMT - Tue, 25 Mar 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /orca/chunk-metadata?chunk=b9a82cb8&mfe=b-index-lp-web-mfe&lang=en-us&namespace=ZWJQSUBX HTTP/1.1
Host: accommodations.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-booking-et-serialized-state
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 0
server: nginx
date: Sat, 04 May 2024 14:35:41 GMT
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-credentials: true
access-control-allow-methods: HEAD,OPTIONS,GET,POST
access-control-allow-headers: x-booking-et-serialized-state
vary: Origin
access-control-allow-origin: https://www.booking.com
x-xss-protection: 1; mode=block
strict-transport-security: max-age=2592000; includeSubDomains
x-cache: Miss from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: FaPvy3Xxm1LC_IksAGgbaBNaM4z0X-aUbnm1Q3gNEFRfT5GnwJY_4A==
X-Firefox-Spdy: h2
|
|
| accommodations.booking.com/orca/chunk-metadata?chunk=51ee1383&mfe=b-index-lp-web-mfe&lang=en-us&namespace=ZWJQSUBX | 54.230.111.53 | 200 OK | 0 B |
URL OPTIONS HTTP/2accommodations.booking.com/orca/chunk-metadata?chunk=51ee1383&mfe=b-index-lp-web-mfe&lang=en-us&namespace=ZWJQSUBX IP54.230.111.53:443
CertificateIssuerDigiCert Inc Subject*.booking.com FingerprintC7:72:77:E2:B0:F2:0E:46:E1:DC:98:03:30:6C:05:F2:10:E1:02:36 ValidityWed, 01 May 2024 00:00:00 GMT - Tue, 25 Mar 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /orca/chunk-metadata?chunk=51ee1383&mfe=b-index-lp-web-mfe&lang=en-us&namespace=ZWJQSUBX HTTP/1.1
Host: accommodations.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-booking-et-serialized-state
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 0
server: nginx
date: Sat, 04 May 2024 14:35:41 GMT
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-headers: x-booking-et-serialized-state
access-control-allow-methods: HEAD,OPTIONS,GET,POST
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
vary: Origin
x-xss-protection: 1; mode=block
strict-transport-security: max-age=2592000; includeSubDomains
x-cache: Miss from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hvUE8rKsH8_e5DI9DrlhND7r_as3a0XXcHYG8F8Aha_CHsXd3FnmBg==
X-Firefox-Spdy: h2
|
|
| cdn.cookielaw.org/scripttemplates/202403.2.0/otBannerSdk.js | 104.19.177.52 | 200 OK | 111 kB |
URL GET HTTP/2cdn.cookielaw.org/scripttemplates/202403.2.0/otBannerSdk.js IP104.19.177.52:443
CertificateIssuerCloudflare, Inc. Subjectcookielaw.org FingerprintC9:7F:A3:0A:53:6E:A6:6C:2F:D0:E2:2C:F5:35:B4:BC:81:90:40:31 ValidityFri, 01 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Size111 kB (110887 bytes) Hashfa5c95d8306a66b4eb13eef3a634f8e1 534157a808dc08f7cabfbd36967566f03dbabf3d 7e90effe2c4b60df553e50c5e65bcf113ad7a2ddf3d5e7a594f2b8a9ccfd4523
GET /scripttemplates/202403.2.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 14:35:41 GMT
content-type: application/javascript
content-length: 110887
content-encoding: gzip
content-md5: NaqcG2ILVJmSrG/q1ZpJ7w==
last-modified: Mon, 22 Apr 2024 06:06:18 GMT
etag: 0x8DC62925356D668
x-ms-request-id: c839b996-c01e-001f-188e-948a87000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 76152
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e937ff7d1d0b55-OSL
X-Firefox-Spdy: h2
|
|
| accommodations.booking.com/orca/chunk-metadata?chunk=915bfb5a&mfe=b-index-lp-web-mfe&lang=en-us&namespace=ZWJQSUBX | 54.230.111.53 | 200 OK | 25 kB |
URL GET HTTP/2accommodations.booking.com/orca/chunk-metadata?chunk=915bfb5a&mfe=b-index-lp-web-mfe&lang=en-us&namespace=ZWJQSUBX IP54.230.111.53:443
CertificateIssuerDigiCert Inc Subject*.booking.com FingerprintC7:72:77:E2:B0:F2:0E:46:E1:DC:98:03:30:6C:05:F2:10:E1:02:36 ValidityWed, 01 May 2024 00:00:00 GMT - Tue, 25 Mar 2025 23:59:59 GMT
File typeNew Line Delimited JSON text data Hashc68a841507a0c94ea119fa06962a6953 7f515c5b9f96205f7e16a422997695cfeb3d49b2 284af3743b22dea787c87ec00a3ff63b0f8651b32c8d4415636c722ee7f6395a
GET /orca/chunk-metadata?chunk=915bfb5a&mfe=b-index-lp-web-mfe&lang=en-us&namespace=ZWJQSUBX HTTP/1.1
Host: accommodations.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
x-booking-et-serialized-state: EWgc6NMBRz9r0zuNuUpuhpWTZAZqeNJXOa0BC7SNFY1SHMRGMzSaNeZU73V2suoyV
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPedXipW9P%2Bn9MYWYmjSTOk7tlRnW%2BYurihW6uF4NqE0Zj1oDgS60ARakX9Ktpe7w%2BCQf%2BRgETSsisK%2BsydahBVbfBmNPR4P93MujHAlvxWC4XeJDhSnxzyRsfx72ZN%2BHcNf26Ggy7zJxo83DyxVVBDnv; bkng_sso_auth=CAIQsOnuTRpmvKlZYXYJUdjpVbdMvQwNjHrvsml6L4VkiK7tISGV++DO0XXfwqYqcvGv6N5B0jJ+At6IQOX9CzDigoeY7Dt/FQmXvzsPX5q9kGIjFfD+w/XIrSbe9Qmi3qompOLVKk1Ncna0zA0n; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3D047e10e5-e3e9-42f5-8d41-1b74123b97ba%26consentedAt%3D2024-05-04T14%3A35%3A38.319Z%26expiresAt%3D2024-10-31T14%3A35%3A38.319Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; px_init=0; pcm_personalization_disabled=0; cors_js=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json
server: nginx
date: Sat, 04 May 2024 14:35:41 GMT
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.booking.com
vary: Accept-Encoding
access-control-allow-credentials: true
referrer-policy: no-referrer
content-encoding: gzip
x-xss-protection: 1; mode=block
strict-transport-security: max-age=2592000; includeSubDomains
x-cache: Miss from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hIoZXPolUOULLZyMmAuVN02uHHx3y_VRoRzBHVobBMpvXZBJokxatg==
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/static/css/fonticons_clean/base64/woff/5d61b8a7156073e5e3e9741f65dda44ae3eef7d2.css | 143.204.55.112 | 200 OK | 109 kB |
URL GET HTTP/2cf.bstatic.com/static/css/fonticons_clean/base64/woff/5d61b8a7156073e5e3e9741f65dda44ae3eef7d2.css IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeASCII text, with very long lines (65487) Size109 kB (108641 bytes) Hashcad5fe4c499f7568e14e7ab6ff9b3361 7cf66966b26c499b535efd53c77f65df7da14338 83f4228d1d92171186e8b8ccce6e69b32ad6b322db4af7e4b6f54ce50e299587
GET /static/css/fonticons_clean/base64/woff/5d61b8a7156073e5e3e9741f65dda44ae3eef7d2.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Fri, 26 Apr 2024 15:04:29 GMT
last-modified: Wed, 10 Apr 2019 11:21:48 GMT
etag: W/"5cadd1cc-375af"
expires: Sun, 26 May 2024 15:04:29 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: d_n8JN1VBqdhsoh3EoDhe-u0oYMEj7a_UTxDnoOQElK3o_LknAVDBw==
age: 689472
X-Firefox-Spdy: h2
|
|
| accommodations.booking.com/orca/chunk-metadata?chunk=51ee1383&mfe=b-index-lp-web-mfe&lang=en-us&namespace=ZWJQSUBX | 54.230.111.53 | 200 OK | 148 kB |
URL OPTIONS HTTP/2accommodations.booking.com/orca/chunk-metadata?chunk=51ee1383&mfe=b-index-lp-web-mfe&lang=en-us&namespace=ZWJQSUBX IP54.230.111.53:443
CertificateIssuerDigiCert Inc Subject*.booking.com FingerprintC7:72:77:E2:B0:F2:0E:46:E1:DC:98:03:30:6C:05:F2:10:E1:02:36 ValidityWed, 01 May 2024 00:00:00 GMT - Tue, 25 Mar 2025 23:59:59 GMT
File typegzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT) Size148 kB (148259 bytes) Hashadbd611672bfc85a984f26c1f5f679ab 96b4a7eefb4b012671445de4f0b906eea1116cb4 fb8fc40cd384f009ded90dfd3ebf94dea2225a8b9a0ae36a5c9f1dc69af5eed0
GET /orca/chunk-metadata?chunk=51ee1383&mfe=b-index-lp-web-mfe&lang=en-us&namespace=ZWJQSUBX HTTP/1.1
Host: accommodations.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
x-booking-et-serialized-state: EWgc6NMBRz9r0zuNuUpuhpWTZAZqeNJXOa0BC7SNFY1SHMRGMzSaNeZU73V2suoyV
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPedXipW9P%2Bn9MYWYmjSTOk7tlRnW%2BYurihW6uF4NqE0Zj1oDgS60ARakX9Ktpe7w%2BCQf%2BRgETSsisK%2BsydahBVbfBmNPR4P93MujHAlvxWC4XeJDhSnxzyRsfx72ZN%2BHcNf26Ggy7zJxo83DyxVVBDnv; bkng_sso_auth=CAIQsOnuTRpmvKlZYXYJUdjpVbdMvQwNjHrvsml6L4VkiK7tISGV++DO0XXfwqYqcvGv6N5B0jJ+At6IQOX9CzDigoeY7Dt/FQmXvzsPX5q9kGIjFfD+w/XIrSbe9Qmi3qompOLVKk1Ncna0zA0n; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3D047e10e5-e3e9-42f5-8d41-1b74123b97ba%26consentedAt%3D2024-05-04T14%3A35%3A38.319Z%26expiresAt%3D2024-10-31T14%3A35%3A38.319Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; px_init=0; pcm_personalization_disabled=0; cors_js=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json
server: nginx
date: Sat, 04 May 2024 14:35:41 GMT
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-credentials: true
vary: Accept-Encoding
access-control-allow-origin: https://www.booking.com
referrer-policy: no-referrer
content-encoding: gzip
x-xss-protection: 1; mode=block
strict-transport-security: max-age=2592000; includeSubDomains
x-cache: Miss from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pSMdcaQo39CRxpgOWfnYV7DGFnFGMeH1yJdqnU_0qE_14plKgAhNaQ==
X-Firefox-Spdy: h2
|
|
| r-xx.bstatic.com/xdata/images/xphoto/714x300/316455553.jpeg?k=33c0362560b6aa7ff9ba2afc3ef8d120728107cf56cd1c006fcf0da8c1821735&o= | 143.204.55.112 | 200 OK | 49 kB |
URL GET HTTP/2r-xx.bstatic.com/xdata/images/xphoto/714x300/316455553.jpeg?k=33c0362560b6aa7ff9ba2afc3ef8d120728107cf56cd1c006fcf0da8c1821735&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 714x300, components 3 Hashfbd5dc15b4fbc2430e62eeff87e2e822 a82a57fa8f0d487d9d44fe2a8873506e5bb4eabb 97f69ceedc736b8f640e5766c02efdcfba4b728a572d4eaa77475650b9245eeb
GET /xdata/images/xphoto/714x300/316455553.jpeg?k=33c0362560b6aa7ff9ba2afc3ef8d120728107cf56cd1c006fcf0da8c1821735&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-language: 29725
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Fri, 12 Apr 2024 09:45:12 GMT
cache-control: max-age=2592000
etag: "5b80b753d41f161d6177b49c93a30481ddafbb2a"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zqtW2XTiFZCXyM4XycokllhyjMhiY56T492WvhrR4_kOBX-FvqUZVg==
age: 1918229
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/media/bh_aw_cpg_main_image.b4347622.png | 143.204.55.112 | 200 OK | 62 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/media/bh_aw_cpg_main_image.b4347622.png IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typePNG image data, 714 x 471, 8-bit/color RGBA, non-interlaced Hashd8c78bb4aa47ab6ae3df9d9e2fd9501e 8c959e1da33c4eee451ef13e2cd0f8b2327b7f76 34643ff9ca4b3ea1209f72b31dfcf85c0d23a9d389766bd908eff7a8dfd51f8a
GET /psb/capla/static/media/bh_aw_cpg_main_image.b4347622.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 62401
date: Fri, 03 May 2024 16:16:52 GMT
last-modified: Fri, 03 May 2024 14:37:55 GMT
etag: "d8c78bb4aa47ab6ae3df9d9e2fd9501e"
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: B7T16FFHgVf.VZL6dI4PVtxdyGZBnOuc
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: GMst7h-IKc34Qsqard_bA4Zcx-5tmT1-5A9m1lf5iVD8yIEeljeSMA==
age: 80331
vary: Origin
X-Firefox-Spdy: h2
|
|
| r-xx.bstatic.com/xdata/images/xphoto/714x300/316455553.jpeg?k=33c0362560b6aa7ff9ba2afc3ef8d120728107cf56cd1c006fcf0da8c1821735&o= | 143.204.55.112 | 200 OK | 49 kB |
URL GET HTTP/2r-xx.bstatic.com/xdata/images/xphoto/714x300/316455553.jpeg?k=33c0362560b6aa7ff9ba2afc3ef8d120728107cf56cd1c006fcf0da8c1821735&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 714x300, components 3 Hashfbd5dc15b4fbc2430e62eeff87e2e822 a82a57fa8f0d487d9d44fe2a8873506e5bb4eabb 97f69ceedc736b8f640e5766c02efdcfba4b728a572d4eaa77475650b9245eeb
GET /xdata/images/xphoto/714x300/316455553.jpeg?k=33c0362560b6aa7ff9ba2afc3ef8d120728107cf56cd1c006fcf0da8c1821735&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-language: 29725
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Fri, 12 Apr 2024 09:45:12 GMT
cache-control: max-age=2592000
etag: "5b80b753d41f161d6177b49c93a30481ddafbb2a"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: IrshgIpm8y3Lz2lzZf3ZbR5nbyvpsyo9H2-YfSa68e4mDpmQF84D0A==
age: 1918230
X-Firefox-Spdy: h2
|
|
| www.booking.com/js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=0819669da254000b&ete=&etg=web_shell_ux_header_view,web_shell_ux_header_view_www_non_logged_in&etcg=cCHObVZMYCMKdFEVJTNIKdFHaO|1,cCHObVZMYCMKdFEVJTNIKdFHaO|3,cCHObEfEITNPfbeQMIaWYUQJFFQccCcCcCC|1&ets=cCHObTULHfAFFQZcfHSdFaLbFFRURURHe|1,dDfPWPHDDZSOBJbKYfNIfPTDWe|1,YTTHbXeeVJWcFKJPFNJQVVEbMKXe|1,YTTHbXeeVJWcFKJPFNJQVVEbMKXe|5,aXTfOFJZMYeKTcABVYUfFdHMPVWCGTQJQJET|1,aXTfOFJZMYeKTcABVYUfFdHMPVWCGTQJQJET|2,aXTfMZMYeKTcNGEcfFdHMPVUPHET|1,TZUfONebEWAUFccRMVIZdRRT|1,aXTfMZMYeKTcNGEcfFdHMPVUPHET|3,NAFLeOeJHSCQQGPLUPHBeZdRNYYdTUWe|1,HVQeYFRURURYDEZREWQUQeFADDbddJKe|1,TWULdKJBYWKVDEZREHDWNHXdJTaJBaMEAKe|1,TWULdKJBYWKVDEZREHDWNHXdJTaJBaMEAKe|3,cCHObVZMYCMKdFEVJTNIKdFHaO|1,cCHObVZMYCMKdFEVJTNIKdFHaO|3,NAFLeOeJcQEcVOdWNeYZdfdbJae|1,NAFLeOeJabUZFQbMWKZETTeMcCcCcCC|1,NAFLeOeJVCMcQEcVOdWNeYZaTaTaET|1,NAFLeOeJcLMbFQbMWKZETTeMcCcCcCC|1,NAFLeOeJcLdYZGQDaRNFOSeDdKNKNKWe|1,NAFLeOeJaMSPdGFdICFHUeUdLOLOLMO|1,cCHObKdBdUHINPSXeHDALOLOLMO|1,cCHObKdBdUHINPSXeHDALOLOLMO|5,cCeIVOMPWAEeIcFARSYSbZDQSXbaTaTaET|3,cCeIVOOLfOECVVDFRURURHe|1,cCeIVOOLfOECVVDFRURURHe|2,cCHOGcbREDEZRdRERJBHAOeVATZdSGWFRURURHe|1,cCeIVOAPEbSccEZVACdKNKNKWe|1,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|1,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|1,cCHObdRdJJVdfUSCEcdNHMddKNKNKWe|1,cCHObdRdJJVdfUJGFDSeBcZFLMFRURURHe|1,cCHObdRdJJVdfUJGFDSeBcZFLMFRURURHe|3,cCeIVOTeJUNSMTfIMLebaTaTaET|1,cCeIVOTeJUNSMTaSdNdKNKNKWe|1,cCHOGAQHSMSXUDeLcffIVXBPKAFRURURHe|1,cCHOGAQHSMSXUDeLcffIVXBPKAFRURURHe|5,cCHOGAQPXafJCfSFeMZXZAQeRfXPRQNIKdFHaO|1,cCHObKdBZXZAVCMIQRMebfTIbRZaTaTaET|1,cCeIVOdJEVOAeZTbQNPcZRALOLOLMO|1,cCeIVOIYcYCcTUDQZaTaTaET|1,cCHObCBWaEdIPPSfDcXLYSfDccCcCcCC|2,NAFLeOeJcQEcVOdWNeYZdfdbJae|2,NAFLeOeJcQEcVOdWNeYZdfdbJae|4,NAFLeOeJabUZFQbMWKZETTeMcCcCcCC|2,NAFLeOeJabUZFQbMWKZETTeMcCcCcCC|4,NAFLeOeJVCMcQEcVOdWNeYZaTaTaET|2,NAFLeOeJVCMcQEcVOdWNeYZaTaTaET|4,NAFLeOeJcLMbFQbMWKZETTeMcCcCcCC|2,NAFLeOeJcLMbFQbMWKZETTeMcCcCcCC|4,NAFLeOeJcLdYZGQDaRNFOSeDdKNKNKWe|2,NAFLeOeJcLdYZGQDaRNFOSeDdKNKNKWe|4,NAFLeOeJaMSPdGFdICFHUeUdLOLOLMO|2,NAFLeOeJaMSPdGFdICFHUeUdLOLOLMO|4,cCHObVZMYCMKdFEVJTNIKdFHaO|4,cCHObVZMYCMKdFEVJTNIKdFHaO|6,cCHObKdPHMfFdHMEKBOcaGPaAHFHDQIC|9,cCeIVOOLfOECVVDFRURURHe|3,cCeIVOdJEVOAeZTbQNPcZRALOLOLMO|2,cCeIVOTeJUNSMTfIMLebaTaTaET|2,cCeIVOTeJUNSMTaSdNdKNKNKWe|2&etgwv= | 54.230.111.45 | 200 OK | 35 B |
URL GET HTTP/2www.booking.com/js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=0819669da254000b&ete=&etg=web_shell_ux_header_view,web_shell_ux_header_view_www_non_logged_in&etcg=cCHObVZMYCMKdFEVJTNIKdFHaO|1,cCHObVZMYCMKdFEVJTNIKdFHaO|3,cCHObEfEITNPfbeQMIaWYUQJFFQccCcCcCC|1&ets=cCHObTULHfAFFQZcfHSdFaLbFFRURURHe|1,dDfPWPHDDZSOBJbKYfNIfPTDWe|1,YTTHbXeeVJWcFKJPFNJQVVEbMKXe|1,YTTHbXeeVJWcFKJPFNJQVVEbMKXe|5,aXTfOFJZMYeKTcABVYUfFdHMPVWCGTQJQJET|1,aXTfOFJZMYeKTcABVYUfFdHMPVWCGTQJQJET|2,aXTfMZMYeKTcNGEcfFdHMPVUPHET|1,TZUfONebEWAUFccRMVIZdRRT|1,aXTfMZMYeKTcNGEcfFdHMPVUPHET|3,NAFLeOeJHSCQQGPLUPHBeZdRNYYdTUWe|1,HVQeYFRURURYDEZREWQUQeFADDbddJKe|1,TWULdKJBYWKVDEZREHDWNHXdJTaJBaMEAKe|1,TWULdKJBYWKVDEZREHDWNHXdJTaJBaMEAKe|3,cCHObVZMYCMKdFEVJTNIKdFHaO|1,cCHObVZMYCMKdFEVJTNIKdFHaO|3,NAFLeOeJcQEcVOdWNeYZdfdbJae|1,NAFLeOeJabUZFQbMWKZETTeMcCcCcCC|1,NAFLeOeJVCMcQEcVOdWNeYZaTaTaET|1,NAFLeOeJcLMbFQbMWKZETTeMcCcCcCC|1,NAFLeOeJcLdYZGQDaRNFOSeDdKNKNKWe|1,NAFLeOeJaMSPdGFdICFHUeUdLOLOLMO|1,cCHObKdBdUHINPSXeHDALOLOLMO|1,cCHObKdBdUHINPSXeHDALOLOLMO|5,cCeIVOMPWAEeIcFARSYSbZDQSXbaTaTaET|3,cCeIVOOLfOECVVDFRURURHe|1,cCeIVOOLfOECVVDFRURURHe|2,cCHOGcbREDEZRdRERJBHAOeVATZdSGWFRURURHe|1,cCeIVOAPEbSccEZVACdKNKNKWe|1,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|1,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|1,cCHObdRdJJVdfUSCEcdNHMddKNKNKWe|1,cCHObdRdJJVdfUJGFDSeBcZFLMFRURURHe|1,cCHObdRdJJVdfUJGFDSeBcZFLMFRURURHe|3,cCeIVOTeJUNSMTfIMLebaTaTaET|1,cCeIVOTeJUNSMTaSdNdKNKNKWe|1,cCHOGAQHSMSXUDeLcffIVXBPKAFRURURHe|1,cCHOGAQHSMSXUDeLcffIVXBPKAFRURURHe|5,cCHOGAQPXafJCfSFeMZXZAQeRfXPRQNIKdFHaO|1,cCHObKdBZXZAVCMIQRMebfTIbRZaTaTaET|1,cCeIVOdJEVOAeZTbQNPcZRALOLOLMO|1,cCeIVOIYcYCcTUDQZaTaTaET|1,cCHObCBWaEdIPPSfDcXLYSfDccCcCcCC|2,NAFLeOeJcQEcVOdWNeYZdfdbJae|2,NAFLeOeJcQEcVOdWNeYZdfdbJae|4,NAFLeOeJabUZFQbMWKZETTeMcCcCcCC|2,NAFLeOeJabUZFQbMWKZETTeMcCcCcCC|4,NAFLeOeJVCMcQEcVOdWNeYZaTaTaET|2,NAFLeOeJVCMcQEcVOdWNeYZaTaTaET|4,NAFLeOeJcLMbFQbMWKZETTeMcCcCcCC|2,NAFLeOeJcLMbFQbMWKZETTeMcCcCcCC|4,NAFLeOeJcLdYZGQDaRNFOSeDdKNKNKWe|2,NAFLeOeJcLdYZGQDaRNFOSeDdKNKNKWe|4,NAFLeOeJaMSPdGFdICFHUeUdLOLOLMO|2,NAFLeOeJaMSPdGFdICFHUeUdLOLOLMO|4,cCHObVZMYCMKdFEVJTNIKdFHaO|4,cCHObVZMYCMKdFEVJTNIKdFHaO|6,cCHObKdPHMfFdHMEKBOcaGPaAHFHDQIC|9,cCeIVOOLfOECVVDFRURURHe|3,cCeIVOdJEVOAeZTbQNPcZRALOLOLMO|2,cCeIVOTeJUNSMTfIMLebaTaTaET|2,cCeIVOTeJUNSMTaSdNdKNKNKWe|2&etgwv= IP54.230.111.45:443
CertificateIssuerDigiCert Inc Subject*.booking.com FingerprintC7:72:77:E2:B0:F2:0E:46:E1:DC:98:03:30:6C:05:F2:10:E1:02:36 ValidityWed, 01 May 2024 00:00:00 GMT - Tue, 25 Mar 2025 23:59:59 GMT
Hash79a611524d7c43a354c589264cc2376e 2e25649d9a8a208302be0502b47a0e44b07bc7c1 c7a9af81f3467d3c95760df18d0853bda8c191f612fb2e8b2b5c4ed941fbaf1a
GET /js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=0819669da254000b&ete=&etg=web_shell_ux_header_view,web_shell_ux_header_view_www_non_logged_in&etcg=cCHObVZMYCMKdFEVJTNIKdFHaO|1,cCHObVZMYCMKdFEVJTNIKdFHaO|3,cCHObEfEITNPfbeQMIaWYUQJFFQccCcCcCC|1&ets=cCHObTULHfAFFQZcfHSdFaLbFFRURURHe|1,dDfPWPHDDZSOBJbKYfNIfPTDWe|1,YTTHbXeeVJWcFKJPFNJQVVEbMKXe|1,YTTHbXeeVJWcFKJPFNJQVVEbMKXe|5,aXTfOFJZMYeKTcABVYUfFdHMPVWCGTQJQJET|1,aXTfOFJZMYeKTcABVYUfFdHMPVWCGTQJQJET|2,aXTfMZMYeKTcNGEcfFdHMPVUPHET|1,TZUfONebEWAUFccRMVIZdRRT|1,aXTfMZMYeKTcNGEcfFdHMPVUPHET|3,NAFLeOeJHSCQQGPLUPHBeZdRNYYdTUWe|1,HVQeYFRURURYDEZREWQUQeFADDbddJKe|1,TWULdKJBYWKVDEZREHDWNHXdJTaJBaMEAKe|1,TWULdKJBYWKVDEZREHDWNHXdJTaJBaMEAKe|3,cCHObVZMYCMKdFEVJTNIKdFHaO|1,cCHObVZMYCMKdFEVJTNIKdFHaO|3,NAFLeOeJcQEcVOdWNeYZdfdbJae|1,NAFLeOeJabUZFQbMWKZETTeMcCcCcCC|1,NAFLeOeJVCMcQEcVOdWNeYZaTaTaET|1,NAFLeOeJcLMbFQbMWKZETTeMcCcCcCC|1,NAFLeOeJcLdYZGQDaRNFOSeDdKNKNKWe|1,NAFLeOeJaMSPdGFdICFHUeUdLOLOLMO|1,cCHObKdBdUHINPSXeHDALOLOLMO|1,cCHObKdBdUHINPSXeHDALOLOLMO|5,cCeIVOMPWAEeIcFARSYSbZDQSXbaTaTaET|3,cCeIVOOLfOECVVDFRURURHe|1,cCeIVOOLfOECVVDFRURURHe|2,cCHOGcbREDEZRdRERJBHAOeVATZdSGWFRURURHe|1,cCeIVOAPEbSccEZVACdKNKNKWe|1,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|1,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|1,cCHObdRdJJVdfUSCEcdNHMddKNKNKWe|1,cCHObdRdJJVdfUJGFDSeBcZFLMFRURURHe|1,cCHObdRdJJVdfUJGFDSeBcZFLMFRURURHe|3,cCeIVOTeJUNSMTfIMLebaTaTaET|1,cCeIVOTeJUNSMTaSdNdKNKNKWe|1,cCHOGAQHSMSXUDeLcffIVXBPKAFRURURHe|1,cCHOGAQHSMSXUDeLcffIVXBPKAFRURURHe|5,cCHOGAQPXafJCfSFeMZXZAQeRfXPRQNIKdFHaO|1,cCHObKdBZXZAVCMIQRMebfTIbRZaTaTaET|1,cCeIVOdJEVOAeZTbQNPcZRALOLOLMO|1,cCeIVOIYcYCcTUDQZaTaTaET|1,cCHObCBWaEdIPPSfDcXLYSfDccCcCcCC|2,NAFLeOeJcQEcVOdWNeYZdfdbJae|2,NAFLeOeJcQEcVOdWNeYZdfdbJae|4,NAFLeOeJabUZFQbMWKZETTeMcCcCcCC|2,NAFLeOeJabUZFQbMWKZETTeMcCcCcCC|4,NAFLeOeJVCMcQEcVOdWNeYZaTaTaET|2,NAFLeOeJVCMcQEcVOdWNeYZaTaTaET|4,NAFLeOeJcLMbFQbMWKZETTeMcCcCcCC|2,NAFLeOeJcLMbFQbMWKZETTeMcCcCcCC|4,NAFLeOeJcLdYZGQDaRNFOSeDdKNKNKWe|2,NAFLeOeJcLdYZGQDaRNFOSeDdKNKNKWe|4,NAFLeOeJaMSPdGFdICFHUeUdLOLOLMO|2,NAFLeOeJaMSPdGFdICFHUeUdLOLOLMO|4,cCHObVZMYCMKdFEVJTNIKdFHaO|4,cCHObVZMYCMKdFEVJTNIKdFHaO|6,cCHObKdPHMfFdHMEKBOcaGPaAHFHDQIC|9,cCeIVOOLfOECVVDFRURURHe|3,cCeIVOdJEVOAeZTbQNPcZRALOLOLMO|2,cCeIVOTeJUNSMTfIMLebaTaTaET|2,cCeIVOTeJUNSMTaSdNdKNKNKWe|2&etgwv= HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
X-Booking-Info:
X-Booking-Client-Info:
X-Booking-Pageview-Id: 0819669da254000b
X-Booking-SiteType-Id: 1
X-Booking-Language-Code: en-us
X-Booking-AID: 304142
X-Booking-Session-Id: 6264063bcefba832c462ee9fa08bba64
X-Booking-ET-Serialized-State: EWgc6NMBRz9r0zuNuUpuhpWTZAZqeNJXOa0BC7SNFY1SHMRGMzSaNeZU73V2suoyV
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPee3NJ9F9RAyc%2B8CF9rXFU3RfaLYmCytRy1BIxZ5sP0rcjwBWwkPvmQyQ3LhYt8KmtbjhBgDCCof36brzG4FLc4nQJSHMEgkb2I9CIO7dw8PDgJmmqxzSrrpe5HtawBC6eDMUu03KpC0WtYgFqCYaqTTeRFIRxrioGw%3D; bkng_sso_auth=CAIQsOnuTRpmvKlZYXYJUdjpVbdMvQwNjHrvsml6L4VkiK7tISGV++DO0XXfwqYqcvGv6N5B0jJ+At6IQOX9CzDigoeY7Dt/FQmXvzsPX5q9kGIjFfD+w/XIrSbe9Qmi3qompOLVKk1Ncna0zA0n; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3D047e10e5-e3e9-42f5-8d41-1b74123b97ba%26consentedAt%3D2024-05-04T14%3A35%3A38.319Z%26expiresAt%3D2024-10-31T14%3A35%3A38.319Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; px_init=0; pcm_personalization_disabled=0; cors_js=1; bkng_sso_session=e30; bkng_sso_ses=e30; OptanonConsent=implicitConsentCountry=GDPR&implicitConsentDate=1714833341097; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 35
server: nginx
date: Sat, 04 May 2024 14:35:42 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
strict-transport-security: max-age=2592000; includeSubDomains
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=67c4669fa05a008e&e=UmFuZG9tSVYkc2RlIyh9Yea92wm0yRUjnCBymoy8ejJrop72IIg2d8JoI0FHQlyTeva1nFCISJw
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bT0Fn2wRKTEsakjB0puxaby-jbAmVWbkwkFhyxK5wqPm1x-cMSmXFw==
X-Firefox-Spdy: h2
|
|
| accommodations.booking.com/orca/chunk-metadata?chunk=b9a82cb8&mfe=b-index-lp-web-mfe&lang=en-us&namespace=ZWJQSUBX | 54.230.111.53 | 200 OK | 114 kB |
URL GET HTTP/2accommodations.booking.com/orca/chunk-metadata?chunk=b9a82cb8&mfe=b-index-lp-web-mfe&lang=en-us&namespace=ZWJQSUBX IP54.230.111.53:443
CertificateIssuerDigiCert Inc Subject*.booking.com FingerprintC7:72:77:E2:B0:F2:0E:46:E1:DC:98:03:30:6C:05:F2:10:E1:02:36 ValidityWed, 01 May 2024 00:00:00 GMT - Tue, 25 Mar 2025 23:59:59 GMT
File typegzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT) Size114 kB (114144 bytes) Hashe60c9fce64385cb1e13145b4800f9081 c5e4419d3a6c5928162a05c50ea2d56fe705c3ef 61b1e359d8918de456417bf2b3607d91ffa5e92f5f1109d4316b29ea8d08a53b
GET /orca/chunk-metadata?chunk=b9a82cb8&mfe=b-index-lp-web-mfe&lang=en-us&namespace=ZWJQSUBX HTTP/1.1
Host: accommodations.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
x-booking-et-serialized-state: EWgc6NMBRz9r0zuNuUpuhpWTZAZqeNJXOa0BC7SNFY1SHMRGMzSaNeZU73V2suoyV
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPedXipW9P%2Bn9MYWYmjSTOk7tlRnW%2BYurihW6uF4NqE0Zj1oDgS60ARakX9Ktpe7w%2BCQf%2BRgETSsisK%2BsydahBVbfBmNPR4P93MujHAlvxWC4XeJDhSnxzyRsfx72ZN%2BHcNf26Ggy7zJxo83DyxVVBDnv; bkng_sso_auth=CAIQsOnuTRpmvKlZYXYJUdjpVbdMvQwNjHrvsml6L4VkiK7tISGV++DO0XXfwqYqcvGv6N5B0jJ+At6IQOX9CzDigoeY7Dt/FQmXvzsPX5q9kGIjFfD+w/XIrSbe9Qmi3qompOLVKk1Ncna0zA0n; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3D047e10e5-e3e9-42f5-8d41-1b74123b97ba%26consentedAt%3D2024-05-04T14%3A35%3A38.319Z%26expiresAt%3D2024-10-31T14%3A35%3A38.319Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; px_init=0; pcm_personalization_disabled=0; cors_js=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json
server: nginx
date: Sat, 04 May 2024 14:35:41 GMT
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.booking.com
vary: Accept-Encoding
access-control-allow-credentials: true
referrer-policy: no-referrer
content-encoding: gzip
x-xss-protection: 1; mode=block
strict-transport-security: max-age=2592000; includeSubDomains
x-cache: Miss from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9Kivf48r5bQ1u3g0is8Z0MbZT4qgCz3wJpb9D3ov1X-NytqBnyu68w==
X-Firefox-Spdy: h2
|
|
| accommodations.booking.com/orca/chunk-metadata?chunk=3c29a897&mfe=b-index-lp-web-mfe&lang=en-us&namespace=GbTNLDRX | 54.230.111.53 | 200 OK | 9.4 kB |
URL OPTIONS HTTP/2accommodations.booking.com/orca/chunk-metadata?chunk=3c29a897&mfe=b-index-lp-web-mfe&lang=en-us&namespace=GbTNLDRX IP54.230.111.53:443
CertificateIssuerDigiCert Inc Subject*.booking.com FingerprintC7:72:77:E2:B0:F2:0E:46:E1:DC:98:03:30:6C:05:F2:10:E1:02:36 ValidityWed, 01 May 2024 00:00:00 GMT - Tue, 25 Mar 2025 23:59:59 GMT
File typegzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT) Hashe7e2e1b5a46db46f1cf81ba8d809e397 7db32c6198c3a3daedd0d69d5d9b7aa58ceffdac 75edc062e46d1a4e53f5f3092fe2c22e2b936c9a02384bd3bc6bea7f6483f8d9
GET /orca/chunk-metadata?chunk=3c29a897&mfe=b-index-lp-web-mfe&lang=en-us&namespace=GbTNLDRX HTTP/1.1
Host: accommodations.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
x-booking-et-serialized-state: EWgc6NMBRz9r0zuNuUpuhpWTZAZqeNJXOa0BC7SNFY1SHMRGMzSaNeZU73V2suoyV
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPedXipW9P%2Bn9MYWYmjSTOk7tlRnW%2BYurihW6uF4NqE0Zj1oDgS60ARakX9Ktpe7w%2BCQf%2BRgETSsisK%2BsydahBVbfBmNPR4P93MujHAlvxWC4XeJDhSnxzyRsfx72ZN%2BHcNf26Ggy7zJxo83DyxVVBDnv; bkng_sso_auth=CAIQsOnuTRpmvKlZYXYJUdjpVbdMvQwNjHrvsml6L4VkiK7tISGV++DO0XXfwqYqcvGv6N5B0jJ+At6IQOX9CzDigoeY7Dt/FQmXvzsPX5q9kGIjFfD+w/XIrSbe9Qmi3qompOLVKk1Ncna0zA0n; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3D047e10e5-e3e9-42f5-8d41-1b74123b97ba%26consentedAt%3D2024-05-04T14%3A35%3A38.319Z%26expiresAt%3D2024-10-31T14%3A35%3A38.319Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; px_init=0; pcm_personalization_disabled=0; cors_js=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json
server: nginx
date: Sat, 04 May 2024 14:35:41 GMT
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.booking.com
vary: Accept-Encoding
access-control-allow-credentials: true
referrer-policy: no-referrer
content-encoding: gzip
x-xss-protection: 1; mode=block
strict-transport-security: max-age=2592000; includeSubDomains
x-cache: Miss from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zw1sbz1iwFfF9egZwR-eeJP0pCZmfPsaYbY-R430h1ALbzpxZZ-BOg==
X-Firefox-Spdy: h2
|
|
| www.booking.com/dml/graphql?lang=en-us | 54.230.111.45 | 200 OK | 3.1 kB |
URL POST HTTP/2www.booking.com/dml/graphql?lang=en-us IP54.230.111.45:443
CertificateIssuerDigiCert Inc Subject*.booking.com FingerprintC7:72:77:E2:B0:F2:0E:46:E1:DC:98:03:30:6C:05:F2:10:E1:02:36 ValidityWed, 01 May 2024 00:00:00 GMT - Tue, 25 Mar 2025 23:59:59 GMT
Hashe6d05e28cf9c9c8dc43920b720b3b972 31e1691cb4abcaa72e89ddb19f4e888507978e50 b882460effca0dc5d7871d0da2a6ef7225f83eb344561d0b0b3804dbe27062fa
POST /dml/graphql?lang=en-us HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
content-type: application/json
x-booking-context-action-name: index
x-booking-context-aid: 304142
x-booking-csrf-token: eyJhbGciOiJIUzUxMiJ9.eyJpc3MiOiJjb250ZXh0LWVucmljaG1lbnQtYXBpIiwic3ViIjoiY3NyZi10b2tlbiIsImlhdCI6MTcxNDgzMzMzOCwiZXhwIjoxNzE0OTE5NzM4fQ.7UuceqKdwuZxrgrg3frNHwoH3_EKGlLkKmoS6lkz9UlfWMMLixlnQFAJOQkjVzLkahT_oVcCotfMBmuKcerbcw
x-booking-et-serialized-state: EWgc6NMBRz9r0zuNuUpuhpWTZAZqeNJXOa0BC7SNFY1SHMRGMzSaNeZU73V2suoyV
x-booking-pageview-id: 0819669da254000b
x-booking-site-type-id: 1
x-booking-timeout-budget-ms: 1500
x-booking-timeout-ms: 1500
x-booking-topic: capla_browser_b-index-lp-web-mfe
x-envoy-expected-rq-timeout-ms: 1500
Content-Length: 7115
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPee3NJ9F9RAyc%2B8CF9rXFU3RfaLYmCytRy1BIxZ5sP0rcjwBWwkPvmQyQ3LhYt8KmtbjhBgDCCof36brzG4FLc4nQJSHMEgkb2I9CIO7dw8PDgJmmqxzSrrpe5HtawBC6eDMUu03KpC0WtYgFqCYaqTTeRFIRxrioGw%3D; bkng_sso_auth=CAIQsOnuTRpmvKlZYXYJUdjpVbdMvQwNjHrvsml6L4VkiK7tISGV++DO0XXfwqYqcvGv6N5B0jJ+At6IQOX9CzDigoeY7Dt/FQmXvzsPX5q9kGIjFfD+w/XIrSbe9Qmi3qompOLVKk1Ncna0zA0n; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3D047e10e5-e3e9-42f5-8d41-1b74123b97ba%26consentedAt%3D2024-05-04T14%3A35%3A38.319Z%26expiresAt%3D2024-10-31T14%3A35%3A38.319Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; px_init=0; pcm_personalization_disabled=0; cors_js=1; bkng_sso_session=e30; bkng_sso_ses=e30; OptanonConsent=implicitConsentCountry=GDPR&implicitConsentDate=1714833341097&isGpcEnabled=0&datestamp=Sat+May+04+2024+14%3A35%3A42+GMT%2B0000+(GMT)&version=202403.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=9b410d55-22ad-4115-aad7-534adfa48e9d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.booking.com%2F; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 3083
server: nginx
date: Sat, 04 May 2024 14:35:42 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbnmKTRaewPBs0N5Z35mijrQKoo9gdga1hJalYGtj8BkDoLsd%2B3eWgVyRUCnIw1t8m8y%2F1A9AmmzMbGoJp0dgtYCvo9IgclA50iGlkhBXBSMj0iVWO06Nh3OA9vhQZVv6vHG2OinJo6U2V5pQb0%2BdbAcJHvJYbIQgZRaeGy%2FEqNkE%3D; domain=.booking.com; path=/; expires=Thu, 03-May-2029 14:35:42 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=2592000; includeSubDomains
x-content-options: nosniff
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=a243669f3f940083&e=UmFuZG9tSVYkc2RlIyh9YQyOc33qmp8WHR7A8UUx6hbHIfwfMgQDGS7iIg4nUtuDO1FChahHIrWHTDdPTtwJNg
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YZUu4CQ5yyQ2BK7Y4AseHgyaMNODc5PKZbD5sJwWzMzJyVvBD7fUXw==
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/static/css/main_cloudfront_sd.iq_ltr/20a6c256bf2f70ab749c365177dd554b83100a0a.css | 143.204.55.112 | 200 OK | 62 kB |
URL GET HTTP/2cf.bstatic.com/static/css/main_cloudfront_sd.iq_ltr/20a6c256bf2f70ab749c365177dd554b83100a0a.css IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hashc03e960d9ad2f49fc154b3bfeb9f5d72 f62ee805abe3c210e65de608372eff05b891f86f f903d0863ad8407a6d952f9291aec4eb8d3fb275e299c23cea9d45ee67da7b74
GET /static/css/main_cloudfront_sd.iq_ltr/20a6c256bf2f70ab749c365177dd554b83100a0a.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Wed, 01 May 2024 14:37:37 GMT
last-modified: Wed, 01 May 2024 14:05:24 GMT
etag: W/"66324c24-7db1b"
expires: Fri, 31 May 2024 14:37:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: eWkr1UHLWMZMONCQ6fhs3s0QVDC9gg8LoLWeQxOks8pFTIihpcLY8Q==
age: 259082
X-Firefox-Spdy: h2
|
|
| www.booking.com/dml/graphql?lang=en-us | 54.230.111.45 | 200 OK | 1.6 kB |
URL POST HTTP/2www.booking.com/dml/graphql?lang=en-us IP54.230.111.45:443
CertificateIssuerDigiCert Inc Subject*.booking.com FingerprintC7:72:77:E2:B0:F2:0E:46:E1:DC:98:03:30:6C:05:F2:10:E1:02:36 ValidityWed, 01 May 2024 00:00:00 GMT - Tue, 25 Mar 2025 23:59:59 GMT
Hashf5036454e1dfbd68a3cd050609cb177f b2fbc0a1872a9641196de9d15a67207b03af9921 4e35915f32803cfc26f1df4dbc5adcee735856609188ef00c556750e58f6dbec
POST /dml/graphql?lang=en-us HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
content-type: application/json
x-booking-context-action-name: index
x-booking-context-aid: 304142
x-booking-csrf-token: eyJhbGciOiJIUzUxMiJ9.eyJpc3MiOiJjb250ZXh0LWVucmljaG1lbnQtYXBpIiwic3ViIjoiY3NyZi10b2tlbiIsImlhdCI6MTcxNDgzMzMzOCwiZXhwIjoxNzE0OTE5NzM4fQ.7UuceqKdwuZxrgrg3frNHwoH3_EKGlLkKmoS6lkz9UlfWMMLixlnQFAJOQkjVzLkahT_oVcCotfMBmuKcerbcw
x-booking-et-serialized-state: EWgc6NMBRz9r0zuNuUpuhpWTZAZqeNJXOa0BC7SNFY1SHMRGMzSaNeZU73V2suoyV
x-booking-pageview-id: 0819669da254000b
x-booking-site-type-id: 1
x-booking-timeout-budget-ms: 1500
x-booking-timeout-ms: 1500
x-booking-topic: capla_browser_b-index-lp-web-mfe
x-envoy-expected-rq-timeout-ms: 1500
Content-Length: 7115
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPee3NJ9F9RAyc%2B8CF9rXFU3RfaLYmCytRy1BIxZ5sP0rcjwBWwkPvmQyQ3LhYt8KmtbjhBgDCCof36brzG4FLc4nQJSHMEgkb2I9CIO7dw8PDgJmmqxzSrrpe5HtawBC6eDMUu03KpC0WtYgFqCYaqTTeRFIRxrioGw%3D; bkng_sso_auth=CAIQsOnuTRpmvKlZYXYJUdjpVbdMvQwNjHrvsml6L4VkiK7tISGV++DO0XXfwqYqcvGv6N5B0jJ+At6IQOX9CzDigoeY7Dt/FQmXvzsPX5q9kGIjFfD+w/XIrSbe9Qmi3qompOLVKk1Ncna0zA0n; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3D047e10e5-e3e9-42f5-8d41-1b74123b97ba%26consentedAt%3D2024-05-04T14%3A35%3A38.319Z%26expiresAt%3D2024-10-31T14%3A35%3A38.319Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; px_init=0; pcm_personalization_disabled=0; cors_js=1; bkng_sso_session=e30; bkng_sso_ses=e30; OptanonConsent=implicitConsentCountry=GDPR&implicitConsentDate=1714833341097&isGpcEnabled=0&datestamp=Sat+May+04+2024+14%3A35%3A42+GMT%2B0000+(GMT)&version=202403.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=9b410d55-22ad-4115-aad7-534adfa48e9d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.booking.com%2F; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 1598
server: nginx
date: Sat, 04 May 2024 14:35:42 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbof7CEiNviT8GMLqnUtzfQ5Rz5wf0pc2S9b%2BqsoO7wrQoil4JrOUaMyy76WII%2B4IO3dITfNUklQ64%2FU%2FAdEKfE0Xu%2FpEbz7vRJStP0x1NQgh%2BEaWiMvd32MpCOVyGdu8TCaz4Qqyu9SdSNH30OCosIRsyDCAiaaJLHWLWNsCZ3ko%3D; domain=.booking.com; path=/; expires=Thu, 03-May-2029 14:35:42 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=2592000; includeSubDomains
x-content-options: nosniff
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=7a62669fd6480414&e=UmFuZG9tSVYkc2RlIyh9YQyOc33qmp8WHR7A8UUx6hbHIfwfMgQDGcVui47o2KSvxxqXYKPslpki5-msfYCd8g
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: q02ZSjgbloZGtYjG--wGz7dDEAnO-p54N1kb5IftlWacYIMR79vdBg==
X-Firefox-Spdy: h2
|
|
| www.booking.com/dml/graphql?lang=en-us | 54.230.111.45 | 200 OK | 3.3 kB |
URL POST HTTP/2www.booking.com/dml/graphql?lang=en-us IP54.230.111.45:443
CertificateIssuerDigiCert Inc Subject*.booking.com FingerprintC7:72:77:E2:B0:F2:0E:46:E1:DC:98:03:30:6C:05:F2:10:E1:02:36 ValidityWed, 01 May 2024 00:00:00 GMT - Tue, 25 Mar 2025 23:59:59 GMT
Hash6db61dab735e5d61df01052ee71b27f5 8beed7c9437fac2b12c516d9ce818ef84fd5dcca c6f417958023bc8f0ed3d9e442606a4fef3df3043d22ff8ab80749965e7c6aa8
POST /dml/graphql?lang=en-us HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
content-type: application/json
x-booking-context-action-name: index
x-booking-context-aid: 304142
x-booking-csrf-token: eyJhbGciOiJIUzUxMiJ9.eyJpc3MiOiJjb250ZXh0LWVucmljaG1lbnQtYXBpIiwic3ViIjoiY3NyZi10b2tlbiIsImlhdCI6MTcxNDgzMzMzOCwiZXhwIjoxNzE0OTE5NzM4fQ.7UuceqKdwuZxrgrg3frNHwoH3_EKGlLkKmoS6lkz9UlfWMMLixlnQFAJOQkjVzLkahT_oVcCotfMBmuKcerbcw
x-booking-et-serialized-state: EWgc6NMBRz9r0zuNuUpuhpWTZAZqeNJXOa0BC7SNFY1SHMRGMzSaNeZU73V2suoyV
x-booking-pageview-id: 0819669da254000b
x-booking-site-type-id: 1
x-booking-timeout-budget-ms: 1500
x-booking-timeout-ms: 1500
x-booking-topic: capla_browser_b-index-lp-web-mfe
x-envoy-expected-rq-timeout-ms: 1500
Content-Length: 1948
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPee3NJ9F9RAyc%2B8CF9rXFU3RfaLYmCytRy1BIxZ5sP0rcjwBWwkPvmQyQ3LhYt8KmtbjhBgDCCof36brzG4FLc4nQJSHMEgkb2I9CIO7dw8PDgJmmqxzSrrpe5HtawBC6eDMUu03KpC0WtYgFqCYaqTTeRFIRxrioGw%3D; bkng_sso_auth=CAIQsOnuTRpmvKlZYXYJUdjpVbdMvQwNjHrvsml6L4VkiK7tISGV++DO0XXfwqYqcvGv6N5B0jJ+At6IQOX9CzDigoeY7Dt/FQmXvzsPX5q9kGIjFfD+w/XIrSbe9Qmi3qompOLVKk1Ncna0zA0n; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3D047e10e5-e3e9-42f5-8d41-1b74123b97ba%26consentedAt%3D2024-05-04T14%3A35%3A38.319Z%26expiresAt%3D2024-10-31T14%3A35%3A38.319Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; px_init=0; pcm_personalization_disabled=0; cors_js=1; bkng_sso_session=e30; bkng_sso_ses=e30; OptanonConsent=implicitConsentCountry=GDPR&implicitConsentDate=1714833341097&isGpcEnabled=0&datestamp=Sat+May+04+2024+14%3A35%3A42+GMT%2B0000+(GMT)&version=202403.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=9b410d55-22ad-4115-aad7-534adfa48e9d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.booking.com%2F; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 3272
server: nginx
date: Sat, 04 May 2024 14:35:42 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLblgO%2Fz4BDP5uuFei1kmm3PvAIN1s3BHp1KXqD6QiZccGZfsAJbYklPS05hLRhDWTY0oxMojlPY%2FrAUP7EF3PIKLK70PN9TdvO5blwjUADqh%2BTeX1J%2F%2B10t0bcK4vEHJTEHpW9qsOUrDkcMGTOZJe2g4POCxL8U4ff; domain=.booking.com; path=/; expires=Thu, 03-May-2029 14:35:42 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=2592000; includeSubDomains
x-content-options: nosniff
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=252c669f87470082&e=UmFuZG9tSVYkc2RlIyh9YQyOc33qmp8WHR7A8UUx6hbHIfwfMgQDGSfginOj-PnSG7HDPXuXIphcWwLh7vozoQ
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nplNzblNkVZpPUx0ytLJolglVyl74NRs_6IMDTyz58H6695rqtZcfw==
X-Firefox-Spdy: h2
|
|
| www.booking.com/dml/graphql?lang=en-us | 54.230.111.45 | 200 OK | 3.7 kB |
URL POST HTTP/2www.booking.com/dml/graphql?lang=en-us IP54.230.111.45:443
CertificateIssuerDigiCert Inc Subject*.booking.com FingerprintC7:72:77:E2:B0:F2:0E:46:E1:DC:98:03:30:6C:05:F2:10:E1:02:36 ValidityWed, 01 May 2024 00:00:00 GMT - Tue, 25 Mar 2025 23:59:59 GMT
Hash2efa146c403c6e45c3bc9fe036279798 a526b35deca576c1ebf722d6437deb6f077d67b6 89261fe0f7619c535dacc3cc702bbae6299d0c3c1759c171510839aaafc68bdd
POST /dml/graphql?lang=en-us HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
content-type: application/json
x-booking-context-action-name: index
x-booking-context-aid: 304142
x-booking-csrf-token: eyJhbGciOiJIUzUxMiJ9.eyJpc3MiOiJjb250ZXh0LWVucmljaG1lbnQtYXBpIiwic3ViIjoiY3NyZi10b2tlbiIsImlhdCI6MTcxNDgzMzMzOCwiZXhwIjoxNzE0OTE5NzM4fQ.7UuceqKdwuZxrgrg3frNHwoH3_EKGlLkKmoS6lkz9UlfWMMLixlnQFAJOQkjVzLkahT_oVcCotfMBmuKcerbcw
x-booking-et-serialized-state: EWgc6NMBRz9r0zuNuUpuhpWTZAZqeNJXOa0BC7SNFY1SHMRGMzSaNeZU73V2suoyV
x-booking-pageview-id: 0819669da254000b
x-booking-site-type-id: 1
x-booking-topic: capla_browser_b-index-lp-web-mfe
Content-Length: 540
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPee3NJ9F9RAyc%2B8CF9rXFU3RfaLYmCytRy1BIxZ5sP0rcjwBWwkPvmQyQ3LhYt8KmtbjhBgDCCof36brzG4FLc4nQJSHMEgkb2I9CIO7dw8PDgJmmqxzSrrpe5HtawBC6eDMUu03KpC0WtYgFqCYaqTTeRFIRxrioGw%3D; bkng_sso_auth=CAIQsOnuTRpmvKlZYXYJUdjpVbdMvQwNjHrvsml6L4VkiK7tISGV++DO0XXfwqYqcvGv6N5B0jJ+At6IQOX9CzDigoeY7Dt/FQmXvzsPX5q9kGIjFfD+w/XIrSbe9Qmi3qompOLVKk1Ncna0zA0n; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3D047e10e5-e3e9-42f5-8d41-1b74123b97ba%26consentedAt%3D2024-05-04T14%3A35%3A38.319Z%26expiresAt%3D2024-10-31T14%3A35%3A38.319Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; px_init=0; pcm_personalization_disabled=0; cors_js=1; bkng_sso_session=e30; bkng_sso_ses=e30; OptanonConsent=implicitConsentCountry=GDPR&implicitConsentDate=1714833341097&isGpcEnabled=0&datestamp=Sat+May+04+2024+14%3A35%3A42+GMT%2B0000+(GMT)&version=202403.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=9b410d55-22ad-4115-aad7-534adfa48e9d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.booking.com%2F; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 3664
server: nginx
date: Sat, 04 May 2024 14:35:42 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbKE7bjkbYWznlSlRZNNCt3qtLmDyaNHAu0dSLZq43GKf4xZXrYbUZ7aXt1f7U4XD2O8hKxNJkm1QdUwf7lO5P0%2FPUK4ckxlG034dwoYWSgVw1%2F7Yjd9SPkeN4tFnJQppTXsYaSUywWwljveRrNPNwu2PAJsZYK5glgx3LG%2F%2F3p3I%3D; domain=.booking.com; path=/; expires=Thu, 03-May-2029 14:35:42 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=2592000; includeSubDomains
x-content-options: nosniff
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=4923669f18ab0050&e=UmFuZG9tSVYkc2RlIyh9YQyOc33qmp8WHR7A8UUx6hbHIfwfMgQDGWG3J746WuUdO8xuy6MegArvWPNw5nkOLg
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 55udriMl8H2kusagemMtVPWbdcGqgPs0QtrtvYlrzASlE-r_mbtI8g==
X-Firefox-Spdy: h2
|
|
| www.booking.com/js_tracking?stype=1&lang=en-us&pid=0819669da254000b&ref_action=index&ver=2&sid=6e4a4fe1a54696541edadb825a534c41&aid=304142&ete=&etg=&etcg=&ets=cCHObKdPHMfFdHMEKBOcaGPaAHFHDQIC|8,HWAJLGbbeLHAFPRFDEYScEUWBZEWaSddKNKNKWe|2,cCGaYSddOEGcHNAEQfKCePBeZTPSeUFRURURHe|1,cCGaYSddOEGcHNAEQfKCePBeZTPSeUFRURURHe|6&etgwv=&m=UmFuZG9tSVYkc2RlIyh9YcJJ3SV74TCaEAq6yJdf1W9XDZ4ERv5MSmgEaeuDDzcMCnFm8pdG8biMfCoQSooyYLlojioCX1DO3ngPAID-fl7NrNpeSVnqmsen3YvCFgyjQQ5LM-dQ19Dqge_s9XnkBVJ4sdfDUK3YETvm1U8LkTEl6zEzkIW3yvm7KB7L3nrBv-K-IFebO-XiQMKiVxkwDMdL6ARVLoeHRN8mjDOdfBdm7aw3AdGN5lR0raBslv12v49SzR7mWMF3xcwfU5kpWg4ZN1vlUmyQz7q5nVRLBy0 | 54.230.111.45 | 200 OK | 2.5 kB |
URL GET HTTP/2www.booking.com/js_tracking?stype=1&lang=en-us&pid=0819669da254000b&ref_action=index&ver=2&sid=6e4a4fe1a54696541edadb825a534c41&aid=304142&ete=&etg=&etcg=&ets=cCHObKdPHMfFdHMEKBOcaGPaAHFHDQIC|8,HWAJLGbbeLHAFPRFDEYScEUWBZEWaSddKNKNKWe|2,cCGaYSddOEGcHNAEQfKCePBeZTPSeUFRURURHe|1,cCGaYSddOEGcHNAEQfKCePBeZTPSeUFRURURHe|6&etgwv=&m=UmFuZG9tSVYkc2RlIyh9YcJJ3SV74TCaEAq6yJdf1W9XDZ4ERv5MSmgEaeuDDzcMCnFm8pdG8biMfCoQSooyYLlojioCX1DO3ngPAID-fl7NrNpeSVnqmsen3YvCFgyjQQ5LM-dQ19Dqge_s9XnkBVJ4sdfDUK3YETvm1U8LkTEl6zEzkIW3yvm7KB7L3nrBv-K-IFebO-XiQMKiVxkwDMdL6ARVLoeHRN8mjDOdfBdm7aw3AdGN5lR0raBslv12v49SzR7mWMF3xcwfU5kpWg4ZN1vlUmyQz7q5nVRLBy0 IP54.230.111.45:443
CertificateIssuerDigiCert Inc Subject*.booking.com FingerprintC7:72:77:E2:B0:F2:0E:46:E1:DC:98:03:30:6C:05:F2:10:E1:02:36 ValidityWed, 01 May 2024 00:00:00 GMT - Tue, 25 Mar 2025 23:59:59 GMT
Hashcf5ceef907a3bf7de6a210764214f6af 2d3d1222e22fef633fb1041314e67bf1fa6b0fe2 ff9318a53d5d497a3c8ee4f8990bb99011ab6fbc8ebcf5b167affa71dc7377c0
GET /js_tracking?stype=1&lang=en-us&pid=0819669da254000b&ref_action=index&ver=2&sid=6e4a4fe1a54696541edadb825a534c41&aid=304142&ete=&etg=&etcg=&ets=cCHObKdPHMfFdHMEKBOcaGPaAHFHDQIC|8,HWAJLGbbeLHAFPRFDEYScEUWBZEWaSddKNKNKWe|2,cCGaYSddOEGcHNAEQfKCePBeZTPSeUFRURURHe|1,cCGaYSddOEGcHNAEQfKCePBeZTPSeUFRURURHe|6&etgwv=&m=UmFuZG9tSVYkc2RlIyh9YcJJ3SV74TCaEAq6yJdf1W9XDZ4ERv5MSmgEaeuDDzcMCnFm8pdG8biMfCoQSooyYLlojioCX1DO3ngPAID-fl7NrNpeSVnqmsen3YvCFgyjQQ5LM-dQ19Dqge_s9XnkBVJ4sdfDUK3YETvm1U8LkTEl6zEzkIW3yvm7KB7L3nrBv-K-IFebO-XiQMKiVxkwDMdL6ARVLoeHRN8mjDOdfBdm7aw3AdGN5lR0raBslv12v49SzR7mWMF3xcwfU5kpWg4ZN1vlUmyQz7q5nVRLBy0 HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
X-Booking-AID: 304142
X-Booking-CSRF: +n82ZgAAAAA=JUfbTOiNZC7InCj9e83gYip7la-1Duk79OMyikM-suA7mVBBtWh4JWQje5uzeilNfXTOSA79k2JL9pHq-fRO01RqgOwKfkoVPuUVMt2whpm-BExzsUWnOGkh7yQzuzUDo6PjRlYaNv9Ff3r7cd5_-VeOPy8wbRb_uecmbxj8KNC4tqPYeGRM2YYV0LiXU7s-_FCozDCYhS5k16Fb
X-Booking-Info: 1865390,1932080,1932100,1932110,1939730,1943090,1946400,1959390,1970670,1975230,1976360,1977000,cCHObKdPHMfFdHMEKBOcaGPaAHFHDQIC|8,1970670|1,HWAJLGbbeLHAFPRFDEYScEUWBZEWaSddKNKNKWe|2,cCGaYSddOEGcHNAEQfKCePBeZTPSeUFRURURHe|1,cCGaYSddOEGcHNAEQfKCePBeZTPSeUFRURURHe|6
X-Booking-Client-Info: cCHObKdPHMfFdHMEKBOcaGPaAHFHDQIC|8,HWAJLGbbeLHAFPRFDEYScEUWBZEWaSddKNKNKWe|2,cCGaYSddOEGcHNAEQfKCePBeZTPSeUFRURURHe|1,cCGaYSddOEGcHNAEQfKCePBeZTPSeUFRURURHe|6
X-Booking-Label: gen173nr-1FCAEoggI46AdIM1gEaKoBiAEBmAExuAEZyAEP2AEB6AEB-AECiAIBqAIDuAK6j9mxBsACAdICJDBlNjk5Y2MwLTQ5MGQtNDU1Yi1hZTE3LTc5MGI4NDBjYmQ3ZtgCBeACAQ
X-Booking-Language-Code: en-us
X-Booking-Pageview-Id: 0819669da254000b
X-Booking-Session-Id: 6e4a4fe1a54696541edadb825a534c41
X-Booking-SiteType-Id: 1
X-Partner-Channel-Id: 3
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPedXipW9P%2Bn9MYWYmjSTOk7tlRnW%2BYurihW6uF4NqE0Zj1oDgS60ARakX9Ktpe7w%2BCQf%2BRgETSsisK%2BsydahBVbfBmNPR4P93MujHAlvxWC4XeJDhSnxzyRsfx72ZN%2BHcNf26Ggy7zJxo83DyxVVBDnv; bkng_sso_auth=CAIQsOnuTRpmvKlZYXYJUdjpVbdMvQwNjHrvsml6L4VkiK7tISGV++DO0XXfwqYqcvGv6N5B0jJ+At6IQOX9CzDigoeY7Dt/FQmXvzsPX5q9kGIjFfD+w/XIrSbe9Qmi3qompOLVKk1Ncna0zA0n; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3D047e10e5-e3e9-42f5-8d41-1b74123b97ba%26consentedAt%3D2024-05-04T14%3A35%3A38.319Z%26expiresAt%3D2024-10-31T14%3A35%3A38.319Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; px_init=0; pcm_personalization_disabled=0; cors_js=1; bkng_sso_session=e30; bkng_sso_ses=e30; OptanonConsent=implicitConsentCountry=GDPR&implicitConsentDate=1714833341097; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
server: nginx
date: Sat, 04 May 2024 14:35:41 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
strict-transport-security: max-age=2592000; includeSubDomains
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=aaaa669ee62c019c&e=UmFuZG9tSVYkc2RlIyh9Yea92wm0yRUjnCBymoy8ejL8KRSMi5rnBLRcUFN3DEvlCkMJhM5PN8I
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ouCHGcF5hjaPlpr5N-OjuWwRUdGSa4mzxXQ1vofnfYoK5LBRx-iPag==
X-Firefox-Spdy: h2
|
|
| privacyportal-eu.onetrust.com/request/v1/consentreceipts | 104.18.32.137 | 200 OK | 0 B |
URL OPTIONS HTTP/2privacyportal-eu.onetrust.com/request/v1/consentreceipts IP104.18.32.137:443
CertificateIssuerLet's Encrypt Subjectonetrust.com FingerprintFB:9C:14:70:9B:22:FB:F6:B7:C3:39:38:9A:34:8E:2F:64:0E:DF:44 ValidityFri, 19 Apr 2024 23:13:49 GMT - Thu, 18 Jul 2024 23:13:48 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /request/v1/consentreceipts HTTP/1.1
Host: privacyportal-eu.onetrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 14:35:42 GMT
content-length: 0
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: *
access-control-allow-methods: GET,POST,PUT,PATCH,DELETE,OPTIONS,HEAD
access-control-allow-headers: content-type
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87e938082fd8712e-OSL
X-Firefox-Spdy: h2
|
|
| account.booking.com/privacy-consents | 54.230.111.41 | 200 OK | 0 B |
URL POST HTTP/2account.booking.com/privacy-consents IP54.230.111.41:443
CertificateIssuerDigiCert Inc Subject*.booking.com FingerprintC7:72:77:E2:B0:F2:0E:46:E1:DC:98:03:30:6C:05:F2:10:E1:02:36 ValidityWed, 01 May 2024 00:00:00 GMT - Tue, 25 Mar 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /privacy-consents HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: envoy
date: Sat, 04 May 2024 14:35:42 GMT
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: POST
access-control-allow-origin: https://www.booking.com
access-control-max-age: 1728000
set-cookie: bkng_sso_session=e30; domain=.booking.com; path=/; expires=Thu, 03-May-2029 14:35:42 GMT; secure; HttpOnly
bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJkYXRhX3N1YmplY3RfaWQiOiJiYzRiNTcxMC0xM2NmLTQ0YzAtYTM2OC0wNGMxMDliMDA4NzUiLCJzZXNzaW9ucyI6W119fQ; domain=account.booking.com; path=/; expires=Thu, 03-May-2029 14:35:42 GMT; SameSite=Lax; secure; HttpOnly
bkng_sso_ses=e30; domain=.booking.com; path=/; expires=Thu, 03-May-2029 14:35:42 GMT; secure; HttpOnly
content-security-policy: frame-ancestors https://*.booking.com 'self'; report-uri https://nellie.booking.com/csp-report-uri?type=block&tag=212&pid=74f0669fbb2e0015&e=UmFuZG9tSVYkc2RlIyh9YSWKtKO5TxgOpTwVTPfHZKNW3Hcrm1RLgTDT2V-m21UMJ4KxJTAfD3k6vpGGyphNZUfy-f31chCZb8612iO9R_UYhDOKZTX9f9H49t8PnK2NhzL69j54Eb5rjFsUSi5aDlJ7pyB1Wofa
content-security-policy-report-only: base-uri 'none'; connect-src saa.booking.com secure.booking.com reports.booking.com privacyportal-eu.onetrust.com geolocation.onetrust.com cdn.cookielaw.org www.google-analytics.com *.perimeterx.net *.pxchk.net *.px-cdn.net *.px-client.net *.px-cloud.net 'self' 'report-sample'; default-src *.bstatic.com bstatic.com 'self'; frame-src https://www.youtube.com/embed/Vv4w5SmRkss *.bstatic.com https://www.google.com bstatic.com www.booking.com secure.booking.com paymentcomponent.booking.com 'self'; img-src 'self' data: www.booking.com graph.facebook.com cdn.cookielaw.org account.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google-analytics.com www.google.com stats.g.doubleclick.net *.px-cloud.net *.perimeterx.net www.gstatic.com; object-src 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=213&pid=74f0669fbb2e0015&e=UmFuZG9tSVYkc2RlIyh9YSWKtKO5TxgOpTwVTPfHZKNW3Hcrm1RLgTDT2V-m21UMJ4KxJTAfD3k6vpGGyphNZUfy-f31chCZb8612iO9R_UYhDOKZTX9f9H49t8PnK2NhzL69j54Eb5rjFsUSi5aDlJ7pyB1Wofa; script-src saa.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google.com www.google-analytics.com cdn.cookielaw.org geolocation.onetrust.com 'self' 'nonce-5L8cpTfRAQgKbco' 'report-sample'; style-src *.bstatic.com bstatic.com *.static.booking.cn 'self' 'unsafe-inline'
x-xss-protection: 1; mode=block
strict-transport-security: max-age=2592000; includeSubDomains
x-cache: Miss from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6s_qYsApdHSOr0MyVxWQ47a7AuwXdlK3J2YtCenbJaRk1ap4Dw_moA==
X-Firefox-Spdy: h2
|
|
| r-xx.bstatic.com/xdata/images/city/170x136/644297.jpg?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o= | 143.204.55.112 | 200 OK | 7.1 kB |
URL GET HTTP/2r-xx.bstatic.com/xdata/images/city/170x136/644297.jpg?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3 Hashbcabc853805644c852b5e28ceb4da21f 85e9e9be45cd209187f883151d869f07dce4a016 0e9deb49e94a0a7b46e1300d00ff66abc515bf83f77c53d322457e1cce9d3d5c
GET /xdata/images/city/170x136/644297.jpg?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 7131
server: nginx
date: Mon, 29 Apr 2024 12:24:47 GMT
content-language: 7131
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "60f73638035955e1146cb48ccdf11c7523940a2c"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: U3Cr9sWQiKwgr-JfYk62tucAQT0Wc-sKGejJ9j8GwY_XybS7Y68KOg==
age: 439856
X-Firefox-Spdy: h2
|
|
| account.booking.com/privacy-consents | 54.230.111.41 | 200 OK | 5.5 kB |
URL POST HTTP/2account.booking.com/privacy-consents IP54.230.111.41:443
CertificateIssuerDigiCert Inc Subject*.booking.com FingerprintC7:72:77:E2:B0:F2:0E:46:E1:DC:98:03:30:6C:05:F2:10:E1:02:36 ValidityWed, 01 May 2024 00:00:00 GMT - Tue, 25 Mar 2025 23:59:59 GMT
Hash1948c269e79fa49da01310463c528b0f a1782462783440037734dad07148b5bbb106631d fb820ee6940c7c8eca4c58813cbca38bcd9849906eedb4e4bb823dd428378e0e
POST /privacy-consents HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-type: application/json;charset=UTF-8
Content-Length: 141
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbof7CEiNviT8GMLqnUtzfQ5Rz5wf0pc2S9b%2BqsoO7wrQoil4JrOUaMyy76WII%2B4IO3dITfNUklQ64%2FU%2FAdEKfE0Xu%2FpEbz7vRJStP0x1NQgh%2BEaWiMvd32MpCOVyGdu8TCaz4Qqyu9SdSNH30OCosIRsyDCAiaaJLHWLWNsCZ3ko%3D; bkng_sso_auth=CAIQsOnuTRpmvKlZYXYJUdjpVbdMvQwNjHrvsml6L4VkiK7tISGV++DO0XXfwqYqcvGv6N5B0jJ+At6IQOX9CzDigoeY7Dt/FQmXvzsPX5q9kGIjFfD+w/XIrSbe9Qmi3qompOLVKk1Ncna0zA0n; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3D047e10e5-e3e9-42f5-8d41-1b74123b97ba%26consentedAt%3D2024-05-04T14%3A35%3A38.319Z%26expiresAt%3D2024-10-31T14%3A35%3A38.319Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; px_init=0; pcm_personalization_disabled=0; cors_js=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJkYXRhX3N1YmplY3RfaWQiOiI2NTIyYTJiNS02MDk5LTQxY2MtOTJkYy0yYzU2MTU0Mjg2ZDYiLCJzZXNzaW9ucyI6W119fQ; BJS=-; 11_srd=%7B%22features%22%3A%5B%7B%22id%22%3A16%7D%5D%2C%22score%22%3A3%2C%22detected%22%3Afalse%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
server: envoy
date: Sat, 04 May 2024 14:35:43 GMT
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-methods: POST
access-control-allow-origin: https://www.booking.com
access-control-max-age: 1728000
content-security-policy: base-uri 'none'; frame-ancestors https://*.booking.com https://*.booking.cn; object-src 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=block&e=UmFuZG9tSVYkc2RlIyh9YSWKtKO5TxgOpTwVTPfHZKNW3Hcrm1RLgTDT2V-m21UMJ4KxJTAfD3k6vpGGyphNZUfy-f31chCZHPTonodp_KimHZLP-kkm31nZp_X7YOBY3ME3vKRMpYVqLG7UWuH2rE7ltFHb-yM8; script-src 'report-sample' 'nonce-eb458rdqk6g3Vic' 'strict-dynamic' 'unsafe-eval' 'unsafe-hashes' 'sha256-kDPclFJFa/cNUGjyb73Olq+78jkIsu1rN4zPFoE3YaY=' 'sha256-tgo/x/FZ7h93dD78jEbhg4dXrRyROp1eZvekoHdStrw=' 'self' 'unsafe-inline' *.bstatic.com *.static.booking.cn bstatic.com cdn.cookielaw.org geolocation.onetrust.com saa.booking.com www.google-analytics.com
content-security-policy-report-only: connect-src 'self' *.perimeterx.net *.px-cdn.net *.px-client.net *.px-cloud.net *.pxchk.net *.token.awswaf.com cdn.cookielaw.org geolocation.onetrust.com privacyportal-eu.onetrust.com saa.booking.com secure.booking.com www.google-analytics.com; default-src 'self' *.bstatic.com bstatic.com; frame-src *.booking.com *.bstatic.com bstatic.com paymentcomponent.booking.com secure.booking.com www.booking.com; img-src 'self' data: *.bstatic.com *.perimeterx.net *.px-cloud.net *.static.booking.cn account.booking.com bstatic.com cdn.cookielaw.org graph.facebook.com stats.g.doubleclick.net www.booking.com www.google-analytics.com www.google.com www.gstatic.com; report-uri https://nellie.booking.com/csp-report-uri?type=report&e=UmFuZG9tSVYkc2RlIyh9YSWKtKO5TxgOpTwVTPfHZKNW3Hcrm1RLgTDT2V-m21UMJ4KxJTAfD3k6vpGGyphNZUfy-f31chCZHPTonodp_KimHZLP-kkm31nZp_X7YOBY3ME3vKRMpYVqLG7UWuH2rE7ltFHb-yM8; script-src 'report-sample' 'nonce-eb458rdqk6g3Vic' 'strict-dynamic' 'unsafe-eval' 'unsafe-hashes' 'sha256-kDPclFJFa/cNUGjyb73Olq+78jkIsu1rN4zPFoE3YaY=' 'sha256-tgo/x/FZ7h93dD78jEbhg4dXrRyROp1eZvekoHdStrw=' 'self' 'unsafe-inline' *.bstatic.com *.static.booking.cn bstatic.com cdn.cookielaw.org geolocation.onetrust.com saa.booking.com www.google-analytics.com; style-src 'self' 'unsafe-inline' *.bstatic.com *.static.booking.cn bstatic.com
set-cookie: bkng_expired_hint=; domain=.booking.com; path=/; expires=Fri, 03-May-2024 14:35:43 GMT; secure; HttpOnly
bkng_sso_ses=eyJib29raW5nX2dsb2JhbCI6W3siYSI6MSwiaCI6Ik11TFNOayszcVZqUk1NeWZjUkwxdUdZMUVlYThZd0I5aWl1NmtuQlNzWGsifV19; domain=.booking.com; path=/; expires=Thu, 03-May-2029 14:35:43 GMT; secure; HttpOnly
bkng_sso_session=e30; domain=.booking.com; path=/; expires=Thu, 03-May-2029 14:35:43 GMT; secure; HttpOnly
bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJzZXNzaW9ucyI6W3sic2Vzc2lvbl9yZWZlcmVuY2UiOiIxYTk1NmQzNy03NDVkLTRmODUtODc3ZC0xOTIzOWJlNjQ3YjIiLCJyZWZyZXNoX3Rva2VuIjoiQ0FFU2QxSjFlSUZMUjVHREswVnIyZ2t0MXFiMWg5ZjBLeDIycWJVMUt4X3hEMDJpS3l4c29hN1oxQ08yd2hSVFJyeXM3YTZHaVAyUDc3aUFjWF8ybnVOY3l0aHJBNWUxOUU5cDZVQWxuNnFNRHJfeWx5eVBGdC1sY1VBbFhQMG5KRTVRdnJFNU85dUE4RzE2Vk5zbHR2b2QybmEwXy14MkJkbmYifV0sImRhdGFfc3ViamVjdF9pZCI6IjY1MjJhMmI1LTYwOTktNDFjYy05MmRjLTJjNTYxNTQyODZkNiJ9fQ; domain=account.booking.com; path=/; expires=Thu, 03-May-2029 14:35:43 GMT; SameSite=Lax; secure; HttpOnly
pcm_consent=consentedAt%3D2024-05-04T14%3A35%3A43.072Z%26countryCode%3DNO%26expiresAt%3D2024-10-31T14%3A35%3A43.072Z%26implicit%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr%26consentId%3D5fe20cb7-3a0d-49bd-9e44-a4a576eaaa39%26analytical%3Dfalse%26marketing%3Dfalse; Domain=.booking.com; Path=/; Expires=Sun, 04 May 2025 14:35:43 GMT; HttpOnly; Secure; SameSite=Lax
bkng_sso_auth=CAIQsOnuTRp4XCf2mTNX2vTaKOi4c2gJXy3BplRywvZtVCh4hXGp5h5po/N6Qux+6kUCprdfXKCUOnGOJCKYHHcQmnGvYbRr1GQd2W7Jn/T3WlKyR4wJOjW8Sbugx4dG7NoQ9nDUFZd1Yhlso8MBnxHNGtpJqGdaAcEEZ4PTweKT; Domain=.booking.com; Path=/; Expires=Mon, 04 May 2026 14:35:43 GMT; HttpOnly; Secure; SameSite=Lax
bkng_sso_auth_1714833343=CAIQsOnuTRp4XCf2mTNX2vTaKOi4c2gJXy3BplRywvZtVCh4hXGp5h5po/N6Qux+6kUCprdfXKCUOnGOJCKYHHcQmnGvYbRr1GQd2W7Jn/T3WlKyR4wJOjW8Sbugx4dG7NoQ9nDUFZd1Yhlso8MBnxHNGtpJqGdaAcEEZ4PTweKT; Domain=.booking.com; Path=/; Expires=Mon, 04 May 2026 14:35:43 GMT; HttpOnly; Secure; SameSite=Lax
x-xss-protection: 1; mode=block
strict-transport-security: max-age=2592000; includeSubDomains
x-cache: Miss from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: SDUaGItQ1hWK17SUhhKOYMsaOrI7Cbh2aem0sNd-1n0i5gYtj2X82Q==
X-Firefox-Spdy: h2
|
|
| q-xx.bstatic.com/xdata/images/xphoto/263x210/57584488.jpeg?k=d8d4706fc72ee789d870eb6b05c0e546fd4ad85d72a3af3e30fb80ca72f0ba57&o= | 143.204.55.112 | 200 OK | 14 kB |
URL GET HTTP/2q-xx.bstatic.com/xdata/images/xphoto/263x210/57584488.jpeg?k=d8d4706fc72ee789d870eb6b05c0e546fd4ad85d72a3af3e30fb80ca72f0ba57&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3 Hash8307bc1dab4c691b876ef8ae96673490 41aba2f3e76fafcf118b0c379e0928e0e4bb608e 6dc65f860b49e0413d78c21662bfaeb1c0d71642389b47a576485e3dd850d2eb
GET /xdata/images/xphoto/263x210/57584488.jpeg?k=d8d4706fc72ee789d870eb6b05c0e546fd4ad85d72a3af3e30fb80ca72f0ba57&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Wed, 01 May 2024 15:31:08 GMT
content-language: 8621
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "196fea0ab45d56a1dbce18f3c3cd9eb1a591fb85"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _FO2Cd6nLyqFVDcsIH_2_V_hz1OVTokXaBjVHrTndsODdRGIKgu6WA==
age: 255874
X-Firefox-Spdy: h2
|
|
| r-xx.bstatic.com/xdata/images/xphoto/263x210/45450084.jpeg?k=f8c2954e867a1dd4b479909c49528531dcfb676d8fbc0d60f51d7b51bb32d1d9&o= | 143.204.55.112 | 200 OK | 17 kB |
URL GET HTTP/2r-xx.bstatic.com/xdata/images/xphoto/263x210/45450084.jpeg?k=f8c2954e867a1dd4b479909c49528531dcfb676d8fbc0d60f51d7b51bb32d1d9&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3 Hashf32af61cee1486851ef5ff922bc1d3e2 b1696f36e7fb94a859ab5a4b98a1ac5a92f2471f af1d6e2412589b576de46c90b1bbdbd84e77422a40b2621110b2d707eb863c79
GET /xdata/images/xphoto/263x210/45450084.jpeg?k=f8c2954e867a1dd4b479909c49528531dcfb676d8fbc0d60f51d7b51bb32d1d9&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Sun, 07 Apr 2024 20:29:16 GMT
etag: "581d7d6f2cc7c0efc5bd54aa0a1fa4c3bdb259f4"
content-language: 10257
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: g46xy3JpnEbewF6BH8qhPbPs8W1Gbqy6jkDm5rRLAVpc8KDVYiNNYA==
age: 2311586
X-Firefox-Spdy: h2
|
|
| q-xx.bstatic.com/xdata/images/xphoto/263x210/45450074.jpeg?k=7039b03a94f3b99262c4b3054b0edcbbb91e9dade85b6efc880d45288a06c126&o= | 143.204.55.112 | 200 OK | 22 kB |
URL GET HTTP/2q-xx.bstatic.com/xdata/images/xphoto/263x210/45450074.jpeg?k=7039b03a94f3b99262c4b3054b0edcbbb91e9dade85b6efc880d45288a06c126&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3 Hash4423b7b8f119ba6ce8f391fa978f3943 6a731c33a7e2fbcd0505dac0d78882fbd62caf1e 464c2c821469480bd4d390b6923be01b304eddfbec67f09db96615791d2a2544
GET /xdata/images/xphoto/263x210/45450074.jpeg?k=7039b03a94f3b99262c4b3054b0edcbbb91e9dade85b6efc880d45288a06c126&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Tue, 23 Apr 2024 07:44:48 GMT
content-language: 16100
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "b20b1dc7e36ae82b6a50902c9ab2912586cb4c09"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8Bv405Su_hxT189WWY_GCzef9IW_8E2_kI9JSUHN8VE0MZZ7ZoXEzw==
age: 975054
X-Firefox-Spdy: h2
|
|
| r-xx.bstatic.com/xdata/images/xphoto/263x210/45450090.jpeg?k=52f6b8190edb5a9c91528f8e0f875752ce55a6beb35dc62873601e57944990e4&o= | 143.204.55.112 | 200 OK | 18 kB |
URL GET HTTP/2r-xx.bstatic.com/xdata/images/xphoto/263x210/45450090.jpeg?k=52f6b8190edb5a9c91528f8e0f875752ce55a6beb35dc62873601e57944990e4&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3 Hash10a69a98a6ef121319990f147463b1fd 008a948ed4a7a5b600b0710f39cd5c336b398fa5 068d94c8f0b14f65c999dc163d477f5d29cfa6908446e76dc85dfcb8d1f5210d
GET /xdata/images/xphoto/263x210/45450090.jpeg?k=52f6b8190edb5a9c91528f8e0f875752ce55a6beb35dc62873601e57944990e4&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Wed, 24 Apr 2024 12:22:09 GMT
content-language: 11795
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "78c06c289b99410d719289fe5882090079338c7f"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: NI7_AvtOV5dcfca1NLPg_qbJw9PwGgQWe-a2s49Sb64i71H7jzAVfA==
age: 872013
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/xphoto/540x405/292049346.webp?k=ad53f89eb6ed386bcdb6100d5c729e6db510900f74d8891baaab2bf2a2283631&o= | 143.204.55.112 | 200 OK | 97 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/xphoto/540x405/292049346.webp?k=ad53f89eb6ed386bcdb6100d5c729e6db510900f74d8891baaab2bf2a2283631&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 540x405, Scaling: [none]x[none], YUV color, decoders should clamp Hash60ea3321bbd1dc0a9685aadbd4c7a7ed 6c7286ab3f60807361548458a3e8ace5e32a1434 030760bffda373b9e66e3a69f2a1983155edcb6439b081ab9ab0d6dffac8c3bc
GET /xdata/images/xphoto/540x405/292049346.webp?k=ad53f89eb6ed386bcdb6100d5c729e6db510900f74d8891baaab2bf2a2283631&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/webp
server: nginx
content-language: 23040
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Fri, 05 Apr 2024 04:53:47 GMT
cache-control: max-age=2592000
etag: "7433f946d0a98e7d95dfaba3d3ed4fd048bcc1a7"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: F89Pzg-dYHIvBIf1JRHkduhsOAULVyMJ_NDoj1ex3DNQpzJSZvU0NQ==
age: 2540513
X-Firefox-Spdy: h2
|
|
| www.booking.com/js_tracking?stype=1&lang=en-us&pid=0819669da254000b&ref_action=index&ver=2&sid=6e4a4fe1a54696541edadb825a534c41&aid=304142&ete=&etg=cookie_consent_declined_policy_banner&etcg=&ets=&etgwv=&m=UmFuZG9tSVYkc2RlIyh9YcJJ3SV74TCaEAq6yJdf1W9XDZ4ERv5MSmgEaeuDDzcMCnFm8pdG8biMfCoQSooyYLlojioCX1DO3ngPAID-fl7NrNpeSVnqmsen3YvCFgyjQQ5LM-dQ19Dqge_s9XnkBVJ4sdfDUK3YETvm1U8LkTEl6zEzkIW3yvm7KB7L3nrBv-K-IFebO-XiQMKiVxkwDMdL6ARVLoeHRN8mjDOdfBdm7aw3AdGN5lR0raBslv12v49SzR7mWMF3xcwfU5kpWg4ZN1vlUmyQz7q5nVRLBy0 | 54.230.111.45 | 200 OK | 14 kB |
URL GET HTTP/2www.booking.com/js_tracking?stype=1&lang=en-us&pid=0819669da254000b&ref_action=index&ver=2&sid=6e4a4fe1a54696541edadb825a534c41&aid=304142&ete=&etg=cookie_consent_declined_policy_banner&etcg=&ets=&etgwv=&m=UmFuZG9tSVYkc2RlIyh9YcJJ3SV74TCaEAq6yJdf1W9XDZ4ERv5MSmgEaeuDDzcMCnFm8pdG8biMfCoQSooyYLlojioCX1DO3ngPAID-fl7NrNpeSVnqmsen3YvCFgyjQQ5LM-dQ19Dqge_s9XnkBVJ4sdfDUK3YETvm1U8LkTEl6zEzkIW3yvm7KB7L3nrBv-K-IFebO-XiQMKiVxkwDMdL6ARVLoeHRN8mjDOdfBdm7aw3AdGN5lR0raBslv12v49SzR7mWMF3xcwfU5kpWg4ZN1vlUmyQz7q5nVRLBy0 IP54.230.111.45:443
CertificateIssuerDigiCert Inc Subject*.booking.com FingerprintC7:72:77:E2:B0:F2:0E:46:E1:DC:98:03:30:6C:05:F2:10:E1:02:36 ValidityWed, 01 May 2024 00:00:00 GMT - Tue, 25 Mar 2025 23:59:59 GMT
Hash8b043102c15965e49e5f11f6c3d4350a eb4b380bb1105271ce69c08b8203fdd423728780 c1ae3aba9c76b7c6f7289e32222df5d13fbba9838f599d9b6665107d61e54e2e
GET /js_tracking?stype=1&lang=en-us&pid=0819669da254000b&ref_action=index&ver=2&sid=6e4a4fe1a54696541edadb825a534c41&aid=304142&ete=&etg=cookie_consent_declined_policy_banner&etcg=&ets=&etgwv=&m=UmFuZG9tSVYkc2RlIyh9YcJJ3SV74TCaEAq6yJdf1W9XDZ4ERv5MSmgEaeuDDzcMCnFm8pdG8biMfCoQSooyYLlojioCX1DO3ngPAID-fl7NrNpeSVnqmsen3YvCFgyjQQ5LM-dQ19Dqge_s9XnkBVJ4sdfDUK3YETvm1U8LkTEl6zEzkIW3yvm7KB7L3nrBv-K-IFebO-XiQMKiVxkwDMdL6ARVLoeHRN8mjDOdfBdm7aw3AdGN5lR0raBslv12v49SzR7mWMF3xcwfU5kpWg4ZN1vlUmyQz7q5nVRLBy0 HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
X-Booking-AID: 304142
X-Booking-CSRF: +n82ZgAAAAA=JUfbTOiNZC7InCj9e83gYip7la-1Duk79OMyikM-suA7mVBBtWh4JWQje5uzeilNfXTOSA79k2JL9pHq-fRO01RqgOwKfkoVPuUVMt2whpm-BExzsUWnOGkh7yQzuzUDo6PjRlYaNv9Ff3r7cd5_-VeOPy8wbRb_uecmbxj8KNC4tqPYeGRM2YYV0LiXU7s-_FCozDCYhS5k16Fb
X-Booking-Info: 1865390,1932080,1932100,1932110,1939730,1943090,1946400,1959390,1970670,1975230,1976360,1977000,cCHObTULHfAFFQZcfHSdFaLbFFRURURHe|1,cCHObKdPHMfFdHMEKBOcaGPaAHFHDQIC|8,1970670|1,HWAJLGbbeLHAFPRFDEYScEUWBZEWaSddKNKNKWe|2,cCGaYSddOEGcHNAEQfKCePBeZTPSeUFRURURHe|1,cCGaYSddOEGcHNAEQfKCePBeZTPSeUFRURURHe|6,dDfPWPHDDZSOBJbKYfNIfPTDWe|1,YTTHbXeeVJWcFKJPFNJQVVEbMKXe|1,YTTHbXeeVJWcFKJPFNJQVVEbMKXe|5,aXTfOFJZMYeKTcABVYUfFdHMPVWCGTQJQJET|1,aXTfOFJZMYeKTcABVYUfFdHMPVWCGTQJQJET|2,aXTfMZMYeKTcNGEcfFdHMPVUPHET|1,TZUfONebEWAUFccRMVIZdRRT|1,aXTfMZMYeKTcNGEcfFdHMPVUPHET|3,NAFLeOeJHSCQQGPLUPHBeZdRNYYdTUWe|1,HVQeYFRURURYDEZREWQUQeFADDbddJKe|1,TWULdKJBYWKVDEZREHDWNHXdJTaJBaMEAKe|1,TWULdKJBYWKVDEZREHDWNHXdJTaJBaMEAKe|3,cCHObVZMYCMKdFEVJTNIKdFHaO|1,cCHObVZMYCMKdFEVJTNIKdFHaO|3,NAFLeOeJcQEcVOdWNeYZdfdbJae|1,NAFLeOeJabUZFQbMWKZETTeMcCcCcCC|1,NAFLeOeJVCMcQEcVOdWNeYZaTaTaET|1,NAFLeOeJcLMbFQbMWKZETTeMcCcCcCC|1,NAFLeOeJcLdYZGQDaRNFOSeDdKNKNKWe|1,NAFLeOeJaMSPdGFdICFHUeUdLOLOLMO|1,cCHObKdBdUHINPSXeHDALOLOLMO|1,cCHObKdBdUHINPSXeHDALOLOLMO|5,cCeIVOMPWAEeIcFARSYSbZDQSXbaTaTaET|3,cCeIVOOLfOECVVDFRURURHe|1,cCeIVOOLfOECVVDFRURURHe|2,cCHOGcbREDEZRdRERJBHAOeVATZdSGWFRURURHe|1,cCeIVOAPEbSccEZVACdKNKNKWe|1,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|1,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|1,cCHObdRdJJVdfUSCEcdNHMddKNKNKWe|1,cCHObdRdJJVdfUJGFDSeBcZFLMFRURURHe|1,cCHObdRdJJVdfUJGFDSeBcZFLMFRURURHe|3,cCeIVOTeJUNSMTfIMLebaTaTaET|1,cCeIVOTeJUNSMTaSdNdKNKNKWe|1,cCHOGAQHSMSXUDeLcffIVXBPKAFRURURHe|1,cCHOGAQHSMSXUDeLcffIVXBPKAFRURURHe|5,cCHOGAQPXafJCfSFeMZXZAQeRfXPRQNIKdFHaO|1,cCHObKdBZXZAVCMIQRMebfTIbRZaTaTaET|1,cCeIVOdJEVOAeZTbQNPcZRALOLOLMO|1,cCeIVOIYcYCcTUDQZaTaTaET|1,cCHObCBWaEdIPPSfDcXLYSfDccCcCcCC|2,NAFLeOeJcQEcVOdWNeYZdfdbJae|2,NAFLeOeJcQEcVOdWNeYZdfdbJae|4,NAFLeOeJabUZFQbMWKZETTeMcCcCcCC|2,NAFLeOeJabUZFQbMWKZETTeMcCcCcCC|4,NAFLeOeJVCMcQEcVOdWNeYZaTaTaET|2,NAFLeOeJVCMcQEcVOdWNeYZaTaTaET|4,NAFLeOeJcLMbFQbMWKZETTeMcCcCcCC|2,NAFLeOeJcLMbFQbMWKZETTeMcCcCcCC|4,NAFLeOeJcLdYZGQDaRNFOSeDdKNKNKWe|2,NAFLeOeJcLdYZGQDaRNFOSeDdKNKNKWe|4,NAFLeOeJaMSPdGFdICFHUeUdLOLOLMO|2,NAFLeOeJaMSPdGFdICFHUeUdLOLOLMO|4,cCHObVZMYCMKdFEVJTNIKdFHaO|4,cCHObVZMYCMKdFEVJTNIKdFHaO|6,cCHObKdPHMfFdHMEKBOcaGPaAHFHDQIC|9,cCeIVOOLfOECVVDFRURURHe|3,cCeIVOdJEVOAeZTbQNPcZRALOLOLMO|2,cCeIVOTeJUNSMTfIMLebaTaTaET|2,cCeIVOTeJUNSMTaSdNdKNKNKWe|2
X-Booking-Client-Info: cCHObKdPHMfFdHMEKBOcaGPaAHFHDQIC|8,HWAJLGbbeLHAFPRFDEYScEUWBZEWaSddKNKNKWe|2,cCGaYSddOEGcHNAEQfKCePBeZTPSeUFRURURHe|1,cCGaYSddOEGcHNAEQfKCePBeZTPSeUFRURURHe|6
X-Booking-Label: gen173nr-1FCAEoggI46AdIM1gEaKoBiAEBmAExuAEZyAEP2AEB6AEB-AECiAIBqAIDuAK6j9mxBsACAdICJDBlNjk5Y2MwLTQ5MGQtNDU1Yi1hZTE3LTc5MGI4NDBjYmQ3ZtgCBeACAQ
X-Booking-Language-Code: en-us
X-Booking-Pageview-Id: 0819669da254000b
X-Booking-Session-Id: 6e4a4fe1a54696541edadb825a534c41
X-Booking-SiteType-Id: 1
X-Partner-Channel-Id: 3
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbKE7bjkbYWznlSlRZNNCt3qtLmDyaNHAu0dSLZq43GKf4xZXrYbUZ7aXt1f7U4XD2O8hKxNJkm1QdUwf7lO5P0%2FPUK4ckxlG034dwoYWSgVw1%2F7Yjd9SPkeN4tFnJQppTXsYaSUywWwljveRrNPNwu2PAJsZYK5glgx3LG%2F%2F3p3I%3D; bkng_sso_auth=CAIQsOnuTRpmvKlZYXYJUdjpVbdMvQwNjHrvsml6L4VkiK7tISGV++DO0XXfwqYqcvGv6N5B0jJ+At6IQOX9CzDigoeY7Dt/FQmXvzsPX5q9kGIjFfD+w/XIrSbe9Qmi3qompOLVKk1Ncna0zA0n; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3D047e10e5-e3e9-42f5-8d41-1b74123b97ba%26consentedAt%3D2024-05-04T14%3A35%3A38.319Z%26expiresAt%3D2024-10-31T14%3A35%3A38.319Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; px_init=0; pcm_personalization_disabled=0; cors_js=1; bkng_sso_session=e30; bkng_sso_ses=e30; OptanonConsent=implicitConsentCountry=GDPR&implicitConsentDate=1714833341097&isGpcEnabled=0&datestamp=Sat+May+04+2024+14%3A35%3A42+GMT%2B0000+(GMT)&version=202403.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=9b410d55-22ad-4115-aad7-534adfa48e9d&interactionCount=1&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&intType=2; BJS=-; 11_srd=%7B%22features%22%3A%5B%7B%22id%22%3A16%7D%5D%2C%22score%22%3A3%2C%22detected%22%3Afalse%7D; OptanonAlertBoxClosed=2024-05-04T14:35:42.666Z
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
server: nginx
date: Sat, 04 May 2024 14:35:42 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
strict-transport-security: max-age=2592000; includeSubDomains
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=2816669fa4ee014d&e=UmFuZG9tSVYkc2RlIyh9Yea92wm0yRUjnCBymoy8ejLFu9amCB5vKeBTzuTm7eMWV6iFG6QRpY0
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: B2oAYltUJKaBCvNahV-lhUfltQ-XvMxQlbZ8aTIUBVZNgnGJN9xO1A==
X-Firefox-Spdy: h2
|
|
| r-xx.bstatic.com/xdata/images/xphoto/263x210/45450082.jpeg?k=beb101b827a729065964523184f4db6cac42900c2415d71d516999af40beb7aa&o= | 143.204.55.112 | 200 OK | 17 kB |
URL GET HTTP/2r-xx.bstatic.com/xdata/images/xphoto/263x210/45450082.jpeg?k=beb101b827a729065964523184f4db6cac42900c2415d71d516999af40beb7aa&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3 Hash8fb953e53e57813bad460e68bcfd45f5 171e8487e4d3d1dc4c4144220d777f510fa71602 cf7d9bde5995387cd27476144f3a80991f3d3e9e70fe968fbcc9d5d5d9436b23
GET /xdata/images/xphoto/263x210/45450082.jpeg?k=beb101b827a729065964523184f4db6cac42900c2415d71d516999af40beb7aa&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Wed, 01 May 2024 15:31:08 GMT
content-language: 10776
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "dc7c5b4b80a5725d17634bed31f74382f04698fd"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: oCgFiDXWeN36LWCFXukYpKiVjrUw1sG5bUEnunvmE1R6k6yzhzzdMw==
age: 255874
X-Firefox-Spdy: h2
|
|
| q-xx.bstatic.com/xdata/images/xphoto/263x210/45450093.jpeg?k=aa5cc7703f3866af8ffd6de346c21161804a26c3d0a508d3999c11c337506ae1&o= | 143.204.55.112 | 200 OK | 14 kB |
URL GET HTTP/2q-xx.bstatic.com/xdata/images/xphoto/263x210/45450093.jpeg?k=aa5cc7703f3866af8ffd6de346c21161804a26c3d0a508d3999c11c337506ae1&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3 Hash529055cb9a24ca54469e398ece56bb3d 4fab1562851a93d8ecf6c82dc894539af052aa9c c2fc59224109a64a1e758a9948da5d0bc7b3455667f0d17d8a7cc00d8025403b
GET /xdata/images/xphoto/263x210/45450093.jpeg?k=aa5cc7703f3866af8ffd6de346c21161804a26c3d0a508d3999c11c337506ae1&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Wed, 01 May 2024 15:31:08 GMT
content-language: 10434
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "bc90e8a63896c558548037ab9e0dad7d0ee94fca"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vHs6pb-ZSQ0UgzS3ffRqcy-gsIsRvlVyD7QofD5qh1kMJQPOSVQtmQ==
age: 255874
X-Firefox-Spdy: h2
|
|
| r-xx.bstatic.com/xdata/images/hotel/263x210/100235855.jpeg?k=5b6e6cff16cfd290e953768d63ee15f633b56348238a705c45759aa3a81ba82b&o= | 143.204.55.112 | 200 OK | 13 kB |
URL GET HTTP/2r-xx.bstatic.com/xdata/images/hotel/263x210/100235855.jpeg?k=5b6e6cff16cfd290e953768d63ee15f633b56348238a705c45759aa3a81ba82b&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3 Hash1cda75437bd23fabf3e2ded95f995c07 2ab6d597a8596d1ed565eb4fe88b1995360eb76b a736e297fb954135fb94d3935fdd11eab215e7f91ad01e128f3473117bbb413b
GET /xdata/images/hotel/263x210/100235855.jpeg?k=5b6e6cff16cfd290e953768d63ee15f633b56348238a705c45759aa3a81ba82b&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Mon, 15 Apr 2024 08:57:49 GMT
content-language: 12530
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "9aff9e5c9b69d9442b7f563196b1a2235d432b9f"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _GYbU_upFppN0GJwBeWufjTAe4AbGK89kKVhLFNc4M7uqy9EZj4t4A==
age: 1661873
X-Firefox-Spdy: h2
|
|
| q-xx.bstatic.com/xdata/images/hotel/263x210/52979454.jpeg?k=6ac6d0afd28e4ce00a8f817cc3045039e064469a3f9a88059706c0b45adf2e7d&o= | 143.204.55.112 | 200 OK | 9.0 kB |
URL GET HTTP/2q-xx.bstatic.com/xdata/images/hotel/263x210/52979454.jpeg?k=6ac6d0afd28e4ce00a8f817cc3045039e064469a3f9a88059706c0b45adf2e7d&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3 Hash3abcca9cbf5e0f154555c243fecb9f12 d490e309a08c02f3e9f6f814a30abc8a76f59a6b fc3bbef022b6f359e2834960d6b1bac9dbbc13a8ea43dd772e78333563c23634
GET /xdata/images/hotel/263x210/52979454.jpeg?k=6ac6d0afd28e4ce00a8f817cc3045039e064469a3f9a88059706c0b45adf2e7d&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Sat, 06 Apr 2024 12:54:56 GMT
content-language: 8970
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "1842ab68bb857fcaf0b89118d9a34c5f6e21b909"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: GN3sLI_FNEz4VyWi2uFtctOuI5YxVIrO_NS8k6x-E4rCy3c0sbMckQ==
age: 2425246
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/static/js/raf_cloudfront_sd/dd5263a943463335a3322cd5682688893b1d054f.js | 143.204.55.112 | 200 OK | 92 kB |
URL GET HTTP/2cf.bstatic.com/static/js/raf_cloudfront_sd/dd5263a943463335a3322cd5682688893b1d054f.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash4c1ee672f22e8ba06b942bc78581dc50 85b440ab554c77a746009e0f128bdd40e3270ede d17eec352b9ce852d3e783844509adaab0a59ff869ff39a1c6500a0c5c2066c3
GET /static/js/raf_cloudfront_sd/dd5263a943463335a3322cd5682688893b1d054f.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 19 Apr 2024 09:08:14 GMT
last-modified: Fri, 19 Apr 2024 08:49:11 GMT
etag: W/"66223007-1f33e"
expires: Sun, 19 May 2024 09:08:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: D4-jNs784Nu18jEZVgvNrvHBxWrB12bX0wRFdnNBj68L_aEn9fJ-mw==
age: 1315645
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/hotel/square600/85257658.webp?k=e3f110e4ed0978310a028465a3bdd609149ecbded601555c881106255556b52e&o= | 143.204.55.112 | 200 OK | 37 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/hotel/square600/85257658.webp?k=e3f110e4ed0978310a028465a3bdd609149ecbded601555c881106255556b52e&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp Hash1c1bdbdd03d1cfa76e94338e6537d32c 0f831e00bcef9da1198a571dcb1cbdf1c2b181bd 2e7b6eb121f5b9c9e6da8aec1a5179b900905bfefbce9a6225c5582af81537d1
GET /xdata/images/hotel/square600/85257658.webp?k=e3f110e4ed0978310a028465a3bdd609149ecbded601555c881106255556b52e&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Sat, 13 Apr 2024 08:50:45 GMT
etag: "00b581addf5a7b956fa02c6d7a6f320ecf61b011"
content-language: 20238
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9C4KdJkCWR02ZfJpvl7GXMtZkMPOxADTMt6iLfFwIon925mUPXh-wQ==
age: 1835098
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/hotel/square600/156801685.webp?k=02499ffda30e83b23ddf0ddf20ce0e98c9869385064e2ac53ccc8681afb6cfa7&o= | 143.204.55.112 | 200 OK | 154 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/hotel/square600/156801685.webp?k=02499ffda30e83b23ddf0ddf20ce0e98c9869385064e2ac53ccc8681afb6cfa7&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp Size154 kB (153594 bytes) Hash3313ba324200c243ed0296f5a03c3193 0f6e8651d7c31a7fa7d2efd04ac5f1b8646c888c b6458869dea0bf38e5cf2da96596e7b66f2aa1c90c7810aeafb145c9b2717473
GET /xdata/images/hotel/square600/156801685.webp?k=02499ffda30e83b23ddf0ddf20ce0e98c9869385064e2ac53ccc8681afb6cfa7&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Fri, 05 Apr 2024 11:41:38 GMT
content-language: 97820
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "662428788346d30d5ec29cf3fb93333841edee63"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: I693fCrnVM9KEUcDfmRByNV_gCAc6v02ylMb44khOW0sC41e6uHc-Q==
age: 2516045
X-Firefox-Spdy: h2
|
|
| q-xx.bstatic.com/xdata/images/xphoto/263x210/45450058.jpeg?k=2449eb55e8269a66952858c80fd7bdec987f9514cd79d58685651b7d6e9cdfcf&o= | 143.204.55.112 | 200 OK | 188 kB |
URL GET HTTP/2q-xx.bstatic.com/xdata/images/xphoto/263x210/45450058.jpeg?k=2449eb55e8269a66952858c80fd7bdec987f9514cd79d58685651b7d6e9cdfcf&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3 Size188 kB (187735 bytes) Hashdcba48989fcd62afa72d1c95a9006088 8b3b24b5c34242b55237da75823c3054d265c22a 387346442ebf521401b018c96fd5c0fe0a3ed9affb41075e7098ad23c5025b8b
GET /xdata/images/xphoto/263x210/45450058.jpeg?k=2449eb55e8269a66952858c80fd7bdec987f9514cd79d58685651b7d6e9cdfcf&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Wed, 24 Apr 2024 12:22:09 GMT
content-language: 10145
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "418ccc7d8bc2472340222db59b4efba9f0d7bac7"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _PTSL2XXMMMztS5w3Ht364KEUVHFdcbgyqgTOx4CYHaS3TWmad9sAA==
age: 872013
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/hotel/square600/179387540.webp?k=cbf33b04282d8beb50db374f587fedfc39a8787f761dc9ad3b823191cea4b5e1&o= | 143.204.55.112 | 200 OK | 123 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/hotel/square600/179387540.webp?k=cbf33b04282d8beb50db374f587fedfc39a8787f761dc9ad3b823191cea4b5e1&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp Size123 kB (123352 bytes) Hashd1220697257805b09c3605a387e3d1d1 e28c8baed1c1528ac4f2e4b82586a44dcbab61ee 774d3bdeb97110d2457841cd75ad53fed135cbb14dc0c95c1169f3b30bd86491
GET /xdata/images/hotel/square600/179387540.webp?k=cbf33b04282d8beb50db374f587fedfc39a8787f761dc9ad3b823191cea4b5e1&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Wed, 01 May 2024 15:31:08 GMT
content-language: 95806
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "debf32bd9d2080aa2b146e3c7e76d5d1eb66be17"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: CJEVET8vHJ9hFO4TYoqbWA23To-bIirbxPB4txqZQZPri2ASHC_DEQ==
age: 255875
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/css/97a643cd.c69b7249.chunk.css | 143.204.55.112 | 200 OK | 1.0 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/css/97a643cd.c69b7249.chunk.css IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeASCII text, with very long lines (2680) Hashc50ad5919b650c181d598aa3d885e6e7 f5a63219a3eace085d98a67a4b84ccf867a5c7a1 48bf9bdb2a5f3d48595962a1fc3055f437e975999ed983e92ff315eb2fe58517
GET /psb/capla/static/css/97a643cd.c69b7249.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Fri, 03 May 2024 16:16:51 GMT
last-modified: Fri, 03 May 2024 14:37:54 GMT
etag: W/"c50ad5919b650c181d598aa3d885e6e7"
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: LH7RSM4Vx9vBy0msu5y4l02ft7B0Pdg1
server: AmazonS3
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: j5_EQUWsZmPrAVVnnKuQVhEYacDfm4zjnhk5VuGxTeMIgzUW_xkNYQ==
age: 80329
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| privacyportal-eu.onetrust.com/request/v1/consentreceipts | 104.18.32.137 | 200 OK | 178 kB |
URL OPTIONS HTTP/2privacyportal-eu.onetrust.com/request/v1/consentreceipts IP104.18.32.137:443
CertificateIssuerLet's Encrypt Subjectonetrust.com FingerprintFB:9C:14:70:9B:22:FB:F6:B7:C3:39:38:9A:34:8E:2F:64:0E:DF:44 ValidityFri, 19 Apr 2024 23:13:49 GMT - Thu, 18 Jul 2024 23:13:48 GMT
File typegzip compressed data, from Unix Size178 kB (177808 bytes) Hashb4c23d077ff763115699085eb5a6d4cf b8753b17787f40eaa8ad5786ff4e361fbc8c1daa 00547522a32b5a1fb81f7a596a663c8a9965e0e11fda9328a85fca59137f2346
POST /request/v1/consentreceipts HTTP/1.1
Host: privacyportal-eu.onetrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 11164
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 14:35:42 GMT
content-type: application/json
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-onetrust-receiptid: d4bcebc6-e4ee-444a-9a8c-883a83a795c3
access-control-allow-origin: *
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87e938087849712e-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| accounts.google.com/gsi/status?client_id=901905703382-m88jn1h9ll89odkt6t5muc6h7ep83rlh.apps.googleusercontent.com&as=PmWpjNd2ymv%2FvQMfBkAk%2Bw&has_opted_out_fedcm=false | 64.233.162.84 | 200 OK | 6.7 kB |
URL GET HTTP/3accounts.google.com/gsi/status?client_id=901905703382-m88jn1h9ll89odkt6t5muc6h7ep83rlh.apps.googleusercontent.com&as=PmWpjNd2ymv%2FvQMfBkAk%2Bw&has_opted_out_fedcm=false IP64.233.162.84:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File typegzip compressed data, max compression Hashc73ebbea66845d504d45ca603a71e6eb e162f46112be27113b0f2094c42e396b277ef79f 1d91ed3aca255234e605da24e11f24e74badcfa63555e9505a2308920ecd1e1b
GET /gsi/status?client_id=901905703382-m88jn1h9ll89odkt6t5muc6h7ep83rlh.apps.googleusercontent.com&as=PmWpjNd2ymv%2FvQMfBkAk%2Bw&has_opted_out_fedcm=false HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=utf-8
x-content-type-options: nosniff
access-control-allow-origin: https://www.booking.com
access-control-allow-credentials: true
access-control-allow-methods: GET
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 04 May 2024 14:35:44 GMT
content-disposition: attachment; filename="json.txt"; filename*=UTF-8''json.txt
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
content-security-policy: script-src 'nonce-GfbEXpF8DB4u3cM9CJGa2Q' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.booking.com/sendlayoutevents | 54.230.111.45 | 200 OK | 18 B |
URL POST HTTP/2www.booking.com/sendlayoutevents IP54.230.111.45:443
CertificateIssuerDigiCert Inc Subject*.booking.com FingerprintC7:72:77:E2:B0:F2:0E:46:E1:DC:98:03:30:6C:05:F2:10:E1:02:36 ValidityWed, 01 May 2024 00:00:00 GMT - Tue, 25 Mar 2025 23:59:59 GMT
Hash81a3741954559ea5a2af17ab488aa906 83d235a4128e9828371fad4e5e22d55f168a3d6e 2e7f2cc2c0508d98633eb152c7625085e0cad3a9ca467575ae2b7056e49822dc
POST /sendlayoutevents HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Booking-Pageview-Id: 0819669da254000b
X-Booking-AID: 304142
X-Booking-Session-Id: 6e4a4fe1a54696541edadb825a534c41
X-Booking-SiteType-Id: 1
X-Partner-Channel-Id: 3
X-Booking-Label: gen173nr-1FCAEoggI46AdIM1gEaKoBiAEBmAExuAEZyAEP2AEB6AEB-AECiAIBqAIDuAK6j9mxBsACAdICJDBlNjk5Y2MwLTQ5MGQtNDU1Yi1hZTE3LTc5MGI4NDBjYmQ3ZtgCBeACAQ
X-Booking-CSRF: +n82ZgAAAAA=JUfbTOiNZC7InCj9e83gYip7la-1Duk79OMyikM-suA7mVBBtWh4JWQje5uzeilNfXTOSA79k2JL9pHq-fRO01RqgOwKfkoVPuUVMt2whpm-BExzsUWnOGkh7yQzuzUDo6PjRlYaNv9Ff3r7cd5_-VeOPy8wbRb_uecmbxj8KNC4tqPYeGRM2YYV0LiXU7s-_FCozDCYhS5k16Fb
X-Booking-Language-Code: en-us
X-Booking-Client-Info: cCHObKdPHMfFdHMEKBOcaGPaAHFHDQIC|8,HWAJLGbbeLHAFPRFDEYScEUWBZEWaSddKNKNKWe|2,cCGaYSddOEGcHNAEQfKCePBeZTPSeUFRURURHe|1,cCGaYSddOEGcHNAEQfKCePBeZTPSeUFRURURHe|6
X-Booking-Info: 1865390,1932080,1932100,1932110,1939730,1943090,1946400,1959390,1970670,1975230,1976360,1977000,cCHObTULHfAFFQZcfHSdFaLbFFRURURHe|1,cCHObKdPHMfFdHMEKBOcaGPaAHFHDQIC|8,1970670|1,HWAJLGbbeLHAFPRFDEYScEUWBZEWaSddKNKNKWe|2,cCGaYSddOEGcHNAEQfKCePBeZTPSeUFRURURHe|1,cCGaYSddOEGcHNAEQfKCePBeZTPSeUFRURURHe|6,dDfPWPHDDZSOBJbKYfNIfPTDWe|1,YTTHbXeeVJWcFKJPFNJQVVEbMKXe|1,YTTHbXeeVJWcFKJPFNJQVVEbMKXe|5,aXTfOFJZMYeKTcABVYUfFdHMPVWCGTQJQJET|1,aXTfOFJZMYeKTcABVYUfFdHMPVWCGTQJQJET|2,aXTfMZMYeKTcNGEcfFdHMPVUPHET|1,TZUfONebEWAUFccRMVIZdRRT|1,aXTfMZMYeKTcNGEcfFdHMPVUPHET|3,NAFLeOeJHSCQQGPLUPHBeZdRNYYdTUWe|1,HVQeYFRURURYDEZREWQUQeFADDbddJKe|1,TWULdKJBYWKVDEZREHDWNHXdJTaJBaMEAKe|1,TWULdKJBYWKVDEZREHDWNHXdJTaJBaMEAKe|3,cCHObVZMYCMKdFEVJTNIKdFHaO|1,cCHObVZMYCMKdFEVJTNIKdFHaO|3,NAFLeOeJcQEcVOdWNeYZdfdbJae|1,NAFLeOeJabUZFQbMWKZETTeMcCcCcCC|1,NAFLeOeJVCMcQEcVOdWNeYZaTaTaET|1,NAFLeOeJcLMbFQbMWKZETTeMcCcCcCC|1,NAFLeOeJcLdYZGQDaRNFOSeDdKNKNKWe|1,NAFLeOeJaMSPdGFdICFHUeUdLOLOLMO|1,cCHObKdBdUHINPSXeHDALOLOLMO|1,cCHObKdBdUHINPSXeHDALOLOLMO|5,cCeIVOMPWAEeIcFARSYSbZDQSXbaTaTaET|3,cCeIVOOLfOECVVDFRURURHe|1,cCeIVOOLfOECVVDFRURURHe|2,cCHOGcbREDEZRdRERJBHAOeVATZdSGWFRURURHe|1,cCeIVOAPEbSccEZVACdKNKNKWe|1,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|1,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|1,cCHObdRdJJVdfUSCEcdNHMddKNKNKWe|1,cCHObdRdJJVdfUJGFDSeBcZFLMFRURURHe|1,cCHObdRdJJVdfUJGFDSeBcZFLMFRURURHe|3,cCeIVOTeJUNSMTfIMLebaTaTaET|1,cCeIVOTeJUNSMTaSdNdKNKNKWe|1,cCHOGAQHSMSXUDeLcffIVXBPKAFRURURHe|1,cCHOGAQHSMSXUDeLcffIVXBPKAFRURURHe|5,cCHOGAQPXafJCfSFeMZXZAQeRfXPRQNIKdFHaO|1,cCHObKdBZXZAVCMIQRMebfTIbRZaTaTaET|1,cCeIVOdJEVOAeZTbQNPcZRALOLOLMO|1,cCeIVOIYcYCcTUDQZaTaTaET|1,cCHObCBWaEdIPPSfDcXLYSfDccCcCcCC|2,NAFLeOeJcQEcVOdWNeYZdfdbJae|2,NAFLeOeJcQEcVOdWNeYZdfdbJae|4,NAFLeOeJabUZFQbMWKZETTeMcCcCcCC|2,NAFLeOeJabUZFQbMWKZETTeMcCcCcCC|4,NAFLeOeJVCMcQEcVOdWNeYZaTaTaET|2,NAFLeOeJVCMcQEcVOdWNeYZaTaTaET|4,NAFLeOeJcLMbFQbMWKZETTeMcCcCcCC|2,NAFLeOeJcLMbFQbMWKZETTeMcCcCcCC|4,NAFLeOeJcLdYZGQDaRNFOSeDdKNKNKWe|2,NAFLeOeJcLdYZGQDaRNFOSeDdKNKNKWe|4,NAFLeOeJaMSPdGFdICFHUeUdLOLOLMO|2,NAFLeOeJaMSPdGFdICFHUeUdLOLOLMO|4,cCHObVZMYCMKdFEVJTNIKdFHaO|4,cCHObVZMYCMKdFEVJTNIKdFHaO|6,cCHObKdPHMfFdHMEKBOcaGPaAHFHDQIC|9,cCeIVOOLfOECVVDFRURURHe|3,cCeIVOdJEVOAeZTbQNPcZRALOLOLMO|2,cCeIVOTeJUNSMTfIMLebaTaTaET|2,cCeIVOTeJUNSMTaSdNdKNKNKWe|2
X-Requested-With: XMLHttpRequest
Content-Length: 117
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbnmKTRaewPBs0N5Z35mijrQKoo9gdga1hJalYGtj8BkDYKU0%2Bu5PplsiUygIHD3YZzJglCj7njoL1l1gxD%2FJNYIEbMf9Rbu8ESSMdqDxRNMizILfJWOqscmgG5uD85Q3rTxbFXm8HUuyPMTwKy9AfTl20%2FZtJ8i4SlfbLfy6bm8Q%3D; bkng_sso_auth=CAIQsOnuTRp4XCf2mTNX2vTaKOi4c2gJXy3BplRywvZtVCh4hXGp5h5po/N6Qux+6kUCprdfXKCUOnGOJCKYHHcQmnGvYbRr1GQd2W7Jn/T3WlKyR4wJOjW8Sbugx4dG7NoQ9nDUFZd1Yhlso8MBnxHNGtpJqGdaAcEEZ4PTweKT; pcm_consent=consentedAt%3D2024-05-04T14%3A35%3A43.072Z%26countryCode%3DNO%26expiresAt%3D2024-10-31T14%3A35%3A43.072Z%26implicit%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr%26consentId%3D5fe20cb7-3a0d-49bd-9e44-a4a576eaaa39%26analytical%3Dfalse%26marketing%3Dfalse; px_init=0; pcm_personalization_disabled=0; cors_js=1; bkng_sso_session=e30; bkng_sso_ses=eyJib29raW5nX2dsb2JhbCI6W3siYSI6MSwiaCI6Ik11TFNOayszcVZqUk1NeWZjUkwxdUdZMUVlYThZd0I5aWl1NmtuQlNzWGsifV19; OptanonConsent=implicitConsentCountry=GDPR&implicitConsentDate=1714833341097&isGpcEnabled=0&datestamp=Sat+May+04+2024+14%3A35%3A42+GMT%2B0000+(GMT)&version=202403.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=9b410d55-22ad-4115-aad7-534adfa48e9d&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&backfilled_at=1714833343460&backfilled_seed=1; BJS=-; 11_srd=%7B%22features%22%3A%5B%7B%22id%22%3A16%7D%5D%2C%22score%22%3A3%2C%22detected%22%3Afalse%7D; OptanonAlertBoxClosed=2024-05-04T14:35:42.666Z; bkng_sso_auth_1714833343=CAIQsOnuTRp4XCf2mTNX2vTaKOi4c2gJXy3BplRywvZtVCh4hXGp5h5po/N6Qux+6kUCprdfXKCUOnGOJCKYHHcQmnGvYbRr1GQd2W7Jn/T3WlKyR4wJOjW8Sbugx4dG7NoQ9nDUFZd1Yhlso8MBnxHNGtpJqGdaAcEEZ4PTweKT
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 18
server: nginx
date: Sat, 04 May 2024 14:35:46 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbnmKTRaewPBs0N5Z35mijrQKoo9gdga1hJalYGtj8BkDoLsd%2B3eWgV0%2FyL3BjvbXZhC0ohDQtPWwSdqT4KE0L0Y2Af5lb8wfhTimb0ZxkIzs9Yn%2BAxg86As%2FIK1i79%2Fm55oWBT%2Fk2jCqfu5Nn%2BQ6EJrTAQhXLZQNm7HEs7LJ%2B064%3D; domain=.booking.com; path=/; expires=Thu, 03-May-2029 14:35:46 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=2592000; includeSubDomains
x-content-options: nosniff
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=d57b66a12cea02ae&e=UmFuZG9tSVYkc2RlIyh9YReXsVhv1rQKB4Zv_9za_vcFj7qj8jXAcjuC5pTz_Et6fl5E9rWcUVk
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fT0yrQ7ND1_txrjUFDSfhgBDpdiok5qBYejnPFZ7vpnoJmaN2hkvyg==
X-Firefox-Spdy: h2
|
|
| cdn.cookielaw.org/scripttemplates/202403.2.0/assets/otCommonStyles.css | 104.19.177.52 | 200 OK | 4.2 kB |
URL GET HTTP/2cdn.cookielaw.org/scripttemplates/202403.2.0/assets/otCommonStyles.css IP104.19.177.52:443
CertificateIssuerCloudflare, Inc. Subjectcookielaw.org FingerprintC9:7F:A3:0A:53:6E:A6:6C:2F:D0:E2:2C:F5:35:B4:BC:81:90:40:31 ValidityFri, 01 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File typegzip compressed data, from Unix Hash14c473fdf6023fa6e3ef666bcb171b4c df300c3b2cb9732ab1012d01d8e661b38489b4eb 58dbfad5bcc64d254cdcb9e2a8ba609095e856ff809a00d66770901e375aa067
GET /scripttemplates/202403.2.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 14:35:42 GMT
content-type: text/css
content-md5: 4ErYmXXFNbMLrnc9DrDTsg==
last-modified: Mon, 22 Apr 2024 06:06:21 GMT
x-ms-request-id: 77cad75d-c01e-00a6-1f7b-948e9d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 76142
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e938064c7e0b55-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/css/0d073a5f.8f713115.chunk.css | 143.204.55.112 | 200 OK | 315 B |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/css/0d073a5f.8f713115.chunk.css IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeASCII text, with very long lines (317), with no line terminators Hashb530639e450ec04b02440e46b62d8230 43b44e36ed98d6b4d48be4c09b75bd0aa04cb715 b847d1f116451ad5e7301ee5dc971a397dc8d87a8b759d55a5373e21662877a2
GET /psb/capla/static/css/0d073a5f.8f713115.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
content-length: 315
date: Fri, 03 May 2024 16:16:51 GMT
last-modified: Fri, 03 May 2024 14:37:54 GMT
etag: "6089aad83808b23f504b18ed1e16f588"
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: L6w4FHhIXXbyXxKoOAESiWiuGtqosbm4
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: wpu1VwWxQGbEQ8SlV2oLBPrXPQzAWuvDsf9O8aZUYV0mp_pze6HFTA==
age: 80329
vary: Origin
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/js/782ad794.4aa7faa7.chunk.js | 143.204.55.112 | 200 OK | 886 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/js/782ad794.4aa7faa7.chunk.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size886 kB (886023 bytes) Hash78d3d8e836f7171f9c312f630db331cf 1b331c9a6def04bb95ba16439ed90d54d9124b7f 572dd4ca04ebd3e031308d8dfeedca4b63b384c82f6b26bb09c61e348440234e
GET /psb/capla/static/js/782ad794.4aa7faa7.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 02 May 2024 14:18:23 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: O3Iaqkzu1vOTmm07N15XnwOJZMhpcb1N
server: AmazonS3
content-encoding: br
date: Sat, 04 May 2024 00:27:18 GMT
etag: W/"78d3d8e836f7171f9c312f630db331cf"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: J6HBagzfTUyooh-mZQwX6KG7Ptd-lnxZindmsE2S1c_QSlrUr6gVFw==
age: 50902
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
|
|
| www.booking.com/c360/v1/track | 54.230.111.45 | 200 OK | 53 B |
URL POST HTTP/2www.booking.com/c360/v1/track IP54.230.111.45:443
CertificateIssuerDigiCert Inc Subject*.booking.com FingerprintC7:72:77:E2:B0:F2:0E:46:E1:DC:98:03:30:6C:05:F2:10:E1:02:36 ValidityWed, 01 May 2024 00:00:00 GMT - Tue, 25 Mar 2025 23:59:59 GMT
File typeASCII text, with no line terminators Hash31b34ee56f33c251728195508242a21a fc821aa56a0f52b4195017229f998c4e23a5135e d3d42c9213981c909e529e56f1870ee27ac28d8590538b0acd42e0e7c4f6edc6
POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-Type: application/json
X-Booking-Platform: www
X-Booking-SiteType-Id: 1
X-Booking-Pageview-Id: 0819669da254000b
X-Booking-Session-Id: undefined
X-Booking-ET-Seed: undefined
X-Booking-AID: 304142
X-Booking-Label: undefined
X-Booking-CSRF: undefined
X-Booking-Language-Code: en-us
Content-Length: 1817
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbof7CEiNviT8IzxNqzxR053HI8%2FqZKQub7%2FE5H26pLNlfAKGIpnulGs4cVukwXJG6Ixj4PiRrs8VPdSp5RoGg4%2ByvL2K%2B30TtkarI%2Fhyu4j%2FjoaTMoFQ%2Fza4kvZ3ol5Cks74U2jUsZaJpPnjsBLAW2ioaSoO%2FuOWNcEb%2B5xVj4OY%3D; bkng_sso_auth=CAIQsOnuTRp4XCf2mTNX2vTaKOi4c2gJXy3BplRywvZtVCh4hXGp5h5po/N6Qux+6kUCprdfXKCUOnGOJCKYHHcQmnGvYbRr1GQd2W7Jn/T3WlKyR4wJOjW8Sbugx4dG7NoQ9nDUFZd1Yhlso8MBnxHNGtpJqGdaAcEEZ4PTweKT; pcm_consent=consentedAt%3D2024-05-04T14%3A35%3A43.072Z%26countryCode%3DNO%26expiresAt%3D2024-10-31T14%3A35%3A43.072Z%26implicit%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr%26consentId%3D5fe20cb7-3a0d-49bd-9e44-a4a576eaaa39%26analytical%3Dfalse%26marketing%3Dfalse; px_init=0; pcm_personalization_disabled=0; cors_js=1; bkng_sso_session=e30; bkng_sso_ses=eyJib29raW5nX2dsb2JhbCI6W3siYSI6MSwiaCI6Ik11TFNOayszcVZqUk1NeWZjUkwxdUdZMUVlYThZd0I5aWl1NmtuQlNzWGsifV19; OptanonConsent=implicitConsentCountry=GDPR&implicitConsentDate=1714833341097&isGpcEnabled=0&datestamp=Sat+May+04+2024+14%3A35%3A42+GMT%2B0000+(GMT)&version=202403.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=9b410d55-22ad-4115-aad7-534adfa48e9d&interactionCount=1&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&intType=2; BJS=-; 11_srd=%7B%22features%22%3A%5B%7B%22id%22%3A16%7D%5D%2C%22score%22%3A3%2C%22detected%22%3Afalse%7D; OptanonAlertBoxClosed=2024-05-04T14:35:42.666Z; bkng_sso_auth_1714833343=CAIQsOnuTRp4XCf2mTNX2vTaKOi4c2gJXy3BplRywvZtVCh4hXGp5h5po/N6Qux+6kUCprdfXKCUOnGOJCKYHHcQmnGvYbRr1GQd2W7Jn/T3WlKyR4wJOjW8Sbugx4dG7NoQ9nDUFZd1Yhlso8MBnxHNGtpJqGdaAcEEZ4PTweKT
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 48
server: nginx
date: Sat, 04 May 2024 14:35:43 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBJ5P%2FBxI788xR%2B4SwStEqQuihW69q9aZ%2BwK08TKhDQh2HaCBRRXo3q2H7UpA8YnvjS0GuAm1m3fD2%2BxM6Gw1ym86eUkQIMcLXgXYGRXgtZEAwA8hvnzDqS77Q9IbxujxhCx4IIL9tAqFAW20E9ixp0fWE1za2ntZYU%3D; domain=.booking.com; path=/; expires=Thu, 03-May-2029 14:35:43 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=2592000; includeSubDomains
x-content-options: nosniff
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=efcf669fae20008b&e=UmFuZG9tSVYkc2RlIyh9YaKT1Ar0s2gSEmakdtrUqstjsY-kqc_Q0tEAqwU4aSCu_QpKmP4Kb_g
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ptJhyDhsCsfYZ8yb-JT_Wx3vL-bwJ-5OSIYuEfSaEamEftAbrCSWqg==
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/css/6b631c3f.d822a629.chunk.css | 143.204.55.112 | 200 OK | 4.3 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/css/6b631c3f.d822a629.chunk.css IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeASCII text, with very long lines (4355), with no line terminators Hash99d571babd075a379bedcaadc3b4d120 6e11ef54fc39472da74f2abb4643080c81206788 3ce495c31b2052a5d9e8db823fe876ed01a78e77b23d1f01283b12dbbb8f374c
GET /psb/capla/static/css/6b631c3f.d822a629.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
date: Fri, 03 May 2024 16:16:51 GMT
last-modified: Fri, 03 May 2024 14:37:54 GMT
etag: W/"c1f960193045c8338aacc3914a4d1ef0"
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: 5QNJDve9uSUMvGVsHDLs4PKkF99NLMhb
server: AmazonS3
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: QJ5ov7k0NcZPgeL04sH_mhGghbVYV_Nh5H-mq4nf5uikA1Xsa-XDig==
age: 80329
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/css/59306dc3.4e4223b8.chunk.css | 143.204.55.112 | 200 OK | 3.9 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/css/59306dc3.4e4223b8.chunk.css IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeASCII text, with very long lines (3945), with no line terminators Hash8c938a538da561bf70fa16220211d42b 751d1426f31e33bc9b7006ccc053df890a6f6788 39e6c25418ca700a623080c054393e43b560c39af0f6f2424b7f54ae227d3d68
GET /psb/capla/static/css/59306dc3.4e4223b8.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
date: Fri, 03 May 2024 16:51:00 GMT
last-modified: Fri, 03 May 2024 14:37:54 GMT
etag: W/"2aca8910da17dce3cb6d0573e8b10c68"
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: QJg5yBRqWIj2Ra_9HG6dl2OG1CvpLe1X
server: AmazonS3
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: q4OTS1cy0LeGGbFiw1eAPO59txSlXJWkGr--EmpmWKiHtarWWQY4TQ==
age: 78280
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/css/95a17449.27eb6632.chunk.css | 143.204.55.112 | 200 OK | 1.4 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/css/95a17449.27eb6632.chunk.css IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeASCII text, with very long lines (1370), with no line terminators Hashbe2c5669da62e2fcb50755d116b60306 c1740cf1148a058ffc7f8faa52d2929b603ea6a5 aae3eee2c7f329f44126976b6443923a79d9e0bb17ca29e2c0780c171fed128a
GET /psb/capla/static/css/95a17449.27eb6632.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
date: Fri, 03 May 2024 16:16:51 GMT
last-modified: Fri, 03 May 2024 14:37:54 GMT
etag: W/"db6f1a6bdae3d1eddcc806f7b37a9fa7"
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: qnXrQyaPJC8r9gpL4V7odFuOkZ4VLdGk
server: AmazonS3
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bzu1DfQVn4sdgQ3F8ecFFddm1eZNy7_DZskn4Tk-GNLpmWNdyWLRhA==
age: 80329
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/static/js/atlas_cst_cloudfront_sd/138d388521c0fb45e14005cb8098ebebb7158dce.js | 143.204.55.112 | 200 OK | 621 kB |
URL GET HTTP/2cf.bstatic.com/static/js/atlas_cst_cloudfront_sd/138d388521c0fb45e14005cb8098ebebb7158dce.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size621 kB (621029 bytes) Hash3a5094ad3864e2147bddb05eca0e04dc 93c30c0d71f5288a413b52af75a39e50422b5cf6 62e782627287817fdc848a0946c282383dfb97f00888ad3dff6dd92d657d021b
GET /static/js/atlas_cst_cloudfront_sd/138d388521c0fb45e14005cb8098ebebb7158dce.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Sun, 07 Apr 2024 02:30:50 GMT
last-modified: Wed, 10 Jan 2024 11:45:34 GMT
etag: W/"659e835e-979e5"
expires: Tue, 07 May 2024 02:30:50 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: kr3uqtBnSvKI68tnBszUvSRkPNZB8FwwjP8A2cA2qpwZnhJFuOrwLA==
age: 2376290
X-Firefox-Spdy: h2
|
|
| q-xx.bstatic.com/xdata/images/xphoto/263x210/45450095.jpeg?k=cd5e46e632dab722d22217813485efde31fbe82f5f26a624166edccdbe8187bc&o= | 143.204.55.112 | 200 OK | 16 kB |
URL GET HTTP/2q-xx.bstatic.com/xdata/images/xphoto/263x210/45450095.jpeg?k=cd5e46e632dab722d22217813485efde31fbe82f5f26a624166edccdbe8187bc&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3 Hash4a3d6681973906a15cf25575a34149c5 5cc846e08d4262f3b8d21a4fda93422e59e77519 911bb77dbdce93cc64009eb78b150865f1c5e6aec0e1d8c1a55ccd6d04154a2d
GET /xdata/images/xphoto/263x210/45450095.jpeg?k=cd5e46e632dab722d22217813485efde31fbe82f5f26a624166edccdbe8187bc&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Thu, 18 Apr 2024 08:38:57 GMT
content-language: 16076
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "dc73c2969c0c57d5e4a2210826ddcf376beb4276"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Ebe3q642ybATCPtxLaiaGP3uJ8q2yzz69YIskx-NfeFULyQ7WJsTvQ==
age: 1403805
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/js/6758081d.ab2a4c1c.chunk.js | 143.204.55.112 | 200 OK | 1.5 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/js/6758081d.ab2a4c1c.chunk.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (1554), with no line terminators Hashe9af4c0eba6de90521f53aecaf1308e2 9f34260f3f88f9ec3c8b2d25abc014f542fe8fef fcccbcbde03dd0adec9117620201257dc3f07baad91d654f455040bb6f042071
GET /psb/capla/static/js/6758081d.ab2a4c1c.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 03 May 2024 17:56:47 GMT
last-modified: Fri, 03 May 2024 14:37:54 GMT
etag: W/"e9dc307f20d8d6f88a02a01a0616effb"
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: OwgOq14H4n5Bff4y2O8e098MqZfkCXHX
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: SsBKaAI5BQ3PqAB3KTchhB7-aQQjRznehMooM1Zt2aIZ5hoY5JT4Wg==
age: 74333
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
|
|
| r-xx.bstatic.com/xdata/images/xphoto/263x210/45450073.jpeg?k=795a94c30433de1858ea52375e8190a962b302376be2e68aa08be345d936557d&o= | 143.204.55.112 | 200 OK | 9.0 kB |
URL GET HTTP/2r-xx.bstatic.com/xdata/images/xphoto/263x210/45450073.jpeg?k=795a94c30433de1858ea52375e8190a962b302376be2e68aa08be345d936557d&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3 Hash8989f4f10a45dd10156c3eb7fb1b078b f8fbe15b7a89638a421f23164e1b3c283b0d888a 89b6890e5d14cdc0d9470023b09144793e2b6f769f7e8f05f0393a4227e002c5
GET /xdata/images/xphoto/263x210/45450073.jpeg?k=795a94c30433de1858ea52375e8190a962b302376be2e68aa08be345d936557d&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Sat, 06 Apr 2024 11:00:12 GMT
content-language: 8996
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "2a7fd6242a5eea5697aaeb5e0c88798f848bd51d"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zsOL2PYNJC2p8hDzswxcWOclRQDpu6ipBrF0S5B-cyUWObSdrq6lyA==
age: 2432130
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/js/0a098284.13776626.chunk.js | 143.204.55.112 | 200 OK | 47 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/js/0a098284.13776626.chunk.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (46956) Hash888f8f19fd83a7eed972c31b4bbd0a5f 614763c5694b27002f9cee6f8223274759acfd14 4bf770d0ea9bf16d7ae5d8b50841a72de8519a6b5ed850f41e3c3758fc52fafb
GET /psb/capla/static/js/0a098284.13776626.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 02 May 2024 14:18:22 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: wRx6Bt.X64fRm30.1pkuSxUZ4L8Ln1u3
server: AmazonS3
content-encoding: gzip
date: Fri, 03 May 2024 18:18:32 GMT
etag: W/"888f8f19fd83a7eed972c31b4bbd0a5f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 465UEenQwi4oWF3O-_joYmVxVjSDjT52Slhvlrga2w98tAzX_rV4Hw==
age: 73028
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/static/js/atlas_cloudfront_sd/39e2eafe37ae95450ad7ebbc5713aa0e5c554def.js | 143.204.55.112 | 200 OK | 120 kB |
URL GET HTTP/2cf.bstatic.com/static/js/atlas_cloudfront_sd/39e2eafe37ae95450ad7ebbc5713aa0e5c554def.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size120 kB (120483 bytes) Hashbbf6afc07f1e211dca26a7f8f284c080 116761f5405b8839f66d170eec93efc4069b5bfd 2e1820fd5810a091156a2edf8b0033e24a43997edae85dd98691cd1cf7932a89
GET /static/js/atlas_cloudfront_sd/39e2eafe37ae95450ad7ebbc5713aa0e5c554def.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 29 Apr 2024 10:05:01 GMT
last-modified: Mon, 29 Apr 2024 09:49:39 GMT
etag: W/"662f6d33-1d6a3"
expires: Wed, 29 May 2024 10:05:01 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: S47bEaEivZNI5qT2ewHQSR8U6h4Zg9724h7OB_LK1ev4i_MG8rIkEw==
age: 448240
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/js/51ee1383.0a9823ae.chunk.js | 143.204.55.112 | 200 OK | 26 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/js/51ee1383.0a9823ae.chunk.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (26081) Hash644efd3b861e22dab88710ad1f1e6bae e0f784c9be27669ac15f56d6d07e0f0b495bea9f 163ea3e3317b93b6751ac0221532febc93371bf729405e583e9912d5b89533f6
GET /psb/capla/static/js/51ee1383.0a9823ae.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 09:16:52 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: 42327NLMoN9vpMJiGVub6OFF60toq.jI
server: AmazonS3
content-encoding: gzip
date: Fri, 03 May 2024 20:17:18 GMT
etag: W/"644efd3b861e22dab88710ad1f1e6bae"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6etCEkd48EnlQVsvbYhaIT9XGwUrwGwUvN1j7iwbYxH5LIcVntl8YQ==
age: 65904
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/js/c8637181.166157a5.chunk.js | 143.204.55.112 | 200 OK | 46 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/js/c8637181.166157a5.chunk.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (45404) Hashfaec9440d9017dcc2862f58c0e9644d9 31a4202899981ede76a03a2307cd83d86586c26c 7e7e4b46c3b9f0e718c42d92f51ed8fb7c498e4443087388e3cc96c1aa5cd846
GET /psb/capla/static/js/c8637181.166157a5.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 02 May 2024 10:42:51 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: 7VbtwX779EsS47EC86f6dN8YcTpcUWPT
server: AmazonS3
content-encoding: gzip
date: Fri, 03 May 2024 19:09:03 GMT
etag: W/"faec9440d9017dcc2862f58c0e9644d9"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7ydpOHMujgB6USBHPUCzl7LXeyZxti4wcX9VvzDmvIpcTa5sBx45Ng==
age: 69997
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/city/600x600/740935.jpg?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o= | 143.204.55.112 | 200 OK | 57 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/city/600x600/740935.jpg?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 600x600, components 3 Hasha3c19e8e336a73bc6ccf10b5750903e7 cafc5470a580f4a01b02d991187079efbf888987 9e76043e1541f197c4af1a9dd15ed9e1a594f7823bfc01b9b639fa7d67e272d6
GET /xdata/images/city/600x600/740935.jpg?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Tue, 16 Apr 2024 06:02:57 GMT
content-language: 57347
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "68f1a2cb27ba71e46bd94e0d537615275224763d"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PhzwFOWD-hQEqmehvv9tgi9IrhlpTKXfhVE4MHJwgTkGkCPWb53Gcg==
age: 1585963
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/js/d8454389.1abbd3be.chunk.js | 143.204.55.112 | 200 OK | 220 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/js/d8454389.1abbd3be.chunk.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65455) Size220 kB (219547 bytes) Hashcf2e41721fb492a83b46b41b3762b27e edcf17bc79d3e4a852631427c04dbe47d78cbad6 ec2a95eb1b4f7d12070369da13409b29e829cecfbe53cb4c00f79ed9935945f1
GET /psb/capla/static/js/d8454389.1abbd3be.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 02 May 2024 10:42:51 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: gJeKammtghAXIFynfkA1h19WNrigMZ9d
server: AmazonS3
content-encoding: gzip
date: Fri, 03 May 2024 18:13:43 GMT
etag: W/"cf2e41721fb492a83b46b41b3762b27e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: X3uQnO6EVOF7g6B4BXV5b8Rb1i11TFavSnsFn1aTc-mOrV4dsF_KOw==
age: 73317
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
|
|
| www.booking.com/js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=0819669da254000b&ete=&etg=&etcg=cCHObEfEITNPfbeQMIaWYUQJFFQccCcCcCC|5&ets=&etgwv=js_wcu_trip_type_based_destination_number_of_types|4 | 54.230.111.45 | 200 OK | 12 B |
URL GET HTTP/2www.booking.com/js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=0819669da254000b&ete=&etg=&etcg=cCHObEfEITNPfbeQMIaWYUQJFFQccCcCcCC|5&ets=&etgwv=js_wcu_trip_type_based_destination_number_of_types|4 IP54.230.111.45:443
CertificateIssuerDigiCert Inc Subject*.booking.com FingerprintC7:72:77:E2:B0:F2:0E:46:E1:DC:98:03:30:6C:05:F2:10:E1:02:36 ValidityWed, 01 May 2024 00:00:00 GMT - Tue, 25 Mar 2025 23:59:59 GMT
File typeGIF image data, version 89a, 1 x 1 Hash45e0d10a08ad25f44cb9c2b6e732858c 8e47bb27521f644194d8d6ed92c22513a68715d9 4c55d6d27f3d4503e15ce98f4e4cccc15a49ecc0445a3a0996578437f7ab701f
GET /js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=0819669da254000b&ete=&etg=&etcg=cCHObEfEITNPfbeQMIaWYUQJFFQccCcCcCC|5&ets=&etgwv=js_wcu_trip_type_based_destination_number_of_types|4 HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
X-Booking-Info:
X-Booking-Client-Info:
X-Booking-Pageview-Id: 0819669da254000b
X-Booking-SiteType-Id: 1
X-Booking-Language-Code: en-us
X-Booking-AID: 304142
X-Booking-Session-Id: 6264063bcefba832c462ee9fa08bba64
X-Booking-ET-Serialized-State: EWgc6NMBRz9r0zuNuUpuhpWTZAZqeNJXOa0BC7SNFY1SHMRGMzSaNeZU73V2suoyV
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBJSNum%2Bc1xLFn12m2f7ZHZ95PfhYVIBK10JlJfka14nlp4Y70WCBili2Fui6OOSsQrUyCz9Tmggwj0DuztcQajH4%2Bm5jddtlcvsexjAFfqrxqr9lOy7yPJKAXYOHIU0hUKG2Y7FCPEsmyQ7fblSlZJdTEgfORizrgg%3D; bkng_sso_auth=CAIQsOnuTRp4XCf2mTNX2vTaKOi4c2gJXy3BplRywvZtVCh4hXGp5h5po/N6Qux+6kUCprdfXKCUOnGOJCKYHHcQmnGvYbRr1GQd2W7Jn/T3WlKyR4wJOjW8Sbugx4dG7NoQ9nDUFZd1Yhlso8MBnxHNGtpJqGdaAcEEZ4PTweKT; pcm_consent=consentedAt%3D2024-05-04T14%3A35%3A43.072Z%26countryCode%3DNO%26expiresAt%3D2024-10-31T14%3A35%3A43.072Z%26implicit%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr%26consentId%3D5fe20cb7-3a0d-49bd-9e44-a4a576eaaa39%26analytical%3Dfalse%26marketing%3Dfalse; px_init=0; pcm_personalization_disabled=0; cors_js=1; bkng_sso_session=e30; bkng_sso_ses=eyJib29raW5nX2dsb2JhbCI6W3siYSI6MSwiaCI6Ik11TFNOayszcVZqUk1NeWZjUkwxdUdZMUVlYThZd0I5aWl1NmtuQlNzWGsifV19; OptanonConsent=implicitConsentCountry=GDPR&implicitConsentDate=1714833341097&isGpcEnabled=0&datestamp=Sat+May+04+2024+14%3A35%3A42+GMT%2B0000+(GMT)&version=202403.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=9b410d55-22ad-4115-aad7-534adfa48e9d&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&backfilled_at=1714833343460&backfilled_seed=1; BJS=-; 11_srd=%7B%22features%22%3A%5B%7B%22id%22%3A16%7D%5D%2C%22score%22%3A3%2C%22detected%22%3Afalse%7D; OptanonAlertBoxClosed=2024-05-04T14:35:42.666Z; bkng_sso_auth_1714833343=CAIQsOnuTRp4XCf2mTNX2vTaKOi4c2gJXy3BplRywvZtVCh4hXGp5h5po/N6Qux+6kUCprdfXKCUOnGOJCKYHHcQmnGvYbRr1GQd2W7Jn/T3WlKyR4wJOjW8Sbugx4dG7NoQ9nDUFZd1Yhlso8MBnxHNGtpJqGdaAcEEZ4PTweKT
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/gif
content-length: 35
server: nginx
date: Sat, 04 May 2024 14:35:43 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
strict-transport-security: max-age=2592000; includeSubDomains
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=4154669f66b20279&e=UmFuZG9tSVYkc2RlIyh9Yea92wm0yRUjnCBymoy8ejKe6u2caqXfLNB_5MReS-dQuQD9rL1RfK0
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jfGQ-REe9PhJ9XphLBYTnJhewMvI-dMo5Wq8rWOurbsmA3vru1AS9g==
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/static/js/searchresults_cloudfront_sd/da51a2f315df10312000dc4dc51237b592d1e1c2.js | 143.204.55.112 | 200 OK | 200 kB |
URL GET HTTP/2cf.bstatic.com/static/js/searchresults_cloudfront_sd/da51a2f315df10312000dc4dc51237b592d1e1c2.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
Size200 kB (200326 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/js/searchresults_cloudfront_sd/da51a2f315df10312000dc4dc51237b592d1e1c2.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 02 May 2024 12:13:51 GMT
last-modified: Wed, 01 May 2024 14:05:24 GMT
etag: W/"66324c24-30e86"
expires: Sat, 01 Jun 2024 12:13:51 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: EAdKhh4ZsSBdYcnOJc8cn6onqUdfNs8BSNQIpzDyUBZHGTn3Kcxidg==
age: 181310
X-Firefox-Spdy: h2
|
|
| cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/e6419570-52cc-432d-ba1e-7300290f1970/en-us.json | 104.19.177.52 | 200 OK | 88 kB |
URL GET HTTP/2cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/e6419570-52cc-432d-ba1e-7300290f1970/en-us.json IP104.19.177.52:443
CertificateIssuerCloudflare, Inc. Subjectcookielaw.org FingerprintC9:7F:A3:0A:53:6E:A6:6C:2F:D0:E2:2C:F5:35:B4:BC:81:90:40:31 ValidityFri, 01 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/e6419570-52cc-432d-ba1e-7300290f1970/en-us.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 14:35:41 GMT
content-type: application/x-javascript
content-length: 22791
cf-ray: 87e938002de00b55-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 80276
cache-control: public, max-age=86400
content-encoding: gzip
etag: 0x8DC5A21A15B50A2
expires: Sun, 05 May 2024 14:35:41 GMT
last-modified: Thu, 11 Apr 2024 12:19:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
content-md5: jkmlfX45zinbAuvqLt6A+A==
x-content-type-options: nosniff
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 14e1907d-f01e-0014-3a0a-8c71ec000000
x-ms-version: 2009-09-19
server: cloudflare
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/hotel/square600/153069622.webp?k=7071cdd5c1ad4e51e137ee93aca75a122fde80989011a54976b47150f0fe691a&o= | 143.204.55.112 | 200 OK | 75 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/hotel/square600/153069622.webp?k=7071cdd5c1ad4e51e137ee93aca75a122fde80989011a54976b47150f0fe691a&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp Hash2ef597e2093037ad3cf0cc5ad9aa9783 cc595a52cd4412e29edab80e0623ae4e3965c800 18ac8e5f7a31a473fd753bb215ecb19a728da9bb57c6f5f0a29b0e58b8e5541d
GET /xdata/images/hotel/square600/153069622.webp?k=7071cdd5c1ad4e51e137ee93aca75a122fde80989011a54976b47150f0fe691a&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Fri, 05 Apr 2024 11:41:38 GMT
content-language: 75448
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "ff28c3a91a27695ad56f98a0c097795c9f5f669d"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -9z8hEnsSt7kGj7EZ9AnunmRm2FD4VOQp9YeOelZVVEsQ-yp6kRBVA==
age: 2516045
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/hotel/square600/126764303.webp?k=46a8a949ef420510834df06d0d88e293fbaae80cd1e17883cb78c1bba3eb0366&o= | 143.204.55.112 | 200 OK | 46 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/hotel/square600/126764303.webp?k=46a8a949ef420510834df06d0d88e293fbaae80cd1e17883cb78c1bba3eb0366&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp Hash7f55300f63d9903ef33cc17dfb484201 38407a046f7cb9cb19222b613f5951b75e0a030e 3e921e9f54c90099f5d3345213b23135aaa9b085dea4ef37d7e82401aa67a4a0
GET /xdata/images/hotel/square600/126764303.webp?k=46a8a949ef420510834df06d0d88e293fbaae80cd1e17883cb78c1bba3eb0366&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Mon, 08 Apr 2024 08:16:29 GMT
content-language: 46510
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "39ea26bd89db5c26630a463d2538ea129de64a55"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _IQzX-VTL8mHmxsVz9k-vRyWiWEFnKb-GPvQ6jrcU72TVel3GVLveA==
age: 2269154
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/static/js/searchbox_cloudfront_sd/208ed372e5b3fa6f5a8aa0c5d7fac5e72ade3356.js | 143.204.55.112 | 200 OK | 245 kB |
URL GET HTTP/2cf.bstatic.com/static/js/searchbox_cloudfront_sd/208ed372e5b3fa6f5a8aa0c5d7fac5e72ade3356.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
Size245 kB (245306 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/js/searchbox_cloudfront_sd/208ed372e5b3fa6f5a8aa0c5d7fac5e72ade3356.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 19 Apr 2024 19:53:22 GMT
last-modified: Mon, 19 Feb 2024 14:15:38 GMT
etag: W/"65d3628a-3be3a"
expires: Sun, 19 May 2024 19:53:22 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: b1IHt7zgoXKe8GmVUa70xO3pFnzHSsuVad0ZzVApH41eLE8jTrZltQ==
age: 1276937
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/js/f41dcaf5.e0e8868c.chunk.js | 143.204.55.112 | 200 OK | 1.6 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/js/f41dcaf5.e0e8868c.chunk.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (1653), with no line terminators Hashb17d33971f223794b9e156493cd126f2 bcecc51af5d730265266a7e22f711c0b1d8cc0ab 65741abee8203407e3522a18da6a8f80f4fefb45fe0fa09d218d95930ddab1ac
GET /psb/capla/static/js/f41dcaf5.e0e8868c.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 02 May 2024 14:18:23 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: kIvwqmx6oCorjCW41olIkOR8SX3qf6KI
server: AmazonS3
content-encoding: gzip
date: Sat, 04 May 2024 00:39:09 GMT
etag: W/"96dc2ce12a9168780adb0c37f8777852"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: O23l-H_GtM_CwVL46kM4FKT_SJL0Kh_JdaxoxNNZUPy3FJgs2ToVKQ==
age: 50191
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
|
|
| account.booking.com/privacy-consents/implicit | 54.230.111.41 | 200 OK | 53 B |
URL POST HTTP/2account.booking.com/privacy-consents/implicit IP54.230.111.41:443
CertificateIssuerDigiCert Inc Subject*.booking.com FingerprintC7:72:77:E2:B0:F2:0E:46:E1:DC:98:03:30:6C:05:F2:10:E1:02:36 ValidityWed, 01 May 2024 00:00:00 GMT - Tue, 25 Mar 2025 23:59:59 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hash48f8ac2c807dc87839b53ee307d82c26 aae0130233d8b41a97477ee0a74d8d9f54b60bc0 88cb14441b09e90dea0a284528cdb938485b3d2fd9626436f4091857574eb62e
POST /privacy-consents/implicit HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-type: application/json;charset=UTF-8
Content-Length: 56
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPedXipW9P%2Bn9MYWYmjSTOk7tlRnW%2BYurihW6uF4NqE0Zj1oDgS60ARakX9Ktpe7w%2BCQf%2BRgETSsisK%2BsydahBVbfBmNPR4P93MujHAlvxWC4XeJDhSnxzyRsfx72ZN%2BHcNf26Ggy7zJxo83DyxVVBDnv; bkng_sso_auth=CAIQsOnuTRpmvKlZYXYJUdjpVbdMvQwNjHrvsml6L4VkiK7tISGV++DO0XXfwqYqcvGv6N5B0jJ+At6IQOX9CzDigoeY7Dt/FQmXvzsPX5q9kGIjFfD+w/XIrSbe9Qmi3qompOLVKk1Ncna0zA0n; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3D047e10e5-e3e9-42f5-8d41-1b74123b97ba%26consentedAt%3D2024-05-04T14%3A35%3A38.319Z%26expiresAt%3D2024-10-31T14%3A35%3A38.319Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; px_init=0; pcm_personalization_disabled=0; cors_js=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
server: envoy
date: Sat, 04 May 2024 14:35:41 GMT
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-methods: POST
access-control-allow-origin: https://www.booking.com
access-control-max-age: 1728000
content-security-policy: base-uri 'none'; frame-ancestors https://*.booking.com https://*.booking.cn; object-src 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=block&e=UmFuZG9tSVYkc2RlIyh9YSWKtKO5TxgOpTwVTPfHZKNW3Hcrm1RLgTDT2V-m21UMJ4KxJTAfD3k6vpGGyphNZUfy-f31chCZHPTonodp_KimHZLP-kkm31nZp_X7YOBYWt1U6tx6H7k1BtdXrxA5LjNIbkUYLnGw8MnpJyy6My4; script-src 'report-sample' 'nonce-4s2x4YeGcwz5an2' 'strict-dynamic' 'unsafe-eval' 'unsafe-hashes' 'sha256-kDPclFJFa/cNUGjyb73Olq+78jkIsu1rN4zPFoE3YaY=' 'sha256-tgo/x/FZ7h93dD78jEbhg4dXrRyROp1eZvekoHdStrw=' 'self' 'unsafe-inline' *.bstatic.com *.static.booking.cn bstatic.com cdn.cookielaw.org geolocation.onetrust.com saa.booking.com www.google-analytics.com
content-security-policy-report-only: connect-src 'self' *.perimeterx.net *.px-cdn.net *.px-client.net *.px-cloud.net *.pxchk.net *.token.awswaf.com cdn.cookielaw.org geolocation.onetrust.com privacyportal-eu.onetrust.com saa.booking.com secure.booking.com www.google-analytics.com; default-src 'self' *.bstatic.com bstatic.com; frame-src *.booking.com *.bstatic.com bstatic.com paymentcomponent.booking.com secure.booking.com www.booking.com; img-src 'self' data: *.bstatic.com *.perimeterx.net *.px-cloud.net *.static.booking.cn account.booking.com bstatic.com cdn.cookielaw.org graph.facebook.com stats.g.doubleclick.net www.booking.com www.google-analytics.com www.google.com www.gstatic.com; report-uri https://nellie.booking.com/csp-report-uri?type=report&e=UmFuZG9tSVYkc2RlIyh9YSWKtKO5TxgOpTwVTPfHZKNW3Hcrm1RLgTDT2V-m21UMJ4KxJTAfD3k6vpGGyphNZUfy-f31chCZHPTonodp_KimHZLP-kkm31nZp_X7YOBYWt1U6tx6H7k1BtdXrxA5LjNIbkUYLnGw8MnpJyy6My4; script-src 'report-sample' 'nonce-4s2x4YeGcwz5an2' 'strict-dynamic' 'unsafe-eval' 'unsafe-hashes' 'sha256-kDPclFJFa/cNUGjyb73Olq+78jkIsu1rN4zPFoE3YaY=' 'sha256-tgo/x/FZ7h93dD78jEbhg4dXrRyROp1eZvekoHdStrw=' 'self' 'unsafe-inline' *.bstatic.com *.static.booking.cn bstatic.com cdn.cookielaw.org geolocation.onetrust.com saa.booking.com www.google-analytics.com; style-src 'self' 'unsafe-inline' *.bstatic.com *.static.booking.cn bstatic.com
set-cookie: bkng_sso_session=e30; domain=.booking.com; path=/; expires=Thu, 03-May-2029 14:35:41 GMT; secure; HttpOnly
bkng_sso_ses=e30; domain=.booking.com; path=/; expires=Thu, 03-May-2029 14:35:41 GMT; secure; HttpOnly
bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJkYXRhX3N1YmplY3RfaWQiOiI2NTIyYTJiNS02MDk5LTQxY2MtOTJkYy0yYzU2MTU0Mjg2ZDYiLCJzZXNzaW9ucyI6W119fQ; domain=account.booking.com; path=/; expires=Thu, 03-May-2029 14:35:41 GMT; SameSite=Lax; secure; HttpOnly
x-xss-protection: 1; mode=block
strict-transport-security: max-age=2592000; includeSubDomains
x-cache: Miss from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: JR4fIftq4qiRsW_3y_J_zw-CzX85hAZsNjHl3-v9fQ8DKP_uCUcYVw==
X-Firefox-Spdy: h2
|
|
| q-xx.bstatic.com/xdata/images/xphoto/263x210/45450113.jpeg?k=76b3780a0e4aacb9d02ac3569b05b3c5e85e0fd875287e9ac334e3b569f320c7&o= | 143.204.55.112 | 200 OK | 9.3 kB |
URL GET HTTP/2q-xx.bstatic.com/xdata/images/xphoto/263x210/45450113.jpeg?k=76b3780a0e4aacb9d02ac3569b05b3c5e85e0fd875287e9ac334e3b569f320c7&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3 Hash688b2d746bad439cade3efaa688d426b de138925fb4975a2538828cc47b674ba4cba76bb 24f12dfd0c5f3d491c3ccb07c49c47cf79a245fe7e03f7dc8e4c99b547ccf0df
GET /xdata/images/xphoto/263x210/45450113.jpeg?k=76b3780a0e4aacb9d02ac3569b05b3c5e85e0fd875287e9ac334e3b569f320c7&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Fri, 12 Apr 2024 08:37:23 GMT
content-language: 9274
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "f54682fe18b2242ab1e391471df4e81e848b0a88"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: esaZDfU7yqN4EPBXP7XWZ5hfPXI4BAORlNQfBWNbMdY8WuYyJWiGTw==
age: 1922299
X-Firefox-Spdy: h2
|
|
| r-xx.bstatic.com/xdata/images/city/170x136/644310.jpg?k=472fefd4c3c0aef36deb16adb91c965923d8b1078ab29056802f95aead0586bf&o= | 143.204.55.112 | 200 OK | 6.5 kB |
URL GET HTTP/2r-xx.bstatic.com/xdata/images/city/170x136/644310.jpg?k=472fefd4c3c0aef36deb16adb91c965923d8b1078ab29056802f95aead0586bf&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3 Hashd8fc03a58b76828aa4d541100bd52964 ec876001abc6b7de78aada1dc0460f898269aa1e 08d047a4f12afcccef76d06b51501b8cbec55e66f828a08bedb06434b7249502
GET /xdata/images/city/170x136/644310.jpg?k=472fefd4c3c0aef36deb16adb91c965923d8b1078ab29056802f95aead0586bf&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
content-length: 6544
server: nginx
date: Sun, 28 Apr 2024 09:39:39 GMT
content-language: 6544
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "dc256fcd9293261238443518cc03ae92aad2431e"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: N2661X7QsE0F574jMlvj2Eu0Vr0HE_QY1QfSOzUb0xmgS4xZElfmTA==
age: 536164
X-Firefox-Spdy: h2
|
|
| account.booking.com/privacy-consents/implicit | 54.230.111.41 | 204 No Content | 0 B |
URL OPTIONS HTTP/2account.booking.com/privacy-consents/implicit IP54.230.111.41:443
CertificateIssuerDigiCert Inc Subject*.booking.com FingerprintC7:72:77:E2:B0:F2:0E:46:E1:DC:98:03:30:6C:05:F2:10:E1:02:36 ValidityWed, 01 May 2024 00:00:00 GMT - Tue, 25 Mar 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /privacy-consents/implicit HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
server: envoy
date: Sat, 04 May 2024 14:35:40 GMT
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: POST
access-control-allow-origin: https://www.booking.com
access-control-max-age: 1728000
set-cookie: bkng_sso_session=e30; domain=.booking.com; path=/; expires=Thu, 03-May-2029 14:35:40 GMT; secure; HttpOnly
bkng_sso_ses=e30; domain=.booking.com; path=/; expires=Thu, 03-May-2029 14:35:40 GMT; secure; HttpOnly
bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJkYXRhX3N1YmplY3RfaWQiOiI2NmQ5MDQ3NC01MjA4LTQzZTEtYjgwZi1kMjFkNTRmZDVjNzYiLCJzZXNzaW9ucyI6W119fQ; domain=account.booking.com; path=/; expires=Thu, 03-May-2029 14:35:40 GMT; SameSite=Lax; secure; HttpOnly
content-security-policy: frame-ancestors https://*.booking.com 'self'; report-uri https://nellie.booking.com/csp-report-uri?type=block&tag=212&pid=7326669e40240007&e=UmFuZG9tSVYkc2RlIyh9YSWKtKO5TxgOpTwVTPfHZKNW3Hcrm1RLgTDT2V-m21UMJ4KxJTAfD3k6vpGGyphNZUfy-f31chCZb8612iO9R_UYhDOKZTX9f9H49t8PnK2N6xuOIDHFf7awnZaxbXlHMtb1J_ddsYIXP3QfRhNFBFo
content-security-policy-report-only: base-uri 'none'; connect-src saa.booking.com secure.booking.com reports.booking.com privacyportal-eu.onetrust.com geolocation.onetrust.com cdn.cookielaw.org www.google-analytics.com *.perimeterx.net *.pxchk.net *.px-cdn.net *.px-client.net *.px-cloud.net 'self' 'report-sample'; default-src *.bstatic.com bstatic.com 'self'; frame-src https://www.youtube.com/embed/Vv4w5SmRkss *.bstatic.com https://www.google.com bstatic.com www.booking.com secure.booking.com paymentcomponent.booking.com 'self'; img-src 'self' data: www.booking.com graph.facebook.com cdn.cookielaw.org account.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google-analytics.com www.google.com stats.g.doubleclick.net *.px-cloud.net *.perimeterx.net www.gstatic.com; object-src 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=213&pid=7326669e40240007&e=UmFuZG9tSVYkc2RlIyh9YSWKtKO5TxgOpTwVTPfHZKNW3Hcrm1RLgTDT2V-m21UMJ4KxJTAfD3k6vpGGyphNZUfy-f31chCZb8612iO9R_UYhDOKZTX9f9H49t8PnK2N6xuOIDHFf7awnZaxbXlHMtb1J_ddsYIXP3QfRhNFBFo; script-src saa.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google.com www.google-analytics.com cdn.cookielaw.org geolocation.onetrust.com 'self' 'nonce-FsQMc4IPiHzeH53' 'report-sample'; style-src *.bstatic.com bstatic.com *.static.booking.cn 'self' 'unsafe-inline'
x-xss-protection: 1; mode=block
strict-transport-security: max-age=2592000; includeSubDomains
x-cache: Miss from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8cQExlHGFSEusdrS31UpAwtA2sp_PokLgmrj9-iP28DbQaiVaMlg3Q==
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/static/js/lazy_load_images_cloudfront_sd/77204d4da4aa41b08b1a4062c8e66e4629550994.js | 143.204.55.112 | 200 OK | 5.6 kB |
URL GET HTTP/2cf.bstatic.com/static/js/lazy_load_images_cloudfront_sd/77204d4da4aa41b08b1a4062c8e66e4629550994.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (5757), with no line terminators Hashc9e3c8ebc88b2dc178567693b78efa22 a7c3ca7f499ccd363d2c6d7622c9b1fd8347871e 7ca1188d271bf4a5f52b3f7a6786dbbf880255794cdead5c8d82759f45cf79d7
GET /static/js/lazy_load_images_cloudfront_sd/77204d4da4aa41b08b1a4062c8e66e4629550994.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Sat, 13 Apr 2024 01:13:19 GMT
last-modified: Tue, 04 Feb 2020 10:19:57 GMT
etag: W/"5e39454d-15f3"
expires: Mon, 13 May 2024 01:13:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _ncOF7s9xHWx4QW0bShAqJzKsX2N1dEWvSpeDy0jC8fIvHAvftDkSQ==
age: 1862540
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/js/client.2f3189ac.js | 143.204.55.112 | 200 OK | 1.1 MB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/js/client.2f3189ac.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
Size1.1 MB (1064667 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /psb/capla/static/js/client.2f3189ac.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 03 May 2024 16:16:52 GMT
last-modified: Thu, 02 May 2024 09:26:49 GMT
etag: W/"7c51cd3e53d46f4f4cd0fce4a7f0133f"
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: JT2vKAUEFUJ4DeJbRsZWFtm1p6HvQZO_
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1Ps_PI0crjyNV0zTsTrIf36U4PPj3NYU5pAd_UZnvqGlgUJK3HBBwg==
age: 80328
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
|
|
| t-cf.bstatic.com/design-assets/assets/v3.109.0/illustrations-traveller/GlobeGeniusBadge.png | 143.204.55.112 | 200 OK | 20 kB |
URL GET HTTP/2t-cf.bstatic.com/design-assets/assets/v3.109.0/illustrations-traveller/GlobeGeniusBadge.png IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typePNG image data, 260 x 260, 8-bit colormap, non-interlaced Hash46a2de536918e78228ad39f6c9bced54 bd29519e8b65591aed18adc02a3ed6c8354000a8 d0e96c1281514494c432a9dcd3059ed824047abcf10ad228c6bb7ae7c7d58c0b
GET /design-assets/assets/v3.109.0/illustrations-traveller/GlobeGeniusBadge.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
content-length: 19613
last-modified: Tue, 05 Dec 2023 13:24:03 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 May 2024 05:23:36 GMT
etag: "46a2de536918e78228ad39f6c9bced54"
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: IncUlMODk1y9gPXuJRjTnZnGm7ZVn8o2axCRRkWxEiMvV68c_mKCAw==
age: 83702
vary: Origin
X-Firefox-Spdy: h2
|
|
| accounts.google.com/gsi/style | 64.233.162.84 | 200 OK | 530 B |
URL GET HTTP/3accounts.google.com/gsi/style IP64.233.162.84:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File typeASCII text, with very long lines (530), with no line terminators Hash6ce3c682ce6b9e0b88670395a63345c8 8cbfc0856a52320e3567792dfe2487748ac07458 524f1ea2ac242c6fae3c1cc52c7ae7d05a8a7db466fe3c7b46e8efcfc2d95e53
GET /gsi/style HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
expires: Sat, 04 May 2024 14:35:42 GMT
date: Sat, 04 May 2024 14:35:42 GMT
cache-control: private, max-age=86400
content-security-policy: script-src 'nonce-KHBZM_KxbNVy4mcumdhDcA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| r-xx.bstatic.com/xdata/images/xphoto/263x210/57175023.jpeg?k=dc0319d4d64ded9ee4b0ddb162a2e80db7899300b7bf21b34506888895d74c79&o= | 143.204.55.112 | 200 OK | 14 kB |
URL GET HTTP/2r-xx.bstatic.com/xdata/images/xphoto/263x210/57175023.jpeg?k=dc0319d4d64ded9ee4b0ddb162a2e80db7899300b7bf21b34506888895d74c79&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3 Hash838fddff0171ed1414657c25c01ecbbe d5141d047b54962f9572d8647909b23bf971cb3b b2d4d41198dc45e52894033452988cdfbec766e6d9c04089070db89033acc4bf
GET /xdata/images/xphoto/263x210/57175023.jpeg?k=dc0319d4d64ded9ee4b0ddb162a2e80db7899300b7bf21b34506888895d74c79&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Wed, 01 May 2024 15:31:08 GMT
content-language: 13480
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "e9c81ccefec3df0c3ad1dfa69d4de520dfc7eb38"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zfzoOTk5oc_u8AgfLY_GSUvCIcFQdUZmXfBcKE3BO99CcO1Y4KQsRw==
age: 255874
X-Firefox-Spdy: h2
|
|
| q-xx.bstatic.com/xdata/images/city/170x136/737551.jpg?k=ad4ef19a2b979ef794b56d1901e6937b874b4726a4085d8ddbe795f5c6bfed73&o= | 143.204.55.112 | 200 OK | 6.2 kB |
URL GET HTTP/2q-xx.bstatic.com/xdata/images/city/170x136/737551.jpg?k=ad4ef19a2b979ef794b56d1901e6937b874b4726a4085d8ddbe795f5c6bfed73&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3 Hash033e02e916d5f3791fb0edcde629ef86 d5cc83fc9698814ff92bf752ac0cbb004439f614 1815ead7ea4f562bb51ec2e39ee38db0e120120d1f8b98096dc60583c493e4d4
GET /xdata/images/city/170x136/737551.jpg?k=ad4ef19a2b979ef794b56d1901e6937b874b4726a4085d8ddbe795f5c6bfed73&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
content-length: 6204
server: nginx
date: Tue, 30 Apr 2024 07:25:19 GMT
content-language: 6204
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "695c818f24fef509fad771a67c8002e1622b09f9"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cmFR49R3XZqImTfk_yKEoymkTYRi0u-7ENt04JIpOfJcHcY9IgS1Wg==
age: 371424
X-Firefox-Spdy: h2
|
|
| q-xx.bstatic.com/xdata/images/city/170x136/967864.jpg?k=a98989bf56eeff2512cea0b0f4ec6aae0906b781cfb154d0cc574e906b8da18b&o= | 143.204.55.112 | 200 OK | 4.1 kB |
URL GET HTTP/2q-xx.bstatic.com/xdata/images/city/170x136/967864.jpg?k=a98989bf56eeff2512cea0b0f4ec6aae0906b781cfb154d0cc574e906b8da18b&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3 Hash24ee7c3511b2915ebf7cfd1ea1ec453f 36ab0e8a9940439ade7531eed218115c9048a3e2 e1d15a3f6846e2f65104101dfa58c50a94a2584e1a0a789b23748cabd7fcf622
GET /xdata/images/city/170x136/967864.jpg?k=a98989bf56eeff2512cea0b0f4ec6aae0906b781cfb154d0cc574e906b8da18b&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
content-length: 4062
server: nginx
date: Sun, 14 Apr 2024 14:59:22 GMT
etag: "2a2dfed680c3e471aff1f9c53b18abd67c3291cc"
content-language: 4062
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: f9VUzbFJXTMUCRmGUQ4Nj2Q5EF8nUMTovKOH9QFSTXnrm431awtyBQ==
age: 1726581
X-Firefox-Spdy: h2
|
|
| r-xx.bstatic.com/xdata/images/xphoto/263x210/45450056.jpeg?k=251e2507d43a24a4c58bb961b8d157147d56efbf91b49f9606bc768c58f581e4&o= | 143.204.55.112 | 200 OK | 13 kB |
URL GET HTTP/2r-xx.bstatic.com/xdata/images/xphoto/263x210/45450056.jpeg?k=251e2507d43a24a4c58bb961b8d157147d56efbf91b49f9606bc768c58f581e4&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3 Hash046a6e4db3f4ea1dc3b0044b48f93093 e0997c00add73d0b3b38ccc79e9ba67b447e3f59 6676ced592b6b4e143ff6a71c0dd4a0a0d0f2c040d7d689f58b0053e09c82365
GET /xdata/images/xphoto/263x210/45450056.jpeg?k=251e2507d43a24a4c58bb961b8d157147d56efbf91b49f9606bc768c58f581e4&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Mon, 08 Apr 2024 10:45:21 GMT
content-language: 13102
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "c408c193e9cbf1666a3bde4c62115b2ece30df49"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: fJ0Zbmv0ddS0JoQZknuMlk0K8crdHLVT4RDSNzNyYFkb4HYXcXF6Vw==
age: 2260221
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/hotel/square600/210792809.webp?k=6170b51b1f9356c201baa66e7baac73172a8469c3172fa778807440c35bdb7b9&o= | 143.204.55.112 | 200 OK | 38 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/hotel/square600/210792809.webp?k=6170b51b1f9356c201baa66e7baac73172a8469c3172fa778807440c35bdb7b9&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp Hashd7bd697a145dca7e96b74b2e22b675fc d7d6250840e0c0669ac303575a8cdc6363569133 7b8714f40119313ded2df56f244ce398edfb8c4c133e948a34daf441d11af8c1
GET /xdata/images/hotel/square600/210792809.webp?k=6170b51b1f9356c201baa66e7baac73172a8469c3172fa778807440c35bdb7b9&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Mon, 29 Apr 2024 06:30:22 GMT
content-language: 38024
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "b48b1f0a21d2a22eb3678afffd092603f86a0391"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 0VcZxf2cwxlFGrJBxW1VTSJKFC69sJH__IKgnfz2VIKvyGCjAqvXeQ==
age: 461121
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/5b5ab8ab66a5ce3092875d0725122439c4f2dfdd.css | 143.204.55.112 | 200 OK | 76 kB |
URL GET HTTP/2cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/5b5ab8ab66a5ce3092875d0725122439c4f2dfdd.css IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash59b9ba105a6857533bbf8c4c3cabef29 e6efdc0b7a1d2c8cd9cd35f6652ff64f3b0b48fc dfe541a6c0c1481c3ebe6b417754ee08d8871ec885dad30f723b89767732ed2c
GET /static/css/xp-index-sb_cloudfront_sd.iq_ltr/5b5ab8ab66a5ce3092875d0725122439c4f2dfdd.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Mon, 29 Apr 2024 09:33:05 GMT
last-modified: Tue, 30 Jan 2024 07:07:17 GMT
expires: Wed, 29 May 2024 09:33:05 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: W/"65b8a025-129a7"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dTrWGx_N1c27njh6WPEYKHeF_vW12CBoANUj_4lAUdXoGWTqMmmBWg==
age: 450154
X-Firefox-Spdy: h2
|
|
| cdn.cookielaw.org/scripttemplates/202403.2.0/assets/otFlat.json | 104.19.177.52 | 200 OK | 14 kB |
URL GET HTTP/2cdn.cookielaw.org/scripttemplates/202403.2.0/assets/otFlat.json IP104.19.177.52:443
CertificateIssuerCloudflare, Inc. Subjectcookielaw.org FingerprintC9:7F:A3:0A:53:6E:A6:6C:2F:D0:E2:2C:F5:35:B4:BC:81:90:40:31 ValidityFri, 01 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
Hash9b1f8ddf85fb0cbfd926faacb1fc0405 ade7f952c70f07fd3497cd3e8656ca1f28c78633 f4aaa18c55c90588c5e828e56dcc6b2cb0acf9a4280494c7d1a53fc5e3669112
GET /scripttemplates/202403.2.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 14:35:42 GMT
content-type: application/json
content-length: 3041
content-encoding: gzip
content-md5: wV78mAWw6KBtzfNUzHQTew==
last-modified: Mon, 22 Apr 2024 06:06:11 GMT
etag: 0x8DC62924F52ADA5
x-ms-request-id: 6f75feb9-c01e-0052-3498-94456b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 71843
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e938063c7c0b55-OSL
X-Firefox-Spdy: h2
|
|
| accounts.google.com/gsi/log?client_id=901905703382-m88jn1h9ll89odkt6t5muc6h7ep83rlh.apps.googleusercontent.com&as=PmWpjNd2ymv%2FvQMfBkAk%2Bw&event=onetap.policy.defaultPosition | 64.233.162.84 | 200 OK | 0 B |
URL POST HTTP/3accounts.google.com/gsi/log?client_id=901905703382-m88jn1h9ll89odkt6t5muc6h7ep83rlh.apps.googleusercontent.com&as=PmWpjNd2ymv%2FvQMfBkAk%2Bw&event=onetap.policy.defaultPosition IP64.233.162.84:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /gsi/log?client_id=901905703382-m88jn1h9ll89odkt6t5muc6h7ep83rlh.apps.googleusercontent.com&as=PmWpjNd2ymv%2FvQMfBkAk%2Bw&event=onetap.policy.defaultPosition HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 0
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-allow-origin: https://www.booking.com
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 04 May 2024 14:35:44 GMT
content-security-policy: require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, script-src 'nonce-v3CVOSq4u8Vp-g2caX84uw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| cf.bstatic.com/psb/capla/static/css/18cad957.25886bdc.chunk.css | 143.204.55.112 | 200 OK | 374 B |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/css/18cad957.25886bdc.chunk.css IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeASCII text, with very long lines (375), with no line terminators Hash1d5b7e4293a0330cdda97a799012895f 7b1d7cd4d1cda47df03341f90903e736764189b7 1f5190587cc8f66acce037188d95897e39a7ad41876a3ea5cb0cf631b8d947b5
GET /psb/capla/static/css/18cad957.25886bdc.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
content-length: 374
last-modified: Thu, 02 May 2024 05:20:33 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: TrznESozq.2w58ze6PMHBS2pAFuuOAAC
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 May 2024 05:20:37 GMT
etag: "cbbfc6e25cbe00c996ec7a05ba299022"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: lkD2804JEd2v1VsYTGU57C131DZwkSOtm_cs2OxBUdNcuPYbJXcSeQ==
age: 33303
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/static/img/favicon/9ca83ba2a5a3293ff07452cb24949a5843af4592.svg | 143.204.55.112 | 200 OK | 1.2 kB |
URL GET HTTP/2cf.bstatic.com/static/img/favicon/9ca83ba2a5a3293ff07452cb24949a5843af4592.svg IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hashf9fad57618825b73befd889672c15365 42ae8f9cb5bfadea13088709d7b4f370216f6699 7a966d2d470aae9a13de93811aabf822c44787ee24f99d7770ca496fcd59ef6d
GET /static/img/favicon/9ca83ba2a5a3293ff07452cb24949a5843af4592.svg HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Fri, 12 Apr 2024 22:03:18 GMT
last-modified: Tue, 21 Mar 2023 13:15:52 GMT
expires: Sun, 12 May 2024 22:03:18 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: W/"6419ae08-4ad"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7-00WYnCzqiDcyCtmP3eIiAuIAvlcI44TTSoZNFFjyxDPBMHnBOcZg==
age: 1873942
X-Firefox-Spdy: h2
|
|
| www.booking.com/c360/v1/track | 54.230.111.45 | 200 OK | 53 B |
URL POST HTTP/2www.booking.com/c360/v1/track IP54.230.111.45:443
CertificateIssuerDigiCert Inc Subject*.booking.com FingerprintC7:72:77:E2:B0:F2:0E:46:E1:DC:98:03:30:6C:05:F2:10:E1:02:36 ValidityWed, 01 May 2024 00:00:00 GMT - Tue, 25 Mar 2025 23:59:59 GMT
File typeASCII text, with no line terminators Hash8558598cfe50b04a6459caa30be3056d 3cdc9373bc09fb23b199e3f5c8e1fc886c7d53d4 539b2c941d7349a562c8e00fdea96b7d9a23494d3002abb6fdbd001f5e4ba1a2
POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Booking-Pageview-Id: 0819669da254000b
X-Booking-AID: 304142
X-Booking-Session-Id: 6e4a4fe1a54696541edadb825a534c41
X-Booking-SiteType-Id: 1
X-Partner-Channel-Id: 3
X-Booking-Label: gen173nr-1FCAEoggI46AdIM1gEaKoBiAEBmAExuAEZyAEP2AEB6AEB-AECiAIBqAIDuAK6j9mxBsACAdICJDBlNjk5Y2MwLTQ5MGQtNDU1Yi1hZTE3LTc5MGI4NDBjYmQ3ZtgCBeACAQ
X-Booking-CSRF: +n82ZgAAAAA=JUfbTOiNZC7InCj9e83gYip7la-1Duk79OMyikM-suA7mVBBtWh4JWQje5uzeilNfXTOSA79k2JL9pHq-fRO01RqgOwKfkoVPuUVMt2whpm-BExzsUWnOGkh7yQzuzUDo6PjRlYaNv9Ff3r7cd5_-VeOPy8wbRb_uecmbxj8KNC4tqPYeGRM2YYV0LiXU7s-_FCozDCYhS5k16Fb
X-Booking-Language-Code: en-us
X-Booking-Client-Info: cCHObKdPHMfFdHMEKBOcaGPaAHFHDQIC|8,HWAJLGbbeLHAFPRFDEYScEUWBZEWaSddKNKNKWe|2,cCGaYSddOEGcHNAEQfKCePBeZTPSeUFRURURHe|1,cCGaYSddOEGcHNAEQfKCePBeZTPSeUFRURURHe|6
X-Booking-Info: 1865390,1932080,1932100,1932110,1939730,1943090,1946400,1959390,1970670,1975230,1976360,1977000,cCHObKdPHMfFdHMEKBOcaGPaAHFHDQIC|8,1970670|1,HWAJLGbbeLHAFPRFDEYScEUWBZEWaSddKNKNKWe|2,cCGaYSddOEGcHNAEQfKCePBeZTPSeUFRURURHe|1,cCGaYSddOEGcHNAEQfKCePBeZTPSeUFRURURHe|6
X-Requested-With: XMLHttpRequest
Content-Length: 1028
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPedXipW9P%2Bn9MYWYmjSTOk7tlRnW%2BYurihW6uF4NqE0Zj1oDgS60ARakX9Ktpe7w%2BCQf%2BRgETSsisK%2BsydahBVbfBmNPR4P93MujHAlvxWC4XeJDhSnxzyRsfx72ZN%2BHcNf26Ggy7zJxo83DyxVVBDnv; bkng_sso_auth=CAIQsOnuTRpmvKlZYXYJUdjpVbdMvQwNjHrvsml6L4VkiK7tISGV++DO0XXfwqYqcvGv6N5B0jJ+At6IQOX9CzDigoeY7Dt/FQmXvzsPX5q9kGIjFfD+w/XIrSbe9Qmi3qompOLVKk1Ncna0zA0n; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3D047e10e5-e3e9-42f5-8d41-1b74123b97ba%26consentedAt%3D2024-05-04T14%3A35%3A38.319Z%26expiresAt%3D2024-10-31T14%3A35%3A38.319Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; px_init=0; pcm_personalization_disabled=0; cors_js=1; bkng_sso_session=e30; bkng_sso_ses=e30; OptanonConsent=implicitConsentCountry=GDPR&implicitConsentDate=1714833341097; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 54
server: nginx
date: Sat, 04 May 2024 14:35:41 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPee3NJ9F9RAyc%2B8CF9rXFU3RfaLYmCytRy1BIxZ5sP0rcjwBWwkPvmQyQ3LhYt8KmtbjhBgDCCof36brzG4FLc4nQJSHMEgkb2I9CIO7dw8PDgJmmqxzSrrpe5HtawBC6eDMUu03KpC0WtYgFqCYaqTTeRFIRxrioGw%3D; domain=.booking.com; path=/; expires=Thu, 03-May-2029 14:35:41 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=2592000; includeSubDomains
x-content-options: nosniff
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=0cab669e802d00d2&e=UmFuZG9tSVYkc2RlIyh9YaKT1Ar0s2gSEmakdtrUqssGGNjop_TdapFZsO6kKvBXXzF75dy-okc
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HxHHOKkA2kkUrdWHOzFORkpyHgTQoq3YySZzs_LGix05puy4imFaww==
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/xphoto/300x240/140040678.jpg?k=7080b8e3fedb58f3bb8a17656acabeb7fb29aec9beb0039c7d71c6cd1270911d&o= | 143.204.55.112 | 200 OK | 22 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/xphoto/300x240/140040678.jpg?k=7080b8e3fedb58f3bb8a17656acabeb7fb29aec9beb0039c7d71c6cd1270911d&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3 Hash913035261664897d777b2fff807b8cb2 f4ba7d458a8410d847265170c45095fb0bf5fe12 29727d339136f99b7bb9e9a2950fac13915e777de66345d72f36dd12c6dbde2e
GET /xdata/images/xphoto/300x240/140040678.jpg?k=7080b8e3fedb58f3bb8a17656acabeb7fb29aec9beb0039c7d71c6cd1270911d&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Thu, 02 May 2024 12:47:06 GMT
content-language: 21490
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "44b0e11dbc5efcb6a3a6658ed80b40a2db185a3b"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bSbUffL9_oqqYcKEchd1gI3ihWiNOwUnhMQwzWJBHxmHm5Cldu76zQ==
age: 179317
X-Firefox-Spdy: h2
|
|
| r-xx.bstatic.com/xdata/images/xphoto/263x210/45450068.jpeg?k=41cc7c5449011323aaaaed4e845cb16200b5d540c77a50c1bea90399a1e92d70&o= | 143.204.55.112 | 200 OK | 16 kB |
URL GET HTTP/2r-xx.bstatic.com/xdata/images/xphoto/263x210/45450068.jpeg?k=41cc7c5449011323aaaaed4e845cb16200b5d540c77a50c1bea90399a1e92d70&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3 Hashe7bf96a1173c8a53e147151fadef91f5 d3c2d334b7fc33edea8492c6627bba1438c5ebe0 e84777ce16b3e1f4ebfe4a1422f5848b1a0370f33f78d99b7f4a060d880be76d
GET /xdata/images/xphoto/263x210/45450068.jpeg?k=41cc7c5449011323aaaaed4e845cb16200b5d540c77a50c1bea90399a1e92d70&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Wed, 01 May 2024 15:31:08 GMT
content-language: 15735
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "d7d9dce017375f28392f8900463550320ea7975e"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1YDFS8_waHi1Q8orBkPlC9KZmybuby2gBeSkrPAy6fjLz-7UuYbGCg==
age: 255874
X-Firefox-Spdy: h2
|
|
| redirect.viglink.com/?key=094e06277dfb78dc5518aa894d9e4981&cuid=be451096c5ed2ce1586685f0bc5c86b4&u=https%3A%2F%2Fsecure.booking.com | 18.203.177.68 | 302 | 600 kB |
URL User Request GET HTTP/1.1redirect.viglink.com/?key=094e06277dfb78dc5518aa894d9e4981&cuid=be451096c5ed2ce1586685f0bc5c86b4&u=https%3A%2F%2Fsecure.booking.com IP18.203.177.68:443
CertificateIssuerAmazon Subjectviglink.com Fingerprint3C:5C:DF:3D:A3:A8:4A:E0:6C:BE:A5:70:39:7D:E4:80:5C:1F:5C:02 ValidityTue, 12 Sep 2023 00:00:00 GMT - Wed, 09 Oct 2024 23:59:59 GMT
Size600 kB (600441 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?key=094e06277dfb78dc5518aa894d9e4981&cuid=be451096c5ed2ce1586685f0bc5c86b4&u=https%3A%2F%2Fsecure.booking.com HTTP/1.1
Host: redirect.viglink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302
Cache-Control: no-cache, no-store
Date: Sat, 04 May 2024 14:35:38 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://secure.booking.com
Pragma: no-cache
Content-Length: 0
Connection: keep-alive
|
|
| cf.bstatic.com/xdata/images/hotel/square600/467167582.webp?k=8190946ffdd138b82898fb5381f6bfd638f5897fa1ce24307eb2051338bc66e5&o= | 143.204.55.112 | 200 OK | 53 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/hotel/square600/467167582.webp?k=8190946ffdd138b82898fb5381f6bfd638f5897fa1ce24307eb2051338bc66e5&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp Hash8bfe15f5529789baa643943635ea92f6 9708adef63de0787d7a574937b7fc825eb7ee1e0 812e906630a8a88cac0746ec08c6adfe9bfe8e4771300e3def801f1af6bc1342
GET /xdata/images/hotel/square600/467167582.webp?k=8190946ffdd138b82898fb5381f6bfd638f5897fa1ce24307eb2051338bc66e5&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Mon, 29 Apr 2024 12:31:25 GMT
content-language: 53362
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "b394b5da7c02a7484a883425b687034d0cc77048"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: pKpLdH3zc7pLlwhILCT6RwEMUSBwHKLYBvf8ApJ-qpeTIq-16y6A7g==
age: 439458
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/xphoto/540x405/292056369.webp?k=358d8cd9ede268c8a9660de4debc48b68fe5777bddce07972ac30ae28ab8b8f2&o= | 143.204.55.112 | 200 OK | 30 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/xphoto/540x405/292056369.webp?k=358d8cd9ede268c8a9660de4debc48b68fe5777bddce07972ac30ae28ab8b8f2&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 540x405, Scaling: [none]x[none], YUV color, decoders should clamp Hashc8d0ed7998fb0afc25a20d7d4bca99f2 85f8a1f4ae7fe49cd4c9d698b90af188383275da aece92bc21d39bbe612c35ba89dad5621cd74b11cc19099576aa0e225236ec95
GET /xdata/images/xphoto/540x405/292056369.webp?k=358d8cd9ede268c8a9660de4debc48b68fe5777bddce07972ac30ae28ab8b8f2&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Mon, 08 Apr 2024 08:16:27 GMT
content-language: 30498
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "1f14817c780d1c1b251591b8136e75e4c103f32f"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: kYp6ikRBrLmlzkq_3oW22sSeE-98GhNg1DECQyAbnNEI-0WDrHsghQ==
age: 2269152
X-Firefox-Spdy: h2
|
|
| q-xx.bstatic.com/xdata/images/hotel/263x210/119467716.jpeg?k=f3c2c6271ab71513e044e48dfde378fcd6bb80cb893e39b9b78b33a60c0131c9&o= | 143.204.55.112 | 200 OK | 11 kB |
URL GET HTTP/2q-xx.bstatic.com/xdata/images/hotel/263x210/119467716.jpeg?k=f3c2c6271ab71513e044e48dfde378fcd6bb80cb893e39b9b78b33a60c0131c9&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3 Hash33bfa10dc5bc4ef8339bd5abeb8548ea 957c2b9e899e2520a2c97f21d638fca030da5a43 0380753c60c2fa8bd19a5346b32e08dd50be778fa3d850147638eb16c16bf0b2
GET /xdata/images/hotel/263x210/119467716.jpeg?k=f3c2c6271ab71513e044e48dfde378fcd6bb80cb893e39b9b78b33a60c0131c9&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Thu, 04 Apr 2024 22:21:02 GMT
content-language: 10601
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "118c01722e55044d816db848ac471d09024e4d85"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jEw5153YFTWGkW1e4PfxFtIgYOOjlEp9LBU93x2SR_BF7hkbQNP__g==
age: 2564080
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/hotel/square600/270323047.webp?k=bade09d7901e1282156f13c3b39e3a8b9c8d45170b2f1184565d3fc304c42d70&o= | 143.204.55.112 | 200 OK | 24 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/hotel/square600/270323047.webp?k=bade09d7901e1282156f13c3b39e3a8b9c8d45170b2f1184565d3fc304c42d70&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp Hash4a1d3e04a67e519cea2b511d0f79eec0 9bcf037067abadc6439c4031f7b9ea2f2d157ade 94d728ecaac17567551eabad972adfbaa5a6de2d4f420c0b957b47fd104ee062
GET /xdata/images/hotel/square600/270323047.webp?k=bade09d7901e1282156f13c3b39e3a8b9c8d45170b2f1184565d3fc304c42d70&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Mon, 08 Apr 2024 08:16:29 GMT
etag: "5ca13ee6d75dcb62fe619a4cab55b3520f42b588"
content-language: 24292
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Jw484PB2jsF69jMnAA8yFz_oSfB3NdFtGkLCK-yoEZtH4iftaGGeEA==
age: 2269154
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/libs/privacy-consent/releases/2.1.55/customer/cookie-banner.min.js | 143.204.55.112 | 200 OK | 12 kB |
URL GET HTTP/2cf.bstatic.com/libs/privacy-consent/releases/2.1.55/customer/cookie-banner.min.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (11709), with no line terminators Hash2885fec5fbf3a9e77da4bf6ac7838469 c10928fd9a50458024678a435d929052db47c78f 84cc7c5d44516d6e6564bdb74456edf2df2385f8b6f21b4daef362c23d6ce990
GET /libs/privacy-consent/releases/2.1.55/customer/cookie-banner.min.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 26 Apr 2024 13:05:26 GMT
last-modified: Fri, 26 Apr 2024 12:58:15 GMT
etag: W/"662ba4e7-2dbd"
expires: Sun, 26 May 2024 13:05:26 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ktJUMw6WxYWzSvzZ3e93Zkkc_0ppSPOYai1UkNTgz43U1ThQIKX1FQ==
age: 696613
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/js/remoteEntry.54675ecb.client.js | 143.204.55.112 | 200 OK | 19 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/js/remoteEntry.54675ecb.client.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (18861) Hashba19a0fc851de0507c920ce00488a14e f37b46272072b9b188ec2461b81e570686161ec9 d5d0d11832c4bd131799842a091a77e286c3900454d4d09170593bc857043cbd
GET /psb/capla/static/js/remoteEntry.54675ecb.client.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 05:36:01 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: 85oRpPoQ79u.qNmyKE1CFWSUe3kwm_kq
server: AmazonS3
content-encoding: br
date: Fri, 03 May 2024 19:02:36 GMT
etag: W/"ba19a0fc851de0507c920ce00488a14e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qA_YtU-UmNKS-xmjHfa3mLzvM-t-_czF08DfqKDiVBHzfXGRRBhvIw==
age: 70384
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/hotel/square600/262247242.webp?k=bbfb11d6ac0fdb03a1aaa1e993bf05320777bf5e999d0531a3ada9afbf28dc7a&o= | 143.204.55.112 | 200 OK | 130 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/hotel/square600/262247242.webp?k=bbfb11d6ac0fdb03a1aaa1e993bf05320777bf5e999d0531a3ada9afbf28dc7a&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp Size130 kB (129882 bytes) Hash4307165330c926ee501017439d6fd4ed 9467e6f6308c66ca44b1efb53e287eb698faf796 4668c066878deb7733b98bf57a0ba5bde47646214e4568746697adc24a1ad39a
GET /xdata/images/hotel/square600/262247242.webp?k=bbfb11d6ac0fdb03a1aaa1e993bf05320777bf5e999d0531a3ada9afbf28dc7a&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Thu, 18 Apr 2024 10:14:58 GMT
content-language: 129882
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "e0803850a71219c24699f57db52a6c2566e27cd4"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jGmr-I0oYJPUGjY_Zxl7oAGWcHLm1JFxaT-5jgC3M3qO9OOE6NSS1g==
age: 1398045
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/xphoto/300x240/140040546.jpg?k=7a1af0e15b711550bc7dafc895e0598250e62b0ec8a031da642a74168bae1f39&o= | 143.204.55.112 | 200 OK | 16 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/xphoto/300x240/140040546.jpg?k=7a1af0e15b711550bc7dafc895e0598250e62b0ec8a031da642a74168bae1f39&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3 Hash9cf8cf715413e764c0763cc59b5a18d1 f5d54a210fbd49b4312dedf0897ab950c6405dc6 945fa2cae5838afe735163618ce2c80b9411f0f9d8a42c198a25247bcf7c95e6
GET /xdata/images/xphoto/300x240/140040546.jpg?k=7a1af0e15b711550bc7dafc895e0598250e62b0ec8a031da642a74168bae1f39&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-language: 15567
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sat, 13 Apr 2024 08:21:04 GMT
cache-control: max-age=2592000
etag: "cc9e4444d49941bb56895e32716333efa2ce6345"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: JU83wN3tsKKCqEhOx_sSGaAjRYA6Sp9a1qJSH9l2Hq1gAIsmFS-ivg==
age: 1836879
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/xphoto/300x240/140040526.jpg?k=338a312b069769d7c6a1b22f8de714b7cd8070780c108c16b289513964c0075a&o= | 143.204.55.112 | 200 OK | 17 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/xphoto/300x240/140040526.jpg?k=338a312b069769d7c6a1b22f8de714b7cd8070780c108c16b289513964c0075a&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3 Hasha90a249d0b2e1857e13f4a7518fc6015 a76a3ef3f8c865db80e0489fe1ff68e7c60de19b 23cbd2975941523711f28c03b0f3b792602cb61befaad5d33569167cecc7fb42
GET /xdata/images/xphoto/300x240/140040526.jpg?k=338a312b069769d7c6a1b22f8de714b7cd8070780c108c16b289513964c0075a&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Sun, 21 Apr 2024 07:21:42 GMT
content-language: 16920
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "f9ac0a1465250733246d659a9004b954202cee9d"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _81HUlyP0_Q2LJ27LvSR20KRQocW2OHPlR3HZKEcq0CrRERm1IZMwg==
age: 1149241
X-Firefox-Spdy: h2
|
|
| accounts.google.com/gsi/client | 64.233.162.84 | 200 OK | 221 kB |
URL GET HTTP/2accounts.google.com/gsi/client IP64.233.162.84:443
CertificateIssuerGoogle Trust Services LLC Subjectaccounts.google.com Fingerprint9A:72:A8:C3:56:5C:93:B4:72:C7:5B:1B:60:BB:0F:3E:1E:C4:1B:67 ValidityTue, 16 Apr 2024 04:20:36 GMT - Tue, 09 Jul 2024 04:20:35 GMT
File typeJavaScript source, ASCII text, with very long lines (3111) Size221 kB (221031 bytes) Hashc83aa08fc6d5b6b4500f528acae01c78 41d724fd50df1cd8806dd602cd011328a499a896 4cc33099bf4e871f4a7962339e20f2b19ecd0ae7f588ac282bc6a060a883f012
GET /gsi/client HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
expires: Sat, 04 May 2024 14:35:41 GMT
date: Sat, 04 May 2024 14:35:41 GMT
cache-control: private, max-age=1800
content-security-policy: script-src 'nonce-J5ZywU1x_zpYYE5rh8in9Q' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
cross-origin-resource-policy: cross-origin
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| q-xx.bstatic.com/xdata/images/city/170x136/644293.jpg?k=24c08396bd44343c9dcc78f0df41e114bf7e6aeda3d339101c37e7ba3aa707db&o= | 143.204.55.112 | 200 OK | 5.4 kB |
URL GET HTTP/2q-xx.bstatic.com/xdata/images/city/170x136/644293.jpg?k=24c08396bd44343c9dcc78f0df41e114bf7e6aeda3d339101c37e7ba3aa707db&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3 Hash2500c3ceb70ede8cd27aa8104b6ba08d 171e77bfa910c602acd969ad5a2d6240764a01e2 85d4039adc55e4225f4f70866622be1d30a8978738539db37085264adff1c3d2
GET /xdata/images/city/170x136/644293.jpg?k=24c08396bd44343c9dcc78f0df41e114bf7e6aeda3d339101c37e7ba3aa707db&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
content-length: 5421
server: nginx
date: Tue, 30 Apr 2024 07:25:19 GMT
content-language: 5421
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "0cc34fa50815c534b0e6a4a3db51d7118e56da40"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: S--GSs9VgZeBX50VJqQ0UsgZiki1_I3XG1j1H5ydzPkLbPaa_EMTyw==
age: 371424
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/hotel/square600/106548982.webp?k=6464bb1807bbc9f4f9c408328c8df98bdfb5a885f7fc51712fcefc417b8472f7&o= | 143.204.55.112 | 200 OK | 44 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/hotel/square600/106548982.webp?k=6464bb1807bbc9f4f9c408328c8df98bdfb5a885f7fc51712fcefc417b8472f7&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp Hashae73cf7dfa7da7510e6fd827ec3f5df5 d79115961e0524533666105e89435b8a8c7df879 f2cd2bae405dd2a3fedc811d6d518e1f2a10ddc43db3356f0b3b66a8bb3a6a3e
GET /xdata/images/hotel/square600/106548982.webp?k=6464bb1807bbc9f4f9c408328c8df98bdfb5a885f7fc51712fcefc417b8472f7&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Sun, 21 Apr 2024 01:07:17 GMT
etag: "39334ed1ecfc886f562ecb40cc71f27008acb4fd"
content-language: 43662
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3ye5KT8Y9_ff3Cb2aMu7HOKzTB5P9173dDJ6hq0i6aySG6VnY_sjfw==
age: 1171706
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/hotel/square600/352170812.webp?k=4ff5e29f3ad72c2c9f7170f60a043f01a158f26b38c55e9676439c18f3804179&o= | 143.204.55.112 | 200 OK | 42 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/hotel/square600/352170812.webp?k=4ff5e29f3ad72c2c9f7170f60a043f01a158f26b38c55e9676439c18f3804179&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp Hash7b6edbb7da736f0631b0654a13530cdb df610ccb07824e61782f831c0a463c917381494e 226ebcf0b99c6643fc3d3d25cf3369f37b1aa9b6b9d14886e4abaf3d5ad2fa0e
GET /xdata/images/hotel/square600/352170812.webp?k=4ff5e29f3ad72c2c9f7170f60a043f01a158f26b38c55e9676439c18f3804179&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Fri, 12 Apr 2024 08:37:22 GMT
etag: "85dd2b92edb86c666d0f01fccec227d47fc85d84"
content-language: 42056
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: nyB-UwVDbBbBrJoiQT7wdq8i9E_p-eRNQ9H5c9zAtG79ykoIwcmujg==
age: 1922301
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/js/97a643cd.b0e8ae10.chunk.js | 143.204.55.112 | 200 OK | 20 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/js/97a643cd.b0e8ae10.chunk.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (19646) Hashb2c124026779587267b8fc0e4e153201 2b2cf1f1c0eca138a50c812517e90652a5b4aea8 7fa3b2674b0fba4cdf547e0d4198cb75b2357250ecd09df64c940556da52fe5c
GET /psb/capla/static/js/97a643cd.b0e8ae10.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 02 May 2024 14:18:23 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: Exid0bFlLCB.trAOnBptZ5I7YYcOq8j8
server: AmazonS3
content-encoding: br
date: Sat, 04 May 2024 00:35:38 GMT
etag: W/"b2c124026779587267b8fc0e4e153201"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3lDWL7bOISPvd8SA3d62kMrqSfe5vepHExt1kQn2WqAukLrvxQAA3A==
age: 50402
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/xphoto/300x240/140040504.jpg?k=8fdd542b8aad3f48442d8f2f8d4f297de56342033d75868de67d9745f3c608c9&o= | 143.204.55.112 | 200 OK | 19 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/xphoto/300x240/140040504.jpg?k=8fdd542b8aad3f48442d8f2f8d4f297de56342033d75868de67d9745f3c608c9&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3 Hash9f9dfd6abf56a1b68b43ca05ba9bfd57 b49c096599f9a07befe7d65bb6a5309add50688f 43acb4622e30a19945e4a882ff72e399a6725d1c390e2060a2384347d03655cd
GET /xdata/images/xphoto/300x240/140040504.jpg?k=8fdd542b8aad3f48442d8f2f8d4f297de56342033d75868de67d9745f3c608c9&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Thu, 02 May 2024 12:47:07 GMT
content-language: 18816
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "ee94e1f093abb9bf1f136087133763b16fd9e8cc"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ttxiz3bOb8U4sTd2j_VVIzpTm6lSUcLR7JkzJdqdQWehaXAj3sAs_Q==
age: 179316
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/css/ebf8c3e3.dbc139b2.chunk.css | 143.204.55.112 | 200 OK | 1.2 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/css/ebf8c3e3.dbc139b2.chunk.css IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeASCII text, with very long lines (1254), with no line terminators Hashcaa316ce4b569933cf84192c3d42ee22 b6e694f806e1df295fd59063a9f4e891239a1a4b 38bdd16d25065b607898bc235ccec97993826ac6495d3d99403c4384118ce1c4
GET /psb/capla/static/css/ebf8c3e3.dbc139b2.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 02 May 2024 05:18:30 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: FPpGs8r8hgVBNByS6a1OgRoktTjXgoXa
server: AmazonS3
content-encoding: gzip
date: Fri, 03 May 2024 20:46:58 GMT
etag: W/"8864e2eafc17ea8328c2991d104d5839"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ekuIqGuzNOrLbxOGTt3oJKRqdhLTv_iexcjJKDZl6O0qcvxXI75z-A==
age: 64122
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/js/915bfb5a.c823f737.chunk.js | 143.204.55.112 | 200 OK | 634 B |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/js/915bfb5a.c823f737.chunk.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (647), with no line terminators Hashd59aac6bfd8b0f750509bd012aa898f2 4f886adb32e3118eebc0d2636055901669fc6689 d1e448b1c654d6e72f5444e448ca24ed9589c53ab98d91f22f861c0a8a1a069e
GET /psb/capla/static/js/915bfb5a.c823f737.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 634
last-modified: Thu, 02 May 2024 14:20:56 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: AU.4gc.4VBo_w2reUv.dog2YRHHFN0wU
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 May 2024 00:32:26 GMT
etag: "a0bc3385c51a9c872eef09d1c8a406f8"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _CInd3nz9EDy5ll-T4rTyiHns6SwAh3wjlocSQ4ppy6RJo_P3G0kgg==
age: 50596
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/css/c8637181.02aa197a.chunk.css | 143.204.55.112 | 200 OK | 1.2 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/css/c8637181.02aa197a.chunk.css IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeASCII text, with very long lines (1203), with no line terminators Hash2242aa6d606fadb59675ec2b868e6e04 988553262231ddf78d9833813ef249ae1ae0c050 fa19a0c267f7ac49b8239fcf0af59e18bbe8ebdb766e5dcdc6b5f10d9e4c7d83
GET /psb/capla/static/css/c8637181.02aa197a.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
date: Fri, 03 May 2024 16:51:00 GMT
last-modified: Fri, 03 May 2024 14:37:54 GMT
etag: W/"8936959a4a5e97e585481de704229db3"
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: qXEAki6nUpXSbNdUwheay9wwQtRJgoZ4
server: AmazonS3
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: e30rWEL_44On84rRajsnsEPQOSobK7QG3FO8ufsq0PuSHudOulp9LQ==
age: 78280
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/css/0d919837.616251df.chunk.css | 143.204.55.112 | 200 OK | 15 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/css/0d919837.616251df.chunk.css IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeASCII text, with very long lines (1734) Hash027031d486640c92c6955668a52e66a0 26e1f90ac95c09d11467250b0e6a7ba3c55f77fb 2e8207e093430ad3f220da54d147dcc0257e6f5c7646d425e3379f84d6d256a2
GET /psb/capla/static/css/0d919837.616251df.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
last-modified: Fri, 03 May 2024 09:17:51 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: i_9bGY.OArvRHOTPCuCf05k3QIsATw6T
server: AmazonS3
content-encoding: br
date: Sat, 04 May 2024 09:24:26 GMT
etag: W/"027031d486640c92c6955668a52e66a0"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: p7ucLY2FcUBjwsHQsq1bfQsDEvz7mPLTSPorhjs4-dGC7zhYcm_9SQ==
age: 18674
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| t-cf.bstatic.com/design-assets/assets/v3.81.0/fonts-brand/BookingBold.woff | 143.204.55.112 | 200 OK | 42 kB |
URL GET HTTP/2t-cf.bstatic.com/design-assets/assets/v3.81.0/fonts-brand/BookingBold.woff IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeWeb Open Font Format, TrueType, length 41976, version 2.0 Hashb2ca1822b16a92e0a0111c994cfe4b8a ad3bf01829f003d1e837fdae30b97e4911528c0f 12269c2adb9da8c73e2d8e5628566e4662720bdff4687c3bd6190571ff8c3b05
GET /design-assets/assets/v3.81.0/fonts-brand/BookingBold.woff HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://cf.bstatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: font/woff
content-length: 41976
last-modified: Tue, 25 Jul 2023 15:38:06 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 May 2024 01:59:24 GMT
etag: "b2ca1822b16a92e0a0111c994cfe4b8a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: JMxVRzaonxyIQpuPO2yV1lCXoG_dRCy5XUB2inxdIES8HThGhnfSGg==
age: 46876
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/static/js/calendar2_cloudfront_sd/06071dd1c4e89fbe99e5ad6e21584a6bf9585e84.js | 143.204.55.112 | 200 OK | 52 kB |
URL GET HTTP/2cf.bstatic.com/static/js/calendar2_cloudfront_sd/06071dd1c4e89fbe99e5ad6e21584a6bf9585e84.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/js/calendar2_cloudfront_sd/06071dd1c4e89fbe99e5ad6e21584a6bf9585e84.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Sat, 20 Apr 2024 09:45:16 GMT
last-modified: Tue, 12 Jan 2021 10:06:38 GMT
expires: Mon, 20 May 2024 09:45:16 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: W/"5ffd74ae-cbbc"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Rz0q1n4cJdPop8BUEvGOU6cKP2eTPZtjdqfCkjcsqqR4_umjTAw0WA==
age: 1227025
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/xphoto/300x240/140040641.jpg?k=51430fc1c9d907e05f70315ea470cc0dd50f1e09975e2655037bd2183a90d89e&o= | 143.204.55.112 | 200 OK | 19 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/xphoto/300x240/140040641.jpg?k=51430fc1c9d907e05f70315ea470cc0dd50f1e09975e2655037bd2183a90d89e&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3 Hash8b2c9a3e64a62c5c6a5a870a3d90e682 a993e18846a5fd1b148db09575ec0e788e032bc6 228dbc1009f8d9e68f267adc615f4d8ec00f0eb33a7c78d62b0654f00a1a6b5f
GET /xdata/images/xphoto/300x240/140040641.jpg?k=51430fc1c9d907e05f70315ea470cc0dd50f1e09975e2655037bd2183a90d89e&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Tue, 16 Apr 2024 06:03:14 GMT
content-language: 19005
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "df8b3d9ff1a756941a69449f31f1550ed7911c94"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LHr7j_NUcqnQJO3xaVVv36a1Yh9Km5QXYe5j4AfR_3hGPl9sbG-mjA==
age: 1585949
X-Firefox-Spdy: h2
|
|
| r-xx.bstatic.com/xdata/images/xphoto/263x210/45450279.jpeg?k=cb9ab85ffe439f3030e00281f2d52583a398bf076e54f00f746e1d1baf62bf6e&o= | 143.204.55.112 | 200 OK | 18 kB |
URL GET HTTP/2r-xx.bstatic.com/xdata/images/xphoto/263x210/45450279.jpeg?k=cb9ab85ffe439f3030e00281f2d52583a398bf076e54f00f746e1d1baf62bf6e&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3 Hashbde532f130b1e8e4fe12ad801cd77661 473b3d6fb52f5b967a9e13e3b0b91dd5b4c74165 48fb7dc5fed709b7868efd05d7f5bcbdb45d3dddd7f73a9c8aa72a75f46ebc0d
GET /xdata/images/xphoto/263x210/45450279.jpeg?k=cb9ab85ffe439f3030e00281f2d52583a398bf076e54f00f746e1d1baf62bf6e&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Wed, 01 May 2024 15:31:08 GMT
content-language: 18465
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "3d39cce4848578b728f54bd5cf1f1e1c6619cc2b"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: GIekVEua9RPc1Yhd7ZeVIcj_I4SSi9pv9yJFpbNYs4ZuXaks8JczHg==
age: 255874
X-Firefox-Spdy: h2
|
|
| r-xx.bstatic.com/xdata/images/xphoto/263x210/45450283.jpeg?k=44ef0e355cff36883935e4c99b5c01b035eabebad278d22363210b2fe40b2791&o= | 143.204.55.112 | 200 OK | 13 kB |
URL GET HTTP/2r-xx.bstatic.com/xdata/images/xphoto/263x210/45450283.jpeg?k=44ef0e355cff36883935e4c99b5c01b035eabebad278d22363210b2fe40b2791&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3 Hash90fad3c997f2d9cbb8427bc6e46d492f 3ad80505bc020e11fe101a0f958d3280a1689add 899a98f9590565257e31af2acc3e49e56c689a693f0cb204a50a3d027e741154
GET /xdata/images/xphoto/263x210/45450283.jpeg?k=44ef0e355cff36883935e4c99b5c01b035eabebad278d22363210b2fe40b2791&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Wed, 24 Apr 2024 12:23:00 GMT
content-language: 12945
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "7dcfcd553f0c70776bfeef049bb49be408eca4dd"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: i_M2dhZrbEeXVwO6jwDyOWhlnlL5VSu-LZfeNSb4TIl3nAGl6t54HQ==
age: 871962
X-Firefox-Spdy: h2
|
|
| q-xx.bstatic.com/xdata/images/region/170x136/48107.jpg?k=bc7ff9cf4d26882ff93f92643455885a88b9b0ae37b9ed109687ad0890af2dfd&o= | 143.204.55.112 | 200 OK | 4.8 kB |
URL GET HTTP/2q-xx.bstatic.com/xdata/images/region/170x136/48107.jpg?k=bc7ff9cf4d26882ff93f92643455885a88b9b0ae37b9ed109687ad0890af2dfd&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3 Hash618f36c6dca24c1e13f65743924ad4d6 1cdfec657ca8b3ce961107de24a0a3c467cfc161 fc9631742c03f76f2df1dc803bff39e7c53ae024541dcfbed7b8c05f45dbf180
GET /xdata/images/region/170x136/48107.jpg?k=bc7ff9cf4d26882ff93f92643455885a88b9b0ae37b9ed109687ad0890af2dfd&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
content-length: 4829
server: nginx
date: Tue, 30 Apr 2024 14:28:15 GMT
content-language: 4829
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "1f2e06af21700f3a8c1ef023dbce26ff576102bf"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: AXogKLneDzAHumdLpS8SvQPWRo-IMU0hMq3oBB3Xph8aD_v27LZ4SA==
age: 346048
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/js/59306dc3.2e82e762.chunk.js | 143.204.55.112 | 200 OK | 192 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/js/59306dc3.2e82e762.chunk.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65455) Size192 kB (192086 bytes) Hash6d1f263288e304a8963a3ab82122b4ad 314d5922079611ed497870b3640536d0b29e7005 7d0324cbbe01e2c875050cb9c102d6817a1794ef132a2795e8a08020d567fa13
GET /psb/capla/static/js/59306dc3.2e82e762.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 03 May 2024 16:16:52 GMT
last-modified: Thu, 02 May 2024 10:42:50 GMT
etag: W/"6d1f263288e304a8963a3ab82122b4ad"
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: BiENd46e9T4QuLgUUl0Mqd2OM2bIpGV1
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dMpmQ4mmCGbNjO4mK88YeZn5A2Q0jQkfz3422iOUpF-sDpkrtdKT2A==
age: 80328
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/static/css/searchresults_cloudfront_sd.iq_ltr/a80f32e7f9693f304c247b0f22b0f109a5fd7dd6.css | 143.204.55.112 | 200 OK | 360 kB |
URL GET HTTP/2cf.bstatic.com/static/css/searchresults_cloudfront_sd.iq_ltr/a80f32e7f9693f304c247b0f22b0f109a5fd7dd6.css IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
Size360 kB (359630 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/css/searchresults_cloudfront_sd.iq_ltr/a80f32e7f9693f304c247b0f22b0f109a5fd7dd6.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Fri, 12 Apr 2024 18:01:55 GMT
last-modified: Tue, 23 Jan 2024 12:08:23 GMT
etag: W/"65afac37-57cce"
expires: Sun, 12 May 2024 18:01:55 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: AUw4ymy-DFNpY1QHQXU-RJm08ETByajqjUL6s0wO9znLrisONStwuA==
age: 1888426
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/hotel/square600/366855457.webp?k=ef25b0c640c7c2f4fcac4c79509ef1dbb484c19f21a7c8cba18d9270d7f790e9&o= | 143.204.55.112 | 200 OK | 85 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/hotel/square600/366855457.webp?k=ef25b0c640c7c2f4fcac4c79509ef1dbb484c19f21a7c8cba18d9270d7f790e9&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp Hashd5d61e502701d626a44f71041bc3aa23 50523eff5efe9749abd76b9b94872c6f12b1362a 71dd9c06a63fe4d5a0ed46409f1555ae9a809146324cb47a3cb1bcfa2139b1d5
GET /xdata/images/hotel/square600/366855457.webp?k=ef25b0c640c7c2f4fcac4c79509ef1dbb484c19f21a7c8cba18d9270d7f790e9&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Mon, 15 Apr 2024 09:33:32 GMT
content-language: 85342
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "4cbedb5194f2d7933b6939f70bbc0f5cd2ded19f"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: tPtxfuvLDJMl7agpl7BvZUoQvCSSuQvrriGYbz_p6SzXACr4H2Q5WA==
age: 1659731
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/js/d9560671.c6656166.chunk.js | 143.204.55.112 | 200 OK | 221 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/js/d9560671.c6656166.chunk.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65455) Size221 kB (220881 bytes) Hashfa26c737905b8afcfced9aa0ba3b33d5 f6d59e9f9b42f43b36274e450db814f6af5bce70 54555ba7e23fee58a78fc73780994ff6ac653ec26e248ddf0b106bc4a0b0e90d
GET /psb/capla/static/js/d9560671.c6656166.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 02 May 2024 10:42:51 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: dNvlF.e4.bnukk2jFa7y23CNoT7FdRDN
server: AmazonS3
content-encoding: gzip
date: Fri, 03 May 2024 18:13:43 GMT
etag: W/"fa26c737905b8afcfced9aa0ba3b33d5"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 76TimTJYNTPsNce2s6Na_um3emqlN4IMSzidlajavJ8zdmjCGYQaMA==
age: 73317
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
|
|
| q-xx.bstatic.com/xdata/images/xphoto/500x500/320647664.png?k=698a838d781fe6952e506a3856a7fa5c22056d98e571eb3cf9e448afa98eba81&o= | 143.204.55.112 | 200 OK | 575 kB |
URL GET HTTP/2q-xx.bstatic.com/xdata/images/xphoto/500x500/320647664.png?k=698a838d781fe6952e506a3856a7fa5c22056d98e571eb3cf9e448afa98eba81&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typePNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced Size575 kB (575098 bytes) Hasha0523920b3e3bf0a3c56007a4e516ef8 2641e01bee9ca25237704733311b80b71f0ba13f e13fae84c49edb295595258b1a07c090d4fd4311bb7b8a27f0274e90638514d0
GET /xdata/images/xphoto/500x500/320647664.png?k=698a838d781fe6952e506a3856a7fa5c22056d98e571eb3cf9e448afa98eba81&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
server: nginx
date: Fri, 26 Apr 2024 10:37:03 GMT
content-language: 575098
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "fd49777a8a49018767f4f734663efd3f70f5b32f"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PF43fwX3VEE02FgxokZQJ24AJrDFbEnqci2_bFLOEXflnTEgwVnmjA==
age: 705517
X-Firefox-Spdy: h2
|
|
| www.booking.com/c360/v1/track | 54.230.111.45 | 200 OK | 113 B |
URL POST HTTP/2www.booking.com/c360/v1/track IP54.230.111.45:443
CertificateIssuerDigiCert Inc Subject*.booking.com FingerprintC7:72:77:E2:B0:F2:0E:46:E1:DC:98:03:30:6C:05:F2:10:E1:02:36 ValidityWed, 01 May 2024 00:00:00 GMT - Tue, 25 Mar 2025 23:59:59 GMT
File typeASCII text, with no line terminators Hashd80c288f4c220ceb27e052d27227b5c4 01d1b84198e29421d238557141b3e7985d18bd72 07eae237824726cb71610c5874a4e8889f1cade62484273902fa4386b1193001
POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-Type: application/json
X-Booking-Platform: www
X-Booking-SiteType-Id: 1
X-Booking-Pageview-Id: 0819669da254000b
X-Booking-Session-Id: undefined
X-Booking-ET-Seed: undefined
X-Booking-AID: 304142
X-Booking-Label: undefined
X-Booking-CSRF: undefined
X-Booking-Language-Code: en-us
Content-Length: 2293
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbof7CEiNviT8IzxNqzxR053HI8%2FqZKQub7%2FE5H26pLNlfAKGIpnulGs4cVukwXJG6Ixj4PiRrs8VPdSp5RoGg4%2ByvL2K%2B30TtkarI%2Fhyu4j%2FjoaTMoFQ%2Fza4kvZ3ol5Cks74U2jUsZaJpPnjsBLAW2ioaSoO%2FuOWNcEb%2B5xVj4OY%3D; bkng_sso_auth=CAIQsOnuTRp4XCf2mTNX2vTaKOi4c2gJXy3BplRywvZtVCh4hXGp5h5po/N6Qux+6kUCprdfXKCUOnGOJCKYHHcQmnGvYbRr1GQd2W7Jn/T3WlKyR4wJOjW8Sbugx4dG7NoQ9nDUFZd1Yhlso8MBnxHNGtpJqGdaAcEEZ4PTweKT; pcm_consent=consentedAt%3D2024-05-04T14%3A35%3A43.072Z%26countryCode%3DNO%26expiresAt%3D2024-10-31T14%3A35%3A43.072Z%26implicit%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr%26consentId%3D5fe20cb7-3a0d-49bd-9e44-a4a576eaaa39%26analytical%3Dfalse%26marketing%3Dfalse; px_init=0; pcm_personalization_disabled=0; cors_js=1; bkng_sso_session=e30; bkng_sso_ses=eyJib29raW5nX2dsb2JhbCI6W3siYSI6MSwiaCI6Ik11TFNOayszcVZqUk1NeWZjUkwxdUdZMUVlYThZd0I5aWl1NmtuQlNzWGsifV19; OptanonConsent=implicitConsentCountry=GDPR&implicitConsentDate=1714833341097&isGpcEnabled=0&datestamp=Sat+May+04+2024+14%3A35%3A42+GMT%2B0000+(GMT)&version=202403.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=9b410d55-22ad-4115-aad7-534adfa48e9d&interactionCount=1&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&intType=2; BJS=-; 11_srd=%7B%22features%22%3A%5B%7B%22id%22%3A16%7D%5D%2C%22score%22%3A3%2C%22detected%22%3Afalse%7D; OptanonAlertBoxClosed=2024-05-04T14:35:42.666Z; bkng_sso_auth_1714833343=CAIQsOnuTRp4XCf2mTNX2vTaKOi4c2gJXy3BplRywvZtVCh4hXGp5h5po/N6Qux+6kUCprdfXKCUOnGOJCKYHHcQmnGvYbRr1GQd2W7Jn/T3WlKyR4wJOjW8Sbugx4dG7NoQ9nDUFZd1Yhlso8MBnxHNGtpJqGdaAcEEZ4PTweKT
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 66
server: nginx
date: Sat, 04 May 2024 14:35:43 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBJSNum%2Bc1xLFn12m2f7ZHZ95PfhYVIBK10JlJfka14nlp4Y70WCBili2Fui6OOSsQrUyCz9Tmggwj0DuztcQajH4%2Bm5jddtlcvsexjAFfqrxqr9lOy7yPJKAXYOHIU0hUKG2Y7FCPEsmyQ7fblSlZJdTEgfORizrgg%3D; domain=.booking.com; path=/; expires=Thu, 03-May-2029 14:35:43 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=2592000; includeSubDomains
x-content-options: nosniff
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=f7f9669f17b0022e&e=UmFuZG9tSVYkc2RlIyh9YaKT1Ar0s2gSEmakdtrUqsuQCDV1_vRtbxXzIkhwxqWtzIFYwQ9cseg
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8t88Nk9WccQI9JRK0WBwLGno7tEO3NUB7LNYsotMeCSr74057_gVxQ==
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/hotel/square600/420377357.webp?k=29a0e9879ac8361539c3dae41f047d383e6fa6917f8f47cb50dad001ada0eae6&o= | 143.204.55.112 | 200 OK | 46 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/hotel/square600/420377357.webp?k=29a0e9879ac8361539c3dae41f047d383e6fa6917f8f47cb50dad001ada0eae6&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp Hash54d08790bdacf9b7ced1a06a690eb4e9 37206dc2736cc7be8bb0fa9939acda3ad0932120 7f59aa8f893072e340d23cb445129d669f096783711eaa8be83972d41c08e41d
GET /xdata/images/hotel/square600/420377357.webp?k=29a0e9879ac8361539c3dae41f047d383e6fa6917f8f47cb50dad001ada0eae6&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Wed, 17 Apr 2024 12:41:24 GMT
etag: "212fa7bf7fcc086a8902ddf83107bbf360e90a38"
content-language: 46360
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Qnzn_Tb8uHrMZX2wibfz8CPaz69jFd-5CGUch9eCYXp-8mhOkwPURw==
age: 1475659
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/js/5f127cf4.a264abd9.chunk.js | 143.204.55.112 | 200 OK | 220 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/js/5f127cf4.a264abd9.chunk.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65455) Size220 kB (219549 bytes) Hash0afe925eaf91e55d481d520b9a97e9ab ca54cde2f2f5b718cf27b14e28d1c8c41bf2611f 8f9112a5dba82d8464d0c4d75ed960bba7eede518e1a893a4fb14a6de7c953dd
GET /psb/capla/static/js/5f127cf4.a264abd9.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 02 May 2024 10:42:50 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: m7TxRj2EvDZQ.2pFUQyfKtJhMf2snGmp
server: AmazonS3
content-encoding: gzip
date: Fri, 03 May 2024 18:13:49 GMT
etag: W/"0afe925eaf91e55d481d520b9a97e9ab"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: duE17CjVjo2Db1m1CJ8pwIA5wgpV8ZLtwWgA7t8o0x-n_1q3G3Cz7w==
age: 73311
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/js/282e5b08.4d6eed9d.chunk.js | 143.204.55.112 | 200 OK | 219 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/js/282e5b08.4d6eed9d.chunk.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65455) Size219 kB (218886 bytes) Hashb8ded6168045b6f50a0d7b1bdcd85ffb b58807f3b94cdd7535a9c3fdee2d1d59d30dfce7 4f35dc940f31c5b1b94982201369c786aba0921b7d8132b7511ab09a1d319b4b
GET /psb/capla/static/js/282e5b08.4d6eed9d.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 02 May 2024 10:42:50 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: uKX0liD.NcPZhwsWAwhFYCSx52bvqD4B
server: AmazonS3
content-encoding: gzip
date: Fri, 03 May 2024 19:09:03 GMT
etag: W/"b8ded6168045b6f50a0d7b1bdcd85ffb"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: i7ANaNC7kW3b2rHQdmtW7wVGFQBiNuBZYre8QLYaa51Z7nw7EBj7xQ==
age: 69997
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/media/world-map.7d457a5d.png | 143.204.55.112 | 200 OK | 7.4 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/media/world-map.7d457a5d.png IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typePNG image data, 520 x 340, 8-bit colormap, non-interlaced Hasha2bdd966488047aaa17dcebc5238432b 65c52eeb866eb2acbd183e5fb2dccc5205dbb6bf cfc71dcddda21b32c0ac5ba5322bd41612224261fecdc38cd20a45b6b502457c
GET /psb/capla/static/media/world-map.7d457a5d.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cf.bstatic.com/psb/capla/static/css/ebf8c3e3.dbc139b2.chunk.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
content-length: 7367
last-modified: Fri, 03 May 2024 09:16:57 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: ooQk_D9e7Qk2kaOF1A2iQ5fAMqtbn5Qz
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 May 2024 10:31:49 GMT
etag: "a2bdd966488047aaa17dcebc5238432b"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: BOIjuRNSsv8TJmk21PBWiVXKT1qGS-B59ONrSivPrvw5Ez1NkN0NWg==
age: 14632
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| r-xx.bstatic.com/xdata/images/city/170x136/671694.jpg?k=cd1e3603afe4edd09f829675efb1cdc9a5925bed25a642bfc4d909602c231624&o= | 143.204.55.112 | 200 OK | 6.3 kB |
URL GET HTTP/2r-xx.bstatic.com/xdata/images/city/170x136/671694.jpg?k=cd1e3603afe4edd09f829675efb1cdc9a5925bed25a642bfc4d909602c231624&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3 Hash566ef663c31a7da2e19277c795aab0fa bcbc6af34645cb84bec41718185ab14768d36a31 207cf1ee36b9118a68d6b33bbef91c4eb9bd28edcabae628828b20a375f409c9
GET /xdata/images/city/170x136/671694.jpg?k=cd1e3603afe4edd09f829675efb1cdc9a5925bed25a642bfc4d909602c231624&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
content-length: 6341
server: nginx
content-language: 6341
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Tue, 09 Apr 2024 06:05:43 GMT
cache-control: max-age=2592000
etag: "498d6d5b65e81aa8199ff4e9ae444d1081d082a3"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: J3NbAc-NQHRfpmfoHt7KEtHklOyhFzVhDviU9dXGtjxY5WhBuJGB8w==
age: 2190600
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/xphoto/300x240/140040659.jpg?k=4554f51b074f61222a8d7d908cf2b8c6586962c49073fe28c4e2fc430e278e13&o= | 143.204.55.112 | 200 OK | 16 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/xphoto/300x240/140040659.jpg?k=4554f51b074f61222a8d7d908cf2b8c6586962c49073fe28c4e2fc430e278e13&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3 Hash3d37abeb2e224cc26e5d3911dda9b727 52ffabf08384a0f0b2d887b767307ac78e315d29 400ed136cf68f4c7a9feb9381004eefe88f78b0c489a6a42cbd5a771874af9bc
GET /xdata/images/xphoto/300x240/140040659.jpg?k=4554f51b074f61222a8d7d908cf2b8c6586962c49073fe28c4e2fc430e278e13&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Wed, 17 Apr 2024 11:02:13 GMT
content-language: 16525
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "649a64b7ed9c18ffd4e8feab2175eeecae499d46"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: GaE9jTUIrdEUkrHsvSCAkr1e9IxiE5rxaltmo0lvCWfqZbSnBHZ0OQ==
age: 1481610
X-Firefox-Spdy: h2
|
|
| q-xx.bstatic.com/xdata/images/xphoto/263x210/45450064.jpeg?k=4d4ea22dc4828fd55a3889e90531c9841ddb2d9abf460c420cdd24f2a9b658d2&o= | 143.204.55.112 | 200 OK | 15 kB |
URL GET HTTP/2q-xx.bstatic.com/xdata/images/xphoto/263x210/45450064.jpeg?k=4d4ea22dc4828fd55a3889e90531c9841ddb2d9abf460c420cdd24f2a9b658d2&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3 Hash80f9f2fb77f37a3e57ac55d15de1a43b 9004c534f4e2730a4ed3985985db7527bfb6273c 4ad008815ae7efa7a3bbcabfc46d22e62f3206f3141d9d7ec8dbbb754f444a9d
GET /xdata/images/xphoto/263x210/45450064.jpeg?k=4d4ea22dc4828fd55a3889e90531c9841ddb2d9abf460c420cdd24f2a9b658d2&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Tue, 09 Apr 2024 06:57:37 GMT
content-language: 14855
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "a2e688bec1fbee393df26f05a03c77c9d1bb9e79"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: F9xNPRPE5JrDZcW6NC9qtPeE5WxY1ju-qRuSzoj6zo_OqngXbT3uSw==
age: 2187485
X-Firefox-Spdy: h2
|
|
| www.booking.com/c360/v1/track | 54.230.111.45 | 200 OK | 61 B |
URL POST HTTP/2www.booking.com/c360/v1/track IP54.230.111.45:443
CertificateIssuerDigiCert Inc Subject*.booking.com FingerprintC7:72:77:E2:B0:F2:0E:46:E1:DC:98:03:30:6C:05:F2:10:E1:02:36 ValidityWed, 01 May 2024 00:00:00 GMT - Tue, 25 Mar 2025 23:59:59 GMT
File typeASCII text, with no line terminators Hash3d09f7b58e008206252aa5bc36064974 1af6b59f769e816865ce5fae8e49b181a994d36d dd0d4cfa98f797a4b0c4785b5514aa5c0a1b7e4da87d0c6dbc0ff2a4f207560e
POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Booking-Pageview-Id: 0819669da254000b
X-Booking-AID: 304142
X-Booking-Session-Id: 6e4a4fe1a54696541edadb825a534c41
X-Booking-SiteType-Id: 1
X-Partner-Channel-Id: 3
X-Booking-Label: gen173nr-1FCAEoggI46AdIM1gEaKoBiAEBmAExuAEZyAEP2AEB6AEB-AECiAIBqAIDuAK6j9mxBsACAdICJDBlNjk5Y2MwLTQ5MGQtNDU1Yi1hZTE3LTc5MGI4NDBjYmQ3ZtgCBeACAQ
X-Booking-CSRF: +n82ZgAAAAA=JUfbTOiNZC7InCj9e83gYip7la-1Duk79OMyikM-suA7mVBBtWh4JWQje5uzeilNfXTOSA79k2JL9pHq-fRO01RqgOwKfkoVPuUVMt2whpm-BExzsUWnOGkh7yQzuzUDo6PjRlYaNv9Ff3r7cd5_-VeOPy8wbRb_uecmbxj8KNC4tqPYeGRM2YYV0LiXU7s-_FCozDCYhS5k16Fb
X-Booking-Language-Code: en-us
X-Booking-Client-Info: cCHObKdPHMfFdHMEKBOcaGPaAHFHDQIC|8,HWAJLGbbeLHAFPRFDEYScEUWBZEWaSddKNKNKWe|2,cCGaYSddOEGcHNAEQfKCePBeZTPSeUFRURURHe|1,cCGaYSddOEGcHNAEQfKCePBeZTPSeUFRURURHe|6
X-Booking-Info: 1865390,1932080,1932100,1932110,1939730,1943090,1946400,1959390,1970670,1975230,1976360,1977000,cCHObTULHfAFFQZcfHSdFaLbFFRURURHe|1,cCHObKdPHMfFdHMEKBOcaGPaAHFHDQIC|8,1970670|1,HWAJLGbbeLHAFPRFDEYScEUWBZEWaSddKNKNKWe|2,cCGaYSddOEGcHNAEQfKCePBeZTPSeUFRURURHe|1,cCGaYSddOEGcHNAEQfKCePBeZTPSeUFRURURHe|6,dDfPWPHDDZSOBJbKYfNIfPTDWe|1,YTTHbXeeVJWcFKJPFNJQVVEbMKXe|1,YTTHbXeeVJWcFKJPFNJQVVEbMKXe|5,aXTfOFJZMYeKTcABVYUfFdHMPVWCGTQJQJET|1,aXTfOFJZMYeKTcABVYUfFdHMPVWCGTQJQJET|2,aXTfMZMYeKTcNGEcfFdHMPVUPHET|1,TZUfONebEWAUFccRMVIZdRRT|1,aXTfMZMYeKTcNGEcfFdHMPVUPHET|3,NAFLeOeJHSCQQGPLUPHBeZdRNYYdTUWe|1,HVQeYFRURURYDEZREWQUQeFADDbddJKe|1,TWULdKJBYWKVDEZREHDWNHXdJTaJBaMEAKe|1,TWULdKJBYWKVDEZREHDWNHXdJTaJBaMEAKe|3,cCHObVZMYCMKdFEVJTNIKdFHaO|1,cCHObVZMYCMKdFEVJTNIKdFHaO|3,NAFLeOeJcQEcVOdWNeYZdfdbJae|1,NAFLeOeJabUZFQbMWKZETTeMcCcCcCC|1,NAFLeOeJVCMcQEcVOdWNeYZaTaTaET|1,NAFLeOeJcLMbFQbMWKZETTeMcCcCcCC|1,NAFLeOeJcLdYZGQDaRNFOSeDdKNKNKWe|1,NAFLeOeJaMSPdGFdICFHUeUdLOLOLMO|1,cCHObKdBdUHINPSXeHDALOLOLMO|1,cCHObKdBdUHINPSXeHDALOLOLMO|5,cCeIVOMPWAEeIcFARSYSbZDQSXbaTaTaET|3,cCeIVOOLfOECVVDFRURURHe|1,cCeIVOOLfOECVVDFRURURHe|2,cCHOGcbREDEZRdRERJBHAOeVATZdSGWFRURURHe|1,cCeIVOAPEbSccEZVACdKNKNKWe|1,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|1,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|1,cCHObdRdJJVdfUSCEcdNHMddKNKNKWe|1,cCHObdRdJJVdfUJGFDSeBcZFLMFRURURHe|1,cCHObdRdJJVdfUJGFDSeBcZFLMFRURURHe|3,cCeIVOTeJUNSMTfIMLebaTaTaET|1,cCeIVOTeJUNSMTaSdNdKNKNKWe|1,cCHOGAQHSMSXUDeLcffIVXBPKAFRURURHe|1,cCHOGAQHSMSXUDeLcffIVXBPKAFRURURHe|5,cCHOGAQPXafJCfSFeMZXZAQeRfXPRQNIKdFHaO|1,cCHObKdBZXZAVCMIQRMebfTIbRZaTaTaET|1,cCeIVOdJEVOAeZTbQNPcZRALOLOLMO|1,cCeIVOIYcYCcTUDQZaTaTaET|1,cCHObCBWaEdIPPSfDcXLYSfDccCcCcCC|2,NAFLeOeJcQEcVOdWNeYZdfdbJae|2,NAFLeOeJcQEcVOdWNeYZdfdbJae|4,NAFLeOeJabUZFQbMWKZETTeMcCcCcCC|2,NAFLeOeJabUZFQbMWKZETTeMcCcCcCC|4,NAFLeOeJVCMcQEcVOdWNeYZaTaTaET|2,NAFLeOeJVCMcQEcVOdWNeYZaTaTaET|4,NAFLeOeJcLMbFQbMWKZETTeMcCcCcCC|2,NAFLeOeJcLMbFQbMWKZETTeMcCcCcCC|4,NAFLeOeJcLdYZGQDaRNFOSeDdKNKNKWe|2,NAFLeOeJcLdYZGQDaRNFOSeDdKNKNKWe|4,NAFLeOeJaMSPdGFdICFHUeUdLOLOLMO|2,NAFLeOeJaMSPdGFdICFHUeUdLOLOLMO|4,cCHObVZMYCMKdFEVJTNIKdFHaO|4,cCHObVZMYCMKdFEVJTNIKdFHaO|6,cCHObKdPHMfFdHMEKBOcaGPaAHFHDQIC|9,cCeIVOOLfOECVVDFRURURHe|3,cCeIVOdJEVOAeZTbQNPcZRALOLOLMO|2,cCeIVOTeJUNSMTfIMLebaTaTaET|2,cCeIVOTeJUNSMTaSdNdKNKNKWe|2
X-Requested-With: XMLHttpRequest
Content-Length: 920
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBJSNum%2Bc1xLFn12m2f7ZHZ95PfhYVIBK10JlJfka14nlp4Y70WCBili2Fui6OOSsQrUyCz9Tmggwj0DuztcQajH4%2Bm5jddtlcvsexjAFfqrxqr9lOy7yPJKAXYOHIU0hUKG2Y7FCPEsmyQ7fblSlZJdTEgfORizrgg%3D; bkng_sso_auth=CAIQsOnuTRp4XCf2mTNX2vTaKOi4c2gJXy3BplRywvZtVCh4hXGp5h5po/N6Qux+6kUCprdfXKCUOnGOJCKYHHcQmnGvYbRr1GQd2W7Jn/T3WlKyR4wJOjW8Sbugx4dG7NoQ9nDUFZd1Yhlso8MBnxHNGtpJqGdaAcEEZ4PTweKT; pcm_consent=consentedAt%3D2024-05-04T14%3A35%3A43.072Z%26countryCode%3DNO%26expiresAt%3D2024-10-31T14%3A35%3A43.072Z%26implicit%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr%26consentId%3D5fe20cb7-3a0d-49bd-9e44-a4a576eaaa39%26analytical%3Dfalse%26marketing%3Dfalse; px_init=0; pcm_personalization_disabled=0; cors_js=1; bkng_sso_session=e30; bkng_sso_ses=eyJib29raW5nX2dsb2JhbCI6W3siYSI6MSwiaCI6Ik11TFNOayszcVZqUk1NeWZjUkwxdUdZMUVlYThZd0I5aWl1NmtuQlNzWGsifV19; OptanonConsent=implicitConsentCountry=GDPR&implicitConsentDate=1714833341097&isGpcEnabled=0&datestamp=Sat+May+04+2024+14%3A35%3A42+GMT%2B0000+(GMT)&version=202403.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=9b410d55-22ad-4115-aad7-534adfa48e9d&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&backfilled_at=1714833343460&backfilled_seed=1; BJS=-; 11_srd=%7B%22features%22%3A%5B%7B%22id%22%3A16%7D%5D%2C%22score%22%3A3%2C%22detected%22%3Afalse%7D; OptanonAlertBoxClosed=2024-05-04T14:35:42.666Z; bkng_sso_auth_1714833343=CAIQsOnuTRp4XCf2mTNX2vTaKOi4c2gJXy3BplRywvZtVCh4hXGp5h5po/N6Qux+6kUCprdfXKCUOnGOJCKYHHcQmnGvYbRr1GQd2W7Jn/T3WlKyR4wJOjW8Sbugx4dG7NoQ9nDUFZd1Yhlso8MBnxHNGtpJqGdaAcEEZ4PTweKT
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 39
server: nginx
date: Sat, 04 May 2024 14:35:43 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbXpFeYC4TUhBs3O9FHBAjC08MYRuwQKY%2Foihw%2Bei3a%2FHITN2z5AaigXJQ9GGC55i7NcZu4Xk4Z6zfcwOi5x4%2BlPtTDLIRRAEwlvpmJ9Ff6kZrQLW4e%2BxwgHXYgBEbBXMdX%2FF2Y%2FvZmPq0Rfd0R%2FSuEvEb%2BGkgTiL%2Be41F3d7obfg%3D; domain=.booking.com; path=/; expires=Thu, 03-May-2029 14:35:43 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=2592000; includeSubDomains
x-content-options: nosniff
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=a87e669f1b32022b&e=UmFuZG9tSVYkc2RlIyh9YaKT1Ar0s2gSEmakdtrUqsvzgwln7E4jPAZzC3TqQXVm3gn_ZDEIBik
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6Aelkh7ht04vWv2qXp--LBSYLqZlA-atxoyJdJqbniFkhEMcXuLaPg==
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/css/client.112a5244.css | 143.204.55.112 | 200 OK | 210 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/css/client.112a5244.css IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeASCII text, with very long lines (22137) Size210 kB (210200 bytes) Hasha517f2c7607eae9712bfc06a76520caf 045823e42260bc696e4760408834ba325393c7cd 01dae845ccbbe003bb692e96144aa61f7ce55a50138c6abb38d4bc7a1e921084
GET /psb/capla/static/css/client.112a5244.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
date: Fri, 03 May 2024 18:53:46 GMT
last-modified: Fri, 03 May 2024 17:44:31 GMT
etag: W/"a517f2c7607eae9712bfc06a76520caf"
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: Yfv1paZUGQ9quVsGG7FlTLzyJnJfitBu
server: AmazonS3
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8jEjPdrf06jhTyA8i2qxRzTAV36ba7Hjlhlq8YomvApGsq_fyGbuww==
age: 70914
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/city/600x600/688263.jpg?k=d035b168ba10814330f22dece7981262cefed72e9386ef74bcfe37a1e1fa1f58&o= | 143.204.55.112 | 200 OK | 79 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/city/600x600/688263.jpg?k=d035b168ba10814330f22dece7981262cefed72e9386ef74bcfe37a1e1fa1f58&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 600x600, components 3 Hash09b8284fe892d811ac46886012b16d3c 495ee36831c8243192c48d2f4c627c8fe3195c5e 5ba5cad731ab5b74bce1e8b2379ead5a826475ec9b7dce4062ae95aaf8e921c4
GET /xdata/images/city/600x600/688263.jpg?k=d035b168ba10814330f22dece7981262cefed72e9386ef74bcfe37a1e1fa1f58&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-language: 78610
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Fri, 05 Apr 2024 06:53:50 GMT
cache-control: max-age=2592000
etag: "7819aa7cdc579be243cd7c357112416c6d034c19"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: HnscFsx1IsJTFyCRoiKQlk9jNTZFNV5dWytOYn9tgmd8V1lJze06UQ==
age: 2533310
X-Firefox-Spdy: h2
|
|
| t-cf.bstatic.com/design-assets/assets/v3.109.0/illustrations-traveller/GlobeGeniusBadge.png | 143.204.55.112 | 200 OK | 20 kB |
URL GET HTTP/2t-cf.bstatic.com/design-assets/assets/v3.109.0/illustrations-traveller/GlobeGeniusBadge.png IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typePNG image data, 260 x 260, 8-bit colormap, non-interlaced Hash46a2de536918e78228ad39f6c9bced54 bd29519e8b65591aed18adc02a3ed6c8354000a8 d0e96c1281514494c432a9dcd3059ed824047abcf10ad228c6bb7ae7c7d58c0b
GET /design-assets/assets/v3.109.0/illustrations-traveller/GlobeGeniusBadge.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
content-length: 19613
last-modified: Tue, 05 Dec 2023 13:24:03 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 May 2024 05:23:36 GMT
etag: "46a2de536918e78228ad39f6c9bced54"
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: P5J0Cqgr_19U6AY_bvKxJgcuyrFfNJGErJtOxlT2G9KQitXFM5VIPA==
age: 83701
vary: Origin
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/xphoto/300x240/140040875.jpg?k=360748fdf13d9cec4beefd1d49cb4b2cd7693ab5f476c4d2d4ceb1759c824dac&o= | 143.204.55.112 | 200 OK | 16 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/xphoto/300x240/140040875.jpg?k=360748fdf13d9cec4beefd1d49cb4b2cd7693ab5f476c4d2d4ceb1759c824dac&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3 Hash623a63e6772986e519cb4845f07f6db2 477f940b110159a214c0954fa9a917e6c6b827de c3390d75de275a75064cb11f49dcb6933f543b8fa1edacb761dba79b1340659d
GET /xdata/images/xphoto/300x240/140040875.jpg?k=360748fdf13d9cec4beefd1d49cb4b2cd7693ab5f476c4d2d4ceb1759c824dac&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Thu, 02 May 2024 04:46:47 GMT
etag: "45d40c4e06c9b83da1b1e7ac00d888b91ea9061c"
content-language: 16378
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PW4ic3R8nps3j-QL8K63mafLYgS9t0cRTOUkXeDZcBgnA5ufi4zqrA==
age: 208136
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/js/remoteEntry.dc7f0d0c.client.js | 143.204.55.112 | 200 OK | 29 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/js/remoteEntry.dc7f0d0c.client.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (28698) Hash8cbedc7ac02f42116f4a0bb915e1ff60 c457b8e4bd48d891ecc66c10c2e704f66e1f9531 bd7bce156c17654fd3126520233b14365ba24d67ccebe21872d1ae7d7ed97e4b
GET /psb/capla/static/js/remoteEntry.dc7f0d0c.client.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 09:16:53 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: v4BFAUSNSyN.ot5hQOQ6zbN3hRgCHRTL
server: AmazonS3
content-encoding: gzip
date: Fri, 03 May 2024 20:17:09 GMT
etag: W/"8cbedc7ac02f42116f4a0bb915e1ff60"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dlmAmwrb0I7Z3tPyzzHURGw7RntZjj2xFtN6auIKSamBnc-8VpnKnA==
age: 65911
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/js/95a17449.d056e528.chunk.js | 143.204.55.112 | 200 OK | 46 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/js/95a17449.d056e528.chunk.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (45600) Hashe0423e07f7684ada9edfe12ee3b30945 4a20f1780b6d600a3f62349d070cc538f3d1fe38 c34146c0d4e732e4eef640598e27c57e5b90c40ad4bc4aad053099f1199d4ddf
GET /psb/capla/static/js/95a17449.d056e528.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 02 May 2024 10:42:51 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: C7i8YY_hQZjE8d1b0tMVWFJa4Bb3qOrC
server: AmazonS3
content-encoding: gzip
date: Fri, 03 May 2024 18:13:49 GMT
etag: W/"e0423e07f7684ada9edfe12ee3b30945"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7uIQ00Gsc4UY0MviUSPfL-0De2rUAxFn1owhj5jW2PJke6_qLWhB5w==
age: 73311
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/static/js/searchresults_slick_cloudfront_sd/528359eb9f21194adf8c26f81e07c6eb21a2cc89.js | 143.204.55.112 | 200 OK | 37 kB |
URL GET HTTP/2cf.bstatic.com/static/js/searchresults_slick_cloudfront_sd/528359eb9f21194adf8c26f81e07c6eb21a2cc89.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (36716), with no line terminators Hash83450205fdae53d35568c0b20ebd7823 b767e5626f5c78a36e8267adce0eb4770cc7af54 0916f90ffe5b1eb07948b9f85568c812d3ccbb8a05d3b39d10f4d59fcc9e168d
GET /static/js/searchresults_slick_cloudfront_sd/528359eb9f21194adf8c26f81e07c6eb21a2cc89.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Sat, 06 Apr 2024 19:51:28 GMT
last-modified: Tue, 04 Feb 2020 10:19:58 GMT
etag: W/"5e39454e-8f6c"
expires: Mon, 06 May 2024 19:51:28 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LnYqEpQrcZWTRXNtOhWi_L8E4iBMop63iMRPSRcoQGguYYAC6B50VA==
age: 2400253
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/hotel/square600/547233345.webp?k=28837d4d06d6fff027d44308a9abb7e7071d41ed4cf3ace0945f4c16e416c5bf&o= | 143.204.55.112 | 200 OK | 21 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/hotel/square600/547233345.webp?k=28837d4d06d6fff027d44308a9abb7e7071d41ed4cf3ace0945f4c16e416c5bf&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp Hashe9b0c64238aa72c2d9adf8313bd79f16 0ecd0ecdeb304821206b17ccbff2c82c0bdb5622 862ec622d407e0157cbfb2fc782b74011f9a9af6c6623701160a6b68ed8e38a7
GET /xdata/images/hotel/square600/547233345.webp?k=28837d4d06d6fff027d44308a9abb7e7071d41ed4cf3ace0945f4c16e416c5bf&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Tue, 16 Apr 2024 10:00:47 GMT
etag: "cfcc5967487314d852582ae7ac07c12419b1f294"
content-language: 21050
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: SiUuAeWOzIQU_x4bG8jOAk9CmZti-QOjpPR-wnvr9ivHcIofQooh-Q==
age: 1571696
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/js/remoteEntry.4a43181c.client.js | 143.204.55.112 | 200 OK | 21 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/js/remoteEntry.4a43181c.client.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (20847) Hashfd921a0379dad0654a6cf7dec636ab81 ef472bb1afc088aecb33bc191944751404f9f26d 524836b38a366f7ffa71f91d53d42731ff6c741bf19507e729373e4ae4918324
GET /psb/capla/static/js/remoteEntry.4a43181c.client.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 30 Apr 2024 14:15:33 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: oz2tuGF3vZND..7GvHB4nodCxRDgmK3b
server: AmazonS3
content-encoding: gzip
date: Fri, 03 May 2024 20:50:44 GMT
etag: W/"fd921a0379dad0654a6cf7dec636ab81"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 833VKnaaezIQa12_dDZLC69nP6igngivgLGTihakQV3-4lfL6SawpQ==
age: 63896
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/css/ace575b5.6e21335f.chunk.css | 143.204.55.112 | 200 OK | 1.5 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/css/ace575b5.6e21335f.chunk.css IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeASCII text, with very long lines (1508), with no line terminators Hash9ed4f1cbee5a495e7e9110a763709e68 d22e61f0299524033c14dc3e7f211af23f76fbe9 60da2bef1b51591e96b6bbb8225a35c9946a29439c59eb25c1fdd6346ce80326
GET /psb/capla/static/css/ace575b5.6e21335f.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
date: Fri, 03 May 2024 16:16:51 GMT
last-modified: Fri, 03 May 2024 14:37:54 GMT
etag: W/"185f48f4ee877a39d46a072e38e819e4"
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: DgsgDaDYN2J4kKuqgBnPInss6eGGxfX7
server: AmazonS3
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Ma14Ujb_R2_1gLMalsOdBXR-E6yFUuLCvbtgZPKr1LJyeyCJ2j6KdQ==
age: 80329
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/css/dc32f6b7.116c3af7.chunk.css | 143.204.55.112 | 200 OK | 3.9 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/css/dc32f6b7.116c3af7.chunk.css IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeASCII text, with very long lines (3851), with no line terminators Hashb0376f7880c430c3476dfec9ce76e32b 839dce3dfd6ebd34c8320cf7a8cc85a5d9990b31 856a451134791d9e15feb3b09bd55be1df2c99f3a2ec195a732008054215e5e7
GET /psb/capla/static/css/dc32f6b7.116c3af7.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 02 May 2024 05:19:31 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: EMf8vujzPlJkkdv1jG973gr_maTU0sTt
server: AmazonS3
content-encoding: gzip
date: Sat, 04 May 2024 02:17:08 GMT
etag: W/"396b5f57ede1b9aaabe3a03852662815"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3imklqrRNfYSkCnyFVKVppdoYCQ8sksZfbafja1UFwmDiRpA0OVQww==
age: 44312
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/xphoto/300x240/140040709.jpg?k=b28a1e6744acd29c957c1993a2b3ec06b606e83174a61afc02b4ba660cd4d8fc&o= | 143.204.55.112 | 200 OK | 17 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/xphoto/300x240/140040709.jpg?k=b28a1e6744acd29c957c1993a2b3ec06b606e83174a61afc02b4ba660cd4d8fc&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3 Hash3727e86b400f24d4ff985ce5a034c51b 4c23284e43bda0fde8acea89f869f559b0e24475 2de14162172715f457f3643eee033dca9dddbf91050f9f8eba7f9521e10a21b9
GET /xdata/images/xphoto/300x240/140040709.jpg?k=b28a1e6744acd29c957c1993a2b3ec06b606e83174a61afc02b4ba660cd4d8fc&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Fri, 19 Apr 2024 08:40:02 GMT
content-language: 16740
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "07b809dcc64ecf82240996fd68abc99098e644c6"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: oqxXch14Zhx_QUxUAV1EV3z8ixqeYaoTDiXY2NQbMOnRsqWN3nmLsA==
age: 1317341
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/css/7943e0ea.ae119b03.chunk.css | 143.204.55.112 | 200 OK | 3.3 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/css/7943e0ea.ae119b03.chunk.css IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeASCII text, with very long lines (3266), with no line terminators Hasha8e1d12d6e54353cf58bd48514489587 f7986db3c1b21d7319a4318114561902c4314113 59004fd6a06c30b30ea4bd3fb13707f350f1c0f613f4a0ec56c31d6b38c2f977
GET /psb/capla/static/css/7943e0ea.ae119b03.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
date: Fri, 03 May 2024 16:16:51 GMT
last-modified: Fri, 03 May 2024 14:37:54 GMT
etag: W/"617de67a102abb847ec2b664bccb9b79"
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: DTEpTjcILkUW8aJbyAiZGHa8DjH9LlqR
server: AmazonS3
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5SKfHgKGcN_TiiisDap0hITq0ShrC4w3T0nZktx2VefO1ZMw6kdkqw==
age: 80329
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| t-cf.bstatic.com/design-assets/assets/v3.81.0/fonts-brand/BookingExtraBold.woff | 143.204.55.112 | 200 OK | 41 kB |
URL GET HTTP/2t-cf.bstatic.com/design-assets/assets/v3.81.0/fonts-brand/BookingExtraBold.woff IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeWeb Open Font Format, TrueType, length 40640, version 2.0 Hash44bb644882b70aa9444e491e812d4a4b 65f9d0215301cecc36b1433e562b131f7d26ad24 96962b05c04ea77d8261a870a4cda2784fa137ec63350587eb46b75f40d126c2
GET /design-assets/assets/v3.81.0/fonts-brand/BookingExtraBold.woff HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://cf.bstatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: font/woff
content-length: 40640
last-modified: Tue, 25 Jul 2023 15:38:05 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 May 2024 04:48:27 GMT
etag: "44bb644882b70aa9444e491e812d4a4b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cYnUEC5flTuQNg06dqLSxiUzh-QThO6R0FRQU0HPwZGeUe2dL_5lbQ==
age: 35987
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/js/b9a82cb8.189a666d.chunk.js | 143.204.55.112 | 200 OK | 59 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/js/b9a82cb8.189a666d.chunk.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (58670) Hashe1a5cb8d4cf3505d3f1c7c4551917e05 ab9575d4cb7f036fd8bc7d0ed4f6c0feff6d3a45 cf9c492057cf25d1f55a3d72b896dfcce73215bb79350b5b1cd4d9edc1f5d488
GET /psb/capla/static/js/b9a82cb8.189a666d.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 02 May 2024 14:20:56 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: _PbEWaLxi.P6KISKCIVvTIOJyGhJArrO
server: AmazonS3
content-encoding: gzip
date: Sat, 04 May 2024 00:32:26 GMT
etag: W/"e1a5cb8d4cf3505d3f1c7c4551917e05"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: auLyQxd0gIfHQlZJ0ucEKlRYdk81sJrKyKge3nc3sB7iGqmAreVvrw==
age: 50596
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/xphoto/300x240/140040883.jpg?k=c9bd02175da9d1c925eb2749b595edca5479664b07e3a8c67c4230aaca2ba126&o= | 143.204.55.112 | 200 OK | 15 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/xphoto/300x240/140040883.jpg?k=c9bd02175da9d1c925eb2749b595edca5479664b07e3a8c67c4230aaca2ba126&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3 Hashf898d04969b6aadd15756e5c86cd5abf c693357bd9c641531723a801657516c107535098 b91d2fa767b3f9dbba7069e65d0066aaab42fd67916b3ea94b5ef4e6194768aa
GET /xdata/images/xphoto/300x240/140040883.jpg?k=c9bd02175da9d1c925eb2749b595edca5479664b07e3a8c67c4230aaca2ba126&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Sun, 21 Apr 2024 07:21:27 GMT
content-language: 15024
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "e6123c73d607304f2fc0402808c5f9b760280e97"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: X9k6-gK0obnqjGLfDBvdxkW3QhAwip6a9eIKbsaPQHmjDUvI9kkE3A==
age: 1149256
X-Firefox-Spdy: h2
|
|
| r-xx.bstatic.com/xdata/images/city/170x136/740935.jpg?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o= | 143.204.55.112 | 200 OK | 5.5 kB |
URL GET HTTP/2r-xx.bstatic.com/xdata/images/city/170x136/740935.jpg?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3 Hashafd71fd06632ac473b4c251dffc12f63 e9d7fc8cf381fa446a6c32178db4de8c5eaf7262 c9a8fd71cb76919e8b749e4b4055810bb6f6ab84f1171d06bdd70b02893c95cb
GET /xdata/images/city/170x136/740935.jpg?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
content-length: 5506
server: nginx
date: Sun, 28 Apr 2024 14:04:14 GMT
content-language: 5506
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "f5b49c8fdf8a6456146164dfee48119609520783"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1CvUVeovw0B18FeoC1M18PdSHzCypFOV_vFjnmxoYszSJ9KpFot-eg==
age: 520289
X-Firefox-Spdy: h2
|
|
| q-xx.bstatic.com/xdata/images/city/170x136/930853.jpg?k=85cc355550cdcf1ca77d1a7a635f4294e09dee696051866597a63fd7edd7af5a&o= | 143.204.55.112 | 200 OK | 7.0 kB |
URL GET HTTP/2q-xx.bstatic.com/xdata/images/city/170x136/930853.jpg?k=85cc355550cdcf1ca77d1a7a635f4294e09dee696051866597a63fd7edd7af5a&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3 Hasha74c25791bb6960282adb0b0bfac4614 5d6cb72e147c07299ae8aa66d6b7d8c8f1e1414b a8d86240545c19cd5081d6a4dcd1c8ab8138fd88154bd9c281914216444ead84
GET /xdata/images/city/170x136/930853.jpg?k=85cc355550cdcf1ca77d1a7a635f4294e09dee696051866597a63fd7edd7af5a&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
content-length: 7004
server: nginx
date: Sun, 07 Apr 2024 11:24:13 GMT
etag: "7b2c48bc6b9bd8a3d2a38e8a2caf3e3541c6e001"
content-language: 7004
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: WWZQDAbsHF7SIWtPV8mi6sxb9ZVONRayjjKNfHEySDq0CS7xJ5tWKg==
age: 2344290
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/hotel/square600/279333721.webp?k=55905f2b46817050a4838f5dbc34741c7dded636d9642a0c75f37ebd11ccab5c&o= | 143.204.55.112 | 200 OK | 55 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/hotel/square600/279333721.webp?k=55905f2b46817050a4838f5dbc34741c7dded636d9642a0c75f37ebd11ccab5c&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp Hashc54e9379a3be33e13c8263c1cdbda53b 473670461806883e9f321ac6e8db9a86b9c3ff4e 837d4054ffdd6bbde4960c5ba7b98246ec5894342e3f021aefb5f2eeb448fbaf
GET /xdata/images/hotel/square600/279333721.webp?k=55905f2b46817050a4838f5dbc34741c7dded636d9642a0c75f37ebd11ccab5c&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Sat, 27 Apr 2024 07:03:13 GMT
content-language: 54878
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "1105d25063f13ec3386a2ed7bb37769d00eb0544"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Pm-U4On3O6mUqhcgvI7ZFjiUJGLlVNaU1KKo1MtgppA1p1SyPrFDUg==
age: 631950
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/hotel/square600/192276799.webp?k=6f569e47092ed9123757fe13f7411da9df7d49453ea8ec097b6b6eb789c4c026&o= | 143.204.55.112 | 200 OK | 73 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/hotel/square600/192276799.webp?k=6f569e47092ed9123757fe13f7411da9df7d49453ea8ec097b6b6eb789c4c026&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp Hashbbcb4789762be75c0ee6d9e0d98c6cc7 75f7a51b2eb9f1ca98c6b182d7e64cee2046789e b5b1d2f72619610b3be422f1e586cc579a100333d3e2ebb11e9d3c3c144b82fb
GET /xdata/images/hotel/square600/192276799.webp?k=6f569e47092ed9123757fe13f7411da9df7d49453ea8ec097b6b6eb789c4c026&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Sun, 07 Apr 2024 07:50:05 GMT
etag: "0ef0ec04d87c971f32ea12b1151c39852b5c30c6"
content-language: 73318
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3nckTZws-Az6WNBiVJxkZ6Af0GzRL2X9HDeZTsiVkaJ8DYtDgHw1cg==
age: 2357138
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/hotel/square600/29466558.webp?k=7f9cf4736f69b30c20fa7a751bb8711fa195bc9ff6092d5412d52daf6cada17f&o= | 143.204.55.112 | 200 OK | 60 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/hotel/square600/29466558.webp?k=7f9cf4736f69b30c20fa7a751bb8711fa195bc9ff6092d5412d52daf6cada17f&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp Hash8a0e03faa23462b386bc0ca9a51b7508 012371cd9cb4fd5f010558e8ad0675be0ba955ec 424b13bd058e2f6e264a16b284ffea05e80c328d9dfb9c5a7c46484131e86452
GET /xdata/images/hotel/square600/29466558.webp?k=7f9cf4736f69b30c20fa7a751bb8711fa195bc9ff6092d5412d52daf6cada17f&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Wed, 01 May 2024 15:31:08 GMT
content-language: 59920
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "11977a463a83f55e9c39cf2a5da3d8a324f0d4db"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: GwxJgEQf2azVUafHx5CGCw3MePuU6O2VRl4-JnguZ_uuf8NhUR3l9A==
age: 255875
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/xphoto/300x240/140051608.jpg?k=4eb78e68754c67426a33c4114cdcc88bb044514b740446dc03b05b26dc070292&o= | 143.204.55.112 | 200 OK | 16 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/xphoto/300x240/140051608.jpg?k=4eb78e68754c67426a33c4114cdcc88bb044514b740446dc03b05b26dc070292&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3 Hashee689fbe6df8503ad2066311cbcb09de c947ceceaa7ca1398e4dbdfa66c0cc713ce366ef 4a4bac89a19c3fba841472a93eeb4e3bc5b8f61fc5a7da6a0eca7e0bd0591a67
GET /xdata/images/xphoto/300x240/140051608.jpg?k=4eb78e68754c67426a33c4114cdcc88bb044514b740446dc03b05b26dc070292&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Wed, 17 Apr 2024 11:06:00 GMT
content-language: 15996
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "a6187e46f7c39ca66146950ace5bd571c9e8dcad"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zcSyhxoJ6r569FG-P6BXtzDkl-00nRts9m0fPEJkOw5TkxsVkgeCaw==
age: 1481383
X-Firefox-Spdy: h2
|
|
| accounts.google.com/gsi/log?client_id=901905703382-m88jn1h9ll89odkt6t5muc6h7ep83rlh.apps.googleusercontent.com&as=PmWpjNd2ymv%2FvQMfBkAk%2Bw&event=onetap.policy.uiEvents | 64.233.162.84 | 200 OK | 0 B |
URL POST HTTP/3accounts.google.com/gsi/log?client_id=901905703382-m88jn1h9ll89odkt6t5muc6h7ep83rlh.apps.googleusercontent.com&as=PmWpjNd2ymv%2FvQMfBkAk%2Bw&event=onetap.policy.uiEvents IP64.233.162.84:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /gsi/log?client_id=901905703382-m88jn1h9ll89odkt6t5muc6h7ep83rlh.apps.googleusercontent.com&as=PmWpjNd2ymv%2FvQMfBkAk%2Bw&event=onetap.policy.uiEvents HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 0
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-allow-origin: https://www.booking.com
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 04 May 2024 14:35:44 GMT
content-security-policy: script-src 'nonce-tiigboyfNU_3H7pTWT5cKA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| | 143.204.55.18 | 302 Found | 600 kB |
URL User Request GET HTTP/2IP143.204.55.18:443
CertificateIssuerDigiCert Inc Subject*.booking.com FingerprintC7:72:77:E2:B0:F2:0E:46:E1:DC:98:03:30:6C:05:F2:10:E1:02:36 ValidityWed, 01 May 2024 00:00:00 GMT - Tue, 25 Mar 2025 23:59:59 GMT
Size600 kB (600441 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: secure.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
location: https://www.booking.com
server: nginx
date: Sat, 04 May 2024 14:35:38 GMT
nel: {"report_to":"default","max_age":604800}
report-to: {"group":"default","endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":604800}
strict-transport-security: max-age=2592000; includeSubDomains
x-recruiting: Like HTTP headers? Come write ours: https://careers.booking.com
x-xss-protection: 1; mode=block
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbXpFeYC4TUhAfCgx9gXBg4eyJKfuuYfkKNO6ASObvYEssPCO3DIzayugpqw3fu%2BWAInbww54R%2BdCxWHm09nJYZn7j9ykQ1c19q5W20Op2Pmf03QSZ3Uq3gcYrkwEKxKVK3O9HtYfHZpLnEGUKd9j2T7%2Btv0%2B7SDHu; domain=.booking.com; path=/; expires=Thu, 03-May-2029 14:35:38 GMT; Secure; HTTPOnly; SameSite=None
bkng_sso_auth=CAIQsOnuTRpmvKlZYXYJUdjpVbdMvQwNjHrvsml6L4VkiK7tISGV++DO0XXfwqYqcvGv6N5B0jJ+At6IQOX9CzDigoeY7Dt/FQmXvzsPX5q9kGIjFfD+w/XIrSbe9Qmi3qompOLVKk1Ncna0zA0n; Domain=.booking.com; Path=/; Expires=Mon, 04 May 2026 14:35:38 GMT; HttpOnly; Secure; SameSite=Lax
pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3D047e10e5-e3e9-42f5-8d41-1b74123b97ba%26consentedAt%3D2024-05-04T14%3A35%3A38.319Z%26expiresAt%3D2024-10-31T14%3A35%3A38.319Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; Domain=.booking.com; Path=/; Expires=Sun, 04 May 2025 14:35:38 GMT; HttpOnly; Secure; SameSite=Lax
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dWSpt8EQ1JI3xqv0RbJeZ0-K9dSQ0yH1iIna-bnyDnKV6NpxgSGmyg==
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/hotel/square600/154511781.webp?k=96a999df5a226a5d946bdaf98cc1ef8050a0efc6d365924580983dfddc253f78&o= | 143.204.55.112 | 200 OK | 36 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/hotel/square600/154511781.webp?k=96a999df5a226a5d946bdaf98cc1ef8050a0efc6d365924580983dfddc253f78&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp Hash6808e58114882058edbcd868ae91b9e6 80c77ba1b2e49e6dc9231ead998b4d0c1f981abe 7e42eab1742ebfd26e43b5954e721b0bc9c6a2fd1421269e767a7b5d63785fc0
GET /xdata/images/hotel/square600/154511781.webp?k=96a999df5a226a5d946bdaf98cc1ef8050a0efc6d365924580983dfddc253f78&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Wed, 17 Apr 2024 08:16:30 GMT
content-language: 36344
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "43bd47345ff82cc44d62259bdd2a8158663a0b2a"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Ot8_aYeR9emcP9PYApWYUa-Q6CtrbOHU-pewXpSe4Lauc_mL_NSEbw==
age: 1491553
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/xphoto/300x240/140040781.jpg?k=f6efcb7d51597b0a81562b6b256b39a11c0b363a716be50451c05e7fe8be7f3a&o= | 143.204.55.112 | 200 OK | 16 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/xphoto/300x240/140040781.jpg?k=f6efcb7d51597b0a81562b6b256b39a11c0b363a716be50451c05e7fe8be7f3a&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3 Hash383fe55491b9ad7706023538fe5dd4ad 89ce5158e01921875de0961cffc25f7b27fa7051 861d2ab99ec88243c3ded173b361db69e560409762a6ff063b6e93452c693acf
GET /xdata/images/xphoto/300x240/140040781.jpg?k=f6efcb7d51597b0a81562b6b256b39a11c0b363a716be50451c05e7fe8be7f3a&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Fri, 19 Apr 2024 08:40:02 GMT
content-language: 15567
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "f87a1497e437dc2a8d5bea469c286b8d0626bc97"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: adRvxnJPZwQf71UJbGFgaeBzNR0o4SKJGJ-sMURy0Ja-k57fUG9ckQ==
age: 1317341
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/js/remoteEntry.ee30cd4f.client.js | 143.204.55.112 | 200 OK | 19 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/js/remoteEntry.ee30cd4f.client.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (18747) Hash5d087daf3bcf8b08a324dd2387688203 4670c44257d81125fe146b2f8aa8825e1b3909a2 cad67f8ebff059bcd5cef9814efb0630165f85d65f1f5944103e80b04c5ecb06
GET /psb/capla/static/js/remoteEntry.ee30cd4f.client.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 29 Apr 2024 13:56:05 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: rGdibZEJ63ujU8riHiVYn3y4.Bi1ddFl
server: AmazonS3
content-encoding: gzip
date: Sat, 04 May 2024 04:41:35 GMT
etag: W/"5d087daf3bcf8b08a324dd2387688203"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: nI0_SQdj04Y27jsKOg1Biw-T9zkTcAektCQAceM9LPJG1pp-7qSxZA==
age: 35645
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/js/ebf8c3e3.76f02cb7.chunk.js | 143.204.55.112 | 200 OK | 27 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/js/ebf8c3e3.76f02cb7.chunk.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (26910) Hashb40ac008d34d1190df747ea41ab3de43 58dec6abefef6db3e473911bce814eb249ade9d6 6aa73c4f2dcb234bb1123a3108fd1a2051eba9aa37506e361eb4dba2b8595445
GET /psb/capla/static/js/ebf8c3e3.76f02cb7.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 02 May 2024 12:39:35 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: TLIhcyDJStyJK0ItXrgIIBn__6w3Jt5f
server: AmazonS3
content-encoding: gzip
date: Fri, 03 May 2024 18:19:51 GMT
etag: W/"b40ac008d34d1190df747ea41ab3de43"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: nzVbnvs1lEKcrttqZhYS6vr8QJJJ91Jy7nqYKeLlKtexKB1m_lc4hA==
age: 72949
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/static/css/print/0cc4ce4b7108d42a9f293fc9b654f749d84ba4eb.css | 143.204.55.112 | 200 OK | 5.0 kB |
URL GET HTTP/2cf.bstatic.com/static/css/print/0cc4ce4b7108d42a9f293fc9b654f749d84ba4eb.css IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeASCII text, with very long lines (5040), with no line terminators Hash689bfb4a6655c31e51465ba2a8562a49 a567c39c5556aa5b892c9e4ec64c89f4bf3445a3 d818703914dd98ca34912916271657909683dc9d83d91aaf90528918b428dc6b
GET /static/css/print/0cc4ce4b7108d42a9f293fc9b654f749d84ba4eb.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Wed, 17 Apr 2024 23:59:31 GMT
last-modified: Wed, 10 Apr 2019 11:21:34 GMT
expires: Fri, 17 May 2024 23:59:31 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: W/"5cadd1be-13ac"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: yr0695TITHZjlldMEnV3Y2qqqhml3CesDchJE43B8f2ogWvD7ipzdQ==
age: 1434970
X-Firefox-Spdy: h2
|
|
| www.booking.com/logo?ver=1&sid=6e4a4fe1a54696541edadb825a534c41&t=17148333381 | 54.230.111.45 | 200 OK | 12 B |
URL GET HTTP/2www.booking.com/logo?ver=1&sid=6e4a4fe1a54696541edadb825a534c41&t=17148333381 IP54.230.111.45:443
CertificateIssuerDigiCert Inc Subject*.booking.com FingerprintC7:72:77:E2:B0:F2:0E:46:E1:DC:98:03:30:6C:05:F2:10:E1:02:36 ValidityWed, 01 May 2024 00:00:00 GMT - Tue, 25 Mar 2025 23:59:59 GMT
File typeGIF image data, version 89a, 1 x 1 Hash45e0d10a08ad25f44cb9c2b6e732858c 8e47bb27521f644194d8d6ed92c22513a68715d9 4c55d6d27f3d4503e15ce98f4e4cccc15a49ecc0445a3a0996578437f7ab701f
GET /logo?ver=1&sid=6e4a4fe1a54696541edadb825a534c41&t=17148333381 HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPedXipW9P%2Bn9MYWYmjSTOk7tlRnW%2BYurihW6uF4NqE0Zj1oDgS60ARakX9Ktpe7w%2BCQf%2BRgETSsisK%2BsydahBVbfBmNPR4P93MujHAlvxWC4XeJDhSnxzyRsfx72ZN%2BHcNf26Ggy7zJxo83DyxVVBDnv; bkng_sso_auth=CAIQsOnuTRpmvKlZYXYJUdjpVbdMvQwNjHrvsml6L4VkiK7tISGV++DO0XXfwqYqcvGv6N5B0jJ+At6IQOX9CzDigoeY7Dt/FQmXvzsPX5q9kGIjFfD+w/XIrSbe9Qmi3qompOLVKk1Ncna0zA0n; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3D047e10e5-e3e9-42f5-8d41-1b74123b97ba%26consentedAt%3D2024-05-04T14%3A35%3A38.319Z%26expiresAt%3D2024-10-31T14%3A35%3A38.319Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; px_init=0; pcm_personalization_disabled=0; cors_js=1; bkng_sso_session=e30; bkng_sso_ses=e30; OptanonConsent=implicitConsentCountry=GDPR&implicitConsentDate=1714833341097
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/gif
content-length: 35
server: nginx
date: Sat, 04 May 2024 14:35:41 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
set-cookie: BJS=-; domain=booking.com; expires=Sun, 05-May-2024 14:35:41 GMT; Secure; HTTPOnly
strict-transport-security: max-age=2592000; includeSubDomains
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=ddf7669e9caf000d&e=UmFuZG9tSVYkc2RlIyh9YbpBYTW1tHKzgq_DFpLDPVmuCsDuMYsCZDLxXEJwXXp5
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8D4lDXCP-3ehIj3X1BhNcd_F67OE4O3H3APl4KsO7j-xZ_HxuGzAfQ==
X-Firefox-Spdy: h2
|
|
| q-xx.bstatic.com/xdata/images/xphoto/263x210/45450097.jpeg?k=eac0f917a53dc395bd379fef8c191e7d5e37012b68e60232e4f6bba2a2901b7a&o= | 143.204.55.112 | 200 OK | 13 kB |
URL GET HTTP/2q-xx.bstatic.com/xdata/images/xphoto/263x210/45450097.jpeg?k=eac0f917a53dc395bd379fef8c191e7d5e37012b68e60232e4f6bba2a2901b7a&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3 Hash04512024ddb6c46c1f3ac299772afb1a ff8a0c294780539fe8f873dad046bb227a4bf4db 75db3132568d756598728736eb981bfb3c05f7337c54ad5113ce1a3c8f3791cd
GET /xdata/images/xphoto/263x210/45450097.jpeg?k=eac0f917a53dc395bd379fef8c191e7d5e37012b68e60232e4f6bba2a2901b7a&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Wed, 01 May 2024 15:31:08 GMT
content-language: 12638
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "dc84adde45484260042e63cb655e57653dd37ff8"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: YdNxj-LdFUotsVshUjn6uaAn_m65QAmsgq29WAoCNT9tlOVCCubhDw==
age: 255874
X-Firefox-Spdy: h2
|
|
| q-xx.bstatic.com/xdata/images/city/170x136/967857.jpg?k=5733a245dbb186ec0986c0a5c533acc704650d51cdfed7410cf0bcef375e5bc4&o= | 143.204.55.112 | 200 OK | 5.9 kB |
URL GET HTTP/2q-xx.bstatic.com/xdata/images/city/170x136/967857.jpg?k=5733a245dbb186ec0986c0a5c533acc704650d51cdfed7410cf0bcef375e5bc4&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3 Hash974a5478069b3972c9d477165b0704bc 66e215dcdd7180200eb06c2e430c44946a10b6d0 b335582be21d666553adacdaa635dbeb6c92e93f0e8172fa7848ceb60008b1cf
GET /xdata/images/city/170x136/967857.jpg?k=5733a245dbb186ec0986c0a5c533acc704650d51cdfed7410cf0bcef375e5bc4&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
content-length: 5863
server: nginx
date: Tue, 16 Apr 2024 10:12:56 GMT
content-language: 5863
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "8fb9b3e2a7f5dccf0a6d0a7392f409b135d2f3af"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: eQ98imD6YwjyccthPn4bR59wY1wgd0ol8YAHRP8g3w_FZfLjKefGHQ==
age: 1570967
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/xphoto/300x240/140040711.jpg?k=59e2afc14d5449ca3c17740d2bbcd62fdf7c0c6a3fe2bf05f18dca2695832202&o= | 143.204.55.112 | 200 OK | 14 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/xphoto/300x240/140040711.jpg?k=59e2afc14d5449ca3c17740d2bbcd62fdf7c0c6a3fe2bf05f18dca2695832202&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3 Hashd3455e57414004a11c2a3bc78913c965 b29f8a2e2529d276ce916f7f5790b4a8a639afe3 30a592f112bfedb781d8f40cd2f552c4a3730a88afa3d9cb902a110ffd296d43
GET /xdata/images/xphoto/300x240/140040711.jpg?k=59e2afc14d5449ca3c17740d2bbcd62fdf7c0c6a3fe2bf05f18dca2695832202&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Fri, 19 Apr 2024 20:00:41 GMT
content-language: 13595
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "cf130126b3576e2327b25c901e71dfec69ca8b84"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: k_ygqval6ohi_LxfMosgFi8-MTZrI9hfQrNV_gp1sX97Iszkc6TFBg==
age: 1276502
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/js/18cad957.1c838d82.chunk.js | 143.204.55.112 | 200 OK | 40 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/js/18cad957.1c838d82.chunk.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (39653) Hash805dbc0d349717a33115773cba70733b ab9bfa3884fab9f385c7ac0a835f8d013c559fd2 d1ea085246bef4c619d47c85715e62dfe06e50d86ad801b754fceb7ab3cef922
Analyzer | Verdict | Alert | YARAhub by abuse.ch | malware | Detects SocGholish obfuscated variant first observed in July 2022 |
GET /psb/capla/static/js/18cad957.1c838d82.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 01 May 2024 05:21:21 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: oReYFnt4b4Y5jJAOLY8WKQhTwtKQDG_U
server: AmazonS3
content-encoding: gzip
date: Sat, 04 May 2024 08:43:13 GMT
etag: W/"805dbc0d349717a33115773cba70733b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: WIsTAj0TH4StnIKWSVWjOJ-Z2BK_xJA3NMJ6h04hSbW6pv0e-QdXwA==
age: 21147
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
|
|
| r-xx.bstatic.com/xdata/images/xphoto/500x500/184698944.png?k=6bb1bf3c13db4a7ba3c22a2d1f1051f793c525a78104703b4dec3eb12101f545&o= | 143.204.55.112 | 200 OK | 39 kB |
URL GET HTTP/2r-xx.bstatic.com/xdata/images/xphoto/500x500/184698944.png?k=6bb1bf3c13db4a7ba3c22a2d1f1051f793c525a78104703b4dec3eb12101f545&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typePNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced Hash417ce707e1bfd94ef710e908c06d973e a2b3d1c72c9cc57f52dfbcc528649e73d43c5c2f 1022f1662f9f02ac55dc95402144f2ae71d6f0a14c19b3e3041b68b529946cfc
GET /xdata/images/xphoto/500x500/184698944.png?k=6bb1bf3c13db4a7ba3c22a2d1f1051f793c525a78104703b4dec3eb12101f545&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
server: nginx
date: Sat, 27 Apr 2024 07:03:11 GMT
content-language: 39328
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "faf4c565c493f3bc0e80e65cd746519a6611b1b3"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Hs3vqpZHQoEzQDUQFlB-DCH07nirWQ22OWcDbyj_CboRyeqgXFt5-Q==
age: 631949
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/js/8067d7e4.df3f7e9d.chunk.js | 143.204.55.112 | 200 OK | 40 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/js/8067d7e4.df3f7e9d.chunk.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (39657) Hash505cd45070820bb026df4e15e18c2241 0101ffe4528b83255892ec9f6e9c9b221f32c51e 20abd8d6723aa9d78e68c7e1e8b5b000abeb548414e2b26e73a993da0a845f76
Analyzer | Verdict | Alert | YARAhub by abuse.ch | malware | Detects SocGholish obfuscated variant first observed in July 2022 |
GET /psb/capla/static/js/8067d7e4.df3f7e9d.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 01 May 2024 05:21:21 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: BCYMDj003yXxUmaLUfowszlsSSQV_y4B
server: AmazonS3
content-encoding: gzip
date: Fri, 03 May 2024 22:38:33 GMT
etag: W/"505cd45070820bb026df4e15e18c2241"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: u5r-fO2-anwa0Eg8TkUz9ykpey4oEhQyfgEazDxRvkFB9R_CH-EE7A==
age: 57427
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/css/3c29a897.3b72a564.chunk.css | 143.204.55.112 | 200 OK | 314 B |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/css/3c29a897.3b72a564.chunk.css IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeASCII text, with very long lines (315), with no line terminators Hashcfbc16f31663045311c8855663b8630f a266353783b80d173fa014bc72d8b19fdb9c0a13 eb0cb03b457145141545a702ba4115f318d0f414b1fae14f6e92f368e900d05a
GET /psb/capla/static/css/3c29a897.3b72a564.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
content-length: 314
date: Fri, 03 May 2024 16:16:53 GMT
last-modified: Thu, 02 May 2024 05:18:30 GMT
etag: "947cebda090d0c44bcbed31c2248f147"
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: Y8kjjObPka72xrgV2wdvbAGvZTvL7vO.
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: YGy-Ubq9653Dndq0ZiYwMZS9-lV9IIc955WuAu69JZR-bPsIZAf5zg==
age: 80328
vary: Origin
X-Firefox-Spdy: h2
|
|
| geolocation.onetrust.com/cookieconsentpub/v1/geo/location | 172.64.155.119 | 200 OK | 72 B |
URL GET HTTP/2geolocation.onetrust.com/cookieconsentpub/v1/geo/location IP172.64.155.119:443
CertificateIssuerCloudflare, Inc. Subjectonetrust.com Fingerprint9B:BC:B4:A8:C7:6C:6C:02:0F:FD:9F:06:F2:67:FB:DD:A1:E0:3F:47 ValidityMon, 13 Nov 2023 00:00:00 GMT - Tue, 12 Nov 2024 23:59:59 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hashadf75b99dbbf416c627dfc5de30f9ad1 699f3845f7dfb3fa9968c2117b44c3f3eb728fff a0e4a8f457272bd17d07ae2e1e09731df6cc6fdc3ea9e32e713ef4a8a012fc27
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 14:35:41 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87e937feadd0568f-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/css/782ad794.58dde845.chunk.css | 143.204.55.112 | 200 OK | 1.7 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/css/782ad794.58dde845.chunk.css IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeASCII text, with very long lines (1722), with no line terminators Hash8cd917f28870ff610adbea1ce0cb17dc 78b949a0d21f77a74bf13502fdb98aaf2255c279 6795a79fad7bc068d055f9f16391cdbdc2ee8cc8337ec3d96a5f4b3d3ed87380
GET /psb/capla/static/css/782ad794.58dde845.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
date: Fri, 03 May 2024 16:16:51 GMT
last-modified: Fri, 03 May 2024 14:37:54 GMT
etag: W/"7e30cfc466c3602db83771e681063057"
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: hZd9y0kQ8t6FnIpdSe.igwsCxeXRWC3K
server: AmazonS3
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: YPVqqKPAb0wMSD6RYdpcPLmIMxmEAewnSkamGB1pFnDbULbhSuQWKw==
age: 80329
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/hotel/square600/87428762.webp?k=de5db8fe94cbfe08d3bf16d3c86def035fd73b43ee497cffe27b03363764e0e2&o= | 143.204.55.112 | 200 OK | 51 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/hotel/square600/87428762.webp?k=de5db8fe94cbfe08d3bf16d3c86def035fd73b43ee497cffe27b03363764e0e2&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp Hashb78a0ad601d2cc6e533af5437a41fb00 23b3fa91abc6e4ef7013a96dee0ada79733d17f0 1c730f4c5d2b6a5e5f7a5f354a807fa4fd2c013cec9695bc9a92e5547cb8a75a
GET /xdata/images/hotel/square600/87428762.webp?k=de5db8fe94cbfe08d3bf16d3c86def035fd73b43ee497cffe27b03363764e0e2&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Mon, 15 Apr 2024 14:55:57 GMT
etag: "a9bafcb9600caeddef6df26171d5f5713b83b75a"
content-language: 50654
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: FQN2C2nQp5clH-4hsiV9Yv5VSXfghQnP4Kdwawpa_CTeqTCACsJIOg==
age: 1640386
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/css/f141039c.5350be6c.chunk.css | 143.204.55.112 | 200 OK | 854 B |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/css/f141039c.5350be6c.chunk.css IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeASCII text, with very long lines (856), with no line terminators Hash5b578da16856448f673408c7e9b9ef7a b9853aa8fe4d47ebacf960e0a11f1a12b3cd1819 17bf761c893e42382dbb8d229e52241046a846ffc3df4bf38f1978b9f350b2e4
GET /psb/capla/static/css/f141039c.5350be6c.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
content-length: 854
date: Fri, 03 May 2024 16:51:00 GMT
last-modified: Fri, 03 May 2024 14:37:54 GMT
etag: "8b182fad2394cb80cf2f544a46641ee2"
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: Rzbrour9XUcoqdTL_A0oLoYLRH765oGS
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dak1Y_NxVhSejFUQGCIZh7TxiyYlScbLDwwzZh7wZfQyI7iT0XDUVw==
age: 78280
vary: Origin
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/css/d9560671.f1038aa8.chunk.css | 143.204.55.112 | 200 OK | 2.7 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/css/d9560671.f1038aa8.chunk.css IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeASCII text, with very long lines (2692), with no line terminators Hashe44c494ac4546732a5bd7660a0452d1d 1c0d8fafc76238f649b24f58080fc0164794aa0a 3104149ccfd0f302a8f68d0b5aafe3393fdb4112bc2dc5901ad036d0c08a4022
GET /psb/capla/static/css/d9560671.f1038aa8.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
date: Fri, 03 May 2024 16:51:00 GMT
last-modified: Fri, 03 May 2024 14:37:54 GMT
etag: W/"2c45bddf0ae89e2238b4f79dfc745a8c"
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: Hv3sz00YjwshhXXTDhYmGrq5zCR_9Wcp
server: AmazonS3
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: okDi-8vEFK4e1HkwUGVYSrCzShMkLZj8UdoWkoQPm0JvBMjDT7RFnQ==
age: 78280
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/js/0d919837.0a98943d.chunk.js | 143.204.55.112 | 200 OK | 562 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/js/0d919837.0a98943d.chunk.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65455) Size562 kB (562256 bytes) Hashf632ab0bf90a21e568fbf9cc2d9b9920 86a0342bdb71fa3e95aa38ec4582730da49e06d1 ea5c4d2e51ffaa80fb17563b97a6c79923b04442f335eaac798a562e33c53dd3
GET /psb/capla/static/js/0d919837.0a98943d.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 03 May 2024 09:17:51 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: Kq1p20vDN4sEJshrZXuJnaA.OErPZtq6
server: AmazonS3
content-encoding: br
date: Sat, 04 May 2024 09:24:26 GMT
etag: W/"f632ab0bf90a21e568fbf9cc2d9b9920"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4ryWnLfb3s4py00DhSoDoCWcrLpQM9RCIZRJA12Jcz_KIOn7O-3zZQ==
age: 18674
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/js/6b631c3f.1188a35b.chunk.js | 143.204.55.112 | 200 OK | 73 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/js/6b631c3f.1188a35b.chunk.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65455) Hashc749d2591feb46e1c92076da09b49878 6d57f01c82375cb7c7525f9bdb60d425d0bf9c5b 3319707beee5f7d6db5a38d47f5bdcaf7fb1ddbdf8b7e5300b2c2ac07ef63ada
GET /psb/capla/static/js/6b631c3f.1188a35b.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 03 May 2024 16:16:52 GMT
last-modified: Fri, 03 May 2024 14:37:54 GMT
etag: W/"c749d2591feb46e1c92076da09b49878"
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: o1Yza02ujYcwoH9ghnWhEI5S4CZf4ijd
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2EFCT7PuqaxbaHkt5z3Fuhbsqe-GprrzFoP50tDxvaqIubkSCS0Gxg==
age: 80328
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
|
|
| q-xx.bstatic.com/xdata/images/xphoto/263x210/45450103.jpeg?k=a1fa72362160b1df6e288050afa7ce1aade80871acd368ddd4a4ebf6ad87764e&o= | 143.204.55.112 | 200 OK | 17 kB |
URL GET HTTP/2q-xx.bstatic.com/xdata/images/xphoto/263x210/45450103.jpeg?k=a1fa72362160b1df6e288050afa7ce1aade80871acd368ddd4a4ebf6ad87764e&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3 Hashf373341034a716f8a37655e46047d92d 4a7c67fbe52f102ca516e2d7fda504aa94df5942 1f189b367e0ec60548afd09578a8743af2069f18731a05c11b9b292ed0f0fc17
GET /xdata/images/xphoto/263x210/45450103.jpeg?k=a1fa72362160b1df6e288050afa7ce1aade80871acd368ddd4a4ebf6ad87764e&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Wed, 24 Apr 2024 12:22:09 GMT
content-language: 16555
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "3aa59d890ba68033df6a63b6535f31d7b2a23d10"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hPfbh7qL663jZYCmPqCnPfC-7M6M-PCCSsMFndE8QyXM3cJvK8Seqg==
age: 872013
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/js/remoteEntry.f0866eea.client.js | 143.204.55.112 | 200 OK | 20 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/js/remoteEntry.f0866eea.client.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (19849) Hashd78c34e2dbec204465921f484c1997f8 b6b0d1ae5df66c0637284827222b757adb98c237 07b50ac877934b1ce0bd68c040f83bae04efb2db4e19b60681cdf4f367dcb2e0
GET /psb/capla/static/js/remoteEntry.f0866eea.client.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 03 May 2024 16:51:00 GMT
last-modified: Thu, 14 Dec 2023 12:49:05 GMT
etag: W/"d78c34e2dbec204465921f484c1997f8"
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: 0Gkt0CnTnvxOJEfeuYQEpbPR8W9fMbME
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: t4lFc8j4uICYW2nFUAx8hGoiafpas3zzRRO-H-mqOHdZJ6LbD3axEw==
age: 78280
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/hotel/square600/13125860.webp?k=35b70a7e8a17a71896996cd55d84f742cd15724c3aebaed0d9b5ba19c53c430b&o= | 143.204.55.112 | 200 OK | 63 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/hotel/square600/13125860.webp?k=35b70a7e8a17a71896996cd55d84f742cd15724c3aebaed0d9b5ba19c53c430b&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp Hashe965ab8e189b47c2552636ab3e7f7cb2 a558424ed2187f317d0bb28cf7e5924bff250bd7 28e8056b22b0dd18679873e59d4d0ddf9233236584922bfbc0346cb4864b5e33
GET /xdata/images/hotel/square600/13125860.webp?k=35b70a7e8a17a71896996cd55d84f742cd15724c3aebaed0d9b5ba19c53c430b&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Wed, 24 Apr 2024 14:03:21 GMT
etag: "ab8b7d74b7a68414c25e711fee70e7eba3ef2ff8"
content-language: 63344
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jCADjcYbnvi3PAYKAbhBj6-PXibfmaRL7nR18BWA9CfvEH15Ut1Drw==
age: 865942
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/static/js/core-deps-inlinedet_cloudfront_sd/9fc72199a3b8ae2b967821deb6fa10d92ce308fc.js | 143.204.55.112 | 200 OK | 50 kB |
URL GET HTTP/2cf.bstatic.com/static/js/core-deps-inlinedet_cloudfront_sd/9fc72199a3b8ae2b967821deb6fa10d92ce308fc.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/js/core-deps-inlinedet_cloudfront_sd/9fc72199a3b8ae2b967821deb6fa10d92ce308fc.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Tue, 09 Apr 2024 09:15:59 GMT
last-modified: Tue, 09 Apr 2024 08:42:28 GMT
etag: W/"6614ff74-c4cb"
expires: Thu, 09 May 2024 09:15:59 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cRFVSpSTZeUPA4IfRA9OJdC2mEDs1mgLLSctaCmKJ2GLKbZXEB3ffA==
age: 2179180
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/css/d8454389.38543e9e.chunk.css | 143.204.55.112 | 200 OK | 2.3 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/css/d8454389.38543e9e.chunk.css IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeASCII text, with very long lines (2276), with no line terminators Hashb31d50468c0b60f0e3c2d380be6786c9 ee36eb0587c564752971e87782db3038cd6efb03 3d44e8791705392f83935b2b66292af6946f76da496ae7b6ce1ad85a6c9de980
GET /psb/capla/static/css/d8454389.38543e9e.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
date: Fri, 03 May 2024 16:16:51 GMT
last-modified: Fri, 03 May 2024 14:37:54 GMT
etag: W/"3ea7a037e48f1f5875ebfb0557aa11fc"
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: sZkxsAYYuSNvCCTvDxTtdD4GK6QycDFr
server: AmazonS3
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: y2CAw2D25G45Yng0cad22NJJLz6ke-7_zqBuqKVO2JlWxD_9yWbQpg==
age: 80329
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/static/js/sp-on-maps_cloudfront_sd/1d69e13e40d03fc59f58d76b31735d5d8c37416a.js | 143.204.55.112 | 200 OK | 9.7 kB |
URL GET HTTP/2cf.bstatic.com/static/js/sp-on-maps_cloudfront_sd/1d69e13e40d03fc59f58d76b31735d5d8c37416a.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (10258), with no line terminators Hash4300a833da675307be8e0d02b415df9f 24b880a2eed189d480d408a851c328a7047f16f9 4f3d8e87745fda5e87e00c39b7cdae036dea651556927c546748c3420425de9a
GET /static/js/sp-on-maps_cloudfront_sd/1d69e13e40d03fc59f58d76b31735d5d8c37416a.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 19 Apr 2024 09:08:14 GMT
last-modified: Fri, 19 Apr 2024 08:49:11 GMT
etag: W/"66223007-2610"
expires: Sun, 19 May 2024 09:08:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6sk8654m0czTVFCbmsRJMvM-lGWQV9wxRdpidNWIIq5K1kW0cMYvxw==
age: 1315645
X-Firefox-Spdy: h2
|
|
| cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/3ea94870-d4b1-483a-b1d2-faf1d982bb31.json | 104.19.177.52 | 200 OK | 6.9 kB |
URL GET HTTP/2cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/3ea94870-d4b1-483a-b1d2-faf1d982bb31.json IP104.19.177.52:443
CertificateIssuerCloudflare, Inc. Subjectcookielaw.org FingerprintC9:7F:A3:0A:53:6E:A6:6C:2F:D0:E2:2C:F5:35:B4:BC:81:90:40:31 ValidityFri, 01 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (8350), with no line terminators Hash43a2510f8b46e3e99c9ea53e56b23573 77d5e9b985158d36c63ad5cc0a9a25f5fd30b200 d6ded5d4e7f60511639c2391f6eba3709de181109368ec2d291f0aee4d8c7045
GET /consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/3ea94870-d4b1-483a-b1d2-faf1d982bb31.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 14:35:40 GMT
content-type: application/x-javascript
content-length: 2099
cf-ray: 87e937f82c980b55-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 71846
cache-control: public, max-age=86400
content-encoding: gzip
etag: 0x8DC5A2192C00438
expires: Sun, 05 May 2024 14:35:40 GMT
last-modified: Thu, 11 Apr 2024 12:19:02 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
content-md5: vvdnZW6WirMnzof2WS54RQ==
x-content-type-options: nosniff
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 7bdbea1b-901e-0012-420a-8c4253000000
x-ms-version: 2009-09-19
server: cloudflare
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/city/600x600/977262.jpg?k=2b852648c76ccaff8be05333057712eda873343dfaa79cd23e55534a1a55aecc&o= | 143.204.55.112 | 200 OK | 104 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/city/600x600/977262.jpg?k=2b852648c76ccaff8be05333057712eda873343dfaa79cd23e55534a1a55aecc&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 600x600, components 3 Size104 kB (104054 bytes) Hash9e76748d372f43f3c70913db8fb4b4b6 8576bee89b25b0cf56805bd6d2e82cc5b11d5eae 4188b77ce80f546eebdb6c1d3dd95160b3d36b1e0fad8722c7e8c4591de87390
GET /xdata/images/city/600x600/977262.jpg?k=2b852648c76ccaff8be05333057712eda873343dfaa79cd23e55534a1a55aecc&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Mon, 15 Apr 2024 14:48:44 GMT
content-language: 104054
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "2082d51dfb19f44bdc31100a407237918470362f"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: duNAuXFdnJ5OiGyOoCzIpnsGUVV0yVmCOoUHwn33wxHa9XX5UXHgZg==
age: 1640816
X-Firefox-Spdy: h2
|
|
| q-xx.bstatic.com/xdata/images/xphoto/263x210/45450066.jpeg?k=4adfab312f5d26da9f81da48d8c95ca8f108215b2c84085590891a9e0e17b144&o= | 143.204.55.112 | 200 OK | 17 kB |
URL GET HTTP/2q-xx.bstatic.com/xdata/images/xphoto/263x210/45450066.jpeg?k=4adfab312f5d26da9f81da48d8c95ca8f108215b2c84085590891a9e0e17b144&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3 Hashe08092b0569f8ee045e4bd45c1618f76 3c285568b967e02f24eb46c58f0d3eae278c58d7 bdc6ee8e1157c8084492b5735aedad96796d7aabd9b2f80949d5e747d652028d
GET /xdata/images/xphoto/263x210/45450066.jpeg?k=4adfab312f5d26da9f81da48d8c95ca8f108215b2c84085590891a9e0e17b144&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Mon, 15 Apr 2024 14:56:01 GMT
content-language: 16930
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "ea2244f5ef79860569b05cd1f307c3bc50c73ced"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 0LrE2sx1sL-aul-umr09GEerDl6M3VFiN1spevk_haOAPf3v71lDew==
age: 1640381
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/xphoto/300x240/140040697.jpg?k=41d25557effcaa027632902ae406782397a6ca3ca0325e287052b42ba0888254&o= | 143.204.55.112 | 200 OK | 11 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/xphoto/300x240/140040697.jpg?k=41d25557effcaa027632902ae406782397a6ca3ca0325e287052b42ba0888254&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3 Hash38cb97ae348675ed350a18dcf959a79b 0b4d788f789b09c97f8f7207fdb5f1110200b824 b51061c18d61d5e04e945ef5ddc1dfeb4dc2e6c0eafbe9c8b28b65fb9d19d916
GET /xdata/images/xphoto/300x240/140040697.jpg?k=41d25557effcaa027632902ae406782397a6ca3ca0325e287052b42ba0888254&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Fri, 19 Apr 2024 20:00:41 GMT
content-language: 10954
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "57fbc3a51fd1d9629435eb09be5674ed1830365b"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -W3fstMnfwL6R4XhQ-Mo9X_V2-XK6eFCKqEUA-D2N1iZ6BA5WMPNcg==
age: 1276502
X-Firefox-Spdy: h2
|
|
| www.booking.com/c360/v1/track | 54.230.111.45 | 200 OK | 301 B |
URL POST HTTP/2www.booking.com/c360/v1/track IP54.230.111.45:443
CertificateIssuerDigiCert Inc Subject*.booking.com FingerprintC7:72:77:E2:B0:F2:0E:46:E1:DC:98:03:30:6C:05:F2:10:E1:02:36 ValidityWed, 01 May 2024 00:00:00 GMT - Tue, 25 Mar 2025 23:59:59 GMT
File typeASCII text, with very long lines (361), with no line terminators Hashdb3af54feeebf74cf658fb70815050fd 28345779b6c070199b14a92911c6c6c2ea1359c1 1d366d30c20711c046ff84354566514109226d3afd965dc5f4befee8ad76de85
POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-Type: application/json
X-Booking-Platform: www
X-Booking-SiteType-Id: 1
X-Booking-Pageview-Id: 0819669da254000b
X-Booking-Session-Id: undefined
X-Booking-ET-Seed: undefined
X-Booking-AID: 304142
X-Booking-Label: undefined
X-Booking-CSRF: undefined
X-Booking-Language-Code: en-us
Content-Length: 6722
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBJSNum%2Bc1xLFn12m2f7ZHZ95PfhYVIBK10JlJfka14nlp4Y70WCBili2Fui6OOSsQrUyCz9Tmggwj0DuztcQajH4%2Bm5jddtlcvsexjAFfqrxqr9lOy7yPJKAXYOHIU0hUKG2Y7FCPEsmyQ7fblSlZJdTEgfORizrgg%3D; bkng_sso_auth=CAIQsOnuTRp4XCf2mTNX2vTaKOi4c2gJXy3BplRywvZtVCh4hXGp5h5po/N6Qux+6kUCprdfXKCUOnGOJCKYHHcQmnGvYbRr1GQd2W7Jn/T3WlKyR4wJOjW8Sbugx4dG7NoQ9nDUFZd1Yhlso8MBnxHNGtpJqGdaAcEEZ4PTweKT; pcm_consent=consentedAt%3D2024-05-04T14%3A35%3A43.072Z%26countryCode%3DNO%26expiresAt%3D2024-10-31T14%3A35%3A43.072Z%26implicit%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr%26consentId%3D5fe20cb7-3a0d-49bd-9e44-a4a576eaaa39%26analytical%3Dfalse%26marketing%3Dfalse; px_init=0; pcm_personalization_disabled=0; cors_js=1; bkng_sso_session=e30; bkng_sso_ses=eyJib29raW5nX2dsb2JhbCI6W3siYSI6MSwiaCI6Ik11TFNOayszcVZqUk1NeWZjUkwxdUdZMUVlYThZd0I5aWl1NmtuQlNzWGsifV19; OptanonConsent=implicitConsentCountry=GDPR&implicitConsentDate=1714833341097&isGpcEnabled=0&datestamp=Sat+May+04+2024+14%3A35%3A42+GMT%2B0000+(GMT)&version=202403.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=9b410d55-22ad-4115-aad7-534adfa48e9d&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&backfilled_at=1714833343460&backfilled_seed=1; BJS=-; 11_srd=%7B%22features%22%3A%5B%7B%22id%22%3A16%7D%5D%2C%22score%22%3A3%2C%22detected%22%3Afalse%7D; OptanonAlertBoxClosed=2024-05-04T14:35:42.666Z; bkng_sso_auth_1714833343=CAIQsOnuTRp4XCf2mTNX2vTaKOi4c2gJXy3BplRywvZtVCh4hXGp5h5po/N6Qux+6kUCprdfXKCUOnGOJCKYHHcQmnGvYbRr1GQd2W7Jn/T3WlKyR4wJOjW8Sbugx4dG7NoQ9nDUFZd1Yhlso8MBnxHNGtpJqGdaAcEEZ4PTweKT
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 60
server: nginx
date: Sat, 04 May 2024 14:35:43 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbXpFeYC4TUhAF8KF2svRpkT4nRao2F%2Fg3DI5tNI5Q4jtAYDL0i38BsLn38ETYMF45iVBglYC20jciTP6za1oPM5JUDDxM%2Bik6KYI6cwFpZAGRR%2BE%2FLOcYAzcxbLqvskKVFxePgh4mBAjCbumGikfzm1k%2BQ%2FEclG%2FRejeq3Q6JWG8%3D; domain=.booking.com; path=/; expires=Thu, 03-May-2029 14:35:43 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=2592000; includeSubDomains
x-content-options: nosniff
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=b6ca669f840e025b&e=UmFuZG9tSVYkc2RlIyh9YaKT1Ar0s2gSEmakdtrUqsstz3KO5Mjr6fhrcj967SWT202AVfpJX9A
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VZyH9W-ejrt2R_6R_0xZtR1uLQr4ryLIycChONq_OIW3GY4L2TqdBA==
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/css/5f127cf4.85a7d600.chunk.css | 143.204.55.112 | 200 OK | 2.3 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/css/5f127cf4.85a7d600.chunk.css IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeASCII text, with very long lines (2276), with no line terminators Hash8683db1a14c4fa012c39a31991005fd4 8bd9a4667b8365c0e9f3ebe6711f732fdf189df5 f2ee3c9b179ebbc1ecd26c4328df9ea51e3a1fe13d48ce7f66459338c4df523b
GET /psb/capla/static/css/5f127cf4.85a7d600.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
date: Fri, 03 May 2024 16:16:51 GMT
last-modified: Fri, 03 May 2024 14:37:54 GMT
etag: W/"a08df4ff64a5170cdc8df27c0e788c15"
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: lrsSRW.kLYVgUyh5_eo46stSKlMegqDY
server: AmazonS3
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1p00fd5V1v1oEu-QG8KE_J--RdDMQcEYo4ZXl74vPoYmMXusKzEYdA==
age: 80329
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/js/0d073a5f.c1d66f4e.chunk.js | 143.204.55.112 | 200 OK | 27 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/js/0d073a5f.c1d66f4e.chunk.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (27291) Hasha0925d92c4c9528c77ba1b4a91e95e34 924aa09c45f6d4ef533466811e8091c0e90657d9 92980af4abdd1e58020de1762b9e2f035c730ccf846383bd44e80b66095461de
GET /psb/capla/static/js/0d073a5f.c1d66f4e.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 03 May 2024 16:16:52 GMT
last-modified: Fri, 03 May 2024 14:37:54 GMT
etag: W/"a0925d92c4c9528c77ba1b4a91e95e34"
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: hxkpDFz6l2kmbQlgGyKgshVKSf78iozp
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: HJ8ktPaGW3DKMDunkjrqaOBi3aA7kSwWMeTomIo96CLYg2pu0dzF-w==
age: 80328
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/hotel/square600/398620320.webp?k=10e476830ecfd5a062072a6318612393bc414bd75c10bb44dd29a1d6de5b225b&o= | 143.204.55.112 | 200 OK | 32 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/hotel/square600/398620320.webp?k=10e476830ecfd5a062072a6318612393bc414bd75c10bb44dd29a1d6de5b225b&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp Hashde64ee81621ba1ad3857b0a50de527a4 a49fc890be0160a580e6581046dd8e6942dca3ff f96309d4f154c0668d61e54c4f2f634c7e47a5b6546b250eb5205950c1e75577
GET /xdata/images/hotel/square600/398620320.webp?k=10e476830ecfd5a062072a6318612393bc414bd75c10bb44dd29a1d6de5b225b&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Thu, 02 May 2024 09:29:57 GMT
content-language: 31994
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "de0ee137ea2de702fb246777996bd787657681ca"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: d6p0AintJ_oEU6YGVKRDDmNyaiP5BtFUoZskPj93vKXU0GwibVk7Mw==
age: 191146
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/hotel/square600/438349362.webp?k=f67f0e7e54be1c0678f18cf9ae1271c4220a487901ae0bf906fed8ba0265e38d&o= | 143.204.55.112 | 200 OK | 48 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/hotel/square600/438349362.webp?k=f67f0e7e54be1c0678f18cf9ae1271c4220a487901ae0bf906fed8ba0265e38d&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp Hash898fc96fa998fe265b9972c981cd78d0 50dff138df5fd61ef4dd82d2c38000215ecbb60f 7b5c29e16357049b21eb119c0af63c82f140fa88c3eaa5cd51892b84682cb732
GET /xdata/images/hotel/square600/438349362.webp?k=f67f0e7e54be1c0678f18cf9ae1271c4220a487901ae0bf906fed8ba0265e38d&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Fri, 26 Apr 2024 06:14:36 GMT
etag: "edb4586ffb67709845cf88b62baca6f7d5fe8ae6"
content-language: 47648
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Nynwx8aNzKnlrN880WSjZ6Rot_f8JE0iOlXRpXcoZpS-MX1OY0R7JQ==
age: 721267
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/city/600x600/644297.jpg?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o= | 143.204.55.112 | 200 OK | 74 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/city/600x600/644297.jpg?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 600x600, components 3 Hash60b8665aff1e28f230d4fd9e1a479a31 4352c75c225caabb5d3848296dea9732f8e8af67 b41a7c475c3ff89bccf20787bd207218bc85a2eb3318a79300f29a5b6d09bea7
GET /xdata/images/city/600x600/644297.jpg?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-language: 74421
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Wed, 10 Apr 2024 06:10:27 GMT
cache-control: max-age=2592000
etag: "f1eb698e0ca9fa1026cedd38aa4a946666a07db1"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3SqwhwUcdysYBlmM4ypN2WVAQIqpBXFkoLmu9XYWWhOK9ScvwJOJlQ==
age: 2103913
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/static/css/incentives_cloudfront_sd.iq_ltr/f1558a6e9832a4eb8cfe1d3d14db176bd3564335.css | 143.204.55.112 | 200 OK | 7.1 kB |
URL GET HTTP/2cf.bstatic.com/static/css/incentives_cloudfront_sd.iq_ltr/f1558a6e9832a4eb8cfe1d3d14db176bd3564335.css IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeASCII text, with very long lines (7107), with no line terminators Hashf841b7b83eae48fbf4574d3c0d53f4c3 e104126e57648ff6d51bf6ade1357bc03cb500c5 0a5447d9be398da3541fe01668f81b332fd26812c2842aa53deb5c7883d58f73
GET /static/css/incentives_cloudfront_sd.iq_ltr/f1558a6e9832a4eb8cfe1d3d14db176bd3564335.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Sat, 20 Apr 2024 09:45:16 GMT
last-modified: Fri, 28 Jul 2023 11:29:02 GMT
expires: Mon, 20 May 2024 09:45:16 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: W/"64c3a67e-1bc3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Gyvhitk8yjT2uuBBN59rlYuK_P7sdUXdYp6EMbgnAYgLM33tHhWy7A==
age: 1227023
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/static/js/main_cloudfront_sd/ab7fa7a908e1a3c043fceba728e6ed2dd087c383.js | 143.204.55.112 | 200 OK | 584 kB |
URL GET HTTP/2cf.bstatic.com/static/js/main_cloudfront_sd/ab7fa7a908e1a3c043fceba728e6ed2dd087c383.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
Size584 kB (583604 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/js/main_cloudfront_sd/ab7fa7a908e1a3c043fceba728e6ed2dd087c383.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 29 Apr 2024 10:02:51 GMT
last-modified: Mon, 29 Apr 2024 09:49:40 GMT
etag: W/"662f6d34-8e7b4"
expires: Wed, 29 May 2024 10:02:51 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: kKSOuO4TMW_3d82LMW6oLSp7fEPgA0Qr09J879gy4Xqj8T-qinllng==
age: 448367
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/static/js/jquery_cloudfront_sd/e1e8c0e862309cb4caf3c0d5fbea48bfb8eaad42.js | 143.204.55.112 | 200 OK | 105 kB |
URL GET HTTP/2cf.bstatic.com/static/js/jquery_cloudfront_sd/e1e8c0e862309cb4caf3c0d5fbea48bfb8eaad42.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (60582) Size105 kB (105026 bytes) Hash1a16f971ed98c047c8fa288987383922 04200a6f3b25cdfa04551f635d025fc64743b4ff 5ad7526d50b7586ddfaee62b3fc95e71207136dc08f6a2b7ffd671ded73fab83
GET /static/js/jquery_cloudfront_sd/e1e8c0e862309cb4caf3c0d5fbea48bfb8eaad42.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 18 Apr 2024 02:01:56 GMT
last-modified: Tue, 28 Jun 2022 13:43:41 GMT
etag: W/"62bb058d-19a42"
expires: Sat, 18 May 2024 02:01:56 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: IQ-Oext6CmQmxZTQJ0-Xpgp_ufcobwdEYGCbK90TM333tH4L7fQa2w==
age: 1427623
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/static/js/genius_vip_cloudfront_sd/aae975495cc56436f4f59463b9ea4e594bdb102a.js | 143.204.55.112 | 200 OK | 3.4 kB |
URL GET HTTP/2cf.bstatic.com/static/js/genius_vip_cloudfront_sd/aae975495cc56436f4f59463b9ea4e594bdb102a.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (3590), with no line terminators Hashb25b78915f27efe38c7124529f289703 a86abb1566b57bf2ff44892a863a710d27858a21 b9485b47a16c343fb4ef11e02dbe56d724a156b5daff01bfa056ddd1f291ee20
GET /static/js/genius_vip_cloudfront_sd/aae975495cc56436f4f59463b9ea4e594bdb102a.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Sat, 13 Apr 2024 01:07:29 GMT
last-modified: Wed, 01 Nov 2023 08:40:16 GMT
etag: W/"65420ef0-d78"
expires: Mon, 13 May 2024 01:07:29 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cYvdDavzLSXqf5LEAJ58D6LChSItBGShbvZ7OA62_8MH54f2R4jT6g==
age: 1862890
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/city/600x600/644293.jpg?k=24c08396bd44343c9dcc78f0df41e114bf7e6aeda3d339101c37e7ba3aa707db&o= | 143.204.55.112 | 200 OK | 58 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/city/600x600/644293.jpg?k=24c08396bd44343c9dcc78f0df41e114bf7e6aeda3d339101c37e7ba3aa707db&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 600x600, components 3 Hash5df7a16eaf126a61fc720bc0fe9a4950 aaea273239d0ca07a03c21cc2ebfe8b1e2d2d554 b70d2a3a7b2fa6d8af81bccda306bf170e6b22a3b000fbbe1751b7786ce6c65b
GET /xdata/images/city/600x600/644293.jpg?k=24c08396bd44343c9dcc78f0df41e114bf7e6aeda3d339101c37e7ba3aa707db&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Sun, 21 Apr 2024 04:54:22 GMT
content-language: 57860
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "9ef8ef8b3d685f8929e0a569f314cb7f2d7c7fbb"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ac1W09IoOJQK9jKHc95EkS0zk2K8-6_JVEDNmz8u9TFuipwTMWE5Pw==
age: 1158078
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/xphoto/300x240/140040683.jpg?k=11550d5407fcb7b634aa46eedd72c5f49c20c467abbef62cc22bc14aeeb8b2b7&o= | 143.204.55.112 | 200 OK | 17 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/xphoto/300x240/140040683.jpg?k=11550d5407fcb7b634aa46eedd72c5f49c20c467abbef62cc22bc14aeeb8b2b7&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3 Hash492770a16d048684a8758f827d807501 de5fa985125f31b2d0df5c8855574c3dfbb14599 9fcaad91847e1fdcd5d3574b16c7d5e2c62c43be065faa1aed08e81ce24f83ec
GET /xdata/images/xphoto/300x240/140040683.jpg?k=11550d5407fcb7b634aa46eedd72c5f49c20c467abbef62cc22bc14aeeb8b2b7&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Fri, 19 Apr 2024 20:00:41 GMT
content-language: 17148
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "6104cb51027d86fef0e49fe6950c250db213c634"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: YpK3dseEwIXv8t0vdeXMt5KzyE39qS-KFg6OLCJ2mUE02TMAlulnWA==
age: 1276502
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/js/dc32f6b7.613315bd.chunk.js | 143.204.55.112 | 200 OK | 217 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/js/dc32f6b7.613315bd.chunk.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size217 kB (216769 bytes) Hash39974a9d14d8d872eb9e17126272d457 d4ebb54056967fc4012965b6ac81670005292d87 33fd6177ebdf1f55adf60ec76946ec1db86a260516ef5e7d08da53bec5eb162d
GET /psb/capla/static/js/dc32f6b7.613315bd.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 29 Apr 2024 07:39:11 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: N5DBTa3VbegOoq3OwxJcm108rk_v2wI3
server: AmazonS3
content-encoding: br
date: Fri, 03 May 2024 18:44:32 GMT
etag: W/"39974a9d14d8d872eb9e17126272d457"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rrf1ntaZl3MY7QSJkGd8LhGJH7UAonxzV4Mf2E8gcn32ycUfVIdUqw==
age: 71468
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/xphoto/300x240/140040800.jpg?k=9b90d3c924ad5f0a807e6b89a4cb69dcd91ad4e1be9d948f98fe5caf79ad6c4f&o= | 143.204.55.112 | 200 OK | 18 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/xphoto/300x240/140040800.jpg?k=9b90d3c924ad5f0a807e6b89a4cb69dcd91ad4e1be9d948f98fe5caf79ad6c4f&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3 Hash279cc52919dba291146d7600a3891bb8 b51e0c4dfeaf6775a5bdc7f58256caf31429c5a4 994f45e23aabaab02aeac60c80f05f8fd9e412de13e68fdfd9c72cb47d91ee86
GET /xdata/images/xphoto/300x240/140040800.jpg?k=9b90d3c924ad5f0a807e6b89a4cb69dcd91ad4e1be9d948f98fe5caf79ad6c4f&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Thu, 18 Apr 2024 06:12:37 GMT
content-language: 18295
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "d9229ef1f9c16a1be1ad73a03f9bb42b91e81356"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: T1P7f_CbWUT4d1qG_cJcwylY-DmhvQkKyh5P-s0CvPovD_Ry-XfFjQ==
age: 1412586
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/js/f141039c.1c2abb24.chunk.js | 143.204.55.112 | 200 OK | 11 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/js/f141039c.1c2abb24.chunk.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (10609) Hash6373ae89ed2b9b79abeff0e4e13f68a7 ff553513e9bff9e35518ede617adc95fe06f77da d41d630c0452791cbcd8cc993b9ec0b0e99c3c080912d31db4ef97c20e8db323
GET /psb/capla/static/js/f141039c.1c2abb24.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 03 May 2024 16:16:52 GMT
last-modified: Fri, 03 May 2024 14:37:55 GMT
etag: W/"6373ae89ed2b9b79abeff0e4e13f68a7"
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: 9p6p9SHYTsDZT.V04PnA5XyKLFas7KM3
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: QEQc4nhEShWAjzGNtVtcLl_r1SYhFsyAI7l3cAcDRlayoYesJlPmdQ==
age: 80328
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
|
|
| q-xx.bstatic.com/xdata/images/xphoto/263x210/45450075.jpeg?k=d23cf8443780ac09f46f59e40393d75dbe64b06029b4959c60b81b7fdefc9be0&o= | 143.204.55.112 | 200 OK | 10 kB |
URL GET HTTP/2q-xx.bstatic.com/xdata/images/xphoto/263x210/45450075.jpeg?k=d23cf8443780ac09f46f59e40393d75dbe64b06029b4959c60b81b7fdefc9be0&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3 Hashe70f1d1992db27cada3baaf01be89329 379e6db7407215eec854ae8523b0a88f6134b293 2c67010b9f685164bd1cf6b5fab39fd9f7b3a165357b15a6ca3de2cef7c796e1
GET /xdata/images/xphoto/263x210/45450075.jpeg?k=d23cf8443780ac09f46f59e40393d75dbe64b06029b4959c60b81b7fdefc9be0&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Wed, 24 Apr 2024 12:22:09 GMT
content-language: 10192
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "f6c79f7236f1e41145c4686341201c716b203f84"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ic4nmUT0HUKVxWCLTOTkuBG34xRchqe8JBIfpNN0zwKgUE8uORGdPw==
age: 872013
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/xdata/images/hotel/square600/524735433.webp?k=f5052d0ea566c3f4c753ac58d86e009605b56dace36537207739c60f5220a785&o= | 143.204.55.112 | 200 OK | 84 kB |
URL GET HTTP/2cf.bstatic.com/xdata/images/hotel/square600/524735433.webp?k=f5052d0ea566c3f4c753ac58d86e009605b56dace36537207739c60f5220a785&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp Hash41debb8d86045fc48c8a93a1afa678ec 820de4a39e5e6cc8a5f523a74c8d49c8f1ad7e00 bac29a9f0e0c3267017be35813fb95368f780204fa7cb4d5024d33451bae59e0
GET /xdata/images/hotel/square600/524735433.webp?k=f5052d0ea566c3f4c753ac58d86e009605b56dace36537207739c60f5220a785&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Fri, 26 Apr 2024 06:14:36 GMT
content-language: 84136
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "8b345c16be9f96f7d932e5bbe3bbb5fe4d6f9ed8"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5EpfLBfIRmw7DUe7ENXXCuDtHNNZMYgHA1RWk2MyZMhtj1p7KhFO0g==
age: 721267
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/js/remoteEntry.d8acd6db.client.js | 143.204.55.112 | 200 OK | 25 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/js/remoteEntry.d8acd6db.client.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (24596) Hash30bca1dc8e18c280f4c9ffdc0bbea36c e1b5e5ee40cbd8a81d8af7fd3acdc361cac3c67e 88ca7b95efa0a215eae8167bb44ea672870e9e39e193a71fe6a484418b6159e7
GET /psb/capla/static/js/remoteEntry.d8acd6db.client.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 03 May 2024 09:03:17 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: uW5KkJ5rUFJVTRtAfs0d7LXD_x9Hr467
server: AmazonS3
content-encoding: br
date: Sat, 04 May 2024 09:24:12 GMT
etag: W/"30bca1dc8e18c280f4c9ffdc0bbea36c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: HLjb0RUFm_y_haLtxc7TFwCHyUa3gnF5jMtOI4mmtb9Ktli_y9-xng==
age: 18688
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/js/ace575b5.da6d4dcd.chunk.js | 143.204.55.112 | 200 OK | 220 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/js/ace575b5.da6d4dcd.chunk.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65455) Size220 kB (219607 bytes) Hashf727248b84cd97c49b89480a5efcf622 8739cf4c39e3db996684a50d7e5b9aeaf9883353 bb1bb58a865e4f7fb5f9e6d71a9e6b49393940d895abfe3bc62fd10e27721e31
GET /psb/capla/static/js/ace575b5.da6d4dcd.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 02 May 2024 14:18:23 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: vtCrBGOVf9ezCfqYivAfrye4lQo7oFy2
server: AmazonS3
content-encoding: gzip
date: Fri, 03 May 2024 18:13:49 GMT
etag: W/"f727248b84cd97c49b89480a5efcf622"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -gLXqTQ-HvmVMH-MI2hij-4H3eYBSXaxdP5Y8pudt3rmHYOt1MrpCQ==
age: 73311
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
|
|
| cf.bstatic.com/psb/capla/static/js/7943e0ea.87eda2a1.chunk.js | 143.204.55.112 | 200 OK | 173 kB |
URL GET HTTP/2cf.bstatic.com/psb/capla/static/js/7943e0ea.87eda2a1.chunk.js IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65455) Size173 kB (173287 bytes) Hash338a07f39b48e77426ae67927e1e8742 80988eb705816a7a10890ca3b4fd604493db0785 7e94ca8fa3832d62d0a44e52029f12fd132c2c1da7896d3de1ce800a933f81fa
GET /psb/capla/static/js/7943e0ea.87eda2a1.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 03 May 2024 16:16:52 GMT
last-modified: Thu, 02 May 2024 10:42:51 GMT
etag: W/"338a07f39b48e77426ae67927e1e8742"
x-amz-server-side-encryption: AES256
x-amz-meta-x-deployment-hash: foo
x-amz-version-id: rqWRpaGyQ0gPHkujW4V6Xv6G.0khBq2K
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: WtwgrvBkfrLPGB6ooGEVaVOZhRG4oT3PTPhLxh3UpKryOlQQr6hnxA==
age: 80328
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
|
|
| r-xx.bstatic.com/xdata/images/xphoto/263x210/45450080.jpeg?k=15d9709efa513f2b23b5fa8d5234d87bdee2bf97b3e7552244592da11413db9a&o= | 143.204.55.112 | 200 OK | 10 kB |
URL GET HTTP/2r-xx.bstatic.com/xdata/images/xphoto/263x210/45450080.jpeg?k=15d9709efa513f2b23b5fa8d5234d87bdee2bf97b3e7552244592da11413db9a&o= IP143.204.55.112:443
CertificateIssuerDigiCert Inc Subject*.bstatic.com FingerprintA4:56:D7:3E:15:A6:B4:E7:81:52:3D:DD:EE:FC:BB:5F:A6:81:0B:27 ValidityWed, 29 Nov 2023 00:00:00 GMT - Thu, 28 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3 Hash91007a34c420b11e6db46ae944e03832 faa95d4579989447ea3bf6f6308cc6080de9df73 bc45eebffad13744795ec73c95d868f36bfa4c629a18dd950cb8e3fc925e9352
GET /xdata/images/xphoto/263x210/45450080.jpeg?k=15d9709efa513f2b23b5fa8d5234d87bdee2bf97b3e7552244592da11413db9a&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Wed, 01 May 2024 15:31:08 GMT
content-language: 10314
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "c35b65fa3e7c6890ed0bd84ed1b72acb7ba90276"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9smpztS_iBwD4r1r6tTCxNvIK2dL1D5pNCVfEZ_OxYKUwPosw1tzXA==
age: 255874
X-Firefox-Spdy: h2
|
|