use.blatnet.com/
72.14.178.174200 OK 7.0 kB IP 72.14.178.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (301)
Hash e58890c00b0426078060bde45a45c13e
d1d0951a67c58a8a671afaed6870d0b7cae99ba4
185767546843661f0a09c5ac7cc76f1377af0af5e51a6bda87ece2879424b54e
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: use.blatnet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
server: openresty/1.13.6.1
date: Mon, 03 Oct 2022 00:10:20 GMT
content-type: text/html; charset=utf-8
content-length: 7029
vary: Accept-Language
content-language: en
connection: close
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9955bda9c9ef64bc5700a14af0bae25e
8de7b7469e905af0374bdfcc3006bbb844f13e94
1f611155394fac39439b8ec8217d8cd493d6b588d372d264e0d66c03129c50c6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F611155394FAC39439B8EC8217D8CD493D6B588D372D264E0D66C03129C50C6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10370
Expires: Mon, 03 Oct 2022 03:03:10 GMT
Date: Mon, 03 Oct 2022 00:10:20 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
18.165.201.103200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 18.165.201.103:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 03 Oct 2022 00:03:22 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 4ae6e5888b43b4133973ba1aadad8194.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: cM5w9BrdFb8nPpYYbBQI8nX4gYRLico-UyVdRnawXnWWOdiK-YOVCw==
Age: 418
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
108.156.28.95200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 108.156.28.95:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 02 Oct 2022 03:33:17 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 cdd8daeefcf66738f6e908663e79c33e.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: yBLGJIgg1KGKr1rEiNTnyHp1_9OPW7G-HP6BBBDljp4My8S438L_Cw==
age: 74224
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 00:10:20 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
use.blatnet.com/mtm/async/.eJxdi0sOwjAMBe_iZYlilnzEWZAbuW2kOAmJC5EQdycFVuxm3ug9YS0eToBggMpcO3YqPHHh8pUlVb1GEu66VrZjII2s1iXZTs5x1p6Um-KiEgzlHLwj9Sli25Zd-18lnG-XvT0aLzQz0t1PP3zwmM2Aw6cf4PUGrtI1yQ:1of92K:sBOTkiVIcr66C5kOd6CshvcihRQ/1/0
72.14.178.174200 OK 431 B URL HTTP/1.1 use.blatnet.com/mtm/async/.eJxdi0sOwjAMBe_iZYlilnzEWZAbuW2kOAmJC5EQdycFVuxm3ug9YS0eToBggMpcO3YqPHHh8pUlVb1GEu66VrZjII2s1iXZTs5x1p6Um-KiEgzlHLwj9Sli25Zd-18lnG-XvT0aLzQz0t1PP3zwmM2Aw6cf4PUGrtI1yQ:1of92K:sBOTkiVIcr66C5kOd6CshvcihRQ/1/0
IP 72.14.178.174:0
File type ASCII text, with very long lines (431), with no line terminators
Hash f90a0fe6a940d06e2d5c02c77793e806
ef9995af4bdc91f8768529aa07458c129cee3365
c486b5f0986c49fe4219841b3dd94932c6cde810ca5b62c1cc1b2a3a2327c2d3
Analyzer Verdict Alert fortinet Malware
GET /mtm/async/.eJxdi0sOwjAMBe_iZYlilnzEWZAbuW2kOAmJC5EQdycFVuxm3ug9YS0eToBggMpcO3YqPHHh8pUlVb1GEu66VrZjII2s1iXZTs5x1p6Um-KiEgzlHLwj9Sli25Zd-18lnG-XvT0aLzQz0t1PP3zwmM2Aw6cf4PUGrtI1yQ:1of92K:sBOTkiVIcr66C5kOd6CshvcihRQ/1/0 HTTP/1.1
Host: use.blatnet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://use.blatnet.com/
Connection: keep-alive
HTTP/1.1 200 OK
server: openresty/1.13.6.1
date: Mon, 03 Oct 2022 00:10:20 GMT
content-type: text/html; charset=utf-8
content-length: 431
x-mtm-path: 0
vary: Accept-Language
content-language: en
set-cookie: mtm_delivered=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:1of92K:LWLh6e7QMEvmLULlKUsDGxRJXzk; expires=Mon, 03-Oct-2022 01:10:20 GMT; Max-Age=3600; Path=/
connection: close
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
18.165.201.103200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 18.165.201.103:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Sun, 02 Oct 2022 23:32:56 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Sun, 02 Oct 2022 23:47:43 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 90927d233f1a615dc244e8b198aa1f04.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: Omc32gCQVa3mT7PmlaYVcTd4i_NefF4lxBwCGtuTdsdvvQFpU36kkA==
Age: 2248
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4eb30b4a4234809cf7d5f89fa1f6ceeb
797242aab2f13c820050aa9accd11b7b950cd177
ce9d833a0ac321a908184b655d6632c481f758a04a9c936a7c303bb253444146
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1412
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 03 Oct 2022 00:10:21 GMT
Last-Modified: Sun, 02 Oct 2022 23:46:49 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
www1.blatnet.com/?tm=1&subid4=1664755820.0275060000&kw=options&KW1=Dedicated%20Gaming%20Servers&KW2=B2B%20Travel%20Booking%20System&KW3=Online%20Career%20Counseling%20Programs&KW4=Get%20An%20Online%20Degree&KW5=B2B%20Travel%20Booking%20System&KW6=Get%20An%20Online%20Degree&KW7=Social%20Media%20Automation%20Marketing%20Software&KW8=Lowest%20Car%20Insurance%20Rates&KW9=B2B%20Travel%20Booking%20System&searchbox=0&backfill=0
13.248.148.254200 OK 2.5 kB URL HTTP/1.1 www1.blatnet.com/?tm=1&subid4=1664755820.0275060000&kw=options&KW1=Dedicated%20Gaming%20Servers&KW2=B2B%20Travel%20Booking%20System&KW3=Online%20Career%20Counseling%20Programs&KW4=Get%20An%20Online%20Degree&KW5=B2B%20Travel%20Booking%20System&KW6=Get%20An%20Online%20Degree&KW7=Social%20Media%20Automation%20Marketing%20Software&KW8=Lowest%20Car%20Insurance%20Rates&KW9=B2B%20Travel%20Booking%20System&searchbox=0&backfill=0
IP 13.248.148.254:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2210)
Hash 504253093e5d8597b07a23dca9e94814
11bf19acb0ba6ef15ac79314529a7b1615a019cb
7eb02cf481ba1783fd238b2ae564c05252da63919af0aadd5dc10a62127bf02f
GET /?tm=1&subid4=1664755820.0275060000&kw=options&KW1=Dedicated%20Gaming%20Servers&KW2=B2B%20Travel%20Booking%20System&KW3=Online%20Career%20Counseling%20Programs&KW4=Get%20An%20Online%20Degree&KW5=B2B%20Travel%20Booking%20System&KW6=Get%20An%20Online%20Degree&KW7=Social%20Media%20Automation%20Marketing%20Software&KW8=Lowest%20Car%20Insurance%20Rates&KW9=B2B%20Travel%20Booking%20System&searchbox=0&backfill=0 HTTP/1.1
Host: www1.blatnet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://use.blatnet.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 00:10:21 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-Redirect: zeropark_zeroclick
X-Template: tpl_CleanPeppermintBlack_twoclick
X-Language: norwegian
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Content-Encoding: gzip
push.services.mozilla.com/
54.200.107.47101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.200.107.47:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: XYmt3zRklgWp/0ReogFPzw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: S02x3RJBZaf5c07B53VIOLMomR4=
d38psrni17bvxu.cloudfront.net/scripts/js3.js
18.164.66.123200 OK 1.1 kB URL HTTP/1.1 d38psrni17bvxu.cloudfront.net/scripts/js3.js
IP 18.164.66.123:0
File type ASCII text, with very long lines (506)
Hash 64b79b43df8fbf2c5d082964b9116a68
dc3c763519baf0f4c32bb60bfc429651a491ea01
c57e9feec209e3ea5eb1d75a1ba6fa277242a3df250055be8446052b51e58637
GET /scripts/js3.js HTTP/1.1
Host: d38psrni17bvxu.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.blatnet.com/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 1134
Connection: keep-alive
Server: nginx
Date: Sun, 02 Oct 2022 09:15:55 GMT
Last-Modified: Tue, 17 Aug 2021 09:17:22 GMT
Accept-Ranges: bytes
ETag: "611b7ea2-46e"
X-Cache: Hit from cloudfront
Via: 1.1 d07f455dc14de1d5060686170d34b904.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P4
X-Amz-Cf-Id: wRjigb6EquQsXcMWwyDQsZV5rpQYrRZhP7TQiu4t8Vsg78Mhso-64Q==
Age: 53666
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18637
Expires: Mon, 03 Oct 2022 05:20:59 GMT
Date: Mon, 03 Oct 2022 00:10:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18637
Expires: Mon, 03 Oct 2022 05:20:59 GMT
Date: Mon, 03 Oct 2022 00:10:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18637
Expires: Mon, 03 Oct 2022 05:20:59 GMT
Date: Mon, 03 Oct 2022 00:10:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18637
Expires: Mon, 03 Oct 2022 05:20:59 GMT
Date: Mon, 03 Oct 2022 00:10:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18637
Expires: Mon, 03 Oct 2022 05:20:59 GMT
Date: Mon, 03 Oct 2022 00:10:22 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 206fb65e75dbadf119512f71e0b78402
58ff0bf8ce7528b303d28bab01a80ad721705569
56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5sAzc5Ewv4g6Wqq6JJiLylG3Jyy_nlWrr5Oteeo6ebEgq7Rvss4XaQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 04:41:39 GMT
age: 70123
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03b7062f-240a-4f4d-ad79-37d1f94149ac.jpeg
34.120.237.76200 OK 3.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03b7062f-240a-4f4d-ad79-37d1f94149ac.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 91e5b15dccbb83a0f39485fe28e485de
cf5e7db62e00f0a0bd97a166b495017f4b8c32cc
eb36bd86d79256e3e3949edca70634c63c287782deabbeabbe20bc9c809ba5a0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03b7062f-240a-4f4d-ad79-37d1f94149ac.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3375
x-amzn-requestid: 82b47289-522e-496f-a563-45907b75ca72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZQKJjFg3IAMF4gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63365709-66e37db704129f0c27c1fb60;Sampled=0
x-amzn-remapped-date: Fri, 30 Sep 2022 02:40:09 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: M5hKNT4P0WuvKLtXGcSLnxQi-oGgyMqv4Lljht-qe8ZdwhouoiD2aA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 22:49:10 GMT
age: 4872
etag: "cf5e7db62e00f0a0bd97a166b495017f4b8c32cc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5f7661f-9945-4971-aac6-d15570c4d954.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5f7661f-9945-4971-aac6-d15570c4d954.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6a90e53b55500427aed06efa3a9baa8c
43a66cd291d1413d7147a29b2a7b27277a443f0b
2cf5790e81140bc56b46163787f84c54a07f58e90001837624f426aafa8031c5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5f7661f-9945-4971-aac6-d15570c4d954.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8277
x-amzn-requestid: a7d76241-7da1-4c84-9c73-2e3a71b81b52
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZTMfEGHiIAMFpmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63378df9-3727a65235e4dbc60cc11cf0;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 00:46:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8n1l3bN8ykztmC-wGNH_w7xASHFplZa2LvHs8psQ146XILdvEHLWgw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 16:41:13 GMT
age: 26949
etag: "43a66cd291d1413d7147a29b2a7b27277a443f0b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F943d6a55-696e-4fd8-901a-a9ab097959d7.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F943d6a55-696e-4fd8-901a-a9ab097959d7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8bb7613964aef696917cb85a6d0bcac4
89ce0e6d742144439a96ace034adae4e7e167311
24b100b10aa041effad83e9379447f4f62d95dcf6eb27a6b093a7caaa484f964
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F943d6a55-696e-4fd8-901a-a9ab097959d7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6321
x-amzn-requestid: 605adeca-4345-4481-999e-d50ebc123767
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZZWabGsgIAMFcSw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a0442-68542d1b56697ab33dd63941;Sampled=0
x-amzn-remapped-date: Sun, 02 Oct 2022 21:36:02 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: QUAqebzhQ9iSZGYTDNVjov5z04lkVREs5HYXMjFziBKHiTJIEFtIyg==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 21:45:25 GMT
age: 8697
etag: "89ce0e6d742144439a96ace034adae4e7e167311"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd0be942-f345-4da4-974e-a9fe16b90b3c.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd0be942-f345-4da4-974e-a9fe16b90b3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 523edd86af4757d0bc5fa5b3b8a3596a
8118ee462077c291b9d6f1402b85b55a9ceba8c2
c27de9970317636df8c4a517a9ed38e573235b351bf92c9b8bb1f964cd100031
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd0be942-f345-4da4-974e-a9fe16b90b3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9083
x-amzn-requestid: fda71fd3-ef25-4a63-94ae-1bfc8aef8d14
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZZXD2H0DIAMFjrg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a054b-198915fc17ce3dab571b7575;Sampled=0
x-amzn-remapped-date: Sun, 02 Oct 2022 21:40:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BobS2JU-TqDuL8q31SVlerM15cRoMhL1oM5MkL7MVhY9RZG_Ukp5yA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 21:46:36 GMT
age: 8626
etag: "8118ee462077c291b9d6f1402b85b55a9ceba8c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb166fe-e146-46cf-a93b-905deefbae87.jpeg
34.120.237.76200 OK 3.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb166fe-e146-46cf-a93b-905deefbae87.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9a96da552b7ddb23b1f2fb506de2aed4
2926163d332abfb70f9565a45f7546f2efdc7716
2da0e160e0e8a116ab76614e29609e43d132cc9e56636ad91399f33e53346a23
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb166fe-e146-46cf-a93b-905deefbae87.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3272
x-amzn-requestid: b2ace456-0abd-416c-9c1c-799eb5c73269
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZZWabG8zIAMF-PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a0442-3e61e1e9283bd78e76731b47;Sampled=0
x-amzn-remapped-date: Sun, 02 Oct 2022 21:36:02 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: oHEIG44XMoSu6XEYOPW8LNkvZPbIrgo6KuLHluknV7Hgfv-3IOWL2A==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 22:10:59 GMT
age: 7163
etag: "2926163d332abfb70f9565a45f7546f2efdc7716"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www1.blatnet.com/track.php?domain=blatnet.com&toggle=browserjs&uid=MTY2NDc1NTgyMS4zMjc0OjI1MzExYzg1ZjRjMDVhYTA4NWQxYWIwMGJlZDEyYzc1YjVhZmE4YTAyOTFkZTg1OTM2ZjE4ODYwYzY1MzJmOGY6NjMzYTI4NmQ0ZmVmNQ%3D%3D
13.248.148.254200 OK 20 B URL HTTP/1.1 www1.blatnet.com/track.php?domain=blatnet.com&toggle=browserjs&uid=MTY2NDc1NTgyMS4zMjc0OjI1MzExYzg1ZjRjMDVhYTA4NWQxYWIwMGJlZDEyYzc1YjVhZmE4YTAyOTFkZTg1OTM2ZjE4ODYwYzY1MzJmOGY6NjMzYTI4NmQ0ZmVmNQ%3D%3D
IP 13.248.148.254:0
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /track.php?domain=blatnet.com&toggle=browserjs&uid=MTY2NDc1NTgyMS4zMjc0OjI1MzExYzg1ZjRjMDVhYTA4NWQxYWIwMGJlZDEyYzc1YjVhZmE4YTAyOTFkZTg1OTM2ZjE4ODYwYzY1MzJmOGY6NjMzYTI4NmQ0ZmVmNQ%3D%3D HTTP/1.1
Host: www1.blatnet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.blatnet.com/?tm=1&subid4=1664755820.0275060000&kw=options&KW1=Dedicated%20Gaming%20Servers&KW2=B2B%20Travel%20Booking%20System&KW3=Online%20Career%20Counseling%20Programs&KW4=Get%20An%20Online%20Degree&KW5=B2B%20Travel%20Booking%20System&KW6=Get%20An%20Online%20Degree&KW7=Social%20Media%20Automation%20Marketing%20Software&KW8=Lowest%20Car%20Insurance%20Rates&KW9=B2B%20Travel%20Booking%20System&searchbox=0&backfill=0
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 00:10:22 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-Custom-Track: browserjs
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Access-Control-Allow-Origin: *
Content-Encoding: gzip
www1.blatnet.com/ls.php
13.248.148.254201 Created 0 B IP 13.248.148.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
POST /ls.php HTTP/1.1
Host: www1.blatnet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 2162
Origin: http://www1.blatnet.com
Connection: keep-alive
Referer: http://www1.blatnet.com/?tm=1&subid4=1664755820.0275060000&kw=options&KW1=Dedicated%20Gaming%20Servers&KW2=B2B%20Travel%20Booking%20System&KW3=Online%20Career%20Counseling%20Programs&KW4=Get%20An%20Online%20Degree&KW5=B2B%20Travel%20Booking%20System&KW6=Get%20An%20Online%20Degree&KW7=Social%20Media%20Automation%20Marketing%20Software&KW8=Lowest%20Car%20Insurance%20Rates&KW9=B2B%20Travel%20Booking%20System&searchbox=0&backfill=0
HTTP/1.1 201 Created
Date: Mon, 03 Oct 2022 00:10:22 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
X-Log-Success: 633a286ef0a7223f3e3604ba
Charset: utf-8
Access-Control-Allow-Origin: http://www1.blatnet.com
Access-Control-Allow-Methods: POST, OPTIONS
Access-Control-Max-Age: 86400
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_C9zXq9UlCGeB5oNL2Vouk2yf9z7nwsAJwWdpPqfBuH5+DZDmegPMwTtz1A2fRm60hK5FusETYWIELLuUczWamA==
www1.blatnet.com/favicon.ico
13.248.148.254200 OK 0 B URL HTTP/1.1 www1.blatnet.com/favicon.ico
IP 13.248.148.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: www1.blatnet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.blatnet.com/?tm=1&subid4=1664755820.0275060000&kw=options&KW1=Dedicated%20Gaming%20Servers&KW2=B2B%20Travel%20Booking%20System&KW3=Online%20Career%20Counseling%20Programs&KW4=Get%20An%20Online%20Degree&KW5=B2B%20Travel%20Booking%20System&KW6=Get%20An%20Online%20Degree&KW7=Social%20Media%20Automation%20Marketing%20Software&KW8=Lowest%20Car%20Insurance%20Rates&KW9=B2B%20Travel%20Booking%20System&searchbox=0&backfill=0
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 00:10:22 GMT
Content-Type: image/x-icon
Content-Length: 0
Connection: keep-alive
Server: nginx
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
ETag: "5ebab1f0-0"
Accept-Ranges: bytes
www1.blatnet.com/track.php?click=8bc5311fea51f5d88ad90580a49f43a22d8f5165&domain=blatnet.com&uid=MTY2NDc1NTgyMS4zMjc0OjI1MzExYzg1ZjRjMDVhYTA4NWQxYWIwMGJlZDEyYzc1YjVhZmE4YTAyOTFkZTg1OTM2ZjE4ODYwYzY1MzJmOGY6NjMzYTI4NmQ0ZmVmNQ%3D%3D&ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTF8fHx8fHw2MzNhMjg2ZDRmZWRlfHx8MTY2NDc1NTgyMS43MjgzfDhkYmY3MGViMWI5Yjc4YTY1YjYwMzgyYjEzMjQ4MjlmYWYwMmFhZGN8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXw3NGQxYWIyYWFmNzZmZDUwMjQzMWUxMjA5ZWRmODJkNjRjM2Q2ZTdkfDB8ZHAtdGVhbWludGVybmV0MTJfM3BofDB8MA%3D%3D&kw=&search=&pcat=&rxid=&bucket=&clientID=&adtest=off
13.248.148.254200 OK 20 B URL HTTP/1.1 www1.blatnet.com/track.php?click=8bc5311fea51f5d88ad90580a49f43a22d8f5165&domain=blatnet.com&uid=MTY2NDc1NTgyMS4zMjc0OjI1MzExYzg1ZjRjMDVhYTA4NWQxYWIwMGJlZDEyYzc1YjVhZmE4YTAyOTFkZTg1OTM2ZjE4ODYwYzY1MzJmOGY6NjMzYTI4NmQ0ZmVmNQ%3D%3D&ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTF8fHx8fHw2MzNhMjg2ZDRmZWRlfHx8MTY2NDc1NTgyMS43MjgzfDhkYmY3MGViMWI5Yjc4YTY1YjYwMzgyYjEzMjQ4MjlmYWYwMmFhZGN8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXw3NGQxYWIyYWFmNzZmZDUwMjQzMWUxMjA5ZWRmODJkNjRjM2Q2ZTdkfDB8ZHAtdGVhbWludGVybmV0MTJfM3BofDB8MA%3D%3D&kw=&search=&pcat=&rxid=&bucket=&clientID=&adtest=off
IP 13.248.148.254:0
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /track.php?click=8bc5311fea51f5d88ad90580a49f43a22d8f5165&domain=blatnet.com&uid=MTY2NDc1NTgyMS4zMjc0OjI1MzExYzg1ZjRjMDVhYTA4NWQxYWIwMGJlZDEyYzc1YjVhZmE4YTAyOTFkZTg1OTM2ZjE4ODYwYzY1MzJmOGY6NjMzYTI4NmQ0ZmVmNQ%3D%3D&ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTF8fHx8fHw2MzNhMjg2ZDRmZWRlfHx8MTY2NDc1NTgyMS43MjgzfDhkYmY3MGViMWI5Yjc4YTY1YjYwMzgyYjEzMjQ4MjlmYWYwMmFhZGN8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXw3NGQxYWIyYWFmNzZmZDUwMjQzMWUxMjA5ZWRmODJkNjRjM2Q2ZTdkfDB8ZHAtdGVhbWludGVybmV0MTJfM3BofDB8MA%3D%3D&kw=&search=&pcat=&rxid=&bucket=&clientID=&adtest=off HTTP/1.1
Host: www1.blatnet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.blatnet.com/?tm=1&subid4=1664755820.0275060000&kw=options&KW1=Dedicated%20Gaming%20Servers&KW2=B2B%20Travel%20Booking%20System&KW3=Online%20Career%20Counseling%20Programs&KW4=Get%20An%20Online%20Degree&KW5=B2B%20Travel%20Booking%20System&KW6=Get%20An%20Online%20Degree&KW7=Social%20Media%20Automation%20Marketing%20Software&KW8=Lowest%20Car%20Insurance%20Rates&KW9=B2B%20Travel%20Booking%20System&searchbox=0&backfill=0
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 00:10:22 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-View-Match: true
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Access-Control-Allow-Origin: *
Content-Encoding: gzip
irene-eux.com/zcvisitor/c547a3f1-42af-11ed-97b6-0af6aa2f0693/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=69448440-0fb4-11eb-bafe-0afaf647e889
34.239.209.41200 996 B URL HTTP/1.1 irene-eux.com/zcvisitor/c547a3f1-42af-11ed-97b6-0af6aa2f0693/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=69448440-0fb4-11eb-bafe-0afaf647e889
IP 34.239.209.41:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f6469fb3355f283dde9ea7f7032a4a79
5811e470826062d9793ac71545bef975dae7149d
526aaefa31edf52a3f3d8048bd6faea7f2932090b825c739d4d2f048dca32048
GET /zcvisitor/c547a3f1-42af-11ed-97b6-0af6aa2f0693/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=69448440-0fb4-11eb-bafe-0afaf647e889 HTTP/1.1
Host: irene-eux.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.blatnet.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Date: Mon, 03 Oct 2022 00:10:23 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Server: iWTAtNun
irene-eux.com/zcredirect?visitid=c547a3f1-42af-11ed-97b6-0af6aa2f0693&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false
34.239.209.41200 692 B URL HTTP/1.1 irene-eux.com/zcredirect?visitid=c547a3f1-42af-11ed-97b6-0af6aa2f0693&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false
IP 34.239.209.41:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (303)
Hash 8f731aa164ad9bd70209c75aa0dd5c0e
f9e8c9c7c01c6bd7524998b0d45476d96911e3b4
9c6be895243525ba7eaae5354892677243f96505c86c5ba243d142f92047050d
GET /zcredirect?visitid=c547a3f1-42af-11ed-97b6-0af6aa2f0693&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false HTTP/1.1
Host: irene-eux.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://irene-eux.com/zcvisitor/c547a3f1-42af-11ed-97b6-0af6aa2f0693/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=69448440-0fb4-11eb-bafe-0afaf647e889
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Date: Mon, 03 Oct 2022 00:10:23 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
redirected: JS
Server: LXvWxNGd
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 611685257b784bde479adb6468d27171
2fb054504ef474ea0bdd5e84a02f3246f5aab8cb
fd671d6902c6bd81bd494e819a63ee3a461d0a1d533c91ce11b1978ea3085cbb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3324
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 03 Oct 2022 00:10:23 GMT
Last-Modified: Sun, 02 Oct 2022 23:15:00 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash adbf71c3ed4820b73d632ca9b2b69136
e31f670916f28c933cb79c7a28b47a2b298e8223
fd74aa8f41d84d171ab127ea58f33b5267f015afeaef4b161be3b6ee40b9d0c6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3066
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 03 Oct 2022 00:10:23 GMT
Last-Modified: Sun, 02 Oct 2022 23:19:17 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
bit.ly/2zkHJsK?utm_content=charlie-old-kgjy4d4mm5&utm_keyword=dedicated+gaming+servers%2Cb2b+travel+booking+system%2Conline+career+counseling+programs%2Cget+an+online+degree%2Csocial+media+automation+marketing+software%2Clowest+car+insurance+rates
67.199.248.11301 Moved Permanently 133 B URL HTTP/2 bit.ly/2zkHJsK?utm_content=charlie-old-kgjy4d4mm5&utm_keyword=dedicated+gaming+servers%2Cb2b+travel+booking+system%2Conline+career+counseling+programs%2Cget+an+online+degree%2Csocial+media+automation+marketing+software%2Clowest+car+insurance+rates
IP 67.199.248.11:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash fac4f22819054b3bcc5318fbd82717e5
007e7754ba5b50b781cbcd63fc47142b2d7fba58
0a833b8649fca4d9cdc9d9ba7683ec8971f2a6538a64d5b658946331a7d4e931
GET /2zkHJsK?utm_content=charlie-old-kgjy4d4mm5&utm_keyword=dedicated+gaming+servers%2Cb2b+travel+booking+system%2Conline+career+counseling+programs%2Cget+an+online+degree%2Csocial+media+automation+marketing+software%2Clowest+car+insurance+rates HTTP/1.1
Host: bit.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://irene-eux.com/
Cookie: _bit=m4n70G-fbf313ce899bb62166-00t
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Mon, 03 Oct 2022 00:10:23 GMT
content-type: text/html; charset=utf-8
content-length: 133
cache-control: private, max-age=90
location: https://www.booking.com/index.html?aid=1858279
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 611685257b784bde479adb6468d27171
2fb054504ef474ea0bdd5e84a02f3246f5aab8cb
fd671d6902c6bd81bd494e819a63ee3a461d0a1d533c91ce11b1978ea3085cbb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3324
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 03 Oct 2022 00:10:23 GMT
Last-Modified: Sun, 02 Oct 2022 23:15:00 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash adbf71c3ed4820b73d632ca9b2b69136
e31f670916f28c933cb79c7a28b47a2b298e8223
fd74aa8f41d84d171ab127ea58f33b5267f015afeaef4b161be3b6ee40b9d0c6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3066
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 03 Oct 2022 00:10:23 GMT
Last-Modified: Sun, 02 Oct 2022 23:19:17 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
irene-eux.com/favicon.ico
34.239.209.41404 653 B URL HTTP/1.1 irene-eux.com/favicon.ico
IP 34.239.209.41:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (649), with no line terminators
Hash ba2732b1b2fa2626ffaa15f62f9e7d66
203d4e7fbb1d80449d6e4e1f3ae7a9bf8625debe
879861cb72fe9fbb476dab246021c4c83b4066327de2529e05ec54d3afb0a1c8
GET /favicon.ico HTTP/1.1
Host: irene-eux.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://irene-eux.com/zcredirect?visitid=c547a3f1-42af-11ed-97b6-0af6aa2f0693&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false
HTTP/1.1 404
Date: Mon, 03 Oct 2022 00:10:23 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 653
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Content-Language: en
Server: CRimBcKI
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash eb65228b8ec22a9329693c308df0444f
f8e15257398f3bba5525f5c514568f4ff80ad542
1b0ecbbe16b510184ab5ab785882ac78a012c73dc23294fd2dd70723f8e822f2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6291
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 03 Oct 2022 00:10:23 GMT
Last-Modified: Sun, 02 Oct 2022 22:25:32 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 314
cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/OtAutoBlock.js
104.16.148.64200 OK 6.7 kB URL HTTP/2 cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/OtAutoBlock.js
IP 104.16.148.64:0
File type ASCII text, with very long lines (37276)
Hash 7a162a3385ec2f2fbe0be1fdd55afde3
5a37630a30526266cdaa387a32f50f20bae5ffd3
f6143442002776683e3fe10ee2b1aa2fa3d3fba2e491ea7eb1044591adb8c515
GET /consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/OtAutoBlock.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 03 Oct 2022 00:10:24 GMT
content-type: application/x-javascript
content-length: 6671
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: ehYqM4XsLy++C+H91Vr94w==
last-modified: Thu, 29 Sep 2022 08:34:29 GMT
etag: 0x8DAA1F56D1BE371
x-ms-request-id: b230c9bc-701e-015d-01de-d36eb7000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 12862
expires: Mon, 03 Oct 2022 04:10:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7541745c6cebb4fd-OSL
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/crossorigin_check_cloudfront_sd/2454015045ef79168d452ff4e7f30bdadff0aa81.js
143.204.68.33200 OK 95 B URL HTTP/2 cf.bstatic.com/static/js/crossorigin_check_cloudfront_sd/2454015045ef79168d452ff4e7f30bdadff0aa81.js
IP 143.204.68.33:0
File type ASCII text, with no line terminators
Hash 335be8900580e9c3875dba57334294ae
a86597d2ddfa410df13bceca86fdf9a2291fe798
8a882fd19a15567e53a5c3c08d22cdab714fa87734ed92d854c4e8fdf3940b1f
GET /static/js/crossorigin_check_cloudfront_sd/2454015045ef79168d452ff4e7f30bdadff0aa81.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 95
server: nginx
date: Sat, 03 Sep 2022 01:42:37 GMT
last-modified: Wed, 10 Apr 2019 11:21:38 GMT
etag: "5cadd1c2-5f"
expires: Mon, 03 Oct 2022 01:42:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 c29e813f981bfce75709b36f6e4555a2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: afqhCX-LInnbIVorUbA4vEWuQkoA81gh_EquuND__flqlDGYAXBFTA==
age: 2586467
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/incentives_cloudfront_sd.iq_ltr/4790f5d4864238abca32ccb145fc127b65f6a442.css
143.204.68.33200 OK 8.6 kB URL HTTP/2 cf.bstatic.com/static/css/incentives_cloudfront_sd.iq_ltr/4790f5d4864238abca32ccb145fc127b65f6a442.css
IP 143.204.68.33:0
File type ASCII text, with very long lines (6093), with no line terminators
Hash 7c45716937f74c8a9fc7223cda1b6aa0
26d744981a90219fa5b1843901d58a685b5ff7f2
c1509cd9400e53030d9480bfe50fc3eded064adaa0c8c390b10592b430e8bbaa
GET /static/css/incentives_cloudfront_sd.iq_ltr/4790f5d4864238abca32ccb145fc127b65f6a442.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Thu, 29 Sep 2022 11:13:20 GMT
last-modified: Thu, 29 Sep 2022 11:09:29 GMT
etag: W/"63357ce9-17cd"
expires: Sat, 29 Oct 2022 11:13:20 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: L0rC8boZ9eAQ032JmyqGZtZnUc3G8CgG51Xn6VUB8dCLGNrnHylw_A==
age: 305824
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/main_exps_cloudfront_sd.iq_ltr/e58e3f47a330d7788f15a22380f810b826a87118.css
143.204.68.33200 OK 23 kB URL HTTP/2 cf.bstatic.com/static/css/main_exps_cloudfront_sd.iq_ltr/e58e3f47a330d7788f15a22380f810b826a87118.css
IP 143.204.68.33:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 0b6bfabfe8cc3663731f6e8dc44e4379
2459d745020c0892dce4709a6d3ea7b9fca8f612
61c8bb3a77ea9e507ff9aee4c025fcee03ef76821aa34532fc9f4b51f27e158c
GET /static/css/main_exps_cloudfront_sd.iq_ltr/e58e3f47a330d7788f15a22380f810b826a87118.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Fri, 30 Sep 2022 03:52:02 GMT
last-modified: Fri, 30 Sep 2022 03:03:54 GMT
etag: W/"63365c9a-1f962"
expires: Sun, 30 Oct 2022 03:52:02 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: 4sUNVzMP8Aroo_Wuk-0qyOz1hUcrCn-od97CB3cu6JSrJYeCrUvCtA==
age: 245902
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.22.0/otBannerSdk.js
104.16.148.64200 OK 76 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.22.0/otBannerSdk.js
IP 104.16.148.64:0
File type ASCII text, with very long lines (65455)
Hash 523e98a35ea92fd6e6d32d6728a8c98e
e0951a7bfa0700679aa41a03394286723e697d93
a746202b022948dfc0461cf24b3be5b01d0c08b924b23545f3cba6e2d15b41a9
GET /scripttemplates/6.22.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 03 Oct 2022 00:10:24 GMT
content-type: application/javascript
content-length: 75930
content-encoding: gzip
content-md5: Uj6Yo16pL9bm0y1nKKjJjg==
last-modified: Thu, 19 Aug 2021 02:39:18 GMT
etag: 0x8D962BA8ADAEF03
x-ms-request-id: 18163f5d-b01e-0083-086c-c4784b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 30153759
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7541745dbdfeb4fd-OSL
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/core-deps-inlinedet_cloudfront_sd/6da0bf621035bb8a2f9c756d6a89dda03b2f7864.js
143.204.68.33200 OK 31 kB URL HTTP/2 cf.bstatic.com/static/js/core-deps-inlinedet_cloudfront_sd/6da0bf621035bb8a2f9c756d6a89dda03b2f7864.js
IP 143.204.68.33:0
File type Unicode text, UTF-8 text, with very long lines (37718)
Hash 4216d4dff989acd8df6078a57b22b01c
ad812ded89547ee9e32c10e69145e763c56f789f
82c00854592abf98c0e075b3726f64b81452e3fcf9d0400bc431c8cabac27763
GET /static/js/core-deps-inlinedet_cloudfront_sd/6da0bf621035bb8a2f9c756d6a89dda03b2f7864.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
last-modified: Wed, 22 Jun 2022 10:40:45 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sun, 02 Oct 2022 23:22:26 GMT
expires: Tue, 01 Nov 2022 23:22:26 GMT
cache-control: max-age=2592000
etag: W/"62b2f1ad-949e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c29e813f981bfce75709b36f6e4555a2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: Ag-3_tGMluPGqb32AxULrwUalbnx4PiGyofQOn4IGXzFBC6OFaKchA==
age: 2878
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/index_cloudfront_sd.iq_ltr/8d885185a27474ba884b6490504a85e91663ebef.css
143.204.68.33200 OK 55 kB URL HTTP/2 cf.bstatic.com/static/css/index_cloudfront_sd.iq_ltr/8d885185a27474ba884b6490504a85e91663ebef.css
IP 143.204.68.33:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 0a85e907f1095eb9aaad02db15173b9e
e3653c3f4e58325455b8edad32b2fcb968b4c7e4
1adb82cebee4fd6c2c3732f069ee16bf7041c869d8da1219137b7b64a200db17
GET /static/css/index_cloudfront_sd.iq_ltr/8d885185a27474ba884b6490504a85e91663ebef.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Fri, 30 Sep 2022 06:49:38 GMT
last-modified: Fri, 30 Sep 2022 03:03:54 GMT
etag: W/"63365c9a-57390"
expires: Sun, 30 Oct 2022 06:49:38 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: OLY-M-v5KR_cPyPFsBs_pUM9OV3kVJixIwC8hvQO9D1nA2NNQ2n_yw==
age: 235246
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/736.6d8c9c3c.chunk.css
143.204.68.33200 OK 852 B URL HTTP/2 cf.bstatic.com/psb/capla/static/css/736.6d8c9c3c.chunk.css
IP 143.204.68.33:0
File type ASCII text, with very long lines (738)
Hash 7a373db1d52f9aecd313d2e91e36aae3
4a69e416f297d2186f1580bbd0e996a9d3b932e5
4a8eebe3cc8acedc73afe8b068140753dd564e94dc3feb049a9d354638cd94bb
GET /psb/capla/static/css/736.6d8c9c3c.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 852
server: nginx
date: Thu, 08 Sep 2022 01:24:12 GMT
etag: "7a373db1d52f9aecd313d2e91e36aae3"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Thu, 02 Jun 2022 10:36:44 GMT
x-amz-expiration: expiry-date="Fri, 30 Sep 2022 10:36:44 GMT", rule-id=""
expires: Sat, 08 Oct 2022 01:24:12 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: qQADZ8OAqC0Cubb3vNmDAVAwZKL1BAgvS04eop9zX6bGBV6CgaO9Sg==
age: 2155573
X-Firefox-Spdy: h2
www.booking.com/index.html?aid=1858279
37.10.0.220200 OK 109 kB URL HTTP/1.1 www.booking.com/index.html?aid=1858279
IP 37.10.0.220:0
File type HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10948)
Size 109 kB (109350 bytes)
Hash bfddea23a2f3875d58b104063de3c50b
fc9718cadf71d5bd5dd52d5626c2cc146869f50e
e4a68e9864f55de6345160a413bb7c50c160139fbad7bb6d6835e1d9f20ceaea
GET /index.html?aid=1858279 HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://irene-eux.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
server: nginx
date: Mon, 03 Oct 2022 00:10:23 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
cache-control: private
vary: Accept-Encoding, User-Agent
content-encoding: br
link: <https://cf.bstatic.com/static/css/gprof_icons_cloudfront_sd.iq_ltr/3e99cb75fbe767ff3448f8c592761c50982e9683.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/incentives_cloudfront_sd.iq_ltr/4790f5d4864238abca32ccb145fc127b65f6a442.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/index_cloudfront_sd.iq_ltr/8d885185a27474ba884b6490504a85e91663ebef.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/main_cloudfront_sd.iq_ltr/8ec016a94a3ce302aae9870fec2e4492e7bde85a.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/main_exps_cloudfront_sd.iq_ltr/e58e3f47a330d7788f15a22380f810b826a87118.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/1592fd9161d73a23f793a04b8bb510282db4040d.css>; rel=preload; as=style
nel: {"report_to":"default","max_age":604800}
report-to: {"group":"default","endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":604800}
set-cookie: _pxhd=PSOanJZSbPwTx1gxjwN%252FGPeafUWbDphp%252FJiMmPvApxBbtsBU86vD3GJuIDjZQ2nsvxD6lhFYu1OD9ZrBdkI40A%253D%253D%253Aaf9gPC5melr1hbAFYtSsVRBg7XvF9wdNGNnS4sLWho96Y09fTSX6dk6HNxIDhHgsD0DiSVvKBfS-Y3uZRQ856hEvs0asRwllCO9JVmHlwf4%253D; domain=booking.com; path=/; expires=Tue, 03-Oct-2023 00:10:23 GMT
px_init=0; domain=booking.com; expires=Tue, 03-Sep-2075 00:20:46 GMT; SameSite=Strict; secure; HttpOnly
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbbmD9q%2B5pe3XLv6oH3Hq5KGIQpQL7rLGtkj7xfcUN9dIwjZtiM8OGueFjwkk6DWwkWexR9V6Rr75THzgvGXbiFTdPr685HBFXQCqsEDzggS8VCp7Sa9anPHaB9zkrO6y5FPVpplTxxMZuih4xcl0ReHAq41tAv1%2BZMn3M8Qm3sCY%3D; domain=.booking.com; path=/; expires=Sat, 02-Oct-2027 00:10:23 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf.bstatic.com/psb/capla/static/css/513.67992ef6.chunk.css
143.204.68.33200 OK 1.9 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/513.67992ef6.chunk.css
IP 143.204.68.33:0
File type ASCII text, with very long lines (4139)
Hash 9a9ad025bc9f193be8648586aa709465
d6224772c8b488afa9e9cfe01229dc894c67f52f
e51bae59417d615d467c812a2557f8ff626bd6487bcbbf9268fb03a403d9944b
GET /psb/capla/static/css/513.67992ef6.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Fri, 23 Sep 2022 02:45:53 GMT
etag: W/"fd62035d6489dce6fa68bb70d6449135"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Thu, 02 Jun 2022 10:36:44 GMT
x-amz-expiration: expiry-date="Fri, 30 Sep 2022 10:36:44 GMT", rule-id=""
expires: Sun, 23 Oct 2022 02:45:53 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: ENzfNFq_-3eIaEGoKkAEt2hRU6W44_dRbFU6GLtU8QYbTTKemw2cbQ==
age: 854672
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/527.5cfe5a7c.chunk.css
143.204.68.33200 OK 1.8 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/527.5cfe5a7c.chunk.css
IP 143.204.68.33:0
File type ASCII text, with very long lines (4088)
Hash c2795a7ca357db4b2c4fcc482e76ed2b
5cd86655da6d9ebe050bd9aea90b24a4a26a6afc
4bf5b376f5f2a2513dcdff341be66dd11e9cf3fe43c9e25fb4219a76c4222e79
GET /psb/capla/static/css/527.5cfe5a7c.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Mon, 05 Sep 2022 14:07:25 GMT
etag: W/"5780be2e0054c1083a696c6716470185"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 02 Sep 2022 09:22:51 GMT
x-amz-expiration: expiry-date="Sat, 31 Dec 2022 09:22:51 GMT", rule-id=""
expires: Wed, 05 Oct 2022 14:07:25 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: M8sntmTonWOnO-ZXJcA-OssgbNp0XsKlM7Y4JbNGOzCaO-sdl34VAA==
age: 2368980
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/jquery_cloudfront_sd/e1e8c0e862309cb4caf3c0d5fbea48bfb8eaad42.js
143.204.68.33200 OK 47 kB URL HTTP/2 cf.bstatic.com/static/js/jquery_cloudfront_sd/e1e8c0e862309cb4caf3c0d5fbea48bfb8eaad42.js
IP 143.204.68.33:0
File type ASCII text, with very long lines (60582)
Hash 5fdce3c601d2e1ab4b38baf9b66085f7
d8e1802341e368448500bdeaf4d4e72786db0e4f
cb13600ca39bcb7633031206e4e60a8e7d59a8e5075ff3e7647508ed7ece0d0f
GET /static/js/jquery_cloudfront_sd/e1e8c0e862309cb4caf3c0d5fbea48bfb8eaad42.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 08 Sep 2022 01:22:01 GMT
last-modified: Tue, 28 Jun 2022 15:19:38 GMT
etag: W/"62bb1c0a-19a42"
expires: Sat, 08 Oct 2022 01:22:01 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c29e813f981bfce75709b36f6e4555a2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: Ybh7C5wnJgZrj0QJB3oJZVOO9WJ3HijaLyh6i4NsIRC2zMnmHON_GQ==
age: 2155703
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/lazy_load_images_cloudfront_sd/77204d4da4aa41b08b1a4062c8e66e4629550994.js
143.204.68.33200 OK 1.8 kB URL HTTP/2 cf.bstatic.com/static/js/lazy_load_images_cloudfront_sd/77204d4da4aa41b08b1a4062c8e66e4629550994.js
IP 143.204.68.33:0
File type ASCII text, with very long lines (5619), with no line terminators
Hash d209470c72a6118dceb1fe1d50ad2c7c
3298acf1eb22cd9d780a8730b77d8de29dac9eb2
6b52b08125f636a2fc1dfb706ac3f5c783336c0263715973712c42a515342260
GET /static/js/lazy_load_images_cloudfront_sd/77204d4da4aa41b08b1a4062c8e66e4629550994.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 23 Sep 2022 02:45:52 GMT
last-modified: Tue, 04 Feb 2020 10:19:57 GMT
etag: W/"5e39454d-15f3"
expires: Sun, 23 Oct 2022 02:45:52 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c29e813f981bfce75709b36f6e4555a2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: lPbGzLtsEVxYSvCuOwSqcWxMJKlPXeIYkVS26_PzNPioRrlj8Mxg2A==
age: 854672
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/gprof_icons_cloudfront_sd.iq_ltr/3e99cb75fbe767ff3448f8c592761c50982e9683.css
143.204.68.33200 OK 29 kB URL HTTP/2 cf.bstatic.com/static/css/gprof_icons_cloudfront_sd.iq_ltr/3e99cb75fbe767ff3448f8c592761c50982e9683.css
IP 143.204.68.33:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 2563dffa49f33221959f37edb241222a
8c70e01c63a29faf8e55e1271aa67b0cdc94dd32
32d993703710ea57f85c41106ea370edeb3ca287478de62d523a3b672b972102
GET /static/css/gprof_icons_cloudfront_sd.iq_ltr/3e99cb75fbe767ff3448f8c592761c50982e9683.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Thu, 29 Sep 2022 11:13:20 GMT
last-modified: Thu, 29 Sep 2022 11:09:28 GMT
etag: W/"63357ce8-29310"
expires: Sat, 29 Oct 2022 11:13:20 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: xLbws4mkksLtVmj7GW7gIEx_9xdPA6b3A5IBKBm2ToBeK5E-Nuj5kg==
age: 305824
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/index_cloudfront_sd/5ef95df7a10b0da8bf969f9680df5d3b3655245d.js
143.204.68.33200 OK 18 kB URL HTTP/2 cf.bstatic.com/static/js/index_cloudfront_sd/5ef95df7a10b0da8bf969f9680df5d3b3655245d.js
IP 143.204.68.33:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 3e7848fc6fac58a0435ce8b8cb0e365c
188ab0a1e9348d7a02494ddb9f583a850721f3b4
a0ef4b010cad2b4ac25503bb6bb0d1144f13ce941249b09e4c1f0108682e70d6
GET /static/js/index_cloudfront_sd/5ef95df7a10b0da8bf969f9680df5d3b3655245d.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 30 Sep 2022 06:49:38 GMT
last-modified: Fri, 30 Sep 2022 03:03:55 GMT
etag: W/"63365c9b-12d12"
expires: Sun, 30 Oct 2022 06:49:38 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c29e813f981bfce75709b36f6e4555a2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: XQTTVxyrYtnltTSo4mgbuPBQ90Weq50Nx9op8qQ1uFAatL_GjT2XxA==
age: 235246
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/ar/9cce2b91336709016282f06432a8b6366069e0c2.png
143.204.68.33200 OK 476 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/ar/9cce2b91336709016282f06432a8b6366069e0c2.png
IP 143.204.68.33:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash d9198265fdc862184216b90209391ce3
6bf0123a310523ff9b392f5ef7bdb159ac3633fa
687a7e5fd4c9d0ecf220bc143a6b473dd3c2bfda30e7ac01fde79d39b5791720
GET /static/img/flags/new/48-squared/ar/9cce2b91336709016282f06432a8b6366069e0c2.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 476
server: nginx
date: Thu, 08 Sep 2022 01:24:41 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-1dc"
expires: Sat, 08 Oct 2022 01:24:41 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: VHKG7hg7yy2vVjvw9sk0gPb3gviLzK5g7c2WQ2-FVrQV8BC81TfrgQ==
age: 2155544
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/970.cd231b48.chunk.css
143.204.68.33200 OK 2.2 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/970.cd231b48.chunk.css
IP 143.204.68.33:0
File type ASCII text, with very long lines (4345)
Hash 26e100f11f1bbeb4b841e94ce9155e13
8b7c8d743d97238c19ac367b0a4756ab4ab7036b
1c0f3473ff8279d95ffb790434a11eabe3bb04ba6c23f6b6a8fc944e6f395782
GET /psb/capla/static/css/970.cd231b48.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Mon, 26 Sep 2022 09:18:25 GMT
etag: W/"91237c4b103b96f6ab17f30c94b12a4a"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Mon, 26 Sep 2022 09:05:07 GMT
x-amz-expiration: expiry-date="Tue, 24 Jan 2023 09:05:07 GMT", rule-id=""
expires: Wed, 26 Oct 2022 09:18:25 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: e36F5v-zaPss2U0QKkUZOHmSmEJjvr_fYiLCVP06vHOERQuGwmCEUg==
age: 571920
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/catalonia/8578246a75d8b9dceaacb174072d0c6acafcc2df.png
143.204.68.33200 OK 155 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/catalonia/8578246a75d8b9dceaacb174072d0c6acafcc2df.png
IP 143.204.68.33:0
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 9aa827fa86c5f431d15c5b23a78f0f9d
7a82e7b12cb63ae4afabddd04a83c94c468dc777
c6d8a7fe3c884ebb35313519fb7187cd6609b4c2ede2ddedcafb6ef8a9905310
GET /static/img/flags/new/48-squared/catalonia/8578246a75d8b9dceaacb174072d0c6acafcc2df.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 155
server: nginx
date: Sun, 02 Oct 2022 07:31:18 GMT
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
etag: "5f560e08-9b"
expires: Tue, 01 Nov 2022 07:31:18 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: ouLW9w6TeebFqopoIVI7kqdLnZy0tRKnPdcTnzqWmD5Dnw9srsEC7w==
age: 59947
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/main_cloudfront_sd.iq_ltr/8ec016a94a3ce302aae9870fec2e4492e7bde85a.css
143.204.68.33200 OK 62 kB URL HTTP/2 cf.bstatic.com/static/css/main_cloudfront_sd.iq_ltr/8ec016a94a3ce302aae9870fec2e4492e7bde85a.css
IP 143.204.68.33:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 69af237c222d81642606ec7a46555ff1
b9a045881148b5b0c32a977ce3394fffd65019ed
9888ae5a24ac1f67efdf4843c261085b578cfe833b1a1dae0017937df2641f49
GET /static/css/main_cloudfront_sd.iq_ltr/8ec016a94a3ce302aae9870fec2e4492e7bde85a.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Thu, 29 Sep 2022 11:13:20 GMT
last-modified: Thu, 29 Sep 2022 11:09:29 GMT
etag: W/"63357ce9-8154a"
expires: Sat, 29 Oct 2022 11:13:20 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: 4bIVcusAMndmpV7BuMOf-oGY24qvzTo_B2ziDsayC_WWLnU_xJFHfg==
age: 305824
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/1592fd9161d73a23f793a04b8bb510282db4040d.css
143.204.68.33200 OK 15 kB URL HTTP/2 cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/1592fd9161d73a23f793a04b8bb510282db4040d.css
IP 143.204.68.33:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash ef61352ecf3836a1c5405c7096772272
b629dc8482e4945f3e66ef82df68bab26231727f
9c117add45005715903fb8a8fe9f063af7a1f019f9279ca86903ede166aaa50e
GET /static/css/xp-index-sb_cloudfront_sd.iq_ltr/1592fd9161d73a23f793a04b8bb510282db4040d.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Thu, 29 Sep 2022 11:13:20 GMT
last-modified: Thu, 29 Sep 2022 11:09:30 GMT
etag: W/"63357cea-11a9c"
expires: Sat, 29 Oct 2022 11:13:20 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: WmIWi5nUi_chy1GKTin2N3f7_1vAViettAhv9lIPDGh-9EriqRmJkw==
age: 305824
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/br/0cf5e55d996fdcf96a2d31733addf5c10bad1f74.png
143.204.68.33200 OK 717 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/br/0cf5e55d996fdcf96a2d31733addf5c10bad1f74.png
IP 143.204.68.33:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 26d9170b24250c48a61e05da682d06ee
42c33ea1b9376b9fb627d44fc56822672d5c0ac7
6873da5317b00141936efa7ff6b53e80aa1323ccff9c6a89f846534b725225b0
GET /static/img/flags/new/48-squared/br/0cf5e55d996fdcf96a2d31733addf5c10bad1f74.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 717
server: nginx
date: Mon, 19 Sep 2022 07:01:13 GMT
last-modified: Mon, 07 Sep 2020 10:40:09 GMT
etag: "5f560e09-2cd"
expires: Wed, 19 Oct 2022 07:01:13 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: 0Sro_tT49pKkrpXOGq6ENF04Z8EwsjgBlhrLOI7QWrpsVNbHPf8aTA==
age: 1184952
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/fi/465d3b73ff07d1d696cb5dd26fbb91097c175e1b.png
143.204.68.33200 OK 206 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/fi/465d3b73ff07d1d696cb5dd26fbb91097c175e1b.png
IP 143.204.68.33:0
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 9a822a64512f9ddc675a4225c98c7a3c
53f9de2996c049705b7f67f3e6b644e4e665b3bc
10b4eec5fd4c999a3d217c78ad0037396263602c5ad035613063a2b147231318
GET /static/img/flags/new/48-squared/fi/465d3b73ff07d1d696cb5dd26fbb91097c175e1b.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 206
server: nginx
date: Sun, 04 Sep 2022 00:00:19 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-ce"
expires: Tue, 04 Oct 2022 00:00:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: TMDENaskDtDRrrA61_-RsGNmOXrJDghr2zU0MUW4Hg86aaHXjgThVQ==
age: 2506206
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/se/5e126775c25a54a24956ddcc72c8bbcaeed20872.png
143.204.68.33200 OK 198 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/se/5e126775c25a54a24956ddcc72c8bbcaeed20872.png
IP 143.204.68.33:0
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 13c8c96bf421d8616a6e22d2932a0b76
09c8720b6e8dec10ae55c6c71b83508a97d7103e
3e94a1d0a60d1870f9117b8b5ec1379df6040dead195531942a48a3ac57d11d9
GET /static/img/flags/new/48-squared/se/5e126775c25a54a24956ddcc72c8bbcaeed20872.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 198
server: nginx
date: Sat, 01 Oct 2022 08:54:37 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-c6"
expires: Mon, 31 Oct 2022 08:54:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: AEv4ibL0Xn-ZW8zhA-90GVVbpVBJHiHmx3JvcVTUiTIlYvNcky_i7g==
age: 141348
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/dk/744575dd4e87590a543b7c8cbacaef6c3de4e4d2.png
143.204.68.33200 OK 175 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/dk/744575dd4e87590a543b7c8cbacaef6c3de4e4d2.png
IP 143.204.68.33:0
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 3275f76ec51c7d87571ef5a5f3e6ddea
995f9025c29c6ab965c3a29af50ae25c9a390ab0
a60eac8ef0e0d0dddef152891451b215d955373071d2bd32db7d4b2053fbaf08
GET /static/img/flags/new/48-squared/dk/744575dd4e87590a543b7c8cbacaef6c3de4e4d2.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 175
server: nginx
date: Thu, 08 Sep 2022 21:46:39 GMT
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
etag: "5f560e08-af"
expires: Sat, 08 Oct 2022 21:46:39 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: oQTueQgxbLWlmlORGi0MY8P575CzA6DByc67ojVhTnWfg043qusOOA==
age: 2082226
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/cz/32002e60fead55ce886ff9827dfcf4af8cf4e277.png
143.204.68.33200 OK 342 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/cz/32002e60fead55ce886ff9827dfcf4af8cf4e277.png
IP 143.204.68.33:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 20b632d22c7839d87dd7ab7628839ee7
e9d3232561f2812c02b6fb4e33251aaf620cd40b
ad11693269039a9a7ded88cb46a03eb85ee6f4cf29fa76376ba32c5dd9eb6612
GET /static/img/flags/new/48-squared/cz/32002e60fead55ce886ff9827dfcf4af8cf4e277.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 342
server: nginx
date: Tue, 06 Sep 2022 05:57:56 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-156"
expires: Thu, 06 Oct 2022 05:57:56 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: nv2UOKF8zf3AK3GGuOGLHQjrICFhAhQ9Gmkhh9SC5Z53ae_y44F5vA==
age: 2311949
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/hu/fc7cb24c5c7cb9de74a74fad271d6838daabc4cb.png
143.204.68.33200 OK 133 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/hu/fc7cb24c5c7cb9de74a74fad271d6838daabc4cb.png
IP 143.204.68.33:0
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 9206b6715881ae75735ed659e808e94f
eed3ea9303a65b3b7f64f73d1a8499373aa26c0b
70c5cf7c80ec64caf926271a8832ca79342bd1d9203bae584f8c441aee10ddf0
GET /static/img/flags/new/48-squared/hu/fc7cb24c5c7cb9de74a74fad271d6838daabc4cb.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 133
server: nginx
date: Sun, 02 Oct 2022 07:31:18 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-85"
expires: Tue, 01 Nov 2022 07:31:18 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: ZE5vA67mg_sUyJTnqkmbiRi8s_mwgbvSbXVOcp8nvxiuzoQcWxU4DQ==
age: 59947
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/ro/2d67b91f7beb87bd9286975da3e6dadc70d9c64b.png
143.204.68.33200 OK 153 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/ro/2d67b91f7beb87bd9286975da3e6dadc70d9c64b.png
IP 143.204.68.33:0
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 1b1f1d1d57a2cd65c38748ed1e165aa7
58f0710ccff2655b04eb6ed0a2c86ec64eea5223
881978c2d219d2d9e3f0c5584e489e06e1948d0b4f9c5d7d3104a61ddb2e7372
GET /static/img/flags/new/48-squared/ro/2d67b91f7beb87bd9286975da3e6dadc70d9c64b.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 153
server: nginx
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sat, 01 Oct 2022 08:54:37 GMT
expires: Mon, 31 Oct 2022 08:54:37 GMT
cache-control: max-age=2592000
etag: "5f560e08-99"
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: LcNMapeESA6-Rhna_clpPmSYOlrZJe_IkG46rbPlryIVGvqb6gqdlg==
age: 141348
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/cn/5a221730f540facc62563bfa6192ce155a9f677e.png
143.204.68.33200 OK 332 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/cn/5a221730f540facc62563bfa6192ce155a9f677e.png
IP 143.204.68.33:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash a12df81751d392f648a2785d2de72a05
39156191b034cde7e591faa6677153fae77e6770
3e3cbba48022f930c07d6bdea530464cca93dd1c5473c2e75548cabd56c3d5bc
GET /static/img/flags/new/48-squared/cn/5a221730f540facc62563bfa6192ce155a9f677e.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 332
server: nginx
date: Tue, 06 Sep 2022 01:25:57 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-14c"
expires: Thu, 06 Oct 2022 01:25:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: joJDcpXD7mHVrDNErAIgMWsG3v6vCWBU6aunthDjFodFRZaQLsJL1g==
age: 2328268
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/z4/ced4751e6ac2cbb9884a5878fff59a4e24c3e386.png
143.204.68.33200 OK 547 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/z4/ced4751e6ac2cbb9884a5878fff59a4e24c3e386.png
IP 143.204.68.33:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash b20acca9869722ee22594c1cb79aa80c
8547e31b2cb93793703caa352c4cc7c08daf9f39
b93aa481a175851c5691c27239100c897b7e42e2d06c19df05f9b5de422fde26
GET /static/img/flags/new/48-squared/z4/ced4751e6ac2cbb9884a5878fff59a4e24c3e386.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 547
server: nginx
date: Sun, 04 Sep 2022 00:00:19 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-223"
expires: Tue, 04 Oct 2022 00:00:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: cOy3bmeea3Wwj7hZMp2nc1l37Og4zQiHcn08TEVceZAm-3drSh_2mg==
age: 2506206
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/pl/4d6b6e962b0b049a03924fc618b959395d60ae39.png
143.204.68.33200 OK 121 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/pl/4d6b6e962b0b049a03924fc618b959395d60ae39.png
IP 143.204.68.33:0
File type PNG image data, 48 x 48, 2-bit colormap, non-interlaced\012- data
Hash f5426bca09243b610e38d3c14e677064
e2ab7e2d6380dc421aa64648c11ddab3b2233e49
2f404d211c6a0c69dcac5b38ae18a1fc57840c4bd330b1bd64def6bf8b748d64
GET /static/img/flags/new/48-squared/pl/4d6b6e962b0b049a03924fc618b959395d60ae39.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 121
server: nginx
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Mon, 26 Sep 2022 02:02:11 GMT
expires: Wed, 26 Oct 2022 02:02:11 GMT
cache-control: max-age=2592000
etag: "5f560e08-79"
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: gH80n7OBUnMk8IV92gO3REPkbya3NcNkFAaWwNzp6lxO1RfeDP27Vg==
age: 598094
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/ru/2277320023a64803843c36ca6aa48ad77523dd0d.png
143.204.68.33200 OK 139 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/ru/2277320023a64803843c36ca6aa48ad77523dd0d.png
IP 143.204.68.33:0
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash e788f0359c4ebb5d12da0db2e46b5cae
7ef0e8f52982a8fe7a25e27011fca7716231a52b
6f71c4adcbf4ee888f31ee757fd52cdb61881a9aca9f8a571c00470df055185c
GET /static/img/flags/new/48-squared/ru/2277320023a64803843c36ca6aa48ad77523dd0d.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 139
server: nginx
date: Fri, 23 Sep 2022 02:47:12 GMT
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
etag: "5f560e08-8b"
expires: Sun, 23 Oct 2022 02:47:12 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: OjXhKABBN-SJrP7P_8r_bq2NbK8DAGVhBy_jfl_KdcoEfgMVz1qOpA==
age: 854593
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/gr/e0e42a97a7b860fc9be71954262902f2a4e94aa6.png
143.204.68.33200 OK 215 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/gr/e0e42a97a7b860fc9be71954262902f2a4e94aa6.png
IP 143.204.68.33:0
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 0c3be548c24fe302a6765670af14cb20
b14e18e90b32ec75ee248f748dee5aa6d7609822
84b0beb08ce848e9e03e1e2ef34d5cb421a429661bb837750a1c37cb44b05145
GET /static/img/flags/new/48-squared/gr/e0e42a97a7b860fc9be71954262902f2a4e94aa6.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 215
server: nginx
date: Tue, 06 Sep 2022 19:35:40 GMT
last-modified: Mon, 07 Sep 2020 10:40:09 GMT
etag: "5f560e09-d7"
expires: Thu, 06 Oct 2022 19:35:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: aPl8eR0RIh9A-1CPNlGvfOCUh8nOaf1d1e751GSj8YuftFsxQ8l0xA==
age: 2262885
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/tr/f7ad0cb74f4ea5e7193cb6029c7f977e9786cfa2.png
143.204.68.33200 OK 400 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/tr/f7ad0cb74f4ea5e7193cb6029c7f977e9786cfa2.png
IP 143.204.68.33:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 87321ae6e71b9b09c681058e91a468b5
3fb7872894da2daef6f66e73d8fd2f7b78b3b533
2c1c4611b00fa1da5b4cf45ac2c7d25744c4bf0897fab2e00833ff0aefdf5023
GET /static/img/flags/new/48-squared/tr/f7ad0cb74f4ea5e7193cb6029c7f977e9786cfa2.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 400
server: nginx
date: Wed, 07 Sep 2022 05:58:14 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-190"
expires: Fri, 07 Oct 2022 05:58:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: eOrZPTfqb4P8mkQjDQOqn8ERb95eB6ZRgnriLaAItFr0OgpIGKnB0Q==
age: 2225531
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/bg/540f2da5fee31b7385af127619ab5ca4fc3783b5.png
143.204.68.33200 OK 99 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/bg/540f2da5fee31b7385af127619ab5ca4fc3783b5.png
IP 143.204.68.33:0
File type PNG image data, 48 x 48, 2-bit colormap, non-interlaced\012- data
Hash 49c081307e8d5ea32a47fb077905f2de
7b0a263172247879fd6255ab19f26aa45695f380
7ea8e075feac7c0c8a0cdecdf923fdab30b1b0d13336af312484b4f73b926dd9
GET /static/img/flags/new/48-squared/bg/540f2da5fee31b7385af127619ab5ca4fc3783b5.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 99
server: nginx
date: Mon, 05 Sep 2022 06:03:31 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-63"
expires: Wed, 05 Oct 2022 06:03:31 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: _GJe-DzhoEkDW_GVIcPvrWgKX3Fp4EqvFXIq4aOyek5GHHYJlMt11g==
age: 2398014
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/sa/44ab510f37755d1d9d4c4dfa9b1f25bed9b2a95c.png
143.204.68.33200 OK 534 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/sa/44ab510f37755d1d9d4c4dfa9b1f25bed9b2a95c.png
IP 143.204.68.33:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash c5ba34de4a5b15c8e5966ce4ac6dac7d
d87ca11092c06c059948bca64995703ce9646f98
3f32c4cf32cba619d3e8a5737d713c0d2633fd369f668a8fc038c525e6b20512
GET /static/img/flags/new/48-squared/sa/44ab510f37755d1d9d4c4dfa9b1f25bed9b2a95c.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 534
server: nginx
date: Sat, 10 Sep 2022 00:25:37 GMT
last-modified: Mon, 07 Sep 2020 10:40:09 GMT
etag: "5f560e09-216"
expires: Mon, 10 Oct 2022 00:25:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: w_dreDkV_nVSDKNw3q2tcRIbAiuIAMu0ULmYJVvZrofYCrJvGvQ8OQ==
age: 1986288
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/kr/4cb76b458a73ca4c1de034c7623475278d363ce6.png
143.204.68.33200 OK 870 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/kr/4cb76b458a73ca4c1de034c7623475278d363ce6.png
IP 143.204.68.33:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 52c9301117c90f4f0f02957fb952f163
7e947ebefa1352e7282626e90e68442896c606e6
9f31f4ed393b17f37ea3ec9572bdda6ac8c1a3e3ee410743ac2b69f4717b4425
GET /static/img/flags/new/48-squared/kr/4cb76b458a73ca4c1de034c7623475278d363ce6.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 870
server: nginx
date: Thu, 08 Sep 2022 01:24:41 GMT
last-modified: Mon, 07 Sep 2020 10:40:09 GMT
etag: "5f560e09-366"
expires: Sat, 08 Oct 2022 01:24:41 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: bfmycQ_1izMrAdvEsNW6_3rZxXetftaDXVnxfWdSGOem9k6DG6iVQg==
age: 2155544
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/error_catcher_bec_cloudfront_sd/282f83b6049fe9bacd964cb6ea8a6d5447528b14.js
143.204.68.33200 OK 3.8 kB URL HTTP/2 cf.bstatic.com/static/js/error_catcher_bec_cloudfront_sd/282f83b6049fe9bacd964cb6ea8a6d5447528b14.js
IP 143.204.68.33:0
File type ASCII text, with very long lines (6029), with no line terminators
Hash 85bf7f267620eb8fa445552c67525c03
2c3a15d675d6b651bb9730b2099642bcae674d15
cdd133dc93fbc41e12aca4264059687cba39705cb81e062b66adc86987cd7306
GET /static/js/error_catcher_bec_cloudfront_sd/282f83b6049fe9bacd964cb6ea8a6d5447528b14.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 05 Sep 2022 06:00:48 GMT
last-modified: Mon, 06 Sep 2021 09:43:20 GMT
etag: W/"6135e2b8-178d"
expires: Wed, 05 Oct 2022 06:00:48 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c29e813f981bfce75709b36f6e4555a2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: uApbXNoUmcyN09MftUaTZqGljaWs61LpLg5bAZ68eie953S-a-xwrg==
age: 2398176
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/lv/393103a26c1d5f1fbd7d9674732bbdfc42296399.png
143.204.68.33200 OK 142 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/lv/393103a26c1d5f1fbd7d9674732bbdfc42296399.png
IP 143.204.68.33:0
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash ddb2ed817fb9ff1e8fa103e303126d92
db7c6839bb7acec47406626cd0db92f5ae203a7f
90f140a70c71755fed1d533e2f837406fb1a6dde2d18d4318d65fb90bad9332c
GET /static/img/flags/new/48-squared/lv/393103a26c1d5f1fbd7d9674732bbdfc42296399.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 142
server: nginx
date: Thu, 08 Sep 2022 01:24:41 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-8e"
expires: Sat, 08 Oct 2022 01:24:41 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: HSKkR91t2fTnuyMB4S01iiy29c9fVFT_cTH5V29ScPR5qDI39noOhQ==
age: 2155544
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/ua/2ea50f1c1fb480c4557a5578f71657fc3152c3a1.png
143.204.68.33200 OK 134 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/ua/2ea50f1c1fb480c4557a5578f71657fc3152c3a1.png
IP 143.204.68.33:0
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash f4db0dc55878fe02bb1efff8fc8dfe00
233ad877840f93216679c862e72be0d38a3c1132
4d5747ee4bfc01093d27ec5833305780e8797e361214269f85ca824274d7b4ed
GET /static/img/flags/new/48-squared/ua/2ea50f1c1fb480c4557a5578f71657fc3152c3a1.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 134
server: nginx
date: Mon, 26 Sep 2022 02:04:37 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-86"
expires: Wed, 26 Oct 2022 02:04:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: cCS4lRsagJW7S1SGFIXn_9q4wm92gZo80iz66eKZUB2HHhiinAxWPQ==
age: 597948
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/id/e7d3d00965d8c994a72807b43b21c648250cf906.png
143.204.68.33200 OK 121 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/id/e7d3d00965d8c994a72807b43b21c648250cf906.png
IP 143.204.68.33:0
File type PNG image data, 48 x 48, 2-bit colormap, non-interlaced\012- data
Hash 40b14f52ee0e84a6b7f2395438df4e89
3a1b4751f73b37112ea8abe9d8e1e43fb0b5dcc1
0839f5f4321e755f66f00aebe4ecad12e81de7d87b73600f621f3e4067bec79b
GET /static/img/flags/new/48-squared/id/e7d3d00965d8c994a72807b43b21c648250cf906.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 121
server: nginx
date: Sat, 03 Sep 2022 20:03:05 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-79"
expires: Mon, 03 Oct 2022 20:03:05 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: gLNIycHzhFTUzjY3EEOUD9GfRsokfPLwX2oSfx_SE4VV5EQeI5NYzQ==
age: 2520440
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/ee/509074558f4fe7c71ceed57584dec0382274dd16.png
143.204.68.33200 OK 139 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/ee/509074558f4fe7c71ceed57584dec0382274dd16.png
IP 143.204.68.33:0
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 12aaeead084db9341a3afbd71d0b123d
5e048ae4bd509d08cd5a17d99d5430e104da7013
8bc3c2630c36b9713f3d002ed54e49c7671ec960ef0d8b02e32f2fdba2af6cb6
GET /static/img/flags/new/48-squared/ee/509074558f4fe7c71ceed57584dec0382274dd16.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 139
server: nginx
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Mon, 26 Sep 2022 02:04:37 GMT
expires: Wed, 26 Oct 2022 02:04:37 GMT
cache-control: max-age=2592000
etag: "5f55f887-8b"
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: khNSuSX33pxS0uF3CAYKQfjvE9QLMp0HS_HhbvCj4DywEFItY4DHZg==
age: 597948
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/th/53a76d6856962953d739d07ac61f04adee50a3d1.png
143.204.68.33200 OK 150 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/th/53a76d6856962953d739d07ac61f04adee50a3d1.png
IP 143.204.68.33:0
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash ff949a5fc9c52cbb395e15afd6cbbf53
a63fbcbe8300ee1a16399b46c1fd300f1b9e6b8b
67b2c242d9fb8390f051c11070e23792de15f513d53175ce7730484a7c789ef9
GET /static/img/flags/new/48-squared/th/53a76d6856962953d739d07ac61f04adee50a3d1.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 150
server: nginx
date: Tue, 06 Sep 2022 19:35:40 GMT
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
etag: "5f560e08-96"
expires: Thu, 06 Oct 2022 19:35:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: UYOVupEBTtqFTKSMxzjoGWz65YXOyi8WRLO2kA7y0VCw2VbS_fOVZw==
age: 2262885
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/my/6d811cf6127cea0a957ca0243546a03339fa19ac.png
143.204.68.33200 OK 499 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/my/6d811cf6127cea0a957ca0243546a03339fa19ac.png
IP 143.204.68.33:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 822b7bd88d4723227ae587567f978918
767884bb4c8904e55bd5c943aec9a867984137b4
e5f05ae53de8b16cc10e8bc868e9c5d9786930973bdce663ee64d206c04388ef
GET /static/img/flags/new/48-squared/my/6d811cf6127cea0a957ca0243546a03339fa19ac.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 499
server: nginx
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Fri, 30 Sep 2022 06:42:17 GMT
expires: Sun, 30 Oct 2022 06:42:17 GMT
cache-control: max-age=2592000
etag: "5f55f887-1f3"
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: hqBm1K0ElWn3UJboUVJ5sLQ2hGCCBHII-lZEZ0oV50cn4ZDFE8ZnXA==
age: 235688
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/hr/e7a46f4dad977aecafa6a3680972e0c137a1bc41.png
143.204.68.33200 OK 815 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/hr/e7a46f4dad977aecafa6a3680972e0c137a1bc41.png
IP 143.204.68.33:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 0964eedc0f19b195664c3f75bb22c6ab
22b1a1a6062e7f5fcad6bcb023bb5fd87d22e07d
fff82225f56361a415858aa788a2d640331f82f6d9462ac9dbcf39e9023b5a6f
GET /static/img/flags/new/48-squared/hr/e7a46f4dad977aecafa6a3680972e0c137a1bc41.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 815
server: nginx
date: Thu, 08 Sep 2022 01:24:41 GMT
last-modified: Mon, 07 Sep 2020 10:40:09 GMT
etag: "5f560e09-32f"
expires: Sat, 08 Oct 2022 01:24:41 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: b7cJlMDqvByAddDyuH3BIAZLPHdnlnn2c5LW6ym796umxAZkFC9wMQ==
age: 2155544
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/lt/5bb712a60a82b7e075deba5b102aa36348bbb255.png
143.204.68.33200 OK 140 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/lt/5bb712a60a82b7e075deba5b102aa36348bbb255.png
IP 143.204.68.33:0
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 7c4ca938a6f3b20c4b24b24fc16afb3d
8e9569b41f3b36e88ddba9f85627dc6d48764e88
f28938e268eb5573c2e34f320e61a80b20599684a3fc502a01e29ec696701c8e
GET /static/img/flags/new/48-squared/lt/5bb712a60a82b7e075deba5b102aa36348bbb255.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 140
server: nginx
date: Tue, 06 Sep 2022 18:49:44 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-8c"
expires: Thu, 06 Oct 2022 18:49:44 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: WbIoxP4jl0xLJfhO0Ev6jopo1uiDeqHyVanogDrCubwn7tjsJXeOEQ==
age: 2265641
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/sk/29e3667f5aca74c157af9225d5a97a74a41e52ef.png
143.204.68.33200 OK 573 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/sk/29e3667f5aca74c157af9225d5a97a74a41e52ef.png
IP 143.204.68.33:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 243c2ae0611333fde9bfb06dd47f6300
2deae15cb1ea681950abf0456e0ddffeb940b158
5acf315305da0ed67d79de0983465c4baf314b34456a0f8df7f0faad0e5dd34b
GET /static/img/flags/new/48-squared/sk/29e3667f5aca74c157af9225d5a97a74a41e52ef.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 573
server: nginx
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Wed, 28 Sep 2022 03:28:38 GMT
expires: Fri, 28 Oct 2022 03:28:38 GMT
cache-control: max-age=2592000
etag: "5f55f887-23d"
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: 6rNtErL9XE4mglNzBuzeHUPNrT7GDjqGyrqbhUFV6lHeqLyGsgMBbg==
age: 420107
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/rs/c1bc4fc1d782713cfec17a071dadca6b755a233e.png
143.204.68.33200 OK 1.4 kB URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/rs/c1bc4fc1d782713cfec17a071dadca6b755a233e.png
IP 143.204.68.33:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash b9379a24299e89e8a3a7f67e055583f3
9fcee25113376edc2308bd7e28d30a4a924cbd58
b2d098301fdd75a1c93c85f1f349262d5f7ca3de8a6eaad518095258c19e8a1b
GET /static/img/flags/new/48-squared/rs/c1bc4fc1d782713cfec17a071dadca6b755a233e.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1386
server: nginx
date: Sun, 04 Sep 2022 07:11:31 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-56a"
expires: Tue, 04 Oct 2022 07:11:31 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: Vl2Sg6EFTASXKHuNELAPH9vC6_odRcnlmlnvz_K_44pqY3JSChbGAg==
age: 2480334
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/si/f0619cdd45548522566c6d72a660ddc011906184.png
143.204.68.33200 OK 442 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/si/f0619cdd45548522566c6d72a660ddc011906184.png
IP 143.204.68.33:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 05cbcc07c185368a084a9309aa914d61
8e11596590eacbb80269c99400b4a87e02e2583b
211e73d3bad99d5286e8f2378547adbf522b0f047e45aeed0d5dea6741488444
GET /static/img/flags/new/48-squared/si/f0619cdd45548522566c6d72a660ddc011906184.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 442
server: nginx
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sun, 25 Sep 2022 03:56:34 GMT
expires: Tue, 25 Oct 2022 03:56:34 GMT
cache-control: max-age=2592000
etag: "5f55f887-1ba"
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: 1wTHLy5KhkvEXVN8V1NHZ-0RqwoBBy-P_t7sDGjh4XWYE37EFvSj8w==
age: 677631
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/vn/90b17da2aafaebce7b0c34189747e1e10dba8041.png
143.204.68.33200 OK 333 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/vn/90b17da2aafaebce7b0c34189747e1e10dba8041.png
IP 143.204.68.33:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 3a0135828216d13780bbd76bc0d6617c
613be32ee6beabb7a18a107f6c9bdd0c5d6dada9
37cb08ba3ee531e1f6b5a8a3fbf4be6013a3a9a0442286b07aeb2c947530cf04
GET /static/img/flags/new/48-squared/vn/90b17da2aafaebce7b0c34189747e1e10dba8041.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 333
server: nginx
date: Tue, 27 Sep 2022 07:29:39 GMT
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
etag: "5f560e08-14d"
expires: Thu, 27 Oct 2022 07:29:39 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: jTGsoWJZbVx-Krf9AW9JOU7CisZOenBDTo0jtJmCxMKpYuLqqDJYdA==
age: 492046
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/ph/7048127466891462116ee2774154585fb5607aba.png
143.204.68.33200 OK 663 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/ph/7048127466891462116ee2774154585fb5607aba.png
IP 143.204.68.33:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 47f9d3fafada1c4125dd5abbef01d314
5e36976caec0396e0847c76c413a0189ff2cbbf6
a99fa5dc87d4d9a32c930d644a790c6dfba9073d0a11f6cc000ce599b9ba00c7
GET /static/img/flags/new/48-squared/ph/7048127466891462116ee2774154585fb5607aba.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 663
server: nginx
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Mon, 19 Sep 2022 07:01:13 GMT
expires: Wed, 19 Oct 2022 07:01:13 GMT
cache-control: max-age=2592000
etag: "5f560e08-297"
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: Dk4zUDaDKC8iOVXO6QrA-RX-AH6CmFwT5DNxltZtjTjpbz4ZB9Z60Q==
age: 1184952
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/is/7d644655f895f8e346b964dc18cf5b6608a98d52.png
143.204.68.33200 OK 298 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/is/7d644655f895f8e346b964dc18cf5b6608a98d52.png
IP 143.204.68.33:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 227c1e1707b8caf0b17266f188b3b099
294b9da49254731a4cb0fe538d9bc8ef44d1dd92
e1e54eb27d785ff86901a728964f40183e845b8301f9196e163e5fe919bcfb5f
GET /static/img/flags/new/48-squared/is/7d644655f895f8e346b964dc18cf5b6608a98d52.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 298
server: nginx
date: Thu, 29 Sep 2022 04:28:07 GMT
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
etag: "5f560e08-12a"
expires: Sat, 29 Oct 2022 04:28:07 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: IockSZ0YsL4Byb8EI-kDDnXfzyY2FenB_kXBRUJJi3lw9N35dHPoog==
age: 330138
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/square250/644297.webp?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o=
143.204.68.33200 OK 15 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/square250/644297.webp?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o=
IP 143.204.68.33:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ce0484a62e175f311523b75f140b4211
eba0d06f0c622ecf224822c856430ad707ebdfc1
edf0c0cf1cb6689a78e3b4cd11ff14de3c5947583b589dfbb87379023a484991
GET /xdata/images/city/square250/644297.webp?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 14598
server: nginx
date: Thu, 08 Sep 2022 07:43:21 GMT
etag: "01b5f5a4303fc935943a5022d206e5d990352225"
expires: Sat, 08 Oct 2022 07:43:21 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: EooydZxTjdMKWyznUrjGQbDqib0ijCkT3zg7CPihfJwduyQxbux9ww==
age: 2132824
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/square250/740935.webp?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o=
143.204.68.33200 OK 10 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/square250/740935.webp?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o=
IP 143.204.68.33:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f46894a16ebb993b489c7eb4947b2321
a3ebffea1f61cb837f7512345ea899a5908cbf0a
ea3005e0d81b1ad9fded26293f7442ee24413818af379d68bed7d717e8b5f7f2
GET /xdata/images/city/square250/740935.webp?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 10180
server: nginx
date: Sun, 04 Sep 2022 07:26:49 GMT
etag: "608f6c63299ff46e23ef77be6773ea373eeea6ab"
expires: Tue, 04 Oct 2022 07:26:49 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: qOmPjP7FeDXZv5aSH-BLP7y41OaEgK8GoD61Xn7rxmnStV5jDx-Yrg==
age: 2479416
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/square250/644293.webp?k=24c08396bd44343c9dcc78f0df41e114bf7e6aeda3d339101c37e7ba3aa707db&o=
143.204.68.33200 OK 11 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/square250/644293.webp?k=24c08396bd44343c9dcc78f0df41e114bf7e6aeda3d339101c37e7ba3aa707db&o=
IP 143.204.68.33:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e61daadd9f2361db8bea014c640fc26b
8e637a06e40e6d0d780cf55b0982fd82d2dfbacc
941706cdc14e54f8ec6c3bacc8b5bad26dd5553d0bbd34490450e67387acb132
GET /xdata/images/city/square250/644293.webp?k=24c08396bd44343c9dcc78f0df41e114bf7e6aeda3d339101c37e7ba3aa707db&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 10668
server: nginx
date: Thu, 08 Sep 2022 07:45:07 GMT
etag: "4ee67766e2763c05e5c3e55ee6edca5603314280"
expires: Sat, 08 Oct 2022 07:45:07 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: m7JFKlapZze7Z2G9-fWwNC5dH7xsjDnm021otiU6T42SxZrHDqNOaA==
age: 2132718
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/square250/671694.webp?k=cd1e3603afe4edd09f829675efb1cdc9a5925bed25a642bfc4d909602c231624&o=
143.204.68.33200 OK 14 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/square250/671694.webp?k=cd1e3603afe4edd09f829675efb1cdc9a5925bed25a642bfc4d909602c231624&o=
IP 143.204.68.33:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ae6f21ca1e36bc750e27be252a59c000
c5896a0dba0a94a551569b4cd040897d5bd935da
29c33b1d0971d25f68cee3a5f098598bb0e6246746f62341c066eb3fc53054f9
GET /xdata/images/city/square250/671694.webp?k=cd1e3603afe4edd09f829675efb1cdc9a5925bed25a642bfc4d909602c231624&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 13820
server: nginx
date: Sat, 24 Sep 2022 05:37:28 GMT
etag: "2f96e715ad5a553bc9e4f23daed777682375d1bc"
expires: Mon, 24 Oct 2022 05:37:28 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: -v-MLo8LHdn63tIV7xi3G0Q-xHxb7FZEXbgS6X0ILEyi9amj9ccJEw==
age: 757977
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/square250/644310.webp?k=472fefd4c3c0aef36deb16adb91c965923d8b1078ab29056802f95aead0586bf&o=
143.204.68.33200 OK 13 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/square250/644310.webp?k=472fefd4c3c0aef36deb16adb91c965923d8b1078ab29056802f95aead0586bf&o=
IP 143.204.68.33:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash fc98564e400d3bd17e3f22b13e1b4ac7
504d945f247a1ed9d1e4f68416d2865d6558e5ad
b7fa20f8bab44db9578a888fe75778bd6b24331b1f0c81356be50c4fc70157c6
GET /xdata/images/city/square250/644310.webp?k=472fefd4c3c0aef36deb16adb91c965923d8b1078ab29056802f95aead0586bf&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 13014
server: nginx
date: Sun, 02 Oct 2022 06:57:53 GMT
etag: "e8263d6d561ff52b82fff87880cd781fc3e55cfa"
expires: Tue, 01 Nov 2022 06:57:53 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: QLsDU3wZ9NDhsIikBepkyWKglR5MrvkTvVsc3Ob_-VjIUCSn4rrhHA==
age: 61952
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/square250/737551.webp?k=ad4ef19a2b979ef794b56d1901e6937b874b4726a4085d8ddbe795f5c6bfed73&o=
143.204.68.33200 OK 12 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/square250/737551.webp?k=ad4ef19a2b979ef794b56d1901e6937b874b4726a4085d8ddbe795f5c6bfed73&o=
IP 143.204.68.33:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 443025206af2bd7174de9105a0d54e56
abed2877367f1a8e2ef8fcf107caee4ee915d095
b3d2c4aaa4adfa189b01e662ba5674f003db543e55b43e5237a78edb74b523b6
GET /xdata/images/city/square250/737551.webp?k=ad4ef19a2b979ef794b56d1901e6937b874b4726a4085d8ddbe795f5c6bfed73&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 11708
server: nginx
date: Sun, 11 Sep 2022 08:43:46 GMT
etag: "de7c81d835d49d4c7ad678645c3704824912eafa"
expires: Tue, 11 Oct 2022 08:43:46 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: bHbhK7XJ-DyYAzEp2M_h9K8Op1C1CZ27RCr29u_3jJk3ZXmkH1W5tQ==
age: 1869999
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/region/square250/48107.webp?k=bc7ff9cf4d26882ff93f92643455885a88b9b0ae37b9ed109687ad0890af2dfd&o=
143.204.68.33200 OK 8.2 kB URL HTTP/2 cf.bstatic.com/xdata/images/region/square250/48107.webp?k=bc7ff9cf4d26882ff93f92643455885a88b9b0ae37b9ed109687ad0890af2dfd&o=
IP 143.204.68.33:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 771aeeaab19a95606d95d745b82c71a5
e0ea1f6e9d3213d1c9dc5776630581343c008efe
34ab25e12e5af40fb0361fbc2791c2b95ca19ff49f723c0670d1536e94167899
GET /xdata/images/region/square250/48107.webp?k=bc7ff9cf4d26882ff93f92643455885a88b9b0ae37b9ed109687ad0890af2dfd&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 8182
server: nginx
date: Sun, 02 Oct 2022 06:47:42 GMT
etag: "969c089a0ea2277787f9305b5be7f1ad66d8df57"
expires: Tue, 01 Nov 2022 06:47:42 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: zMjz8np3haoYNl3QZprEv3v6b2j551YJg63Y1U40ZoNWUxR2mOfK1g==
age: 62563
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/square250/930853.webp?k=85cc355550cdcf1ca77d1a7a635f4294e09dee696051866597a63fd7edd7af5a&o=
143.204.68.33200 OK 12 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/square250/930853.webp?k=85cc355550cdcf1ca77d1a7a635f4294e09dee696051866597a63fd7edd7af5a&o=
IP 143.204.68.33:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0867b4a18dd02f341467ac3cd9c87624
6dfa10bfc60382146a1cbdcdeaa1d2bf94ca8fe6
abac49fbb301fb90860cc5c950d292473ac3db44a6fc2e62398e61bf2bf7655f
GET /xdata/images/city/square250/930853.webp?k=85cc355550cdcf1ca77d1a7a635f4294e09dee696051866597a63fd7edd7af5a&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 12010
server: nginx
date: Tue, 20 Sep 2022 10:16:39 GMT
etag: "a52734f0190db4e3292cb7a8fcab521a95c3e4f0"
expires: Thu, 20 Oct 2022 10:16:39 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: GOcA7WdJpV3n_QEFYwzOYp-kqn2oK2eWYLOx781HJItg4WEo9FU9NA==
age: 1086826
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/square250/967857.webp?k=5733a245dbb186ec0986c0a5c533acc704650d51cdfed7410cf0bcef375e5bc4&o=
143.204.68.33200 OK 12 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/square250/967857.webp?k=5733a245dbb186ec0986c0a5c533acc704650d51cdfed7410cf0bcef375e5bc4&o=
IP 143.204.68.33:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 57d087e34bf07df0e6df2f13d870f2e2
47462553409d660454e9bee14f3f442d7e757e13
d504a989b326836c6718ca6acb3806f60ad3e5a2cc48824a7b1c6d41691e8654
GET /xdata/images/city/square250/967857.webp?k=5733a245dbb186ec0986c0a5c533acc704650d51cdfed7410cf0bcef375e5bc4&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 12264
server: nginx
date: Sun, 25 Sep 2022 07:39:45 GMT
etag: "66664e4c8d9889405819baeda42956281e2f73ce"
expires: Tue, 25 Oct 2022 07:39:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: uU_4gvhpfjvNv3mCSnmED_5JPgtWS2up-XBZGA6-I86rHYGGR_z2IQ==
age: 664240
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/24/no/6193a14e4d59f814f46ee6313cdd6e11811abeb3.png
143.204.68.33200 OK 405 B URL HTTP/2 cf.bstatic.com/static/img/flags/24/no/6193a14e4d59f814f46ee6313cdd6e11811abeb3.png
IP 143.204.68.33:0
File type PNG image data, 24 x 24, 8-bit colormap, non-interlaced\012- data
Hash be6379111ab8866c20c123b85af97d42
819ba2a2c986ed6f4ff309661b5c27ac172228df
fecd6ef10eb5111323f3b1bb9d8e99e37a881abe33ae37f8e74f046c3634b25f
GET /static/img/flags/24/no/6193a14e4d59f814f46ee6313cdd6e11811abeb3.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 405
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:53 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Mon, 26 Sep 2022 01:06:41 GMT
expires: Wed, 26 Oct 2022 01:04:13 GMT
cache-control: max-age=2592000
etag: "5cadd1d1-195"
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: -Ci5lJIbgg5OerTXB5oL3caqdDfk43PDRphgf0wTubYpqhsQzZQlHw==
age: 601572
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/square250/954959.webp?k=37410091e9d0e74278ef7710d594a8ef5882decaf47e8f9a7ca30f9e85bbab75&o=
143.204.68.33200 OK 5.0 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/square250/954959.webp?k=37410091e9d0e74278ef7710d594a8ef5882decaf47e8f9a7ca30f9e85bbab75&o=
IP 143.204.68.33:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5f34caad9044fb6b97304bf376740090
d919e1aa423bdce0be6d91885666114f7093ee29
3ca928167fc0c1e2ffe56f5910307f715a69c7080d783492cd41ed1ebda75fd6
GET /xdata/images/city/square250/954959.webp?k=37410091e9d0e74278ef7710d594a8ef5882decaf47e8f9a7ca30f9e85bbab75&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 4970
server: nginx
date: Mon, 12 Sep 2022 07:12:31 GMT
etag: "dbf1a53aa8c4b89d7d0e195e8850a018c5ec123c"
expires: Wed, 12 Oct 2022 07:12:31 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: YQMZ-3EaSsuEq6RqyiVZQr2G-XoYPzCh4HH8jcJFD7edfG5t0Iy7Ew==
age: 1789074
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/24/fr/c3dafe717a0b4b97e6ddd0d791e8a018d8f96310.png
143.204.68.33200 OK 406 B URL HTTP/2 cf.bstatic.com/static/img/flags/24/fr/c3dafe717a0b4b97e6ddd0d791e8a018d8f96310.png
IP 143.204.68.33:0
File type PNG image data, 24 x 24, 8-bit colormap, non-interlaced\012- data
Hash 6e35d53899b5a1260f946a00b691e0b7
5afcc2cca4ef34005fe1d22784f90b727fceeb08
2fd19cf58102989e49660b27b21605038d4282cf758add4841285c2c17f2dacd
GET /static/img/flags/24/fr/c3dafe717a0b4b97e6ddd0d791e8a018d8f96310.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 406
server: nginx
date: Wed, 07 Sep 2022 07:13:43 GMT
last-modified: Wed, 10 Apr 2019 11:21:53 GMT
etag: "5cadd1d1-196"
expires: Fri, 07 Oct 2022 07:13:43 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: r6BR3FmX-14iZpsRCHYrtD8mYKl9eUxy2Hq-cFK_FR48kz5AOv0F6Q==
age: 2221002
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/24/gb/b2f01d4fd94cb1420fcdbbef62c06ade1026fbbd.png
143.204.68.33200 OK 786 B URL HTTP/2 cf.bstatic.com/static/img/flags/24/gb/b2f01d4fd94cb1420fcdbbef62c06ade1026fbbd.png
IP 143.204.68.33:0
File type PNG image data, 24 x 24, 8-bit colormap, non-interlaced\012- data
Hash b886858d3043782c8760367f40f31187
81bd3c37344c99a7ce8f29f685c770373aa6cc16
c4827c36112be1d0773cbf4eb709f4b01b4ab4bc1a79c90aafc4b196c9445393
GET /static/img/flags/24/gb/b2f01d4fd94cb1420fcdbbef62c06ade1026fbbd.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 786
server: nginx
date: Wed, 07 Sep 2022 07:08:15 GMT
last-modified: Wed, 10 Apr 2019 11:21:53 GMT
etag: "5cadd1d1-312"
expires: Fri, 07 Oct 2022 07:08:15 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: 62k2uFIMpl3jK8ySM17M0WLRVuZE912pf3yajPV55kiQKrm0H68Lig==
age: 2221330
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/24/es/a14721d7698af5131b08bd34227508c729ab11bc.png
143.204.68.33200 OK 490 B URL HTTP/2 cf.bstatic.com/static/img/flags/24/es/a14721d7698af5131b08bd34227508c729ab11bc.png
IP 143.204.68.33:0
File type PNG image data, 24 x 24, 8-bit colormap, non-interlaced\012- data
Hash d2d4c6110399a8b2c4c1ea09b7f8eded
f846d4aee888c73998150452c3bde5ff71f7a0e7
630bbc6535a3d0cee406f52ee3664265adc2eaa51227fb8a3ff5c70af9e79b3a
GET /static/img/flags/24/es/a14721d7698af5131b08bd34227508c729ab11bc.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 490
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:53 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Mon, 19 Sep 2022 05:35:49 GMT
expires: Wed, 19 Oct 2022 05:35:49 GMT
cache-control: max-age=2592000
etag: "5cadd1d1-1ea"
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: 6CsnWFTZq0rkUGRaGhNOLb7KqJCYjhID8RHsJxI6Fee3YeOo5LIabQ==
age: 1190076
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/24/it/b539a003f197845e447b9d00d91cd74dd57bf3dd.png
143.204.68.33200 OK 436 B URL HTTP/2 cf.bstatic.com/static/img/flags/24/it/b539a003f197845e447b9d00d91cd74dd57bf3dd.png
IP 143.204.68.33:0
File type PNG image data, 24 x 24, 8-bit colormap, non-interlaced\012- data
Hash 1416ab6009ad93f86e9cfc23a54e0c40
0578e45fadd1da2c26a4d5fe814a9239ff5eae97
88bb107350d5324906a2cf2b95847879ecf6bb09502d1186c38daaf15268830f
GET /static/img/flags/24/it/b539a003f197845e447b9d00d91cd74dd57bf3dd.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 436
server: nginx
date: Thu, 08 Sep 2022 01:26:11 GMT
last-modified: Wed, 10 Apr 2019 11:21:53 GMT
etag: "5cadd1d1-1b4"
expires: Sat, 08 Oct 2022 01:26:11 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: ENZxrqgKWQuMFN2EJBXWRnvfgDE73djGDdi1vpH3mXUo2M0wJyAZBw==
age: 2155454
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/genius-globe-with-badge_desktop/d807514761b3684aedebced9265c5548a063b7a0.png
143.204.68.33200 OK 7.5 kB URL HTTP/2 cf.bstatic.com/static/img/genius-globe-with-badge_desktop/d807514761b3684aedebced9265c5548a063b7a0.png
IP 143.204.68.33:0
File type PNG image data, 160 x 160, 8-bit colormap, non-interlaced\012- data
Hash 06184b155b03a3035384042b32a67174
3458ca2a84896f0f5c39e3fb705b5c51b41c6553
b0999281a9703706445e24c253b75e9e36fc0d5d76f01b0842f902b08f00c2dd
GET /static/img/genius-globe-with-badge_desktop/d807514761b3684aedebced9265c5548a063b7a0.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 7455
server: nginx
last-modified: Tue, 21 Sep 2021 07:46:56 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Fri, 23 Sep 2022 04:40:23 GMT
expires: Sun, 23 Oct 2022 04:40:23 GMT
cache-control: max-age=2592000
etag: "61498df0-1d1f"
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: e52gyXnxkoj6EuZZXZ6bwQ40qtnNhWufssLpXR6ng3iBYAvi0ktYBg==
age: 847802
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/nobg_all_blue_iq/b700d9e3067c1186a3364012df4fe1c48ae6da44.png
143.204.68.33200 OK 73 B URL HTTP/2 cf.bstatic.com/static/img/nobg_all_blue_iq/b700d9e3067c1186a3364012df4fe1c48ae6da44.png
IP 143.204.68.33:0
File type PNG image data, 1 x 100, 8-bit/color RGB, non-interlaced\012- data
Hash ff823944bc0bb9e4bf87f0ad14f687d1
4b68ba281b9ab171611569bf78971df6970efbc1
6153929734ec12ec07072f327c1112301828497e4dd356ca261461b0b7ba9621
GET /static/img/nobg_all_blue_iq/b700d9e3067c1186a3364012df4fe1c48ae6da44.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 73
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sun, 02 Oct 2022 23:22:27 GMT
expires: Tue, 01 Nov 2022 23:22:27 GMT
cache-control: max-age=2592000
etag: "5cadd1d3-49"
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: M-cPAnVsJXqHj38t6hCJQDeDkGshnxjQvt0FSzkgvkxy-8o8xkrceQ==
age: 2878
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/tfl/group_logos/logo_booking/27c8d1832de6a3123b6ee45b59ae2f81b0d9d0d0.png
143.204.68.33200 OK 1.6 kB URL HTTP/2 cf.bstatic.com/static/img/tfl/group_logos/logo_booking/27c8d1832de6a3123b6ee45b59ae2f81b0d9d0d0.png
IP 143.204.68.33:0
File type PNG image data, 91 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 3e32efd25ac0214b375fc8a6a32890f2
cd46a79db7e53e19d5869b3cb3e7aa22ee523479
807c8a1b498e17d227cf48a640b778bdc4398a9852493cb2f40bf0f33651d0dd
GET /static/img/tfl/group_logos/logo_booking/27c8d1832de6a3123b6ee45b59ae2f81b0d9d0d0.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1628
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Thu, 08 Sep 2022 13:35:23 GMT
expires: Thu, 06 Oct 2022 17:57:09 GMT
cache-control: max-age=2592000
etag: "5cadd1d3-65c"
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: hPCTOISxnOQMdvxoZAtDAUoe5oE2NRgVaFkHYztL7aIJdOI3FdpBrA==
age: 2268796
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/tfl/group_logos/logo_priceline/f80e129541f2a952d470df2447373390f3dd4e44.png
143.204.68.33200 OK 1.6 kB URL HTTP/2 cf.bstatic.com/static/img/tfl/group_logos/logo_priceline/f80e129541f2a952d470df2447373390f3dd4e44.png
IP 143.204.68.33:0
File type PNG image data, 91 x 26, 8-bit colormap, non-interlaced\012- data
Hash b6d0b31340d7a113f63b936e23d06f78
268e3856da737f7e56e679258949ef70ddde47f4
18c62988860a8ffd90bab6376b4fe36a723bd39403c420d3943aa3eb5a0029c5
GET /static/img/tfl/group_logos/logo_priceline/f80e129541f2a952d470df2447373390f3dd4e44.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1591
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Wed, 28 Sep 2022 01:41:47 GMT
expires: Fri, 28 Oct 2022 01:41:47 GMT
cache-control: max-age=2592000
etag: "5cadd1d3-637"
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: 2rjIwjR6CQHq6q88P4b-hQ2TpTBZh5VZVBLU3nUlTAkQhqDZVJS7Lw==
age: 426518
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/tfl/group_logos/logo_kayak/83ef7122074473a6566094e957ff834badb58ce6.png
143.204.68.33200 OK 1.2 kB URL HTTP/2 cf.bstatic.com/static/img/tfl/group_logos/logo_kayak/83ef7122074473a6566094e957ff834badb58ce6.png
IP 143.204.68.33:0
File type PNG image data, 79 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 6384185cbe9a4f106857a3cb85caea98
0e31a4fe2ce98a8b4fda60687aa71079b4d3a95b
5839f0330821cf08029beddd6d248170da1af16cd7aff253e7bd075d591f5d42
GET /static/img/tfl/group_logos/logo_kayak/83ef7122074473a6566094e957ff834badb58ce6.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1154
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Fri, 09 Sep 2022 06:46:00 GMT
expires: Sun, 09 Oct 2022 00:20:30 GMT
cache-control: max-age=2592000
etag: "5cadd1d3-482"
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: KLJqPI7GlF8tkmLSbcEg57PMaZnQKLm4fDEGCIWlLCi6Czg9BdH8Tg==
age: 2072995
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/tfl/group_logos/logo_agoda/1c9191b6a3651bf030e41e99a153b64f449845ed.png
143.204.68.33200 OK 2.1 kB URL HTTP/2 cf.bstatic.com/static/img/tfl/group_logos/logo_agoda/1c9191b6a3651bf030e41e99a153b64f449845ed.png
IP 143.204.68.33:0
File type PNG image data, 70 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 27e71a5124018e16eae0b8897618623d
d0d54d88b04edfc71f338c19eab9994632bc6ced
1d6e86e59ab7235a8343f494c8e8da6cc02c5a98a75d682401340e6d06935f20
GET /static/img/tfl/group_logos/logo_agoda/1c9191b6a3651bf030e41e99a153b64f449845ed.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2146
server: nginx
last-modified: Thu, 12 Mar 2020 10:15:57 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sun, 11 Sep 2022 02:02:02 GMT
expires: Sun, 09 Oct 2022 00:20:30 GMT
cache-control: max-age=2592000
etag: "5e6a0bdd-862"
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: iWiOtOz8zO09eUjeUb2lFVL-XCkhuwBPJQ6R5Db_o_L6DndpQOgZ3w==
age: 2072995
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/tfl/group_logos/logo_rentalcars/6bc5ec89d870111592a378bbe7a2086f0b01abc4.png
143.204.68.33200 OK 3.2 kB URL HTTP/2 cf.bstatic.com/static/img/tfl/group_logos/logo_rentalcars/6bc5ec89d870111592a378bbe7a2086f0b01abc4.png
IP 143.204.68.33:0
File type PNG image data, 109 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 38784d782a29a302dab9135d63aef953
04db0e863a35062a355c4b2ea9585ec83c4ffc3e
8561e200a6a57195e480ed9d893b14579ef6acdeabfbb3fe22b5e4ec9b84b455
GET /static/img/tfl/group_logos/logo_rentalcars/6bc5ec89d870111592a378bbe7a2086f0b01abc4.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 3221
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sat, 17 Sep 2022 01:38:55 GMT
expires: Wed, 05 Oct 2022 06:00:59 GMT
cache-control: max-age=2592000
etag: "5cadd1d3-c95"
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: oKkuq9pXNsMd0hAzDlsNTeS43CBkIRwOrow80Y8252nwQIwSqO85gQ==
age: 2398166
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/tfl/group_logos/logo_opentable/a4b50503eda6c15773d6e61c238230eb42fb050d.png
143.204.68.33200 OK 2.3 kB URL HTTP/2 cf.bstatic.com/static/img/tfl/group_logos/logo_opentable/a4b50503eda6c15773d6e61c238230eb42fb050d.png
IP 143.204.68.33:0
File type PNG image data, 95 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash d05a0ab9bf394439a1584a2b0d44db5c
183c28023d3ba3358a7a5df1db887582ae5340ed
b23272a9692c4ec3c020935917e9d096490876c976abec1290bd3cc9aae13974
GET /static/img/tfl/group_logos/logo_opentable/a4b50503eda6c15773d6e61c238230eb42fb050d.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2344
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sun, 25 Sep 2022 03:55:53 GMT
expires: Tue, 25 Oct 2022 03:55:53 GMT
cache-control: max-age=2592000
etag: "5cadd1d3-928"
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: gIq200pytR5Ucpwc3QO5TsxUJyV4Ch5RoVn4N3uZwA9vBlY2Ps9eZw==
age: 677672
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/480x165/173281189.jpeg?k=1fd6eb071690e7733c308db125cf842d59b6be95a26a37e7a303483a47a80273&o=
143.204.68.33200 OK 7.8 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/480x165/173281189.jpeg?k=1fd6eb071690e7733c308db125cf842d59b6be95a26a37e7a303483a47a80273&o=
IP 143.204.68.33:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x165, components 3\012- data
Hash 0416b9f133d42513bae85c958b439bfc
976e634586bfa83f7b6d2830ee3b6aab082f84be
b664a43ee6539819937be7e3d17871489a8150de68b79100c29ec3ec62c13df7
GET /xdata/images/xphoto/480x165/173281189.jpeg?k=1fd6eb071690e7733c308db125cf842d59b6be95a26a37e7a303483a47a80273&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 7771
server: nginx
date: Thu, 22 Sep 2022 05:16:30 GMT
etag: "739347601050ad19d77b7a21a723770c23aec0ea"
expires: Sat, 22 Oct 2022 05:16:30 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: CUKILiFKq-C-YjNCBSDjNKpa72SHhnSwqWPzyuxYMSwr9xO4E_Pb_g==
age: 932035
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/540x270/740930.webp?k=58e6fd52fcf3174223967fc1629c1de15a9ca9de10347618038d042b56e0f968&o=
143.204.68.33200 OK 24 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/540x270/740930.webp?k=58e6fd52fcf3174223967fc1629c1de15a9ca9de10347618038d042b56e0f968&o=
IP 143.204.68.33:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 540x270, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 33732427eae17faad3950d16a56bd1d4
b71ec639fd23492877892527f81334c568aa5597
c93462cc65dbadac1456b7c6428ff3f9e08eba808c7372f420144fa56307b75b
GET /xdata/images/city/540x270/740930.webp?k=58e6fd52fcf3174223967fc1629c1de15a9ca9de10347618038d042b56e0f968&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 23600
server: nginx
date: Fri, 23 Sep 2022 19:18:08 GMT
etag: "9a8416733aaf85675d6c6f8838f3c31641bcc25b"
expires: Sun, 23 Oct 2022 19:18:08 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: 0bRKDXUzooQL7uVAAVmt2o8a2B7AtWqCzeCW35A_E87BW80dYehQLQ==
age: 795137
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/540x270/844103.webp?k=b4ff3d17a962184dfa8823beec573fa3f679306e8b3fa897b901ba0dedb157bd&o=
143.204.68.33200 OK 24 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/540x270/844103.webp?k=b4ff3d17a962184dfa8823beec573fa3f679306e8b3fa897b901ba0dedb157bd&o=
IP 143.204.68.33:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 540x270, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8da231dc5119fa2631196021b5b76b79
acc913dd71a600d59d1485aeaf478217e6efb323
0e422d4bd5462f934cf16f7cf8be46278492bc9f35f4765cbb2382ba9233588c
GET /xdata/images/city/540x270/844103.webp?k=b4ff3d17a962184dfa8823beec573fa3f679306e8b3fa897b901ba0dedb157bd&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 24262
server: nginx
date: Mon, 26 Sep 2022 02:25:08 GMT
etag: "e357e49152fcb0ca4821ffd436637842f8c59d6a"
expires: Wed, 26 Oct 2022 02:25:08 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: g1okSWyXCpIUyGTQNxOrWE1ozrMcS84gEVXHNdAnU2d2PChbJ27hbQ==
age: 596717
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/540x270/879406.webp?k=dd541d1e78f3b12096d858880a21807954f88849a62946cca580a95ae81c99fb&o=
143.204.68.33200 OK 19 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/540x270/879406.webp?k=dd541d1e78f3b12096d858880a21807954f88849a62946cca580a95ae81c99fb&o=
IP 143.204.68.33:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 540x270, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b025c3e84da52e3a72be62b260253c10
d5f3416d6ff4cc224478a75718b543399839a02a
c50c5c5c0aa92f4411da494d76937f79499e88e1eb6569835a3946ef08828ee2
GET /xdata/images/city/540x270/879406.webp?k=dd541d1e78f3b12096d858880a21807954f88849a62946cca580a95ae81c99fb&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 18586
server: nginx
date: Thu, 22 Sep 2022 04:10:25 GMT
etag: "c730781d7ad2ea987b4fd932b68a3b1f5c88f3f8"
expires: Sat, 22 Oct 2022 04:10:25 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: LmTCv9jvbjZsM9iMBvcCsea6bDvxmECEomqqoHo1CwZSU2GQyTn6wA==
age: 936000
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/540x270/693535.webp?k=39f09e1a64b76dc38b82fae5e51dd9728a68c06b8a0a26c2e6254a80eb792e72&o=
143.204.68.33200 OK 23 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/540x270/693535.webp?k=39f09e1a64b76dc38b82fae5e51dd9728a68c06b8a0a26c2e6254a80eb792e72&o=
IP 143.204.68.33:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 540x270, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1cf4d8802d8a7c29a1c6a8f84fb42743
f0517ef84d0f9c60d23155359835b7e7f208d000
b75539e7d3b58a9a64ecfc01b01c0829392c6ccd991b3a9479c426bba4c4f6ac
GET /xdata/images/city/540x270/693535.webp?k=39f09e1a64b76dc38b82fae5e51dd9728a68c06b8a0a26c2e6254a80eb792e72&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 23244
server: nginx
date: Mon, 05 Sep 2022 06:01:55 GMT
etag: "b7d0e5154dc82438512a5acb91365ae3c5554539"
expires: Wed, 05 Oct 2022 06:01:55 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: Hb1l7M4qYGoE56zwmAvqyF91AHM_CfqN4G1o9onHWM9tkJykNXJhCQ==
age: 2398110
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/540x270/65633294.webp?k=13eb1edcf90c9ee12f1f3b130c6435a9ec3175cb0633862a897a10ea25f2f029&o=
143.204.68.33200 OK 31 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/540x270/65633294.webp?k=13eb1edcf90c9ee12f1f3b130c6435a9ec3175cb0633862a897a10ea25f2f029&o=
IP 143.204.68.33:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 540x270, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 606367d465fa9ffa8f549514869c322b
7e70beeff754fa21a0946def72031833fee1ea50
a4b97277078d575651a3745ddd9a0b4ecdec4c42591e16f2a873f8e680b6dd67
GET /xdata/images/hotel/540x270/65633294.webp?k=13eb1edcf90c9ee12f1f3b130c6435a9ec3175cb0633862a897a10ea25f2f029&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 31426
server: nginx
date: Sun, 04 Sep 2022 22:26:24 GMT
etag: "14f9d6299b4e0a86759f519c2734a9aff59b6d5d"
expires: Tue, 04 Oct 2022 22:26:24 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: f_919hPvVoM7TYay6B9U3hzPN9o3cNedA94z5VJfTmNtVMVg7xbzJw==
age: 2425441
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/genius-banner-world-bg/2b5cdbad7b92073bc396b8b59d0bb421b3a01cba.png
143.204.68.33200 OK 7.4 kB URL HTTP/2 cf.bstatic.com/static/img/genius-banner-world-bg/2b5cdbad7b92073bc396b8b59d0bb421b3a01cba.png
IP 143.204.68.33:0
File type PNG image data, 520 x 340, 8-bit colormap, non-interlaced\012- data
Hash a2bdd966488047aaa17dcebc5238432b
65c52eeb866eb2acbd183e5fb2dccc5205dbb6bf
cfc71dcddda21b32c0ac5ba5322bd41612224261fecdc38cd20a45b6b502457c
GET /static/img/genius-banner-world-bg/2b5cdbad7b92073bc396b8b59d0bb421b3a01cba.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.bstatic.com/static/css/index_cloudfront_sd.iq_ltr/8d885185a27474ba884b6490504a85e91663ebef.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 7367
server: nginx
date: Fri, 09 Sep 2022 00:23:44 GMT
last-modified: Tue, 21 Sep 2021 07:46:56 GMT
etag: "61498df0-1cc7"
expires: Sun, 09 Oct 2022 00:23:44 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: rHzJ2EeQ4SsNBgIi8baxrAjtpzPC2u99uL1VFM-Bcd_3BSidk8sEZg==
age: 2072801
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/cross_product_index/accommodation/07ca5cacc9d77a7b50ca3c424ecd606114d9be75.svg
143.204.68.33200 OK 94 kB URL HTTP/2 cf.bstatic.com/static/img/cross_product_index/accommodation/07ca5cacc9d77a7b50ca3c424ecd606114d9be75.svg
IP 143.204.68.33:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1446)
Hash 2d6a7987e57e856bf6589a90a6e5ae9f
eda3fa7ecef1e28783ec37f1e05a81d25382d9d0
6a8a0b00a39754557b3282e2310f9c28a531fa42623b06b054f33b203e7d61db
GET /static/img/cross_product_index/accommodation/07ca5cacc9d77a7b50ca3c424ecd606114d9be75.svg HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/1592fd9161d73a23f793a04b8bb510282db4040d.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Tue, 06 Sep 2022 17:57:09 GMT
last-modified: Wed, 10 Apr 2019 11:21:51 GMT
etag: W/"5cadd1cf-7f2"
expires: Thu, 06 Oct 2022 17:57:09 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: nH0ckn2escvMduxSaojOFqwfLsFEWUT_uknaRBZH0qNnSdPfjxRtpw==
age: 2268796
X-Firefox-Spdy: h2
q-xx.bstatic.com/psb/capla/static/media/long_stays_banner_wide.a1b12d47.png
143.204.68.33200 OK 202 kB URL HTTP/2 q-xx.bstatic.com/psb/capla/static/media/long_stays_banner_wide.a1b12d47.png
IP 143.204.68.33:0
File type PNG image data, 600 x 224, 8-bit/color RGBA, non-interlaced\012- data
Size 202 kB (201837 bytes)
Hash ce01c4a417bad6742d871c580e0d7ba8
1e634b9089fabaf92e7d43ca19a4694f95cdb808
225509c8be32236899c25efff5f846d3dd30da0958e440ded902019e3313d8c3
GET /psb/capla/static/media/long_stays_banner_wide.a1b12d47.png HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 201837
server: nginx
date: Mon, 05 Sep 2022 10:35:17 GMT
etag: "ce01c4a417bad6742d871c580e0d7ba8"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Thu, 01 Sep 2022 10:17:17 GMT
x-amz-expiration: expiry-date="Fri, 30 Dec 2022 10:17:17 GMT", rule-id=""
expires: Wed, 05 Oct 2022 10:35:17 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: YUWgHEhX7Tdp77C3eCX6Vjlgqs17kriYa4fANqlj5V8cuX0GAl4VZg==
age: 2381708
X-Firefox-Spdy: h2
account.booking.com/privacy-consents/implicit
108.156.28.8204 No Content 0 B URL HTTP/2 account.booking.com/privacy-consents/implicit
IP 108.156.28.8:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /privacy-consents/implicit HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.booking.com/
Origin: https://www.booking.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
server: nginx
date: Mon, 03 Oct 2022 00:10:26 GMT
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: POST
access-control-allow-origin: https://www.booking.com
access-control-max-age: 1728000
set-cookie: bkng_sso_ses=e30; domain=.booking.com; path=/; expires=Sat, 02-Oct-2027 00:10:26 GMT; secure; HttpOnly
bkng_sso_session=e30; domain=.booking.com; path=/; expires=Sat, 02-Oct-2027 00:10:26 GMT; secure; HttpOnly
bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJkYXRhX3N1YmplY3RfaWQiOiI3YzlhNDUzMC1kOGM0LTQyOWEtOTRiMC0xODI0NWVlZGJiZTMiLCJzZXNzaW9ucyI6W119fQ; domain=account.booking.com; path=/; expires=Sat, 02-Oct-2027 00:10:26 GMT; secure; HttpOnly
content-security-policy: report-uri https://nellie.booking.com/csp-report-uri?type=block&tag=42&pid=5f2501394cea02ec&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdaPywujlMqYClpEWWnp7GR_-kbA2HXm3PiRWopy3QrKMJMbZhg96Pj4F15TvX2AmS6O-MuirWpTEo0yKR63Fhdhks9ONhXyuE2IeVCZB_Kus; frame-ancestors https://*.booking.com 'self';
content-security-policy-report-only: report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=41&pid=5f2501394cea02ec&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdaPywujlMqYClpEWWnp7GR_-kbA2HXm3PiRWopy3QrKMJMbZhg96Pj4F15TvX2AmS6O-MuirWpTEo0yKR63Fhdhks9ONhXyuE2IeVCZB_Kus; script-src saa.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google.com www.google-analytics.com cdn.cookielaw.org geolocation.onetrust.com 'self' 'nonce-b9cMi8EBZlGGkYZ' 'report-sample'; connect-src saa.booking.com secure.booking.com reports.booking.com privacyportal-eu.onetrust.com geolocation.onetrust.com cdn.cookielaw.org www.google-analytics.com *.perimeterx.net *.pxchk.net *.px-cdn.net *.px-client.net *.px-cloud.net 'self' 'report-sample'; object-src 'none'; default-src *.bstatic.com bstatic.com 'self'; frame-src https://www.youtube.com/embed/Vv4w5SmRkss *.bstatic.com https://www.google.com bstatic.com www.booking.com secure.booking.com paymentcomponent.booking.com 'self'; style-src *.bstatic.com bstatic.com *.static.booking.cn 'self' 'unsafe-inline'; base-uri 'none'; img-src 'self' data: www.booking.com graph.facebook.com cdn.cookielaw.org account.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google-analytics.com www.google.com stats.g.doubleclick.net *.px-cloud.net *.perimeterx.net www.gstatic.com;
strict-transport-security: max-age=17280000
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 db92535f619848d07c0f5eb965b50adc.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: NMELLtJKmFP8oynJ5Nu9AsVAhhdWG3CZy4_5ODLSUWA38VVXCaSh9w==
X-Firefox-Spdy: h2
www.booking.com/c360/v1/track
37.10.0.220200 OK 33 B URL HTTP/1.1 www.booking.com/c360/v1/track
IP 37.10.0.220:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2ef0949d72ccdcc083647d001c8ba940
ebe4e2284d3892b010623597d0945b6b5cd64448
fe1a912baa83e36855bb934de3f2cfdffe77b1224a552533a4a7f2e984a51e52
POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Booking-Pageview-Id: 28dc01378f5f01af
X-Booking-AID: 1858279
X-Booking-Session-Id: 915c8e025c3afb3c6c603e457c22e7ca
X-Booking-SiteType-Id: 1
X-Partner-Channel-Id: 2
X-Booking-CSRF: r2A6YwAAAAA=srmS3bndeH0BDYAozJH10BqldExHZSytPkCwHIscJE6yUriflksfE5VAMcY3GuCYPuGtshnOq8_XEKycpRLE6JFFgjjo9Y99TKmqWqyxsMYIv0sRGmWov0xTF6oMysj42mqcFqgF-InaZV8DmkRQ_Tsq-ZXKE001luKG1cyIILdH4ZeUAP9jWBVxCBEThwmSyb28wrNks8fVE4zZ
X-Booking-Language-Code: en-us
X-Booking-Info: 1602360,1600300,1592480,1588860,1602360|1,1581080,1590920|2,1586670,1590920,1598040,1599270,1591870,1554730,1602050
X-Requested-With: XMLHttpRequest
Content-Length: 480
Origin: https://www.booking.com
Connection: keep-alive
Cookie: _pxhd=PSOanJZSbPwTx1gxjwN%252FGPeafUWbDphp%252FJiMmPvApxBbtsBU86vD3GJuIDjZQ2nsvxD6lhFYu1OD9ZrBdkI40A%253D%253D%253Aaf9gPC5melr1hbAFYtSsVRBg7XvF9wdNGNnS4sLWho96Y09fTSX6dk6HNxIDhHgsD0DiSVvKBfS-Y3uZRQ856hEvs0asRwllCO9JVmHlwf4%253D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbbmD9q%2B5pe3XLv6oH3Hq5KGIQpQL7rLGtkj7xfcUN9dIwjZtiM8OGueFjwkk6DWwkWexR9V6Rr75THzgvGXbiFTdPr685HBFXQCqsEDzggS8VCp7Sa9anPHaB9zkrO6y5FPVpplTxxMZuih4xcl0ReHAq41tAv1%2BZMn3M8Qm3sCY%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Oct+03+2022+00%3A10%3A25+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=fb002a7e-e90a-4375-8af6-307de412f116&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
server: nginx
date: Mon, 03 Oct 2022 00:10:26 GMT
content-type: application/json; charset=UTF-8
content-length: 33
vary: User-Agent, Accept-Encoding
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng_frontend_sese_exp=1; domain=.booking.com; path=/; expires=Wed, 02-Nov-2022 00:10:26 GMT; secure; HttpOnly
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbof7CEiNviT%2FmHzmabJf1QdOxUj3ruOBVwzM24SVP2iGmY8qtuaLP2XTm20YkxfBWShZ4mS5AXK0qP64DjQkcY6sdTBNCJJLFzXMyz0VOSBW%2BOAdcH4NvBC8EQD79UL1FEIY%2Big3w8MJaM52A3t0aYYOhpSz26X9OaUDoehZa%2Bz8%3D; domain=.booking.com; path=/; expires=Sat, 02-Oct-2027 00:10:26 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
cf.bstatic.com/psb/capla/static/js/736.e695e800.chunk.js
143.204.68.33200 OK 154 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/736.e695e800.chunk.js
IP 143.204.68.33:0
File type ASCII text, with very long lines (12350)
Size 154 kB (154253 bytes)
Hash efe91e7a1f0afc510853a638ab62c627
d0de445009ab634ae1d90e0cddd4b5fb2d6139d0
0e49c0bfa35cbdb31fe9020dbba3b71f883dd1412922bd7d2d820b419eb4ae44
GET /psb/capla/static/js/736.e695e800.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 08 Sep 2022 01:24:48 GMT
etag: W/"987c209e1ab13ea61b377f16dae741e3"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Wed, 20 Jul 2022 12:07:08 GMT
x-amz-expiration: expiry-date="Thu, 17 Nov 2022 12:07:08 GMT", rule-id=""
expires: Sat, 08 Oct 2022 01:24:48 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c29e813f981bfce75709b36f6e4555a2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: HaJeruR6FpsLD8HBmIoTxrM66pG6IbHxa09BnolRcgOT6qvktKltIQ==
age: 2155537
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/apple-touch-icon/c9b35bf29a75cac2f430f80a5d4bc7fd961d21a7.png
143.204.68.33200 OK 2.9 kB URL HTTP/2 cf.bstatic.com/static/img/apple-touch-icon/c9b35bf29a75cac2f430f80a5d4bc7fd961d21a7.png
IP 143.204.68.33:0
File type PNG image data, 141 x 141, 8-bit/color RGBA, non-interlaced\012- data
Hash eeda6c96402e2a9ec176f43f0ac79e09
9cd713387ba5b2a468ffae40d40ae3718d2d1c49
08a917ae9e017c4b633b3d5920bb8e073968fa14b9bb7e78192fd2761465d0a4
GET /static/img/apple-touch-icon/c9b35bf29a75cac2f430f80a5d4bc7fd961d21a7.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2915
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:50 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Mon, 19 Sep 2022 05:33:17 GMT
expires: Sun, 09 Oct 2022 00:20:33 GMT
cache-control: max-age=2592000
etag: "5cadd1ce-b63"
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: m4VOEmG8X2YVPgiALNwbdX5w8YbnCdkzljNGwGoPC5LHKmKEUNhkiw==
age: 2072993
X-Firefox-Spdy: h2
account.booking.com/privacy-consents/implicit
108.156.28.8200 OK 1.7 kB URL HTTP/2 account.booking.com/privacy-consents/implicit
IP 108.156.28.8:0
Hash e09731e751095fcd9b3e40d378432b52
564b08626772534684b3c9b879d4dc33ea51a210
b382f1aafac0dc07f95304e6770a400dfc20880c91beb3dc585c1a2ebc01dd80
POST /privacy-consents/implicit HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-type: application/json;charset=UTF-8
Content-Length: 36
Origin: https://www.booking.com
Connection: keep-alive
Cookie: _pxhd=PSOanJZSbPwTx1gxjwN%252FGPeafUWbDphp%252FJiMmPvApxBbtsBU86vD3GJuIDjZQ2nsvxD6lhFYu1OD9ZrBdkI40A%253D%253D%253Aaf9gPC5melr1hbAFYtSsVRBg7XvF9wdNGNnS4sLWho96Y09fTSX6dk6HNxIDhHgsD0DiSVvKBfS-Y3uZRQ856hEvs0asRwllCO9JVmHlwf4%253D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbbmD9q%2B5pe3XLv6oH3Hq5KGIQpQL7rLGtkj7xfcUN9dIwjZtiM8OGueFjwkk6DWwkWexR9V6Rr75THzgvGXbiFTdPr685HBFXQCqsEDzggS8VCp7Sa9anPHaB9zkrO6y5FPVpplTxxMZuih4xcl0ReHAq41tAv1%2BZMn3M8Qm3sCY%3D; cors_js=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
server: nginx
date: Mon, 03 Oct 2022 00:10:26 GMT
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-methods: POST
access-control-allow-origin: https://www.booking.com
access-control-max-age: 1728000
set-cookie: bkng_sso_session=e30; domain=.booking.com; path=/; expires=Sat, 02-Oct-2027 00:10:26 GMT; secure; HttpOnly
bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJzZXNzaW9ucyI6W10sImRhdGFfc3ViamVjdF9pZCI6IjBmNWRhZjBmLWY2YTQtNGUwNS1iM2E2LWFkZjllYzIzN2Y5MyJ9fQ; domain=account.booking.com; path=/; expires=Sat, 02-Oct-2027 00:10:26 GMT; secure; HttpOnly
bkng_sso_ses=e30; domain=.booking.com; path=/; expires=Sat, 02-Oct-2027 00:10:26 GMT; secure; HttpOnly
content-security-policy: report-uri https://nellie.booking.com/csp-report-uri?type=block&tag=42&pid=f8fc0139955f034b&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdaPywujlMqYClpEWWnp7GR_-kbA2HXm3PvFWRdnUFAhBYMXFCJXDh48JHUCCGzkjlgOcpV9tqBK3KJOAiKwbsuPyz_nPfUTW5F894jYvzt9y; frame-ancestors https://*.booking.com 'self';
content-security-policy-report-only: base-uri 'none'; frame-src https://www.youtube.com/embed/Vv4w5SmRkss *.bstatic.com https://www.google.com bstatic.com www.booking.com secure.booking.com paymentcomponent.booking.com 'self'; style-src *.bstatic.com bstatic.com *.static.booking.cn 'self' 'unsafe-inline'; connect-src saa.booking.com secure.booking.com reports.booking.com privacyportal-eu.onetrust.com geolocation.onetrust.com cdn.cookielaw.org www.google-analytics.com *.perimeterx.net *.pxchk.net *.px-cdn.net *.px-client.net *.px-cloud.net 'self' 'report-sample'; object-src 'none'; img-src 'self' data: www.booking.com graph.facebook.com cdn.cookielaw.org account.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google-analytics.com www.google.com stats.g.doubleclick.net *.px-cloud.net *.perimeterx.net www.gstatic.com; script-src saa.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google.com www.google-analytics.com cdn.cookielaw.org geolocation.onetrust.com 'self' 'nonce-6EL9xa4m1rGsZjt' 'report-sample'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=41&pid=f8fc0139955f034b&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdaPywujlMqYClpEWWnp7GR_-kbA2HXm3PvFWRdnUFAhBYMXFCJXDh48JHUCCGzkjlgOcpV9tqBK3KJOAiKwbsuPyz_nPfUTW5F894jYvzt9y; default-src *.bstatic.com bstatic.com 'self';
strict-transport-security: max-age=17280000
content-encoding: gzip
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 2fe8f7f5aca4ab098dc7bad8e97a06dc.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: LZhOWMX6NOOH-oHRLoAyvJ0vYZ7S9rDA6c1U24s_JIlMj0w_V7t7DA==
X-Firefox-Spdy: h2
www.booking.com/dml/graphql?aid=1858279&lang=en-us
37.10.0.220200 OK 2.6 kB URL HTTP/1.1 www.booking.com/dml/graphql?aid=1858279&lang=en-us
IP 37.10.0.220:0
File type JSON data\012- , ASCII text, with very long lines (10317), with no line terminators
Hash e085b1b7c05964b3d21df68f0cabb217
f9fc6013fcddd8c5accbeeb7ef8a9ef5dd0130c3
af911b7f6b1f0b81b35e75a5bcc62428ad8084e80a8cb090eaf3d2b5720d8653
POST /dml/graphql?aid=1858279&lang=en-us HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
content-type: application/json
x-booking-context-action-name: index
x-booking-context-aid: 1858279
x-booking-experiment-state: EEjcmUh1M6nSf4rxwnokHau3qqdEFYEIPFcUFcABjRuuapyCw-_0voCVud7kJ1UWb
x-booking-pageview-id: 28dc01378f5f01af
x-booking-site-type-id: 1
x-booking-timeout-ms: 400
x-booking-topic: capla_browser_b-index-lp-web-mfe
x-envoy-expected-rq-timeout-ms: 400
Origin: https://www.booking.com
Content-Length: 1119
Connection: keep-alive
Cookie: _pxhd=PSOanJZSbPwTx1gxjwN%252FGPeafUWbDphp%252FJiMmPvApxBbtsBU86vD3GJuIDjZQ2nsvxD6lhFYu1OD9ZrBdkI40A%253D%253D%253Aaf9gPC5melr1hbAFYtSsVRBg7XvF9wdNGNnS4sLWho96Y09fTSX6dk6HNxIDhHgsD0DiSVvKBfS-Y3uZRQ856hEvs0asRwllCO9JVmHlwf4%253D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbof7CEiNviT%2FmHzmabJf1QdOxUj3ruOBVwzM24SVP2iGmY8qtuaLP2XTm20YkxfBWShZ4mS5AXK0qP64DjQkcY6sdTBNCJJLFzXMyz0VOSBW%2BOAdcH4NvBC8EQD79UL1FEIY%2Big3w8MJaM52A3t0aYYOhpSz26X9OaUDoehZa%2Bz8%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Oct+03+2022+00%3A10%3A25+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=fb002a7e-e90a-4375-8af6-307de412f116&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
server: nginx
date: Mon, 03 Oct 2022 00:10:26 GMT
content-type: application/json; charset=UTF-8
content-length: 2622
vary: Accept-Encoding, User-Agent
content-encoding: br
set-cookie: _pxhd=4bZ%2F1JCuhQFBZ4MVTcIrI1AenvW7AkcqVDe0-RZV9clItQX2%2FrDLSR3sq78OQkRHCir5YX%2FjuiPcBFMuLM8H5A%3D%3D%3ACvrqBzOT9PMPa-WH9s7MZGsgbxyRr9YhXj%2FXKMVmS-HCY-wpNIhM4guwb5CH8ExOx5Jup5FHdqV6JhF35bqIjnwRLnxMKfj3ugphSXGD4hc%3D; domain=booking.com; path=/; expires=Tue, 03-Oct-2023 00:10:26 GMT
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBJoTYc%2FGcpLXPaPDNvMb5i62iLbfS8eqbHtAoAkfEldYL8fdeyHVZfbuqeO0q3hAQt2q%2FhNvMExRG02yofMnYQ%2F0YO8ATIiL9NmK1yRWpPOhVBPo5qeIOZd0qW4Pf7cu1h7lf2e8FY9IFbT2ad4FbbqRVxHykFgFV8%3D; domain=.booking.com; path=/; expires=Sat, 02-Oct-2027 00:10:26 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
cf.bstatic.com/static/css/searchresults_cloudfront_sd.iq_ltr/2af5c38cdadc2656e0d12b3e4468f80cab427689.css
143.204.68.33200 OK 51 kB URL HTTP/2 cf.bstatic.com/static/css/searchresults_cloudfront_sd.iq_ltr/2af5c38cdadc2656e0d12b3e4468f80cab427689.css
IP 143.204.68.33:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4b8f86b9d9c8d70b0ba1caeb6c42581e
3cca1a85d26acb1b43cbb12d891cb7d4ff18bcf0
115e0fc700c92cd0b5fe719251888eb9e92139d42906902920383e50ed1090f3
GET /static/css/searchresults_cloudfront_sd.iq_ltr/2af5c38cdadc2656e0d12b3e4468f80cab427689.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Fri, 30 Sep 2022 06:49:34 GMT
last-modified: Fri, 30 Sep 2022 03:03:55 GMT
etag: W/"63365c9b-55cd2"
expires: Sun, 30 Oct 2022 06:49:34 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: 7eGwTDXc2LTikRUEcXyiDCOtYy-F97SUlFBgcQXJmOgfL0InsdNT3w==
age: 235251
X-Firefox-Spdy: h2
www.booking.com/c360/v1/track
37.10.0.220200 OK 33 B URL HTTP/1.1 www.booking.com/c360/v1/track
IP 37.10.0.220:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 42fcc80d879dd35c0bbdd04c1414890b
f1dbf58d1b458f9c50995bb8d84da4a67f2d437b
fb87565b58755d257fcf9af5b4b25e0dcfc682adb630dd2a32bbf56b91d2c325
POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
Content-Type: application/json
X-Booking-Platform: undefined
X-Booking-Pageview-Id: 28dc01378f5f01af
X-Booking-Session-Id: undefined
X-Booking-ET-Seed: undefined
X-Booking-AID: 1858279
X-Booking-Label: undefined
X-Booking-CSRF: undefined
X-Booking-Language-Code: en-us
Origin: https://www.booking.com
Content-Length: 520
Connection: keep-alive
Cookie: _pxhd=PSOanJZSbPwTx1gxjwN%252FGPeafUWbDphp%252FJiMmPvApxBbtsBU86vD3GJuIDjZQ2nsvxD6lhFYu1OD9ZrBdkI40A%253D%253D%253Aaf9gPC5melr1hbAFYtSsVRBg7XvF9wdNGNnS4sLWho96Y09fTSX6dk6HNxIDhHgsD0DiSVvKBfS-Y3uZRQ856hEvs0asRwllCO9JVmHlwf4%253D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbof7CEiNviT%2FmHzmabJf1QdOxUj3ruOBVwzM24SVP2iGmY8qtuaLP2XTm20YkxfBWShZ4mS5AXK0qP64DjQkcY6sdTBNCJJLFzXMyz0VOSBW%2BOAdcH4NvBC8EQD79UL1FEIY%2Big3w8MJaM52A3t0aYYOhpSz26X9OaUDoehZa%2Bz8%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Oct+03+2022+00%3A10%3A25+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=fb002a7e-e90a-4375-8af6-307de412f116&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1664755826141; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
server: nginx
date: Mon, 03 Oct 2022 00:10:26 GMT
content-type: application/json; charset=UTF-8
content-length: 33
vary: User-Agent, Accept-Encoding
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbnmKTRaewPBsL8oJPwYK2qVZOWjZzIUOnHLDJwkr7PZfMREL3byZmUO74WV6RK9h%2FZ8gMOY3KxxoRekKA3kue6jV%2F1jo2zCG7BPRABuOidx%2B8ARE%2BTozCEkReWViZlBkOLPsPiJHm8EGpkrxiXg4zFd2yVtHozn3DQksqX8PvGzo%3D; domain=.booking.com; path=/; expires=Sat, 02-Oct-2027 00:10:26 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
q-xx.bstatic.com/xdata/images/xphoto/300x240/57584488.jpeg?k=d8d4706fc72ee789d870eb6b05c0e546fd4ad85d72a3af3e30fb80ca72f0ba57&o=
143.204.68.33200 OK 10 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/57584488.jpeg?k=d8d4706fc72ee789d870eb6b05c0e546fd4ad85d72a3af3e30fb80ca72f0ba57&o=
IP 143.204.68.33:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 3516533c36779b327798248218da8b19
36c0739bb6e85bd406f7e3c853bcde872c3302e3
8aba7cf83e43468f409963df22b718744c34fc9aba143af86d4b73219b3f5910
GET /xdata/images/xphoto/300x240/57584488.jpeg?k=d8d4706fc72ee789d870eb6b05c0e546fd4ad85d72a3af3e30fb80ca72f0ba57&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 10231
server: nginx
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Mon, 19 Sep 2022 07:01:06 GMT
expires: Wed, 19 Oct 2022 07:01:06 GMT
cache-control: max-age=2592000
etag: "d6651d82e4267783198bc4610b398964c79af7e9"
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: aP2DDbdvfygG0esO7fO6ZLxcO82pnbW6KZVesRNjM_5H5pPeH12jiA==
age: 1184960
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/main_cloudfront_sd/1d0024ceb7419e30773b797d0500f93f39eae886.js
143.204.68.33200 OK 13 kB URL HTTP/2 cf.bstatic.com/static/js/main_cloudfront_sd/1d0024ceb7419e30773b797d0500f93f39eae886.js
IP 143.204.68.33:0
File type ASCII text, with very long lines (1823), with no line terminators
Hash d66019b5d4494f976d799a7ec87ff773
6a0791ad72ffc3805e721601cf81e7b62af2837f
eb6a0da290ea6724c815ceaf6871d9d9a5b97e3dab40959f8928493dfd8bf988
GET /static/js/main_cloudfront_sd/1d0024ceb7419e30773b797d0500f93f39eae886.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 29 Sep 2022 07:15:09 GMT
last-modified: Thu, 29 Sep 2022 06:53:01 GMT
etag: W/"633540cd-866f0"
expires: Sat, 29 Oct 2022 07:15:09 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c29e813f981bfce75709b36f6e4555a2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: xP0GfI09QmpaphVdohQ0bjf1-T6MbQggbHwSLO5bb2moe0_H8zfdyw==
age: 320115
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/atlas_cst_cloudfront_sd/6e3f915337500279085fe1d6481e12337fe51056.js
143.204.68.33200 OK 77 kB URL HTTP/2 cf.bstatic.com/static/js/atlas_cst_cloudfront_sd/6e3f915337500279085fe1d6481e12337fe51056.js
IP 143.204.68.33:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash c32b5a8fd742106b91c44ca50d689494
7fd2195081e3a4e8705768d5c7a5f85bcd0083f0
114d59ce85752b43aca1088395246304ab41dd01b1902379797348d4dd130174
GET /static/js/atlas_cst_cloudfront_sd/6e3f915337500279085fe1d6481e12337fe51056.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 28 Sep 2022 07:32:10 GMT
last-modified: Tue, 27 Sep 2022 11:26:52 GMT
etag: W/"6332ddfc-8b464"
expires: Fri, 28 Oct 2022 07:32:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: JjYTBMuH_gLjfwAq46HwSKL04tVMNhany3NFqxwQLiB8ACahfPpBdA==
age: 405495
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/hotel/300x240/100235855.jpeg?k=5b6e6cff16cfd290e953768d63ee15f633b56348238a705c45759aa3a81ba82b&o=
143.204.68.33200 OK 15 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/hotel/300x240/100235855.jpeg?k=5b6e6cff16cfd290e953768d63ee15f633b56348238a705c45759aa3a81ba82b&o=
IP 143.204.68.33:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash d7f7b2f37d55a0948fe4d3b371f78f41
3cf5a1f3b666afbd4e8f3ea39e9de2b9f628f72c
8d70465609b50fe82003fee4bad7def0ca7b231f3d8e5878471aa88cff9bcd9e
GET /xdata/images/hotel/300x240/100235855.jpeg?k=5b6e6cff16cfd290e953768d63ee15f633b56348238a705c45759aa3a81ba82b&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 15106
server: nginx
date: Sat, 01 Oct 2022 16:47:02 GMT
etag: "cefcf1814f1b6c79158b1f2f7990d092dba86ac4"
expires: Mon, 31 Oct 2022 16:47:02 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: WyhNEWUO_l8LpvHWLbgIjbZ1dwLw_lEefdLNLcvx2GXSA3Ju261nCw==
age: 113004
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/hotel/300x240/52979454.jpeg?k=6ac6d0afd28e4ce00a8f817cc3045039e064469a3f9a88059706c0b45adf2e7d&o=
143.204.68.33200 OK 11 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/hotel/300x240/52979454.jpeg?k=6ac6d0afd28e4ce00a8f817cc3045039e064469a3f9a88059706c0b45adf2e7d&o=
IP 143.204.68.33:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash a278b4f84e27ae6e53694c50c6c0db6e
8289a6f74256ebe6ead5ed14c58d6704ec72a7ef
57c23f20cba27810aa9c20deabd2edc8dac96cee6d1ca27f1c659610becee55d
GET /xdata/images/hotel/300x240/52979454.jpeg?k=6ac6d0afd28e4ce00a8f817cc3045039e064469a3f9a88059706c0b45adf2e7d&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 11252
server: nginx
date: Wed, 28 Sep 2022 04:04:32 GMT
etag: "6b3ce5505e63ed7502c24dea538bc31e0c533dfc"
expires: Fri, 28 Oct 2022 04:04:32 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: HNB_FrFZgA6TCqAc8qc4bmZ3EM1AvvtT8v6IoPntEFXvyz20TcckoQ==
age: 417954
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450074.jpeg?k=7039b03a94f3b99262c4b3054b0edcbbb91e9dade85b6efc880d45288a06c126&o=
143.204.68.33200 OK 20 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450074.jpeg?k=7039b03a94f3b99262c4b3054b0edcbbb91e9dade85b6efc880d45288a06c126&o=
IP 143.204.68.33:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 2414c022c1585360984508f5c5de208b
7f2fe2e841f4929dcf52c93c7efbe6401ef9fd24
2309e00634f6000b455200aeaae2c868aef28a31a05571aeada61b9c78264135
GET /xdata/images/xphoto/300x240/45450074.jpeg?k=7039b03a94f3b99262c4b3054b0edcbbb91e9dade85b6efc880d45288a06c126&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 20152
server: nginx
date: Sat, 03 Sep 2022 01:59:44 GMT
etag: "72fe9c998b2edfc8437836fc091e53cfdd929a3c"
expires: Mon, 03 Oct 2022 01:59:44 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: FNw-RoRkegZHbh6euc55CNd0IdA0bCgWmu-jy7rLG5TtrUgoZ65Mpw==
age: 2585442
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450090.jpeg?k=52f6b8190edb5a9c91528f8e0f875752ce55a6beb35dc62873601e57944990e4&o=
143.204.68.33200 OK 14 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450090.jpeg?k=52f6b8190edb5a9c91528f8e0f875752ce55a6beb35dc62873601e57944990e4&o=
IP 143.204.68.33:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 8acccb2d6683be0bca40bb1771e89a50
7b209f7d6f9a0f44f33f2a12b132ea391d5a7811
95e94b8bd3c16405b193fdd709c777fd2b5ea98d994a40232d95c26c04da6f79
GET /xdata/images/xphoto/300x240/45450090.jpeg?k=52f6b8190edb5a9c91528f8e0f875752ce55a6beb35dc62873601e57944990e4&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 14448
server: nginx
date: Mon, 05 Sep 2022 06:01:40 GMT
etag: "9e2b87077fa765b8012b1be3010e133c4962efa0"
expires: Wed, 05 Oct 2022 06:01:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: SVHpboofc7avQYXC9I1y0dELjLz1TqZ0-CvJy8l0M_b4KRiOfWSZrg==
age: 2398126
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450058.jpeg?k=2449eb55e8269a66952858c80fd7bdec987f9514cd79d58685651b7d6e9cdfcf&o=
143.204.68.33200 OK 12 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450058.jpeg?k=2449eb55e8269a66952858c80fd7bdec987f9514cd79d58685651b7d6e9cdfcf&o=
IP 143.204.68.33:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash b5b754cfdb4146c7a99d432dd323a23b
901d28c8ad2a1431c560f4fefbd96768cea85823
1718dd5438e00eacc0afd6176fbe286bb20531864915d3c07c4312737d25ce7a
GET /xdata/images/xphoto/300x240/45450058.jpeg?k=2449eb55e8269a66952858c80fd7bdec987f9514cd79d58685651b7d6e9cdfcf&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 12173
server: nginx
date: Mon, 26 Sep 2022 02:23:54 GMT
etag: "c640d9dab50e20f2d820223a90078e61edd61352"
expires: Wed, 26 Oct 2022 02:23:54 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: ISGSV79NWvaRmYianXbUpv7isTT9KUzWstSMhbBNChRAbqAjOmPt9A==
age: 596792
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450113.jpeg?k=76b3780a0e4aacb9d02ac3569b05b3c5e85e0fd875287e9ac334e3b569f320c7&o=
143.204.68.33200 OK 11 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450113.jpeg?k=76b3780a0e4aacb9d02ac3569b05b3c5e85e0fd875287e9ac334e3b569f320c7&o=
IP 143.204.68.33:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 36896ed28c3a04b337713e865e468131
b42b54b780ee6652ae6ba59bf57a1f7daaeb6458
6bf196e10de012119d344c3b9c9e1ca4637b5917264327dfb6704ecae22b059d
GET /xdata/images/xphoto/300x240/45450113.jpeg?k=76b3780a0e4aacb9d02ac3569b05b3c5e85e0fd875287e9ac334e3b569f320c7&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 11215
server: nginx
date: Fri, 30 Sep 2022 06:11:56 GMT
etag: "350196331bfb15b7e849b6da553fe936ab6a9dcd"
expires: Sun, 30 Oct 2022 06:11:56 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: a7rCAUTKxqn8Nt5vj3ndM4FVF4CilfbXx3OWXMmwlf-q93h5or_lCg==
age: 237510
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450082.jpeg?k=beb101b827a729065964523184f4db6cac42900c2415d71d516999af40beb7aa&o=
143.204.68.33200 OK 13 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450082.jpeg?k=beb101b827a729065964523184f4db6cac42900c2415d71d516999af40beb7aa&o=
IP 143.204.68.33:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash cb649ad60fe5750fbc23da44d35206b4
a9c188e226fdd77e73f3fa374b210bf1bb0dfe65
a6f122a9ceb30d1ebc827c40e4e7e40b710da41f9a7ee454d8504128e0ca7aa0
GET /xdata/images/xphoto/300x240/45450082.jpeg?k=beb101b827a729065964523184f4db6cac42900c2415d71d516999af40beb7aa&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 13058
server: nginx
date: Tue, 20 Sep 2022 01:02:24 GMT
etag: "322c80d0456642c28f0ab47822973da84ca2bf9f"
expires: Thu, 20 Oct 2022 01:02:24 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: eE40LL9OJNF5xccvQ0boy1TLekEQPTYjGVx1nsDFMW_vziTvcRJUig==
age: 1120082
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450073.jpeg?k=795a94c30433de1858ea52375e8190a962b302376be2e68aa08be345d936557d&o=
143.204.68.33200 OK 11 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450073.jpeg?k=795a94c30433de1858ea52375e8190a962b302376be2e68aa08be345d936557d&o=
IP 143.204.68.33:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 5567eb5c3d7f1f8d3c5fa7d43cb32b34
4caeab4dfa4cbdad3bdde14b1f659f8b0b06b46f
84331b7d14d04d74b8b85ef87221f322f8508e5e596b5c8bae2f8197f233aec2
GET /xdata/images/xphoto/300x240/45450073.jpeg?k=795a94c30433de1858ea52375e8190a962b302376be2e68aa08be345d936557d&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 10959
server: nginx
date: Fri, 23 Sep 2022 02:47:34 GMT
etag: "5990a76e6d05e09a508ad3ddb0d37d7528529527"
expires: Sun, 23 Oct 2022 02:47:34 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: lzBvFT80fx5TaYGCFrxbV4LNYvizrIAeW33KaXpCttbsCOczRvBrdw==
age: 854572
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450093.jpeg?k=aa5cc7703f3866af8ffd6de346c21161804a26c3d0a508d3999c11c337506ae1&o=
143.204.68.33200 OK 13 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450093.jpeg?k=aa5cc7703f3866af8ffd6de346c21161804a26c3d0a508d3999c11c337506ae1&o=
IP 143.204.68.33:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 34cd95647e7bfee64c4854f7146348b9
8017d1d7da4d9079bd0608f985a01630543c7d3a
7f72c1e1d27db3f66b0362c6b6066f384302247b1bc315af8054109102860740
GET /xdata/images/xphoto/300x240/45450093.jpeg?k=aa5cc7703f3866af8ffd6de346c21161804a26c3d0a508d3999c11c337506ae1&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 13027
server: nginx
date: Mon, 05 Sep 2022 06:01:40 GMT
etag: "99f53c500f53a728d293370890f9ec0dc68d25b8"
expires: Wed, 05 Oct 2022 06:01:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: enPMCdcKMQahxg1oRbvsWH-H8jGjcZFDRzUZhYciHqclitKzRXlV5A==
age: 2398126
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450090.jpeg?k=52f6b8190edb5a9c91528f8e0f875752ce55a6beb35dc62873601e57944990e4&o=
143.204.68.33200 OK 14 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450090.jpeg?k=52f6b8190edb5a9c91528f8e0f875752ce55a6beb35dc62873601e57944990e4&o=
IP 143.204.68.33:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 8acccb2d6683be0bca40bb1771e89a50
7b209f7d6f9a0f44f33f2a12b132ea391d5a7811
95e94b8bd3c16405b193fdd709c777fd2b5ea98d994a40232d95c26c04da6f79
GET /xdata/images/xphoto/300x240/45450090.jpeg?k=52f6b8190edb5a9c91528f8e0f875752ce55a6beb35dc62873601e57944990e4&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 14448
server: nginx
date: Mon, 05 Sep 2022 06:01:40 GMT
etag: "9e2b87077fa765b8012b1be3010e133c4962efa0"
expires: Wed, 05 Oct 2022 06:01:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: t8AZnSVM0zzB1QMLB_sz1DzcyraEEfI5wC0nwWbms-6RLW7GQZMtRQ==
age: 2398126
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/searchresults_cloudfront_sd/6448dfaa147876d6ec24cc348c7eb2987de0cc14.js
143.204.68.33200 OK 57 kB URL HTTP/2 cf.bstatic.com/static/js/searchresults_cloudfront_sd/6448dfaa147876d6ec24cc348c7eb2987de0cc14.js
IP 143.204.68.33:0
File type Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
Hash 52295489f100a07f14940713e8758460
2b871a7697ab9deac50cd5d14bc101576e93f7ae
a5297a3f46436f73389ecee97a2a31a745f07f3ec01f18d9498667552fed2d78
GET /static/js/searchresults_cloudfront_sd/6448dfaa147876d6ec24cc348c7eb2987de0cc14.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 29 Sep 2022 07:15:09 GMT
last-modified: Thu, 29 Sep 2022 06:53:01 GMT
etag: W/"633540cd-3002f"
expires: Sat, 29 Oct 2022 07:15:09 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: sBNQy3wfmA3in6Pmqh1VUKsuj6VjiqM-7I66LFXy0gTBd0aX_EfD1w==
age: 320117
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450113.jpeg?k=76b3780a0e4aacb9d02ac3569b05b3c5e85e0fd875287e9ac334e3b569f320c7&o=
143.204.68.33200 OK 11 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450113.jpeg?k=76b3780a0e4aacb9d02ac3569b05b3c5e85e0fd875287e9ac334e3b569f320c7&o=
IP 143.204.68.33:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 36896ed28c3a04b337713e865e468131
b42b54b780ee6652ae6ba59bf57a1f7daaeb6458
6bf196e10de012119d344c3b9c9e1ca4637b5917264327dfb6704ecae22b059d
GET /xdata/images/xphoto/300x240/45450113.jpeg?k=76b3780a0e4aacb9d02ac3569b05b3c5e85e0fd875287e9ac334e3b569f320c7&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 11215
server: nginx
date: Fri, 30 Sep 2022 06:11:56 GMT
etag: "350196331bfb15b7e849b6da553fe936ab6a9dcd"
expires: Sun, 30 Oct 2022 06:11:56 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: TueB7-3dJr1OiWFLWfTd3nrPBDUnL64h-mLv84hpUoZsCo86eIndOA==
age: 237510
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/186.b04616f6.chunk.js
143.204.68.33200 OK 33 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/186.b04616f6.chunk.js
IP 143.204.68.33:0
File type ASCII text, with very long lines (65460)
Hash 097b70d8a4ff7e5495f5144f13532cbd
d4fb662e96ea10fdb1af4dba6fd40d60519200e0
c86bfca0b7eba2e304865cba0d02f8ed9d147b13ab3b26e0efa00124fcc46e74
GET /psb/capla/static/js/186.b04616f6.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 26 Sep 2022 07:28:32 GMT
etag: W/"c806c24a5fb840173787c795b372b381"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Mon, 26 Sep 2022 06:20:33 GMT
x-amz-expiration: expiry-date="Tue, 24 Jan 2023 06:20:33 GMT", rule-id=""
expires: Wed, 26 Oct 2022 07:28:32 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c29e813f981bfce75709b36f6e4555a2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: N6vj_yJA8lyY5Uguvvs9Rt-RdRHLtt-PwqIMNvFB-LWT1TszFhXQhg==
age: 578513
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450082.jpeg?k=beb101b827a729065964523184f4db6cac42900c2415d71d516999af40beb7aa&o=
143.204.68.33200 OK 13 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450082.jpeg?k=beb101b827a729065964523184f4db6cac42900c2415d71d516999af40beb7aa&o=
IP 143.204.68.33:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash cb649ad60fe5750fbc23da44d35206b4
a9c188e226fdd77e73f3fa374b210bf1bb0dfe65
a6f122a9ceb30d1ebc827c40e4e7e40b710da41f9a7ee454d8504128e0ca7aa0
GET /xdata/images/xphoto/300x240/45450082.jpeg?k=beb101b827a729065964523184f4db6cac42900c2415d71d516999af40beb7aa&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 13058
server: nginx
date: Tue, 20 Sep 2022 01:02:24 GMT
etag: "322c80d0456642c28f0ab47822973da84ca2bf9f"
expires: Thu, 20 Oct 2022 01:02:24 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: IhzU558-we54IyxapoQTN1HLad0oB5UjNwMVd3QUw8k9otRKv1cJZQ==
age: 1120082
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450093.jpeg?k=aa5cc7703f3866af8ffd6de346c21161804a26c3d0a508d3999c11c337506ae1&o=
143.204.68.33200 OK 13 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450093.jpeg?k=aa5cc7703f3866af8ffd6de346c21161804a26c3d0a508d3999c11c337506ae1&o=
IP 143.204.68.33:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 34cd95647e7bfee64c4854f7146348b9
8017d1d7da4d9079bd0608f985a01630543c7d3a
7f72c1e1d27db3f66b0362c6b6066f384302247b1bc315af8054109102860740
GET /xdata/images/xphoto/300x240/45450093.jpeg?k=aa5cc7703f3866af8ffd6de346c21161804a26c3d0a508d3999c11c337506ae1&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 13027
server: nginx
date: Mon, 05 Sep 2022 06:01:40 GMT
etag: "99f53c500f53a728d293370890f9ec0dc68d25b8"
expires: Wed, 05 Oct 2022 06:01:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: v4UCOFSyqK_7S-rzHNQ4J8YQSWA4B2vBQD4wBDUgBXKy1R9VPFcFTg==
age: 2398126
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450056.jpeg?k=251e2507d43a24a4c58bb961b8d157147d56efbf91b49f9606bc768c58f581e4&o=
143.204.68.33200 OK 16 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450056.jpeg?k=251e2507d43a24a4c58bb961b8d157147d56efbf91b49f9606bc768c58f581e4&o=
IP 143.204.68.33:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 5ce55d22c4e06809b72801bf78198fb2
8cc49f26d00a1b2747ba599b06d67fd57d724047
3781416aa7ee06509ed5e7aa5143189ca6e1436f586194544fba3b8cfff6f27a
GET /xdata/images/xphoto/300x240/45450056.jpeg?k=251e2507d43a24a4c58bb961b8d157147d56efbf91b49f9606bc768c58f581e4&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 16003
server: nginx
date: Fri, 09 Sep 2022 00:20:35 GMT
etag: "526a5e1ec8f03145a7e8429c115d39a4273a88fd"
expires: Sun, 09 Oct 2022 00:20:35 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: MiBhymLzna_PgTJqWuXkzw_lCdC9cWvJPZJY6wx_p6eDgtt4b_geZw==
age: 2072991
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450279.jpeg?k=cb9ab85ffe439f3030e00281f2d52583a398bf076e54f00f746e1d1baf62bf6e&o=
143.204.68.33200 OK 23 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450279.jpeg?k=cb9ab85ffe439f3030e00281f2d52583a398bf076e54f00f746e1d1baf62bf6e&o=
IP 143.204.68.33:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash d2777025d4a89299a415993ffee584ae
882aadd31ddf11f475cc870f291c0cb00909bb41
a358344c77aa72b8ed5c9aeb8989f3e5d01116badd07b0c8fa7a6a3d7b1afb2e
GET /xdata/images/xphoto/300x240/45450279.jpeg?k=cb9ab85ffe439f3030e00281f2d52583a398bf076e54f00f746e1d1baf62bf6e&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 22931
server: nginx
date: Sun, 02 Oct 2022 23:24:39 GMT
etag: "3d90dd2309da75862f7641b26c60c9f44da60dd9"
expires: Tue, 01 Nov 2022 23:24:39 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: gcyZrGFEHkAmHYtnO0E4PIEpmA0cxz9t2kTeMjotAqPL1NW3dvIreQ==
age: 2747
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/jp/9bf7e50bc6dc66599aeede9189ca16de461c60b6.png
143.204.68.33200 OK 18 kB URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/jp/9bf7e50bc6dc66599aeede9189ca16de461c60b6.png
IP 143.204.68.33:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 3d32707cb3ccfc843ca809ff0ff08c28
950e8aa81a2f546217a0ca433700c4df4550bbfd
10d7e42ad31f48815167a292170eaacedd4e7b0ae8546795a63975c2711ce024
GET /static/img/flags/new/48-squared/jp/9bf7e50bc6dc66599aeede9189ca16de461c60b6.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 333
server: nginx
date: Sun, 04 Sep 2022 20:46:49 GMT
last-modified: Mon, 07 Sep 2020 10:40:09 GMT
etag: "5f560e09-14d"
expires: Tue, 04 Oct 2022 20:46:49 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: NamfiFySjAhGKZga9tTdZOTA_AwcnmOASYsvvHCkcpDEl77b0YG5vA==
age: 2431416
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450068.jpeg?k=41cc7c5449011323aaaaed4e845cb16200b5d540c77a50c1bea90399a1e92d70&o=
143.204.68.33200 OK 20 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450068.jpeg?k=41cc7c5449011323aaaaed4e845cb16200b5d540c77a50c1bea90399a1e92d70&o=
IP 143.204.68.33:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 41bf36733e71ce642c45069444cfcf64
c931c599e9519d6c110ceed2c92432b818780d07
5c330c4cabaf246ebde2e47b2153d3e070423478706634c810980d67173f503a
GET /xdata/images/xphoto/300x240/45450068.jpeg?k=41cc7c5449011323aaaaed4e845cb16200b5d540c77a50c1bea90399a1e92d70&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 19539
server: nginx
date: Fri, 23 Sep 2022 02:49:41 GMT
etag: "ec7313665b11c2a9b13b0ba1b12623c73a6271b5"
expires: Sun, 23 Oct 2022 02:49:41 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: UqhxMo-ekOT6YnG4VUF5eOtJaspkbiNmN85vbveqGuiYjC_ufO81gw==
age: 854445
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450066.jpeg?k=4adfab312f5d26da9f81da48d8c95ca8f108215b2c84085590891a9e0e17b144&o=
143.204.68.33200 OK 22 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450066.jpeg?k=4adfab312f5d26da9f81da48d8c95ca8f108215b2c84085590891a9e0e17b144&o=
IP 143.204.68.33:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash a610b882e99f89c94893c05f18687ec3
16e551d6c5ac3a8db914ec8f5fc15bbe9589a1c8
9814b3eb58d8fb061b8ebe7b1a76f31f1d08e556f1c4b3662e3a6752f121ca07
GET /xdata/images/xphoto/300x240/45450066.jpeg?k=4adfab312f5d26da9f81da48d8c95ca8f108215b2c84085590891a9e0e17b144&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 21509
server: nginx
date: Mon, 05 Sep 2022 06:01:39 GMT
etag: "65aa2b86f9c8f55ab55c00728795a209607a17a2"
expires: Wed, 05 Oct 2022 06:01:39 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: 2VtBsj8mjg-huhQww5BSQ7M6FAQgCtG984nlacMHje6egHl3YYIXzQ==
age: 2398127
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450283.jpeg?k=44ef0e355cff36883935e4c99b5c01b035eabebad278d22363210b2fe40b2791&o=
143.204.68.33200 OK 16 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450283.jpeg?k=44ef0e355cff36883935e4c99b5c01b035eabebad278d22363210b2fe40b2791&o=
IP 143.204.68.33:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 6eb82e2bccd8b35e46f250238844ef3c
8f9cc26cce3b866559d1994c75147871b3d3bcea
0a96fd07340aee61dede1f72f25f593c9bed353963d8f289890b38fc2b827ba7
GET /xdata/images/xphoto/300x240/45450283.jpeg?k=44ef0e355cff36883935e4c99b5c01b035eabebad278d22363210b2fe40b2791&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 15976
server: nginx
date: Fri, 30 Sep 2022 14:46:33 GMT
etag: "d66d2556dad134b536b6915a00238f6956108ef4"
expires: Sun, 30 Oct 2022 14:46:33 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: aO0Qk3UeaeI4sg7Z4G7G8XZ2_PZPxQwjI-uC03wSfBRKrT1_txqGug==
age: 206633
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450103.jpeg?k=a1fa72362160b1df6e288050afa7ce1aade80871acd368ddd4a4ebf6ad87764e&o=
143.204.68.33200 OK 21 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450103.jpeg?k=a1fa72362160b1df6e288050afa7ce1aade80871acd368ddd4a4ebf6ad87764e&o=
IP 143.204.68.33:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 90383d39034028eafbd253eead13aecf
32035c5bcff0627f4901188d0e7b994aa46e64c8
150590b7a8af048e1a2696985211a78b0fa1800523f338e9fee9b5947cb0e5d7
GET /xdata/images/xphoto/300x240/45450103.jpeg?k=a1fa72362160b1df6e288050afa7ce1aade80871acd368ddd4a4ebf6ad87764e&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 20736
server: nginx
date: Fri, 23 Sep 2022 02:47:35 GMT
etag: "3c2fc8b2bdd469a0ee76213ffc3833402ae05059"
expires: Sun, 23 Oct 2022 02:47:35 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: KpOXTZLzYVV6FoMPhW_hUg7sNK8vi_YCv1exfL60U-UX6pyoaCBALw==
age: 854571
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/664.326bd0c5.chunk.js
143.204.68.33200 OK 31 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/664.326bd0c5.chunk.js
IP 143.204.68.33:0
File type ASCII text, with very long lines (65460)
Hash ee1fe3ace6a67472c53c1765a640e8b2
892c9e75ac838ba4a376a4ba5193d0f3646df8db
300835f83374ab1326221e39cedfa8df7170dcbc22329daf075fb49d1c4676c3
GET /psb/capla/static/js/664.326bd0c5.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 28 Sep 2022 12:47:53 GMT
etag: W/"10435c403617c97aff188e7332c9a430"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Wed, 28 Sep 2022 12:37:09 GMT
x-amz-expiration: expiry-date="Thu, 26 Jan 2023 12:37:09 GMT", rule-id=""
expires: Fri, 28 Oct 2022 12:47:53 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c29e813f981bfce75709b36f6e4555a2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: vmha1yNxAALn3b5TRM87KxkuyWJMHUeB0AcAg7IYt-vigGRDTwbi6w==
age: 386552
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450095.jpeg?k=cd5e46e632dab722d22217813485efde31fbe82f5f26a624166edccdbe8187bc&o=
143.204.68.33200 OK 20 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450095.jpeg?k=cd5e46e632dab722d22217813485efde31fbe82f5f26a624166edccdbe8187bc&o=
IP 143.204.68.33:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash deb177f86bfc7083567ae12e1964f4ad
45c07c5d8cdec20431c81aee3aee189a4d87cd99
1f14eeb3c3ef9eeb1170e99a2fea2fbd034a83305f72be3fdfd7a7711f5fd4ee
GET /xdata/images/xphoto/300x240/45450095.jpeg?k=cd5e46e632dab722d22217813485efde31fbe82f5f26a624166edccdbe8187bc&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 20002
server: nginx
date: Mon, 26 Sep 2022 02:23:54 GMT
etag: "38b94696558e8701c850ee877f956d554be9238d"
expires: Wed, 26 Oct 2022 02:23:54 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: 6T3OGiG8GjaTvX1B6B0i5sZqwStP8gzKYbAjqCeH6MNqWdcxanlhLg==
age: 596792
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450097.jpeg?k=eac0f917a53dc395bd379fef8c191e7d5e37012b68e60232e4f6bba2a2901b7a&o=
143.204.68.33200 OK 15 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450097.jpeg?k=eac0f917a53dc395bd379fef8c191e7d5e37012b68e60232e4f6bba2a2901b7a&o=
IP 143.204.68.33:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 13d1467c76d772dd6647f49fe4140d08
7ff7e63be06a3e98495eae5c0a1fb26482025d78
50fa8a1dfe8f3251194c1564def0dda195ce6fc96f05a63a83753b7b6bc9463d
GET /xdata/images/xphoto/300x240/45450097.jpeg?k=eac0f917a53dc395bd379fef8c191e7d5e37012b68e60232e4f6bba2a2901b7a&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 15440
server: nginx
date: Sun, 02 Oct 2022 23:24:39 GMT
etag: "807a35c8a903e8cd5c0a84f3412ac34401ee965f"
expires: Tue, 01 Nov 2022 23:24:39 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: TTOH-6jKhqLP8LX_Sn5GC_PLYlLKjFfsMAudxypNURjbUlxR62E86w==
age: 2747
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/57175023.jpeg?k=dc0319d4d64ded9ee4b0ddb162a2e80db7899300b7bf21b34506888895d74c79&o=
143.204.68.33200 OK 17 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/57175023.jpeg?k=dc0319d4d64ded9ee4b0ddb162a2e80db7899300b7bf21b34506888895d74c79&o=
IP 143.204.68.33:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash cb830f24406a145f18b29227188fe8d0
6244d25c3af11e7b1106c7652c6dd0818bf47849
3f3e48ee42260b5d5cbe17052df364872d6853d6a77db87b859d52d12411ede3
GET /xdata/images/xphoto/300x240/57175023.jpeg?k=dc0319d4d64ded9ee4b0ddb162a2e80db7899300b7bf21b34506888895d74c79&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 17041
server: nginx
date: Mon, 05 Sep 2022 06:01:40 GMT
etag: "6063a9c422406d9dac80d44fb35767d04490e1cf"
expires: Wed, 05 Oct 2022 06:01:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: VVa8gfG9ITthSfUWP1I3XLiVYazbbR5mZdvS9Q6uS4GEuXdFUN7LEw==
age: 2398126
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450075.jpeg?k=d23cf8443780ac09f46f59e40393d75dbe64b06029b4959c60b81b7fdefc9be0&o=
143.204.68.33200 OK 12 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450075.jpeg?k=d23cf8443780ac09f46f59e40393d75dbe64b06029b4959c60b81b7fdefc9be0&o=
IP 143.204.68.33:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash f9b81d29754609253833fb749eb9c430
76bee0195580b7ed6fbbf132c14e4b04dd1828dc
f3ff755c327cbe08419dbc2fe6ef2452dba8c5e805e9bc1ac08dd55527360b4e
GET /xdata/images/xphoto/300x240/45450075.jpeg?k=d23cf8443780ac09f46f59e40393d75dbe64b06029b4959c60b81b7fdefc9be0&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 12281
server: nginx
date: Thu, 29 Sep 2022 12:00:59 GMT
etag: "3f4978b6a326129e9a98f5ea1e0adac84ed5beb2"
expires: Sat, 29 Oct 2022 12:00:59 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: Ps8BbgF_LXihYFwxFQXS3Y4OzkzAy671vlWHEJR7Aza5I_sfD_t17Q==
age: 302967
X-Firefox-Spdy: h2
www.booking.com/js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=28dc01378f5f01af&ete=&etg=&etcg=&ets=cCcCcCJdDBKJJVaXNJIbVCMILcYJZXe|1,cCHObdRdJJXRDVMDTEHAFPRJdUDEYIbaTaTaET|1,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|1,cCHObdRdJJXCcAZTbaTaTaET|2,cCHObdRdJJXCcaWQOccCcCcCC|2,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|2&etgwv=
37.10.0.220200 OK 35 B URL HTTP/1.1 www.booking.com/js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=28dc01378f5f01af&ete=&etg=&etcg=&ets=cCcCcCJdDBKJJVaXNJIbVCMILcYJZXe|1,cCHObdRdJJXRDVMDTEHAFPRJdUDEYIbaTaTaET|1,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|1,cCHObdRdJJXCcAZTbaTaTaET|2,cCHObdRdJJXCcaWQOccCcCcCC|2,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|2&etgwv=
IP 37.10.0.220:0
Hash 79a611524d7c43a354c589264cc2376e
2e25649d9a8a208302be0502b47a0e44b07bc7c1
c7a9af81f3467d3c95760df18d0853bda8c191f612fb2e8b2b5c4ed941fbaf1a
GET /js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=28dc01378f5f01af&ete=&etg=&etcg=&ets=cCcCcCJdDBKJJVaXNJIbVCMILcYJZXe|1,cCHObdRdJJXRDVMDTEHAFPRJdUDEYIbaTaTaET|1,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|1,cCHObdRdJJXCcAZTbaTaTaET|2,cCHObdRdJJXCcaWQOccCcCcCC|2,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|2&etgwv= HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
X-Booking-Info:
X-Booking-Client-Info:
X-Booking-Pageview-Id: 28dc01378f5f01af
X-Booking-SiteType-Id: 1
X-Booking-Language-Code: en-us
X-Booking-AID: 1858279
X-Booking-Session-Id: 21905cb0c162a505f48cf5dbe5aabbf2
X-Booking-ET-Serialized-State: EEjcmUh1M6nSf4rxwnokHau3qqdEFYEIPFcUFcABjRuuapyCw-_0voCVud7kJ1UWb
Connection: keep-alive
Cookie: _pxhd=4bZ%2F1JCuhQFBZ4MVTcIrI1AenvW7AkcqVDe0-RZV9clItQX2%2FrDLSR3sq78OQkRHCir5YX%2FjuiPcBFMuLM8H5A%3D%3D%3ACvrqBzOT9PMPa-WH9s7MZGsgbxyRr9YhXj%2FXKMVmS-HCY-wpNIhM4guwb5CH8ExOx5Jup5FHdqV6JhF35bqIjnwRLnxMKfj3ugphSXGD4hc%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbnmKTRaewPBsL8oJPwYK2qVZOWjZzIUOnHLDJwkr7PZfMREL3byZmUO74WV6RK9h%2FZ8gMOY3KxxoRekKA3kue6jV%2F1jo2zCG7BPRABuOidx%2B8ARE%2BTozCEkReWViZlBkOLPsPiJHm8EGpkrxiXg4zFd2yVtHozn3DQksqX8PvGzo%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Oct+03+2022+00%3A10%3A25+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=fb002a7e-e90a-4375-8af6-307de412f116&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1664755826141; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
server: nginx
date: Mon, 03 Oct 2022 00:10:26 GMT
content-type: image/gif
content-length: 35
vary: User-Agent, Accept-Encoding
content-encoding: br
strict-transport-security: max-age=604800
content-security-policy-report-only: report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=96b401391a4601b8&e=UmFuZG9tSVYkc2RlIyh9Yea92wm0yRUjnCBymoy8ejLG_hDZ5Arxv5BnOVf-m1z9XtGGBLJJ29U; frame-ancestors 'none';
x-xss-protection: 1; mode=block
www.booking.com/js_tracking?stype=1&pid=28dc01378f5f01af&aid=1858279&ver=2&lang=en-us&sid=915c8e025c3afb3c6c603e457c22e7ca&ref_action=index&ete=&etg=&etcg=&ets=aaTBNZZJRLESPIDNJDPVBC|1,TDXDPZFRURURYVSGFGZJEHXT|2,TDXDPZFRURURYVSGFGZJEHXT|3,cCHObVZMYCAFFQZcNKNMC|1,cCHObVBEQBOJAZdJAINLRJAXaaO|1,cCHObIFfESfdQfQQDVCUBPSEbFZVGAZfTLKGBfC|8,cCHObEVdZAQaFBddQSBSQRdHHKe|1,cCHObVZMYCAFFQZcNKNMC|2,cCHObVBEQBOJAZdJAINLRJAXaaO|3,cCHObVZMYCAFFQZcNKNMC|4,cCHObVBEQBOJAZdJAINLRJAXaaO|4,cCHObVZMYCAFFQZcNKNMC|7&etgwv=&m=UmFuZG9tSVYkc2RlIyh9YTZ40gzzJ53BNkq83nBDGdtuzJDhM4Q-TjhH2RqT57OBefrGDYtyElvAElX2KQyIuXsuqanRFuPXokcH5be-_pi__Az2DqIsHpdNmfOoHYKXrQh_f7NGVOW1DPGMs-gcirxkcqdVVrNAnApAwhwaDOFXij5iG8NIX20eKopEIDMXMDwhQUzLBOWyuwUEjvhH25gGEsu_sAmAOq15Eouo27BInaSPkXwNdUYBk0_qnrANXY-64PazArMtjfFUgL8nzJOe_aPauSJjQxtWfz3hkgvPAxLR6-JZ3taa0ygi-ZOzqeGC9gTD0qc
37.10.0.220200 OK 3 B URL HTTP/1.1 www.booking.com/js_tracking?stype=1&pid=28dc01378f5f01af&aid=1858279&ver=2&lang=en-us&sid=915c8e025c3afb3c6c603e457c22e7ca&ref_action=index&ete=&etg=&etcg=&ets=aaTBNZZJRLESPIDNJDPVBC|1,TDXDPZFRURURYVSGFGZJEHXT|2,TDXDPZFRURURYVSGFGZJEHXT|3,cCHObVZMYCAFFQZcNKNMC|1,cCHObVBEQBOJAZdJAINLRJAXaaO|1,cCHObIFfESfdQfQQDVCUBPSEbFZVGAZfTLKGBfC|8,cCHObEVdZAQaFBddQSBSQRdHHKe|1,cCHObVZMYCAFFQZcNKNMC|2,cCHObVBEQBOJAZdJAINLRJAXaaO|3,cCHObVZMYCAFFQZcNKNMC|4,cCHObVBEQBOJAZdJAINLRJAXaaO|4,cCHObVZMYCAFFQZcNKNMC|7&etgwv=&m=UmFuZG9tSVYkc2RlIyh9YTZ40gzzJ53BNkq83nBDGdtuzJDhM4Q-TjhH2RqT57OBefrGDYtyElvAElX2KQyIuXsuqanRFuPXokcH5be-_pi__Az2DqIsHpdNmfOoHYKXrQh_f7NGVOW1DPGMs-gcirxkcqdVVrNAnApAwhwaDOFXij5iG8NIX20eKopEIDMXMDwhQUzLBOWyuwUEjvhH25gGEsu_sAmAOq15Eouo27BInaSPkXwNdUYBk0_qnrANXY-64PazArMtjfFUgL8nzJOe_aPauSJjQxtWfz3hkgvPAxLR6-JZ3taa0ygi-ZOzqeGC9gTD0qc
IP 37.10.0.220:0
Hash 29a29c1a9510295faffe1081ce907c38
e56ed85fa42ad8367711b2d7a5680f781bc8cf2c
953364ba17432048a9b97116a689d04da08ff77b1ead69c7fe1b51faa6542667
GET /js_tracking?stype=1&pid=28dc01378f5f01af&aid=1858279&ver=2&lang=en-us&sid=915c8e025c3afb3c6c603e457c22e7ca&ref_action=index&ete=&etg=&etcg=&ets=aaTBNZZJRLESPIDNJDPVBC|1,TDXDPZFRURURYVSGFGZJEHXT|2,TDXDPZFRURURYVSGFGZJEHXT|3,cCHObVZMYCAFFQZcNKNMC|1,cCHObVBEQBOJAZdJAINLRJAXaaO|1,cCHObIFfESfdQfQQDVCUBPSEbFZVGAZfTLKGBfC|8,cCHObEVdZAQaFBddQSBSQRdHHKe|1,cCHObVZMYCAFFQZcNKNMC|2,cCHObVBEQBOJAZdJAINLRJAXaaO|3,cCHObVZMYCAFFQZcNKNMC|4,cCHObVBEQBOJAZdJAINLRJAXaaO|4,cCHObVZMYCAFFQZcNKNMC|7&etgwv=&m=UmFuZG9tSVYkc2RlIyh9YTZ40gzzJ53BNkq83nBDGdtuzJDhM4Q-TjhH2RqT57OBefrGDYtyElvAElX2KQyIuXsuqanRFuPXokcH5be-_pi__Az2DqIsHpdNmfOoHYKXrQh_f7NGVOW1DPGMs-gcirxkcqdVVrNAnApAwhwaDOFXij5iG8NIX20eKopEIDMXMDwhQUzLBOWyuwUEjvhH25gGEsu_sAmAOq15Eouo27BInaSPkXwNdUYBk0_qnrANXY-64PazArMtjfFUgL8nzJOe_aPauSJjQxtWfz3hkgvPAxLR6-JZ3taa0ygi-ZOzqeGC9gTD0qc HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
X-Booking-AID: 1858279
X-Booking-CSRF: r2A6YwAAAAA=srmS3bndeH0BDYAozJH10BqldExHZSytPkCwHIscJE6yUriflksfE5VAMcY3GuCYPuGtshnOq8_XEKycpRLE6JFFgjjo9Y99TKmqWqyxsMYIv0sRGmWov0xTF6oMysj42mqcFqgF-InaZV8DmkRQ_Tsq-ZXKE001luKG1cyIILdH4ZeUAP9jWBVxCBEThwmSyb28wrNks8fVE4zZ
X-Booking-Info: 1554730,1581080,1586670,1588860,1590920,1591870,1592480,1598040,1599270,1600300,1602050,1602360,aaTBNZZJRLESPIDNJDPVBC|1,cCcCcCJdDBKJJVaXNJIbVCMILcYJZXe|1,1602360|1,1590920|2,cCHObdRdJJXRDVMDTEHAFPRJdUDEYIbaTaTaET|1,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|1,TDXDPZFRURURYVSGFGZJEHXT|2,cCHObdRdJJXCcAZTbaTaTaET|2,cCHObdRdJJXCcaWQOccCcCcCC|2,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|2,TDXDPZFRURURYVSGFGZJEHXT|3,cCHObVZMYCAFFQZcNKNMC|1,cCHObVBEQBOJAZdJAINLRJAXaaO|1,cCHObIFfESfdQfQQDVCUBPSEbFZVGAZfTLKGBfC|8,cCHObEVdZAQaFBddQSBSQRdHHKe|1,cCHObVZMYCAFFQZcNKNMC|2,cCHObVBEQBOJAZdJAINLRJAXaaO|3,cCHObVZMYCAFFQZcNKNMC|4,cCHObVBEQBOJAZdJAINLRJAXaaO|4,cCHObVZMYCAFFQZcNKNMC|7
X-Booking-Client-Info: aaTBNZZJRLESPIDNJDPVBC|1,TDXDPZFRURURYVSGFGZJEHXT|2,TDXDPZFRURURYVSGFGZJEHXT|3,cCHObVZMYCAFFQZcNKNMC|1,cCHObVBEQBOJAZdJAINLRJAXaaO|1,cCHObIFfESfdQfQQDVCUBPSEbFZVGAZfTLKGBfC|8,cCHObEVdZAQaFBddQSBSQRdHHKe|1,cCHObVZMYCAFFQZcNKNMC|2,cCHObVBEQBOJAZdJAINLRJAXaaO|3,cCHObVZMYCAFFQZcNKNMC|4,cCHObVBEQBOJAZdJAINLRJAXaaO|4,cCHObVZMYCAFFQZcNKNMC|7
X-Booking-Label:
X-Booking-Language-Code: en-us
X-Booking-Pageview-Id: 28dc01378f5f01af
X-Booking-Session-Id: 915c8e025c3afb3c6c603e457c22e7ca
X-Booking-SiteType-Id: 1
X-Partner-Channel-Id: 2
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: _pxhd=4bZ%2F1JCuhQFBZ4MVTcIrI1AenvW7AkcqVDe0-RZV9clItQX2%2FrDLSR3sq78OQkRHCir5YX%2FjuiPcBFMuLM8H5A%3D%3D%3ACvrqBzOT9PMPa-WH9s7MZGsgbxyRr9YhXj%2FXKMVmS-HCY-wpNIhM4guwb5CH8ExOx5Jup5FHdqV6JhF35bqIjnwRLnxMKfj3ugphSXGD4hc%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbnmKTRaewPBsL8oJPwYK2qVZOWjZzIUOnHLDJwkr7PZfMREL3byZmUO74WV6RK9h%2FZ8gMOY3KxxoRekKA3kue6jV%2F1jo2zCG7BPRABuOidx%2B8ARE%2BTozCEkReWViZlBkOLPsPiJHm8EGpkrxiXg4zFd2yVtHozn3DQksqX8PvGzo%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Oct+03+2022+00%3A10%3A25+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=fb002a7e-e90a-4375-8af6-307de412f116&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1664755826141; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
server: nginx
date: Mon, 03 Oct 2022 00:10:26 GMT
content-type: text/plain; charset=UTF-8
transfer-encoding: chunked
vary: User-Agent, Accept-Encoding
content-encoding: br
strict-transport-security: max-age=604800
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=88770139cbce0007&e=UmFuZG9tSVYkc2RlIyh9Yea92wm0yRUjnCBymoy8ejJyDmssM5hFgMT4a2c-ZXYmMjLj9s9nxpI;
x-xss-protection: 1; mode=block
www.booking.com/js_tracking?stype=1&pid=28dc01378f5f01af&aid=1858279&ver=2&lang=en-us&sid=915c8e025c3afb3c6c603e457c22e7ca&ref_action=index&ete=&etg=&etcg=&ets=BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|2,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|4,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|7&etgwv=&m=UmFuZG9tSVYkc2RlIyh9YTZ40gzzJ53BNkq83nBDGdtuzJDhM4Q-TjhH2RqT57OBefrGDYtyElvAElX2KQyIuXsuqanRFuPXokcH5be-_pi__Az2DqIsHpdNmfOoHYKXrQh_f7NGVOW1DPGMs-gcirxkcqdVVrNAnApAwhwaDOFXij5iG8NIX20eKopEIDMXMDwhQUzLBOWyuwUEjvhH25gGEsu_sAmAOq15Eouo27BInaSPkXwNdUYBk0_qnrANXY-64PazArMtjfFUgL8nzJOe_aPauSJjQxtWfz3hkgvPAxLR6-JZ3taa0ygi-ZOzqeGC9gTD0qc
37.10.0.220200 OK 3 B URL HTTP/1.1 www.booking.com/js_tracking?stype=1&pid=28dc01378f5f01af&aid=1858279&ver=2&lang=en-us&sid=915c8e025c3afb3c6c603e457c22e7ca&ref_action=index&ete=&etg=&etcg=&ets=BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|2,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|4,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|7&etgwv=&m=UmFuZG9tSVYkc2RlIyh9YTZ40gzzJ53BNkq83nBDGdtuzJDhM4Q-TjhH2RqT57OBefrGDYtyElvAElX2KQyIuXsuqanRFuPXokcH5be-_pi__Az2DqIsHpdNmfOoHYKXrQh_f7NGVOW1DPGMs-gcirxkcqdVVrNAnApAwhwaDOFXij5iG8NIX20eKopEIDMXMDwhQUzLBOWyuwUEjvhH25gGEsu_sAmAOq15Eouo27BInaSPkXwNdUYBk0_qnrANXY-64PazArMtjfFUgL8nzJOe_aPauSJjQxtWfz3hkgvPAxLR6-JZ3taa0ygi-ZOzqeGC9gTD0qc
IP 37.10.0.220:0
Hash 29a29c1a9510295faffe1081ce907c38
e56ed85fa42ad8367711b2d7a5680f781bc8cf2c
953364ba17432048a9b97116a689d04da08ff77b1ead69c7fe1b51faa6542667
GET /js_tracking?stype=1&pid=28dc01378f5f01af&aid=1858279&ver=2&lang=en-us&sid=915c8e025c3afb3c6c603e457c22e7ca&ref_action=index&ete=&etg=&etcg=&ets=BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|2,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|4,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|7&etgwv=&m=UmFuZG9tSVYkc2RlIyh9YTZ40gzzJ53BNkq83nBDGdtuzJDhM4Q-TjhH2RqT57OBefrGDYtyElvAElX2KQyIuXsuqanRFuPXokcH5be-_pi__Az2DqIsHpdNmfOoHYKXrQh_f7NGVOW1DPGMs-gcirxkcqdVVrNAnApAwhwaDOFXij5iG8NIX20eKopEIDMXMDwhQUzLBOWyuwUEjvhH25gGEsu_sAmAOq15Eouo27BInaSPkXwNdUYBk0_qnrANXY-64PazArMtjfFUgL8nzJOe_aPauSJjQxtWfz3hkgvPAxLR6-JZ3taa0ygi-ZOzqeGC9gTD0qc HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
X-Booking-AID: 1858279
X-Booking-CSRF: r2A6YwAAAAA=srmS3bndeH0BDYAozJH10BqldExHZSytPkCwHIscJE6yUriflksfE5VAMcY3GuCYPuGtshnOq8_XEKycpRLE6JFFgjjo9Y99TKmqWqyxsMYIv0sRGmWov0xTF6oMysj42mqcFqgF-InaZV8DmkRQ_Tsq-ZXKE001luKG1cyIILdH4ZeUAP9jWBVxCBEThwmSyb28wrNks8fVE4zZ
X-Booking-Info: 1554730,1581080,1586670,1588860,1590920,1591870,1592480,1598040,1599270,1600300,1602050,1602360,aaTBNZZJRLESPIDNJDPVBC|1,cCcCcCJdDBKJJVaXNJIbVCMILcYJZXe|1,1602360|1,1590920|2,cCHObdRdJJXRDVMDTEHAFPRJdUDEYIbaTaTaET|1,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|1,TDXDPZFRURURYVSGFGZJEHXT|2,cCHObdRdJJXCcAZTbaTaTaET|2,cCHObdRdJJXCcaWQOccCcCcCC|2,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|2,TDXDPZFRURURYVSGFGZJEHXT|3,cCHObVZMYCAFFQZcNKNMC|1,cCHObVBEQBOJAZdJAINLRJAXaaO|1,cCHObIFfESfdQfQQDVCUBPSEbFZVGAZfTLKGBfC|8,cCHObEVdZAQaFBddQSBSQRdHHKe|1,cCHObVZMYCAFFQZcNKNMC|2,cCHObVBEQBOJAZdJAINLRJAXaaO|3,cCHObVZMYCAFFQZcNKNMC|4,cCHObVBEQBOJAZdJAINLRJAXaaO|4,cCHObVZMYCAFFQZcNKNMC|7,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|4,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|7
X-Booking-Client-Info: aaTBNZZJRLESPIDNJDPVBC|1,TDXDPZFRURURYVSGFGZJEHXT|2,TDXDPZFRURURYVSGFGZJEHXT|3,cCHObVZMYCAFFQZcNKNMC|1,cCHObVBEQBOJAZdJAINLRJAXaaO|1,cCHObIFfESfdQfQQDVCUBPSEbFZVGAZfTLKGBfC|8,cCHObEVdZAQaFBddQSBSQRdHHKe|1,cCHObVZMYCAFFQZcNKNMC|2,cCHObVBEQBOJAZdJAINLRJAXaaO|3,cCHObVZMYCAFFQZcNKNMC|4,cCHObVBEQBOJAZdJAINLRJAXaaO|4,cCHObVZMYCAFFQZcNKNMC|7,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|2,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|4,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|7
X-Booking-Label:
X-Booking-Language-Code: en-us
X-Booking-Pageview-Id: 28dc01378f5f01af
X-Booking-Session-Id: 915c8e025c3afb3c6c603e457c22e7ca
X-Booking-SiteType-Id: 1
X-Partner-Channel-Id: 2
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: _pxhd=4bZ%2F1JCuhQFBZ4MVTcIrI1AenvW7AkcqVDe0-RZV9clItQX2%2FrDLSR3sq78OQkRHCir5YX%2FjuiPcBFMuLM8H5A%3D%3D%3ACvrqBzOT9PMPa-WH9s7MZGsgbxyRr9YhXj%2FXKMVmS-HCY-wpNIhM4guwb5CH8ExOx5Jup5FHdqV6JhF35bqIjnwRLnxMKfj3ugphSXGD4hc%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbnmKTRaewPBsL8oJPwYK2qVZOWjZzIUOnHLDJwkr7PZfMREL3byZmUO74WV6RK9h%2FZ8gMOY3KxxoRekKA3kue6jV%2F1jo2zCG7BPRABuOidx%2B8ARE%2BTozCEkReWViZlBkOLPsPiJHm8EGpkrxiXg4zFd2yVtHozn3DQksqX8PvGzo%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Oct+03+2022+00%3A10%3A25+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=fb002a7e-e90a-4375-8af6-307de412f116&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1664755826141; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
server: nginx
date: Mon, 03 Oct 2022 00:10:26 GMT
content-type: text/plain; charset=UTF-8
transfer-encoding: chunked
vary: User-Agent, Accept-Encoding
content-encoding: br
strict-transport-security: max-age=604800
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=5f2c013923d7005c&e=UmFuZG9tSVYkc2RlIyh9Yea92wm0yRUjnCBymoy8ejJcC3CXSQjO2FTJ8IKVLrj1UfvqDdEtvGQ;
x-xss-protection: 1; mode=block
www.booking.com/get_handpicked_bh_properties?aid=1858279
37.10.0.220200 OK 1.1 kB URL HTTP/1.1 www.booking.com/get_handpicked_bh_properties?aid=1858279
IP 37.10.0.220:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (4906), with no line terminators
Hash 7dce4a1506142d7be9bed1f783b81e66
fd33784d75a2b714148bf5534278dab78a485068
df439b95d8d488b95b2efea32f51a015c5c7a8904c93a06c199dff32b9e089ed
POST /get_handpicked_bh_properties?aid=1858279 HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Booking-Pageview-Id: 28dc01378f5f01af
X-Booking-AID: 1858279
X-Booking-Session-Id: 915c8e025c3afb3c6c603e457c22e7ca
X-Booking-SiteType-Id: 1
X-Partner-Channel-Id: 2
X-Booking-CSRF: r2A6YwAAAAA=srmS3bndeH0BDYAozJH10BqldExHZSytPkCwHIscJE6yUriflksfE5VAMcY3GuCYPuGtshnOq8_XEKycpRLE6JFFgjjo9Y99TKmqWqyxsMYIv0sRGmWov0xTF6oMysj42mqcFqgF-InaZV8DmkRQ_Tsq-ZXKE001luKG1cyIILdH4ZeUAP9jWBVxCBEThwmSyb28wrNks8fVE4zZ
X-Booking-Language-Code: en-us
X-Booking-Client-Info: aaTBNZZJRLESPIDNJDPVBC|1,TDXDPZFRURURYVSGFGZJEHXT|2,TDXDPZFRURURYVSGFGZJEHXT|3,cCHObVZMYCAFFQZcNKNMC|1,cCHObVBEQBOJAZdJAINLRJAXaaO|1,cCHObIFfESfdQfQQDVCUBPSEbFZVGAZfTLKGBfC|8,cCHObEVdZAQaFBddQSBSQRdHHKe|1,cCHObVZMYCAFFQZcNKNMC|2,cCHObVBEQBOJAZdJAINLRJAXaaO|3,cCHObVZMYCAFFQZcNKNMC|4,cCHObVBEQBOJAZdJAINLRJAXaaO|4,cCHObVZMYCAFFQZcNKNMC|7
X-Booking-Info: 1554730,1581080,1586670,1588860,1590920,1591870,1592480,1598040,1599270,1600300,1602050,1602360,aaTBNZZJRLESPIDNJDPVBC|1,cCcCcCJdDBKJJVaXNJIbVCMILcYJZXe|1,1602360|1,1590920|2,cCHObdRdJJXRDVMDTEHAFPRJdUDEYIbaTaTaET|1,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|1,TDXDPZFRURURYVSGFGZJEHXT|2,cCHObdRdJJXCcAZTbaTaTaET|2,cCHObdRdJJXCcaWQOccCcCcCC|2,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|2,TDXDPZFRURURYVSGFGZJEHXT|3,cCHObVZMYCAFFQZcNKNMC|1,cCHObVBEQBOJAZdJAINLRJAXaaO|1,cCHObIFfESfdQfQQDVCUBPSEbFZVGAZfTLKGBfC|8,cCHObEVdZAQaFBddQSBSQRdHHKe|1,cCHObVZMYCAFFQZcNKNMC|2,cCHObVBEQBOJAZdJAINLRJAXaaO|3,cCHObVZMYCAFFQZcNKNMC|4,cCHObVBEQBOJAZdJAINLRJAXaaO|4,cCHObVZMYCAFFQZcNKNMC|7
X-Requested-With: XMLHttpRequest
Content-Length: 43
Origin: https://www.booking.com
Connection: keep-alive
Cookie: _pxhd=4bZ%2F1JCuhQFBZ4MVTcIrI1AenvW7AkcqVDe0-RZV9clItQX2%2FrDLSR3sq78OQkRHCir5YX%2FjuiPcBFMuLM8H5A%3D%3D%3ACvrqBzOT9PMPa-WH9s7MZGsgbxyRr9YhXj%2FXKMVmS-HCY-wpNIhM4guwb5CH8ExOx5Jup5FHdqV6JhF35bqIjnwRLnxMKfj3ugphSXGD4hc%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbnmKTRaewPBsL8oJPwYK2qVZOWjZzIUOnHLDJwkr7PZfMREL3byZmUO74WV6RK9h%2FZ8gMOY3KxxoRekKA3kue6jV%2F1jo2zCG7BPRABuOidx%2B8ARE%2BTozCEkReWViZlBkOLPsPiJHm8EGpkrxiXg4zFd2yVtHozn3DQksqX8PvGzo%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Oct+03+2022+00%3A10%3A25+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=fb002a7e-e90a-4375-8af6-307de412f116&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1664755826141; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
server: nginx
date: Mon, 03 Oct 2022 00:10:27 GMT
content-type: application/json; charset=UTF-8
content-length: 1084
vary: Accept-Encoding, User-Agent
content-encoding: br
set-cookie: _pxhd=4bZ%2F1JCuhQFBZ4MVTcIrI1AenvW7AkcqVDe0-RZV9clItQX2%2FrDLSR3sq78OQkRHCir5YX%2FjuiPcBFMuLM8H5A%3D%3D%3ACvrqBzOT9PMPa-WH9s7MZGsgbxyRr9YhXj%2FXKMVmS-HCY-wpNIhM4guwb5CH8ExOx5Jup5FHdqV6JhF35bqIjnwRLnxMKfj3ugphSXGD4hc%3D; domain=booking.com; path=/; expires=Tue, 03-Oct-2023 00:10:26 GMT
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbnmKTRaewPBsL8oJPwYK2qVZOWjZzIUOnHLDJwkr7PZfMREL3byZmUGbhRwiKShueClmJWt1bE7z%2Bn36uYdbXvKeE7pYpFn5JB4%2BY4BGBGD9Tj5jDQr11NqCBRboktuXS4EjBiMfgHotrU6ehL0de40i6%2FMfnJnNHoNpq2VwF6l0%3D; domain=.booking.com; path=/; expires=Sat, 02-Oct-2027 00:10:27 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
cf.bstatic.com/xdata/images/hotel/max500/74529578.jpg?k=a7fcefd47d7271daf44f6ce78a215b9505f9f8e5cac3af093b78b9c489fd8461&o=
143.204.68.33200 OK 19 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/max500/74529578.jpg?k=a7fcefd47d7271daf44f6ce78a215b9505f9f8e5cac3af093b78b9c489fd8461&o=
IP 143.204.68.33:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 500x333, components 3\012- data
Hash 307816f8b37660b5b600532f6f6be261
ff9fe8d81241c97e9d66c0e88bfe688341b4abb9
84b21ed19e0ea41863d9309c1fc5cea5e65d176759c293e1bbdf9487b1c567f5
GET /xdata/images/hotel/max500/74529578.jpg?k=a7fcefd47d7271daf44f6ce78a215b9505f9f8e5cac3af093b78b9c489fd8461&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 18956
server: nginx
date: Sat, 03 Sep 2022 00:24:13 GMT
etag: "fff344f8a063bb06402b9f60aa5a5cab2a88c834"
expires: Mon, 03 Oct 2022 00:24:13 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: JANsyYB3ja8dmpU-kfJNnqMXSsh04kSP3SSFIjy6Am2XfUsWdRUMrA==
age: 2591174
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/max500/60345914.jpg?k=847c9404a7398f20d1c41febf7c96ab0f8ad5ad74062faae44a3efa73e709d62&o=
143.204.68.33200 OK 43 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/max500/60345914.jpg?k=847c9404a7398f20d1c41febf7c96ab0f8ad5ad74062faae44a3efa73e709d62&o=
IP 143.204.68.33:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 500x333, components 3\012- data
Hash c0ab8795f1cafeae36c5ecde7c22104b
81f342e9cfff5eba81becc0dd7e333f5b8dd51b0
1aea9c486afbbff85858424bef4367cedace47ae2b44e0948e51f9b03d71e835
GET /xdata/images/hotel/max500/60345914.jpg?k=847c9404a7398f20d1c41febf7c96ab0f8ad5ad74062faae44a3efa73e709d62&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 43269
server: nginx
date: Sun, 02 Oct 2022 01:21:53 GMT
etag: "7133dbadfc160752253121e61976d7cd2a0c20fd"
expires: Tue, 01 Nov 2022 01:21:53 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: vJFcHXf15vmnpEf41LC9KPzH6k6pZSbZS7sCziu3Acj0euaC4bvweg==
age: 82114
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/max500/71184956.jpg?k=4f0dd080f161eb3d2631565c7df9b6e634442addd10dc715b8dd519092a4517f&o=
143.204.68.33200 OK 38 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/max500/71184956.jpg?k=4f0dd080f161eb3d2631565c7df9b6e634442addd10dc715b8dd519092a4517f&o=
IP 143.204.68.33:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 500x333, components 3\012- data
Hash d8144e701b4be7641e06cfe2e39ae1e9
1a3d565c6f03adc25d2a019f8fcf97565464e534
a77ac8ed5e3c2251c45623f8ee1a4236c4e69b521816aff0845ae8588ca24009
GET /xdata/images/hotel/max500/71184956.jpg?k=4f0dd080f161eb3d2631565c7df9b6e634442addd10dc715b8dd519092a4517f&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 38489
server: nginx
date: Thu, 22 Sep 2022 03:08:53 GMT
etag: "3940c4ecfdb1b50eb43ceca27d12a3a197764666"
expires: Sat, 22 Oct 2022 03:08:53 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: A8jeIP9e4T-Qcbs1c6nCy1K6pXZlhIS1ROkcjZC5F8LyMQ4K_-0_iQ==
age: 939694
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/max500/75328633.jpg?k=87304e5542c63c022f2cbc134b02b85b65496a9ed8c6ca129b49c02f817589db&o=
143.204.68.33200 OK 26 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/max500/75328633.jpg?k=87304e5542c63c022f2cbc134b02b85b65496a9ed8c6ca129b49c02f817589db&o=
IP 143.204.68.33:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 500x333, components 3\012- data
Hash f51eda2e4c3d0b6c3f708b52b30a6770
d89e4a6aebf91c64141fca0613dfb1181818c7a6
849b27bb768d8a11dc64fc2dc6775737bd878a877072b7cd664553efb9d811e5
GET /xdata/images/hotel/max500/75328633.jpg?k=87304e5542c63c022f2cbc134b02b85b65496a9ed8c6ca129b49c02f817589db&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 25543
server: nginx
date: Thu, 29 Sep 2022 08:57:53 GMT
etag: "9b0ce5a0130f9c569cc887af42156b0992b105b3"
expires: Sat, 29 Oct 2022 08:57:53 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: crPBbZuH8SPPNUF2pei2robZvE2T1i3hCrSzsKZhwyNlrujyvLGGOQ==
age: 313954
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/max500/77446705.jpg?k=b4137b295019af2a0db1af044c725449adda502a6921fbb2b8931016a8a0a713&o=
143.204.68.33200 OK 31 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/max500/77446705.jpg?k=b4137b295019af2a0db1af044c725449adda502a6921fbb2b8931016a8a0a713&o=
IP 143.204.68.33:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 500x437, components 3\012- data
Hash e8df10c41a8433d46430c0de04c46050
feb6ce2627db3cd398ed06265b022ee1f5fac141
6113c346deda9631b84e7970606a5041d5545274ca4e2f51fba3d3652f771d5b
GET /xdata/images/hotel/max500/77446705.jpg?k=b4137b295019af2a0db1af044c725449adda502a6921fbb2b8931016a8a0a713&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 30811
server: nginx
date: Sat, 24 Sep 2022 05:36:18 GMT
etag: "9bc50b1a57d1bd1f5bdfad8d79f1331ced00ecdd"
expires: Mon, 24 Oct 2022 05:36:18 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: -3yHaS1BUmhiRr-hEUSGUVn_pbaMJn9YkKEPVb9l-GKuf6SjGmN-EA==
age: 758049
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/join/bh_carousel_more_background/5132764897ca62019efeefc5ad9c296227434ba9.jpg
143.204.68.33200 OK 47 kB URL HTTP/2 cf.bstatic.com/static/img/join/bh_carousel_more_background/5132764897ca62019efeefc5ad9c296227434ba9.jpg
IP 143.204.68.33:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 353x433, components 3\012- data
Hash 3471913b5eaf34016f7f8fd2b795353a
830765f7fccc5bc5a6e6ac6d57648c1f48e86c72
22d1b410f2a9e346185c14dbd28e358bab1edc3d1929751534c39b93010ee131
GET /static/img/join/bh_carousel_more_background/5132764897ca62019efeefc5ad9c296227434ba9.jpg HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.bstatic.com/static/css/index_cloudfront_sd.iq_ltr/8d885185a27474ba884b6490504a85e91663ebef.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 47062
server: nginx
last-modified: Mon, 08 Jul 2019 08:40:15 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Thu, 29 Sep 2022 01:08:22 GMT
expires: Sat, 29 Oct 2022 01:07:50 GMT
cache-control: max-age=2592000
etag: "5d23016f-b7d6"
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: GPUpWG1BvBoVVa0xUzCkpepGz_pGBZuipi3xLzkHlSixbHceqns9RA==
age: 342157
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 40c1f455cf9dcc1d5fc44e01c4b31b48
0361433afe96c7e60ee29548361bc9240b12affd
234f00597c39554416b7e3ff3bc6b041a3db64d2ffbf70b0cc6c2966cdee833f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 00:10:27 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 29 Sep 2022 17:38:16 GMT
Expires: Thu, 06 Oct 2022 17:38:15 GMT
Etag: "0361433afe96c7e60ee29548361bc9240b12affd"
Cache-Control: max-age=321467,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7541746f0c9ab4ed-OSL
collector-pxikkul2rm.px-cloud.net/api/v2/collector
35.190.10.96200 OK 524 B URL HTTP/2 collector-pxikkul2rm.px-cloud.net/api/v2/collector
IP 35.190.10.96:0
File type JSON data\012- , ASCII text, with very long lines (523)
Hash de339a895c029efd942b2856120434f3
72cef1f96d14de399239d5d5c26a3dc80e67d144
f310910a8cf68f649eb653794c8d9c578dbbf81e107809a98fcae633dbe1db1a
POST /api/v2/collector HTTP/1.1
Host: collector-pxikkul2rm.px-cloud.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 731
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 03 Oct 2022 00:10:27 GMT
content-type: application/json; charset=utf-8
content-length: 524
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.booking.com
timing-allow-origin: *
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 93618c02cc76cac1c1eee0fa1bf97990
67fb6f22737de5e9b9bae7b2e10b539676f0a757
adba09c06048e4bf3981ce8569f5cb504621f93ceac10346e901e352cc23776c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 03 Oct 2022 00:10:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8c665d81a8995febfec300bd9f554c90
aa3599f282cff5e07d5681ec4854b70a82590f6d
57cd30b987eb23f54208b51c04daefd3657fdd84325f4035817b32e4ad5b5461
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 03 Oct 2022 00:10:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 40c1f455cf9dcc1d5fc44e01c4b31b48
0361433afe96c7e60ee29548361bc9240b12affd
234f00597c39554416b7e3ff3bc6b041a3db64d2ffbf70b0cc6c2966cdee833f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 00:10:27 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 29 Sep 2022 17:38:16 GMT
Expires: Thu, 06 Oct 2022 17:38:15 GMT
Etag: "0361433afe96c7e60ee29548361bc9240b12affd"
Cache-Control: max-age=321467,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75417470edd5b4ed-OSL
collector-pxikkul2rm.px-cloud.net/api/v2/collector
35.190.10.96200 OK 573 B URL HTTP/2 collector-pxikkul2rm.px-cloud.net/api/v2/collector
IP 35.190.10.96:0
File type JSON data\012- , ASCII text, with very long lines (572)
Hash 4df27c99483f8d7b7d3114820672d537
11530a4606b70925cae3654ef0b5713aab073559
54a2bf9fcab86bee26f971a31b90c4a5346f4a0585daddd536fc90370223b697
POST /api/v2/collector HTTP/1.1
Host: collector-pxikkul2rm.px-cloud.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 4382
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 03 Oct 2022 00:10:27 GMT
content-type: application/json; charset=utf-8
content-length: 573
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.booking.com
timing-allow-origin: *
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
accounts.google.com/gsi/client
216.58.207.237200 OK 77 kB URL HTTP/2 accounts.google.com/gsi/client
IP 216.58.207.237:0
File type ASCII text, with very long lines (1027)
Hash 2bf063d3a30e301a6854b0d9fee72dd3
a38ebfc4030083bcecc56b7df924f47a33416f27
c98d56b3d8288f5389a1ddf550832d1b0e23581918976123b2cb5625300f3806
GET /gsi/client HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
expires: Mon, 03 Oct 2022 00:10:27 GMT
date: Mon, 03 Oct 2022 00:10:27 GMT
cache-control: private, max-age=1800
cross-origin-resource-policy: cross-origin
content-security-policy: require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, script-src 'nonce-qzzKkEe8kA4wypeaFksHIg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.booking.com/general.en-us.html?aid=1858279&tmpl=profile%2Flogin_callback_anon_session&iframe=1&sid=915c8e025c3afb3c6c603e457c22e7ca
37.10.0.220200 OK 207 B URL HTTP/1.1 www.booking.com/general.en-us.html?aid=1858279&tmpl=profile%2Flogin_callback_anon_session&iframe=1&sid=915c8e025c3afb3c6c603e457c22e7ca
IP 37.10.0.220:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 34e536b578ed83e895b2f4de5a8e5c43
301b7fd2eb6f67789df61e57041c8b2e5d648505
df7b189d9b2752df12ff264a64a71d85d013f5a6551b3b577f07dd1caf8f3f47
GET /general.en-us.html?aid=1858279&tmpl=profile%2Flogin_callback_anon_session&iframe=1&sid=915c8e025c3afb3c6c603e457c22e7ca HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Connection: keep-alive
Cookie: _pxhd=4bZ%2F1JCuhQFBZ4MVTcIrI1AenvW7AkcqVDe0-RZV9clItQX2%2FrDLSR3sq78OQkRHCir5YX%2FjuiPcBFMuLM8H5A%3D%3D%3ACvrqBzOT9PMPa-WH9s7MZGsgbxyRr9YhXj%2FXKMVmS-HCY-wpNIhM4guwb5CH8ExOx5Jup5FHdqV6JhF35bqIjnwRLnxMKfj3ugphSXGD4hc%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPedoPvXKQZKtlqHpO096Sqxoy7LawQJM3PyBkR273cy32VTrBQM3IAFIoSsGjDZ5h6RgIe5ZQ0%2B9oU4qPkO5QMDU8Zqo42OmFlN8F%2BMKxuFcVCazTZJdQaESdIQklyIpO3Qvhn9juU1VwL0Nm4YzKfdElkSlRx%2B1A%2Bo%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Oct+03+2022+00%3A10%3A25+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=fb002a7e-e90a-4375-8af6-307de412f116&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1664755826141; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=eyJib29raW5nX2dsb2JhbCI6W3siaCI6IkFkTE9mNTV1Z2l4MFVTQ2kvT0FPcmt4OHBvdlZSaUNiRkJTYVg5L3FkTmMiLCJhIjoxfV19; BJS=-; _px_f394gi7Fvmc43dfg_user_id=Yzg2NmJlNDEtNDJhZi0xMWVkLTg2ZjMtMmZjM2RmYTNlOTkz; pxcts=c8baaa98-42af-11ed-ac64-6949596c7961; _pxvid=c83b0fc2-42af-11ed-9fda-6374724c456b; _pxff_ddtc=1; _pxde=e1973e9ba7124942f014c07189b965c78eca06810b18c6041dde7fc23e7a4a02:eyJ0aW1lc3RhbXAiOjE2NjQ3NTU4MjgwOTksImZfa2IiOjAsImlwY19pZCI6W119; _px3=7b6cdcc297b2d19a20afbe98a1d7ec3ea4d012facadb0c839bf81922008cc8da:uBQP/q/rnEtPzcSKtComCzLEsxYhJBVFPnpZbH0U1RPzZfFNRC/eMTynrrOHXsmI9lOBNmHO7MGld4NZ0rFEBg==:1000:plGv/495lfF21glC0jghIFOKxiu7WdCwPkcMQyTc+G4quAoh8bbucAqb5QG7ha8RzEXE2ro6ac/TeR3ue8JlRYuFNKRWpxeLi5h545Kqytr9Ndv4QuX60JWlwOmpFxZXQq/MIkxEH+FGdjO1A5FsCN1i3gQYYYJXd6MnOlI14yTUKyKBFYMtnkU5LZu8FxLC7kH0iUZI9vOdR4jqPaHh6g==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
server: nginx
date: Mon, 03 Oct 2022 00:10:28 GMT
content-type: text/html; charset=UTF-8
content-length: 207
cache-control: private
vary: Accept-Encoding, User-Agent
content-encoding: br
nel: {"max_age":604800,"report_to":"default"}
report-to: {"group":"default","endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":604800}
set-cookie: px_init=0; domain=booking.com; expires=Tue, 03-Sep-2075 00:20:56 GMT; SameSite=Strict; secure; HttpOnly
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbwcLxQQ4VaCrvfD1UUWA1clveQfX9t7KlVYJvwnmgFDf2HdN8RxNvbcV87nwmku4ivgcxr47E3bpEegwikrknGP95fv9nhpF3KYqk3oGYbNKzNp7BwvzM3KsG4tiYxa%2BBDoJLgNRroDLu2y3ZVtSnu%2Fix%2BVorFqgAtuGV5e6cq4s%3D; domain=.booking.com; path=/; expires=Sat, 02-Oct-2027 00:10:28 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
account.booking.com/collector/anon_session_init
108.156.28.8204 No Content 0 B URL HTTP/2 account.booking.com/collector/anon_session_init
IP 108.156.28.8:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /collector/anon_session_init HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.booking.com/
Origin: https://www.booking.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Mon, 03 Oct 2022 00:10:28 GMT
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: POST
access-control-allow-origin: https://www.booking.com
access-control-max-age: 1728000
set-cookie: bkng_sso_session=e30; domain=.booking.com; path=/; expires=Sat, 02-Oct-2027 00:10:28 GMT; secure; HttpOnly
bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJkYXRhX3N1YmplY3RfaWQiOiI0OTY2MTBlYy05YzQ0LTRmMDgtODM3Yy04ZTM2MDE5NmI5YTYiLCJzZXNzaW9ucyI6W119fQ; domain=account.booking.com; path=/; expires=Sat, 02-Oct-2027 00:10:28 GMT; secure; HttpOnly
bkng_sso_ses=e30; domain=.booking.com; path=/; expires=Sat, 02-Oct-2027 00:10:28 GMT; secure; HttpOnly
content-security-policy: report-uri https://nellie.booking.com/csp-report-uri?type=block&tag=42&pid=f8fc013a058e0186&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdfdvBlyk9NlKcLEfSqFdAHuJUmoS1jnI5l8Ckpav_Buh2I8NJLAkmT_v2XtH3z--EgVIurJw_ypTWIFqTBQdrVeF1Z4g_7AQ_OAH_FWksO9Y; frame-ancestors https://*.booking.com 'self';
content-security-policy-report-only: base-uri 'none'; connect-src saa.booking.com secure.booking.com reports.booking.com privacyportal-eu.onetrust.com geolocation.onetrust.com cdn.cookielaw.org www.google-analytics.com *.perimeterx.net *.pxchk.net *.px-cdn.net *.px-client.net *.px-cloud.net 'self' 'report-sample'; style-src *.bstatic.com bstatic.com *.static.booking.cn 'self' 'unsafe-inline'; frame-src https://www.youtube.com/embed/Vv4w5SmRkss *.bstatic.com https://www.google.com bstatic.com www.booking.com secure.booking.com paymentcomponent.booking.com 'self'; img-src 'self' data: www.booking.com graph.facebook.com cdn.cookielaw.org account.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google-analytics.com www.google.com stats.g.doubleclick.net *.px-cloud.net *.perimeterx.net www.gstatic.com; object-src 'none'; default-src *.bstatic.com bstatic.com 'self'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=41&pid=f8fc013a058e0186&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdfdvBlyk9NlKcLEfSqFdAHuJUmoS1jnI5l8Ckpav_Buh2I8NJLAkmT_v2XtH3z--EgVIurJw_ypTWIFqTBQdrVeF1Z4g_7AQ_OAH_FWksO9Y; script-src saa.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google.com www.google-analytics.com cdn.cookielaw.org geolocation.onetrust.com 'self' 'nonce-CGRIuRnhc8GiSLG' 'report-sample';
strict-transport-security: max-age=17280000
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 db92535f619848d07c0f5eb965b50adc.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: Y93a5fUEmqIaWJ6ewB5aB-LDHOBvRFwfbKSPrTfwpcKinsd549_oIg==
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/fonticons_clean/base64/woff/5d61b8a7156073e5e3e9741f65dda44ae3eef7d2.css
143.204.68.33200 OK 109 kB URL HTTP/2 cf.bstatic.com/static/css/fonticons_clean/base64/woff/5d61b8a7156073e5e3e9741f65dda44ae3eef7d2.css
IP 143.204.68.33:0
File type ASCII text, with very long lines (65487)
Size 109 kB (108587 bytes)
Hash 4f5986b55c740f5d98169e642ec6621e
a6f6628e2779b671fb23b69602951a916cc0f51b
05bf81fcf6c4c6d85185cfc127e39b50e5202837514b71714d7cf53bc48d98f2
GET /static/css/fonticons_clean/base64/woff/5d61b8a7156073e5e3e9741f65dda44ae3eef7d2.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:48 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sat, 01 Oct 2022 00:06:26 GMT
expires: Mon, 31 Oct 2022 00:06:26 GMT
cache-control: max-age=2592000
etag: W/"5cadd1cc-375af"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: 1FVPTdE6dHxnKoU2Fm-3Hp8cp7afEizFWdgyoaFO6r-hW73iOQR0Yg==
age: 173041
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feb7e3592-97bd-498d-bf7f-2c5bb0fc867b.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feb7e3592-97bd-498d-bf7f-2c5bb0fc867b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 91079e915678800d2e2e1f68415d5dc4
2d543d6b1bed9901437c3b880bd415ece354cbf7
b9bda55eef23a199fff3bd3fde22486ef4d50edd36b105b0ee13479b96c2ba22
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feb7e3592-97bd-498d-bf7f-2c5bb0fc867b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6983
x-amzn-requestid: e551848c-073a-4317-8841-1fc5fd8a38c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZZWb3EGdoAMFY4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a044b-6c6a638527bb19f621cd40b1;Sampled=0
x-amzn-remapped-date: Sun, 02 Oct 2022 21:36:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: vwxQ66TiwYUOkU8eN1EMUraA6OlSIn7I1B9VHz9RrAL4z_RI_igMJQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 21:46:36 GMT
age: 8632
etag: "2d543d6b1bed9901437c3b880bd415ece354cbf7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0441f0a-87cd-4552-b912-e72f72010138.jpeg
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0441f0a-87cd-4552-b912-e72f72010138.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ffa753b635c9858eb3f8528cefc9f65c
5d028fbb180732807270bbf30cbdc2faeeb9235f
1a0edc51bd5eacb92f2e6a2feb66c316c701f3ddd9ce9155d80ae74337f8f9b4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0441f0a-87cd-4552-b912-e72f72010138.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7190
x-amzn-requestid: 4ae12154-27fa-4f57-8f6c-6de8bdcd5dd0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZKLlMFf7oAMFQog=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6333f2ed-06406f5f687693d6728d6d63;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 07:08:29 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: WY_0LZTkWwhCSBUGmVzL6901ALmTal2KNOh67gumWwfDxtieKRQqnQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 18:52:07 GMT
age: 19102
etag: "5d028fbb180732807270bbf30cbdc2faeeb9235f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
privacyportal-eu.onetrust.com/request/v1/consentreceipts
104.18.41.98201 Created 0 B URL HTTP/2 privacyportal-eu.onetrust.com/request/v1/consentreceipts
IP 104.18.41.98:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /request/v1/consentreceipts HTTP/1.1
Host: privacyportal-eu.onetrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 7826
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 201 Created
date: Mon, 03 Oct 2022 00:10:29 GMT
content-length: 0
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: *
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 75417480993a1c06-OSL
X-Firefox-Spdy: h2
cf.bstatic.com/libs/perimeterx/px.v7.6.9.min.js
143.204.68.33200 OK 0 B URL HTTP/2 cf.bstatic.com/libs/perimeterx/px.v7.6.9.min.js
IP 143.204.68.33:0
GET /libs/perimeterx/px.v7.6.9.min.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 08 Sep 2022 01:22:07 GMT
last-modified: Wed, 24 Aug 2022 04:45:58 GMT
etag: W/"6305ad06-39901"
expires: Sat, 08 Oct 2022 01:22:07 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c29e813f981bfce75709b36f6e4555a2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: xs9d-Jr_RzunxqncVDCPe-_HWo2jcx_t7l-cYIh5ZMhEYGSQ4kDIlA==
age: 2155699
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/513.1b93eb77.chunk.js
143.204.68.33200 OK 0 B URL HTTP/2 cf.bstatic.com/psb/capla/static/js/513.1b93eb77.chunk.js
IP 143.204.68.33:0
GET /psb/capla/static/js/513.1b93eb77.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 26 Sep 2022 09:18:25 GMT
etag: W/"a293aef5b3671f3f42d070ae6b494c80"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Mon, 26 Sep 2022 09:05:07 GMT
x-amz-expiration: expiry-date="Tue, 24 Jan 2023 09:05:07 GMT", rule-id=""
expires: Wed, 26 Oct 2022 09:18:25 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c29e813f981bfce75709b36f6e4555a2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: -wtqQFrFazhMcU9JZnro9OGQCdijBA1AZn-I7VbAwIDvdU7LLU1aXQ==
age: 571919
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/searchbox_cloudfront_sd/1863117fd9ff839d1336bec1b94dea43c8f95917.js
143.204.68.33200 OK 0 B URL HTTP/2 cf.bstatic.com/static/js/searchbox_cloudfront_sd/1863117fd9ff839d1336bec1b94dea43c8f95917.js
IP 143.204.68.33:0
GET /static/js/searchbox_cloudfront_sd/1863117fd9ff839d1336bec1b94dea43c8f95917.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 28 Sep 2022 06:07:10 GMT
last-modified: Tue, 27 Sep 2022 11:26:52 GMT
etag: W/"6332ddfc-39177"
expires: Fri, 28 Oct 2022 06:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c29e813f981bfce75709b36f6e4555a2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: 7vAigIO0AR7oQ3hNpmVSamw_dXHycEWN2K63AEltYrEI7xNRP8-7HQ==
age: 410594
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/print/0cc4ce4b7108d42a9f293fc9b654f749d84ba4eb.css
143.204.68.33200 OK 0 B URL HTTP/2 cf.bstatic.com/static/css/print/0cc4ce4b7108d42a9f293fc9b654f749d84ba4eb.css
IP 143.204.68.33:0
GET /static/css/print/0cc4ce4b7108d42a9f293fc9b654f749d84ba4eb.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Fri, 23 Sep 2022 02:45:54 GMT
last-modified: Wed, 10 Apr 2019 11:21:34 GMT
etag: W/"5cadd1be-13ac"
expires: Sun, 23 Oct 2022 02:45:54 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: QrQo5Ym0H2UEn4_o5pouj6qOYiK_2mpX8z-khpI_z1__gUdoz7K7cA==
age: 854672
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/sp-on-maps_cloudfront_sd/d30eef4dc5202875d4c3301b8a0e8ff09f9a0e28.js
143.204.68.33200 OK 0 B URL HTTP/2 cf.bstatic.com/static/js/sp-on-maps_cloudfront_sd/d30eef4dc5202875d4c3301b8a0e8ff09f9a0e28.js
IP 143.204.68.33:0
GET /static/js/sp-on-maps_cloudfront_sd/d30eef4dc5202875d4c3301b8a0e8ff09f9a0e28.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 05 Sep 2022 06:01:07 GMT
last-modified: Thu, 19 May 2022 11:44:13 GMT
etag: W/"62862d8d-25ae"
expires: Wed, 05 Oct 2022 06:01:07 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c29e813f981bfce75709b36f6e4555a2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: xsJ8HjduuK2s8med_VlYVOlk7xiD_T5yBqCXxhqrE7_nU7QbUyITsQ==
age: 2398158
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/landingpage_cloudfront_sd/0e668227dfa5572e7d59db0513af42229866726b.js
143.204.68.33200 OK 0 B URL HTTP/2 cf.bstatic.com/static/js/landingpage_cloudfront_sd/0e668227dfa5572e7d59db0513af42229866726b.js
IP 143.204.68.33:0
GET /static/js/landingpage_cloudfront_sd/0e668227dfa5572e7d59db0513af42229866726b.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 12 Sep 2022 14:53:37 GMT
last-modified: Mon, 12 Sep 2022 08:58:19 GMT
etag: W/"631ef4ab-66f01"
expires: Wed, 12 Oct 2022 14:53:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c29e813f981bfce75709b36f6e4555a2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: -QWfZLzE__xDvhCeoJQkbTwCRoab6SFn4lve7vLsfRNxgoDWDx7Sdw==
age: 1761407
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/atlas_cloudfront_sd/1ae6debea4b5afce3eb21a79981d0208661c6c1c.js
143.204.68.33200 OK 0 B URL HTTP/2 cf.bstatic.com/static/js/atlas_cloudfront_sd/1ae6debea4b5afce3eb21a79981d0208661c6c1c.js
IP 143.204.68.33:0
GET /static/js/atlas_cloudfront_sd/1ae6debea4b5afce3eb21a79981d0208661c6c1c.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 05 Sep 2022 10:57:29 GMT
last-modified: Mon, 05 Sep 2022 10:51:43 GMT
etag: W/"6315d4bf-1d23b"
expires: Wed, 05 Oct 2022 10:57:29 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: XzjQddLMO2ZCPEEuhOQ2udEHiL5WOiuQGMYSGlBVb1-eAjK0wl1tBg==
age: 2380377
X-Firefox-Spdy: h2
cf.bstatic.com/libs/privacy-consent/releases/2.1.32/customer/cookie-banner.min.js
143.204.68.33200 OK 0 B URL HTTP/2 cf.bstatic.com/libs/privacy-consent/releases/2.1.32/customer/cookie-banner.min.js
IP 143.204.68.33:0
GET /libs/privacy-consent/releases/2.1.32/customer/cookie-banner.min.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 14 Sep 2022 13:16:06 GMT
last-modified: Wed, 14 Sep 2022 13:15:04 GMT
etag: W/"6321d3d8-21be"
expires: Fri, 14 Oct 2022 13:16:06 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: Miy3tkmFjYYBqwAWEErxrXBmlbnJGTBeB_kBN-Fa_qmHv4TE4F2uDQ==
age: 1594458
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/cross_product_index/toggle/fb6f63d62231f9fe552d79b5448620b2e63c726e.svg
143.204.68.33200 OK 0 B URL HTTP/2 cf.bstatic.com/static/img/cross_product_index/toggle/fb6f63d62231f9fe552d79b5448620b2e63c726e.svg
IP 143.204.68.33:0
GET /static/img/cross_product_index/toggle/fb6f63d62231f9fe552d79b5448620b2e63c726e.svg HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/1592fd9161d73a23f793a04b8bb510282db4040d.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Fri, 23 Sep 2022 02:45:53 GMT
last-modified: Wed, 10 Apr 2019 11:21:51 GMT
etag: W/"5cadd1cf-5e7"
expires: Sun, 23 Oct 2022 02:45:53 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: CbZCVBlGSQgfjrlf_v6J1etLqUyXGEID5Z6PzVtypQGpEwXoI8dFWQ==
age: 854672
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/579.3b0411e4.chunk.js
143.204.68.33200 OK 0 B URL HTTP/2 cf.bstatic.com/psb/capla/static/js/579.3b0411e4.chunk.js
IP 143.204.68.33:0
GET /psb/capla/static/js/579.3b0411e4.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 28 Sep 2022 12:47:53 GMT
etag: W/"49398d84b2fd6107a35ee915efea4189"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Wed, 28 Sep 2022 12:37:09 GMT
x-amz-expiration: expiry-date="Thu, 26 Jan 2023 12:37:09 GMT", rule-id=""
expires: Fri, 28 Oct 2022 12:47:53 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c29e813f981bfce75709b36f6e4555a2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: g6KD8Pqsbbdq2_EfRqARrFeVTkq6IclgXI5DFbWD5gQZfv3ctWQEeg==
age: 386552
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/970.aac8bfe8.chunk.js
143.204.68.33200 OK 0 B URL HTTP/2 cf.bstatic.com/psb/capla/static/js/970.aac8bfe8.chunk.js
IP 143.204.68.33:0
GET /psb/capla/static/js/970.aac8bfe8.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 29 Sep 2022 15:07:26 GMT
etag: W/"2d9723ad5cff05dc5c33ae70e03afadf"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Thu, 29 Sep 2022 14:41:05 GMT
x-amz-expiration: expiry-date="Fri, 27 Jan 2023 14:41:05 GMT", rule-id=""
expires: Sat, 29 Oct 2022 15:07:26 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c29e813f981bfce75709b36f6e4555a2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: W3iHgcIxV4y71ljeo9o6NtrGY3uoAcPTCyPqErcjgWqPS0zeARmCzQ==
age: 291779
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/527.cf058fcd.chunk.js
143.204.68.33200 OK 0 B URL HTTP/2 cf.bstatic.com/psb/capla/static/js/527.cf058fcd.chunk.js
IP 143.204.68.33:0
GET /psb/capla/static/js/527.cf058fcd.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 28 Sep 2022 12:48:44 GMT
etag: W/"9b7881cc97e04aec7f9fe68c4afa1eeb"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Wed, 28 Sep 2022 12:37:09 GMT
x-amz-expiration: expiry-date="Thu, 26 Jan 2023 12:37:09 GMT", rule-id=""
expires: Fri, 28 Oct 2022 12:48:44 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c29e813f981bfce75709b36f6e4555a2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: C4gRwB6_Y5bY11BKVNEMliI5-2LAuOr85-eS57suN3n0Kv6Gos5kSg==
age: 386501
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/797.f71e2cf3.chunk.js
143.204.68.33200 OK 0 B URL HTTP/2 cf.bstatic.com/psb/capla/static/js/797.f71e2cf3.chunk.js
IP 143.204.68.33:0
GET /psb/capla/static/js/797.f71e2cf3.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 29 Sep 2022 15:07:26 GMT
etag: W/"2fcdb0303a5e6ad90490da05510bd7ce"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Thu, 29 Sep 2022 14:41:05 GMT
x-amz-expiration: expiry-date="Fri, 27 Jan 2023 14:41:05 GMT", rule-id=""
expires: Sat, 29 Oct 2022 15:07:26 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c29e813f981bfce75709b36f6e4555a2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: zEl47Xyh_M-MDQYymJbGsWOVUdM8hOuPHoN6ya8j5r_X4nAwpL6lVA==
age: 291779
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/calendar2_cloudfront_sd/06071dd1c4e89fbe99e5ad6e21584a6bf9585e84.js
143.204.68.33200 OK 0 B URL HTTP/2 cf.bstatic.com/static/js/calendar2_cloudfront_sd/06071dd1c4e89fbe99e5ad6e21584a6bf9585e84.js
IP 143.204.68.33:0
GET /static/js/calendar2_cloudfront_sd/06071dd1c4e89fbe99e5ad6e21584a6bf9585e84.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
last-modified: Tue, 12 Jan 2021 10:06:38 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sun, 02 Oct 2022 23:22:45 GMT
expires: Tue, 01 Nov 2022 23:22:45 GMT
cache-control: max-age=2592000
etag: W/"5ffd74ae-cbbc"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: 9pIpYGVGVJgqin-w-SCu9x7aaFL88ydqak136oHi-xWUBIwtGuklPw==
age: 2861
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/genius_vip_cloudfront_sd/f980dbafa6b20d980f25ca835a161e7cece00d9d.js
143.204.68.33200 OK 0 B URL HTTP/2 cf.bstatic.com/static/js/genius_vip_cloudfront_sd/f980dbafa6b20d980f25ca835a161e7cece00d9d.js
IP 143.204.68.33:0
GET /static/js/genius_vip_cloudfront_sd/f980dbafa6b20d980f25ca835a161e7cece00d9d.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 30 Sep 2022 07:48:20 GMT
last-modified: Thu, 30 Jun 2022 09:12:43 GMT
etag: W/"62bd690b-c32"
expires: Sun, 30 Oct 2022 07:48:20 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c29e813f981bfce75709b36f6e4555a2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: jwFcUkaN6oh-bcZF7LB72Ftq91qiGqAiBK6Nox4NOwoULXKEznWTmw==
age: 231725
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/bui-react.eae829a0.js
143.204.68.33200 OK 0 B URL HTTP/2 cf.bstatic.com/psb/capla/static/js/bui-react.eae829a0.js
IP 143.204.68.33:0
GET /psb/capla/static/js/bui-react.eae829a0.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Tue, 27 Sep 2022 08:47:08 GMT
etag: W/"016450e96d012bfdda8ce320a38f3448"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Tue, 27 Sep 2022 08:36:30 GMT
x-amz-expiration: expiry-date="Wed, 25 Jan 2023 08:36:30 GMT", rule-id=""
expires: Thu, 27 Oct 2022 08:47:08 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c29e813f981bfce75709b36f6e4555a2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: _BYomsErm6VVV-PJtr8M-n3a9ddqKHFVFlcP7EBL0GOa8rZ_P7lFkA==
age: 487396
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/client.8c167581.js
143.204.68.33200 OK 0 B URL HTTP/2 cf.bstatic.com/psb/capla/static/js/client.8c167581.js
IP 143.204.68.33:0
GET /psb/capla/static/js/client.8c167581.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 30 Sep 2022 09:19:06 GMT
etag: W/"d6f7d77529b04e395ac6abd169b74dc3"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 30 Sep 2022 09:04:54 GMT
x-amz-expiration: expiry-date="Sat, 28 Jan 2023 09:04:54 GMT", rule-id=""
expires: Sun, 30 Oct 2022 09:19:06 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c29e813f981bfce75709b36f6e4555a2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: 40pV-Xl0r5bGdkg1oXqo0j2BCCY1Pbd7IKdnFwHNKUhyYoJyWWSDJw==
age: 226279
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/cross_product_index/guest/b2e5f2aa32b71ca0fc66aa671e4e958bcd69b7d0.svg
143.204.68.33200 OK 0 B URL HTTP/2 cf.bstatic.com/static/img/cross_product_index/guest/b2e5f2aa32b71ca0fc66aa671e4e958bcd69b7d0.svg
IP 143.204.68.33:0
GET /static/img/cross_product_index/guest/b2e5f2aa32b71ca0fc66aa671e4e958bcd69b7d0.svg HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/1592fd9161d73a23f793a04b8bb510282db4040d.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:51 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Mon, 26 Sep 2022 02:00:26 GMT
expires: Wed, 26 Oct 2022 02:00:26 GMT
cache-control: max-age=2592000
etag: W/"5cadd1cf-63d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 16f38d6df135d34d67fe44df60d91ab4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: XtYELQGJU1bTikuxIkVIwO1BACTZ4eZNzOpnKtp0yr2mKaEVmPzjlQ==
age: 598199
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/raf_cloudfront_sd/b9e5b0bcf00cff69d910550bedf9b680172d2b89.js
143.204.68.33200 OK 0 B URL HTTP/2 cf.bstatic.com/static/js/raf_cloudfront_sd/b9e5b0bcf00cff69d910550bedf9b680172d2b89.js
IP 143.204.68.33:0
GET /static/js/raf_cloudfront_sd/b9e5b0bcf00cff69d910550bedf9b680172d2b89.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 16 Sep 2022 14:00:42 GMT
last-modified: Fri, 16 Sep 2022 13:33:46 GMT
etag: W/"63247b3a-1db04"
expires: Sun, 16 Oct 2022 14:00:42 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c29e813f981bfce75709b36f6e4555a2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: sMlo5Sur68-y6YtJGUM8-tLOFpFgbTW5T2VpjoWWRHBbu6ZhRYmWOA==
age: 1418983
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/vendors.7bb8d18e.js
143.204.68.33200 OK 0 B URL HTTP/2 cf.bstatic.com/psb/capla/static/js/vendors.7bb8d18e.js
IP 143.204.68.33:0
GET /psb/capla/static/js/vendors.7bb8d18e.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 30 Sep 2022 09:19:06 GMT
etag: W/"1a1ab71927c8681374261aeef5019693"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 30 Sep 2022 09:04:54 GMT
x-amz-expiration: expiry-date="Sat, 28 Jan 2023 09:04:54 GMT", rule-id=""
expires: Sun, 30 Oct 2022 09:19:06 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c29e813f981bfce75709b36f6e4555a2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: tMmo0rICQKSjZNAzkNTbj-sjeXUKRA1tCwaooDQecpFN6sW9ZKt1lg==
age: 226279
X-Firefox-Spdy: h2