dl.xetapp.us/downloads/software/system/drivers/driverhub.setup.exe
172.98.192.35200 OK 526 B URL HTTP/1.1 dl.xetapp.us/downloads/software/system/drivers/driverhub.setup.exe
IP 172.98.192.35:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (526), with no line terminators
Hash bbc0fd92b885e9c1da9f55a6eb63b07d
070f0c7ce15d905b60b2e8c26de3396fbc15712d
72af0f81804d43052f239aa688d8105a236306f6daf5eabc5eb8f63c3cddac19
Analyzer Verdict Alert fortinet Malware
GET /downloads/software/system/drivers/driverhub.setup.exe HTTP/1.1
Host: dl.xetapp.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 526
content-type: text/html; charset=utf-8
date: Sat, 25 Mar 2023 13:29:51 GMT
server: nginx
set-cookie: sid=1f73536c-cb11-11ed-aca0-538297a87bc0; path=/; domain=.xetapp.us; expires=Thu, 12 Apr 2091 16:43:59 GMT; max-age=2147483647; HttpOnly
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5d9435c884bf4a0777fdf4b57079ae09
7f04b9db47ffeec90ac6397416b7553e5336a550
fe77420ec3a11f547cf5172b68d30faa4fe0c13165ae305f0013b02914e61084
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FE77420EC3A11F547CF5172B68D30FAA4FE0C13165AE305F0013B02914E61084"
Last-Modified: Sat, 25 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8421
Expires: Sat, 25 Mar 2023 15:50:13 GMT
Date: Sat, 25 Mar 2023 13:29:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfd491ebe7381221b3674c2c8bf9e566
d2ac5badf17f348c28a52e9db10e6eb80e5a231a
34a026664386054b0b73c36cd1ddfce023551ee41963df0e38248bac1e1eb56c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "34A026664386054B0B73C36CD1DDFCE023551EE41963DF0E38248BAC1E1EB56C"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10464
Expires: Sat, 25 Mar 2023 16:24:16 GMT
Date: Sat, 25 Mar 2023 13:29:52 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 25 Mar 2023 13:27:45 GMT
content-type: application/json
age: 127
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9bb70197d53617b5e6889b890dd2ae26
f3e9b8a743de494529baf2d078a622539f965307
a094a13905b7f1cd89475f9c83f9245580d4c3c7228d51d5c16622aec3c6aa45
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A094A13905B7F1CD89475F9C83F9245580D4C3C7228D51D5C16622AEC3C6AA45"
Last-Modified: Sat, 25 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2166
Expires: Sat, 25 Mar 2023 14:05:58 GMT
Date: Sat, 25 Mar 2023 13:29:52 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: AgMIxXbGKrgWvZtDiprBDSppyuJ3agb2vmUq3HiN48olGbcaKe+chk8yifeRos1oKeFYcTbvUYw=
x-amz-request-id: 6AEZ7CWGWB8R5QXB
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 25 Mar 2023 13:00:47 GMT
age: 1745
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 25 Mar 2023 13:29:52 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
dl.xetapp.us/favicon.ico
172.98.192.35404 Not Found 9 B IP 172.98.192.35:0
File type ASCII text, with no line terminators
Hash d8f4a1993546cc4b850cde3599e27aec
094b763b4cfcc0b05e5d040581cd513c3ca08067
907ba78b4545338d3539683e63ecb51cf51c10adc9dabd86e92bd52339f298b9
GET /favicon.ico HTTP/1.1
Host: dl.xetapp.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dl.xetapp.us/downloads/software/system/drivers/driverhub.setup.exe
Cookie: sid=1f73536c-cb11-11ed-aca0-538297a87bc0
HTTP/1.1 404 Not Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 9
date: Sat, 25 Mar 2023 13:29:51 GMT
server: nginx
dl.xetapp.us/downloads/software/system/drivers/driverhub.setup.exe?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY3OTc1ODE5MiwiaWF0IjoxNjc5NzUwOTkyLCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydDdxcDg1YXVmdmNkamgyZW8wMWVqOGQiLCJuYmYiOjE2Nzk3NTA5OTIsInRzIjoxNjc5NzUwOTkyMDk1MjY3fQ.7i-OT2iLbuFZMVeh4h_E8mnCH29LzOa_BjqehgylVEQ&sid=1f73536c-cb11-11ed-aca0-538297a87bc0
172.98.192.35302 Found 11 B URL HTTP/1.1 dl.xetapp.us/downloads/software/system/drivers/driverhub.setup.exe?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY3OTc1ODE5MiwiaWF0IjoxNjc5NzUwOTkyLCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydDdxcDg1YXVmdmNkamgyZW8wMWVqOGQiLCJuYmYiOjE2Nzk3NTA5OTIsInRzIjoxNjc5NzUwOTkyMDk1MjY3fQ.7i-OT2iLbuFZMVeh4h_E8mnCH29LzOa_BjqehgylVEQ&sid=1f73536c-cb11-11ed-aca0-538297a87bc0
IP 172.98.192.35:0
File type ASCII text, with no line terminators
Hash 32682312d17c7cbf18e73594f5570319
60e22121bdd0bc71cdb2bae2a3aa577006b2eae9
e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47
GET /downloads/software/system/drivers/driverhub.setup.exe?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY3OTc1ODE5MiwiaWF0IjoxNjc5NzUwOTkyLCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydDdxcDg1YXVmdmNkamgyZW8wMWVqOGQiLCJuYmYiOjE2Nzk3NTA5OTIsInRzIjoxNjc5NzUwOTkyMDk1MjY3fQ.7i-OT2iLbuFZMVeh4h_E8mnCH29LzOa_BjqehgylVEQ&sid=1f73536c-cb11-11ed-aca0-538297a87bc0 HTTP/1.1
Host: dl.xetapp.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dl.xetapp.us/downloads/software/system/drivers/driverhub.setup.exe
Cookie: sid=1f73536c-cb11-11ed-aca0-538297a87bc0
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 11
date: Sat, 25 Mar 2023 13:29:51 GMT
location: http://ishku-wbq.com/zcvisitor/1fb631f4-cb11-11ed-b102-0a3a6f9ed835/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=c0e2d870-bfc4-11ec-bea2-128084d1ce51
server: nginx
set-cookie: sid=1f73536c-cb11-11ed-aca0-538297a87bc0; path=/; domain=.xetapp.us; expires=Thu, 12 Apr 2091 16:43:59 GMT; max-age=2147483647; HttpOnly
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Last-Modified, Content-Length, Pragma, Expires, ETag, Backoff, Alert, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 25 Mar 2023 13:14:33 GMT
age: 919
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 70300b32357c46f3448d567189b64cb3
6ba66a5cf63cdbfeaec59b936151cc812bac56df
5a2b4f9fc5ebaa8062058bf68eae75fc28e06c6ef6a0e79c3c761c1d92f81cb9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5A2B4F9FC5EBAA8062058BF68EAE75FC28E06C6EF6A0E79C3C761C1D92F81CB9"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13511
Expires: Sat, 25 Mar 2023 17:15:04 GMT
Date: Sat, 25 Mar 2023 13:29:53 GMT
Connection: keep-alive
ishku-wbq.com/zcvisitor/1fb631f4-cb11-11ed-b102-0a3a6f9ed835/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=c0e2d870-bfc4-11ec-bea2-128084d1ce51
3.231.116.86200 1.1 kB URL HTTP/1.1 ishku-wbq.com/zcvisitor/1fb631f4-cb11-11ed-b102-0a3a6f9ed835/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=c0e2d870-bfc4-11ec-bea2-128084d1ce51
IP 3.231.116.86:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 7ef307523794b29a6d1fb867e562f61e
8ac35ec2c43dc2ba594587030eed95683dc986e3
d58297d64062fb5fe895fc5ee697c4d5662921839de4b3f6055c5952e2f3d593
GET /zcvisitor/1fb631f4-cb11-11ed-b102-0a3a6f9ed835/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=c0e2d870-bfc4-11ec-bea2-128084d1ce51 HTTP/1.1
Host: ishku-wbq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://dl.xetapp.us/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Date: Sat, 25 Mar 2023 13:29:53 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Server: uZHEkUSg
ishku-wbq.com/zcredirect?visitid=1fb631f4-cb11-11ed-b102-0a3a6f9ed835&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
3.231.116.86200 748 B URL HTTP/1.1 ishku-wbq.com/zcredirect?visitid=1fb631f4-cb11-11ed-b102-0a3a6f9ed835&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
IP 3.231.116.86:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (331)
Hash e1a9cf38a50b4f1050e196f4143e1c2f
d88c9d797f54b2841d3312c472ed1814581e4dbb
81b81404571e6d9c57c46f6a4cda5dc239abf5e8e14ac292a102dc906a612efd
GET /zcredirect?visitid=1fb631f4-cb11-11ed-b102-0a3a6f9ed835&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false HTTP/1.1
Host: ishku-wbq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ishku-wbq.com/zcvisitor/1fb631f4-cb11-11ed-b102-0a3a6f9ed835/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=c0e2d870-bfc4-11ec-bea2-128084d1ce51
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Date: Sat, 25 Mar 2023 13:29:53 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
redirected: JS
Server: ozHWcwBG
hit.teratracker.com/czuMsQgpQ?x3v=NA6zInzSipnVd%2FsZeBPUHjjAXjmLyP%2Bi7KhRjj2jUyb0%2FAMUxfLp5a3RVeT3XnaWPuWTmNqYOuvScmNq%2FWN8m%2BY4ucVJUqiK4%2Ft1q24R%2B1K0REd%2BH%2FoaXvuT8EZnw97ZI3dQ7aMZDNoNVFr%2FJB7wXrA%2BJqVIcMbmABnDV2zmlon5Y%2FJYHfSekJ2eTsnUulXPins%3D&sk=6e4bdfb4ed7bfb323cc2a62761743878
104.21.75.190302 Found 0 B URL HTTP/2 hit.teratracker.com/czuMsQgpQ?x3v=NA6zInzSipnVd%2FsZeBPUHjjAXjmLyP%2Bi7KhRjj2jUyb0%2FAMUxfLp5a3RVeT3XnaWPuWTmNqYOuvScmNq%2FWN8m%2BY4ucVJUqiK4%2Ft1q24R%2B1K0REd%2BH%2FoaXvuT8EZnw97ZI3dQ7aMZDNoNVFr%2FJB7wXrA%2BJqVIcMbmABnDV2zmlon5Y%2FJYHfSekJ2eTsnUulXPins%3D&sk=6e4bdfb4ed7bfb323cc2a62761743878
IP 104.21.75.190:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /czuMsQgpQ?x3v=NA6zInzSipnVd%2FsZeBPUHjjAXjmLyP%2Bi7KhRjj2jUyb0%2FAMUxfLp5a3RVeT3XnaWPuWTmNqYOuvScmNq%2FWN8m%2BY4ucVJUqiK4%2Ft1q24R%2B1K0REd%2BH%2FoaXvuT8EZnw97ZI3dQ7aMZDNoNVFr%2FJB7wXrA%2BJqVIcMbmABnDV2zmlon5Y%2FJYHfSekJ2eTsnUulXPins%3D&sk=6e4bdfb4ed7bfb323cc2a62761743878 HTTP/1.1
Host: hit.teratracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 25 Mar 2023 13:29:53 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
location: https://trk.buyent.xyz/aff_c?offer_id=9947&aff_id=101167
access-control-allow-origin: *
access-control-expose-headers: X-BurstFire-ReqID, X-BurstFire-ClientID, X-BurstFire-Version, Server
x-burstfire-reqid: 9738ed78-f7f1-4f50-b152-4739278fd448
x-burstfire-clientid: 836bf02e-8f2c-6465-41c2-5ccbed751294
x-burstfire-version: Generic
referrer-policy: no-referrer
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UbO6XM5zupML%2FwFDXAgt3wPzkCw712OPLDMrhnw9iOdcvrvIn2Ivt%2FtAfJRL8EwNV%2BfZQ0YlsKOLLAeXNRHkY7LxndDBslbefNa6olvRr7jv%2BEQbS8g24pC4m8FSLhDdVcP5PZod"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ad7815c3884b52d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
push.services.mozilla.com/
44.231.252.214101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.231.252.214:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: KvWRN5AvKjCs9/6PpdwbEA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: JIcsoYlb6aVTXelE5a4N3wWTsK0=
ishku-wbq.com/favicon.ico
3.231.116.86404 653 B URL HTTP/1.1 ishku-wbq.com/favicon.ico
IP 3.231.116.86:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (649), with no line terminators
Hash ba2732b1b2fa2626ffaa15f62f9e7d66
203d4e7fbb1d80449d6e4e1f3ae7a9bf8625debe
879861cb72fe9fbb476dab246021c4c83b4066327de2529e05ec54d3afb0a1c8
GET /favicon.ico HTTP/1.1
Host: ishku-wbq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ishku-wbq.com/zcredirect?visitid=1fb631f4-cb11-11ed-b102-0a3a6f9ed835&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
HTTP/1.1 404
Date: Sat, 25 Mar 2023 13:29:53 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 653
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Content-Language: en
Server: HulSASqn
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 0a86cdec02038594bb98f06a23707927
55e0bf80b60ff8c6f4ef0f62928b580bc5a26f0c
a0cf17a43765f82835969cf7c443b2800ef874b769306fde68cdcc8b22a8611a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 13:29:53 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 04:02:11 GMT
Expires: Thu, 30 Mar 2023 04:02:10 GMT
Etag: "55e0bf80b60ff8c6f4ef0f62928b580bc5a26f0c"
Cache-Control: max-age=397336,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ad7815e9c02b50c-OSL
trk.buyent.xyz/aff_c?offer_id=9947&aff_id=101167
172.67.195.5302 Found 654 B URL HTTP/2 trk.buyent.xyz/aff_c?offer_id=9947&aff_id=101167
IP 172.67.195.5:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0e0cd6eb9579ec62ad97739b34931cf2
f4d254b8851f108237a6c0e14f4638bc40a8cae3
39d37b49568d4d26340374a5f6d9127a74defa2e0135fc54f713cff50c47f3f1
GET /aff_c?offer_id=9947&aff_id=101167 HTTP/1.1
Host: trk.buyent.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 25 Mar 2023 13:29:53 GMT
content-type: text/html; charset=iso-8859-1
cache-control: no-cache, no-store, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
location: /aff_r?offer_id=9947&aff_id=101167&url=https%3A%2F%2Fprf.hn%2Fclick%2Fcamref%3A1011l9s5L%2Fpubref%3A10285899b13a1ba82142f75ad078be%2Fadref%3A101167&urlauth=524971497819168487879087756598
p3p: CP="NOI CUR OUR NOR INT"
pragma: no-cache
set-cookie: enc_aff_session_9947=ENC032b37bcd3fa0d5554a8a39a666e028e7116836d4b6cb7e36ffedb3987b9759c622cb32b724226aeb6775ef959d2c9310f2b155ed8a167c74e8b36dd11d638e8aa87a480829296822068c939be229e413de99326f1f502c3a2e3d0e7aa10dfda9257f7e0f5969d4a2c60bcdca4d5067fda04f0db8a0e57636d38af1cab9974523e1b833525; expires=Tue, 25 Apr 2023 13:29:53 GMT; path=/; SameSite=None; Secure
ho_mob=eyJtb2JpbGVfZGV2aWNlX29zIjoiRGVza3RvcCIsIm1vYmlsZV9kZXZpY2VfbW9kZWwiOiJGaXJlZm94IiwibW9iaWxlX2RldmljZV9icmFuZCI6Ik1vemlsbGEiLCJtb2JpbGVfYnJvd3NlciI6IkZpcmVmb3ggRGVza3RvcCIsIm1vYmlsZV9icm93c2VyX3ZlcnNpb24iOiIxMDUuMCIsIm1vYmlsZV9jYXJyaWVyIjoiPyIsInVzZXJfYWdlbnQiOiJNb3ppbGxhLzUuMCAoV2luZG93cyBOVCAxMC4wOyBXaW42NDsgWDY0OyBSdjoxMDUuMCkgR2Vja28vMjAxMDAxMDEgRmlyZWZveC8xMDUuMCIsImFjY2VwdF9sYW5ndWFnZSI6ImVuLVVTLGVuO3E9MC41IiwiY29ubmVjdGlvbl9zcGVlZCI6ImJyb2FkYmFuZCJ9; expires=Tue, 17 Feb 2026 00:09:53 GMT; path=/; SameSite=None; Secure
tracking_id: 10285899b13a1ba82142f75ad078be
access-control-allow-origin: *
x-request-id: fd9d66562eefe945c262201f112537bd
access-control-allow-headers: Tune-SDK-Version
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4PcW6LATAXSn2cs9NAH2joj7kJXt4uVB4ymezQXYqdPDWtdYahLKMNon4Sn%2Fsq%2Fvc0fjPmB40cVTHhTNwKpR0NAseGb8qoXxCEhUByaP0spi4j%2FcsGIeLzTsZohjFli8Wg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ad7815d1903b51b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9656
Expires: Sat, 25 Mar 2023 16:10:50 GMT
Date: Sat, 25 Mar 2023 13:29:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9656
Expires: Sat, 25 Mar 2023 16:10:50 GMT
Date: Sat, 25 Mar 2023 13:29:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9656
Expires: Sat, 25 Mar 2023 16:10:50 GMT
Date: Sat, 25 Mar 2023 13:29:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9656
Expires: Sat, 25 Mar 2023 16:10:50 GMT
Date: Sat, 25 Mar 2023 13:29:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9656
Expires: Sat, 25 Mar 2023 16:10:50 GMT
Date: Sat, 25 Mar 2023 13:29:54 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07b6f4d1-af89-4aaf-acec-609bb76366de.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07b6f4d1-af89-4aaf-acec-609bb76366de.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 70169fbc493bf12f91f072aa3a30ddde
4cd24b81bd6ade3ab5ff90fc88b0f7497e93391d
8b5fc3c8421d5696522231c3490a0853709897f5c9b645bd5e84398cf84089aa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07b6f4d1-af89-4aaf-acec-609bb76366de.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12071
x-amzn-requestid: 02bb2a93-c0aa-4d43-aa99-759a0418bc20
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTigfGHYoAMF8BQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e179c-2258162e1901b5cd6e7144d3;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:35:24 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: JviLRALJFla17_jzjfSJ_krfBT1kOqoPPt03e8ymXPQGRlLXmrERsQ==
via: 1.1 b5695e36d7fbc522ece27885d73757ae.cloudfront.net (CloudFront), 1.1 536063cb28bfc05fcb7a78183dd89b72.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:40:28 GMT
age: 56966
etag: "4cd24b81bd6ade3ab5ff90fc88b0f7497e93391d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aecd210f66f83c73c3450d047ae7448a
d68861e96e12e8a3f293dbae8b687f05b6e15afb
22b69c41c56e5538d91f824d5dc2e63ab5563f99ae8e429c9166f4b397cacd0e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5296
x-amzn-requestid: 11fdf0c8-244c-4cd5-bfa7-4c77d777174f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTiuzEqkIAMFXOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e17f8-5c241d63598dbf595b54ead5;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:36:56 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: b1KWFmKdRQ4DU0v5JmC7AJatpv2B5FAHKVWL7pFiyh13fqYDA5qydA==
via: 1.1 b5695e36d7fbc522ece27885d73757ae.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:40:28 GMT
age: 56966
etag: "d68861e96e12e8a3f293dbae8b687f05b6e15afb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 85351059b67b0a42eda7e69a31b3b4b4
b798268806dc2f79f033e5872676019faf0e0cc1
86e163b7159b197d6358ab01333ac6da221de0ebe1c5da8d5cef2977d38625fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4000
x-amzn-requestid: 68dc01d7-3eed-48f6-8532-8efaa96cc1ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJpraEqyoAMFgNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2315-3852cc8961365a560d1fa02f;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:17 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Ncagzm12kJaHQtYhhjUUhcfXVfbwMdonoNYqpK-QXEmLfyyENgFnFA==
via: 1.1 288c777a01e22425da9494dad7a69734.cloudfront.net (CloudFront), 1.1 42ef990e439ae115ff739f04e3945234.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 08:51:06 GMT
age: 16728
etag: "b798268806dc2f79f033e5872676019faf0e0cc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6f9abe8-74dc-41f6-984c-4a9e53a6198a.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6f9abe8-74dc-41f6-984c-4a9e53a6198a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dd191e3a122d6e31f81e6e9d434c58d6
aec88022970c93289434f8097e4a663da33e5271
1f00c901ef479637ec703d7924526a970cb13dd2635b2bbb68b285df9d98e011
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6f9abe8-74dc-41f6-984c-4a9e53a6198a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6185
x-amzn-requestid: 223de50b-9a7e-4ac7-9305-336658eec4ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTiwYHoLoAMFXtg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e1802-226bd8524ade75234053ff50;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:37:06 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: tMnTFkK-AtSlEsQskvoxwwCjddndz5GBLHiV5RHi3QumyL6MVC9ovg==
via: 1.1 3698a5f586d9ecca74d570e41f4c8516.cloudfront.net (CloudFront), 1.1 34f8ef0e4c880df0650a814412a26ea6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:40:28 GMT
age: 56966
etag: "aec88022970c93289434f8097e4a663da33e5271"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af2ab94-b5c3-4517-b9d7-97ddb369f62d.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af2ab94-b5c3-4517-b9d7-97ddb369f62d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5773974a7341690f006b052ad02c94db
1b11316c952e2195da1646dd94671669e7e3bc2b
a06b72138745500cacc919fea29536ebd4188a1c483f6123e3402458e299f16a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af2ab94-b5c3-4517-b9d7-97ddb369f62d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7800
x-amzn-requestid: bad99b1e-3923-4de9-8bea-4dd04e96f7cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTigfFGcIAMFdBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e179c-0826b92d4c4af16553503600;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:35:24 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 9AGLmjvUSTKIsYIWECOR8QwdF4PP1tP1TweUm0VYvxQ0qskqj3YuLA==
via: 1.1 3698a5f586d9ecca74d570e41f4c8516.cloudfront.net (CloudFront), 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:40:18 GMT
age: 56976
etag: "1b11316c952e2195da1646dd94671669e7e3bc2b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bda2583-e595-45ff-852f-d4b6bd713109.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bda2583-e595-45ff-852f-d4b6bd713109.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 73f9697594d173d623b331b5c35eab8d
6323f751f6b7517f062a0442480f672086ea02a1
116cb71658b31e87f19c390b242c684f6505cc8edf90b7fc934ac726fc7ddd18
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bda2583-e595-45ff-852f-d4b6bd713109.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8635
x-amzn-requestid: fc715b03-f48f-4300-b752-ab157a684f08
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTihcETyIAMFhYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e17a2-68f685ec0f50dae026ea3f64;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:35:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: ogff88YPb_ia9BPyBI0afIy9cWym7eDnXHKykpTS3NVG4EY_SUENDA==
via: 1.1 ba490acb2ea716cd57876286ed686786.cloudfront.net (CloudFront), 1.1 aa623e134417515bd2496cb01d5e5626.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:40:28 GMT
etag: "6323f751f6b7517f062a0442480f672086ea02a1"
content-type: image/jpeg
age: 56966
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.hostelworld.com/_nuxt/app/cfc9385.modern.js
95.100.15.144200 OK 3.6 kB URL HTTP/2 www.hostelworld.com/_nuxt/app/cfc9385.modern.js
IP 95.100.15.144:0
File type ASCII text, with very long lines (6934), with no line terminators
Hash 76c2dbe97cd6b0afbc5eff27d6c1bafc
8e6520d14fb948559e2284e28114749b1a650f84
99f646ee5ba9953b90c4aa38fa3d7a86f0eba84bd43063ea29f7c6699c09e6b0
GET /_nuxt/app/cfc9385.modern.js HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Fri, 17 Mar 2023 11:09:24 GMT
etag: W/"1b16-186ef4296a0"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
content-encoding: br
content-length: 3595
cache-control: public, max-age=160485
date: Sat, 25 Mar 2023 13:29:57 GMT
X-Firefox-Spdy: h2
www.hostelworld.com/_nuxt/chunk/7d2065c.modern.js
95.100.15.144200 OK 49 kB URL HTTP/2 www.hostelworld.com/_nuxt/chunk/7d2065c.modern.js
IP 95.100.15.144:0
File type ASCII text, with very long lines (65482)
Hash aa2e00ecc6b1b5dd8548088c08c6e36e
257654a39669131e714808d9bfd1ce26d3455bb2
82c709e82886620fec7c481ddb2017e23f6d467938a5d09694628d587a86717c
GET /_nuxt/chunk/7d2065c.modern.js HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Fri, 17 Mar 2023 11:09:24 GMT
etag: W/"22967-186ef4296a0"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
content-encoding: br
content-length: 48828
cache-control: public, max-age=160475
date: Sat, 25 Mar 2023 13:29:57 GMT
X-Firefox-Spdy: h2
www.hostelworld.com/_nuxt/chunk/7dbee7c.modern.js
95.100.15.144200 OK 52 kB URL HTTP/2 www.hostelworld.com/_nuxt/chunk/7dbee7c.modern.js
IP 95.100.15.144:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 03a45188d8b8790fa9f0dd0dd7971f64
fbe1ecb8543df286ea757108c19ef0cb776d409e
1a7650afd680c741b362c94e25ed7d0d1d80a1965922d7cdffd5d197200b6b3e
GET /_nuxt/chunk/7dbee7c.modern.js HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Fri, 17 Mar 2023 11:09:24 GMT
etag: W/"2ca1d-186ef4296a0"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
content-encoding: br
content-length: 52196
cache-control: public, max-age=160520
date: Sat, 25 Mar 2023 13:29:57 GMT
X-Firefox-Spdy: h2
www.hostelworld.com/_nuxt/chunk/9e8841f.modern.js
95.100.15.144200 OK 4.5 kB URL HTTP/2 www.hostelworld.com/_nuxt/chunk/9e8841f.modern.js
IP 95.100.15.144:0
File type ASCII text, with very long lines (25176), with no line terminators
Hash 11b1b415e804a72e08d288cc4a4db67f
1fec86e29137ff5df589d9c702599e6e69af10a1
86128ed5491fa5950e58059f0fd0d89c576cd92657406878d9bc79057de8ff3d
GET /_nuxt/chunk/9e8841f.modern.js HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Fri, 17 Mar 2023 11:09:24 GMT
etag: W/"6258-186ef4296a0"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
content-encoding: br
content-length: 4523
cache-control: public, max-age=160463
date: Sat, 25 Mar 2023 13:29:57 GMT
X-Firefox-Spdy: h2
www.hostelworld.com/_nuxt/chunk/74da1e7.modern.js
95.100.15.144200 OK 12 kB URL HTTP/2 www.hostelworld.com/_nuxt/chunk/74da1e7.modern.js
IP 95.100.15.144:0
File type Unicode text, UTF-8 text, with very long lines (50704), with no line terminators
Hash 437245dcac12c0b8eea43f2e4e91f784
a6d351b0d810fda43e551e23cc0a5426a195c388
817bcc0434bfd90245775ce1ee49d9e0b7090fc2ba3ac6250d7a1d238d85a064
GET /_nuxt/chunk/74da1e7.modern.js HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Fri, 17 Mar 2023 11:09:24 GMT
etag: W/"c939-186ef4296a0"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
content-encoding: br
content-length: 12431
cache-control: public, max-age=160467
date: Sat, 25 Mar 2023 13:29:57 GMT
X-Firefox-Spdy: h2
www.hostelworld.com/_nuxt/chunk/f107561.modern.js
95.100.15.144200 OK 7.3 kB URL HTTP/2 www.hostelworld.com/_nuxt/chunk/f107561.modern.js
IP 95.100.15.144:0
File type Unicode text, UTF-8 text, with very long lines (19808), with no line terminators
Hash ee217087a5812b6340cbd6da4c5ef09a
6ecbc3182725e78d63d3d7e0a257620b64ef9731
fe2b688a773ad5e3d46a7ecbf4df869e442df05ee0bf6f53821acff04fec1279
GET /_nuxt/chunk/f107561.modern.js HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Fri, 17 Mar 2023 11:09:24 GMT
etag: W/"4f4a-186ef4296a0"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
content-encoding: br
content-length: 7343
cache-control: public, max-age=160523
date: Sat, 25 Mar 2023 13:29:57 GMT
X-Firefox-Spdy: h2
www.hostelworld.com/_nuxt/fonts/icons-core.313fa20.woff2
95.100.15.144200 OK 4.4 kB URL HTTP/2 www.hostelworld.com/_nuxt/fonts/icons-core.313fa20.woff2
IP 95.100.15.144:0
File type Web Open Font Format (Version 2), TrueType, length 4420, version 1.0\012- data
Hash 313fa20991290f129a08e28068167857
24e90215381bcb32a74c1383d0b24b6d50b08c1c
8fb5e58b3ff0a315898671ba0c76513659e4ae1a5098a1f2603a9d9b7ae60c5c
GET /_nuxt/fonts/icons-core.313fa20.woff2 HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Fri, 17 Mar 2023 11:09:24 GMT
etag: W/"1144-186ef4296a0"
content-type: font/woff2
x-cloud-trace-context: 32fae15d442c3e7961e57f344d4b8352
content-length: 4420
cache-control: public, max-age=2147666
date: Sat, 25 Mar 2023 13:29:57 GMT
X-Firefox-Spdy: h2
www.hostelworld.com/_nuxt/fonts/icons-core.39fb609.woff
95.100.15.144200 OK 5.4 kB URL HTTP/2 www.hostelworld.com/_nuxt/fonts/icons-core.39fb609.woff
IP 95.100.15.144:0
File type Web Open Font Format, TrueType, length 5384, version 1.0\012- data
Hash 39fb609ec11e58db3db8529326e9c2b6
cf2f0f6c6a590cc23f307e7da6c36407f768402e
a2f43cf8e6e91c22f85b2953d4b6eff5b448180402e04901fb197ec013114c8c
GET /_nuxt/fonts/icons-core.39fb609.woff HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Fri, 17 Mar 2023 11:09:24 GMT
etag: W/"1508-186ef4296a0"
content-type: font/woff
x-cloud-trace-context: 368c7f97048a28a6834095fb2d68a280
content-length: 5384
cache-control: public, max-age=2147690
date: Sat, 25 Mar 2023 13:29:57 GMT
X-Firefox-Spdy: h2
www.hostelworld.com/_nuxt/chunk/716b523.modern.js
95.100.15.144200 OK 9.4 kB URL HTTP/2 www.hostelworld.com/_nuxt/chunk/716b523.modern.js
IP 95.100.15.144:0
File type ASCII text, with very long lines (27941)
Hash 73d23f42194964a9074d16c4ad522a1c
73264d417a112e28188a07697372396cca9df031
da5c0f157d6f105dfa4b53fca4beca407a70739b0a4158bf22a2b5b4ddd3715c
GET /_nuxt/chunk/716b523.modern.js HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Fri, 17 Mar 2023 11:09:24 GMT
etag: W/"6d5b-186ef4296a0"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
content-encoding: br
content-length: 9367
cache-control: public, max-age=160457
date: Sat, 25 Mar 2023 13:29:57 GMT
X-Firefox-Spdy: h2
www.hostelworld.com/_nuxt/chunk/cefa81f.modern.js
95.100.15.144200 OK 323 kB URL HTTP/2 www.hostelworld.com/_nuxt/chunk/cefa81f.modern.js
IP 95.100.15.144:0
File type ASCII text, with very long lines (65482)
Size 323 kB (322594 bytes)
Hash 92ce0f1097ae16dd65747ee141d7ec18
a48d97e16d654e2db8858015fa2027eeed73fba5
074f03442bceb346bcfef1c49154403c6b02f429e0f876d6004b95d22e1032cc
GET /_nuxt/chunk/cefa81f.modern.js HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Fri, 17 Mar 2023 11:09:24 GMT
etag: W/"197072-186ef4296a0"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
content-encoding: br
cache-control: public, max-age=160511
date: Sat, 25 Mar 2023 13:29:57 GMT
content-length: 322594
X-Firefox-Spdy: h2
www.hostelworld.com/_nuxt/img/hw-logo.789e4da.svg
95.100.15.144200 OK 1.9 kB URL HTTP/2 www.hostelworld.com/_nuxt/img/hw-logo.789e4da.svg
IP 95.100.15.144:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- exported SGML document, ASCII text
Hash ef6497de6d31deafe5b1b6751fd18423
55660d83e9a50a601f1b374e3ef47f9607c8b650
0394d9941c2611b866507cc8f81044d86905dcc16c98f224a53ec08c6ac3e321
GET /_nuxt/img/hw-logo.789e4da.svg HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Fri, 17 Mar 2023 11:09:24 GMT
etag: W/"138c-186ef4296a0"
content-type: image/svg+xml
vary: Accept-Encoding
content-encoding: br
content-length: 1877
cache-control: public, max-age=2147720
date: Sat, 25 Mar 2023 13:29:57 GMT
X-Firefox-Spdy: h2
www.hostelworld.com/_nuxt/img/hw-logo-orange.3c4a002.svg
95.100.15.144200 OK 2.6 kB URL HTTP/2 www.hostelworld.com/_nuxt/img/hw-logo-orange.3c4a002.svg
IP 95.100.15.144:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (5672)
Hash 46d64083718ab543655ab44d2ed6f9c1
11a4169d8074d8752702ae38ce710126ec837f6f
3633c36322f93878605650e0695fda133ee236e7f6f74da04bbc5574ba08547b
GET /_nuxt/img/hw-logo-orange.3c4a002.svg HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Fri, 17 Mar 2023 11:09:24 GMT
etag: W/"1b98-186ef4296a0"
content-type: image/svg+xml
vary: Accept-Encoding
content-encoding: br
content-length: 2554
cache-control: public, max-age=2147681
date: Sat, 25 Mar 2023 13:29:57 GMT
X-Firefox-Spdy: h2
www.hostelworld.com/_nuxt/chunk/6af588d.modern.js
95.100.15.144200 OK 8.5 kB URL HTTP/2 www.hostelworld.com/_nuxt/chunk/6af588d.modern.js
IP 95.100.15.144:0
File type Unicode text, UTF-8 text, with very long lines (30652), with no line terminators
Hash 93d26aa523322738f5498466523acf7d
ab494e212dc8d9c9635c08d99ba9e49470abd8fa
bd6c26eb22f1ec03f06ba880ef4f377865bf06a9953a6b57c5a64a7121cf7fef
GET /_nuxt/chunk/6af588d.modern.js HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Fri, 17 Mar 2023 11:09:24 GMT
etag: W/"7a20-186ef4296a0"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
content-encoding: br
content-length: 8471
cache-control: public, max-age=160476
date: Sat, 25 Mar 2023 13:29:57 GMT
X-Firefox-Spdy: h2
www.hostelworld.com/_nuxt/img/mail.583ae55.svg
95.100.15.144200 OK 519 B URL HTTP/2 www.hostelworld.com/_nuxt/img/mail.583ae55.svg
IP 95.100.15.144:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (404), with CRLF line terminators
Hash 38c9e643cc3e09d6489d5954b31348ed
5169ba53ab3be22acec803e9d463ee46800efddf
7418b44895443a89e48ff26a37a40b4d87de414f65f714a5b989b74618e152f1
GET /_nuxt/img/mail.583ae55.svg HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Fri, 17 Mar 2023 11:09:24 GMT
etag: W/"4e4-186ef4296a0"
content-type: image/svg+xml
vary: Accept-Encoding
content-encoding: br
content-length: 519
cache-control: public, max-age=2147708
date: Sat, 25 Mar 2023 13:29:57 GMT
X-Firefox-Spdy: h2
www.hostelworld.com/_nuxt/chunk/7f3b629.modern.js
95.100.15.144200 OK 6.4 kB URL HTTP/2 www.hostelworld.com/_nuxt/chunk/7f3b629.modern.js
IP 95.100.15.144:0
File type Unicode text, UTF-8 text, with very long lines (44907), with no line terminators
Hash 3c12598113e80d8bdfadcbba3f2e97c3
630b3eba604fc452b3330713ccf2346637455f73
63b580b8a3b2f65f7252dc6c6ee0345fe328ee147db3242845977608ee491f9c
GET /_nuxt/chunk/7f3b629.modern.js HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Fri, 17 Mar 2023 11:09:24 GMT
etag: W/"b0d6-186ef4296a0"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
content-encoding: br
content-length: 6438
cache-control: public, max-age=160520
date: Sat, 25 Mar 2023 13:29:57 GMT
X-Firefox-Spdy: h2
www.hostelworld.com/_nuxt/img/confirmationqrcode.7959260.svg
95.100.15.144200 OK 12 kB URL HTTP/2 www.hostelworld.com/_nuxt/img/confirmationqrcode.7959260.svg
IP 95.100.15.144:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (22497)
Hash 8a14a4a0cc78a05e4a40de327b4095f1
1ea3d237a858e9341b10eba44d44af8070071803
a7b999dbeaa0c99dc377f080115388b2e10e7a926af125324f1b9576dc79a0c3
GET /_nuxt/img/confirmationqrcode.7959260.svg HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Fri, 17 Mar 2023 11:09:24 GMT
etag: W/"8920-186ef4296a0"
content-type: image/svg+xml
vary: Accept-Encoding
content-encoding: br
content-length: 11761
cache-control: public, max-age=2147733
date: Sat, 25 Mar 2023 13:29:57 GMT
X-Firefox-Spdy: h2
www.hostelworld.com/_nuxt/img/waves.1a4699a.png
95.100.15.144200 OK 12 kB URL HTTP/2 www.hostelworld.com/_nuxt/img/waves.1a4699a.png
IP 95.100.15.144:0
File type PNG image data, 1573 x 557, 8-bit colormap, non-interlaced\012- data
Hash 1a4699a754874c85cf7e4ebb52759215
75dff66a98e1f7b954a690723750bb64a5914bd4
ce3fd7ebd9b00a526b4df5186b70ac59b2aa220e94ab0844ce221f75bfd12e12
GET /_nuxt/img/waves.1a4699a.png HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Fri, 17 Mar 2023 11:09:24 GMT
etag: W/"2fc0-186ef4296a0"
content-type: image/png
x-cloud-trace-context: 975d5c86c31ffd2acaba6b1cdf864ba9
content-length: 12224
cache-control: public, max-age=2147727
date: Sat, 25 Mar 2023 13:29:57 GMT
X-Firefox-Spdy: h2
www.hostelworld.com/_nuxt/chunk/927681c.modern.js
95.100.15.144200 OK 38 kB URL HTTP/2 www.hostelworld.com/_nuxt/chunk/927681c.modern.js
IP 95.100.15.144:0
File type Unicode text, UTF-8 text, with very long lines (63266), with no line terminators
Hash 26b98d962b83ba4528d166123630a088
e48c7f49596cfbc6468ce7e759adb4366d0b8e1d
0dc145d5fc56d606259740a6f06438281d63a8c8fb4a080d085ad8640174c191
GET /_nuxt/chunk/927681c.modern.js HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Fri, 17 Mar 2023 11:09:24 GMT
etag: W/"232d1-186ef4296a0"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
content-encoding: br
cache-control: public, max-age=160531
date: Sat, 25 Mar 2023 13:29:57 GMT
content-length: 37791
X-Firefox-Spdy: h2
www.hostelworld.com/_nuxt/img/shapes-left.6671158.svg
95.100.15.144200 OK 736 B URL HTTP/2 www.hostelworld.com/_nuxt/img/shapes-left.6671158.svg
IP 95.100.15.144:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (308)
Hash e5ee79cb95a9c1159bd1b06ad34785e6
fd1be2e9fb3e4e84b8de0820c42c4d8316a87328
8b6e492d571bf204a6ed6883883c890057d03bde7063305a2a386ebb88661abc
GET /_nuxt/img/shapes-left.6671158.svg HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Fri, 17 Mar 2023 11:09:24 GMT
etag: W/"683-186ef4296a0"
content-type: image/svg+xml
vary: Accept-Encoding
content-encoding: br
content-length: 736
cache-control: public, max-age=2147747
date: Sat, 25 Mar 2023 13:29:57 GMT
X-Firefox-Spdy: h2
www.hostelworld.com/_nuxt/img/shapes-right.5386007.svg
95.100.15.144200 OK 958 B URL HTTP/2 www.hostelworld.com/_nuxt/img/shapes-right.5386007.svg
IP 95.100.15.144:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (307)
Hash 84473b2b94ed67c4c71c0e5fff1aea79
cb6d4cd7f8298715d3fbc9830b6a97dd2e2e8f58
abc45b909e0b9b2d836ca35e4bbf61dcbf1c5968201757b01bb3bd7f853a3fd5
GET /_nuxt/img/shapes-right.5386007.svg HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Fri, 17 Mar 2023 11:09:24 GMT
etag: W/"8d7-186ef4296a0"
content-type: image/svg+xml
vary: Accept-Encoding
content-encoding: br
content-length: 958
cache-control: public, max-age=2147667
date: Sat, 25 Mar 2023 13:29:57 GMT
X-Firefox-Spdy: h2
www.hostelworld.com/_nuxt/img/hoscars-shapes.867652c.svg
95.100.15.144200 OK 2.1 kB URL HTTP/2 www.hostelworld.com/_nuxt/img/hoscars-shapes.867652c.svg
IP 95.100.15.144:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (855)
Hash 1864dfa92f8d66d71a6ec890571fab70
7f5c50131440a3b1932f41187d5b0f73b9db5caf
2bc564bdb0dc5b7d7c08c2561a669f33849136185d6c88265e2f71eec00de771
GET /_nuxt/img/hoscars-shapes.867652c.svg HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Fri, 17 Mar 2023 11:09:24 GMT
etag: W/"15af-186ef4296a0"
content-type: image/svg+xml
vary: Accept-Encoding
content-encoding: br
content-length: 2089
cache-control: public, max-age=2147697
date: Sat, 25 Mar 2023 13:29:57 GMT
X-Firefox-Spdy: h2
www.hostelworld.com/_nuxt/chunk/e3ae651.modern.js
95.100.15.144200 OK 5.7 kB URL HTTP/2 www.hostelworld.com/_nuxt/chunk/e3ae651.modern.js
IP 95.100.15.144:0
File type Unicode text, UTF-8 text, with very long lines (23571), with no line terminators
Hash 0f355abcd48af4fc1342deee08690e96
33aff06023076a04b9cbb0680c3a687009e6fcf6
5bf7a6217ee64e6d6f97abcd6d0b0ae2d1d547640716ec856f6023809d5999b2
GET /_nuxt/chunk/e3ae651.modern.js HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Fri, 17 Mar 2023 11:09:24 GMT
etag: W/"5e49-186ef4296a0"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
content-encoding: br
content-length: 5704
cache-control: public, max-age=160514
date: Sat, 25 Mar 2023 13:29:57 GMT
X-Firefox-Spdy: h2
www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
95.100.15.144200 OK 82 kB URL HTTP/2 www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
IP 95.100.15.144:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (58095)
Hash 52643e64bba3304bedb8acd0be827b97
77018d2653945ad579b3db2181354439560a59e4
1481d2a3a0217a1c8cece30661f002abcbb4bc6dfe873de04f48e1129da268d9
GET /?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
vary: User-Agent, Accept-Encoding
etag: "964ec-qI6qky8xMpAE7x8GbCuz9bmJ6yE"
link: </_nuxt/app/cfc9385.modern.js>; rel=preload; as=script, </_nuxt/chunk/7d2065c.modern.js>; rel=preload; as=script, </_nuxt/chunk/cefa81f.modern.js>; rel=preload; as=script, </_nuxt/chunk/7dbee7c.modern.js>; rel=preload; as=script, </_nuxt/chunk/9e8841f.modern.js>; rel=preload; as=script, </_nuxt/chunk/6f0a7cf.modern.js>; rel=preload; as=script, </_nuxt/chunk/74da1e7.modern.js>; rel=preload; as=script, </_nuxt/chunk/f107561.modern.js>; rel=preload; as=script, </_nuxt/fonts/icons-core.313fa20.woff2>; rel=preload; as=font, </_nuxt/fonts/icons-core.39fb609.woff>; rel=preload; as=font, </_nuxt/chunk/2fe223e.modern.js>; rel=preload; as=script, </_nuxt/chunk/716b523.modern.js>; rel=preload; as=script, </_nuxt/chunk/927681c.modern.js>; rel=preload; as=script, </_nuxt/chunk/6af588d.modern.js>; rel=preload; as=script, </_nuxt/img/hw-logo.789e4da.svg>; rel=preload; as=image, </_nuxt/img/hw-logo-orange.3c4a002.svg>; rel=preload; as=image, </_nuxt/img/mail.583ae55.svg>; rel=preload; as=image, </_nuxt/chunk/7f3b629.modern.js>; rel=preload; as=script, </_nuxt/chunk/3f425d3.modern.js>; rel=preload; as=script, </_nuxt/img/confirmationqrcode.7959260.svg>; rel=preload; as=image, </_nuxt/img/waves.1a4699a.png>; rel=preload; as=image, </_nuxt/img/something_wrong.904cd84.svg>; rel=preload; as=image, </_nuxt/img/shapes-left.6671158.svg>; rel=preload; as=image, </_nuxt/img/shapes-right.5386007.svg>; rel=preload; as=image, </_nuxt/img/hoscars-shapes.867652c.svg>; rel=preload; as=image, </_nuxt/chunk/e3ae651.modern.js>; rel=preload; as=script, </_nuxt/chunk/9ee671e.modern.js>; rel=preload; as=script, </_nuxt/chunk/4fd57f6.modern.js>; rel=preload; as=script, </_nuxt/chunk/63a99cd.modern.js>; rel=preload; as=script, </_nuxt/chunk/0d21e57.modern.js>; rel=preload; as=script, </_nuxt/chunk/f96a588.modern.js>; rel=preload; as=script, </_nuxt/chunk/bea131d.modern.js>; rel=preload; as=script, </_nuxt/img/get-the-app-qr.5ac4c25.svg>; rel=preload; as=image, </_nuxt/img/get-the-app-qr-purple.5ac4c25.svg>; rel=preload; as=image
content-type: text/html; charset=utf-8
accept-ranges: none
content-encoding: br
date: Sat, 25 Mar 2023 13:29:56 GMT
set-cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; domain=.hostelworld.com; path=/; max-age=63072000
geoCurrency=NOK; Domain=.hostelworld.com; path=/; secure; SameSite=Strict
currency=NOK; Domain=.hostelworld.com; path=/; secure; SameSite=Strict
country=Norway; Domain=.hostelworld.com; path=/; secure; SameSite=Strict
X-Firefox-Spdy: h2
www.hostelworld.com/_nuxt/chunk/9ee671e.modern.js
95.100.15.144200 OK 7.3 kB URL HTTP/2 www.hostelworld.com/_nuxt/chunk/9ee671e.modern.js
IP 95.100.15.144:0
File type Unicode text, UTF-8 text, with very long lines (29619), with no line terminators
Hash 16674cb5f28f0e84fd9bd07d2445141b
047069a6fd15d2baa78d0091cb676d0556846738
161abd9b5856fc74f47ef8f20dd0597138f0ca86988ee99021f51e905a8ad019
GET /_nuxt/chunk/9ee671e.modern.js HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Fri, 17 Mar 2023 11:09:24 GMT
etag: W/"75ac-186ef4296a0"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
content-encoding: br
content-length: 7291
cache-control: public, max-age=160531
date: Sat, 25 Mar 2023 13:29:57 GMT
X-Firefox-Spdy: h2
www.hostelworld.com/_nuxt/chunk/4fd57f6.modern.js
95.100.15.144200 OK 5.2 kB URL HTTP/2 www.hostelworld.com/_nuxt/chunk/4fd57f6.modern.js
IP 95.100.15.144:0
File type Unicode text, UTF-8 text, with very long lines (25648), with no line terminators
Hash 16ce391c899b4bbf2476d0c0077c4e63
a52551a0477b85da938914491dc5d48cd269f661
e5794070695c49953e01ee805bd81ae8e49dbc6d114ab2ad7977e167249717a0
GET /_nuxt/chunk/4fd57f6.modern.js HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Fri, 17 Mar 2023 11:09:24 GMT
etag: W/"6652-186ef4296a0"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
content-encoding: br
content-length: 5152
cache-control: public, max-age=160478
date: Sat, 25 Mar 2023 13:29:57 GMT
X-Firefox-Spdy: h2
www.hostelworld.com/_nuxt/chunk/6f0a7cf.modern.js
95.100.15.144200 OK 103 kB URL HTTP/2 www.hostelworld.com/_nuxt/chunk/6f0a7cf.modern.js
IP 95.100.15.144:0
File type Unicode text, UTF-8 text, with very long lines (65476)
Size 103 kB (103150 bytes)
Hash e4a35d0309dc935abb537c380e928cea
da415dd4dd0b2fe136f6ab95ee2348add5d2db4b
9dc584ceb714609238be2f9b4c387a4ebe8af75888d2c631db53645ac0c6543c
GET /_nuxt/chunk/6f0a7cf.modern.js HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Fri, 17 Mar 2023 11:09:24 GMT
etag: W/"5e3e7-186ef4296a0"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
content-encoding: br
cache-control: public, max-age=160527
date: Sat, 25 Mar 2023 13:29:57 GMT
content-length: 103150
X-Firefox-Spdy: h2
www.hostelworld.com/_nuxt/chunk/2fe223e.modern.js
95.100.15.144200 OK 86 kB URL HTTP/2 www.hostelworld.com/_nuxt/chunk/2fe223e.modern.js
IP 95.100.15.144:0
File type Unicode text, UTF-8 text, with very long lines (60023), with no line terminators
Hash b23837864bd47c2feddcf8bd515076df
45a600dbe65498ad19aa0e65d19d92cd920d917b
b388d92598612e06b816a7d3776f89a0d97aea8a5d0a9763503b755a4958e86c
GET /_nuxt/chunk/2fe223e.modern.js HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Fri, 17 Mar 2023 11:09:24 GMT
etag: W/"58893-186ef4296a0"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
content-encoding: br
cache-control: public, max-age=160465
date: Sat, 25 Mar 2023 13:29:57 GMT
content-length: 86441
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4355291ec58b85ddde02c2446ecb2bb4
4ad43e10f82193f83e862e8a78f3e46de9490ac4
e32fd5635627751770ee13e8f77b14b2555163cfc2d7db98aa8edb5b4bae4d9a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 13:29:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.hostelworld.com/_nuxt/chunk/0d21e57.modern.js
95.100.15.144200 OK 6.6 kB URL HTTP/2 www.hostelworld.com/_nuxt/chunk/0d21e57.modern.js
IP 95.100.15.144:0
File type Unicode text, UTF-8 text, with very long lines (37596), with no line terminators
Hash 8cfd52eda1857158a402e4f7dbc73e65
ff3534b08ed2557586ce712d013be8ff29707994
4724043e87ca2b01e80ca3476f87de0a0501fb84c743582fe49c19ab4309739f
GET /_nuxt/chunk/0d21e57.modern.js HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Fri, 17 Mar 2023 11:09:24 GMT
etag: W/"94c3-186ef4296a0"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
content-encoding: br
content-length: 6561
cache-control: public, max-age=160503
date: Sat, 25 Mar 2023 13:29:57 GMT
X-Firefox-Spdy: h2
www.hostelworld.com/_nuxt/chunk/63a99cd.modern.js
95.100.15.144200 OK 2.5 kB URL HTTP/2 www.hostelworld.com/_nuxt/chunk/63a99cd.modern.js
IP 95.100.15.144:0
File type ASCII text, with very long lines (11644), with no line terminators
Hash caa24812892568cf5f519288dfeebe15
b34e2b7dd1ab9405afc8f7a15a5f488a6f958261
2ad6c64b317b3bb26593304123ea3745180741be863cccac0e343845e708c826
GET /_nuxt/chunk/63a99cd.modern.js HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Fri, 17 Mar 2023 11:09:24 GMT
etag: W/"2d7c-186ef4296a0"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
content-encoding: br
content-length: 2497
cache-control: public, max-age=160520
date: Sat, 25 Mar 2023 13:29:57 GMT
X-Firefox-Spdy: h2
www.hostelworld.com/_nuxt/chunk/3f425d3.modern.js
95.100.15.144200 OK 138 kB URL HTTP/2 www.hostelworld.com/_nuxt/chunk/3f425d3.modern.js
IP 95.100.15.144:0
File type Unicode text, UTF-8 text, with very long lines (60953)
Size 138 kB (138517 bytes)
Hash da86a2814f51f4e74adf5a5dfddea9ae
749d4ffa2918b5119ad50b592c12a67a729fc60a
99058492ff7464f2641d20233776696ee6fb0832a2d57312de74de0163e0fbe2
GET /_nuxt/chunk/3f425d3.modern.js HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Fri, 17 Mar 2023 11:09:24 GMT
etag: W/"838dd-186ef4296a0"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
content-encoding: br
content-length: 138517
cache-control: public, max-age=160492
date: Sat, 25 Mar 2023 13:29:57 GMT
X-Firefox-Spdy: h2
browser.sentry-cdn.com/7.41.0/bundle.tracing.min.js
151.101.66.217200 OK 26 kB URL HTTP/2 browser.sentry-cdn.com/7.41.0/bundle.tracing.min.js
IP 151.101.66.217:0
File type ASCII text, with very long lines (65429)
Hash e61f65618428a403b2152960511901ff
d0aeb47f5b71485797d023f49f74297d75ecc261
6ba312502c34208b7d6c82e458617420812d19e6b652da33b81d0a55b2f5da50
GET /7.41.0/bundle.tracing.min.js HTTP/1.1
Host: browser.sentry-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hostelworld.com
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Tue, 05 Mar 2024 14:40:10 GMT
last-modified: Mon, 06 Mar 2023 12:36:39 GMT
etag: "e61f65618428a403b2152960511901ff"
content-type: application/javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
date: Sat, 25 Mar 2023 13:29:57 GMT
age: 1637386
vary: Accept-Encoding
access-control-allow-origin: *
server: Fastly
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 26215
X-Firefox-Spdy: h2
www.hostelworld.com/_nuxt/chunk/f96a588.modern.js
95.100.15.144200 OK 2.9 kB URL HTTP/2 www.hostelworld.com/_nuxt/chunk/f96a588.modern.js
IP 95.100.15.144:0
File type Unicode text, UTF-8 text, with very long lines (10861), with no line terminators
Hash d9ac59e8c13efe2b44744c017a4c023c
6ec4e266746f19c8d065d70b188cd7f18def168f
c9f695eee37bf00067ffd039dbc2b026bd902c585fd9c77f20951aec4f0f2ed8
GET /_nuxt/chunk/f96a588.modern.js HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Fri, 17 Mar 2023 11:09:24 GMT
etag: W/"2b24-186ef4296a0"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
content-encoding: br
content-length: 2864
cache-control: public, max-age=160523
date: Sat, 25 Mar 2023 13:29:57 GMT
X-Firefox-Spdy: h2
a.hwstatic.com/image/upload/q_75,h_166/v1644506092/pwa/whosgoing/user-victoria.jpg
151.101.194.104200 OK 6.7 kB URL HTTP/2 a.hwstatic.com/image/upload/q_75,h_166/v1644506092/pwa/whosgoing/user-victoria.jpg
IP 151.101.194.104:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 144x144, segment length 16, baseline, precision 8, 166x166, components 3\012- data
Hash 72c6005e23df085ade46d8af4623c954
2bdeb716e6b0c788298ab62845c81691d015c48b
558523837546b75532eb2d339377909939d4247cb41be7bc34363c86b3435742
GET /image/upload/q_75,h_166/v1644506092/pwa/whosgoing/user-victoria.jpg HTTP/1.1
Host: a.hwstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "72c6005e23df085ade46d8af4623c954"
last-modified: Mon, 28 Feb 2022 19:57:23 GMT
date: Sat, 25 Mar 2023 13:29:57 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=31557600
server-timing: cld-fastly;dur=1;start=2023-03-25T13:29:57.321Z;desc=hit,rtt;dur=55
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 6727
X-Firefox-Spdy: h2
www.hostelworld.com/_nuxt/chunk/bea131d.modern.js
95.100.15.144200 OK 2.2 kB URL HTTP/2 www.hostelworld.com/_nuxt/chunk/bea131d.modern.js
IP 95.100.15.144:0
File type ASCII text, with very long lines (7884), with no line terminators
Hash afe50c256e37b450f6f74cc1e1ee0773
b11353d67a26b22f140c515dd1af10531c0d400a
1a5d7751af5ee9231921d4118bbad2b171f639b185b110d404fdae8363911595
GET /_nuxt/chunk/bea131d.modern.js HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Fri, 17 Mar 2023 11:09:24 GMT
etag: W/"1ecc-186ef4296a0"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
content-encoding: br
content-length: 2174
cache-control: public, max-age=160531
date: Sat, 25 Mar 2023 13:29:57 GMT
X-Firefox-Spdy: h2
www.hostelworld.com/_nuxt/img/get-the-app-qr.5ac4c25.svg
95.100.15.144200 OK 1.5 kB URL HTTP/2 www.hostelworld.com/_nuxt/img/get-the-app-qr.5ac4c25.svg
IP 95.100.15.144:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (7723)
Hash 22d60ed0891c3248e576fdb7f51a16b2
0c09a57472abaa666d8f0fc1bb79fa701cc28f8c
b35cef870490b6778748fb6bf53216691370fdfb9e6b09a5a4cd5b01f0ceffdc
GET /_nuxt/img/get-the-app-qr.5ac4c25.svg HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Fri, 17 Mar 2023 11:09:24 GMT
etag: W/"1ec0-186ef4296a0"
content-type: image/svg+xml
vary: Accept-Encoding
content-encoding: br
content-length: 1542
cache-control: public, max-age=2147760
date: Sat, 25 Mar 2023 13:29:57 GMT
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=AW-792870594
142.250.74.168200 OK 52 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=AW-792870594
IP 142.250.74.168:0
File type ASCII text, with very long lines (2206)
Hash d6a7a4a942a4594cebbd0141035bf656
ce65907b98310bf3607083a17f6f592994d39197
39ff95aad538d42117676cb6fd73958d88290ec9ecf2ccf2e2447791ab8c7534
GET /gtag/js?id=AW-792870594 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 25 Mar 2023 13:29:57 GMT
expires: Sat, 25 Mar 2023 13:29:57 GMT
cache-control: private, max-age=900
last-modified: Sat, 25 Mar 2023 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 51587
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
a.hwstatic.com/image/upload/q_75,h_166/v1644506092/pwa/whosgoing/user-pan.jpg
151.101.194.104200 OK 8.3 kB URL HTTP/2 a.hwstatic.com/image/upload/q_75,h_166/v1644506092/pwa/whosgoing/user-pan.jpg
IP 151.101.194.104:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 144x144, segment length 16, baseline, precision 8, 166x166, components 3\012- data
Hash fa1e6268301514470f6a6ecf4e1d1e24
5120be3f1586ed5e1be0cb5362b44bee509be452
4c612395c56fd5faabe6c8126f4ddd3a38aaf9598d031446781b3b2740f381cf
GET /image/upload/q_75,h_166/v1644506092/pwa/whosgoing/user-pan.jpg HTTP/1.1
Host: a.hwstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "fa1e6268301514470f6a6ecf4e1d1e24"
last-modified: Mon, 28 Feb 2022 19:57:23 GMT
date: Sat, 25 Mar 2023 13:29:57 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, max-age=300
server-timing: cld-fastly;dur=1;start=2023-03-25T13:29:57.321Z;desc=hit,rtt;dur=55
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 8273
X-Firefox-Spdy: h2
www.hostelworld.com/_nuxt/img/get-the-app-qr-purple.5ac4c25.svg
95.100.15.144200 OK 1.5 kB URL HTTP/2 www.hostelworld.com/_nuxt/img/get-the-app-qr-purple.5ac4c25.svg
IP 95.100.15.144:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (7723)
Hash 22d60ed0891c3248e576fdb7f51a16b2
0c09a57472abaa666d8f0fc1bb79fa701cc28f8c
b35cef870490b6778748fb6bf53216691370fdfb9e6b09a5a4cd5b01f0ceffdc
GET /_nuxt/img/get-the-app-qr-purple.5ac4c25.svg HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Fri, 17 Mar 2023 11:09:24 GMT
etag: W/"1ec0-186ef4296a0"
content-type: image/svg+xml
vary: Accept-Encoding
content-encoding: br
content-length: 1542
cache-control: public, max-age=2147706
date: Sat, 25 Mar 2023 13:29:57 GMT
X-Firefox-Spdy: h2
a.hwstatic.com/image/upload/v1644506092/pwa/whosgoing/france_png.png
151.101.194.104200 OK 3.0 kB URL HTTP/2 a.hwstatic.com/image/upload/v1644506092/pwa/whosgoing/france_png.png
IP 151.101.194.104:0
File type PNG image data, 102 x 102, 8-bit/color RGBA, non-interlaced\012- data
Hash ffb3a3c18a6befc51542e38e7ffdabe9
06f3ba14bc4c015e6abcb55db93764d79d635700
2e3987e1426278f1080d8730dd9db0feb9cde0c09a1d223a65a5cc5b283c203a
GET /image/upload/v1644506092/pwa/whosgoing/france_png.png HTTP/1.1
Host: a.hwstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
etag: "ffb3a3c18a6befc51542e38e7ffdabe9"
last-modified: Wed, 16 Feb 2022 11:08:28 GMT
date: Sat, 25 Mar 2023 13:29:57 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=31557600
server-timing: cld-fastly;dur=2;cpu=1;start=2023-03-25T13:29:57.320Z;desc=hit,rtt;dur=55
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 2983
X-Firefox-Spdy: h2
a.hwstatic.com/image/upload/v1644506092/pwa/whosgoing/south-korea_png.png
151.101.194.104200 OK 4.8 kB URL HTTP/2 a.hwstatic.com/image/upload/v1644506092/pwa/whosgoing/south-korea_png.png
IP 151.101.194.104:0
File type PNG image data, 102 x 102, 8-bit/color RGBA, non-interlaced\012- data
Hash 1750234397cce89c1acfcd90f7f7c9bf
e79179f497a7a3c84f0f033bdd649eba575ee040
8a92beda1c03e585d536e3990c8508e52ae5e8124ae30250fc382d6e72c66995
GET /image/upload/v1644506092/pwa/whosgoing/south-korea_png.png HTTP/1.1
Host: a.hwstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
etag: "1750234397cce89c1acfcd90f7f7c9bf"
last-modified: Wed, 16 Feb 2022 11:08:30 GMT
date: Sat, 25 Mar 2023 13:29:57 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=31557600
server-timing: cld-fastly;dur=1;cpu=0;start=2023-03-25T13:29:57.321Z;desc=hit,rtt;dur=55
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 4812
X-Firefox-Spdy: h2
a.hwstatic.com/image/upload/v1644506092/pwa/whosgoing/china_png.png
151.101.194.104200 OK 3.8 kB URL HTTP/2 a.hwstatic.com/image/upload/v1644506092/pwa/whosgoing/china_png.png
IP 151.101.194.104:0
File type PNG image data, 102 x 102, 8-bit/color RGBA, non-interlaced\012- data
Hash eb297e0b9361dc07bb862062609cf7a7
97b8fbde29c0609a9c74d503bdbfaebe829c3424
0cc410beccec921c3e139913dd07cd9f42fd73c37bad5fc2ba0762ab15829876
GET /image/upload/v1644506092/pwa/whosgoing/china_png.png HTTP/1.1
Host: a.hwstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
etag: "eb297e0b9361dc07bb862062609cf7a7"
last-modified: Wed, 16 Feb 2022 11:08:28 GMT
date: Sat, 25 Mar 2023 13:29:57 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=31557600
server-timing: cld-fastly;dur=2;cpu=0;start=2023-03-25T13:29:57.321Z;desc=hit,rtt;dur=55
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 3765
X-Firefox-Spdy: h2
cdn.segment.com/analytics.js/v1/O8GVk6R7tM0240DGMt8PReIzBiqHxIf3/analytics.min.js
54.230.219.201200 OK 30 kB URL HTTP/2 cdn.segment.com/analytics.js/v1/O8GVk6R7tM0240DGMt8PReIzBiqHxIf3/analytics.min.js
IP 54.230.219.201:0
Hash f9a8e8c4af3f48d5a7764510d41043cc
56e66515b34598c18d58cc2c072f86d30c125722
b1cbd7e30e587047b3d7f26168fd12d938925c4942c3df61f9552847c8ac725b
GET /analytics.js/v1/O8GVk6R7tM0240DGMt8PReIzBiqHxIf3/analytics.min.js HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 26 Jan 2023 02:14:33 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: jcmTsarAtXgsF.Y4JJo1_cG8uhdP9wQf
server: AmazonS3
content-encoding: gzip
date: Sat, 25 Mar 2023 13:28:36 GMT
cache-control: public, max-age=120
etag: W/"8ce13c46beefca3738cc7f492afc8af3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3tfqAlsE_e0R7RJrM7bW2ejzN5fi5EVuK4AW5LHBGoNStcnN-todTg==
age: 102
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash fcc7634f0e673d4bbce96bbc49dd87ce
a612dbbf582f7c3aff71d8c322449fe006be20ac
a7b537a371ef8be7b4508b7d61b0ea2c05b4e6a67ab20e2c30afa8e2a6422e2b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6459
Cache-Control: max-age=169935
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 13:29:57 GMT
Etag: "641ed2ea-1d7"
Expires: Mon, 27 Mar 2023 12:42:12 GMT
Last-Modified: Sat, 25 Mar 2023 10:54:34 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 471
a.hwstatic.com/raw/upload/f_auto,q_auto/wds/illustrations/lg/eco.svg
151.101.194.104200 OK 2.5 kB URL HTTP/2 a.hwstatic.com/raw/upload/f_auto,q_auto/wds/illustrations/lg/eco.svg
IP 151.101.194.104:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1784)
Hash db952cc37047a9d7e5db7311897e8351
60527c4d3964989f6b6b86c59e42f94fc651c3d7
f57c88aca5ab6e6b0f90184ed79d25224d0d4fd9c4d6ab89f5924c8a428995d7
GET /raw/upload/f_auto,q_auto/wds/illustrations/lg/eco.svg HTTP/1.1
Host: a.hwstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: attachment; filename="eco.svg"
content-encoding: br
content-type: image/svg+xml
etag: W/"fec19b2ed466840767505b28a0da1172"
last-modified: Mon, 01 Aug 2022 13:01:21 GMT
date: Sat, 25 Mar 2023 13:29:57 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=31557600
server-timing: cld-fastly;dur=1;cpu=0;start=2023-03-25T13:29:57.322Z;desc=hit,rtt;dur=55
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 2525
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-NV4Z79H
142.250.74.168200 OK 104 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-NV4Z79H
IP 142.250.74.168:0
File type Unicode text, UTF-8 text, with very long lines (41606)
Size 104 kB (103540 bytes)
Hash 3e35156a9b92d23852e0558ba9fdb958
0c1d4c147282a0061a4432b61f6ec3a72d78d30f
c625f705fe442ad56cff3e0159c7595286c1755c55397c0f9de38eaa2f8315e9
GET /gtm.js?id=GTM-NV4Z79H HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 25 Mar 2023 13:29:57 GMT
expires: Sat, 25 Mar 2023 13:29:57 GMT
cache-control: private, max-age=900
last-modified: Sat, 25 Mar 2023 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 103540
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
a.hwstatic.com/raw/upload/f_auto,q_auto/wds/logos/cnc.svg
151.101.194.104200 OK 6.7 kB URL HTTP/2 a.hwstatic.com/raw/upload/f_auto,q_auto/wds/logos/cnc.svg
IP 151.101.194.104:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3736)
Hash be3ad47bd86a7a079f6f36bb0439ddf7
4a6f60e97434d9abcca4f47f955f7083937cbc87
39282ff86b7faf08eb50902998cc4556fcd5996312f1b9e548c04c70fb4cecfc
GET /raw/upload/f_auto,q_auto/wds/logos/cnc.svg HTTP/1.1
Host: a.hwstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: attachment; filename="cnc.svg"
content-encoding: br
content-type: image/svg+xml
etag: W/"ff1ec3bcf8e0c5fc68f3c57cb2a0c195"
last-modified: Tue, 02 Aug 2022 14:31:43 GMT
date: Sat, 25 Mar 2023 13:29:57 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=31557600
server-timing: cld-fastly;dur=2;cpu=0;start=2023-03-25T13:29:57.322Z;desc=hit,rtt;dur=55
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 6721
X-Firefox-Spdy: h2
a.hwstatic.com/image/upload/q_75,h_166/v1644506092/pwa/whosgoing/user-tom.jpg
151.101.194.104200 OK 7.5 kB URL HTTP/2 a.hwstatic.com/image/upload/q_75,h_166/v1644506092/pwa/whosgoing/user-tom.jpg
IP 151.101.194.104:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 144x144, segment length 16, baseline, precision 8, 166x166, components 3\012- data
Hash eb28cf64ea368d4aff1b8d51d0fa906c
9c9a5dfa5ee796ee2cd7cdcf89364b31bba43f82
8e1b40b3985c0585661435aebaba823f6b013408f053588c333f69f2b327399b
GET /image/upload/q_75,h_166/v1644506092/pwa/whosgoing/user-tom.jpg HTTP/1.1
Host: a.hwstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "eb28cf64ea368d4aff1b8d51d0fa906c"
last-modified: Mon, 28 Feb 2022 19:57:23 GMT
date: Sat, 25 Mar 2023 13:29:57 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=31557600
server-timing: cld-fastly;dur=2;cpu=1;start=2023-03-25T13:29:57.322Z;desc=hit,rtt;dur=55
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 7514
X-Firefox-Spdy: h2
a.hwstatic.com/image/upload/v1644506092/pwa/whosgoing/spain_png.png
151.101.194.104200 OK 6.1 kB URL HTTP/2 a.hwstatic.com/image/upload/v1644506092/pwa/whosgoing/spain_png.png
IP 151.101.194.104:0
File type PNG image data, 102 x 102, 8-bit/color RGBA, non-interlaced\012- data
Hash 4352e8f192391d11983f0f6de59cc3e7
d3010860604f179ae55b9fb5260e430baf49fd70
84dd4cec031283ec664e5265859cabeadad794eae5bb2d228f3880b16d5c86ae
GET /image/upload/v1644506092/pwa/whosgoing/spain_png.png HTTP/1.1
Host: a.hwstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
etag: "4352e8f192391d11983f0f6de59cc3e7"
last-modified: Wed, 16 Feb 2022 11:08:30 GMT
date: Sat, 25 Mar 2023 13:29:57 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=31557600
server-timing: cld-fastly;dur=6;cpu=1;start=2023-03-25T13:29:57.321Z;desc=hit,rtt;dur=55
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 6124
X-Firefox-Spdy: h2
a.hwstatic.com/image/upload/v1644506092/pwa/whosgoing/brazil_png.png
151.101.194.104200 OK 5.3 kB URL HTTP/2 a.hwstatic.com/image/upload/v1644506092/pwa/whosgoing/brazil_png.png
IP 151.101.194.104:0
File type PNG image data, 102 x 102, 8-bit/color RGBA, non-interlaced\012- data
Hash bba5a4742d311565bc8fdb503e80d0ee
22397c44c2ac33530e35ff0b6b9a448f245041a7
ae15f9f7654332678b3c54b132f80c20b2e1141c06d5226564ed89f5926a1d0b
GET /image/upload/v1644506092/pwa/whosgoing/brazil_png.png HTTP/1.1
Host: a.hwstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
etag: "bba5a4742d311565bc8fdb503e80d0ee"
last-modified: Wed, 16 Feb 2022 11:08:28 GMT
date: Sat, 25 Mar 2023 13:29:57 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=31557600
server-timing: cld-fastly;dur=1;start=2023-03-25T13:29:57.330Z;desc=hit,rtt;dur=55
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 5303
X-Firefox-Spdy: h2
a.hwstatic.com/image/upload/v1644506092/pwa/whosgoing/poland_png.png
151.101.194.104200 OK 2.8 kB URL HTTP/2 a.hwstatic.com/image/upload/v1644506092/pwa/whosgoing/poland_png.png
IP 151.101.194.104:0
File type PNG image data, 102 x 102, 8-bit/color RGBA, non-interlaced\012- data
Hash e25c976545d2b46525a097750b9a1817
521fff5c6be71efd05356f6610b40d13fa0cd819
2730f6141ca264f250e47830a84d689daf5820e5d14931e39ca91ce4b1980169
GET /image/upload/v1644506092/pwa/whosgoing/poland_png.png HTTP/1.1
Host: a.hwstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
etag: "e25c976545d2b46525a097750b9a1817"
last-modified: Wed, 16 Feb 2022 11:08:28 GMT
date: Sat, 25 Mar 2023 13:29:57 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=31557600
server-timing: cld-fastly;dur=1;start=2023-03-25T13:29:57.331Z;desc=hit,rtt;dur=55
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 2800
X-Firefox-Spdy: h2
a.hwstatic.com/image/upload/q_75,h_166/v1644506092/pwa/whosgoing/user-jenny.jpg
151.101.194.104200 OK 5.4 kB URL HTTP/2 a.hwstatic.com/image/upload/q_75,h_166/v1644506092/pwa/whosgoing/user-jenny.jpg
IP 151.101.194.104:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 144x144, segment length 16, baseline, precision 8, 166x166, components 3\012- data
Hash 2cbfb1b11db0b7eac8103e9c1c989535
e14f735e72d630d8b38d2ed66aa92a3935a2e6ff
1c6c2dd901351d2f7e3b09d65af8e25cff67167fd25d11a8528b2fb4846d6b6c
GET /image/upload/q_75,h_166/v1644506092/pwa/whosgoing/user-jenny.jpg HTTP/1.1
Host: a.hwstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "2cbfb1b11db0b7eac8103e9c1c989535"
last-modified: Mon, 28 Feb 2022 19:57:23 GMT
date: Sat, 25 Mar 2023 13:29:57 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, max-age=300
server-timing: cld-fastly;dur=1;start=2023-03-25T13:29:57.331Z;desc=hit,rtt;dur=55
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 5386
X-Firefox-Spdy: h2
a.hwstatic.com/image/upload/q_75,h_166/v1644506092/pwa/whosgoing/miser-mike.jpg
151.101.194.104200 OK 6.2 kB URL HTTP/2 a.hwstatic.com/image/upload/q_75,h_166/v1644506092/pwa/whosgoing/miser-mike.jpg
IP 151.101.194.104:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 144x144, segment length 16, baseline, precision 8, 166x166, components 3\012- data
Hash 666df9c4b7c20fd8e409c74d563ee3e1
108757ae2206d4b9d0b67a39b982bcdca82a67d0
f6f4f91083f7c311e3e33b8dfb557ed5f0ea94453dde4a226951a109c14efb07
GET /image/upload/q_75,h_166/v1644506092/pwa/whosgoing/miser-mike.jpg HTTP/1.1
Host: a.hwstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "666df9c4b7c20fd8e409c74d563ee3e1"
last-modified: Mon, 28 Feb 2022 19:57:23 GMT
date: Sat, 25 Mar 2023 13:29:57 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, max-age=300
server-timing: cld-fastly;dur=1;start=2023-03-25T13:29:57.331Z;desc=hit,rtt;dur=55
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 6185
X-Firefox-Spdy: h2
a.hwstatic.com/image/upload/v1644506092/pwa/whosgoing/italy_png.png
151.101.194.104200 OK 3.8 kB URL HTTP/2 a.hwstatic.com/image/upload/v1644506092/pwa/whosgoing/italy_png.png
IP 151.101.194.104:0
File type PNG image data, 102 x 102, 8-bit/color RGBA, non-interlaced\012- data
Hash e329c750a958243920620796a8eea5cd
decec82fcedc1b9e46366395abdbade0b11817af
ea18a3cec574499d9be6c87569b462e7d41d32004d185b2001c3a0d086fde1c9
GET /image/upload/v1644506092/pwa/whosgoing/italy_png.png HTTP/1.1
Host: a.hwstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
etag: "e329c750a958243920620796a8eea5cd"
last-modified: Wed, 16 Feb 2022 11:08:29 GMT
date: Sat, 25 Mar 2023 13:29:57 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=31557600
server-timing: cld-fastly;dur=2;cpu=0;start=2023-03-25T13:29:57.331Z;desc=hit,rtt;dur=55
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 3755
X-Firefox-Spdy: h2
a.hwstatic.com/image/upload/v1644506092/pwa/whosgoing/germany_png.png
151.101.194.104200 OK 3.5 kB URL HTTP/2 a.hwstatic.com/image/upload/v1644506092/pwa/whosgoing/germany_png.png
IP 151.101.194.104:0
File type PNG image data, 102 x 102, 8-bit/color RGBA, non-interlaced\012- data
Hash 3ce182462f57510a6c90e5f923c4b25c
f54bad4386ac615fec23b14758af6d29777b2a5c
1a868eec97c9e14bf90f6b37024e0d8462a1ffd3cbd01d27039a45b4b13a3098
GET /image/upload/v1644506092/pwa/whosgoing/germany_png.png HTTP/1.1
Host: a.hwstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
etag: "3ce182462f57510a6c90e5f923c4b25c"
last-modified: Wed, 16 Feb 2022 11:08:28 GMT
date: Sat, 25 Mar 2023 13:29:57 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=31557600
server-timing: cld-fastly;dur=2;cpu=1;start=2023-03-25T13:29:57.331Z;desc=hit,rtt;dur=55
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 3541
X-Firefox-Spdy: h2
a.hwstatic.com/image/upload/v1644506092/pwa/whosgoing/usa_png.png
151.101.194.104200 OK 5.0 kB URL HTTP/2 a.hwstatic.com/image/upload/v1644506092/pwa/whosgoing/usa_png.png
IP 151.101.194.104:0
File type PNG image data, 102 x 102, 8-bit/color RGBA, non-interlaced\012- data
Hash 2ec61c621225e6422ceccc2628ac36d1
946de346b05aaf8d8c2d737b105617a599e7ecfa
de05e5e56b5da4d7e457f03133664c9290041afefff1a547b156ba2d0046d313
GET /image/upload/v1644506092/pwa/whosgoing/usa_png.png HTTP/1.1
Host: a.hwstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
etag: "2ec61c621225e6422ceccc2628ac36d1"
last-modified: Wed, 16 Feb 2022 11:08:30 GMT
date: Sat, 25 Mar 2023 13:29:57 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=31557600
server-timing: cld-fastly;dur=2;cpu=0;start=2023-03-25T13:29:57.331Z;desc=hit,rtt;dur=55
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 5038
X-Firefox-Spdy: h2
a.hwstatic.com/raw/upload/f_auto,q_auto/wds/logos/docusign.svg
151.101.194.104200 OK 10 kB URL HTTP/2 a.hwstatic.com/raw/upload/f_auto,q_auto/wds/logos/docusign.svg
IP 151.101.194.104:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4596)
Hash b7f25f00840530c7d557c3834e6683a8
d82c59574901c515dd4bad51077d004a5cb36c2a
938dae78a810dbb24b3830a34f768a1005c7b383e89e8c37962ca5adc3540062
GET /raw/upload/f_auto,q_auto/wds/logos/docusign.svg HTTP/1.1
Host: a.hwstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: attachment; filename="docusign.svg"
content-encoding: br
content-type: image/svg+xml
etag: W/"b474b1e78d1ac78387991afe95b53e13"
last-modified: Thu, 20 Jan 2022 15:48:57 GMT
date: Sat, 25 Mar 2023 13:29:57 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=31557600
server-timing: cld-fastly;dur=2;cpu=1;start=2023-03-25T13:29:57.331Z;desc=hit,rtt;dur=55
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 9989
X-Firefox-Spdy: h2
a.hwstatic.com/image/upload/q_75,h_166/v1644506092/pwa/whosgoing/user-anna.jpg
151.101.194.104200 OK 7.1 kB URL HTTP/2 a.hwstatic.com/image/upload/q_75,h_166/v1644506092/pwa/whosgoing/user-anna.jpg
IP 151.101.194.104:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 144x144, segment length 16, baseline, precision 8, 166x166, components 3\012- data
Hash b6282537943d8fcc84e28817a1f013f3
d87578a7e56ed855af75496c2ce432a02a01b1a1
faba9023fef04672a4babfbabec3f800a2290c539344ac7e66c9252c5a85fda7
GET /image/upload/q_75,h_166/v1644506092/pwa/whosgoing/user-anna.jpg HTTP/1.1
Host: a.hwstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "b6282537943d8fcc84e28817a1f013f3"
last-modified: Mon, 28 Feb 2022 19:57:23 GMT
date: Sat, 25 Mar 2023 13:29:57 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, max-age=300
server-timing: cld-fastly;dur=1;start=2023-03-25T13:29:57.332Z;desc=hit,rtt;dur=55
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 7055
X-Firefox-Spdy: h2
a.hwstatic.com/image/upload/v1645433308/pwa/chat/dashed-circle.svg
151.101.194.104200 OK 149 B URL HTTP/2 a.hwstatic.com/image/upload/v1645433308/pwa/chat/dashed-circle.svg
IP 151.101.194.104:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 5cb52139bc73b7217ae8195e03cfbf72
3a0ebfd2162b0d8fec578cd80a222f57ce5b58e6
a393a8ef23238eeaedce45eac481ffc094dfe0fa2a5077831001171cd59f0227
GET /image/upload/v1645433308/pwa/chat/dashed-circle.svg HTTP/1.1
Host: a.hwstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: attachment; filename="dashed-circle.svg"
content-encoding: br
content-type: image/svg+xml
etag: W/"10f4dd964780f0268c27a31167c2819f"
last-modified: Mon, 21 Feb 2022 08:48:30 GMT
date: Sat, 25 Mar 2023 13:29:57 GMT
vary: Accept-Encoding
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=31557600
server-timing: cld-fastly;dur=1;start=2023-03-25T13:29:57.333Z;desc=hit,rtt;dur=55
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 149
X-Firefox-Spdy: h2
a.hwstatic.com/image/upload/v1644506092/pwa/whosgoing/ireland_png.png
151.101.194.104200 OK 3.7 kB URL HTTP/2 a.hwstatic.com/image/upload/v1644506092/pwa/whosgoing/ireland_png.png
IP 151.101.194.104:0
File type PNG image data, 102 x 102, 8-bit/color RGBA, non-interlaced\012- data
Hash 5e6e457f553df5af4fc4b988a70d50f3
f80fa6498000963ec4d6cd9fc7fc9857c4b729b1
c89d56c06c91f7b060ec1cd9bd0771a9811cd8a6785cf64308a4360347161785
GET /image/upload/v1644506092/pwa/whosgoing/ireland_png.png HTTP/1.1
Host: a.hwstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
etag: "5e6e457f553df5af4fc4b988a70d50f3"
last-modified: Wed, 16 Feb 2022 11:08:28 GMT
date: Sat, 25 Mar 2023 13:29:57 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=31557600
server-timing: cld-fastly;dur=13;cpu=1;start=2023-03-25T13:29:57.331Z;desc=hit,rtt;dur=55
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 3681
X-Firefox-Spdy: h2
a.hwstatic.com/image/upload/q_75,h_166/v1644506092/pwa/whosgoing/user-eve.jpg
151.101.194.104200 OK 8.1 kB URL HTTP/2 a.hwstatic.com/image/upload/q_75,h_166/v1644506092/pwa/whosgoing/user-eve.jpg
IP 151.101.194.104:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 144x144, segment length 16, baseline, precision 8, 166x166, components 3\012- data
Hash 433bb700ee88d1df6f1fe2357f3c4e5a
0b66d6bf5e6e95ae77fa479c2dfe5142a6d65bf8
0790ceb765f06cc617138454b3696162dd4fa76331630d7dd282d0596ceea52e
GET /image/upload/q_75,h_166/v1644506092/pwa/whosgoing/user-eve.jpg HTTP/1.1
Host: a.hwstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "433bb700ee88d1df6f1fe2357f3c4e5a"
last-modified: Mon, 28 Feb 2022 19:57:22 GMT
date: Sat, 25 Mar 2023 13:29:57 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, max-age=300
server-timing: cld-fastly;dur=1;start=2023-03-25T13:29:57.331Z;desc=hit,rtt;dur=55
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 8099
X-Firefox-Spdy: h2
a.hwstatic.com/image/upload/q_75,h_166/v1644506092/pwa/whosgoing/user-f-luiza.jpg
151.101.194.104200 OK 6.1 kB URL HTTP/2 a.hwstatic.com/image/upload/q_75,h_166/v1644506092/pwa/whosgoing/user-f-luiza.jpg
IP 151.101.194.104:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 144x144, segment length 16, baseline, precision 8, 166x166, components 3\012- data
Hash 04874a3f767f81848983b26d6f333c18
742ee99dc694de7491067ced844c33d217807af4
7f1b3fdb236e87a5141fb47401fc01de58f3acdae3d9a692130386f9c527ecda
GET /image/upload/q_75,h_166/v1644506092/pwa/whosgoing/user-f-luiza.jpg HTTP/1.1
Host: a.hwstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "04874a3f767f81848983b26d6f333c18"
last-modified: Mon, 28 Feb 2022 19:57:23 GMT
date: Sat, 25 Mar 2023 13:29:57 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, max-age=300
server-timing: cld-fastly;dur=1;start=2023-03-25T13:29:57.330Z;desc=hit,rtt;dur=55
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 6059
X-Firefox-Spdy: h2
a.hwstatic.com/image/upload/v1644506092/pwa/whosgoing/portugal_png.png
151.101.194.104200 OK 5.9 kB URL HTTP/2 a.hwstatic.com/image/upload/v1644506092/pwa/whosgoing/portugal_png.png
IP 151.101.194.104:0
File type PNG image data, 102 x 102, 8-bit/color RGBA, non-interlaced\012- data
Hash 5360e6e6885d93454f3997c8b8528626
d0997dc35d4e50e43576ff818a32cab95ac75961
a1fb58401d3bca2f2a859835707f37de626d3aa464f24117d951f5e06ca9c2fd
GET /image/upload/v1644506092/pwa/whosgoing/portugal_png.png HTTP/1.1
Host: a.hwstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
etag: "5360e6e6885d93454f3997c8b8528626"
last-modified: Wed, 16 Feb 2022 11:08:30 GMT
date: Sat, 25 Mar 2023 13:29:57 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=31557600
server-timing: cld-fastly;dur=2;cpu=1;start=2023-03-25T13:29:57.330Z;desc=hit,rtt;dur=55
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 5924
X-Firefox-Spdy: h2
ucd.hwstatic.com/hw/hotjar/hotjar.js
163.171.134.109301 Moved Permanently 0 B URL HTTP/2 ucd.hwstatic.com/hw/hotjar/hotjar.js
IP 163.171.134.109:0
ASN #54994 QUANTILNETWORKS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /hw/hotjar/hotjar.js HTTP/1.1
Host: ucd.hwstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sat, 25 Mar 2023 13:29:57 GMT
content-type: text/html; charset=UTF-8
content-length: 0
cache-control: private
location: https://u.hwstatic.com:443/hw/hotjar/hotjar.js
via: 1.1 PSdgflkfFRA1hb199:0 (W), 1.1 PSrdsdgemSTO1sw92:2 (W)
x-px: ms PSrdsdgemSTO1sw92ARN,ms PSdgflkfFRA1hb199FRA(origin)
x-ws-request-id: 641ef755_PS-ARN-016FX94_14000-42725
server: PWS/8.3.1.0.8
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 90b1c3da58195497dc546078dcb9793d
2f815cb9be01d66cc9bbe3d1d91339bcdc1fae02
6636f2fa595fd7597bdd4d0155c3a146e02a8d56c33456c4a20a1f48e3cbad0f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4689
Cache-Control: max-age=130068
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 13:29:57 GMT
Etag: "641e3e18-1d7"
Expires: Mon, 27 Mar 2023 01:37:45 GMT
Last-Modified: Sat, 25 Mar 2023 00:19:36 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 859a657e14782b91988009624fa59432
0856e1413ea2c22548d8f8397ef3987f6f36aa19
ababd840f4fdfe2e2dc298e96c25c25a4d1ae274eaf718575383a37f23a91031
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5581
Cache-Control: max-age=103931
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 13:29:57 GMT
Etag: "641dd483-1d7"
Expires: Sun, 26 Mar 2023 18:22:08 GMT
Last-Modified: Fri, 24 Mar 2023 16:49:07 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4355291ec58b85ddde02c2446ecb2bb4
4ad43e10f82193f83e862e8a78f3e46de9490ac4
e32fd5635627751770ee13e8f77b14b2555163cfc2d7db98aa8edb5b4bae4d9a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 13:29:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js.stripe.com/v3
151.101.0.176200 OK 124 kB IP 151.101.0.176:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 124 kB (124251 bytes)
Hash dd0c40b5c89f48a4ff0f319e92beba31
3ab0c1cbff85af46614f182b25a0182cfd805578
12423fd330331fc98fca2dc78bf53278046835a722b972f7c87ee17f53a72879
GET /v3 HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Fri, 24 Mar 2023 21:06:56 GMT
etag: "7a28c1a0ab6f059bd86be051755c320b"
cache-control: max-age=60
content-type: text/javascript; charset=utf-8
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Sat, 25 Mar 2023 13:29:57 GMT
via: 1.1 varnish
age: 16
x-request-id: 6dfd0587-dc5f-490f-8ae6-2725165e65b9
x-served-by: cache-bma1624-BMA
x-cache: HIT
x-cache-hits: 6
vary: Accept-Encoding
timing-allow-origin: *
content-length: 124251
X-Firefox-Spdy: h2
a.hwstatic.com/image/upload/f_auto,q_auto/CRO/hwpwa-3223/variation3-lg.jpg
151.101.194.104200 OK 77 kB URL HTTP/2 a.hwstatic.com/image/upload/f_auto,q_auto/CRO/hwpwa-3223/variation3-lg.jpg
IP 151.101.194.104:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1600x754, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5d527e88abcb553db429c590e3842258
0cb8fa95c7eb9a33147edef8ca1be33a4ec7b691
f00673d131ffcabcd7e0882d69bb450f6b5a9d58c108e6629a43d44bd468393b
GET /image/upload/f_auto,q_auto/CRO/hwpwa-3223/variation3-lg.jpg HTTP/1.1
Host: a.hwstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="variation3-lg.webp"
content-type: image/webp
etag: "5d527e88abcb553db429c590e3842258"
last-modified: Thu, 14 Apr 2022 09:57:57 GMT
date: Sat, 25 Mar 2023 13:29:57 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=31557600
server-timing: cld-fastly;dur=2;cpu=1;start=2023-03-25T13:29:57.528Z;desc=hit,rtt;dur=23
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 76820
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ce6948c57f579a85042a4388c45514d6
4b3002c036034ef0cb8d9eb73b7bf7f561862b99
85e655e198ac1724ffca7bf4efc4f98de8c436cebf41ed665cc397fbb02a243a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 13:29:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pay.datatrans.com/upp/payment/js/secure-fields-2.0.0.js
193.16.220.35200 18 kB URL HTTP/1.1 pay.datatrans.com/upp/payment/js/secure-fields-2.0.0.js
IP 193.16.220.35:0
File type ASCII text, with CRLF, LF line terminators
Hash 251e61b19e5d7d4d55fdc69271608e7d
235ebd6c6afd97233d268832ca026f59a5a8eb4a
e239b8289ca6b3c0e5736531d7b9cdcac4c5470dafde7e13b175fd4f13207a58
GET /upp/payment/js/secure-fields-2.0.0.js HTTP/1.1
Host: pay.datatrans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Server: nginx
Date: Sat, 25 Mar 2023 13:29:57 GMT
Content-Type: application/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=31536000; includeSubdomains
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
X-XSS-Protection: 1; mode=block
Content-Security-Policy-Report-Only: default-src 'self'; script-src 'self' 'unsafe-inline' https://pay.google.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' data: https://www.gstatic.com; font-src 'self' data: https://fonts.gstatic.com; connect-src 'self'; child-src 'self'; frame-src 'self' https://pay.google.com https://3d.sandbox.datatrans.com https://3d.datatrans.com; object-src 'self'; report-uri /upp/csp-report
Cache-Control: public, max-age=300
Expires: Sat, 25 Mar 2023 13:34:57 GMT
ETag: 1679492691133
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ce6948c57f579a85042a4388c45514d6
4b3002c036034ef0cb8d9eb73b7bf7f561862b99
85e655e198ac1724ffca7bf4efc4f98de8c436cebf41ed665cc397fbb02a243a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 13:29:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/inter/v3/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7W0Q5nw.woff2
142.250.74.35200 OK 37 kB URL HTTP/2 fonts.gstatic.com/s/inter/v3/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7W0Q5nw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 36936, version 1.0\012- data
Hash 5c87e5e600db85bdc4e94d55efd163ca
dec8cb86bfd07d7bc2958199c4487f463de4d4c2
b8f1c14c5b866e78f8a733e4b6dc07939ced609e89fee2bf4e5261cd6b5ecb23
GET /s/inter/v3/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7W0Q5nw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.hostelworld.com
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 36936
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:49 GMT
expires: Sat, 23 Mar 2024 10:26:49 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 28 Jan 2021 22:47:12 GMT
content-type: font/woff2
age: 97388
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v15/pxiByp8kv8JHgFVrLCz7Z1xlFd2JQEk.woff2
142.250.74.35200 OK 7.8 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v15/pxiByp8kv8JHgFVrLCz7Z1xlFd2JQEk.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 7832, version 1.0\012- data
Hash f4f17fd53c7d040e56f91a3ecb692b22
1b51342175762634835645ba2f99cd3ab0ac615c
b0b43e548e691662dac85b1dc159d148a273d5cb9139f3fcf457cdeebe7bdf3f
GET /s/poppins/v15/pxiByp8kv8JHgFVrLCz7Z1xlFd2JQEk.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.hostelworld.com
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7832
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:30:25 GMT
expires: Sat, 23 Mar 2024 10:30:25 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 05 Nov 2020 22:01:44 GMT
content-type: font/woff2
age: 97172
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ce6948c57f579a85042a4388c45514d6
4b3002c036034ef0cb8d9eb73b7bf7f561862b99
85e655e198ac1724ffca7bf4efc4f98de8c436cebf41ed665cc397fbb02a243a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 13:29:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
a.hwstatic.com/image/upload/q_75,h_166/v1644506092/pwa/whosgoing/user-luka.jpg
151.101.194.104200 OK 938 B URL HTTP/2 a.hwstatic.com/image/upload/q_75,h_166/v1644506092/pwa/whosgoing/user-luka.jpg
IP 151.101.194.104:0
Hash c81fc3e698bd64eed448f66fb4900d8e
6f01703bd2bbd7f7068cd29991fe1abe6716b449
436830aa1687f620d35e1d8ff35287d17444437643cd736ab990dd6bd64b9ba4
GET /image/upload/q_75,h_166/v1644506092/pwa/whosgoing/user-luka.jpg HTTP/1.1
Host: a.hwstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "e400771f7a698155c87ca3e79222d25d"
last-modified: Mon, 28 Feb 2022 19:57:23 GMT
date: Sat, 25 Mar 2023 13:29:57 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, max-age=300
server-timing: cld-fastly;dur=1;start=2023-03-25T13:29:57.330Z;desc=hit,rtt;dur=55
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 4455
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=C3VRSMHU9OSLU1GC85TG&lib=ttq
23.36.79.32200 OK 1.2 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=C3VRSMHU9OSLU1GC85TG&lib=ttq
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2328)
Hash 75816c48283e9f36e13d4e00f69ac528
6b7ba49205345214f328ebbb77a4f7cfea542201
5451d830d8354408b3f77616f613b866433b57bb4ecdf5c7f87fc0b44cd3c132
GET /i18n/pixel/events.js?sdkid=C3VRSMHU9OSLU1GC85TG&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20230325132957F0BD57FD96E3BE9D6DBF
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60787dee798e7afc9c5500f386c65d6ca1ba46ab71339159a9bd6f8a94934234df516bbe42970b20b8aa7acf72d943596ae0ba97560f6f011f818e5d5f62a0efd3a08b0229bdb7044de995393a8c5518c3
content-encoding: gzip
expires: Sat, 25 Mar 2023 13:29:58 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 25 Mar 2023 13:29:58 GMT
content-length: 1157
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/11.0.2.2-47519392) (-)
vary: Accept-Encoding
set-cookie: _ttp=2NVZ1tkckghssHNPS1fv4DFEi2Q; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=4, cdn-cache; desc=MISS, edge; dur=0, origin; dur=102
x-origin-response-time: 102,23.36.79.28
x-akamai-request-id: f8e925e
X-Firefox-Spdy: h2
www.hostelworld.com/sw.js
95.100.15.144200 OK 12 kB URL HTTP/2 www.hostelworld.com/sw.js
IP 95.100.15.144:0
Hash 155b0832366ac0a30b7904e3b35592e8
a3e7302b9b7f005333c55d86c5b28311f6b33d72
c2e8779ab0488b9bdd68d11ad93a3a925885d10fc4a6ce8c222e218296558131
GET /sw.js HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway; _gcl_au=1.1.1648327306.1679751011
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Fri, 17 Mar 2023 11:10:27 GMT
etag: W/"114e6-186ef438cb8"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
content-encoding: br
content-length: 11581
cache-control: public, max-age=254589
date: Sat, 25 Mar 2023 13:29:58 GMT
X-Firefox-Spdy: h2
a.hwstatic.com/raw/upload/f_auto,q_auto/wds/svg-sprites/critical-16.svg
151.101.194.104200 OK 10 kB URL HTTP/2 a.hwstatic.com/raw/upload/f_auto,q_auto/wds/svg-sprites/critical-16.svg
IP 151.101.194.104:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (1532)
Hash b8440f00033ce0d4cea20de3b52b1481
7d9f3a88e00a983b01913e08bd5c465a119f2f0e
3b88cf1a0918487ac92ba413705d1ffb265fab08b6d698f8faf43850fa19f4b0
GET /raw/upload/f_auto,q_auto/wds/svg-sprites/critical-16.svg HTTP/1.1
Host: a.hwstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hostelworld.com/
Origin: https://www.hostelworld.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: attachment; filename="critical-16.svg"
content-encoding: br
content-type: image/svg+xml
etag: W/"b78868103b2a7d0e4d282bc92aa113ce"
last-modified: Thu, 20 Jan 2022 16:16:37 GMT
date: Sat, 25 Mar 2023 13:29:58 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=31557600
server-timing: cld-fastly;dur=2;cpu=1;start=2023-03-25T13:29:58.462Z;desc=hit,rtt;dur=9
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 9990
X-Firefox-Spdy: h2
www.googleoptimize.com/optimize.js?id=OPT-MHL9CQZ
142.250.74.78200 OK 45 kB URL HTTP/2 www.googleoptimize.com/optimize.js?id=OPT-MHL9CQZ
IP 142.250.74.78:0
File type ASCII text, with very long lines (2206)
Hash 88cfd1748ee74bd87b0c4a0b8aca445f
179eaf235fc6f7c4384aac088a293049a3be85be
efa01bec74f4ee81af5ef243ba2077d830a150ff92699d1594764e59ec66def7
GET /optimize.js?id=OPT-MHL9CQZ HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 25 Mar 2023 13:29:58 GMT
expires: Sat, 25 Mar 2023 13:29:58 GMT
cache-control: private, max-age=900
last-modified: Sat, 25 Mar 2023 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44992
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
consent.trustarc.com/notice?domain=hostelworld.com&c=footerLegalLinks>m=1&js=nj¬iceType=bb&language=en&language=true&text=true&cookieLink=https%3A%2F%2Fwww.hostelworld.com%2Fcookiespolicy.php&privacypolicylink=https%3A%2F%2Fwww.hostelworld.com%2Fsecurityprivacy.php
54.230.111.101200 OK 86 B URL HTTP/2 consent.trustarc.com/notice?domain=hostelworld.com&c=footerLegalLinks>m=1&js=nj¬iceType=bb&language=en&language=true&text=true&cookieLink=https%3A%2F%2Fwww.hostelworld.com%2Fcookiespolicy.php&privacypolicylink=https%3A%2F%2Fwww.hostelworld.com%2Fsecurityprivacy.php
IP 54.230.111.101:0
File type ASCII text, with no line terminators
Hash df4dc934322464fe2bd0a1546107fe4f
edd671f510bb071622c58aaef59833d0db19996c
da9576736b64d2d38ad8444c8a007862cf2ed59bb1f9627314103d1ce3fcf9ec
GET /notice?domain=hostelworld.com&c=footerLegalLinks>m=1&js=nj¬iceType=bb&language=en&language=true&text=true&cookieLink=https%3A%2F%2Fwww.hostelworld.com%2Fcookiespolicy.php&privacypolicylink=https%3A%2F%2Fwww.hostelworld.com%2Fsecurityprivacy.php HTTP/1.1
Host: consent.trustarc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hostelworld.com
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript;charset=ISO-8859-1
content-length: 86
date: Sat, 25 Mar 2023 13:28:39 GMT
expires: Sat, 25 Mar 2023 14:28:39 GMT
cache-control: max-age=3600
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cloudfront-viewer-country: NO
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7TkWR3P4x4rfJdF6B1DQztVVwVePA3OEr-44WyTV7Q0Xt8LxkDmhcg==
age: 79
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/main.MTE3ZGZjMmFkMA.js
23.36.79.32200 OK 66 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/main.MTE3ZGZjMmFkMA.js
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (21891)
Hash 0315597028802fbc81ea829093ff7d7d
d0f1d8243437546f785338f1694187f28d09012d
6c4ede99d8b8d80ac7ab7ea334b13e68c2eec85360facfdaf76905b0e09ccbc6
GET /i18n/pixel/static/main.MTE3ZGZjMmFkMA.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Cookie: _ttp=2NVZ1tkckghssHNPS1fv4DFEi2Q
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20230221145349D8F9ABDB8DC3C0D68208
x-tt-trace-host: 01bb469d8a759a907b671c89f934679301bb550c3c66d911ef5acdfa9e308af0040737830cc9d03386c3307ac1b95412f7159ab1382b9e54de53eca4dd9d96a5ba540c63d2f8c43290a3140f13d58bb5ddd96d222444a5043bdcd754420e1624e1
content-encoding: gzip
content-length: 66240
date: Sat, 25 Mar 2023 13:29:58 GMT
x-cache: TCP_MEM_HIT from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/11.0.2.2-47519392) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: f8e98f7
X-Firefox-Spdy: h2
www.hostelworld.com/favicon.ico
95.100.15.144200 OK 1.2 kB URL HTTP/2 www.hostelworld.com/favicon.ico
IP 95.100.15.144:0
File type MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 13cdbeb4cdde97049736ad1625bb6486
da256c8d3050972e28a8dc5589a04c9621bfe614
8b46316563741f4c05cb83ddfe7d50bb9ba5fcb0975550e5e3d5037cee766b41
GET /favicon.ico HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway; _gcl_au=1.1.1648327306.1679751011; gtmAA=control
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-type: image/x-icon
etag: W/"3aee-1867992d780"
last-modified: Wed, 22 Feb 2023 14:41:52 GMT
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
content-length: 1214
cache-control: public, max-age=2537732
date: Sat, 25 Mar 2023 13:29:58 GMT
X-Firefox-Spdy: h2
js.stripe.com/v3/m-outer-93afeeb17bc37e711759584dbfc50d47.html
151.101.0.176200 OK 122 B URL HTTP/2 js.stripe.com/v3/m-outer-93afeeb17bc37e711759584dbfc50d47.html
IP 151.101.0.176:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 0fb49bf445ceac1dcb1b6c5d284a57a1
8988f3ceef20a494a419e595e8d802a0dc663c7a
5e0d98b9fefc9f5ccf02b5ac4f4e4de3fe727a1ac97a4cd778efd58062afd5e8
GET /v3/m-outer-93afeeb17bc37e711759584dbfc50d47.html HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 20:03:40 GMT
etag: "93afeeb17bc37e711759584dbfc50d47"
cache-control: max-age=31536000
content-type: text/html; charset=utf-8
content-security-policy: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self'; report-uri https://q.stripe.com/csp-report
content-security-policy-report-only: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self'; report-uri https://q.stripe.com/csp-report
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Sat, 25 Mar 2023 13:29:58 GMT
via: 1.1 varnish
age: 11381073
x-request-id: 09239abd-7c0b-4761-9f14-a433a76e2091
x-served-by: cache-bma1624-BMA
x-cache: HIT
x-cache-hits: 356670
vary: Accept-Encoding
timing-allow-origin: *
content-length: 122
X-Firefox-Spdy: h2
www.hostelworld.com/_nuxt/icons/icon_512.8008w0E0800.png
95.100.15.144200 OK 29 kB URL HTTP/2 www.hostelworld.com/_nuxt/icons/icon_512.8008w0E0800.png
IP 95.100.15.144:0
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash 1e5b728ce3280af4620e5cda33aa3942
769e18682ae9f6557e1a6541d930e938ad283ddd
0ee4f704ebafc7de578d932dfe01823a031c5782083d9edf0761af562db7fbe7
GET /_nuxt/icons/icon_512.8008w0E0800.png HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/?source=affiliate-PHG-1011l9s5L&affiliate=PHG&ref_id=1100lwDmf2DF
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway; _gcl_au=1.1.1648327306.1679751011; gtmAA=control
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-length: 28826
content-type: image/png
etag: W/"709a-18697762db0"
last-modified: Tue, 28 Feb 2023 09:59:10 GMT
strict-transport-security: max-age=15552000; includeSubDomains
x-content-type-options: nosniff
x-dns-prefetch-control: on
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
cache-control: public, max-age=589638
date: Sat, 25 Mar 2023 13:29:58 GMT
X-Firefox-Spdy: h2
a.hwstatic.com/image/upload/h_568,q_50/v1644922394/pwa/new/The_Spindrift_Hostel-img.jpg
151.101.194.104200 OK 41 kB URL HTTP/2 a.hwstatic.com/image/upload/h_568,q_50/v1644922394/pwa/new/The_Spindrift_Hostel-img.jpg
IP 151.101.194.104:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 150x150, segment length 16, baseline, precision 8, 504x568, components 3\012- data
Hash 686db4a5917fcb67f180d641794a5f3b
7f1dd3f4dac6103115430e569d3da244e3d5a996
9e3eb6bd0555a7de3c7f02421a9176df7a91f4007c595e4365dc24d132da876e
GET /image/upload/h_568,q_50/v1644922394/pwa/new/The_Spindrift_Hostel-img.jpg HTTP/1.1
Host: a.hwstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "686db4a5917fcb67f180d641794a5f3b"
last-modified: Mon, 28 Feb 2022 13:35:52 GMT
date: Sat, 25 Mar 2023 13:29:58 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=31557600
server-timing: cld-fastly;dur=1;start=2023-03-25T13:29:58.908Z;desc=hit,rtt;dur=8
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 40667
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
216.58.207.206200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.58.207.206:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sat, 25 Mar 2023 12:05:11 GMT
expires: Sat, 25 Mar 2023 14:05:11 GMT
cache-control: public, max-age=7200
age: 5087
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
bat.bing.com/bat.js
13.107.21.200200 OK 12 kB IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (40607), with no line terminators
Hash 04651bf0c51742f9007b1ae2b4486dee
6ffc71fcb5db1cf0283b60150a62f2c219ac3dbd
5d7392c44731e52810337eb1a3eb3ae1ffab31b8f8d55daba20d658701604666
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11894
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 16 Feb 2023 18:31:53 GMT
accept-ranges: bytes
etag: "8072cff03442d91:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: CE4D017DD76E4C53BB0C112427F53B76 Ref B: OSL30EDGE0105 Ref C: 2023-03-25T13:29:58Z
date: Sat, 25 Mar 2023 13:29:58 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash eef4409d0ad90e2899e538028bd3fa76
2d6edd13cbd2d201ef921fc33c053aec8f8b740c
61eef3a534769ac291c82d37206b392dea96af36a38e9d7da4cf0fb2d5d2342d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 13:29:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash f91bec0a4e5b6ec5598800635807a333
58e65c61d3622379fbdfc5a3344706cdd04df398
3312157f1da8d91cfe3727fe0c61082c65d33a3fc68e691db711cdc339f7eb02
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5309
Cache-Control: max-age=141839
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 13:29:58 GMT
Etag: "641e69a8-1d7"
Expires: Mon, 27 Mar 2023 04:53:57 GMT
Last-Modified: Sat, 25 Mar 2023 03:25:28 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9b762efe5751eb25cd26ca67ad6dcf22
661f1247ecc842236957d05747967ec4f20835a2
c51c54e54ffc33cc7643bb0a64da2265f93efaf38838351ec0f2a2fe102efa2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 13:29:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash eef4409d0ad90e2899e538028bd3fa76
2d6edd13cbd2d201ef921fc33c053aec8f8b740c
61eef3a534769ac291c82d37206b392dea96af36a38e9d7da4cf0fb2d5d2342d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 13:29:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/792870594/?random=1679751011505&cv=11&fst=1679751011505&bg=ffffff&guid=ON&async=1>m=45be33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.hostelworld.com%2F%3Fsource%3Daffiliate-PHG-1011l9s5L%26affiliate%3DPHG%26ref_id%3D1100lwDmf2DF&hn=www.googleadservices.com&frm=0&tiba=Hostelworld%20-%20Explore%20the%20world%E2%80%99s%20best%20hostels&auid=1648327306.1679751011&data=event%3Dgtag.config&rfmt=3&fmt=4
142.250.74.162200 OK 1.3 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/792870594/?random=1679751011505&cv=11&fst=1679751011505&bg=ffffff&guid=ON&async=1>m=45be33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.hostelworld.com%2F%3Fsource%3Daffiliate-PHG-1011l9s5L%26affiliate%3DPHG%26ref_id%3D1100lwDmf2DF&hn=www.googleadservices.com&frm=0&tiba=Hostelworld%20-%20Explore%20the%20world%E2%80%99s%20best%20hostels&auid=1648327306.1679751011&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 142.250.74.162:0
File type ASCII text, with very long lines (2775), with no line terminators
Hash e2cf1db4fd414120dbb0feb816fba35a
f6da90d6e76c46a8d0b39893f35e1d72813729a2
617854a0fb2b9b96d318ee1143e2af15e68db020663654c0f31db5957aef21f4
GET /pagead/viewthroughconversion/792870594/?random=1679751011505&cv=11&fst=1679751011505&bg=ffffff&guid=ON&async=1>m=45be33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.hostelworld.com%2F%3Fsource%3Daffiliate-PHG-1011l9s5L%26affiliate%3DPHG%26ref_id%3D1100lwDmf2DF&hn=www.googleadservices.com&frm=0&tiba=Hostelworld%20-%20Explore%20the%20world%E2%80%99s%20best%20hostels&auid=1648327306.1679751011&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 25 Mar 2023 13:29:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1280
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 25-Mar-2023 13:44:59 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.205.11200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.205.11:0
File type ASCII text, with very long lines (64347)
Hash 7fc8bce5d342b4898e6c82cc61313763
4aa4da15b55d59fc1a3a640a443cbde675d5e407
e456006ad9bc83651e868be3c53fa3fe93247a23b4fedf3b8c836fdf2c0c7de2
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: GFefk17KhAeHzjXpIKFCNaZQY+FnpPnY5W+v1GFcNwzd6H5IsgdJbTM21++mWtrAwBf/jGKCLLvjQm+iQ+MA1A==
content-length: 27907
x-fb-trip-id: 1679558926
date: Sat, 25 Mar 2023 13:29:58 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.google.com/pagead/1p-conversion/10991820087/?random=1679751011758&cv=11&fst=1679751011758&bg=ffffff&guid=ON&async=1>m=45He33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.hostelworld.com%2F%3Fsource%3Daffiliate-PHG-1011l9s5L%26affiliate%3DPHG%26ref_id%3D1100lwDmf2DF&label=Y3O4COeo4oMYELe6p_ko&hn=www.google.com&frm=0&tiba=Hostelworld%20-%20Explore%20the%20world%E2%80%99s%20best%20hostels&value=0&bttype=purchase&auid=1648327306.1679751011&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
142.250.74.164302 Found 63 B URL HTTP/2 www.google.com/pagead/1p-conversion/10991820087/?random=1679751011758&cv=11&fst=1679751011758&bg=ffffff&guid=ON&async=1>m=45He33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.hostelworld.com%2F%3Fsource%3Daffiliate-PHG-1011l9s5L%26affiliate%3DPHG%26ref_id%3D1100lwDmf2DF&label=Y3O4COeo4oMYELe6p_ko&hn=www.google.com&frm=0&tiba=Hostelworld%20-%20Explore%20the%20world%E2%80%99s%20best%20hostels&value=0&bttype=purchase&auid=1648327306.1679751011&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
IP 142.250.74.164:0
File type ASCII text, with no line terminators
Hash 0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26
GET /pagead/1p-conversion/10991820087/?random=1679751011758&cv=11&fst=1679751011758&bg=ffffff&guid=ON&async=1>m=45He33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.hostelworld.com%2F%3Fsource%3Daffiliate-PHG-1011l9s5L%26affiliate%3DPHG%26ref_id%3D1100lwDmf2DF&label=Y3O4COeo4oMYELe6p_ko&hn=www.google.com&frm=0&tiba=Hostelworld%20-%20Explore%20the%20world%E2%80%99s%20best%20hostels&value=0&bttype=purchase&auid=1648327306.1679751011&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 25 Mar 2023 13:29:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/10991820087/?random=1679751011758&cv=11&fst=1679751011758&bg=ffffff&guid=ON&async=1>m=45He33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.hostelworld.com%2F%3Fsource%3Daffiliate-PHG-1011l9s5L%26affiliate%3DPHG%26ref_id%3D1100lwDmf2DF&label=Y3O4COeo4oMYELe6p_ko&hn=www.google.com&frm=0&tiba=Hostelworld%20-%20Explore%20the%20world%E2%80%99s%20best%20hostels&value=0&bttype=purchase&auid=1648327306.1679751011&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/identify_cab4d.js
23.36.79.32200 OK 31 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/identify_cab4d.js
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 681bc25d1e648965a9374cc7da238fd5
bb973302d1b656e343013fe741d0d54bfe33b15e
2d381181d954e35610fb06daba8df86d7abb4b823e87de97276e0bd81af03669
GET /i18n/pixel/static/identify_cab4d.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Cookie: _ttp=2NVZ1tkckghssHNPS1fv4DFEi2Q
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 202302211453357ED32E9CB4A234CC4054
x-tt-trace-host: 015ddd7329836f23ed04aa0dd6eae000e61dfb35b73ddd0ea6d3f361692c7f8399f836da754548664a9d56a317cca937197d586aef26ea8efc3380c784f4b6030804835a6b84edf6ba964a401008dbe475da2a7be38cb7b795f8af41aeb5068142
content-encoding: gzip
date: Sat, 25 Mar 2023 13:29:59 GMT
content-length: 30779
x-cache: TCP_MEM_HIT from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/11.0.2.2-47519392) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: f8e9a1f
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/10991820087/?random=1679751011758&cv=11&fst=1679751011758&fmt=3&bg=ffffff&guid=ON&async=1>m=45He33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.hostelworld.com%2F%3Fsource%3Daffiliate-PHG-1011l9s5L%26affiliate%3DPHG%26ref_id%3D1100lwDmf2DF&label=Y3O4COeo4oMYELe6p_ko&hn=www.google.com&frm=0&tiba=Hostelworld%20-%20Explore%20the%20world%E2%80%99s%20best%20hostels&value=0&bttype=purchase&auid=1648327306.1679751011&gcp=1&ct_cookie_present=1
142.250.74.162200 OK 42 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/10991820087/?random=1679751011758&cv=11&fst=1679751011758&fmt=3&bg=ffffff&guid=ON&async=1>m=45He33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.hostelworld.com%2F%3Fsource%3Daffiliate-PHG-1011l9s5L%26affiliate%3DPHG%26ref_id%3D1100lwDmf2DF&label=Y3O4COeo4oMYELe6p_ko&hn=www.google.com&frm=0&tiba=Hostelworld%20-%20Explore%20the%20world%E2%80%99s%20best%20hostels&value=0&bttype=purchase&auid=1648327306.1679751011&gcp=1&ct_cookie_present=1
IP 142.250.74.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/viewthroughconversion/10991820087/?random=1679751011758&cv=11&fst=1679751011758&fmt=3&bg=ffffff&guid=ON&async=1>m=45He33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.hostelworld.com%2F%3Fsource%3Daffiliate-PHG-1011l9s5L%26affiliate%3DPHG%26ref_id%3D1100lwDmf2DF&label=Y3O4COeo4oMYELe6p_ko&hn=www.google.com&frm=0&tiba=Hostelworld%20-%20Explore%20the%20world%E2%80%99s%20best%20hostels&value=0&bttype=purchase&auid=1648327306.1679751011&gcp=1&ct_cookie_present=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 25 Mar 2023 13:29:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 25-Mar-2023 13:44:59 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f0f306ea49f1bd3f358f7579513e7377
c2845c696f6685a211bc040895d28ebf23fa1bc0
cda7588d5040ef3c8e83955838618a0ed0a6ee242d24abf5af697b2289fc8bdb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 13:29:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
script.hotjar.com/modules.936575bc1767492884db.js
54.230.111.44200 OK 69 kB URL HTTP/2 script.hotjar.com/modules.936575bc1767492884db.js
IP 54.230.111.44:0
File type Unicode text, UTF-8 text, with very long lines (50842)
Hash d6165b54ac1bedfdf423823cc05855ac
c59efe41c8303c4954af5b4fda66b06c54ca30f3
4008352d5fd357e2dc85ca061c490b16707e690bf74489ccb0cb72d2a792c701
GET /modules.936575bc1767492884db.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 69056
date: Fri, 24 Mar 2023 15:40:07 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "d6165b54ac1bedfdf423823cc05855ac"
last-modified: Fri, 24 Mar 2023 15:39:54 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Y-xUOfW-0zPTVy-xny1AURNfSOSBoX3o3nNrYbKlTCeRfZxJvPW8SA==
age: 78592
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/792870594/?random=1679751011505&cv=11&fst=1679749200000&bg=ffffff&guid=ON&async=1>m=45be33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.hostelworld.com%2F%3Fsource%3Daffiliate-PHG-1011l9s5L%26affiliate%3DPHG%26ref_id%3D1100lwDmf2DF&frm=0&tiba=Hostelworld%20-%20Explore%20the%20world%E2%80%99s%20best%20hostels&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2583566214&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/792870594/?random=1679751011505&cv=11&fst=1679749200000&bg=ffffff&guid=ON&async=1>m=45be33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.hostelworld.com%2F%3Fsource%3Daffiliate-PHG-1011l9s5L%26affiliate%3DPHG%26ref_id%3D1100lwDmf2DF&frm=0&tiba=Hostelworld%20-%20Explore%20the%20world%E2%80%99s%20best%20hostels&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2583566214&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/792870594/?random=1679751011505&cv=11&fst=1679749200000&bg=ffffff&guid=ON&async=1>m=45be33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.hostelworld.com%2F%3Fsource%3Daffiliate-PHG-1011l9s5L%26affiliate%3DPHG%26ref_id%3D1100lwDmf2DF&frm=0&tiba=Hostelworld%20-%20Explore%20the%20world%E2%80%99s%20best%20hostels&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2583566214&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 25 Mar 2023 13:29:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash eef4409d0ad90e2899e538028bd3fa76
2d6edd13cbd2d201ef921fc33c053aec8f8b740c
61eef3a534769ac291c82d37206b392dea96af36a38e9d7da4cf0fb2d5d2342d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 13:29:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 248b003a4a6dda3d2c481cfd45e49176
ae6e1dbc704dbe302549888e545689eb88e83bb9
14df223924711cca8488c64942b656023cb6e69cb83863ccd0f9cdb8ac4682fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 13:29:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-017XQ4637F&cid=274588234.1679751012>m=45je33m0&aip=1&z=2129528447
216.58.207.227200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-017XQ4637F&cid=274588234.1679751012>m=45je33m0&aip=1&z=2129528447
IP 216.58.207.227:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-017XQ4637F&cid=274588234.1679751012>m=45je33m0&aip=1&z=2129528447 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 25 Mar 2023 13:29:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/792870594/?random=1679751011505&cv=11&fst=1679749200000&bg=ffffff&guid=ON&async=1>m=45be33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.hostelworld.com%2F%3Fsource%3Daffiliate-PHG-1011l9s5L%26affiliate%3DPHG%26ref_id%3D1100lwDmf2DF&frm=0&tiba=Hostelworld%20-%20Explore%20the%20world%E2%80%99s%20best%20hostels&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2583566214&rmt_tld=1&ipr=y
216.58.207.227200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/792870594/?random=1679751011505&cv=11&fst=1679749200000&bg=ffffff&guid=ON&async=1>m=45be33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.hostelworld.com%2F%3Fsource%3Daffiliate-PHG-1011l9s5L%26affiliate%3DPHG%26ref_id%3D1100lwDmf2DF&frm=0&tiba=Hostelworld%20-%20Explore%20the%20world%E2%80%99s%20best%20hostels&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2583566214&rmt_tld=1&ipr=y
IP 216.58.207.227:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/792870594/?random=1679751011505&cv=11&fst=1679749200000&bg=ffffff&guid=ON&async=1>m=45be33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.hostelworld.com%2F%3Fsource%3Daffiliate-PHG-1011l9s5L%26affiliate%3DPHG%26ref_id%3D1100lwDmf2DF&frm=0&tiba=Hostelworld%20-%20Explore%20the%20world%E2%80%99s%20best%20hostels&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2583566214&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 25 Mar 2023 13:29:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.32200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 885
Origin: https://www.hostelworld.com
Connection: keep-alive
Referer: https://www.hostelworld.com/
Cookie: _ttp=2NVZ1tkckghssHNPS1fv4DFEi2Q
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20230325132959F0BD57FD96E3BE9D6E04
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60787dee798e7afc9c5500f386c65d6ca1ba46ab71339159a9bd6f8a94934234df6b338873076285b49e87ae149fd4d88fcd56b62789e3267d8ee6aa6d2f279a1cc962247fcbd4fed89f245481cb4bab35
expires: Sat, 25 Mar 2023 13:29:59 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 25 Mar 2023 13:29:59 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/11.0.2.2-47519392) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=21, cdn-cache; desc=MISS, edge; dur=6, origin; dur=118
x-origin-response-time: 119,23.36.79.28
x-akamai-request-id: f8e9a41
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.32200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 834
Origin: https://www.hostelworld.com
Connection: keep-alive
Referer: https://www.hostelworld.com/
Cookie: _ttp=2NVZ1tkckghssHNPS1fv4DFEi2Q
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20230325132959AC976E852E1C4AB00655
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60e3edb515e5d35f97492fe5bedc44bf1d45ac6321f5fe55ccffce09af524e90b0f93e8632260c73b76e393c4b01adde3aa793a4e5fa3431dd63b647a064063f595d557514dd7a4505c5ad5f6f0f7e5b896c873a7923375daa15f811a5d4921ef3
x-origin-response-time: 20,72.247.190.87
x-akamai-request-id: 15e34bb9.f8e9a43
expires: Sat, 25 Mar 2023 13:29:59 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 25 Mar 2023 13:29:59 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/11.0.2.2-47519392) (-)
x-cache-remote: TCP_MISS from a72-247-190-87.deploy.akamaitechnologies.com (AkamaiGHost/11.0.2.2-47519392) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=107, origin; dur=20, inner; dur=15
x-parent-response-time: 122,23.36.79.28
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 248b003a4a6dda3d2c481cfd45e49176
ae6e1dbc704dbe302549888e545689eb88e83bb9
14df223924711cca8488c64942b656023cb6e69cb83863ccd0f9cdb8ac4682fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 13:29:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bat.bing.com/p/action/5306710.js
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/5306710.js
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/5306710.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-powered-by: ARR/3.0
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 8D686AAD06A6411782BF8AB7119E7F1B Ref B: OSL30EDGE0105 Ref C: 2023-03-25T13:29:59Z
date: Sat, 25 Mar 2023 13:29:58 GMT
X-Firefox-Spdy: h2
js.stripe.com/v3/fingerprinted/js/m-outer-8cb24ab2d649fd36a488d04d8c457933.js
151.101.0.176200 OK 332 B URL HTTP/2 js.stripe.com/v3/fingerprinted/js/m-outer-8cb24ab2d649fd36a488d04d8c457933.js
IP 151.101.0.176:0
File type ASCII text, with very long lines (526)
Hash ada7d17b721f065b91d249c998f2967e
1c686ed2c2218a3889b7d9a9b1acdf851b0bf563
12125f2ad96bb800b475309dcc276eeddffd6db095e29fe1f8514b3f8c7e544a
GET /v3/fingerprinted/js/m-outer-8cb24ab2d649fd36a488d04d8c457933.js HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.stripe.com/v3/m-outer-93afeeb17bc37e711759584dbfc50d47.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 20:03:40 GMT
etag: "f8f6a4584135f737b26927596ce6e0a7"
cache-control: max-age=31536000
content-type: text/javascript; charset=utf-8
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Sat, 25 Mar 2023 13:29:59 GMT
via: 1.1 varnish
age: 11381074
x-request-id: c189eac3-ca77-47a1-9a45-a3f73d67aff9
x-served-by: cache-bma1624-BMA
x-cache: HIT
x-cache-hits: 289032
vary: Accept-Encoding
timing-allow-origin: *
content-length: 332
X-Firefox-Spdy: h2
www.hostelworld.com/_nuxt/workbox.4c4f5ca6.js
95.100.15.144200 OK 792 B URL HTTP/2 www.hostelworld.com/_nuxt/workbox.4c4f5ca6.js
IP 95.100.15.144:0
File type ASCII text, with very long lines (1463)
Hash 040682475e66366f97e44c6f89bad32e
be9610866e088b97c9a50ee72b759605e723eaf0
792ddaa8e6f2437049c3e4c8042b003b5e6e6c31cc956c6f48d269fa61cd7f50
GET /_nuxt/workbox.4c4f5ca6.js HTTP/1.1
Host: www.hostelworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/sw.js
Cookie: optimizely-aid=659ccb76-dfce-4f47-a975-521b8cea4a7c; geoCurrency=NOK; currency=NOK; country=Norway; _gcl_au=1.1.1648327306.1679751011; gtmAA=control; _ga_017XQ4637F=GS1.1.1679751012.1.1.1679751012.60.0.0; _ga=GA1.2.274588234.1679751012; _tt_enable_cookie=1; _ttp=PrbX-tMTQM8D_9Wa72UvllA4q7h; _uetsid=2b6b5780cb1111edb1f96f51ad391571; _uetvid=2b6b9970cb1111edabf5337e22b29f00; _gid=GA1.2.1101393410.1679751012; _gat_UA-59409524-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Fri, 17 Mar 2023 11:10:27 GMT
etag: W/"5e0-186ef438cb8"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
content-encoding: br
content-length: 792
cache-control: public, max-age=394171
date: Sat, 25 Mar 2023 13:29:59 GMT
X-Firefox-Spdy: h2
a.hwstatic.com/raw/upload/f_auto,q_auto/wds/svg-sprites/icons-16.svg
151.101.194.104200 OK 50 kB URL HTTP/2 a.hwstatic.com/raw/upload/f_auto,q_auto/wds/svg-sprites/icons-16.svg
IP 151.101.194.104:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (2893)
Hash 937b2f1d75dc24ea51a023f6314fb297
a0e2ef4c51aca22d221c06dd8fa4b845c873c485
644ad86507494694cdf2f12af076e6d6987b03e65341188511b635612119d4c7
GET /raw/upload/f_auto,q_auto/wds/svg-sprites/icons-16.svg HTTP/1.1
Host: a.hwstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hostelworld.com/
Origin: https://www.hostelworld.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: attachment; filename="icons-16.svg"
content-encoding: br
content-type: image/svg+xml
etag: W/"211a398f42aa9a01f7a0df5b29c98d80"
last-modified: Thu, 20 Jan 2022 16:16:37 GMT
date: Sat, 25 Mar 2023 13:29:59 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=31557600
server-timing: cld-fastly;dur=2;cpu=1;start=2023-03-25T13:29:59.337Z;desc=hit,rtt;dur=8
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 50102
X-Firefox-Spdy: h2
cdn.segment.com/analytics-next/bundles/ajs-destination.bundle.2cd9e450202b69d545a3.js
54.230.219.201200 OK 3.0 kB URL HTTP/2 cdn.segment.com/analytics-next/bundles/ajs-destination.bundle.2cd9e450202b69d545a3.js
IP 54.230.219.201:0
File type ASCII text, with very long lines (9157)
Hash aaadfe4205e9e58f605c7117f7461852
83ec62d84bfa3eaed50d1a7df88825fc2a25e8af
ff614a142dce2d4ced359900cc299e3ec61fd214eba93839a83e718df7253241
GET /analytics-next/bundles/ajs-destination.bundle.2cd9e450202b69d545a3.js HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 07 Mar 2023 01:16:11 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 26 Jan 2023 20:14:52 GMT
etag: W/"cc39e85781964199cd0d9501c897e385"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000,immutable
x-amz-version-id: jZ2L92raJDMf08tukXqdJ6aGBdPFzdTy
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: V_xF4N5oXvL6Q84UozIbQzokcfDLoTAR1DBvlpQbixvl8gzPU7hlEA==
age: 1599229
X-Firefox-Spdy: h2
m.stripe.network/inner.html
54.230.111.85200 OK 930 B URL HTTP/2 m.stripe.network/inner.html
IP 54.230.111.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (930), with no line terminators
Hash fc2e029628f163bb59adc6fa5a31161c
0f4547ae510d1bf36e3630d41bdab29d64c03d64
a5f27af9c0c6f37979ebafcac22eb3a613841a3d4e728f4577baf94e64d42f35
GET /inner.html HTTP/1.1
Host: m.stripe.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.stripe.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
content-length: 930
last-modified: Thu, 17 Mar 2022 19:03:12 GMT
accept-ranges: bytes
server: Cloudfront
x-content-type-options: nosniff
strict-transport-security: max-age=31556926; includeSubDomains; preload
content-security-policy: base-uri 'none'; connect-src https://m.stripe.network https://m.stripe.com; default-src 'none'; font-src https://m.stripe.network https://fonts.gstatic.com; form-action 'none'; frame-src https://m.stripe.network https://js.stripe.com; img-src https://m.stripe.network https://m.stripe.com https://b.stripecdn.com; script-src https://m.stripe.network 'sha256-e/Jqu4k9Gk1ZCWO6StAsfhF3i7qgIwfuitaD1g9DyvE='; style-src https://m.stripe.network; report-uri https://q.stripe.com/csp-report
date: Sat, 25 Mar 2023 13:29:31 GMT
cache-control: max-age=300, public
etag: "fc2e029628f163bb59adc6fa5a31161c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Civ5_MOsk8lQGTHWE0dXMJZKOoqhze20DnaQntkwOr-9IxqsdMLmOw==
age: 29
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=725809034205081&ev=ViewContent&dl=https%3A%2F%2Fwww.hostelworld.com%2F%3Fsource%3Daffiliate-PHG-1011l9s5L%26affiliate%3DPHG%26ref_id%3D1100lwDmf2DF&rl=&if=false&ts=1679751012469&cd[siteLang]=en&cd[ipCountry]=undefined&cd[pageName]=homepage&cd[searchCurrency]=NOK&cd[refSource]=affiliate-PHG-1011l9s5L&cd[affiliateId]=undefined&cd[referrer]=hostelworld.com&sw=1280&sh=1024&v=2.9.100&r=stable&ec=0&o=30&fbp=fb.1.1679751012468.513084166&it=1679751012280&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=725809034205081&ev=ViewContent&dl=https%3A%2F%2Fwww.hostelworld.com%2F%3Fsource%3Daffiliate-PHG-1011l9s5L%26affiliate%3DPHG%26ref_id%3D1100lwDmf2DF&rl=&if=false&ts=1679751012469&cd[siteLang]=en&cd[ipCountry]=undefined&cd[pageName]=homepage&cd[searchCurrency]=NOK&cd[refSource]=affiliate-PHG-1011l9s5L&cd[affiliateId]=undefined&cd[referrer]=hostelworld.com&sw=1280&sh=1024&v=2.9.100&r=stable&ec=0&o=30&fbp=fb.1.1679751012468.513084166&it=1679751012280&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=725809034205081&ev=ViewContent&dl=https%3A%2F%2Fwww.hostelworld.com%2F%3Fsource%3Daffiliate-PHG-1011l9s5L%26affiliate%3DPHG%26ref_id%3D1100lwDmf2DF&rl=&if=false&ts=1679751012469&cd[siteLang]=en&cd[ipCountry]=undefined&cd[pageName]=homepage&cd[searchCurrency]=NOK&cd[refSource]=affiliate-PHG-1011l9s5L&cd[affiliateId]=undefined&cd[referrer]=hostelworld.com&sw=1280&sh=1024&v=2.9.100&r=stable&ec=0&o=30&fbp=fb.1.1679751012468.513084166&it=1679751012280&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 25 Mar 2023 13:29:59 GMT
X-Firefox-Spdy: h2
m.stripe.network/out-4.5.42.js
54.230.111.85200 OK 16 kB URL HTTP/2 m.stripe.network/out-4.5.42.js
IP 54.230.111.85:0
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Hash 91189d2f9770cc55af350b62698f6c0d
7fac97c5e34fca4591d9ced21164795364e78d59
39b8759b0be4ddf99be420944ffbbc727243525e665544ccce69a1a9d527f15e
GET /out-4.5.42.js HTTP/1.1
Host: m.stripe.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.stripe.network/inner.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
last-modified: Thu, 17 Mar 2022 19:03:12 GMT
server: Cloudfront
x-content-type-options: nosniff
strict-transport-security: max-age=31556926; includeSubDomains; preload
content-encoding: gzip
date: Sat, 25 Mar 2023 13:27:39 GMT
cache-control: max-age=300, public
etag: W/"21df7244385e5c0bdf32da01d0dad6c0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: iLbdlCcBbXPJBy68V1KACN3-uL4jU15ipazoaYlChK-T1wxqD50zkg==
age: 153
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-017XQ4637F>m=45je33m0&_p=748836418&cid=274588234.1679751012&ul=en-us&sr=1280x1024&_s=2&uid=0&sid=1679751012&sct=1&seg=1&dl=https%3A%2F%2Fwww.hostelworld.com%2F%3Fsource%3Daffiliate-PHG-1011l9s5L%26affiliate%3DPHG%26ref_id%3D1100lwDmf2DF&dt=Hostelworld%20-%20Explore%20the%20world%E2%80%99s%20best%20hostels&en=page_view&_c=1&_et=3&up.search_currency=NOK&up.site_language=en&up.user_status=logged%20out
216.239.34.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-017XQ4637F>m=45je33m0&_p=748836418&cid=274588234.1679751012&ul=en-us&sr=1280x1024&_s=2&uid=0&sid=1679751012&sct=1&seg=1&dl=https%3A%2F%2Fwww.hostelworld.com%2F%3Fsource%3Daffiliate-PHG-1011l9s5L%26affiliate%3DPHG%26ref_id%3D1100lwDmf2DF&dt=Hostelworld%20-%20Explore%20the%20world%E2%80%99s%20best%20hostels&en=page_view&_c=1&_et=3&up.search_currency=NOK&up.site_language=en&up.user_status=logged%20out
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-017XQ4637F>m=45je33m0&_p=748836418&cid=274588234.1679751012&ul=en-us&sr=1280x1024&_s=2&uid=0&sid=1679751012&sct=1&seg=1&dl=https%3A%2F%2Fwww.hostelworld.com%2F%3Fsource%3Daffiliate-PHG-1011l9s5L%26affiliate%3DPHG%26ref_id%3D1100lwDmf2DF&dt=Hostelworld%20-%20Explore%20the%20world%E2%80%99s%20best%20hostels&en=page_view&_c=1&_et=3&up.search_currency=NOK&up.site_language=en&up.user_status=logged%20out HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hostelworld.com
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.hostelworld.com
date: Sat, 25 Mar 2023 13:29:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 99829b089683ab93bb9cf96108a4eba6
215ddeb6afc364f79b59d01171d4277706d23f12
67da96ef9dd8b84fc6410b2327f702d32d82aaf92aade6253dd8cb8013f0e2a6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4909
Cache-Control: max-age=118010
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 13:29:59 GMT
Etag: "641e0e24-1d7"
Expires: Sun, 26 Mar 2023 22:16:49 GMT
Last-Modified: Fri, 24 Mar 2023 20:55:00 GMT
Server: ECAcc (ska/F776)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9293bc7fc8067eedf2de31fe1018cd77
d302bf8839340cce1eef2479596fd83b802a4c4f
7e4d5234105904d44f3a003a162314e337bd4389a32ddca41d8a8c1c173589d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 13:29:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
storage.googleapis.com/workbox-cdn/releases/3.6.3/workbox-precaching.prod.js
142.250.74.48200 OK 2.2 kB URL HTTP/2 storage.googleapis.com/workbox-cdn/releases/3.6.3/workbox-precaching.prod.js
IP 142.250.74.48:0
File type ASCII text, with very long lines (5748)
Hash 103b619afe6a67ccc8b1165aa3072174
023fee806ca84390d05c567dd2fbfa4b3583ca26
2a9c952d3186aa991e0ec567f15bdd3773c8571376ae85dc4be9f9d1fad6f6c0
GET /workbox-cdn/releases/3.6.3/workbox-precaching.prod.js HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-guploader-uploadid: ADPycdv1jniumYnvDZfzr7BrpMs7gncGQFOeQGsNCZCX5lq7Ict4I3uiRdWWH13hqfVXDuvFmlooB557h9bq_FeTtzCp1ZVI1Yxo
x-goog-generation: 1540216597434065
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 2238
content-encoding: gzip
x-goog-hash: crc32c=/m5nCg==, md5=EDthmv5qZ8zIsRZaowchdA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 2238
access-control-allow-origin: *
server: UploadServer
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
date: Sat, 25 Mar 2023 12:57:18 GMT
expires: Sun, 24 Mar 2024 12:57:18 GMT
cache-control: public, max-age=31536000
age: 1961
last-modified: Mon, 22 Oct 2018 13:56:37 GMT
etag: "103b619afe6a67ccc8b1165aa3072174"
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9293bc7fc8067eedf2de31fe1018cd77
d302bf8839340cce1eef2479596fd83b802a4c4f
7e4d5234105904d44f3a003a162314e337bd4389a32ddca41d8a8c1c173589d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 13:30:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
m.stripe.com/6
44.233.214.12200 OK 156 B IP 44.233.214.12:0
File type JSON data\012- , ASCII text, with no line terminators
Hash db41d6e18dce0c0af772fa3cee1fe9f4
a5fe52baf17bc3d3dd7ac634d31111494c3d6416
19a7923762818a6a968ea94eebf9764986b7d9fb13b2b6ea8d4204bbf290b34a
POST /6 HTTP/1.1
Host: m.stripe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2676
Origin: https://m.stripe.network
Connection: keep-alive
Referer: https://m.stripe.network/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 25 Mar 2023 13:30:00 GMT
content-length: 156
set-cookie: m=da314897-c870-45bd-adfd-96852eefe39ef6f771;Expires=Mon, 24-Mar-2025 13:30:00 GMT;Secure;HttpOnly; SameSite=None
x-content-type-options: nosniff
x-stripe-server-envoy-start-time-us: 1679751000213776
x-stripe-bg-intended-route-color: green
x-stripe-client-envoy-start-time-us: 1679751000213290
access-control-allow-origin: https://m.stripe.network
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
strict-transport-security: max-age=31556926; includeSubDomains; preload
content-type: application/json;charset=utf-8
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdaf1038f-e1d8-41a0-a039-85a85d278271.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdaf1038f-e1d8-41a0-a039-85a85d278271.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 02e0767e0c72d95e30337ad42f5d15b3
79aa21ca35c9d98ea7d0713d219e9b67083bdc05
7991a0c4d409cca49259cb626d0de39684635f14fad72e074b303235026673a9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdaf1038f-e1d8-41a0-a039-85a85d278271.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6511
x-amzn-requestid: 38d33f4d-2b85-4666-b778-04f4b4dfdf10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTihSFIdIAMFRjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e17a1-036a28e75189d05209396933;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:35:29 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: eYAgUDZFGkaskq0A77VgX54hvvjtQtClrFyED3COkankS76uD7hTAQ==
via: 1.1 53ee82a7eb57de316cba44c26680b4a6.cloudfront.net (CloudFront), 1.1 1ec2938341958d70d56193d709c89dee.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:40:28 GMT
age: 56973
etag: "79aa21ca35c9d98ea7d0713d219e9b67083bdc05"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
icd.hwstatic.com/static/images/4.19.0.0/tagline.svg
163.171.134.109200 OK 0 B URL HTTP/2 icd.hwstatic.com/static/images/4.19.0.0/tagline.svg
IP 163.171.134.109:0
ASN #54994 QUANTILNETWORKS
GET /static/images/4.19.0.0/tagline.svg HTTP/1.1
Host: icd.hwstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 13:29:57 GMT
content-type: image/svg+xml
expires: Thu, 30 Mar 2023 15:31:55 GMT
server: PWS/8.3.1.0.8
last-modified: Wed, 18 Jan 2023 12:39:36 GMT
etag: W/"63c7e888-c2d7"
access-control-allow-origin: *
cache-control: public, max-age=585161
age: 145843
via: 1.1 PSdgflkfFRA1bc200:6 (W), 1.1 PSrdsdgemSTO1sw92:12 (W)
x-px: ht PSrdsdgemSTO1sw92ARN
x-ws-request-id: 641ef755_PS-ARN-016FX94_13659-45123
X-Firefox-Spdy: h2
u.hwstatic.com/hw/hotjar/hotjar.js
35.227.208.201200 OK 0 B URL HTTP/2 u.hwstatic.com/hw/hotjar/hotjar.js
IP 35.227.208.201:0
GET /hw/hotjar/hotjar.js HTTP/1.1
Host: u.hwstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hostelworld.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 25 Mar 2023 13:29:57 GMT
content-type: application/javascript
last-modified: Wed, 08 Jul 2020 11:17:23 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-1198825.js?sv=6
54.230.111.113200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-1198825.js?sv=6
IP 54.230.111.113:0
GET /c/hotjar-1198825.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Sat, 25 Mar 2023 13:29:58 GMT
cache-control: max-age=60
etag: W/f69390e1e0a420cc61e3781445d1956b
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fk0pgxibqYorNX9cCM_xorhM6qd7Tg7AEPCDWS40k2gZtboqnJkRsg==
age: 10
X-Firefox-Spdy: h2
cdn.segment.com/analytics-next/bundles/schemaFilter.bundle.d0fc84c62e956d168cce.js
54.230.219.201200 OK 0 B URL HTTP/2 cdn.segment.com/analytics-next/bundles/schemaFilter.bundle.d0fc84c62e956d168cce.js
IP 54.230.219.201:0
GET /analytics-next/bundles/schemaFilter.bundle.d0fc84c62e956d168cce.js HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 21 Mar 2023 01:34:57 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 16 Mar 2023 12:05:28 GMT
etag: W/"d6985af1d6ad9e8c2f97f24f7b27306e"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000,immutable
x-amz-version-id: H2MYLbMWwUggJb6wT0Gt4D5qB0SBiDaa
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 61u2rhgQ_s_7UqtVtcXSM6VgEuTRpUqLlePnevg_i_madewmjCU5vw==
age: 388503
X-Firefox-Spdy: h2
a.hwstatic.com/image/upload/q_75,h_166/v1644506092/pwa/whosgoing/user-laura.jpg
151.101.194.104200 OK 0 B URL HTTP/2 a.hwstatic.com/image/upload/q_75,h_166/v1644506092/pwa/whosgoing/user-laura.jpg
IP 151.101.194.104:0
GET /image/upload/q_75,h_166/v1644506092/pwa/whosgoing/user-laura.jpg HTTP/1.1
Host: a.hwstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hostelworld.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "8c39c4c5995873acd7945e3990081cfc"
last-modified: Mon, 28 Feb 2022 19:57:22 GMT
date: Sat, 25 Mar 2023 13:29:57 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, max-age=300
server-timing: cld-fastly;dur=1;start=2023-03-25T13:29:57.330Z;desc=hit,rtt;dur=55
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 7822
X-Firefox-Spdy: h2
hit.teratracker.com/?s2=FXRCVoc4e8ddpUNsxDof7bwuePSpY5IxqX3mpjS%2BxmEzAK912pnvCp1yrAWNRYA8JmxTlS9dEfwcAfnUyu7OSSbsHL9ezrUDpg8Eq92t9qZTW2yowLwRQP6ZHY9e8SeAhzp6cUJxro2Tc6XwrJTfk1OYFL35MfieiCP6Xcuy6ym%2B75QlFYG%2Bob9Roi63va%2F6LDtCyjVk4XJu8aThug8N&v=4273090661.6df72f9f.2a8e040d
104.21.75.190302 Found 0 B URL HTTP/2 hit.teratracker.com/?s2=FXRCVoc4e8ddpUNsxDof7bwuePSpY5IxqX3mpjS%2BxmEzAK912pnvCp1yrAWNRYA8JmxTlS9dEfwcAfnUyu7OSSbsHL9ezrUDpg8Eq92t9qZTW2yowLwRQP6ZHY9e8SeAhzp6cUJxro2Tc6XwrJTfk1OYFL35MfieiCP6Xcuy6ym%2B75QlFYG%2Bob9Roi63va%2F6LDtCyjVk4XJu8aThug8N&v=4273090661.6df72f9f.2a8e040d
IP 104.21.75.190:0
GET /?s2=FXRCVoc4e8ddpUNsxDof7bwuePSpY5IxqX3mpjS%2BxmEzAK912pnvCp1yrAWNRYA8JmxTlS9dEfwcAfnUyu7OSSbsHL9ezrUDpg8Eq92t9qZTW2yowLwRQP6ZHY9e8SeAhzp6cUJxro2Tc6XwrJTfk1OYFL35MfieiCP6Xcuy6ym%2B75QlFYG%2Bob9Roi63va%2F6LDtCyjVk4XJu8aThug8N&v=4273090661.6df72f9f.2a8e040d HTTP/1.1
Host: hit.teratracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ishku-wbq.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 25 Mar 2023 13:29:53 GMT
content-type: text/html; charset=UTF-8
location: https://hit.teratracker.com/czuMsQgpQ?x3v=NA6zInzSipnVd%2FsZeBPUHjjAXjmLyP%2Bi7KhRjj2jUyb0%2FAMUxfLp5a3RVeT3XnaWPuWTmNqYOuvScmNq%2FWN8m%2BY4ucVJUqiK4%2Ft1q24R%2B1K0REd%2BH%2FoaXvuT8EZnw97ZI3dQ7aMZDNoNVFr%2FJB7wXrA%2BJqVIcMbmABnDV2zmlon5Y%2FJYHfSekJ2eTsnUulXPins%3D&sk=6e4bdfb4ed7bfb323cc2a62761743878
access-control-allow-origin: *
referrer-policy: no-referrer
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rmjfgJGPICwfS%2F02ZgqQzfvzNyc8YxO8yA1dyF8Z8HIFS3iC2%2F%2FPfuLxUCPu6guKEN2QkDIveeMpjrZD52qs3zlI7Pkx6QhNQuDNsUdTpR3vZY9k94TKcx2f7ySC0G%2BWSx3zy8Aj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ad7815bd800b52d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.segment.com/v1/projects/O8GVk6R7tM0240DGMt8PReIzBiqHxIf3/settings
54.230.219.201200 OK 0 B URL HTTP/2 cdn.segment.com/v1/projects/O8GVk6R7tM0240DGMt8PReIzBiqHxIf3/settings
IP 54.230.219.201:0
GET /v1/projects/O8GVk6R7tM0240DGMt8PReIzBiqHxIf3/settings HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hostelworld.com/
Origin: https://www.hostelworld.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 16 Mar 2023 16:42:47 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: jxUQD80mWPRp_28WOFxG5Hu3UUrslVBM
server: AmazonS3
content-encoding: br
date: Sat, 25 Mar 2023 11:06:46 GMT
cache-control: public, max-age=10800
etag: W/"b50edc69805c55433919219ce4252b51"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5QN5DRb86qzPE1UoYbuwTjno59CfCH2mwhwvoKRCu-KtQEnbE7XJtA==
age: 8592
X-Firefox-Spdy: h2