www.justfly.com/checkout/billing/flight/60b1fc5657644dc06c86b6b0e0e9b511/3fef5c433486b0f17aba49ab76f08400
104.18.12.48301 Moved Permanently 0 B URL HTTP/1.1 www.justfly.com/checkout/billing/flight/60b1fc5657644dc06c86b6b0e0e9b511/3fef5c433486b0f17aba49ab76f08400
IP 104.18.12.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /checkout/billing/flight/60b1fc5657644dc06c86b6b0e0e9b511/3fef5c433486b0f17aba49ab76f08400 HTTP/1.1
Host: www.justfly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 01 Feb 2023 19:05:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 01 Feb 2023 20:05:30 GMT
Location: https://www.justfly.com/checkout/billing/flight/60b1fc5657644dc06c86b6b0e0e9b511/3fef5c433486b0f17aba49ab76f08400
Set-Cookie: __cf_bm=g5PZaXXCw.fJxvSSaAzX4d2hB938UWhWxI4Tt2ZpWnY-1675278330-0-ATo0pug9hPthPC5a/aM7LlXECeoT7JD5hEWKwpAygK8JrEbH4OAdRGuU4n4XrqVLqL3aB9akV9bRcBUqcHnfIxU=; path=/; expires=Wed, 01-Feb-23 19:35:30 GMT; domain=.justfly.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=7.9999999798019e-06
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792cf57be8e8b506-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7e05c8461bd2dc5a149f71e2c465ea29
705983959c887e243cb55a8a1796757b579ee977
4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2707
Expires: Wed, 01 Feb 2023 19:50:37 GMT
Date: Wed, 01 Feb 2023 19:05:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9399
Expires: Wed, 01 Feb 2023 21:42:09 GMT
Date: Wed, 01 Feb 2023 19:05:30 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 01 Feb 2023 18:43:25 GMT
content-type: application/json
age: 1325
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a8d45deaa7ebfcd996c2055dae592ab8
55befe074589fe7b39757c145968058162a8fc6b
50d7d516f446458145a304b288a0a39d391cd37ea50dabea36ae48d291c65ba7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50D7D516F446458145A304B288A0A39D391CD37EA50DABEA36AE48D291C65BA7"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14224
Expires: Wed, 01 Feb 2023 23:02:34 GMT
Date: Wed, 01 Feb 2023 19:05:30 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: a59zdCnNY3lG8z+A/ZPNz6+fGaTwm0WhuOibNtpWnUsjQMkFE7E3+NE1xiNsc0uBJ2N25AI6Ls8=
x-amz-request-id: 8SN1A3FNC1FYRHH8
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 01 Feb 2023 18:51:40 GMT
age: 830
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 19:05:30 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash dd201f98ea70458ab0d1ec9e8bbcec64
56eed55a5b86934566a245b4c4fba1cf4facf231
3d1859dff6e0d7f6a0d31ab2d48953d6c6daf83914e14a18d33a2890a2667bac
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:05:30 GMT
Server: ECS (amb/6B85)
Content-Length: 279
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 01 Feb 2023 18:41:42 GMT
age: 1428
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7351
Expires: Wed, 01 Feb 2023 21:08:02 GMT
Date: Wed, 01 Feb 2023 19:05:31 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash dd201f98ea70458ab0d1ec9e8bbcec64
56eed55a5b86934566a245b4c4fba1cf4facf231
3d1859dff6e0d7f6a0d31ab2d48953d6c6daf83914e14a18d33a2890a2667bac
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:05:31 GMT
Last-Modified: Wed, 01 Feb 2023 19:05:30 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 279
push.services.mozilla.com/
52.10.3.114101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.10.3.114:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: oGA2JpdoxUC3M4RIj676hA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Hm83KFyW4SQ6GUKtK6QQdBsaQRU=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:05:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash d953f6b987a024c751ce57f670d3e148
7b44751d0faef3cb82a7bc6f210929523156aecf
0a7ba2e158fa00edbba9c774ed067bafd94d73ed61d3de4ea91907e2afce168e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6244
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:05:31 GMT
Last-Modified: Wed, 01 Feb 2023 17:21:27 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:05:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:05:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:05:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.jsdelivr.net/npm/promise-polyfill@8/dist/polyfill.min.js
151.101.65.229200 OK 1.5 kB URL HTTP/2 cdn.jsdelivr.net/npm/promise-polyfill@8/dist/polyfill.min.js
IP 151.101.65.229:0
File type ASCII text, with very long lines (4401)
Hash 2258853e671eb1516c5221956b7371ba
1e81b47b0688283aa5ad36332a5d4325ace498ad
2179d3e046e50bd1043efbe559e6ce6be14e1537caa7ed4a64a863eb543cf2c1
GET /npm/promise-polyfill@8/dist/polyfill.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 8.3.0
x-jsd-version-type: version
etag: W/"1132-XysC4a2Vt+mONL0o6U+bsaeRjIc"
content-encoding: gzip
accept-ranges: bytes
date: Wed, 01 Feb 2023 19:05:31 GMT
age: 12467
x-served-by: cache-fra-eddf8230082-FRA, cache-bma1639-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1519
X-Firefox-Spdy: h2
cdn.trackjs.com/agent/v3/latest/t.js
151.139.128.10200 OK 9.3 kB URL HTTP/2 cdn.trackjs.com/agent/v3/latest/t.js
IP 151.139.128.10:0
File type ASCII text, with very long lines (555), with CRLF, LF line terminators
Hash 7dd045b1b53f6e8172c47add0fce71e8
6ad133753d476a50a6c516fe844ccaaf5ac077aa
959fc5d7ad42de724c1bf20dbcb182032c2cf98988c42f476b22102f9a551d29
GET /agent/v3/latest/t.js HTTP/1.1
Host: cdn.trackjs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.justfly.com
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 19:05:31 GMT
content-encoding: gzip
content-length: 9283
content-type: application/javascript
last-modified: Thu, 05 Aug 2021 14:40:38 GMT
accept-ranges: bytes
x-amz-id-2: DquxtNZqMPT7VneA1O1NIRLv9t01yR1n3kMrM+jfcFaPrzwtq1qb3UdLMkqOFo+cnBNO4U65axM=
x-amz-request-id: G3NS9Q09KRBTJ4M3
etag: "48ead32171e554edb2744890102504b0"
x-amz-meta-cache-control: s-max-age=3600, max-age=604800, public
cache-control: s-max-age=3600, max-age=604800, public
x-amz-meta-content-type: application/javascript
server: AmazonS3
x-hw: 1675278331.cds221.sk1.hn,1675278331.cds262.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=DC-8188096
216.58.207.200200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=DC-8188096
IP 216.58.207.200:0
File type ASCII text, with very long lines (1759)
Hash a5587b26acec7149c430e55c40f59fc0
f9599bceabba8f7643f580cc6a15e9c542847660
547afd2d2a8f391547f5a79d2fa591d81f5b996e2999cbaa373c418359f34ce0
GET /gtag/js?id=DC-8188096 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 01 Feb 2023 19:05:31 GMT
expires: Wed, 01 Feb 2023 19:05:31 GMT
cache-control: private, max-age=900
last-modified: Wed, 01 Feb 2023 18:19:05 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44143
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googleoptimize.com/optimize.js?id=GTM-T522DB3
142.250.74.78200 OK 46 kB URL HTTP/2 www.googleoptimize.com/optimize.js?id=GTM-T522DB3
IP 142.250.74.78:0
File type ASCII text, with very long lines (1813)
Hash 19930cb3244204c176d1646d4caf71c2
9c0c1e339b5df8394c33cc9da52d99fa9b9b6a11
9cedbbfcb0a358f852ba072884f1f1e4c63e8e57fdd9eda146b2fc97ad513fea
GET /optimize.js?id=GTM-T522DB3 HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 01 Feb 2023 19:05:31 GMT
expires: Wed, 01 Feb 2023 19:05:31 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 45777
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP 104.18.21.226:0
Hash 99c24f3f035908be16ba0f36c3054800
abd42a1b2c55ea08070a513b364d474a4b543435
efa7a2626cdffa16ea145b32fe88b71617dbb97ba74fbbf4d64e05ae44fa7fc1
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 19:05:31 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "890A726C6F93BB39385D5D2FE921AE8C73D6B458"
Expires: Thu, 02 Feb 2023 06:00:00 GMT
Last-Modified: Wed, 01 Feb 2023 18:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 483
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792cf5853c7efac0-OSL
static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
104.16.57.101200 OK 6.6 kB URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
IP 104.16.57.101:0
Hash b72d0af625e4d518269d19e1316c8d47
d974b166c37150a19123e0c6c8720aae3db7a064
18141a97dbd2a3a52fc90c207aa750a3c60c9bc84f2f573f61277c78bd9f7b89
GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.justfly.com
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 19:05:31 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2022.10.1
last-modified: Fri, 21 Oct 2022 01:56:09 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 792cf584eb9db50f-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:05:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:05:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 67 kB IP 142.250.74.131:0
Hash 789c5c26f47af1165956ed7dc7537890
d2a4f312c76fb2f748faa46564d19296af8d10e2
7ab6891cdd5285eb369095024cc4081fd811ca3af5470d4716a2b2f0a0f4ec20
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:05:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?render=6LfuMdIZAAAAADUeNxI3_XJFJiVkMC6_MvVnJjWn
216.58.207.228200 OK 586 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LfuMdIZAAAAADUeNxI3_XJFJiVkMC6_MvVnJjWn
IP 216.58.207.228:0
File type ASCII text, with very long lines (884), with no line terminators
Hash 27536f982d7fa857ad9abd2f651d50f4
f1ed30ac49abafe094bbcb2b59bad28074b973e8
22cb6a99959981928104e85dc41fc2b0d0cadf2343c5650d0f4283a4af74b17a
GET /recaptcha/api.js?render=6LfuMdIZAAAAADUeNxI3_XJFJiVkMC6_MvVnJjWn HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Wed, 01 Feb 2023 19:05:31 GMT
date: Wed, 01 Feb 2023 19:05:31 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 586
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:05:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
init.blackcrow.ai/js/core/justfly.js
54.230.111.43200 OK 42 kB URL HTTP/2 init.blackcrow.ai/js/core/justfly.js
IP 54.230.111.43:0
Hash 52bcc608cca533a51e41e5370773739d
d036ed4686dcaa45b68c046e04c083fac21e1386
b067729ad352dfa67ec59adb99d05b7751d0868c7973910603fdcf1cbde2b527
GET /js/core/justfly.js HTTP/1.1
Host: init.blackcrow.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 41277
date: Wed, 01 Feb 2023 19:04:06 GMT
last-modified: Wed, 01 Feb 2023 19:03:27 GMT
etag: "bb7cb4347992d373ffec283409ba77a0"
cache-control: max-age=600
content-encoding: gzip
x-amz-version-id: LN8jwzHQes0FcJhzlvpmjp2zMfzh0pgF
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: suHnIuRF46u8ycCHhdIgU1BlIf785XAnjH8_fEM7O_2WDt0cG_BfQg==
age: 86
x-robots-tag: noindex
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:05:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:05:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:05:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2
216.58.207.227200 OK 69 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2
IP 216.58.207.227:0
File type Sun disk label 'SQ=\024Ee\257\207\250"=i\275x\225}\235\256\204\023\011;\333\244\212\253\266\3007\332]\253?*\353/{-\235\340\362\030A'%\262D*BaA\2039\235\347|\234\371\376\262\177\376\277~s\207\263\316\331+\235\356B\021\366\276\223 "\255\020$\302\033\231\253\214m\210\241W\373\377\357\373\257~\215Q\341\027\251\337\316\204\306\2456nO\201\224\332\373\310\372l\231\035\334w\357D*BaA\2039\235\347|\234\371\376\262\177\376\277~s\207\263\316\331+\235\356B\021\366\276\223 "\255\020$\302\033\231\253\214m\210\241W\373\377\357\373\257~\215Q\341\027\251\337\316\204\306\2456nO\201\224\332\373\310\372l\231\035\334w\357"\255\020$\302\033\231\253\214m\210\241W\373\377\357\373\257~\215Q\341\027\251\337\316\204\306\2456nO\201\224\332\373\310\372l\231\035\334w\357' 6887 alts/cyl, 32041 data cyls, 31582 sectors/track, start cyl 1044619549, 829614795 blocks\012- data
Hash 22e6539f0b9e440ae2ca0812b6e7a515
403ca00544740017668f274e1ea5ce768db3dbeb
e6315e14070bbbc0c51d57f44f8b35bec06118b8b43ec2e0d9b33f46bd81c247
GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.justfly.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 10:05:58 GMT
expires: Fri, 26 Jan 2024 10:05:58 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:02:31 GMT
content-type: font/woff2
age: 550774
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
216.58.207.227200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.justfly.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 10:25:03 GMT
expires: Mon, 29 Jan 2024 10:25:03 GMT
cache-control: public, max-age=31536000
age: 290429
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
216.58.207.227200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 13036, version 1.0\012- data
Hash 0ad032b3d07aaf33b160ac4799dda40f
06b931e0d0bf37f5037d9e66d6feedfddd21c0ba
c124c88ca4fcb4336e97617647ef0d32441329371120c8eabaea0fea226560b0
GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.justfly.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13036
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 15:38:44 GMT
expires: Tue, 30 Jan 2024 15:38:44 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:04:42 GMT
content-type: font/woff2
age: 185208
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3iu4nwlxdu.woff2
216.58.207.227200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3iu4nwlxdu.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 12408, version 1.0\012- data
Hash 6e30c013adbc4eba0b94d5431119ea87
9d2a987240fc5b46a3135e8836ee435c5feff333
080e18a8c761c3d30b7ec08aa65f87109a0228367eafd0a12fcefda58d10e8ad
GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3iu4nwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.justfly.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12408
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 12:48:51 GMT
expires: Mon, 29 Jan 2024 12:48:51 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:54:54 GMT
content-type: font/woff2
age: 281801
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
216.58.207.227200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.justfly.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 04:29:08 GMT
expires: Wed, 31 Jan 2024 04:29:08 GMT
cache-control: public, max-age=31536000
age: 138984
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2
216.58.207.227200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 13052, version 1.0\012- data
Hash 7cf79fbd1df848510d7352274efc2401
5540b5a26cc7dfe25294c4eabe011e2c6cd60143
bc9a16cd945457ad9463cdaed95129b01c589466978dfee3d019d9c604b2171a
GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.justfly.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13052
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 22:02:02 GMT
expires: Mon, 29 Jan 2024 22:02:02 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:09:03 GMT
content-type: font/woff2
age: 248610
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2
216.58.207.227200 OK 22 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 22504, version 1.0\012- data
Hash 1c6c65523675abc6fcd78e804325bd77
898d9808304dc157f5dcb18ca169ec6e2b96b3d7
08664859baab5ed98f0bf818ed77e38464ff1826dc6406d5ecbd651409afbd92
GET /s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.justfly.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22504
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 04:28:49 GMT
expires: Wed, 31 Jan 2024 04:28:49 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 26 Apr 2022 16:04:16 GMT
content-type: font/woff2
age: 139003
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash b12c28b27124a03fc9e96d107b9ea877
f3dd7ba9cb34fadcd15f48ebc6cfac8c4e2c7951
34a029fdd03a68157dbbc63d7f7882b5a712c99b1c02788d285e6eb92d4ff0b0
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=109329
Date: Wed, 01 Feb 2023 19:05:32 GMT
Etag: "63d9aa51-1d7"
Expires: Fri, 03 Feb 2023 01:27:41 GMT
Last-Modified: Tue, 31 Jan 2023 23:54:57 GMT
Server: ECS (nyb/1D08)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: gZ_5a79jDjQ6OTAFOrnqSC-k8986H4-hWC9fsWwlzzChwMWk5vc3OA==
Age: 5564
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:05:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4f2785dc9ec6dd1ce76a854f607a4299
32abc14154bbf8da9eff7cf900dba12071606364
7a0677d05f77778a30cff831469eaccb853285f0bc2b132ad81f7ea3160e757a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7A0677D05F77778A30CFF831469EACCB853285F0BC2B132AD81F7EA3160E757A"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3710
Expires: Wed, 01 Feb 2023 20:07:22 GMT
Date: Wed, 01 Feb 2023 19:05:32 GMT
Connection: keep-alive
use1.fptls.com/
99.83.173.21200 OK 208 B IP 99.83.173.21:0
File type ASCII text, with no line terminators
Hash b588010d8c10a313724a04f8cd37b58b
8d2861151685fb82c1e3580d36a0945f650ecce1
de5be16b7f8fd417d6f8116c06e6cc98c3f633a90636e9140ad4015da11e7fb6
GET / HTTP/1.1
Host: use1.fptls.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.justfly.com
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: max-age=2592000, immutable, private
strict-transport-security: max-age=63072000; includeSubDomains
content-type: text/plain; charset=utf-8
content-length: 208
date: Wed, 01 Feb 2023 19:05:32 GMT
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.46200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Wed, 01 Feb 2023 17:45:20 GMT
expires: Wed, 01 Feb 2023 19:45:20 GMT
cache-control: public, max-age=7200
age: 4812
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d5aa8840f812da83fc823da528a74c1a
9e7bad3462506164bd4bdb87a761352ef8131ba9
abaa07021a967e89f7786ac14efa3ce48f24e4c032376a36421cca12f5ecaeeb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:05:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:05:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bat.bing.com/bat.js
204.79.197.200200 OK 12 kB IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39395), with no line terminators
Hash 4f378a725368a42971cd69e29f75db89
2a1cdf193b346d9281c6e04a9b3775e7fc1ae11e
6a2a9d238501343cb3f25e0f54f4ecc4ec2c4e0fa6b228cc72dc3fff90502078
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11552
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 23 Jan 2023 19:59:24 GMT
accept-ranges: bytes
etag: "076bc30652fd91:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 2F3C947516F54B4EA8EF4861A6DD93EC Ref B: OSL30EDGE0109 Ref C: 2023-02-01T19:05:32Z
date: Wed, 01 Feb 2023 19:05:32 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:05:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/738267730/?random=1675278354799&cv=11&fst=1675278354799&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&auid=1653697021.1675278355&data=event%3Dgtag.config&rfmt=3&fmt=4
216.58.207.194200 OK 910 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/738267730/?random=1675278354799&cv=11&fst=1675278354799&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&auid=1653697021.1675278355&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 216.58.207.194:0
File type ASCII text, with very long lines (1933), with no line terminators
Hash 9c204595ce9c749e0016a15f12683971
9e2f080d4daf44426a3496f00609f145551e9ea5
a7a4d68cbf4f309a09be623a5d99e73d78fd4b76dd1426f15c2cf8a8b084c45b
GET /pagead/viewthroughconversion/738267730/?random=1675278354799&cv=11&fst=1675278354799&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&auid=1653697021.1675278355&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 19:05:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 910
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 01-Feb-2023 19:20:32 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/933623849/?random=1675278354833&cv=11&fst=1675278354833&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&auid=1653697021.1675278355&data=event%3Dgtag.config&rfmt=3&fmt=4
216.58.207.194200 OK 909 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/933623849/?random=1675278354833&cv=11&fst=1675278354833&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&auid=1653697021.1675278355&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 216.58.207.194:0
File type ASCII text, with very long lines (1931), with no line terminators
Hash e3e708affbdd64c6ea5c45099a144eef
f3874d5b53b16813077b702f3c4e60957fd2f7ea
493d42ec4e424d8fb29da3e35018b48044ab5068d9cdab6c2c48982281f61c73
GET /pagead/viewthroughconversion/933623849/?random=1675278354833&cv=11&fst=1675278354833&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&auid=1653697021.1675278355&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 19:05:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 909
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 01-Feb-2023 19:20:32 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/375949003/?random=1675278354918&cv=11&fst=1675278354918&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&auid=1653697021.1675278355&data=event%3Dgtag.config&rfmt=3&fmt=4
216.58.207.194200 OK 908 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/375949003/?random=1675278354918&cv=11&fst=1675278354918&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&auid=1653697021.1675278355&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 216.58.207.194:0
File type ASCII text, with very long lines (1931), with no line terminators
Hash 34829e45f60bda537a52ea86643b6375
93319c25b3dcd9e2cddcfe8c1b2d24c1c84f1997
39d7ee5bd0797049851b1f7a6da59aff9ee80869c7170a34ef52bfb6e5ba6ac1
GET /pagead/viewthroughconversion/375949003/?random=1675278354918&cv=11&fst=1675278354918&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&auid=1653697021.1675278355&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 19:05:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 908
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 01-Feb-2023 19:20:32 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/934980264/?random=1675278354745&cv=11&fst=1675278354745&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&auid=1653697021.1675278355&data=event%3Dgtag.config&rfmt=3&fmt=4
216.58.207.194200 OK 908 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/934980264/?random=1675278354745&cv=11&fst=1675278354745&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&auid=1653697021.1675278355&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 216.58.207.194:0
File type ASCII text, with very long lines (1933), with no line terminators
Hash 6d2ed7b6802919f22f7b800953cb565b
a3ce08616c2b514f39e300f1fb35d8269cfe71a6
e05e8ddffd2858caec6892f3c5e29a2a35caf79c06eea4f791b35cc69ce6fdbb
GET /pagead/viewthroughconversion/934980264/?random=1675278354745&cv=11&fst=1675278354745&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&auid=1653697021.1675278355&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 19:05:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 908
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 01-Feb-2023 19:20:32 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/940656960/?random=1675278354725&cv=11&fst=1675278354725&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&auid=1653697021.1675278355&data=event%3Dgtag.config&rfmt=3&fmt=4
216.58.207.194200 OK 909 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/940656960/?random=1675278354725&cv=11&fst=1675278354725&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&auid=1653697021.1675278355&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 216.58.207.194:0
File type ASCII text, with very long lines (1933), with no line terminators
Hash 1480f16e61fc0fecf5e02bc684e68a60
8f765f38b39c089ab38ffab40e2fe0c838363462
ab9974ebc5360cea340dec13161671864362512cbbab77c94f5db2e6a5a5134a
GET /pagead/viewthroughconversion/940656960/?random=1675278354725&cv=11&fst=1675278354725&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&auid=1653697021.1675278355&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 19:05:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 909
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 01-Feb-2023 19:20:32 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/950915506/?random=1675278354761&cv=11&fst=1675278354761&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&auid=1653697021.1675278355&data=event%3Dgtag.config&rfmt=3&fmt=4
216.58.207.194200 OK 908 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/950915506/?random=1675278354761&cv=11&fst=1675278354761&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&auid=1653697021.1675278355&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 216.58.207.194:0
File type ASCII text, with very long lines (1933), with no line terminators
Hash 89df223864f877329c53c6cd82f4fc5e
819ee57384777ffd1060e6e9e9c87bce61adac20
3f5081e378641f25dab5e0354bdb458ff91a7a89db814d91be7efc3a653b9cd0
GET /pagead/viewthroughconversion/950915506/?random=1675278354761&cv=11&fst=1675278354761&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&auid=1653697021.1675278355&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 19:05:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 908
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 01-Feb-2023 19:20:32 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.clicktripz.com/tag.js
54.230.111.36200 OK 4.5 kB URL HTTP/2 static.clicktripz.com/tag.js
IP 54.230.111.36:0
Hash 9f39c6e36d178c204a81a7e4e48377f8
39dbdbbb987b41b726b0eb1008a9d421629a72d6
2cf3c74a4332611dce5d8051238ffe513dd821b0dfec9dd4813cd496deefec24
GET /tag.js HTTP/1.1
Host: static.clicktripz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: false
access-control-allow-methods: GET
access-control-allow-headers: Accept, Content-Type
cache-control: max-age=86400
expires: Thu, 02 Feb 2023 15:21:48 GMT
x-ctz-is-mdeps: false
x-ctz-tag-id: 0.0.6
content-encoding: gzip
date: Wed, 01 Feb 2023 15:21:48 GMT
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ktgeaiq_up8QgGrZ-T6vtXZLeVjOH77JXMBNZ8SEunUIijleFBlJJQ==
age: 13424
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:05:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bae868356becb6470806e213f97e8aa6
1a3c7ffdce0f4e9c1f59aa0cd7715f22bade5117
c9930f2471f9a8a87fddfe3989391d65e1c41b3457a3f0fbf2e2357566f81a1b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3303
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:05:32 GMT
Last-Modified: Wed, 01 Feb 2023 18:10:29 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/plugins/ua/ecommerce.js
142.250.74.46200 OK 738 B URL HTTP/2 www.google-analytics.com/plugins/ua/ecommerce.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (745)
Hash f804aa0b574b678d24df5281ed71a61d
2fc02211b273e1ab4d362df05d592f2d822c2add
1d2d8c7f3502f4459478fe8c7495a27464d6f178b1d564333a107d310c0ea74d
GET /plugins/ua/ecommerce.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 738
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 18:26:57 GMT
expires: Wed, 01 Feb 2023 19:26:57 GMT
cache-control: public, max-age=3600
age: 2315
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2950
Expires: Wed, 01 Feb 2023 19:54:42 GMT
Date: Wed, 01 Feb 2023 19:05:32 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bae868356becb6470806e213f97e8aa6
1a3c7ffdce0f4e9c1f59aa0cd7715f22bade5117
c9930f2471f9a8a87fddfe3989391d65e1c41b3457a3f0fbf2e2357566f81a1b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3303
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:05:32 GMT
Last-Modified: Wed, 01 Feb 2023 18:10:29 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
www.googleadservices.com/pagead/conversion_async.js
142.250.74.66200 OK 15 kB URL HTTP/2 www.googleadservices.com/pagead/conversion_async.js
IP 142.250.74.66:0
File type ASCII text, with very long lines (1654)
Hash 22eaa6491556c40c984bed61ff9892b5
253ec7921f896fab2d49656208b10d2a227c82de
f690af44bc7bb9724442c2f52648ce1c8365cc6010cc0af574f5e0dcddf7ee7f
GET /pagead/conversion_async.js HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Wed, 01 Feb 2023 19:05:32 GMT
expires: Wed, 01 Feb 2023 19:05:32 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 8608601048380966470
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 15164
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/gtm/js?id=GTM-T522DB3&cid=515210591.1675278355&gac=_gaexp%3DGAX1.2.QpHEzcwOT02zsFAKf0AWKw.19418.0
142.250.74.46200 OK 47 kB URL HTTP/2 www.google-analytics.com/gtm/js?id=GTM-T522DB3&cid=515210591.1675278355&gac=_gaexp%3DGAX1.2.QpHEzcwOT02zsFAKf0AWKw.19418.0
IP 142.250.74.46:0
File type ASCII text, with very long lines (1813)
Hash 974a5a526dac8c72d5c23d9bbfe9239b
0eca17b7301886c72fc582e4d85a9fe69983f0c0
83a5345c5fd619727052f6971f1545df247af548447aa18c115e33be9c2a8788
GET /gtm/js?id=GTM-T522DB3&cid=515210591.1675278355&gac=_gaexp%3DGAX1.2.QpHEzcwOT02zsFAKf0AWKw.19418.0 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 01 Feb 2023 19:05:32 GMT
expires: Wed, 01 Feb 2023 19:05:32 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46795
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/731884843/?random=1675278354819&cv=11&fst=1675278354819&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&auid=1653697021.1675278355&data=event%3Dgtag.config&rfmt=3&fmt=4
216.58.207.194200 OK 909 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/731884843/?random=1675278354819&cv=11&fst=1675278354819&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&auid=1653697021.1675278355&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 216.58.207.194:0
File type ASCII text, with very long lines (1933), with no line terminators
Hash fee136cee94875133eb66afc6ffb4a3e
62ed5350c03e9b9af56526dcfdf46d0f40232672
47321bf2c5d51ac025fc489ed91d0edd927c7ffbf84c6fe1698e9832e40962c8
GET /pagead/viewthroughconversion/731884843/?random=1675278354819&cv=11&fst=1675278354819&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&auid=1653697021.1675278355&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 19:05:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 909
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 01-Feb-2023 19:20:32 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
accounts.google.com/gsi/client
142.250.74.109200 OK 77 kB URL HTTP/2 accounts.google.com/gsi/client
IP 142.250.74.109:0
Hash efd617f64f4d127e80b0ffdfc0a6046d
855f1f00d548bf1a4b09328d4435dce35bebdddd
a6cb7da4dc71de535902842b3305b4bdbdfc7a154563c86a6e7610e9e6617ee1
GET /gsi/client HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
expires: Wed, 01 Feb 2023 19:05:32 GMT
date: Wed, 01 Feb 2023 19:05:32 GMT
cache-control: private, max-age=1800
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
content-security-policy: script-src 'nonce-HQBI2Rtu9_rjakbPi82ALg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.205.11200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.205.11:0
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src * data: blob: 'self';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: ZmLQQK8hpJQIXOc/hMpHTykvWQmUXENhO6VecA/VGn9L3nHj0SvbiJ7F9NR2nJSbmQaBvuMrZHq+EuDoxoiBYw==
content-length: 27843
x-fb-trip-id: 1679558926
date: Wed, 01 Feb 2023 19:05:32 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=5090020&Ver=2&mid=1b8ceef8-aba9-4b86-bf9e-fe5c1a39c8af&sid=743f1100a26311edbc51a95e8f90fb68&vid=743f40f0a26311edb5984f14482a12dd&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Cheap%20Flights,%20Airline%20tickets%20and%20Hotels%20-%20JustFly&p=https%3A%2F%2Fwww.justfly.com%2F&r=<=2151&evt=pageLoad&sv=1&rn=563968
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=5090020&Ver=2&mid=1b8ceef8-aba9-4b86-bf9e-fe5c1a39c8af&sid=743f1100a26311edbc51a95e8f90fb68&vid=743f40f0a26311edb5984f14482a12dd&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Cheap%20Flights,%20Airline%20tickets%20and%20Hotels%20-%20JustFly&p=https%3A%2F%2Fwww.justfly.com%2F&r=<=2151&evt=pageLoad&sv=1&rn=563968
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=5090020&Ver=2&mid=1b8ceef8-aba9-4b86-bf9e-fe5c1a39c8af&sid=743f1100a26311edbc51a95e8f90fb68&vid=743f40f0a26311edb5984f14482a12dd&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Cheap%20Flights,%20Airline%20tickets%20and%20Hotels%20-%20JustFly&p=https%3A%2F%2Fwww.justfly.com%2F&r=<=2151&evt=pageLoad&sv=1&rn=563968 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=2A51DBA18CF0687D3875C90A8D05693F; domain=.bing.com; expires=Mon, 26-Feb-2024 19:05:32 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: EA06597F3780461CBB04455DF0AA21F6 Ref B: OSL30EDGE0109 Ref C: 2023-02-01T19:05:32Z
date: Wed, 01 Feb 2023 19:05:32 GMT
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/375949003/?random=1675278354785&cv=11&fst=1675278354785&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&auid=1653697021.1675278355&data=event%3Dgtag.config&rfmt=3&fmt=4
216.58.207.194200 OK 909 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/375949003/?random=1675278354785&cv=11&fst=1675278354785&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&auid=1653697021.1675278355&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 216.58.207.194:0
File type ASCII text, with very long lines (1933), with no line terminators
Hash c287b10ae861d32b909f1bdb94d00e15
a0b6b7b1c39ca237100546c532cddd3014a9dbe6
9b82e74c336e6e720fcb7c84ac0a1466adcd182ae1d3cb9ac0dead2f6451f076
GET /pagead/viewthroughconversion/375949003/?random=1675278354785&cv=11&fst=1675278354785&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&auid=1653697021.1675278355&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 19:05:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 909
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 01-Feb-2023 19:20:32 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
connect.facebook.net/en_US/sdk.js
157.240.205.11200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js
IP 157.240.205.11:0
File type ASCII text, with very long lines (1957)
Hash 2aa984a27933ebfae024459fa9155d8b
78c793661d8268b3d5b53a53b5ea83e08b65b194
52290fc8d93059002e2d3020de34e7d7ee39acbf34f1b986a77950e3a05883ad
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: b853e07239ddc490c053208d633ad85e
etag: "8ac24ad201f070a464f85bde3ea67c21"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Wed, 01 Feb 2023 19:15:12 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: KqmEonkz6/rgJEWfqRVdiw==
x-fb-debug: fV0xk0jpp1vvpOJJc3flU0/sacMiI/LPnsU/KKb0FhOU6gFMys/PaOuOOwr69tNIML/+EGPDFdJ+j5IolIg2eQ==
content-length: 1687
x-fb-trip-id: 1679558926
date: Wed, 01 Feb 2023 19:05:32 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb36bfce9-5d67-458e-846d-ca30f9242449.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb36bfce9-5d67-458e-846d-ca30f9242449.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 78fe9a77211d6f9a462f625af0c6f9bc
ac0b58423d7578e7a1b60a62220c0a57924dda82
e047466c3ae0a55509f4ace49d0476f94271b5a25e71caa3b06ec468a238b652
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb36bfce9-5d67-458e-846d-ca30f9242449.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14041
x-amzn-requestid: 2be6655d-3b0e-4e65-b44b-11682610b640
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaRGFpIAMFbMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-5554d18d5db235913afa77a2;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Km0BBaLEp1c0ILsoxXxRrZSDz4DlkTzb3PZVawZIaEqhf6GILtNdcw==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 06:36:17 GMT
age: 44955
etag: "ac0b58423d7578e7a1b60a62220c0a57924dda82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=17219201&Ver=2&mid=0125c7ee-2044-4fc8-b96e-22da44ae6b3c&sid=743f1100a26311edbc51a95e8f90fb68&vid=743f40f0a26311edb5984f14482a12dd&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Cheap%20Flights,%20Airline%20tickets%20and%20Hotels%20-%20JustFly&p=https%3A%2F%2Fwww.justfly.com%2F&r=<=2151&evt=pageLoad&sv=1&rn=92923
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=17219201&Ver=2&mid=0125c7ee-2044-4fc8-b96e-22da44ae6b3c&sid=743f1100a26311edbc51a95e8f90fb68&vid=743f40f0a26311edb5984f14482a12dd&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Cheap%20Flights,%20Airline%20tickets%20and%20Hotels%20-%20JustFly&p=https%3A%2F%2Fwww.justfly.com%2F&r=<=2151&evt=pageLoad&sv=1&rn=92923
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=17219201&Ver=2&mid=0125c7ee-2044-4fc8-b96e-22da44ae6b3c&sid=743f1100a26311edbc51a95e8f90fb68&vid=743f40f0a26311edb5984f14482a12dd&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Cheap%20Flights,%20Airline%20tickets%20and%20Hotels%20-%20JustFly&p=https%3A%2F%2Fwww.justfly.com%2F&r=<=2151&evt=pageLoad&sv=1&rn=92923 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=37DEB2F0004C6F1E27D7A05B01B96E43; domain=.bing.com; expires=Mon, 26-Feb-2024 19:05:32 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 8BEBB87D5B864C86A73E13E18E9F3B73 Ref B: OSL30EDGE0109 Ref C: 2023-02-01T19:05:32Z
date: Wed, 01 Feb 2023 19:05:32 GMT
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 48094e1a-d550-4a91-b87c-4a08505f7cce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsWcFN7IAMF2pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2275c-5ced593a7e2126c9494563df;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aZOeDFqBJQoGwLpIs-GpPvY0FKGCAOXY6MgzG32qzX-kVzUCKKv-kw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 02:29:58 GMT
age: 59734
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
bat.bing.com/p/action/5090020.js
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/5090020.js
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/5090020.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 7F078912FF8C4E0190FA1B05C6C3534D Ref B: OSL30EDGE0109 Ref C: 2023-02-01T19:05:32Z
date: Wed, 01 Feb 2023 19:05:32 GMT
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 23db22ce2120fbb0ae6109e1a046062d
2068c8d9a5bc30a17be658e198e26c64a80703cf
f307ba6c4929d9f0c9354334b7baea878da379138489d9689bb777c4da308dab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8735
x-amzn-requestid: f466c962-7b12-4923-a4be-7ff9fce372a0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaWFP_IAMF9wA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-7a8c027d58f5b9132bb68a33;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: XtqfgDxskGIUmZdRj2nrGDpo9KvECk528eLZV29xNx3h7CLOu49mnQ==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:42:19 GMT
age: 76993
etag: "2068c8d9a5bc30a17be658e198e26c64a80703cf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:05:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bat.bing.com/p/action/17219201.js
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/17219201.js
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/17219201.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: D82099D1A43B4DE28B0AC04382E07533 Ref B: OSL30EDGE0109 Ref C: 2023-02-01T19:05:32Z
date: Wed, 01 Feb 2023 19:05:32 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2950
Expires: Wed, 01 Feb 2023 19:54:42 GMT
Date: Wed, 01 Feb 2023 19:05:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2950
Expires: Wed, 01 Feb 2023 19:54:42 GMT
Date: Wed, 01 Feb 2023 19:05:32 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 27e95b7912edc909d6b031e36fe83534
eb27fae0bb17dbe0929a620002195233ef50c1d0
b32e7e1a2eee367c5bf9e99bcb38f4c74c4e9e7bdfe7fb0f8f2a657060c0624c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8597
x-amzn-requestid: e7bf4ac9-d86d-4ee9-9e10-8a42e5dfe2c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fcRaNEW4IAMFatA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4c90d-7731312f630b00ba028836ca;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 07:04:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: z3ZJ7bq6LuJd-9I9D22VIs0avctNGVDKnYmt-fxevCheQibivmUomQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 12:57:00 GMT
age: 22112
etag: "eb27fae0bb17dbe0929a620002195233ef50c1d0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30335cb7-009a-42f5-8186-d0c302adc827.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30335cb7-009a-42f5-8186-d0c302adc827.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ec7e808a5e82552c46c3417a5b32b836
f0a273292b47d7e2e33c9d77fd95abdcc9e31ddd
f16d982224dfeb0753eaf9d4eb87d80fd1111f682fd8fa36f3177aad5bf926a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30335cb7-009a-42f5-8186-d0c302adc827.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6819
x-amzn-requestid: a0368695-4182-40bd-9a28-c50ae783a7a5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaRHGnoAMF0Ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-624285eb16110b8c2360dec5;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: daAf58GNG6Oy-ov_8TUeXnTcvZyW5eL_qwWz7dapr2Sy_5XSiS-3Mw==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:42:56 GMT
age: 76956
etag: "f0a273292b47d7e2e33c9d77fd95abdcc9e31ddd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:05:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4bb3a6fba496d54cdbbccaf2b9600386
8e30002699e9fbf2047f9ac11a36d2175fc9c591
927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: pU_436f27nMZKPxZZWqZekERHFTvcG5NT5p_CYEXHRPtIWjDtSA-uA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 07:27:41 GMT
age: 41871
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:05:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2950
Expires: Wed, 01 Feb 2023 19:54:42 GMT
Date: Wed, 01 Feb 2023 19:05:32 GMT
Connection: keep-alive
www.google.no/pagead/1p-user-list/940656960/?random=1675278354725&cv=11&fst=1675278000000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3851294228&rmt_tld=1&ipr=y
142.250.74.131200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/940656960/?random=1675278354725&cv=11&fst=1675278000000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3851294228&rmt_tld=1&ipr=y
IP 142.250.74.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/940656960/?random=1675278354725&cv=11&fst=1675278000000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3851294228&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 19:05:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/934980264/?random=1675278354745&cv=11&fst=1675278000000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1323617665&rmt_tld=1&ipr=y
142.250.74.131200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/934980264/?random=1675278354745&cv=11&fst=1675278000000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1323617665&rmt_tld=1&ipr=y
IP 142.250.74.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/934980264/?random=1675278354745&cv=11&fst=1675278000000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1323617665&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 19:05:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bae868356becb6470806e213f97e8aa6
1a3c7ffdce0f4e9c1f59aa0cd7715f22bade5117
c9930f2471f9a8a87fddfe3989391d65e1c41b3457a3f0fbf2e2357566f81a1b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3303
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:05:32 GMT
Last-Modified: Wed, 01 Feb 2023 18:10:29 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
www.google.no/pagead/1p-user-list/950915506/?random=1675278354761&cv=11&fst=1675278000000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1429887325&rmt_tld=1&ipr=y
142.250.74.131200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/950915506/?random=1675278354761&cv=11&fst=1675278000000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1429887325&rmt_tld=1&ipr=y
IP 142.250.74.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/950915506/?random=1675278354761&cv=11&fst=1675278000000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1429887325&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 19:05:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/738267730/?random=1675278354799&cv=11&fst=1675278000000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2548687267&rmt_tld=1&ipr=y
142.250.74.131200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/738267730/?random=1675278354799&cv=11&fst=1675278000000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2548687267&rmt_tld=1&ipr=y
IP 142.250.74.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/738267730/?random=1675278354799&cv=11&fst=1675278000000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2548687267&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 19:05:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
connect.facebook.net/en_US/sdk.js?hash=e666a18fe4b396d2008806ad446134ec
157.240.205.11200 OK 87 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js?hash=e666a18fe4b396d2008806ad446134ec
IP 157.240.205.11:0
File type ASCII text, with very long lines (13192)
Hash 1a0ff5ff13359bd733e937c20318f99f
9a34b1a9b4f17038e21c989a1c3b2975d32b237b
de7fc79af46a71d8d13c1d2bfa5ef604f65a936f24dcb14612dde3570bba1fdf
GET /en_US/sdk.js?hash=e666a18fe4b396d2008806ad446134ec HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.justfly.com
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: cfe3bc2981889a1af8c4d61bcd7c4834
etag: "ba3b231611c0c63ce9b6d53b68344624"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Thu, 01 Feb 2024 10:50:48 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: Gg/1/xM1m9cz6TfCAxj5nw==
x-fb-debug: 1OsT57lz0JB++owC1FVB6dabplO+OX3QZMc+Ktlhsmz3NPmUhRmyDClCP+BK0eTCuzZFZ/XghvQvTD7CbGEmPA==
priority: u=3,i
content-length: 86976
x-fb-trip-id: 1679558926
date: Wed, 01 Feb 2023 19:05:32 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/731884843/?random=1675278354819&cv=11&fst=1675278000000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1187315896&rmt_tld=1&ipr=y
142.250.74.131200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/731884843/?random=1675278354819&cv=11&fst=1675278000000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1187315896&rmt_tld=1&ipr=y
IP 142.250.74.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/731884843/?random=1675278354819&cv=11&fst=1675278000000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1187315896&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 19:05:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash f44095f8ebc7d211f4ee24d88a703128
97263cb2c5d0237c08bee075fb75c8bddefddf2c
1183ec38cb48e7986d42d545c968616fe9f996f73849f1da6c111eb4ccfbb529
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:05:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/375949003/?random=1675278354785&cv=11&fst=1675278000000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4040323325&rmt_tld=1&ipr=y
142.250.74.131200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/375949003/?random=1675278354785&cv=11&fst=1675278000000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4040323325&rmt_tld=1&ipr=y
IP 142.250.74.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/375949003/?random=1675278354785&cv=11&fst=1675278000000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4040323325&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 19:05:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-R3RRZ6LBZ2>m=2oe1u0&_p=1361309832&_gaz=1&cid=515210591.1675278355&ul=en-us&sr=1280x1024&uaW=1&_s=1&ci=1&cu=USD&sid=1675278354&sct=1&seg=0&dl=https%3A%2F%2Fwww.justfly.com%2F&dt=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&en=page_view&_fv=1&_nsi=1&_ss=2&_ee=1&ep.affiliate_id=1&ep.v_s=&epn.b_s=99&ep.s_id=abaec999cd24a08d272c721028556672&ep.xp_n=&ep.xp_v=
216.239.34.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-R3RRZ6LBZ2>m=2oe1u0&_p=1361309832&_gaz=1&cid=515210591.1675278355&ul=en-us&sr=1280x1024&uaW=1&_s=1&ci=1&cu=USD&sid=1675278354&sct=1&seg=0&dl=https%3A%2F%2Fwww.justfly.com%2F&dt=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&en=page_view&_fv=1&_nsi=1&_ss=2&_ee=1&ep.affiliate_id=1&ep.v_s=&epn.b_s=99&ep.s_id=abaec999cd24a08d272c721028556672&ep.xp_n=&ep.xp_v=
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-R3RRZ6LBZ2>m=2oe1u0&_p=1361309832&_gaz=1&cid=515210591.1675278355&ul=en-us&sr=1280x1024&uaW=1&_s=1&ci=1&cu=USD&sid=1675278354&sct=1&seg=0&dl=https%3A%2F%2Fwww.justfly.com%2F&dt=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&en=page_view&_fv=1&_nsi=1&_ss=2&_ee=1&ep.affiliate_id=1&ep.v_s=&epn.b_s=99&ep.s_id=abaec999cd24a08d272c721028556672&ep.xp_n=&ep.xp_v= HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.justfly.com
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.justfly.com
date: Wed, 01 Feb 2023 19:05:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/375949003/?random=1675278354918&cv=11&fst=1675278000000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=239273811&rmt_tld=1&ipr=y
142.250.74.131200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/375949003/?random=1675278354918&cv=11&fst=1675278000000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=239273811&rmt_tld=1&ipr=y
IP 142.250.74.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/375949003/?random=1675278354918&cv=11&fst=1675278000000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=239273811&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 19:05:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/933623849/?random=1675278354833&cv=11&fst=1675278000000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=846969195&rmt_tld=1&ipr=y
142.250.74.131200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/933623849/?random=1675278354833&cv=11&fst=1675278000000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=846969195&rmt_tld=1&ipr=y
IP 142.250.74.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/933623849/?random=1675278354833&cv=11&fst=1675278000000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.justfly.com%2F&tiba=Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=846969195&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 19:05:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-R3RRZ6LBZ2&cid=515210591.1675278355>m=2oe1u0&aip=1&z=1634614104
142.250.74.131200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-R3RRZ6LBZ2&cid=515210591.1675278355>m=2oe1u0&aip=1&z=1634614104
IP 142.250.74.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-R3RRZ6LBZ2&cid=515210591.1675278355>m=2oe1u0&aip=1&z=1634614104 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 19:05:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:05:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js
216.58.211.3200 OK 0 B URL HTTP/2 www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js
IP 216.58.211.3:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.justfly.com
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163774
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 17:09:34 GMT
expires: Tue, 30 Jan 2024 17:09:34 GMT
cache-control: public, max-age=31536000
age: 179758
last-modified: Mon, 23 Jan 2023 01:02:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 21:48:03 GMT
expires: Fri, 26 Jan 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 508650
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 16:40:43 GMT
expires: Fri, 26 Jan 2024 16:40:43 GMT
cache-control: public, max-age=31536000
age: 527090
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3deeeeb036efca7e5da34c8219dd2b71
3eba7064d2aaf7f59f00c862dbdaed593b2ecb14
04c8328e20574ec158f451a3c9496cb42366e0dbf15f3691fb3ae33a748c9b14
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "04C8328E20574EC158F451A3C9496CB42366E0DBF15F3691FB3AE33A748C9B14"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6677
Expires: Wed, 01 Feb 2023 20:56:50 GMT
Date: Wed, 01 Feb 2023 19:05:33 GMT
Connection: keep-alive
monitor-api.blackcrow.ai/
52.203.178.149200 OK 0 B URL HTTP/2 monitor-api.blackcrow.ai/
IP 52.203.178.149:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: monitor-api.blackcrow.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 390
Origin: https://www.justfly.com
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: awselb/2.0
date: Wed, 01 Feb 2023 19:05:33 GMT
content-type: application/json
content-length: 0
x-robots-tag: noindex
access-control-allow-headers: Content-Type
access-control-allow-methods: POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
connect.facebook.net/signals/config/1142433855767394?v=2.9.95&r=stable
157.240.205.11200 OK 110 kB URL HTTP/2 connect.facebook.net/signals/config/1142433855767394?v=2.9.95&r=stable
IP 157.240.205.11:0
Size 110 kB (110350 bytes)
Hash 4181b7108d3daf5b16b0b466d525545a
ce890d8dcabe85693a900c0fdada1a038368c1a1
338855e16685f81a03a68034d4005a5aaedcc42425db31a68a656de6f1cf7013
GET /signals/config/1142433855767394?v=2.9.95&r=stable HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: iGqtLUEG4iAj9cRCPkNavF++++NNz8WhfHURN3mHekoSarskbSL23MljN/toHj+Pqs7+kUJ8ZzObGrea0Y0Wsg==
priority: u=3,i
x-fb-trip-id: 1679558926
date: Wed, 01 Feb 2023 19:05:33 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.clicktripz.com/api/integrations/v1/constrain?h=ecdb55576da049b8a85408252356b0c7&u=https://www.justfly.com/
44.232.249.159200 OK 1.5 kB URL HTTP/2 www.clicktripz.com/api/integrations/v1/constrain?h=ecdb55576da049b8a85408252356b0c7&u=https://www.justfly.com/
IP 44.232.249.159:0
Hash 8e05e37146c1ea0362e1e9efe445b469
150533192e8098e0089b19e5edddbf0003bd097e
d1728756abc7097eef93ceb6ca3128b59f6eda5c99cfc428251cd631614375c5
GET /api/integrations/v1/constrain?h=ecdb55576da049b8a85408252356b0c7&u=https://www.justfly.com/ HTTP/1.1
Host: www.clicktripz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.justfly.com
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
date: Wed, 01 Feb 2023 19:05:33 GMT
set-cookie: _ctuid=caac536f-b97f-4a21-aa57-86a59f1ad645; expires=Tue, 02-May-2023 19:05:33 GMT; Max-Age=7776000; path=/; domain=.clicktripz.com; secure
access-control-allow-origin: https://www.justfly.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1142433855767394&ev=PageView&dl=https%3A%2F%2Fwww.justfly.com%2F&rl=&if=false&ts=1675278355983&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&fbp=fb.1.1675278355982.539930905&it=1675278355628&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1142433855767394&ev=PageView&dl=https%3A%2F%2Fwww.justfly.com%2F&rl=&if=false&ts=1675278355983&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&fbp=fb.1.1675278355982.539930905&it=1675278355628&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1142433855767394&ev=PageView&dl=https%3A%2F%2Fwww.justfly.com%2F&rl=&if=false&ts=1675278355983&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&fbp=fb.1.1675278355982.539930905&it=1675278355628&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Wed, 01 Feb 2023 19:05:33 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1142433855767394&ev=ViewContent&dl=https%3A%2F%2Fwww.justfly.com%2F&rl=&if=false&ts=1675278355985&cd[content_type]=flight&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=30&fbp=fb.1.1675278355982.539930905&it=1675278355628&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1142433855767394&ev=ViewContent&dl=https%3A%2F%2Fwww.justfly.com%2F&rl=&if=false&ts=1675278355985&cd[content_type]=flight&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=30&fbp=fb.1.1675278355982.539930905&it=1675278355628&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1142433855767394&ev=ViewContent&dl=https%3A%2F%2Fwww.justfly.com%2F&rl=&if=false&ts=1675278355985&cd[content_type]=flight&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=30&fbp=fb.1.1675278355982.539930905&it=1675278355628&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Wed, 01 Feb 2023 19:05:33 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a456cd9684a2ff020b854f178c06b509
b5a9e34f112cbe6d41b695ce7234cfe83de1356e
75b3ff1ea527598880cd41f65ebc03440b0ed019d53f8de1b4588de04bc4919e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:05:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ad.doubleclick.net/activity;src=8188096;type=;cat=;gtm=2od1u0;auiddc=1653697021.1675278355;~oref=https%3A%2F%2Fwww.justfly.com%2F?
142.250.74.134302 Found 0 B URL HTTP/2 ad.doubleclick.net/activity;src=8188096;type=;cat=;gtm=2od1u0;auiddc=1653697021.1675278355;~oref=https%3A%2F%2Fwww.justfly.com%2F?
IP 142.250.74.134:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /activity;src=8188096;type=;cat=;gtm=2od1u0;auiddc=1653697021.1675278355;~oref=https%3A%2F%2Fwww.justfly.com%2F? HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 19:05:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://adservice.google.com/ddm/fls/p/src=8188096;type=;cat=;gtm=2od1u0;auiddc=1653697021.1675278355;~oref=https%3A%2F%2Fwww.justfly.com%2F
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 01-Feb-2023 19:20:33 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a456cd9684a2ff020b854f178c06b509
b5a9e34f112cbe6d41b695ce7234cfe83de1356e
75b3ff1ea527598880cd41f65ebc03440b0ed019d53f8de1b4588de04bc4919e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:05:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
api.blackcrow.ai/v1/events/view?
54.205.221.60201 Created 426 B URL HTTP/2 api.blackcrow.ai/v1/events/view?
IP 54.205.221.60:0
Hash aae0b00ce5933ad08719ee12bc4d14c0
8de358e64244e4ef26b6b1665e3144dafaf4f3da
3de7ebccd0b555cecae0c352728dc7922db2bf5306dd6aa9998b0cf63620676a
POST /v1/events/view? HTTP/1.1
Host: api.blackcrow.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.justfly.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://www.justfly.com
Content-Length: 1078
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 201 Created
date: Wed, 01 Feb 2023 19:05:32 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PUT
access-control-allow-headers: Content-Type
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=63072000; includeSubDomains; preload
server-timing: total;dur=0
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato:400,700,900
142.250.74.138200 OK 426 B URL HTTP/2 fonts.googleapis.com/css?family=Lato:400,700,900
IP 142.250.74.138:0
Hash bbca2e89ff9e86c994e9cee2ea9f3bfb
61185aec9d84fffa67f9eb9690bda5c330320a09
92f69d53d1b0abe50407f2efb33a6d2dd1c90d7dab8ea8ef220c57b071b25615
GET /css?family=Lato:400,700,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 01 Feb 2023 19:05:31 GMT
date: Wed, 01 Feb 2023 19:05:31 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:05:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/ddm/fls/p/src=8188096;type=;cat=;gtm=2od1u0;auiddc=1653697021.1675278355;~oref=https%3A%2F%2Fwww.justfly.com%2F
142.250.74.2302 Found 0 B URL HTTP/2 adservice.google.com/ddm/fls/p/src=8188096;type=;cat=;gtm=2od1u0;auiddc=1653697021.1675278355;~oref=https%3A%2F%2Fwww.justfly.com%2F
IP 142.250.74.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ddm/fls/p/src=8188096;type=;cat=;gtm=2od1u0;auiddc=1653697021.1675278355;~oref=https%3A%2F%2Fwww.justfly.com%2F HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.justfly.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 19:05:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://adservice.google.no/ddm/fls/p/src=8188096;type=;cat=;gtm=2od1u0;auiddc=1653697021.1675278355;~oref=https%3A%2F%2Fwww.justfly.com%2F
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.no/ddm/fls/p/src=8188096;type=;cat=;gtm=2od1u0;auiddc=1653697021.1675278355;~oref=https%3A%2F%2Fwww.justfly.com%2F
142.250.74.98200 OK 42 B URL HTTP/2 adservice.google.no/ddm/fls/p/src=8188096;type=;cat=;gtm=2od1u0;auiddc=1653697021.1675278355;~oref=https%3A%2F%2Fwww.justfly.com%2F
IP 142.250.74.98:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ddm/fls/p/src=8188096;type=;cat=;gtm=2od1u0;auiddc=1653697021.1675278355;~oref=https%3A%2F%2Fwww.justfly.com%2F HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.justfly.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 19:05:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 64c14e657c9f0ecbb121ac293c176bc1
304e60d41390de16a1c1948fb289f5020f7e4a4e
293155711e7307fe22e84777ebe0b7c640d7d68ac3936b99456911ece622a83f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "293155711E7307FE22E84777EBE0B7C640D7D68AC3936B99456911ECE622A83F"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11638
Expires: Wed, 01 Feb 2023 22:19:32 GMT
Date: Wed, 01 Feb 2023 19:05:34 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 76e0e0f5fdae5cbde2a9eeee0e1bb20a
c731d46d988466e081bfe797b1ac8f1f7f134054
000a35849070b057281fcf96d5a4c78f76c2c898dce813e247026155cc6549e4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5933
Cache-Control: max-age=97793
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:05:34 GMT
Etag: "63d97bd2-2d7"
Expires: Thu, 02 Feb 2023 22:15:27 GMT
Last-Modified: Tue, 31 Jan 2023 20:36:34 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 727
api.clicktripz.com/c11g/v0/a/ecdb55576da049b8a85408252356b0c7_justfly.com
52.36.128.54200 OK 3.1 kB URL HTTP/2 api.clicktripz.com/c11g/v0/a/ecdb55576da049b8a85408252356b0c7_justfly.com
IP 52.36.128.54:0
Hash da88bd8e78ed15309a6d341f9ecb0f08
0798e542d2afa56036c31e1ef34318d1a689d67c
430246a53993e9825467c2f3df4ce027e5c52d94eb701d2604eef5dbcda4e591
POST /c11g/v0/a/ecdb55576da049b8a85408252356b0c7_justfly.com HTTP/1.1
Host: api.clicktripz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 3031
Origin: https://www.justfly.com
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
access-control-allow-origin: https://www.justfly.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE
access-control-allow-headers: Accept, Content-Type, Cookie, Authorization
vary: Accept-Encoding
etag: W/"610d-a126PEmzVVFnQv/amJXBNjhliXM"
content-encoding: gzip
date: Wed, 01 Feb 2023 19:05:34 GMT
X-Firefox-Spdy: h2
usage.trackjs.com/usage.gif?token=5efe282f466b454a90fde970b30b9a60&correlationId=12107dba-4ce2-4d23-a366-5beeb97f8501&application=jfly-prod&x=1c1d7670-0968-4e20-97c8-7f39c8800e64&
138.197.155.84200 OK 43 B URL HTTP/1.1 usage.trackjs.com/usage.gif?token=5efe282f466b454a90fde970b30b9a60&correlationId=12107dba-4ce2-4d23-a366-5beeb97f8501&application=jfly-prod&x=1c1d7670-0968-4e20-97c8-7f39c8800e64&
IP 138.197.155.84:0
ASN #14061 DIGITALOCEAN-ASN
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /usage.gif?token=5efe282f466b454a90fde970b30b9a60&correlationId=12107dba-4ce2-4d23-a366-5beeb97f8501&application=jfly-prod&x=1c1d7670-0968-4e20-97c8-7f39c8800e64& HTTP/1.1
Host: usage.trackjs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 19:05:34 GMT
Content-Type: image/gif
Content-Length: 43
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash aae1596208de08a3e029a79fe3c40e93
238b78690b0e968021e52a93b048bc71e3121f3e
f69729a6459cd9fecc1b384c6675faf7f50df398307aef689da3887fc3f0e11f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4921
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:05:34 GMT
Last-Modified: Wed, 01 Feb 2023 17:43:34 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
beacon.riskified.com/?shop=flighthub.com&sid=9260276783014f619d929d2d08b0276a
52.3.20.173200 OK 14 kB URL HTTP/2 beacon.riskified.com/?shop=flighthub.com&sid=9260276783014f619d929d2d08b0276a
IP 52.3.20.173:0
Hash d1c94dbf9d1dcb9b64e2c64a325d432b
4c6f77601615d56dca6b2bb19d3f9388f2e0b0e2
e5a1dcafb3f275877391ea846254dbe5df7bd671adb94930b3dfb843bdff03b2
GET /?shop=flighthub.com&sid=9260276783014f619d929d2d08b0276a HTTP/1.1
Host: beacon.riskified.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 19:05:34 GMT
content-type: application/javascript; charset=UTF-8
trace-id: 6c4ae6e2228479f65a5bdd8aef27c0ca
access-control-allow-origin: *
timing-allow-origin: *
access-control-request-method: *
access-control-allow-methods: PUT, OPTIONS, GET, DELETE, POST
access-control-allow-headers: Content-Type,Access-Control-Allow-Headers,Access-Control-Allow-Origin,x-csrf-token,X_CI_HMAC_SHA256
cache-control: max-age=600,no-store
content-encoding: gzip
x-sourcemap: sm/ZmxpZ2h0aHViLmNvbQ==/OTI2MDI3Njc4MzAxNGY2MTlkOTI5ZDJkMDhiMDI3NmE=
strict-transport-security: max-age=15768000; includeSubDomains; preload
pragma: no-cache
X-Firefox-Spdy: h2
img.riskified.com/img/image-l.gif?t=16752783580090.21659786704807482&c=hzqshvsjw2lvny7qfkh3rjldm1h9k5&p=k7vmpm&a=9260276783014f619d929d2d08b0276a&o=flighthub.com&rt=1675278334515
52.54.172.171200 OK 35 B URL HTTP/2 img.riskified.com/img/image-l.gif?t=16752783580090.21659786704807482&c=hzqshvsjw2lvny7qfkh3rjldm1h9k5&p=k7vmpm&a=9260276783014f619d929d2d08b0276a&o=flighthub.com&rt=1675278334515
IP 52.54.172.171:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash cfea9e094d58b54abf242e795f0b913f
cbeee1f89a77b67897eea9a54c0ac6b75c18d4b6
b03a66cf3c1b8d1757cb7fb0268c86aae035e91a39e18cb571f8fcc3508e1f4d
GET /img/image-l.gif?t=16752783580090.21659786704807482&c=hzqshvsjw2lvny7qfkh3rjldm1h9k5&p=k7vmpm&a=9260276783014f619d929d2d08b0276a&o=flighthub.com&rt=1675278334515 HTTP/1.1
Host: img.riskified.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Wed, 01 Feb 2023 19:05:35 GMT
content-type: image/gif
content-length: 35
last-modified: Thu, 29 Sep 2022 08:50:09 GMT
etag: "63355c41-23"
accept-ranges: bytes
X-Firefox-Spdy: h2
img.riskified.com/img/image-l.gif?t=16752783581270.4360056826439733&c=hzqshvsjw2lvny7qfkh3rjldm1h9k5&p=k7vmpm&a=9260276783014f619d929d2d08b0276a&o=flighthub.com&rt=1675278334515
52.54.172.171200 OK 35 B URL HTTP/2 img.riskified.com/img/image-l.gif?t=16752783581270.4360056826439733&c=hzqshvsjw2lvny7qfkh3rjldm1h9k5&p=k7vmpm&a=9260276783014f619d929d2d08b0276a&o=flighthub.com&rt=1675278334515
IP 52.54.172.171:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash cfea9e094d58b54abf242e795f0b913f
cbeee1f89a77b67897eea9a54c0ac6b75c18d4b6
b03a66cf3c1b8d1757cb7fb0268c86aae035e91a39e18cb571f8fcc3508e1f4d
GET /img/image-l.gif?t=16752783581270.4360056826439733&c=hzqshvsjw2lvny7qfkh3rjldm1h9k5&p=k7vmpm&a=9260276783014f619d929d2d08b0276a&o=flighthub.com&rt=1675278334515 HTTP/1.1
Host: img.riskified.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Wed, 01 Feb 2023 19:05:35 GMT
content-type: image/gif
content-length: 35
last-modified: Thu, 29 Sep 2022 08:50:09 GMT
etag: "63355c41-23"
accept-ranges: bytes
X-Firefox-Spdy: h2
img.riskified.com/img/image-l.gif?t=16752783582430.5226585265209038&c=hzqshvsjw2lvny7qfkh3rjldm1h9k5&p=k7vmpm&a=9260276783014f619d929d2d08b0276a&o=flighthub.com&rt=1675278334515
52.54.172.171200 OK 35 B URL HTTP/2 img.riskified.com/img/image-l.gif?t=16752783582430.5226585265209038&c=hzqshvsjw2lvny7qfkh3rjldm1h9k5&p=k7vmpm&a=9260276783014f619d929d2d08b0276a&o=flighthub.com&rt=1675278334515
IP 52.54.172.171:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash cfea9e094d58b54abf242e795f0b913f
cbeee1f89a77b67897eea9a54c0ac6b75c18d4b6
b03a66cf3c1b8d1757cb7fb0268c86aae035e91a39e18cb571f8fcc3508e1f4d
GET /img/image-l.gif?t=16752783582430.5226585265209038&c=hzqshvsjw2lvny7qfkh3rjldm1h9k5&p=k7vmpm&a=9260276783014f619d929d2d08b0276a&o=flighthub.com&rt=1675278334515 HTTP/1.1
Host: img.riskified.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Wed, 01 Feb 2023 19:05:35 GMT
content-type: image/gif
content-length: 35
last-modified: Thu, 29 Sep 2022 08:50:09 GMT
etag: "63355c41-23"
accept-ranges: bytes
X-Firefox-Spdy: h2
img.riskified.com/img/image-l.gif?t=16752783583620.7185886460005363&c=hzqshvsjw2lvny7qfkh3rjldm1h9k5&p=k7vmpm&a=9260276783014f619d929d2d08b0276a&o=flighthub.com&rt=1675278334515
52.54.172.171200 OK 35 B URL HTTP/2 img.riskified.com/img/image-l.gif?t=16752783583620.7185886460005363&c=hzqshvsjw2lvny7qfkh3rjldm1h9k5&p=k7vmpm&a=9260276783014f619d929d2d08b0276a&o=flighthub.com&rt=1675278334515
IP 52.54.172.171:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash cfea9e094d58b54abf242e795f0b913f
cbeee1f89a77b67897eea9a54c0ac6b75c18d4b6
b03a66cf3c1b8d1757cb7fb0268c86aae035e91a39e18cb571f8fcc3508e1f4d
GET /img/image-l.gif?t=16752783583620.7185886460005363&c=hzqshvsjw2lvny7qfkh3rjldm1h9k5&p=k7vmpm&a=9260276783014f619d929d2d08b0276a&o=flighthub.com&rt=1675278334515 HTTP/1.1
Host: img.riskified.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Wed, 01 Feb 2023 19:05:35 GMT
content-type: image/gif
content-length: 35
last-modified: Thu, 29 Sep 2022 08:50:09 GMT
etag: "63355c41-23"
accept-ranges: bytes
X-Firefox-Spdy: h2
static.clicktripz.com/asset/Cti1Lib/3.0.4.js
54.230.111.36200 OK 10 kB URL HTTP/2 static.clicktripz.com/asset/Cti1Lib/3.0.4.js
IP 54.230.111.36:0
File type ASCII text, with very long lines (40111)
Hash e4e550cdfaedf68dc00f23c423500065
e7ef9d98f9905b1926797e03b6e8f5127adda1b2
cc03fd67be278be5d17dfe7d37335619a6a9f1b37b6375e572d34cea152b6749
GET /asset/Cti1Lib/3.0.4.js HTTP/1.1
Host: static.clicktripz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: false
access-control-allow-methods: GET
access-control-allow-headers: Accept, Content-Type
content-encoding: br
cache-control: max-age=2592000
expires: Wed, 01 Mar 2023 15:23:25 GMT
x-ctz-is-mdeps: true
date: Mon, 30 Jan 2023 15:23:25 GMT
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tv7SvmB0S-q2KbNImBJ-oSoM60ZpUjK6EBCg62eANMbw0rwxoupXbw==
age: 186130
X-Firefox-Spdy: h2
c.riskified.com/v2/client_infos
34.193.32.45200 OK 2 B URL HTTP/2 c.riskified.com/v2/client_infos
IP 34.193.32.45:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /v2/client_infos HTTP/1.1
Host: c.riskified.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: access-control-allow-headers,access-control-allow-origin,content-type
Referer: https://www.justfly.com/
Origin: https://www.justfly.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 19:05:36 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
trace-id: b966c2cc78870885f4407f6c6e677a5d
access-control-allow-origin: *
timing-allow-origin: *
access-control-request-method: *
access-control-allow-methods: PUT, OPTIONS, GET, DELETE, POST
access-control-allow-headers: Content-Type,Access-Control-Allow-Headers,Access-Control-Allow-Origin,x-csrf-token,X_CI_HMAC_SHA256
strict-transport-security: max-age=15768000; includeSubDomains; preload
cache-control: no-store
pragma: no-cache
X-Firefox-Spdy: h2
www.clicktripz.com/x/pas?siteId=ecdb55576da049b8a85408252356b0c7_justfly.com&publisherHash=ecdb55576da049b8a85408252356b0c7&aid=bd222f0c-d495-415f-8f04-2c3e73f3735f_desktop_interstitial&ref=usingRuntimeExperiments%7C%7Cfalse%3A%3A%3AvscVersion%7C%7C141%3A%3A%3Ahttps%3A%2F%2Fwww.justfly.com%2F&obj=bd222f0c-d495-415f-8f04-2c3e73f3735f_desktop_interstitial&optMaxChecked=2&optMaxAdvertisers=7&optRotationStrategy=1&optPopUnder=1&optLocalization=en&ctzpid=4c53bbb3-ce2a-47be-985c-299790674dc5&alias=ecdb55576da049b8a85408252356b0c7_justfly.com&siteName=justfly.com&adults=1&extra=%5Bobject%20Object%5D&tabbedMode=1&userForcedTabbedMode=1&callback=jsonp_callback_1
44.232.249.159200 OK 944 B URL HTTP/2 www.clicktripz.com/x/pas?siteId=ecdb55576da049b8a85408252356b0c7_justfly.com&publisherHash=ecdb55576da049b8a85408252356b0c7&aid=bd222f0c-d495-415f-8f04-2c3e73f3735f_desktop_interstitial&ref=usingRuntimeExperiments%7C%7Cfalse%3A%3A%3AvscVersion%7C%7C141%3A%3A%3Ahttps%3A%2F%2Fwww.justfly.com%2F&obj=bd222f0c-d495-415f-8f04-2c3e73f3735f_desktop_interstitial&optMaxChecked=2&optMaxAdvertisers=7&optRotationStrategy=1&optPopUnder=1&optLocalization=en&ctzpid=4c53bbb3-ce2a-47be-985c-299790674dc5&alias=ecdb55576da049b8a85408252356b0c7_justfly.com&siteName=justfly.com&adults=1&extra=%5Bobject%20Object%5D&tabbedMode=1&userForcedTabbedMode=1&callback=jsonp_callback_1
IP 44.232.249.159:0
Hash 6b4df1558dfd1701545e933e05892c32
ee089904716151b2d77b97c9f6b2f83464362358
6850139799fa0913d6a0ee984777cc09f7a00aa4ffdb0e383326f84a36ea439d
GET /x/pas?siteId=ecdb55576da049b8a85408252356b0c7_justfly.com&publisherHash=ecdb55576da049b8a85408252356b0c7&aid=bd222f0c-d495-415f-8f04-2c3e73f3735f_desktop_interstitial&ref=usingRuntimeExperiments%7C%7Cfalse%3A%3A%3AvscVersion%7C%7C141%3A%3A%3Ahttps%3A%2F%2Fwww.justfly.com%2F&obj=bd222f0c-d495-415f-8f04-2c3e73f3735f_desktop_interstitial&optMaxChecked=2&optMaxAdvertisers=7&optRotationStrategy=1&optPopUnder=1&optLocalization=en&ctzpid=4c53bbb3-ce2a-47be-985c-299790674dc5&alias=ecdb55576da049b8a85408252356b0c7_justfly.com&siteName=justfly.com&adults=1&extra=%5Bobject%20Object%5D&tabbedMode=1&userForcedTabbedMode=1&callback=jsonp_callback_1 HTTP/1.1
Host: www.clicktripz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 944
date: Wed, 01 Feb 2023 19:05:36 GMT
set-cookie: _ctuid=127079fe-7651-4cd9-aa86-1a1737e3fcf6; expires=Tue, 02-May-2023 19:05:36 GMT; Max-Age=7776000; path=/; domain=.clicktripz.com; secure
access-control-allow-methods: GET
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
c.riskified.com/v2/client_infos
34.193.32.45201 Created 0 B URL HTTP/2 c.riskified.com/v2/client_infos
IP 34.193.32.45:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v2/client_infos HTTP/1.1
Host: c.riskified.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=utf-8
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: *
Content-Length: 2612
Origin: https://www.justfly.com
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 201 Created
date: Wed, 01 Feb 2023 19:05:36 GMT
content-length: 0
trace-id: cecfb4f6c67d3c36cf63a1e73a672705
access-control-allow-origin: *
timing-allow-origin: *
access-control-request-method: *
access-control-allow-methods: PUT, OPTIONS, GET, DELETE, POST
access-control-allow-headers: Content-Type,Access-Control-Allow-Headers,Access-Control-Allow-Origin,x-csrf-token,X_CI_HMAC_SHA256
strict-transport-security: max-age=15768000; includeSubDomains; preload
cache-control: no-store
pragma: no-cache
X-Firefox-Spdy: h2
www.clicktripz.com/logs
44.232.249.159200 OK 2 B IP 44.232.249.159:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /logs HTTP/1.1
Host: www.clicktripz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2974
Origin: https://www.justfly.com
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-length: 2
date: Wed, 01 Feb 2023 19:05:35 GMT
cache-control: max-age=0, private, must-revalidate
x-request-id: 2svshhajhprnc4k7lii1u9k2
access-control-allow-origin: *
access-control-expose-headers:
access-control-allow-credentials: true
X-Firefox-Spdy: h2
www.clicktripz.com/pixel.php?&publisherID=3530&firstDraw=true&pageType=UCO&sessionVertical=unmapped%20vertical&campaigns=&referralURL=usingRuntimeExperiments%7C%7Cfalse%3A%3A%3AvscVersion%7C%7C141%3A%3A%3Ahttps%3A%2F%2Fwww.justfly.com%2F&t=1675278358946&r=0.13935401339363263&pageview_uuid=3771d429-1fc0-41c6-b864-07eadc6d5eb4&alias=ecdb55576da049b8a85408252356b0c7_justfly.com&siteName=justfly.com&ctzpid=4c53bbb3-ce2a-47be-985c-299790674dc5&usingRuntimeExperiments=false
44.232.249.159200 OK 43 B URL HTTP/2 www.clicktripz.com/pixel.php?&publisherID=3530&firstDraw=true&pageType=UCO&sessionVertical=unmapped%20vertical&campaigns=&referralURL=usingRuntimeExperiments%7C%7Cfalse%3A%3A%3AvscVersion%7C%7C141%3A%3A%3Ahttps%3A%2F%2Fwww.justfly.com%2F&t=1675278358946&r=0.13935401339363263&pageview_uuid=3771d429-1fc0-41c6-b864-07eadc6d5eb4&alias=ecdb55576da049b8a85408252356b0c7_justfly.com&siteName=justfly.com&ctzpid=4c53bbb3-ce2a-47be-985c-299790674dc5&usingRuntimeExperiments=false
IP 44.232.249.159:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /pixel.php?&publisherID=3530&firstDraw=true&pageType=UCO&sessionVertical=unmapped%20vertical&campaigns=&referralURL=usingRuntimeExperiments%7C%7Cfalse%3A%3A%3AvscVersion%7C%7C141%3A%3A%3Ahttps%3A%2F%2Fwww.justfly.com%2F&t=1675278358946&r=0.13935401339363263&pageview_uuid=3771d429-1fc0-41c6-b864-07eadc6d5eb4&alias=ecdb55576da049b8a85408252356b0c7_justfly.com&siteName=justfly.com&ctzpid=4c53bbb3-ce2a-47be-985c-299790674dc5&usingRuntimeExperiments=false HTTP/1.1
Host: www.clicktripz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 43
date: Wed, 01 Feb 2023 19:05:36 GMT
cache-control: private
set-cookie: _ctuid=f00e9f7d-270a-44a5-b95a-2f61f9d7d1fe; expires=Tue, 02-May-2023 19:05:36 GMT; Max-Age=7776000; path=/; domain=.clicktripz.com; secure
access-control-allow-origin:
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, THIN_UI_CSRF_TOKEN
access-control-allow-methods: GET, POST, OPTIONS
X-Firefox-Spdy: h2
www.clicktripz.com/logs
44.232.249.159200 OK 2 B IP 44.232.249.159:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /logs HTTP/1.1
Host: www.clicktripz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 944
Origin: https://www.justfly.com
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-length: 2
date: Wed, 01 Feb 2023 19:05:36 GMT
cache-control: max-age=0, private, must-revalidate
x-request-id: 2svshhbtfie3cig463r94ho4
access-control-allow-origin: *
access-control-expose-headers:
access-control-allow-credentials: true
X-Firefox-Spdy: h2
nova.collect.igodigital.com/c2/7233063/track_page_view?payload=%7B%22title%22%3A%22Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly%22%2C%22url%22%3A%22https%3A%2F%2Fwww.justfly.com%2F%22%2C%22referrer%22%3A%22%22%7D
44.198.108.218202 Accepted 0 B URL HTTP/2 nova.collect.igodigital.com/c2/7233063/track_page_view?payload=%7B%22title%22%3A%22Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly%22%2C%22url%22%3A%22https%3A%2F%2Fwww.justfly.com%2F%22%2C%22referrer%22%3A%22%22%7D
IP 44.198.108.218:0
GET /c2/7233063/track_page_view?payload=%7B%22title%22%3A%22Cheap%20Flights%2C%20Airline%20tickets%20and%20Hotels%20-%20JustFly%22%2C%22url%22%3A%22https%3A%2F%2Fwww.justfly.com%2F%22%2C%22referrer%22%3A%22%22%7D HTTP/1.1
Host: nova.collect.igodigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
date: Wed, 01 Feb 2023 19:05:34 GMT
content-type: image/gif
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-disposition: inline
content-transfer-encoding: binary
cache-control: private
set-cookie: igodigitaltc2=6792fe12-a263-11ed-adb8-66a189cdff7d; domain=.igodigital.com; path=/; expires=Tue, 01 Feb 2033 19:05:34 GMT; Secure; SameSite=None
igodigitalst_7233063=67930678-a263-11ed-adb8-66a189cdff7d; domain=.igodigital.com; path=/; expires=Wed, 01 Feb 2023 20:05:34 GMT; Secure; SameSite=None
igodigitalstdomain=34177; domain=.igodigital.com; path=/; expires=Wed, 01 Feb 2023 20:05:34 GMT; Secure; SameSite=None
x-request-id: 185e9258-1825-465c-b7eb-a1b6f8652aa3
x-runtime: 0.009957
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Source+Sans+Pro:400,600,700,900
142.250.74.138200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Source+Sans+Pro:400,600,700,900
IP 142.250.74.138:0
GET /css?family=Source+Sans+Pro:400,600,700,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 01 Feb 2023 19:05:31 GMT
date: Wed, 01 Feb 2023 19:05:31 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.clicktripz.com/asset/__adslot-bundle/2371c01f04fb08577edb5b19b8ffc9d34fb4c52c.js
54.230.111.36200 OK 0 B URL HTTP/2 static.clicktripz.com/asset/__adslot-bundle/2371c01f04fb08577edb5b19b8ffc9d34fb4c52c.js
IP 54.230.111.36:0
GET /asset/__adslot-bundle/2371c01f04fb08577edb5b19b8ffc9d34fb4c52c.js HTTP/1.1
Host: static.clicktripz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: false
access-control-allow-methods: GET
access-control-allow-headers: Accept, Content-Type
content-encoding: br
cache-control: max-age=2592000
expires: Wed, 01 Mar 2023 15:54:12 GMT
x-ctz-is-mdeps: true
date: Mon, 30 Jan 2023 15:54:12 GMT
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nmqPRB21VqRh8OXL2PSyRHWSxfcsTr84XJNocQwZYz66SoAPvFoFHg==
age: 184281
X-Firefox-Spdy: h2
www.justfly.com/checkout/billing/flight/60b1fc5657644dc06c86b6b0e0e9b511/3fef5c433486b0f17aba49ab76f08400
104.18.13.48302 Found 0 B URL HTTP/2 www.justfly.com/checkout/billing/flight/60b1fc5657644dc06c86b6b0e0e9b511/3fef5c433486b0f17aba49ab76f08400
IP 104.18.13.48:0
GET /checkout/billing/flight/60b1fc5657644dc06c86b6b0e0e9b511/3fef5c433486b0f17aba49ab76f08400 HTTP/1.1
Host: www.justfly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Wed, 01 Feb 2023 19:05:31 GMT
content-type: text/html; charset=UTF-8
location: https://www.justfly.com/
content-security-policy: frame-ancestors 'self' https://flighthub.com https://*.flighthub.com https://justfly.com https://*.justfly.com https://kayak.com https://*.kayak.com https://cheapflights.com https://*.cheapflights.com https://cheapflights.ca https://*.cheapflights.ca https://www.momondo.ca https://www.momondo.com https://www.travelsearch.com travel.mediaalpha.com 85off.com airfaresaver.co.uk airfarewatchdog.com airporia.com ar.jetcost.com ar.tripadvisor.com ar.vuelosmuybaratos.com autorentals.com bamgo.com bargainairticket.com beachdeals.com book.lookuptrips.com/ bookingbuddy.com bookmecheapest.com br.passagensmuitobaratas.com ca.flightsaver.com ca.jetcost.com calltotravel.com casamundo.co.uk casamundo.com casamundo.de casamundo.es casamundo.fr casamundo.it casamundo.nl casamundo.pl casamundo.se casevacanza.it cheapflights.co.uk cheapflights.com.au cl.vuelosmuybaratos.com cn.hometogo.com cn.tripadvisor.com co.vuelosmuybaratos.com compare.bargainairticket.com comparewiz.com coronavirustravel.com destinationsteals.com ec.vuelosmuybaratos.com en.tripadvisor.com.hk es.vuelosmuybaratos.com eurorelais.de eurorelais.nl familyvacationcritic.com Farecompare.com feries.com feries.de feries.es feries.fr feries.ru fewoferien.de flightsaver.com flightsbytel.com fr.tripadvisor.be fr.tripadvisor.ca fr.tripadvisor.ch getmyfare.com golastminute.com gottavacay.com guenstigstefluege.com holidayhomes.co.uk holidayhomes.com holidaywatchdog.com home-to-go.ca hometogo.at hometogo.be hometogo.ch hometogo.co.kr hometogo.co.uk hometogo.com hometogo.com.au hometogo.com.hk hometogo.com.mx hometogo.de hometogo.dk hometogo.es hometogo.fr hometogo.it hometogo.jp hometogo.nl hometogo.no hometogo.pl hometogo.ru hometogo.se hotelscan.com it.tripadvisor.ch jetcost.at jetcost.cl jetcost.co.id jetcost.co.in jetcost.co.kr jetcost.co.nz jetcost.co.th jetcost.co.uk jetcost.co.ve jetcost.co.za jetcost.com jetcost.com.au jetcost.com.bo jetcost.com.br jetcost.com.co jetcost.com.mx jetcost.com.my jetcost.com.pe jetcost.com.ph jetcost.com.sg jetcost.com.uy jetcost.de jetcost.dk jetcost.es jetcost.fi jetcost.fr jetcost.hk jetcost.hu jetcost.ie jetcost.it jetcost.nl jetcost.no jetcost.pl jetcost.pt jetcost.ro jetcost.ru jetcost.se jetsetter.com jetsetz.com/ kayak.co.uk kayak.com kayak.com.au kayak.com.br kayak.de kayak.es kayak.fr kayak.it ladybug.com lardeferias.com.br lbcarrentals.com lookuptrips.com luxurytravelonabudget.co maisondevacances.fr momondo.co.uk momondo.com momondo.com.au momondo.com.br momondo.de momondo.es momondo.fr momondo.it mundi.com.br mx.vuelosmuybaratos.com nl.tripadvisor.com no.tripadvisor.com onetime.com oyster.com pe.vuelosmuybaratos.com pl.tripadvisor.com savingsjoy.com smartertravel.com spinner.mauction.app/ swoodoo.com swoodoo.de th.tripadvisor.com travel.sorted.london traveldealsandnews.com travils.com tripadvisor.at tripadvisor.be tripadvisor.ca tripadvisor.ch tripadvisor.cl tripadvisor.cn tripadvisor.co tripadvisor.co.hu tripadvisor.co.id tripadvisor.co.il tripadvisor.co.kr tripadvisor.co.nz tripadvisor.co.uk tripadvisor.co.za tripadvisor.com tripadvisor.com.ar tripadvisor.com.au tripadvisor.com.br tripadvisor.com.eg tripadvisor.com.gr tripadvisor.com.hk tripadvisor.com.mx tripadvisor.com.my tripadvisor.com.pe tripadvisor.com.ph tripadvisor.com.sg tripadvisor.com.tr tripadvisor.com.tw tripadvisor.com.ve tripadvisor.com.vn tripadvisor.cz tripadvisor.de tripadvisor.dk tripadvisor.es tripadvisor.fi tripadvisor.fr tripadvisor.ie tripadvisor.in tripadvisor.it tripadvisor.jp tripadvisor.pt tripadvisor.rs tripadvisor.ru tripadvisor.se tripadvisor.sk tripping.com tripyork.com Turismocity.cl Turismocity.com.ar Turismocity.com.bo Turismocity.com.br Turismocity.com.co Turismocity.com.ec Turismocity.com.mx Turismocity.com.pa Turismocity.com.pe Turismocity.com.uy Turismocity.com.ve Turismocity.es unpublishedflight.com us.jetcost.com vacationrenter.com vacationson.com viajala.cl viajala.com viajala.com.ar viajala.com.br viajala.com.co viajala.com.ec viajala.com.mx viajala.com.pe volaeconomico.com volmoinscher.com whattopack.com wimdu.co.uk wimdu.com wimdu.de wimdu.es wimdu.fr wimdu.it wimdu.nl wimdu.pl
pragma: no-cache
cache-control: post-check=0, pre-check=0
expires: 1
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
strict-transport-security: max-age=31536000; includeSubDomains; preload;
x-request-id: 63DAB7FA-D17E231B01BBB410-DD346
cf-cache-status: DYNAMIC
set-cookie: country_hash=3ba42c5ca309531888a80bb1bc0132239bb7ee289c449baa49278741f571e222; expires=Fri, 03-Mar-2023 19:05:30 GMT; Max-Age=2592000; path=/; domain=www.justfly.com
country=us; expires=Fri, 03-Mar-2023 19:05:30 GMT; Max-Age=2592000; path=/; domain=www.justfly.com
display_currency_hash=814b17fbb3662fdcae4c65361daae0ab1cd55bcd33818f21cba7723a4fed10eb; expires=Fri, 03-Mar-2023 19:05:30 GMT; Max-Age=2592000; path=/; domain=www.justfly.com
display_currency=usd; expires=Fri, 03-Mar-2023 19:05:30 GMT; Max-Age=2592000; path=/; domain=www.justfly.com
surfer_id_hash=9a7a5eea36cda8a21c187ed594d8e7d1691e7be471c6662a10758b0db4a2b288; expires=Sat, 29-Jan-2033 19:05:30 GMT; Max-Age=315360000; path=/; domain=justfly.com
surfer_id=abaec999cd24a08d272c721028556672; expires=Sat, 29-Jan-2033 19:05:30 GMT; Max-Age=315360000; path=/; domain=justfly.com
surfer_id_created_at_hash=81c011f7178edaa7460351f3bbaa612758c177c4ec247c958728b1ecda93365d; expires=Thu, 01-Feb-2024 19:05:30 GMT; Max-Age=31536000; path=/; domain=justfly.com
surfer_id_created_at=1675278330; expires=Thu, 01-Feb-2024 19:05:30 GMT; Max-Age=31536000; path=/; domain=justfly.com
surfer_last_visited_date_hash=001ce5615c2aed316e08e93ec25187ce633409e7588582439dbe3def48698f29; expires=Fri, 03-Mar-2023 19:05:30 GMT; Max-Age=2592000; path=/; domain=www.justfly.com
surfer_last_visited_date=2023-02-01%2014%3A05%3A30; expires=Fri, 03-Mar-2023 19:05:30 GMT; Max-Age=2592000; path=/; domain=www.justfly.com
surfer_details2_hash=96cb8f01e3c7db5736a94345b4ea74a70ad15323203be2cba12960bce03cc3aa; expires=Thu, 01-Feb-2024 19:05:30 GMT; Max-Age=31536000; path=/; domain=www.justfly.com
surfer_details2=F5j4alNzJ6F3R8eV9rSc4QK3z%2BYCiWrJZAJd43%2FdW79pVK0hfyPHwcY%3D; expires=Thu, 01-Feb-2024 19:05:30 GMT; Max-Age=31536000; path=/; domain=www.justfly.com
affiliate_campaign_id_hash=a763f26b29056fb3d2783574e9744cf1035962d643505f006af601cec030ab78; expires=Fri, 03-Mar-2023 19:05:30 GMT; Max-Age=2592000; path=/; domain=justfly.com
affiliate_campaign_id=1; expires=Fri, 03-Mar-2023 19:05:30 GMT; Max-Age=2592000; path=/; domain=justfly.com
visit_id_hash=626ae47a4e93322942d578c99587a1edb0c086d17a124fb21f592a0a8d02c3d6; expires=Thu, 02-Feb-2023 19:05:30 GMT; Max-Age=86400; path=/; domain=justfly.com
visit_id=64c456ed-0e93-46ce-89f7-f0a6061be434; expires=Thu, 02-Feb-2023 19:05:30 GMT; Max-Age=86400; path=/; domain=justfly.com
is_unique_visit_hash=67d05e10c81496e9ccf4f0edc7020a8acc65ed56bf3dcb117a857756371d27a3; expires=Thu, 02-Feb-2023 19:05:30 GMT; Max-Age=86400; path=/; domain=justfly.com
is_unique_visit=1; expires=Thu, 02-Feb-2023 19:05:30 GMT; Max-Age=86400; path=/; domain=justfly.com
visit_id_xp_hash=aac1e26c12f871a240b029730c8369b18b6f9adeaf1c7a8564d88d3c14d0ed80; expires=Thu, 02-Feb-2023 19:05:30 GMT; Max-Age=86400; path=/; domain=justfly.com
visit_id_xp=64c456ed-0e93-46ce-89f7-f0a6061be434; expires=Thu, 02-Feb-2023 19:05:30 GMT; Max-Age=86400; path=/; domain=justfly.com
surfer_details3_hash=f4cd69bc05da55015702a8644031cb8d143a09222ef06c8ca1f866937405290a; expires=Thu, 01-Feb-2024 19:05:30 GMT; Max-Age=31536000; path=/; domain=www.justfly.com
surfer_details3=VVlPG3EQn%2BRi69Lb8SW0g5BOdkPjI%2F73mvnpvZzhQWNYzzuhPFHAA3s%3D; expires=Thu, 01-Feb-2024 19:05:30 GMT; Max-Age=31536000; path=/; domain=www.justfly.com
mirsess_hash=1fd4b6f4ac1a90d38045aa391763c90695c43894a7ea72289837f296cd94184e; expires=Wed, 01-Feb-2023 19:35:30 GMT; Max-Age=1800; path=/; domain=www.justfly.com
mirsess=1675278330%7C1; expires=Wed, 01-Feb-2023 19:35:30 GMT; Max-Age=1800; path=/; domain=www.justfly.com
fs_rs_a_hash=52ebd6446d03449ef9c03af6297c2717a9eab0198855d789f2cd3738b25316ce; expires=Fri, 03-Mar-2023 19:05:31 GMT; Max-Age=2592000; path=/; domain=www.justfly.com
fs_rs_a=-1; expires=Fri, 03-Mar-2023 19:05:31 GMT; Max-Age=2592000; path=/; domain=www.justfly.com
PHPSESSID=mu0n3hfnhbjg86kq84gb4eqa0v; expires=Wed, 01-Feb-2023 21:05:31 GMT; Max-Age=7200; path=/; domain=.justfly.com
RNLBSERVERID=ded3429; path=/; Secure
__cf_bm=UGtShtJNzAb2Q9PLxRUbTbNfWCeXKeYR_2Nci.ZhuhA-1675278331-0-AcueJAeeyO+Pj7A0Vl/iA1AxMF8XPqXhMId34Cj6i7BWNLOliYrKD1kLSKi9RI2WN57Og32uJac2RZ5q+zYOK9Y=; path=/; expires=Wed, 01-Feb-23 19:35:31 GMT; domain=.justfly.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 792cf57edb2c0b69-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.justfly.com/
104.18.13.48200 OK 0 B IP 104.18.13.48:0
GET / HTTP/1.1
Host: www.justfly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: country_hash=3ba42c5ca309531888a80bb1bc0132239bb7ee289c449baa49278741f571e222; country=us; display_currency_hash=814b17fbb3662fdcae4c65361daae0ab1cd55bcd33818f21cba7723a4fed10eb; display_currency=usd; surfer_id_hash=9a7a5eea36cda8a21c187ed594d8e7d1691e7be471c6662a10758b0db4a2b288; surfer_id=abaec999cd24a08d272c721028556672; surfer_id_created_at_hash=81c011f7178edaa7460351f3bbaa612758c177c4ec247c958728b1ecda93365d; surfer_id_created_at=1675278330; surfer_last_visited_date_hash=001ce5615c2aed316e08e93ec25187ce633409e7588582439dbe3def48698f29; surfer_last_visited_date=2023-02-01%2014%3A05%3A30; surfer_details2_hash=96cb8f01e3c7db5736a94345b4ea74a70ad15323203be2cba12960bce03cc3aa; surfer_details2=F5j4alNzJ6F3R8eV9rSc4QK3z%2BYCiWrJZAJd43%2FdW79pVK0hfyPHwcY%3D; affiliate_campaign_id_hash=a763f26b29056fb3d2783574e9744cf1035962d643505f006af601cec030ab78; affiliate_campaign_id=1; visit_id_hash=626ae47a4e93322942d578c99587a1edb0c086d17a124fb21f592a0a8d02c3d6; visit_id=64c456ed-0e93-46ce-89f7-f0a6061be434; is_unique_visit_hash=67d05e10c81496e9ccf4f0edc7020a8acc65ed56bf3dcb117a857756371d27a3; is_unique_visit=1; visit_id_xp_hash=aac1e26c12f871a240b029730c8369b18b6f9adeaf1c7a8564d88d3c14d0ed80; visit_id_xp=64c456ed-0e93-46ce-89f7-f0a6061be434; surfer_details3_hash=f4cd69bc05da55015702a8644031cb8d143a09222ef06c8ca1f866937405290a; surfer_details3=VVlPG3EQn%2BRi69Lb8SW0g5BOdkPjI%2F73mvnpvZzhQWNYzzuhPFHAA3s%3D; mirsess_hash=1fd4b6f4ac1a90d38045aa391763c90695c43894a7ea72289837f296cd94184e; mirsess=1675278330%7C1; fs_rs_a_hash=52ebd6446d03449ef9c03af6297c2717a9eab0198855d789f2cd3738b25316ce; fs_rs_a=-1; PHPSESSID=mu0n3hfnhbjg86kq84gb4eqa0v; RNLBSERVERID=ded3429; __cf_bm=UGtShtJNzAb2Q9PLxRUbTbNfWCeXKeYR_2Nci.ZhuhA-1675278331-0-AcueJAeeyO+Pj7A0Vl/iA1AxMF8XPqXhMId34Cj6i7BWNLOliYrKD1kLSKi9RI2WN57Og32uJac2RZ5q+zYOK9Y=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 19:05:31 GMT
content-type: text/html; charset=utf-8
content-security-policy: frame-ancestors 'self' https://flighthub.com https://*.flighthub.com https://justfly.com https://*.justfly.com https://kayak.com https://*.kayak.com https://cheapflights.com https://*.cheapflights.com https://cheapflights.ca https://*.cheapflights.ca https://www.momondo.ca https://www.momondo.com https://www.travelsearch.com travel.mediaalpha.com 85off.com airfaresaver.co.uk airfarewatchdog.com airporia.com ar.jetcost.com ar.tripadvisor.com ar.vuelosmuybaratos.com autorentals.com bamgo.com bargainairticket.com beachdeals.com book.lookuptrips.com/ bookingbuddy.com bookmecheapest.com br.passagensmuitobaratas.com ca.flightsaver.com ca.jetcost.com calltotravel.com casamundo.co.uk casamundo.com casamundo.de casamundo.es casamundo.fr casamundo.it casamundo.nl casamundo.pl casamundo.se casevacanza.it cheapflights.co.uk cheapflights.com.au cl.vuelosmuybaratos.com cn.hometogo.com cn.tripadvisor.com co.vuelosmuybaratos.com compare.bargainairticket.com comparewiz.com coronavirustravel.com destinationsteals.com ec.vuelosmuybaratos.com en.tripadvisor.com.hk es.vuelosmuybaratos.com eurorelais.de eurorelais.nl familyvacationcritic.com Farecompare.com feries.com feries.de feries.es feries.fr feries.ru fewoferien.de flightsaver.com flightsbytel.com fr.tripadvisor.be fr.tripadvisor.ca fr.tripadvisor.ch getmyfare.com golastminute.com gottavacay.com guenstigstefluege.com holidayhomes.co.uk holidayhomes.com holidaywatchdog.com home-to-go.ca hometogo.at hometogo.be hometogo.ch hometogo.co.kr hometogo.co.uk hometogo.com hometogo.com.au hometogo.com.hk hometogo.com.mx hometogo.de hometogo.dk hometogo.es hometogo.fr hometogo.it hometogo.jp hometogo.nl hometogo.no hometogo.pl hometogo.ru hometogo.se hotelscan.com it.tripadvisor.ch jetcost.at jetcost.cl jetcost.co.id jetcost.co.in jetcost.co.kr jetcost.co.nz jetcost.co.th jetcost.co.uk jetcost.co.ve jetcost.co.za jetcost.com jetcost.com.au jetcost.com.bo jetcost.com.br jetcost.com.co jetcost.com.mx jetcost.com.my jetcost.com.pe jetcost.com.ph jetcost.com.sg jetcost.com.uy jetcost.de jetcost.dk jetcost.es jetcost.fi jetcost.fr jetcost.hk jetcost.hu jetcost.ie jetcost.it jetcost.nl jetcost.no jetcost.pl jetcost.pt jetcost.ro jetcost.ru jetcost.se jetsetter.com jetsetz.com/ kayak.co.uk kayak.com kayak.com.au kayak.com.br kayak.de kayak.es kayak.fr kayak.it ladybug.com lardeferias.com.br lbcarrentals.com lookuptrips.com luxurytravelonabudget.co maisondevacances.fr momondo.co.uk momondo.com momondo.com.au momondo.com.br momondo.de momondo.es momondo.fr momondo.it mundi.com.br mx.vuelosmuybaratos.com nl.tripadvisor.com no.tripadvisor.com onetime.com oyster.com pe.vuelosmuybaratos.com pl.tripadvisor.com savingsjoy.com smartertravel.com spinner.mauction.app/ swoodoo.com swoodoo.de th.tripadvisor.com travel.sorted.london traveldealsandnews.com travils.com tripadvisor.at tripadvisor.be tripadvisor.ca tripadvisor.ch tripadvisor.cl tripadvisor.cn tripadvisor.co tripadvisor.co.hu tripadvisor.co.id tripadvisor.co.il tripadvisor.co.kr tripadvisor.co.nz tripadvisor.co.uk tripadvisor.co.za tripadvisor.com tripadvisor.com.ar tripadvisor.com.au tripadvisor.com.br tripadvisor.com.eg tripadvisor.com.gr tripadvisor.com.hk tripadvisor.com.mx tripadvisor.com.my tripadvisor.com.pe tripadvisor.com.ph tripadvisor.com.sg tripadvisor.com.tr tripadvisor.com.tw tripadvisor.com.ve tripadvisor.com.vn tripadvisor.cz tripadvisor.de tripadvisor.dk tripadvisor.es tripadvisor.fi tripadvisor.fr tripadvisor.ie tripadvisor.in tripadvisor.it tripadvisor.jp tripadvisor.pt tripadvisor.rs tripadvisor.ru tripadvisor.se tripadvisor.sk tripping.com tripyork.com Turismocity.cl Turismocity.com.ar Turismocity.com.bo Turismocity.com.br Turismocity.com.co Turismocity.com.ec Turismocity.com.mx Turismocity.com.pa Turismocity.com.pe Turismocity.com.uy Turismocity.com.ve Turismocity.es unpublishedflight.com us.jetcost.com vacationrenter.com vacationson.com viajala.cl viajala.com viajala.com.ar viajala.com.br viajala.com.co viajala.com.ec viajala.com.mx viajala.com.pe volaeconomico.com volmoinscher.com whattopack.com wimdu.co.uk wimdu.com wimdu.de wimdu.es wimdu.fr wimdu.it wimdu.nl wimdu.pl
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: surfer_last_visited_date_hash=49cf6b342ad317e19954a3e079e8d00437d7bd94059619a378b3e64a9c4a55c2; expires=Fri, 03-Mar-2023 19:05:31 GMT; Max-Age=2592000; path=/; domain=www.justfly.com
surfer_last_visited_date=2023-02-01%2014%3A05%3A31; expires=Fri, 03-Mar-2023 19:05:31 GMT; Max-Age=2592000; path=/; domain=www.justfly.com
surfer_details3_hash=f4cd69bc05da55015702a8644031cb8d143a09222ef06c8ca1f866937405290a; expires=Thu, 01-Feb-2024 19:05:31 GMT; Max-Age=31536000; path=/; domain=www.justfly.com
surfer_details3=VVlPG3EQn%2BRi69Lb8SW0g5BOdkPjI%2F73mvnpvZzhQWNYzzuhPFHAA3s%3D; expires=Thu, 01-Feb-2024 19:05:31 GMT; Max-Age=31536000; path=/; domain=www.justfly.com
mirsess_hash=56ee51f70411c837061dd3eb76c12823d1ca762eb7aa11ef0dcfc7f28e21030b; expires=Wed, 01-Feb-2023 19:35:31 GMT; Max-Age=1800; path=/; domain=www.justfly.com
mirsess=1675278331%7C1; expires=Wed, 01-Feb-2023 19:35:31 GMT; Max-Age=1800; path=/; domain=www.justfly.com
isES_hash=14dc39d902f928604c6f0d4a4d5dc78aac2d95ef5eef807558b4cba761c233d5; expires=Fri, 03-Mar-2023 19:05:31 GMT; Max-Age=2592000; path=/; domain=www.justfly.com
isES=1; expires=Fri, 03-Mar-2023 19:05:31 GMT; Max-Age=2592000; path=/; domain=www.justfly.com
ss-b_hash=7450764fdd9f4cc2ca1cd3f693f2a3b365d9f01498b5f96cb9e9377df6091388; expires=Wed, 01-Feb-2023 20:05:31 GMT; Max-Age=3600; path=/; domain=justfly.com
ss-b=9; expires=Wed, 01-Feb-2023 20:05:31 GMT; Max-Age=3600; path=/; domain=justfly.com
ext_visit_id_hash=827fb9cfb2a5b7e3f8271c4f6d7a0c8af8be81e9cf173347bacfc02184a0cda5; expires=Wed, 01-Feb-2023 19:35:31 GMT; Max-Age=1800; path=/; domain=www.justfly.com
ext_visit_id=68dff82b573af5115e8ed740b9b6e1a4; expires=Wed, 01-Feb-2023 19:35:31 GMT; Max-Age=1800; path=/; domain=www.justfly.com
ext_visit_referer_hash=fa2c49c5f325fa64c17a1eb57ed090e2664e3b7bc7f698d056720f0fb7890d75; expires=Wed, 01-Feb-2023 19:35:31 GMT; Max-Age=1800; path=/; domain=www.justfly.com
ext_visit_referer=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=www.justfly.com
ext_visit_campaign_id_hash=0d98bdabeef7b2491239abd9abe4e1d0b0cf5363ad84c25685d47731506909ee; expires=Wed, 01-Feb-2023 19:35:31 GMT; Max-Age=1800; path=/; domain=www.justfly.com
ext_visit_campaign_id=1; expires=Wed, 01-Feb-2023 19:35:31 GMT; Max-Age=1800; path=/; domain=www.justfly.com
PHPSESSID=mu0n3hfnhbjg86kq84gb4eqa0v; expires=Wed, 01-Feb-2023 21:05:31 GMT; Max-Age=7200; path=/; domain=.justfly.com
vary: Accept-Encoding
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
strict-transport-security: max-age=31536000; includeSubDomains; preload;
x-request-id: 63DAB7FB-D17E231B01BBB410-DD348
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 792cf581adf60b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
7233063.collect.igodigital.com/collect.js
44.198.108.218200 OK 0 B URL HTTP/2 7233063.collect.igodigital.com/collect.js
IP 44.198.108.218:0
GET /collect.js HTTP/1.1
Host: 7233063.collect.igodigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.justfly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 19:05:32 GMT
content-type: application/javascript
last-modified: Tue, 31 Jan 2023 20:11:36 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2