Report - barefoot.capitalvacations.com/

Report Overview

Submitted URL
barefoot.capitalvacations.com/
IP
135.125.240.140
ASN
#16276 OVH SAS
Submitted
2022-12-01 23:29:15
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.6 kB	93.184.220.29
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
d2jtzd336hs8un.cloudfront.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	18 kB	1.1 MB	54.230.245.124
res.cloudinary.com	2520	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	982 B	1.8 MB	151.101.129.137
quality.seekda.com	569749	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	4.2 kB	135.125.240.141
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	3.5 kB	23.36.77.32
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
barefoot.capitalvacations.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	820 B	542 B	135.125.240.140
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	34.223.160.237
static.seekda.com	507078	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	94 kB	135.125.240.147
hbe-api.kognitiv.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.5 kB	11 kB	135.125.240.149
apm-server.seekda.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	508 B	243 B	135.125.240.139

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-01	medium	barefoot.capitalvacations.com/	Phishing
2022-12-01	medium	barefoot.capitalvacations.com/	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (37)

	URL	Size	First Seen	Last Seen
	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/804-13fd754e32aa16c3.js	30 kB	2023-03-07	2023-03-13
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/804-13fd754e32aa16c3.js IP 54.230.245.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:22:31 Last Seen2023-03-13 01:26:28 Times Seen1 Hash 71bbf3d5113ea7292eff8f549924719f 4bbc455e6b68efe2809e51fb0eb9c3495350ad9b 0237565bd7444834066a423ec756c1dfe466f5dec3cfb843f604918b7b00b0b2 Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/webpack-af0fc1fb1b57cb39.js	2.0 kB	2023-03-07	2024-04-10
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/webpack-af0fc1fb1b57cb39.js IP 54.230.245.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:02 Last Seen2024-04-10 02:00:44 Times Seen25 Hash a1820ca3389cbdd7e75dabdcf95e85a1 699fe0521e91bb2975d021fa5417281970bfb623 d8793e374dab2ae48fafd92ebc35cddfa733d706e51a0afc4d15b406362f0e39 Loading...

	ibe.seekda.com/dsr/S12535858/attribution?callback=skdtracking1669937343484376&cookie-enabled=true	232 B	2023-03-11	2023-03-11
Pretty URL ibe.seekda.com/dsr/S12535858/attribution?callback=skdtracking1669937343484376&cookie-enabled=true IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:52:31 Last Seen2023-03-11 23:52:31 Times Seen1 Hash b29742f39ad1fa1edb157488acee58c3 a98cb7c0b2d799fad49bca70b26d41d99d381aba 79b54ded7d2c15f7d22dbc0d07ee299fbc3ef10a17f4291a18a72a104af590ab Loading...

	cloud.seekda.com/w/w-tracking-api/group:BookingFlow/69549e60-3d6e-0136-cbf5-0050568253f2.js	19 kB	2023-03-08	2023-03-12
Pretty URL cloud.seekda.com/w/w-tracking-api/group:BookingFlow/69549e60-3d6e-0136-cbf5-0050568253f2.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:52:14 Last Seen2023-03-12 19:12:44 Times Seen1 Hash 22db3319eb65f407f66a7f4279770598 30e982addc7a2f110d064cd16ee4ac281c78f372 1fa6d6950fee1c170bdc270cedb845638bab483726a52839d0f2279b5b53524d Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/pages/index-4f91dc75cd41d669.js	78 kB	2023-03-08	2023-03-11
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/pages/index-4f91dc75cd41d669.js IP 54.230.245.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:52:14 Last Seen2023-03-11 23:52:31 Times Seen1 Hash 6353c76b292a54e1c9010e27067742f3 d2551f62bd6d7c68681644c5f193f5b02558ef22 fc0933e4114cdf2ecc7f67966972f6b7c0ed0c89461b0bca0feeddad6b56a953 Loading...

	barefoot.capitalvacations.com/	614 B	2023-03-07	2023-03-17
Pretty URL barefoot.capitalvacations.com/ IP 135.125.240.140 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:02 Last Seen2023-03-17 10:39:35 Times Seen1 Hash 9ccd0569c31e516026cf0d148ed93a10 d2c26425bb55400ac83145ba61b43adf815567f4 565248d98a5255359cf2e14d8bcceabfe813aea78a98c80cdea5782b67e010c4 Loading...

	unknown	0 B	2023-03-07	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-26 22:49:32 Times Seen37103727 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/99d407f1-740efc49d6ddee4e.js	384 kB	2023-03-08	2023-03-11
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/99d407f1-740efc49d6ddee4e.js IP 54.230.245.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:27:58 Last Seen2023-03-11 23:52:31 Times Seen1 Hash b5115c0e05a48993d0abd068a1604e03 e4d8afd78bcbbebc75efb41167e397a22fa9b8ca b051f0eb4ecf6b572977c922c1448a6dfd6844e9089dac4eb4e23ab7c84d2f6f Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/234-5f3fb97a1b4a275f.js	29 kB	2023-03-08	2023-03-12
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/234-5f3fb97a1b4a275f.js IP 54.230.245.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:52:14 Last Seen2023-03-12 19:12:44 Times Seen1 Hash 04a646407ee05d9ebf6684a838c42396 45b75bd4e2f5ede2f16a6e0d6ac6b474a51e98bc 48c0bea8359f032bf392dbd22b5cee9f8292d3b0ee368858c792e7d7f4e7cb26 Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/364-89bf8dd5b58b10a4.js	8.8 kB	2023-03-08	2023-03-11
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/364-89bf8dd5b58b10a4.js IP 54.230.245.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:52:14 Last Seen2023-03-11 23:52:31 Times Seen1 Hash 6d27f012a9d000e369c0aef4ba9596e1 b2ce065556c2f46e89db03e82d0b0e1ee4fe6836 67ee1a11486dee1f43fae145dccdaa629e4575f4e5019d8a11f4e30790de1ac5 Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/695-5ea418b3362d2010.js	65 kB	2023-03-07	2023-03-13
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/695-5ea418b3362d2010.js IP 54.230.245.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:22:31 Last Seen2023-03-13 01:26:28 Times Seen1 Hash e819733e17717292de4c083f88b7d57f a60bc128dbdda2b78d9de9fb9f61b08403da2c0b f123039ae6e614722874ff0b74ebe1843d0878de8419d1b050aef5d802dca22a Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/979-fc9d9c0ee5b8eeaa.js	33 kB	2023-03-07	2023-03-13
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/979-fc9d9c0ee5b8eeaa.js IP 54.230.245.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:22:31 Last Seen2023-03-13 01:26:28 Times Seen1 Hash 47df750212e1d304e7827e5da25d0228 7d5ddc45e2f80b298fc77d61b4163eb5ec434b65 1cd89ea35119ea4b93c793f1908140261c3a82170284b7079feb212ad6332b53 Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/ehIawmgvLPiidfXQEXmP0/_ssgManifest.js	77 B	2023-03-07	2024-04-26
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/ehIawmgvLPiidfXQEXmP0/_ssgManifest.js IP 54.230.245.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:02 Last Seen2024-04-26 22:14:27 Times Seen85384 Hash b6652df95db52feb4daf4eca35380933 65451d110137761b318c82d9071c042db80c4036 6f5b4aa00d2f8d6aed9935b471806bf7acef464d0c1d390260e5fe27f800c67e Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/ehIawmgvLPiidfXQEXmP0/_middlewareManifest.js	92 B	2023-03-07	2024-04-26
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/ehIawmgvLPiidfXQEXmP0/_middlewareManifest.js IP 54.230.245.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:01 Last Seen2024-04-26 21:38:32 Times Seen7668 Hash 7c3f7e060745668041278118c0bb3d6d e639f56695b3cc30d78dce7a0084aa8299a1311a de5341313a4dc5d982ca50ae4a491e84bc5e80b0f439d87f05fc3973c1b7e59a Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/main-1f7489bfb2b58832.js	146 kB	2023-03-08	2023-03-13
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/main-1f7489bfb2b58832.js IP 54.230.245.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:43:26 Last Seen2023-03-13 19:39:48 Times Seen1 Hash 21c2dffc0e1b2d43506e578f82c4983d 6658afd6b8af8bdd74d787bd5a532bca82dc0d8c fb4ee749d7ae13c5ce18eb75a8614a352eb51e2e9664a5a634b7bd7f022155b2 Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/38-7f41f4a9e2fe47a2.js	10 kB	2023-03-07	2023-03-13
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/38-7f41f4a9e2fe47a2.js IP 54.230.245.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:42:43 Last Seen2023-03-13 01:26:28 Times Seen1 Hash ca9c4682119675c0ca10f4cb35d62e95 f17bc79079e083a8d23addc9511a5802476baaec a19f16c3fa25d5282585abb229555cbf35af28bc5b3efcd5a9ff900e798f8203 Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/818-2d46f7d1223300d3.js	381 kB	2023-03-08	2023-03-11
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/818-2d46f7d1223300d3.js IP 54.230.245.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:52:14 Last Seen2023-03-11 23:52:31 Times Seen1 Hash b131b2ae8bb7971d1a87c509856d7e9f 1eef95336021ac65e63806d644db29ca9bc4e308 62b2cc826d0d2b291065584176a9648d451bd572e3f0636d605a349a479853cd Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/648-b7d007e5ee685d28.js	243 kB	2023-03-08	2023-03-11
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/648-b7d007e5ee685d28.js IP 54.230.245.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:52:14 Last Seen2023-03-11 23:52:31 Times Seen1 Hash 24678a880cf3bfc261551483f838823d 0fff67fa3ab9192efb28de0451306e492fe0f747 6cd4bddac9880c4e7cbe0954931935788304f6016c531194b678465e6ce16811 Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/framework-4774102d6f75bb1e.js	157 kB	2023-03-07	2023-03-17
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/framework-4774102d6f75bb1e.js IP 54.230.245.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:02 Last Seen2023-03-17 10:39:35 Times Seen1 Hash 5f2c27f9f9284a2c803b4ff20e30f3d4 ebfb6d7d25fd05e07ba5860c572c25f04d9a39b6 a62655e682702ec4d1a20b133c88e79b0fecf79187ef24e305b99f4c742d1846 Loading...

	barefoot.capitalvacations.com/	19 kB	2023-03-07	2024-04-10
Pretty URL barefoot.capitalvacations.com/ IP 135.125.240.140 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:02 Last Seen2024-04-10 13:51:05 Times Seen90 Hash 45877a71ad06ad133861a12601587957 84f766f58bec8935e96505636142c6f55a70c47b d6b59bc54940106116d4ee88781066bd91b5c8b65dec58c2ef6b0da2ef68d1bb Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/55ba302e-56c033a647309a77.js	66 kB	2023-03-08	2023-03-12
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/55ba302e-56c033a647309a77.js IP 54.230.245.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:52:14 Last Seen2023-03-12 16:29:34 Times Seen1 Hash c853b9a1b767ecdd6e547aa3b811ca53 7183849d91ddb766bcfa8c7684fa9e5b6a89b2fc 93b9f5ac1bbb1c4a9eead8fe51a47fbc2842c2cd83ac7a0f4fb89e483e7b0c09 Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/c0a33b72-efbe3e99c4b6522e.js	312 kB	2023-03-07	2023-11-23
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/c0a33b72-efbe3e99c4b6522e.js IP 54.230.245.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:02 Last Seen2023-11-23 19:59:38 Times Seen111 Hash 20c05803e9be70b8330e9546dae4477b bc2b89e091cd34d89ae6ed55665f3edf0679934e 817819a1854e0f9c39282414af31975125cbd459e94b1fea0ed4f4143608ccd5 Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/302-7b32094aede33cd2.js	21 kB	2023-03-08	2023-03-11
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/302-7b32094aede33cd2.js IP 54.230.245.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:52:14 Last Seen2023-03-11 23:52:31 Times Seen1 Hash 7ca50249caa177ab5cd610f8cd2bf5a0 5af5e540839df637b06d8ae308dd63b59b3dd3c1 44fbeee701628b86e1046bcbdf911c3bdd1718330f59211e0ef183003384e2be Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/333-f51e7b20f7750937.js	206 kB	2023-03-08	2023-03-11
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/333-f51e7b20f7750937.js IP 54.230.245.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:52:14 Last Seen2023-03-11 23:52:31 Times Seen1 Hash 0510f3c0cec814e726e5b26ff39e1416 dbe2a7f5d9e3a69bd21da9d686692533ed9525b2 d334cbfcff9b768a38214b36475d6a5c9bdc20165e1e476d5588b7408864091d Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/433-a2824426e6ccb54e.js	274 kB	2023-03-08	2023-03-12
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/433-a2824426e6ccb54e.js IP 54.230.245.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:52:14 Last Seen2023-03-12 08:57:37 Times Seen1 Hash c52e2aee92dbd613eaa0eac98788bfa1 1b2e173adcec11b282e08c0864e7737d94e5ce3f b0d10f6b562a9b9ee10dff7646e0600fdb3a1fe9fa7ca8d3926a25bbb1ddd787 Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/373-95390337f262d59f.js	51 kB	2023-03-08	2023-03-12
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/373-95390337f262d59f.js IP 54.230.245.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:52:14 Last Seen2023-03-12 08:57:37 Times Seen1 Hash 79fd272997f237fa9224bb2637eccf68 553394e4a30064f04f74dd47e3c153092c5549d9 450712778a4166ac88ff6ebe1558f04af20662a43eb8736929a1f90d8cd4509a Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/659-a75792a0129c3b75.js	272 kB	2023-03-08	2023-03-12
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/659-a75792a0129c3b75.js IP 54.230.245.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:52:14 Last Seen2023-03-12 08:57:36 Times Seen1 Hash 110f77484e4a6fa56fd0fd02c313647b 3a2481138159d0c802e5947b621e591e3c6a4a5e 8cdd7a387ade14b669d7e116e1173fda97173ad8e465c19c0ffb3bfa25c773f6 Loading...

	d2jtzd336hs8un.cloudfront.net/static/scripts/elastic-apm-rum.umd.min.js?checksum=e93c8d4d150530d83ee4ee385157b262	62 kB	2023-03-07	2023-11-23
Pretty URL d2jtzd336hs8un.cloudfront.net/static/scripts/elastic-apm-rum.umd.min.js?checksum=e93c8d4d150530d83ee4ee385157b262 IP 54.230.245.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:02 Last Seen2023-11-23 19:59:38 Times Seen125 Hash e93c8d4d150530d83ee4ee385157b262 495438c2d303efb3d2339e80da82ee3b96a5aa60 2610f6bab7dcab2b2f2865240c47dc983e2e5785e60ac0f382a0c86e3e62c1c2 Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/ehIawmgvLPiidfXQEXmP0/_buildManifest.js	3.6 kB	2023-03-08	2023-03-11
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/ehIawmgvLPiidfXQEXmP0/_buildManifest.js IP 54.230.245.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:52:14 Last Seen2023-03-11 23:52:31 Times Seen1 Hash 383f4e550f85910505d5bf72348cb04d e3d31b34905b452d8246994462661b3f32bd5bc8 17ad31f730be94ce449a8c3e247b2ed44dff0da12cf885c63ea46ad36f891b28 Loading...

	barefoot.capitalvacations.com/	173 B	2023-03-07	2023-10-02
Pretty URL barefoot.capitalvacations.com/ IP 135.125.240.140 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:02 Last Seen2023-10-02 00:40:33 Times Seen42 Hash ad7028296a8e5e8d5e691f60e31b665c dd9c9683e422322dbf84a7243c554907617fd4da 7bfcc750c689b59fc21d1a9566494c683bb3ed79b1f3b081653494687a662bee Loading...

	barefoot.capitalvacations.com/	466 B	2023-03-11	2023-03-11
Pretty URL barefoot.capitalvacations.com/ IP 135.125.240.140 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:52:31 Last Seen2023-03-11 23:52:31 Times Seen1 Hash 212767124f1c2475691839c425c753fc 022a2207899fbc4a2d7652e23af952b65750b631 af5c09ce6a952dd3a0782f1f6ae3f646dfcadcb87cb2efef8373f18e2bb839d1 Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/d099b070-221cabf5ffd73869.js	72 kB	2023-03-07	2023-03-17
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/d099b070-221cabf5ffd73869.js IP 54.230.245.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:02 Last Seen2023-03-17 10:39:35 Times Seen1 Hash 735819074c12554182aa6a191be3901e eb0efe89e8939164708f819554e5549cd4a160ad 99482492ebd1dff6c4db8b2fb982195a7770f905519952a5418df871e1f4d78f Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/7e0f675c-7628088f2378fdb4.js	52 kB	2023-03-08	2023-03-13
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/7e0f675c-7628088f2378fdb4.js IP 54.230.245.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:37:49 Last Seen2023-03-13 19:39:48 Times Seen1 Hash 0fa52166e7c8bbd5e5189791358643f2 dc9aa299399f45ea394a03fc95afe1a510745e0e 7469f9011eb8989078a5891b63f052e2ede931ae925b469cf4de6590d471dc01 Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/0b7b90cd-2a28d1759dacf41f.js	142 kB	2023-03-07	2023-03-17
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/0b7b90cd-2a28d1759dacf41f.js IP 54.230.245.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:02 Last Seen2023-03-17 10:39:35 Times Seen1 Hash 5c50a7ab91d793a8f9c26dda875a9116 92b53d2d2e63b7e62ab7a5be4a28121833523a80 28a37349775c126a9cfe54589e2d4511ab5fb22261456a0c18ac309a74b87c81 Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/914-7d07b1ef6b622c87.js	68 kB	2023-03-08	2023-03-12
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/914-7d07b1ef6b622c87.js IP 54.230.245.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:52:14 Last Seen2023-03-12 08:57:36 Times Seen1 Hash bb3b52f885200e978bdca6cacc5cc61a 9652eaa0648bd41156c5b28dea97f989a99830c2 65e71d4d8c19103f25010dd4df68ed09b58d91f22a21e74457cc863b3f4f4e92 Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/928-20b3fd6334a5c778.js	75 kB	2023-03-08	2023-03-11
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/928-20b3fd6334a5c778.js IP 54.230.245.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:52:14 Last Seen2023-03-11 23:52:31 Times Seen1 Hash 4cad695255d0e5c35be75f0a7220d25b f337cb2d56380b05c1f6520da3fa72adfc3e1cc8 c0fce4a2af338b0475ec7352e091d79ba9a0afd70e51e72a241a61a53fbddaad Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/956-9885616c4f0e27cf.js	67 kB	2023-03-08	2023-03-13
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/956-9885616c4f0e27cf.js IP 54.230.245.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:52:14 Last Seen2023-03-13 01:26:28 Times Seen1 Hash 4d7578b2d6bb180c05bc6cec3037e8e9 f3f2882c205c83c4d3e48f4d740989c375f64d12 1db4152f3d7bd381b84957db5f122ae111605697243e5a923054934d22d4ccef Loading...

HTTP Transactions (70)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5156
Expires: Fri, 02 Dec 2022 00:54:59 GMT
Date: Thu, 01 Dec 2022 23:29:03 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3483
Cache-Control: max-age=129612
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 23:29:03 GMT
Etag: "63888270-1d7"
Expires: Sat, 03 Dec 2022 11:29:15 GMT
Last-Modified: Thu, 01 Dec 2022 10:31:12 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 01 Dec 2022 23:19:50 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 553
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8680
Expires: Fri, 02 Dec 2022 01:53:43 GMT
Date: Thu, 01 Dec 2022 23:29:03 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: /U/jcuiUHGhiLRihDPGIBS0a0KO+0sjdgzQA9jol0SmWlgvNpIPmc7m4uNP/bSyXW5U8h8sSbjQ=
x-amz-request-id: ZD20RXBY1YXYSP21
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 22:46:28 GMT
age: 2555
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

barefoot.capitalvacations.com/

135.125.240.140

302 Found

0 B

URL HTTP/1.1
barefoot.capitalvacations.com/
IP
135.125.240.140:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: barefoot.capitalvacations.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Found
content-length: 0
location: https://barefoot.capitalvacations.com/
cache-control: no-cache

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 23:29:03 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 01 Dec 2022 23:08:56 GMT
cache-control: public,max-age=3600
age: 1207
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3423
Cache-Control: max-age=124489
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 23:29:03 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 10:03:52 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471

d2jtzd336hs8un.cloudfront.net/_next/static/media/bf-icons-extended.00ff8422.ttf

54.230.245.124

200 OK

94 kB

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/media/bf-icons-extended.00ff8422.ttf
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data
Size
94 kB (93868 bytes)
Hash
439b52438c772a69ba68cddd45b0ba56
acc851fc76bade985719ddd6b688e184f1096121
fd15c1d08eecfa3bebd1c8a1e28836de2f04036509f7ee65e1945cc0decd725d

HTTP Headers

GET /_next/static/media/bf-icons-extended.00ff8422.ttf HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://barefoot.capitalvacations.com
Connection: keep-alive
Referer: https://d2jtzd336hs8un.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/octet-stream
content-length: 93868
date: Tue, 15 Nov 2022 13:37:21 GMT
last-modified: Tue, 03 May 2022 12:24:17 GMT
etag: "62711ef1-16eac"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
strict-transport-security: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3hU-cgFkbG1K_DpintrmBLXgg_NoQkW0dW9BEwYxmiGprpC_2WaDlA==
age: 1417903
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/static/themes/default/assets/fonts/icons.woff

54.230.245.124

200 OK

50 kB

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/static/themes/default/assets/fonts/icons.woff
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type
Web Open Font Format, TrueType, length 50524, version 1.0\012- data
Size
50 kB (50524 bytes)
Hash
faff92145777a3cbaf8e7367b4807987
9c293328f39dc54bd654d273d0cc5af0d11905c6
95b6a4840f8711ecab427bc236eb86098db7e5c782bafb139c8c30805aa5ffe1

HTTP Headers

GET /static/themes/default/assets/fonts/icons.woff HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://barefoot.capitalvacations.com
Connection: keep-alive
Referer: https://d2jtzd336hs8un.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/font-woff
content-length: 50524
date: Thu, 01 Dec 2022 13:44:22 GMT
last-modified: Tue, 03 May 2022 12:34:48 GMT
etag: "62712168-c55c"
access-control-allow-origin: *
accept-ranges: bytes
strict-transport-security: max-age=15768000
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nkYT9swrsbo6m3CjnQqZ4OfBmtvXYh60za7-s0YzdkSS2TqPhVVUzw==
age: 35082
X-Firefox-Spdy: h2

push.services.mozilla.com/

34.223.160.237

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.223.160.237:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: CKsV6MvGRXYXzylNskaABA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: h54TGtQRGjBkxdTtcQdxdTu+mMY=

static.seekda.com/assets/fonts/google/lato-v23-latin-regular.woff2

135.125.240.147

200 OK

24 kB

URL HTTP/2
static.seekda.com/assets/fonts/google/lato-v23-latin-regular.woff2
IP
135.125.240.147:0
ASN
#16276 OVH SAS

File type
Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Size
24 kB (23580 bytes)
Hash
e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537

HTTP Headers

GET /assets/fonts/google/lato-v23-latin-regular.woff2 HTTP/1.1
Host: static.seekda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://barefoot.capitalvacations.com
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 01 Dec 2022 23:29:04 GMT
content-type: font/woff2
content-length: 23580
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://barefoot.capitalvacations.com
access-control-expose-headers: Date, Etag, Server, Connection, Accept-Ranges, Content-Range, Content-Encoding, Content-Length, Content-Type, Content-Disposition, Last-Modified, Content-Language, Cache-Control, Retry-After, X-Amz-Bucket-Region, Expires, X-Amz*, X-Amz*, *
content-security-policy: block-all-mixed-content
etag: "e1b3b5908c9cf23dfb2b9c52b9a023ab"
last-modified: Wed, 23 Nov 2022 09:00:23 GMT
no-gzip-compression: true
vary: Origin, Accept-Encoding
x-amz-replication-status: COMPLETED
x-amz-request-id: 172CCF2ABE27794F
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: 585fcc95-e6cc-4504-bae5-2f8cdb20aa2b
strict-transport-security: max-age=15768000
server: Kognitiv
set-cookie: WEIU3SASDIO=5e949bcc1c21420; path=/; HttpOnly; Secure; SameSite=none
cache-control: max-age=43200, private
X-Firefox-Spdy: h2

static.seekda.com/assets/fonts/google/lato-v23-latin-700.woff2

135.125.240.147

200 OK

23 kB

URL HTTP/2
static.seekda.com/assets/fonts/google/lato-v23-latin-700.woff2
IP
135.125.240.147:0
ASN
#16276 OVH SAS

File type
Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Size
23 kB (23040 bytes)
Hash
de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49

HTTP Headers

GET /assets/fonts/google/lato-v23-latin-700.woff2 HTTP/1.1
Host: static.seekda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://barefoot.capitalvacations.com
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 01 Dec 2022 23:29:04 GMT
content-type: font/woff2
content-length: 23040
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://barefoot.capitalvacations.com
access-control-expose-headers: Date, Etag, Server, Connection, Accept-Ranges, Content-Range, Content-Encoding, Content-Length, Content-Type, Content-Disposition, Last-Modified, Content-Language, Cache-Control, Retry-After, X-Amz-Bucket-Region, Expires, X-Amz*, X-Amz*, *
content-security-policy: block-all-mixed-content
etag: "de69cf9e514df447d1b0bb16f49d2457"
last-modified: Wed, 23 Nov 2022 09:00:22 GMT
no-gzip-compression: true
vary: Origin, Accept-Encoding
x-amz-replication-status: COMPLETED
x-amz-request-id: 172CCF2ABE4625ED
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: cd8e8624-3630-4da6-93db-39ae75139caf
strict-transport-security: max-age=15768000
server: Kognitiv
set-cookie: WEIU3SASDIO=5eac18f6d8e4c30; path=/; HttpOnly; Secure; SameSite=none
cache-control: max-age=43200, private
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/media/bf-icons.3014e895.ttf

54.230.245.124

200 OK

156 kB

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/media/bf-icons.3014e895.ttf
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data
Size
156 kB (156184 bytes)
Hash
e457529d073c28d569d2808199a9bffe
689f15a06422982cc641b6406abb13db284a9ab1
6004f0b7111e09c8acdae325b3e75d38f965d89d6321df8811dabaf44d76d5df

HTTP Headers

GET /_next/static/media/bf-icons.3014e895.ttf HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://barefoot.capitalvacations.com
Connection: keep-alive
Referer: https://d2jtzd336hs8un.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/octet-stream
content-length: 156184
date: Tue, 15 Nov 2022 13:37:21 GMT
last-modified: Tue, 03 May 2022 12:34:30 GMT
etag: "62712156-26218"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
strict-transport-security: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: sMNuvGpTKCMe8QET21tO1ByIMDK2doMg50Gc2y1BtxjdN5wnYvHRwg==
age: 1417903
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/static/bf-icons-extended.ttf

54.230.245.124

200 OK

94 kB

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/static/bf-icons-extended.ttf
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data
Size
94 kB (93868 bytes)
Hash
439b52438c772a69ba68cddd45b0ba56
acc851fc76bade985719ddd6b688e184f1096121
fd15c1d08eecfa3bebd1c8a1e28836de2f04036509f7ee65e1945cc0decd725d

HTTP Headers

GET /static/bf-icons-extended.ttf HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://barefoot.capitalvacations.com
Connection: keep-alive
Referer: https://d2jtzd336hs8un.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/octet-stream
content-length: 93868
date: Thu, 01 Dec 2022 14:06:57 GMT
last-modified: Tue, 03 May 2022 12:34:48 GMT
etag: "62712168-16eac"
access-control-allow-origin: *
accept-ranges: bytes
strict-transport-security: max-age=15768000
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: UPi5gzDxbGsyg6qJH5f83Xbx9O0MY-_K4_jwsHWv2qTr1ya_8PM_hw==
age: 33727
X-Firefox-Spdy: h2

static.seekda.com/widgets/tracking-api/js/tracking-api.min.js?R9f343f5a1880f9815284e9ef9423a193ba6976d2

135.125.240.147

200 OK

44 kB

URL HTTP/2
static.seekda.com/widgets/tracking-api/js/tracking-api.min.js?R9f343f5a1880f9815284e9ef9423a193ba6976d2
IP
135.125.240.147:0
ASN
#16276 OVH SAS

File type
data
Size
44 kB (43956 bytes)
Hash
55f065ea1124dabaf742773216e3b194
35bbe777a566408b887226bf061eabccbe56d263
99cef4d568f63f8a433a1407196c9e70476c86714f406ab64174d5036cf2cfb8

HTTP Headers

GET /widgets/tracking-api/js/tracking-api.min.js?R9f343f5a1880f9815284e9ef9423a193ba6976d2 HTTP/1.1
Host: static.seekda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 01 Dec 2022 23:29:04 GMT
content-type: application/javascript
content-security-policy: block-all-mixed-content
etag: W/"3868633285d5ac63f9bd0ba84f051796"
last-modified: Thu, 13 Oct 2022 12:11:40 GMT
vary: Accept-Encoding, Origin, Accept-Encoding
x-amz-replication-status: COMPLETED
x-amz-request-id: 172CCF2AE413D2B3
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: 01da0275-ff14-45b1-acdb-50ac57ea90aa
content-encoding: gzip
strict-transport-security: max-age=15768000
server: Kognitiv
set-cookie: WEIU3SASDIO=5e586ba66df10c0; path=/; HttpOnly; Secure; SameSite=none
cache-control: max-age=43200, private
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/static/favicon-16x16.png?checksum=dd28c5fda48a5d67616d19f3b07c2551

54.230.245.124

200 OK

1.5 kB

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/static/favicon-16x16.png?checksum=dd28c5fda48a5d67616d19f3b07c2551
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Size
1.5 kB (1478 bytes)
Hash
d7b001b5f8cb2e3b6c4923de34a838d4
d9118452feea4524817c8b243890125279b68155
97e15da871ba83753c8de32bf2798244821283a89b209eb1527f793af07e240a

HTTP Headers

GET /static/favicon-16x16.png?checksum=dd28c5fda48a5d67616d19f3b07c2551 HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 1478
last-modified: Tue, 08 Nov 2022 10:56:47 GMT
access-control-allow-origin: *
accept-ranges: bytes
strict-transport-security: max-age=31536000
date: Thu, 01 Dec 2022 21:25:09 GMT
etag: "636a35ef-5c6"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: FH-sfFocvagphKf1xsa0_6xqe019NUVGtUOnAIjfF-hd68BE7GNqhA==
age: 34507
X-Firefox-Spdy: h2

res.cloudinary.com/seekda/image/upload/v1613737813/production/S12535858/barefootBanner.png

151.101.129.137

200 OK

1.8 MB

URL HTTP/2
res.cloudinary.com/seekda/image/upload/v1613737813/production/S12535858/barefootBanner.png
IP
151.101.129.137:0
ASN
#54113 FASTLY

File type
PNG image data, 1440 x 520, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 MB (1800896 bytes)
Hash
d45c3f96471695cb830362345d5a5f5b
2aae5fc887e7d54b5d8f66e54fe217051c8f263a
205c91d37c52407d860f516c86149da8e6057071aaa6162b5dc1a6fd48341df5

HTTP Headers

GET /seekda/image/upload/v1613737813/production/S12535858/barefootBanner.png HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/png
etag: "d45c3f96471695cb830362345d5a5f5b"
last-modified: Fri, 19 Feb 2021 12:30:15 GMT
date: Thu, 01 Dec 2022 23:29:04 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=302;cpu=1;start=2022-12-01T23:29:04.615Z;desc=miss,rtt;dur=9,cloudinary;dur=118;start=2022-12-01T23:29:04.599Z
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 1800896
X-Firefox-Spdy: h2

hbe-api.kognitiv.com/marketing?channelId=ibe&context=DETAIL

135.125.240.149

200 OK

2 B

URL HTTP/2
hbe-api.kognitiv.com/marketing?channelId=ibe&context=DETAIL
IP
135.125.240.149:0
ASN
#16276 OVH SAS

File type
JSON data\012- , ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

HTTP Headers

GET /marketing?channelId=ibe&context=DETAIL HTTP/1.1
Host: hbe-api.kognitiv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://barefoot.capitalvacations.com
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-length: 2
status: 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://barefoot.capitalvacations.com
vary: Origin, Accept-Encoding
date: Thu, 01 Dec 2022 23:29:05 GMT
etag: W/"2-l9Fw4VUO7kr8CvBlt4zaMCqXZ0w"
set-cookie: MGLH51CKJDVB=HBE7KSGFADL4; path=/; HttpOnly; Secure
cache-control: private
X-Firefox-Spdy: h2

quality.seekda.com/events/ibe/pageLoaded?

135.125.240.141

200 OK

0 B

URL HTTP/2
quality.seekda.com/events/ibe/pageLoaded?
IP
135.125.240.141:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /events/ibe/pageLoaded? HTTP/1.1
Host: quality.seekda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: cache-control,content-type
Referer: https://barefoot.capitalvacations.com/
Origin: https://barefoot.capitalvacations.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://barefoot.capitalvacations.com
access-control-allow-methods: POST
access-control-allow-headers: cache-control, content-type
access-control-allow-credentials: true
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, TRACE, OPTIONS, PATCH
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-length: 0
date: Thu, 01 Dec 2022 23:29:05 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=thei9zuS; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2

quality.seekda.com/events/ibe/searchBoxInit?

135.125.240.141

200 OK

0 B

URL HTTP/2
quality.seekda.com/events/ibe/searchBoxInit?
IP
135.125.240.141:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /events/ibe/searchBoxInit? HTTP/1.1
Host: quality.seekda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: cache-control,content-type
Referer: https://barefoot.capitalvacations.com/
Origin: https://barefoot.capitalvacations.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://barefoot.capitalvacations.com
access-control-allow-methods: POST
access-control-allow-headers: cache-control, content-type
access-control-allow-credentials: true
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, TRACE, OPTIONS, PATCH
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-length: 0
date: Thu, 01 Dec 2022 23:29:05 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=cheiG8ch; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7644
Expires: Fri, 02 Dec 2022 01:36:29 GMT
Date: Thu, 01 Dec 2022 23:29:05 GMT
Connection: keep-alive

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/7e0f675c-7628088f2378fdb4.js

54.230.245.124

200 OK

15 kB

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/7e0f675c-7628088f2378fdb4.js
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type
data
Size
15 kB (14596 bytes)
Hash
835912b0262327497258cf82f36a71a9
6c4a2e6f7b46612283dbe2e37cbfb3bb0740c881
80414debc2343a179a47ef1cca72d9182e92c0608b2c6553b686af69526844da

HTTP Headers

GET /_next/static/chunks/7e0f675c-7628088f2378fdb4.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Tue, 27 Sep 2022 13:45:30 GMT
etag: W/"6332fe7a-cabd"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: oeZD_VdRPZXk0jQAvm2LvQKY_-oIxUb-hI0TaikvCNnhXS_FiYb3Mw==
age: 1418100
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/pages/index-4f91dc75cd41d669.js

54.230.245.124

200 OK

18 kB

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/pages/index-4f91dc75cd41d669.js
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type
data
Size
18 kB (18406 bytes)
Hash
a3144765dba17b2ed2423a75f66e77fc
e5f41b0d4f954468d2f5fbf8c32c50254e68509e
acb3aa62f9c98b60fbcc1be9d3bfd9bd4c7848bb46bd606ae32339ec707ffad3

HTTP Headers

GET /_next/static/chunks/pages/index-4f91dc75cd41d669.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Mon, 28 Nov 2022 16:02:09 GMT
last-modified: Mon, 28 Nov 2022 16:01:42 GMT
etag: W/"6384db66-1326b"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2lvMiOXld8bkOe2r6WN8fMlaj14icQpTSeRAs78rvCaSpHlEIwDfRw==
age: 286014
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/928-20b3fd6334a5c778.js

54.230.245.124

200 OK

19 kB

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/928-20b3fd6334a5c778.js
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type
data
Size
19 kB (18723 bytes)
Hash
88ac486a9da3d9850f3ec6a7aff41507
392bb28b173b2dd3ea15c028c01a5f82a547b393
37ad0c3e8ce32ce349ec5bff58decbcd69d698f1baf359abaf0921e5f7bac9b0

HTTP Headers

GET /_next/static/chunks/928-20b3fd6334a5c778.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Mon, 28 Nov 2022 15:47:45 GMT
last-modified: Mon, 28 Nov 2022 15:47:13 GMT
etag: W/"6384d801-12605"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xHCLA2iVimtfPDl297ShP8pRVBLTTpY2vxTGL5ohP0w0c3J1bhqG8g==
age: 286878
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7644
Expires: Fri, 02 Dec 2022 01:36:29 GMT
Date: Thu, 01 Dec 2022 23:29:05 GMT
Connection: keep-alive

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/956-9885616c4f0e27cf.js

54.230.245.124

200 OK

24 kB

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/956-9885616c4f0e27cf.js
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type
data
Size
24 kB (23657 bytes)
Hash
0048d86e4c0a2389d8c7657d1c0bd7c3
f78a3574619595663bff8a1a29fff70982f25c39
25ca66c4cab9d198a929caf05e834b5215bcfcafc82ab789aa4d233bfd49fc53

HTTP Headers

GET /_next/static/chunks/956-9885616c4f0e27cf.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Mon, 14 Nov 2022 12:48:16 GMT
etag: W/"63723910-1052d"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0fITqtAXlnAN8NupWnUsvZSv2BuxXUTMEovbF1MzZhoaPsUdLjVnfg==
age: 1418100
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/333-f51e7b20f7750937.js

54.230.245.124

200 OK

50 kB

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/333-f51e7b20f7750937.js
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type
data
Size
50 kB (49818 bytes)
Hash
1d0e8e03d11035d51f76a93f6f543d96
28c09f2289bcf1d3516d0bf4e3f207a7caddfa02
71f26a7ededbce674a1f71aed82a15d24d4fc4b9aaf583853f02d1f057f1bd3b

HTTP Headers

GET /_next/static/chunks/333-f51e7b20f7750937.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Mon, 28 Nov 2022 15:47:45 GMT
last-modified: Mon, 28 Nov 2022 15:47:03 GMT
etag: W/"6384d7f7-324cb"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: K_MLVJ_nYyf4oliQOC1XpQvPfHB_TOGPJ5sLQi6dgAPGDsV7t9_1Iw==
age: 286878
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/ehIawmgvLPiidfXQEXmP0/_ssgManifest.js

54.230.245.124

200 OK

7.4 kB

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/ehIawmgvLPiidfXQEXmP0/_ssgManifest.js
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type
data
Size
7.4 kB (7395 bytes)
Hash
0ee2733c32035ce600ab6a6d42e703b9
c9a7e8f9d3052db27717750e1f963ba7d7028638
b715a0d9796cc7fe398bbe5e9a93183e6e89f6f773c876320c60d4b772eaa3e3

HTTP Headers

GET /_next/static/ehIawmgvLPiidfXQEXmP0/_ssgManifest.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Mon, 28 Nov 2022 16:02:09 GMT
last-modified: Mon, 28 Nov 2022 16:01:42 GMT
etag: W/"6384db66-4d"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: IH50haQItnaIAIeYKaDyNv96nlRaOmlV6D-Q2izEUPkOiTvITBcymQ==
age: 286014
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/979-fc9d9c0ee5b8eeaa.js

54.230.245.124

200 OK

21 kB

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/979-fc9d9c0ee5b8eeaa.js
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type
data
Size
21 kB (20996 bytes)
Hash
d234fe463a8448e60fa4a9b663f6ff3c
f987a4e7ce949abcbfc483a155e00382d2791793
d566216c99585b59d3a4155b543e553c8df2c28dadf611a8cfe92e2414714053

HTTP Headers

GET /_next/static/chunks/979-fc9d9c0ee5b8eeaa.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Wed, 07 Sep 2022 13:23:35 GMT
etag: W/"63189b57-7ff8"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NM9DPFyjeIoeuEJAHJXQH1Nq2gVnp7qMJFXZPgu6CUto8h_FAGu_Qg==
age: 1418100
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/234-5f3fb97a1b4a275f.js

54.230.245.124

200 OK

21 kB

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/234-5f3fb97a1b4a275f.js
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type
data
Size
21 kB (21356 bytes)
Hash
7ac9ca0562907a01385ac209bed50dd1
1ecbea880a07bd0045ba875fc187ccf77a2fe815
e0ed315b82b01ffaff0f22f54279b41ec4dd89a86b625e652fbd1815c93fbba3

HTTP Headers

GET /_next/static/chunks/234-5f3fb97a1b4a275f.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 14:08:22 GMT
last-modified: Tue, 15 Nov 2022 14:07:29 GMT
etag: W/"63739d21-70cc"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BvsbAYwmvY9OaqJqzE7EFJT-var2cH17usOQ_6dA51CHJPPIMPGk_Q==
age: 1416041
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/ehIawmgvLPiidfXQEXmP0/_buildManifest.js

54.230.245.124

200 OK

4.1 kB

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/ehIawmgvLPiidfXQEXmP0/_buildManifest.js
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type
data
Size
4.1 kB (4138 bytes)
Hash
7cc2ed979e82451b92a283548fb0a293
638f9b38ac8192bc7cbcb03a7804fdc5c796d5f6
b7dd0c0804f8b0d38791a784a7a9962645fd18a6ddc5d696bb71dbadfe8405ed

HTTP Headers

GET /_next/static/ehIawmgvLPiidfXQEXmP0/_buildManifest.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Mon, 28 Nov 2022 16:02:09 GMT
last-modified: Mon, 28 Nov 2022 16:01:50 GMT
etag: W/"6384db6e-e22"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: sR3hh22ukxylOfgDRIZaQvwvNt3H6IOKX0iAZFMg9ctFK_oUhNjUaQ==
age: 286014
X-Firefox-Spdy: h2

hbe-api.kognitiv.com/unavailable-days

135.125.240.149

200 OK

7.4 kB

URL HTTP/2
hbe-api.kognitiv.com/unavailable-days
IP
135.125.240.149:0
ASN
#16276 OVH SAS

File type
data
Size
7.4 kB (7388 bytes)
Hash
1a167f01f5fe65679e8b83f37a57a9c3
4610bd400a0f76b47de6d4747102f09920c69a8e
a0434188e31528b8941a04fd1b6ae4ea0b6b6f49dcc4fd76640a0f71e5a76da7

HTTP Headers

POST /unavailable-days HTTP/1.1
Host: hbe-api.kognitiv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 63
Origin: https://barefoot.capitalvacations.com
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/json; charset=utf-8
status: 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://barefoot.capitalvacations.com
vary: Accept-Encoding, Origin, Accept-Encoding
date: Thu, 01 Dec 2022 23:29:05 GMT
etag: W/"83-3fyoPqc6HaGCmda4hUoVVAoCOww"
content-encoding: gzip
set-cookie: MGLH51CKJDVB=VEI1698VEKLN9; path=/; HttpOnly; Secure
X-Firefox-Spdy: h2

quality.seekda.com/events/ibe/pageReady?

135.125.240.141

200 OK

0 B

URL HTTP/2
quality.seekda.com/events/ibe/pageReady?
IP
135.125.240.141:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /events/ibe/pageReady? HTTP/1.1
Host: quality.seekda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: cache-control,content-type
Referer: https://barefoot.capitalvacations.com/
Origin: https://barefoot.capitalvacations.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://barefoot.capitalvacations.com
access-control-allow-methods: POST
access-control-allow-headers: cache-control, content-type
access-control-allow-credentials: true
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, TRACE, OPTIONS, PATCH
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-length: 0
date: Thu, 01 Dec 2022 23:29:05 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=thei9zuS; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2

hbe-api.kognitiv.com/offers

135.125.240.149

200 OK

1.6 kB

URL HTTP/2
hbe-api.kognitiv.com/offers
IP
135.125.240.149:0
ASN
#16276 OVH SAS

File type
gzip compressed data, from Unix\012- data
Size
1.6 kB (1565 bytes)
Hash
b7cb6d1fdb8f2071dbadc5d54154a85b
1bee8311c49b789167dd81c5020d59bd457efa94
7794448cd52131395e81b08dc31c2b8dbf124fec1ebe180f5f300dcf8a1e0406

HTTP Headers

OPTIONS /offers HTTP/1.1
Host: hbe-api.kognitiv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://barefoot.capitalvacations.com/
Origin: https://barefoot.capitalvacations.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
status: 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://barefoot.capitalvacations.com
vary: Origin
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-headers: content-type
date: Thu, 01 Dec 2022 23:29:05 GMT
set-cookie: MGLH51CKJDVB=VEI1698VEKLN9; path=/; HttpOnly; Secure
cache-control: private
X-Firefox-Spdy: h2

res.cloudinary.com/seekda/image/upload/w_768,h_432,c_fill,f_auto,fl_lossy,q_auto/production/S12535858/balcony_view_2BR_barefoot_suites.jpg

151.101.129.137

200 OK

46 kB

URL HTTP/2
res.cloudinary.com/seekda/image/upload/w_768,h_432,c_fill,f_auto,fl_lossy,q_auto/production/S12535858/balcony_view_2BR_barefoot_suites.jpg
IP
151.101.129.137:0
ASN
#54113 FASTLY

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 768x432, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
46 kB (45952 bytes)
Hash
0f5fe2cdb61d4f876af50aa0a7f300e8
787856e7a3f77dbd256c8e4110d426e1427419cb
e5e8e7dc461e4e84b45de2fc4994d39a3d0c87d000f1332cd873a4287a660e80

HTTP Headers

GET /seekda/image/upload/w_768,h_432,c_fill,f_auto,fl_lossy,q_auto/production/S12535858/balcony_view_2BR_barefoot_suites.jpg HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-disposition: inline; filename="balcony_view_2BR_barefoot_suites.webp"
content-type: image/webp
etag: "0f5fe2cdb61d4f876af50aa0a7f300e8"
last-modified: Mon, 27 Apr 2020 18:26:34 GMT
date: Thu, 01 Dec 2022 23:29:06 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=659;cpu=0;start=2022-12-01T23:29:05.976Z;desc=miss,rtt;dur=8,cloudinary;dur=201;start=2022-12-01T23:29:06.297Z
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 45952
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/pages/_app-064f454970a46d93.js

54.230.245.124

200 OK

467 kB

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/pages/_app-064f454970a46d93.js
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (65536), with no line terminators
Size
467 kB (466689 bytes)
Hash
da45c558aefb369f5448e6559b8167ec
fa5d2d16410884a527b803c38e1eca1ac8009413
19936b8bfc5ab81ce9c288e8aff5373dfc5ca3026508a1565ecb67903d37a229

HTTP Headers

GET /_next/static/chunks/pages/_app-064f454970a46d93.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Mon, 28 Nov 2022 15:47:45 GMT
last-modified: Mon, 28 Nov 2022 15:47:13 GMT
etag: W/"6384d801-1b79e9"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: izmgyzN9ehGdugr13Seqbfd8ZKNXI8QCdylmCjq263zUPKv-H_YYRA==
age: 286878
X-Firefox-Spdy: h2

apm-server.seekda.com/intake/v2/rum/events

135.125.240.139

202 Accepted

0 B

URL HTTP/2
apm-server.seekda.com/intake/v2/rum/events
IP
135.125.240.139:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /intake/v2/rum/events HTTP/1.1
Host: apm-server.seekda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-ndjson
Content-Length: 34106
Origin: https://barefoot.capitalvacations.com
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 202 Accepted
access-control-allow-origin: https://barefoot.capitalvacations.com
x-content-type-options: nosniff
date: Thu, 01 Dec 2022 23:29:07 GMT
content-length: 0
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

quality.seekda.com/events/ibe/viewOffers?

135.125.240.141

200 OK

79 B

URL HTTP/2
quality.seekda.com/events/ibe/viewOffers?
IP
135.125.240.141:0
ASN
#16276 OVH SAS

File type
JSON data\012- , ASCII text, with no line terminators
Size
79 B (79 bytes)
Hash
41a600227c8d0071dbee9c5e71e96a60
e18f5a698a689c9dec4a8774fe2bdeebce0dc059
9b363b3777247dc54e3abb91cbb15d638f87633dd27bee967d104c9dccbd6a52

HTTP Headers

POST /events/ibe/viewOffers? HTTP/1.1
Host: quality.seekda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Cache-Control: no-cache
Content-Length: 1275
Origin: https://barefoot.capitalvacations.com
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://barefoot.capitalvacations.com
access-control-allow-credentials: true
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-type: application/json
date: Thu, 01 Dec 2022 23:29:05 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=cheiG8ch; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/static/scripts/elastic-apm-rum.umd.min.js?checksum=e93c8d4d150530d83ee4ee385157b262

54.230.245.124

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/static/scripts/elastic-apm-rum.umd.min.js?checksum=e93c8d4d150530d83ee4ee385157b262
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/scripts/elastic-apm-rum.umd.min.js?checksum=e93c8d4d150530d83ee4ee385157b262 HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Thu, 01 Dec 2022 12:18:33 GMT
last-modified: Wed, 11 May 2022 16:35:20 GMT
etag: W/"627be5c8-f0b3"
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=15768000
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pxY92QFEdGwYhioBl2bYGTOcTpyzW5d9zWIWgw2JlIFX1RikrY5jeg==
age: 40230
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/ehIawmgvLPiidfXQEXmP0/_middlewareManifest.js

54.230.245.124

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/ehIawmgvLPiidfXQEXmP0/_middlewareManifest.js
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/ehIawmgvLPiidfXQEXmP0/_middlewareManifest.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Mon, 28 Nov 2022 16:02:09 GMT
last-modified: Mon, 28 Nov 2022 16:01:42 GMT
etag: W/"6384db66-5c"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: OZOyi1pKG2phdqDxMElRMYtAEAMVC5Ab0SLWtBrDpGyrjsuTr3ozag==
age: 286014
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/framework-4774102d6f75bb1e.js

54.230.245.124

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/framework-4774102d6f75bb1e.js
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/framework-4774102d6f75bb1e.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Tue, 03 May 2022 12:24:17 GMT
etag: W/"62711ef1-2640a"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BKjhV8PsHdnw6DJT8Q3tST9FZn1J6Dyw77-hpklWBv2h7-107z0HZQ==
age: 1418100
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/0b7b90cd-2a28d1759dacf41f.js

54.230.245.124

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/0b7b90cd-2a28d1759dacf41f.js
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/0b7b90cd-2a28d1759dacf41f.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Tue, 03 May 2022 12:24:17 GMT
etag: W/"62711ef1-22c77"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: J79pdRgpelRJlPAVSnr6tEsoEGl-_L-YtdAIf-hfZoOt5q1DsYxTlA==
age: 1418100
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/38-7f41f4a9e2fe47a2.js

54.230.245.124

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/38-7f41f4a9e2fe47a2.js
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/38-7f41f4a9e2fe47a2.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Tue, 27 Sep 2022 13:45:54 GMT
etag: W/"6332fe92-2832"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NFZ5Wm78sSwD929mK5D8yM2H4xYE6Rcyed04obNGxgXNGnesxeq8Ag==
age: 1418100
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/static/icons-extended.css?checksum=c68829aa4263885cfc63b20639cec261

54.230.245.124

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/static/icons-extended.css?checksum=c68829aa4263885cfc63b20639cec261
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/icons-extended.css?checksum=c68829aa4263885cfc63b20639cec261 HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css
date: Thu, 01 Dec 2022 00:38:08 GMT
last-modified: Tue, 03 May 2022 12:34:48 GMT
etag: W/"62712168-250b"
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=15768000
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nPrhYScOtxgf-M7WUBQzuZiyCzp7ewMokUoeCykP1i_jGN_l0Gq79w==
age: 82255
X-Firefox-Spdy: h2

quality.seekda.com/events/ibe/searchBoxInit?

135.125.240.141

200 OK

0 B

URL HTTP/2
quality.seekda.com/events/ibe/searchBoxInit?
IP
135.125.240.141:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

POST /events/ibe/searchBoxInit? HTTP/1.1
Host: quality.seekda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Cache-Control: no-cache
Content-Length: 611
Origin: https://barefoot.capitalvacations.com
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://barefoot.capitalvacations.com
access-control-allow-credentials: true
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-type: application/json
date: Thu, 01 Dec 2022 23:29:05 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=cheiG8ch; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/648-b7d007e5ee685d28.js

54.230.245.124

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/648-b7d007e5ee685d28.js
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/648-b7d007e5ee685d28.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Mon, 28 Nov 2022 15:47:45 GMT
last-modified: Mon, 28 Nov 2022 15:47:03 GMT
etag: W/"6384d7f7-3b3e0"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dd9p3gIzkfPvLOREPrdI56bL2-OGByZmoS3zSKqSulaW6RfHsLZvfA==
age: 286878
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/static/semantic.min.css?checksum=c693bf067390b2ec6106c2aec0a1c2b1

54.230.245.124

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/static/semantic.min.css?checksum=c693bf067390b2ec6106c2aec0a1c2b1
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/semantic.min.css?checksum=c693bf067390b2ec6106c2aec0a1c2b1 HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css
date: Thu, 01 Dec 2022 04:40:04 GMT
last-modified: Wed, 27 Jul 2022 15:15:58 GMT
etag: W/"62e156ae-996ea"
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=15768000
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GaoPn0A1dayaMM0ndz6mHi2nt5iGRIJqj-Mv_-vpyoVgp4JCUnLaDw==
age: 67739
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/main-1f7489bfb2b58832.js

54.230.245.124

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/main-1f7489bfb2b58832.js
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/main-1f7489bfb2b58832.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Tue, 27 Sep 2022 13:45:30 GMT
etag: W/"6332fe7a-23bda"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: v4fBspSStlqgcaXNIVDjZF5WtzuJoeOziKQbzAHs0JThrf5zuXclyg==
age: 1418100
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/d099b070-221cabf5ffd73869.js

54.230.245.124

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/d099b070-221cabf5ffd73869.js
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/d099b070-221cabf5ffd73869.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Wed, 27 Jul 2022 15:16:14 GMT
etag: W/"62e156be-11876"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Gls96i5sEM9sKr2lrb_Ej8qbZ3cht_JFkkwcY9qNEZBT7Bf8tdNSBg==
age: 1418100
X-Firefox-Spdy: h2

quality.seekda.com/events/ibe/pageReady?

135.125.240.141

200 OK

0 B

URL HTTP/2
quality.seekda.com/events/ibe/pageReady?
IP
135.125.240.141:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

POST /events/ibe/pageReady? HTTP/1.1
Host: quality.seekda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Cache-Control: no-cache
Content-Length: 831
Origin: https://barefoot.capitalvacations.com
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://barefoot.capitalvacations.com
access-control-allow-credentials: true
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-type: application/json
date: Thu, 01 Dec 2022 23:29:05 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=thei9zuS; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/css/e45bafd752dbfc1b.css

54.230.245.124

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/css/e45bafd752dbfc1b.css
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/css/e45bafd752dbfc1b.css HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css
date: Mon, 28 Nov 2022 15:47:45 GMT
last-modified: Mon, 28 Nov 2022 15:47:13 GMT
etag: W/"6384d801-50631"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TAI1Nfq8FMWgxR7uXsYU-tgU_XwWcKwPxG4QvwK7hruOT4cqD7FJ_g==
age: 286878
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/55ba302e-56c033a647309a77.js

54.230.245.124

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/55ba302e-56c033a647309a77.js
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/55ba302e-56c033a647309a77.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Mon, 14 Nov 2022 12:48:16 GMT
etag: W/"63723910-100e3"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: gdlwf7OLc8MMPc0TpkCiUtpuSgCIHA139o99dl-6B2fMW2PjrIKS9Q==
age: 1418100
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/364-89bf8dd5b58b10a4.js

54.230.245.124

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/364-89bf8dd5b58b10a4.js
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/364-89bf8dd5b58b10a4.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Mon, 28 Nov 2022 15:47:45 GMT
last-modified: Mon, 28 Nov 2022 15:47:03 GMT
etag: W/"6384d7f7-2236"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: G0J7ctj2Dh5GZHv9-aPYplrF7-EOi4-Ko3ivMxxCV38O8SjUC_V0gw==
age: 286878
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/695-5ea418b3362d2010.js

54.230.245.124

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/695-5ea418b3362d2010.js
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/695-5ea418b3362d2010.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Wed, 07 Sep 2022 13:23:58 GMT
etag: W/"63189b6e-fd62"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 95k4iGmQNdlaBzDucgLTr626D5MFiBvMmqnzQoDtR4dsKs-mBhiNzg==
age: 1418100
X-Firefox-Spdy: h2

hbe-api.kognitiv.com/banners

135.125.240.149

200 OK

0 B

URL HTTP/2
hbe-api.kognitiv.com/banners
IP
135.125.240.149:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

OPTIONS /banners HTTP/1.1
Host: hbe-api.kognitiv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://barefoot.capitalvacations.com/
Origin: https://barefoot.capitalvacations.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
status: 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://barefoot.capitalvacations.com
vary: Origin
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-headers: content-type
date: Thu, 01 Dec 2022 23:29:05 GMT
set-cookie: MGLH51CKJDVB=VEI1698VEKLN9; path=/; HttpOnly; Secure
cache-control: private
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/99d407f1-740efc49d6ddee4e.js

54.230.245.124

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/99d407f1-740efc49d6ddee4e.js
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/99d407f1-740efc49d6ddee4e.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Mon, 28 Nov 2022 15:47:45 GMT
last-modified: Mon, 28 Nov 2022 15:47:03 GMT
etag: W/"6384d7f7-5dc71"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xt634LSSJPcyuHxN45VpsSk0jmtxDSLWlvO4kgBAZWeUnQuHtXGXkA==
age: 286878
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/webpack-af0fc1fb1b57cb39.js

54.230.245.124

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/webpack-af0fc1fb1b57cb39.js
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/webpack-af0fc1fb1b57cb39.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Tue, 03 May 2022 12:34:30 GMT
etag: W/"62712156-7ce"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4Fseqznt3YZl2MuQEyNpa0uIfmL1X06ZsW_elvKE3wbglBr8Eg8KZQ==
age: 1418100
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/433-a2824426e6ccb54e.js

54.230.245.124

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/433-a2824426e6ccb54e.js
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/433-a2824426e6ccb54e.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Mon, 14 Nov 2022 12:48:39 GMT
etag: W/"63723927-42f15"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ruh4Xhx0sT7hNVPDX1QRy_pn-NqAoV9pHu5Skjs0_ISgu6wfIZNcOg==
age: 1418100
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/373-95390337f262d59f.js

54.230.245.124

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/373-95390337f262d59f.js
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/373-95390337f262d59f.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Mon, 14 Nov 2022 12:48:16 GMT
etag: W/"63723910-c616"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jJoV8CnzsGJic6MUNE8XeEw_hSTseYqNAJd0E01yAbCABzUZsFOl5A==
age: 1418100
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/804-13fd754e32aa16c3.js

54.230.245.124

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/804-13fd754e32aa16c3.js
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/804-13fd754e32aa16c3.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Wed, 07 Sep 2022 13:23:58 GMT
etag: W/"63189b6e-7319"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qwZKU4crEcK5uEIXn5my5J1i4OM2-ewEg9d98jcQrrvPp4Co9X10CA==
age: 1418100
X-Firefox-Spdy: h2

hbe-api.kognitiv.com/unavailable-days

135.125.240.149

200 OK

0 B

URL HTTP/2
hbe-api.kognitiv.com/unavailable-days
IP
135.125.240.149:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

OPTIONS /unavailable-days HTTP/1.1
Host: hbe-api.kognitiv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://barefoot.capitalvacations.com/
Origin: https://barefoot.capitalvacations.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
status: 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://barefoot.capitalvacations.com
vary: Origin
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-headers: content-type
date: Thu, 01 Dec 2022 23:29:05 GMT
set-cookie: MGLH51CKJDVB=HBE7KSGFADL4; path=/; HttpOnly; Secure
cache-control: private
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/c0a33b72-efbe3e99c4b6522e.js

54.230.245.124

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/c0a33b72-efbe3e99c4b6522e.js
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/c0a33b72-efbe3e99c4b6522e.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Tue, 03 May 2022 12:24:17 GMT
etag: W/"62711ef1-4c0a4"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nhwf9Bz8UzPlaeoReRICAcyOhVqG9FNruJnj1y1NtJEbSczIUC-2cw==
age: 1418100
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/818-2d46f7d1223300d3.js

54.230.245.124

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/818-2d46f7d1223300d3.js
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/818-2d46f7d1223300d3.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Mon, 28 Nov 2022 15:47:45 GMT
last-modified: Mon, 28 Nov 2022 15:47:13 GMT
etag: W/"6384d801-5d13a"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HZewsLkY5_DC11Ce0wX4Nv4tmhZMv97JmWDhDTmEb6CyDnBqFa_k4Q==
age: 286878
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/659-a75792a0129c3b75.js

54.230.245.124

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/659-a75792a0129c3b75.js
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/659-a75792a0129c3b75.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Mon, 14 Nov 2022 12:48:39 GMT
etag: W/"63723927-42543"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XA4_YRdokY-7N3Zug9vYGN9y0ZO9Lhl81RN5g-6qVNfl2JBUuLrGKQ==
age: 1418100
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/302-7b32094aede33cd2.js

54.230.245.124

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/302-7b32094aede33cd2.js
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/302-7b32094aede33cd2.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Mon, 14 Nov 2022 12:48:16 GMT
etag: W/"63723910-52fd"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3kneEUYlhFt7Tv5abfFWg9I-kXU-0uffzSW5ect02Uy_YhlM0H4-6A==
age: 1418100
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/static/icons.css?checksum=10237f48c3fa09118c62aea0fad9d4f4

54.230.245.124

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/static/icons.css?checksum=10237f48c3fa09118c62aea0fad9d4f4
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/icons.css?checksum=10237f48c3fa09118c62aea0fad9d4f4 HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css
date: Thu, 01 Dec 2022 11:08:18 GMT
last-modified: Tue, 03 May 2022 12:34:48 GMT
etag: W/"62712168-4a0a"
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=15768000
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZUpkXXbIkEohTpd_Gm2-rEw4NIsMx4xLmnmAUM7llqutEPmsUrdlvQ==
age: 44445
X-Firefox-Spdy: h2

barefoot.capitalvacations.com/

135.125.240.140

200 OK

0 B

URL HTTP/2
barefoot.capitalvacations.com/
IP
135.125.240.140:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: barefoot.capitalvacations.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Thu, 01 Dec 2022 23:29:03 GMT
content-type: text/html; charset=utf-8
status: 200 OK
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
vary: Accept-Encoding
content-encoding: gzip
etag: "34fbe-nTjXPVyKwh+Y89LL2DiOAKk4PXA"
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self' *.kognitiv.com
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/914-7d07b1ef6b622c87.js

54.230.245.124

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/914-7d07b1ef6b622c87.js
IP
54.230.245.124:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/914-7d07b1ef6b622c87.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://barefoot.capitalvacations.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Thu, 27 Oct 2022 11:02:24 GMT
etag: W/"635a6540-107e2"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: oN8TYxpCT1pc6_aN6LNa1R_2kZJEHu0BjQJi-yZEunLp7dDf71eDGg==
age: 1418100
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (37)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP