Overview

URL booking.hotel-wieser.com/?skd-checkin=2022-09-12&skd-checkout=2022-09-14&skd-property-code=S001674
IP135.125.240.140
ASNOVH SAS
Location France
Report completed2022-09-13 21:17:29 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-13 2 booking.hotel-wieser.com/static/trust-you-bubbles.svg Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (24)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS r3.o.lencr.org (5) 344 2020-12-02 08:52:13 UTC 2022-09-13 04:56:58 UTC 23.33.119.27
mnemonic passive DNS d2jtzd336hs8un.cloudfront.net (38) 0 2021-10-12 11:28:37 UTC 2022-09-13 07:18:44 UTC 54.230.245.124 Unknown ranking
mnemonic passive DNS ocsp.pki.goog (9) 175 2017-06-14 07:23:31 UTC 2022-09-13 04:56:27 UTC 142.250.74.3
mnemonic passive DNS www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-09-13 04:56:30 UTC 142.250.74.72
mnemonic passive DNS res.cloudinary.com (6) 2520 2012-10-03 08:31:44 UTC 2022-09-13 05:00:22 UTC 151.101.85.137
mnemonic passive DNS hbe-api.kognitiv.com (7) 0 2018-11-23 20:04:18 UTC 2022-09-13 16:58:33 UTC 135.125.240.149 Unknown ranking
mnemonic passive DNS www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-09-13 16:47:44 UTC 142.250.74.174
mnemonic passive DNS booking.hotel-wieser.com (3) 0 2021-05-07 09:23:26 UTC 2022-09-13 06:11:00 UTC 135.125.240.140 Unknown ranking
mnemonic passive DNS quality.seekda.com (9) 569749 2018-04-09 14:52:13 UTC 2022-09-13 16:58:33 UTC 135.125.240.141
mnemonic passive DNS stats.g.doubleclick.net (1) 96 2013-06-02 22:47:44 UTC 2022-09-13 04:56:56 UTC 142.251.1.155
mnemonic passive DNS www.google.no (1) 25607 2016-04-05 19:50:59 UTC 2022-09-13 05:43:07 UTC 142.250.74.3
mnemonic passive DNS googleads.g.doubleclick.net (1) 42 2021-02-20 15:43:32 UTC 2022-09-13 18:18:19 UTC 216.58.207.194
mnemonic passive DNS apm-server.seekda.com (2) 0 2019-05-09 10:43:44 UTC 2022-09-13 16:58:34 UTC 135.125.240.139 Domain (seekda.com) ranked at: 377430
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-13 16:17:30 UTC 93.184.220.29
mnemonic passive DNS img-getpocket.cdn.mozilla.net (7) 1631 2017-09-01 03:40:57 UTC 2022-09-13 12:32:54 UTC 34.120.237.76
mnemonic passive DNS ibe.seekda.com (1) 608329 2012-11-13 21:49:09 UTC 2022-09-13 16:58:33 UTC 135.125.240.149
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-13 05:09:29 UTC 44.242.41.15
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-13 05:25:58 UTC 143.204.55.110
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-13 04:58:37 UTC 34.117.237.239
mnemonic passive DNS static.seekda.com (3) 507078 2014-04-19 09:49:53 UTC 2022-09-13 16:58:33 UTC 135.125.240.147
mnemonic passive DNS www.google.com (1) 7 2016-08-04 12:36:31 UTC 2022-09-13 13:47:50 UTC 142.250.74.164
mnemonic passive DNS ocsp.godaddy.com (1) 698 2012-05-20 19:28:57 UTC 2022-09-13 05:00:32 UTC 192.124.249.23
mnemonic passive DNS cloud.seekda.com (1) 507948 2014-12-24 10:47:26 UTC 2022-09-13 16:58:32 UTC 135.125.240.147
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-13 18:38:51 UTC 143.204.55.36


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 135.125.240.140

Date UQ / IDS / BL URL IP
2022-12-06 00:52:47 +0000
0 - 0 - 4 booking.greif.it/ 135.125.240.140
2022-12-05 15:13:09 +0000
0 - 0 - 2 kube.cavallino-bianco.com/ 135.125.240.140
2022-12-05 01:11:38 +0000
0 - 0 - 4 booking.hotelsparerhof.it/ 135.125.240.140
2022-12-04 10:13:11 +0000
0 - 0 - 3 countryclubvillas.capitalvacations.com/ 135.125.240.140
2022-12-01 23:29:15 +0000
0 - 0 - 2 barefoot.capitalvacations.com/ 135.125.240.140

Last 5 reports on ASN: OVH SAS

Date UQ / IDS / BL URL IP
2022-12-09 02:33:39 +0000
0 - 0 - 2 um.franzcom.co.uk/ 149.202.166.135
2022-12-09 02:33:23 +0000
0 - 0 - 11 vfdsx.dnsabr.com/Ye/One-Drive-Arab/One-Drive- (...) 51.195.195.241
2022-12-09 02:30:59 +0000
0 - 0 - 14 leveler.customer.instanthost.net/plesk-site-p (...) 145.239.137.4
2022-12-09 02:26:33 +0000
0 - 0 - 2 www.ergonomicapps.be/8cbb1184c0/cc/post/ 87.98.154.146
2022-12-09 02:11:36 +0000
0 - 0 - 8 f-llisantini.it/ 178.33.193.96

Last 2 reports on domain: hotel-wieser.com

Date UQ / IDS / BL URL IP
2022-11-15 07:25:41 +0000
0 - 0 - 1 booking.hotel-wieser.com/ 34.117.168.233
2022-09-13 21:17:29 +0000
0 - 0 - 1 booking.hotel-wieser.com/?skd-checkin=2022-09 (...) 135.125.240.140

No other reports with similar screenshot



JavaScript

Executed Scripts (49)


Executed Evals (2)

#1 JavaScript::Eval (size: 3930, repeated: 1) - SHA256: 6b83f0ca951f6bb29c8ff0ba30c9f8739abc979993cac03959872148a413ca95

                                        (function() {
    var a = {};
    if ("viewOffers" == google_tag_manager["GTM-PLL3TH5"].macro(55) && 0 < google_tag_manager["GTM-PLL3TH5"].macro(56).rooms.length) {
        var d = [],
            b = google_tag_manager["GTM-PLL3TH5"].macro(57).rooms;
        for (a = 0; a < b.length; a++)
            for (var c = 0; c < b[a].rates.length; c++) d.push({
                id: b[a].code,
                name: b[a].code,
                variant: b[a].rates[c],
                brand: google_tag_manager["GTM-PLL3TH5"].macro(58).propertyCode
            });
        return a = {
            ecommerce: {
                impressions: d,
                detail: {
                    products: d
                }
            }
        }
    }
    if ("shoppingCartElementAdded" == google_tag_manager["GTM-PLL3TH5"].macro(59)) {
        if ("room" == google_tag_manager["GTM-PLL3TH5"].macro(60).elementAdded.type) return a = {
            ecommerce: {
                add: {
                    products: [{
                        id: google_tag_manager["GTM-PLL3TH5"].macro(61).elementAdded.data.roomCode,
                        name: google_tag_manager["GTM-PLL3TH5"].macro(62).elementAdded.data.roomCode,
                        brand: google_tag_manager["GTM-PLL3TH5"].macro(63).propertyCode,
                        variant: google_tag_manager["GTM-PLL3TH5"].macro(64).elementAdded.data.rateCode,
                        quantity: 1
                    }]
                }
            }
        };
        if ("service" == google_tag_manager["GTM-PLL3TH5"].macro(65).elementAdded.type) return a = {
            ecommerce: {
                add: {
                    products: [{
                        id: google_tag_manager["GTM-PLL3TH5"].macro(66).elementAdded.data.serviceCode,
                        name: google_tag_manager["GTM-PLL3TH5"].macro(67).elementAdded.data.serviceCode,
                        brand: google_tag_manager["GTM-PLL3TH5"].macro(68).propertyCode,
                        quantity: google_tag_manager["GTM-PLL3TH5"].macro(69).elementAdded.data.quantity
                    }]
                }
            }
        }
    }
    if ("shoppingCartElementRemoved" ==
        google_tag_manager["GTM-PLL3TH5"].macro(70)) {
        if ("room" == google_tag_manager["GTM-PLL3TH5"].macro(71).elementRemoved.type) return a = {
            ecommerce: {
                remove: {
                    products: [{
                        id: google_tag_manager["GTM-PLL3TH5"].macro(72).elementRemoved.data.roomCode,
                        name: google_tag_manager["GTM-PLL3TH5"].macro(73).elementRemoved.data.roomCode,
                        brand: google_tag_manager["GTM-PLL3TH5"].macro(74).propertyCode,
                        variant: google_tag_manager["GTM-PLL3TH5"].macro(75).elementRemoved.data.rateCode,
                        quantity: 1
                    }]
                }
            }
        };
        if ("service" == google_tag_manager["GTM-PLL3TH5"].macro(76).elementRemoved.type) return a = {
            ecommerce: {
                remove: {
                    products: [{
                        id: google_tag_manager["GTM-PLL3TH5"].macro(77).elementRemoved.data.serviceCode,
                        name: google_tag_manager["GTM-PLL3TH5"].macro(78).elementRemoved.data.serviceCode,
                        brand: google_tag_manager["GTM-PLL3TH5"].macro(79).propertyCode,
                        quantity: google_tag_manager["GTM-PLL3TH5"].macro(80).elementRemoved.data.quantity
                    }]
                }
            }
        }
    }
    if ("viewPersInfo" == google_tag_manager["GTM-PLL3TH5"].macro(81)) {
        d = [];
        b = google_tag_manager["GTM-PLL3TH5"].macro(82).rooms;
        c = google_tag_manager["GTM-PLL3TH5"].macro(83).services;
        for (a = 0; a < b.length; a++) d.push({
            id: b[a].roomCode,
            name: b[a].roomCode,
            brand: google_tag_manager["GTM-PLL3TH5"].macro(84).propertyCode,
            variant: b[a].rateCode,
            quantity: 1,
            price: b[a].hotelPrice
        });
        for (a = 0; a < c.length; a++) d.push({
            id: c[a].serviceCode,
            name: c[a].serviceCode,
            brand: google_tag_manager["GTM-PLL3TH5"].macro(85).propertyCode,
            quantity: c[a].quantity,
            price: c[a].hotelPricePerUnit
        });
        return a = {
            ecommerce: {
                checkout: {
                    actionField: {
                        step: 1
                    },
                    products: d
                }
            }
        }
    }
    if ("viewConfirmation" == google_tag_manager["GTM-PLL3TH5"].macro(86)) {
        d = [];
        b = google_tag_manager["GTM-PLL3TH5"].macro(87).bookingData.rooms;
        c = google_tag_manager["GTM-PLL3TH5"].macro(88).bookingData.services;
        for (a = 0; a < b.length; a++) d.push({
            id: b[a].roomCode,
            name: b[a].roomCode,
            brand: google_tag_manager["GTM-PLL3TH5"].macro(89).propertyCode,
            variant: b[a].rateCode,
            quantity: 1,
            price: b[a].roomTotal
        });
        for (a = 0; a < c.length; a++) d.push({
            id: c[a].serviceCode,
            name: c[a].serviceCode,
            brand: google_tag_manager["GTM-PLL3TH5"].macro(90).propertyCode,
            quantity: c[a].quantity,
            price: c[a].serviceTotal
        });
        a = {
            ecommerce: {
                purchase: {
                    actionField: {
                        id: google_tag_manager["GTM-PLL3TH5"].macro(91).reservationId,
                        affiliation: google_tag_manager["GTM-PLL3TH5"].macro(92).channelId,
                        revenue: google_tag_manager["GTM-PLL3TH5"].macro(93).total,
                        tax: google_tag_manager["GTM-PLL3TH5"].macro(94).total - google_tag_manager["GTM-PLL3TH5"].macro(95).totalWithoutTaxes,
                        coupon: google_tag_manager["GTM-PLL3TH5"].macro(96).searchData.promotionCode
                    },
                    products: d
                }
            }
        }
    }
    return a
})();
                                    

#2 JavaScript::Eval (size: 3927, repeated: 1) - SHA256: 9e04ada41fc09786c1797540e06f7b6c46fb16db7c7282411c53c6bcbf23b5b8

                                        (function() {
    var a = {};
    if ("viewOffers" == google_tag_manager["GTM-PLL3TH5"].macro(7) && 0 < google_tag_manager["GTM-PLL3TH5"].macro(8).rooms.length) {
        var d = [],
            b = google_tag_manager["GTM-PLL3TH5"].macro(9).rooms;
        for (a = 0; a < b.length; a++)
            for (var c = 0; c < b[a].rates.length; c++) d.push({
                id: b[a].code,
                name: b[a].code,
                variant: b[a].rates[c],
                brand: google_tag_manager["GTM-PLL3TH5"].macro(10).propertyCode
            });
        return a = {
            ecommerce: {
                impressions: d,
                detail: {
                    products: d
                }
            }
        }
    }
    if ("shoppingCartElementAdded" == google_tag_manager["GTM-PLL3TH5"].macro(11)) {
        if ("room" == google_tag_manager["GTM-PLL3TH5"].macro(12).elementAdded.type) return a = {
            ecommerce: {
                add: {
                    products: [{
                        id: google_tag_manager["GTM-PLL3TH5"].macro(13).elementAdded.data.roomCode,
                        name: google_tag_manager["GTM-PLL3TH5"].macro(14).elementAdded.data.roomCode,
                        brand: google_tag_manager["GTM-PLL3TH5"].macro(15).propertyCode,
                        variant: google_tag_manager["GTM-PLL3TH5"].macro(16).elementAdded.data.rateCode,
                        quantity: 1
                    }]
                }
            }
        };
        if ("service" == google_tag_manager["GTM-PLL3TH5"].macro(17).elementAdded.type) return a = {
            ecommerce: {
                add: {
                    products: [{
                        id: google_tag_manager["GTM-PLL3TH5"].macro(18).elementAdded.data.serviceCode,
                        name: google_tag_manager["GTM-PLL3TH5"].macro(19).elementAdded.data.serviceCode,
                        brand: google_tag_manager["GTM-PLL3TH5"].macro(20).propertyCode,
                        quantity: google_tag_manager["GTM-PLL3TH5"].macro(21).elementAdded.data.quantity
                    }]
                }
            }
        }
    }
    if ("shoppingCartElementRemoved" ==
        google_tag_manager["GTM-PLL3TH5"].macro(22)) {
        if ("room" == google_tag_manager["GTM-PLL3TH5"].macro(23).elementRemoved.type) return a = {
            ecommerce: {
                remove: {
                    products: [{
                        id: google_tag_manager["GTM-PLL3TH5"].macro(24).elementRemoved.data.roomCode,
                        name: google_tag_manager["GTM-PLL3TH5"].macro(25).elementRemoved.data.roomCode,
                        brand: google_tag_manager["GTM-PLL3TH5"].macro(26).propertyCode,
                        variant: google_tag_manager["GTM-PLL3TH5"].macro(27).elementRemoved.data.rateCode,
                        quantity: 1
                    }]
                }
            }
        };
        if ("service" == google_tag_manager["GTM-PLL3TH5"].macro(28).elementRemoved.type) return a = {
            ecommerce: {
                remove: {
                    products: [{
                        id: google_tag_manager["GTM-PLL3TH5"].macro(29).elementRemoved.data.serviceCode,
                        name: google_tag_manager["GTM-PLL3TH5"].macro(30).elementRemoved.data.serviceCode,
                        brand: google_tag_manager["GTM-PLL3TH5"].macro(31).propertyCode,
                        quantity: google_tag_manager["GTM-PLL3TH5"].macro(32).elementRemoved.data.quantity
                    }]
                }
            }
        }
    }
    if ("viewPersInfo" == google_tag_manager["GTM-PLL3TH5"].macro(33)) {
        d = [];
        b = google_tag_manager["GTM-PLL3TH5"].macro(34).rooms;
        c = google_tag_manager["GTM-PLL3TH5"].macro(35).services;
        for (a = 0; a < b.length; a++) d.push({
            id: b[a].roomCode,
            name: b[a].roomCode,
            brand: google_tag_manager["GTM-PLL3TH5"].macro(36).propertyCode,
            variant: b[a].rateCode,
            quantity: 1,
            price: b[a].hotelPrice
        });
        for (a = 0; a < c.length; a++) d.push({
            id: c[a].serviceCode,
            name: c[a].serviceCode,
            brand: google_tag_manager["GTM-PLL3TH5"].macro(37).propertyCode,
            quantity: c[a].quantity,
            price: c[a].hotelPricePerUnit
        });
        return a = {
            ecommerce: {
                checkout: {
                    actionField: {
                        step: 1
                    },
                    products: d
                }
            }
        }
    }
    if ("viewConfirmation" == google_tag_manager["GTM-PLL3TH5"].macro(38)) {
        d = [];
        b = google_tag_manager["GTM-PLL3TH5"].macro(39).bookingData.rooms;
        c = google_tag_manager["GTM-PLL3TH5"].macro(40).bookingData.services;
        for (a = 0; a < b.length; a++) d.push({
            id: b[a].roomCode,
            name: b[a].roomCode,
            brand: google_tag_manager["GTM-PLL3TH5"].macro(41).propertyCode,
            variant: b[a].rateCode,
            quantity: 1,
            price: b[a].roomTotal
        });
        for (a = 0; a < c.length; a++) d.push({
            id: c[a].serviceCode,
            name: c[a].serviceCode,
            brand: google_tag_manager["GTM-PLL3TH5"].macro(42).propertyCode,
            quantity: c[a].quantity,
            price: c[a].serviceTotal
        });
        a = {
            ecommerce: {
                purchase: {
                    actionField: {
                        id: google_tag_manager["GTM-PLL3TH5"].macro(43).reservationId,
                        affiliation: google_tag_manager["GTM-PLL3TH5"].macro(44).channelId,
                        revenue: google_tag_manager["GTM-PLL3TH5"].macro(45).total,
                        tax: google_tag_manager["GTM-PLL3TH5"].macro(46).total - google_tag_manager["GTM-PLL3TH5"].macro(47).totalWithoutTaxes,
                        coupon: google_tag_manager["GTM-PLL3TH5"].macro(48).searchData.promotionCode
                    },
                    products: d
                }
            }
        }
    }
    return a
})();
                                    

Executed Writes (0)



HTTP Transactions (104)


Request Response
                                        
                                            GET /?skd-checkin=2022-09-12&skd-checkout=2022-09-14&skd-property-code=S001674 HTTP/1.1 
Host: booking.hotel-wieser.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         135.125.240.140
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Date: Tue, 13 Sep 2022 21:17:17 GMT
Content-Length: 166
Connection: keep-alive
Location: https://booking.hotel-wieser.com/?skd-checkin=2022-09-12&skd-checkout=2022-09-14&skd-property-code=S001674
Strict-Transport-Security: max-age=31536000


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   166
Md5:    3ea1c8d079b38532a6e01a96216ba5e2
Sha1:   598d3ff91d3e252f1e13df8cf0348b270ff2da3f
Sha256: 87a9323ac85ce28867d5d7ce590c8f29b8d1a999961fca71bb33adef48683691
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "B5F178D23E633283F226CCA7A9AE79B01E6CAB2299FF7065C980D3A9953212FD"
Last-Modified: Tue, 13 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4258
Expires: Tue, 13 Sep 2022 22:28:15 GMT
Date: Tue, 13 Sep 2022 21:17:17 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 13 Sep 2022 21:08:54 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: fqWl3KKGs23PzeOYMk9yqLUXSqk0QIGHVdaa3sWXa-LCEm4NkLUx_Q==
Age: 503


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    91dd975a7b17b2922dd23c0e49314e40
Sha1:   57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.110
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 13 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: uld190EPuLOH4IoAnYsMigZNuSN8WesQG7OiHwUkK7w-Pi0l4ztu6Q==
age: 60123
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Tue, 13 Sep 2022 21:17:17 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Tue, 13 Sep 2022 21:03:22 GMT
Expires: Tue, 13 Sep 2022 21:52:29 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: tikFTMmqlY8yMOshJt-kuhDcnLmlTTsJemR1XoYdVjbHLJ5B8N722Q==
Age: 835


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3269
Cache-Control: 'max-age=158059'
Date: Tue, 13 Sep 2022 21:17:18 GMT
Last-Modified: Tue, 13 Sep 2022 20:22:49 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: d1wz+vmQTvvmR0aLPuQk2Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         44.242.41.15
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: FFCY32KL86/l8e2t7t6K4WbwV5o=

                                        
                                            GET /?skd-checkin=2022-09-12&skd-checkout=2022-09-14&skd-property-code=S001674 HTTP/1.1 
Host: booking.hotel-wieser.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         135.125.240.140
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Date: Tue, 13 Sep 2022 21:17:19 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Status: 200 OK
Cache-Control: private, no-cache, no-store, max-age=0, must-revalidate
Vary: Accept-Encoding
Content-Encoding: gzip
ETag: "14be8e-sAz6icoD8ADdrhh3zaFZleVcnFM"
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self' *.kognitiv.com
Strict-Transport-Security: max-age=31536000


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (7589), with CRLF, LF line terminators
Size:   320858
Md5:    ed5f9ff23c07962a224ff2d729bada4b
Sha1:   02d3851f716dcd83b5dbb06e489aee6a201e38f6
Sha256: ddeefbb77b9a5b9b58487552b3d2f285f9e23a98780bdd35482ebfe75b85a03e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4069
Expires: Tue, 13 Sep 2022 22:25:08 GMT
Date: Tue, 13 Sep 2022 21:17:19 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4069
Expires: Tue, 13 Sep 2022 22:25:08 GMT
Date: Tue, 13 Sep 2022 21:17:19 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4069
Expires: Tue, 13 Sep 2022 22:25:08 GMT
Date: Tue, 13 Sep 2022 21:17:19 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4069
Expires: Tue, 13 Sep 2022 22:25:08 GMT
Date: Tue, 13 Sep 2022 21:17:19 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9a2dff5-4864-4430-8c54-6b68d2bbd35a.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10849
x-amzn-requestid: 722d8d75-0911-4b59-af65-2b408bc09d80
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YXbx6E9-oAMFT8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631fa672-74ea9343619d4a1865e34818;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 21:36:50 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: TeasWs7Qh6T3oV8vJsu5JM_EApUJEGGWIvUC6Pfd41u18v8RlcPQpg==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:57:19 GMT
age: 84000
etag: "2ab2ee20e720b78be6deb55f967ac0d8b7dad048"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10849
Md5:    838f709437b2dfbede4ee15307afe217
Sha1:   2ab2ee20e720b78be6deb55f967ac0d8b7dad048
Sha256: a3b47ce595b475f2aab6f7378888d15ba3e98453d6c8a3d88946efc5d65eedba
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75931920-737e-40b5-8dd6-d2070639ea2d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8799
x-amzn-requestid: 1bcdf387-9ad2-449a-861e-3352b1744d23
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YUI-0G6vIAMFgbA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e552b-42aa46af6315148106c4fdee;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 21:37:47 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: bTzXQvDkX23_t4vLJNWv7bg-DoRsdqiBhwNJH5B-RcXxj9RC-87LvA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:41:52 GMT
age: 84927
etag: "172b23f2ef39b6c3fdebb5441b10a95712206d0a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8799
Md5:    c14088c4ca0d576e087feed41b7f1565
Sha1:   172b23f2ef39b6c3fdebb5441b10a95712206d0a
Sha256: 2699efa811ceac5420f5bd26c35a6f48b51854e29cbce7cbb62efb613db7d6b9
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2830e2cb-8887-441e-8c0c-906b8fbb2366.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9945
x-amzn-requestid: a347749f-a63a-4533-a274-7151b9f235ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YXcX8HAKoAMF5EQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631fa765-56cff18515b2a5b3397231df;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 21:40:53 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 43wWNADffkA0e8T-SYvAMjp266nAE5hrDjNMQQsuYeT0i6xQt7wLVg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:55:34 GMT
age: 84105
etag: "744fee4a0baa22ba3aa352d60620a916972b47dd"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9945
Md5:    c9ab2ec10c79b91d15edb1d1e3dc763c
Sha1:   744fee4a0baa22ba3aa352d60620a916972b47dd
Sha256: f7bb66f5bb572d73f936fc74823f51ede1f2c4e309a939b39d9529ff8f757fbe
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F898fa8c6-1f06-4fa4-88d0-333a32c1a7a8.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10245
x-amzn-requestid: 20d58a44-c942-46a8-9136-a824d775275c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YLNZPFsjoAMFv7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ac2a1-24d2272a61fd0f39088251b4;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 04:35:45 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 2E2yaVqFHLXdfuJns8hs9DNomHNQWVNVSeZSCMdD2W7bGMMgA0QoZQ==
via: 1.1 024f97192fe648974da2251fbcc71f38.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 22:17:59 GMT
age: 82760
etag: "ec2e96359ef3a236514cab21af80ea5b9420e9c3"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10245
Md5:    019416755742a78ddf35671ba5eaccc7
Sha1:   ec2e96359ef3a236514cab21af80ea5b9420e9c3
Sha256: a6b0e0ec56c2ce2f94dae8032e0deb297236c35f7a8928a14a254e3fdb2a255a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81f9b0a3-fe8f-4665-9e54-9dfaf5d4876b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9466
x-amzn-requestid: ba3f7eac-61c9-4b5f-ae8a-b372906a25ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YOTeoHMKoAMFr5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bff90-1e70e2c444242a2d46387986;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 03:08:00 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: -SwaUjMInlOaGpH6yK1W1a57QCQMgY-l43RdUfKVtZA1zJzMrLzC6g==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 f7283f3fe2c258cf54f8b7d3dd272e0e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 03:17:04 GMT
age: 64815
etag: "05ec2076b32398d60ee77fab8c14345bc7dfe647"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9466
Md5:    6174529fff57758e958da5432344962f
Sha1:   05ec2076b32398d60ee77fab8c14345bc7dfe647
Sha256: 65284a76355864efa944dff5033575013c6d74a019a7b731e0236603f2f656a7
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6b50df-cdcd-4b44-9ed3-90a502ea29ad.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9815
x-amzn-requestid: 89243e57-94eb-4c6b-903f-aa01df030ecc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YUIxnEAjoAMF_Ig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e54d6-199403e2695b214711f5117f;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 21:36:23 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: NKM6RRhJ5AuRF4NKSyBO6-KMkd1UGaw3DuZBkBao_8fzzpkMeDrn0w==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:55:41 GMT
age: 84098
etag: "48eddcf9838e980e67cc8f9cbb05b475df2f0331"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9815
Md5:    239262b6ab17cb19414c35cd4f761092
Sha1:   48eddcf9838e980e67cc8f9cbb05b475df2f0331
Sha256: cd27cbce632d769288d9c33c5c8e887ba02df5677f10f7a6d03139b590ba24b4
                                        
                                            GET /_next/static/media/bf-icons-extended.00ff8422.ttf HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://booking.hotel-wieser.com
Connection: keep-alive
Referer: https://d2jtzd336hs8un.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: application/octet-stream
                                        
content-length: 93868
date: Sat, 28 May 2022 00:38:34 GMT
last-modified: Tue, 03 May 2022 12:34:30 GMT
etag: "62712156-16eac"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
strict-transport-security: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9PO_XmZhGaybaa9TVl48Me1YHs-FCg-lGlR0QFm6aj1X7aBAuFMRuw==
age: 9405525
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data
Size:   93868
Md5:    439b52438c772a69ba68cddd45b0ba56
Sha1:   acc851fc76bade985719ddd6b688e184f1096121
Sha256: fd15c1d08eecfa3bebd1c8a1e28836de2f04036509f7ee65e1945cc0decd725d
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 13 Sep 2022 21:17:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /assets/fonts/google/open-sans-v29-latin-regular.woff2 HTTP/1.1 
Host: static.seekda.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://booking.hotel-wieser.com
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         135.125.240.147
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Tue, 13 Sep 2022 21:17:19 GMT
content-length: 16720
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://booking.hotel-wieser.com
access-control-expose-headers: Date, Etag, Server, Connection, Accept-Ranges, Content-Range, Content-Encoding, Content-Length, Content-Type, Content-Disposition, Last-Modified, Content-Language, Cache-Control, Retry-After, X-Amz-Bucket-Region, Expires, X-Amz*, X-Amz*, *
content-security-policy: block-all-mixed-content
etag: "c416910cae8fe4258cdf8c35933e9f4c"
last-modified: Tue, 23 Aug 2022 12:56:47 GMT
no-gzip-compression: true
vary: Origin, Accept-Encoding
x-amz-replication-status: COMPLETED
x-amz-request-id: 171488217E664F54
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: f3127643-7db5-4663-8734-c0e163c8756b
strict-transport-security: max-age=15768000
server: Kognitiv
set-cookie: WEIU3SASDIO=5e586ba66df10c0; path=/; HttpOnly; Secure; SameSite=none
cache-control: max-age=43200, private
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 16720, version 1.0\012- data
Size:   16720
Md5:    c416910cae8fe4258cdf8c35933e9f4c
Sha1:   4a768ba0a3abc49b572c08c235db9f066ffc2b18
Sha256: 9434dddcdf38e072b039bb92f9e90639ec0e0563e8ff51604a60d91830c29289
                                        
                                            GET /assets/fonts/google/open-sans-v29-latin-700.woff2 HTTP/1.1 
Host: static.seekda.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://booking.hotel-wieser.com
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         135.125.240.147
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Tue, 13 Sep 2022 21:17:19 GMT
content-length: 16360
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://booking.hotel-wieser.com
access-control-expose-headers: Date, Etag, Server, Connection, Accept-Ranges, Content-Range, Content-Encoding, Content-Length, Content-Type, Content-Disposition, Last-Modified, Content-Language, Cache-Control, Retry-After, X-Amz-Bucket-Region, Expires, X-Amz*, X-Amz*, *
content-security-policy: block-all-mixed-content
etag: "4333f8c1f02dee549bdb7353a3b48e82"
last-modified: Tue, 23 Aug 2022 12:56:47 GMT
no-gzip-compression: true
vary: Origin, Accept-Encoding
x-amz-replication-status: COMPLETED
x-amz-request-id: 171488217E960A91
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: 1548b2f7-e3b1-4ff4-a353-f8bd4829ccc9
strict-transport-security: max-age=15768000
server: Kognitiv
set-cookie: WEIU3SASDIO=5e35dcc058629f0; path=/; HttpOnly; Secure; SameSite=none
cache-control: max-age=43200, private
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 16360, version 1.0\012- data
Size:   16360
Md5:    4333f8c1f02dee549bdb7353a3b48e82
Sha1:   a6bd7db06cf5ea54c529c1c8efc81cb805fa51e3
Sha256: e3f25c51e5e6f03dc0513385a1d8730f36537309864c444ab253ed66b2bf2db3
                                        
                                            GET /gtm.js?id=GTM-PLL3TH5 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 13 Sep 2022 21:17:19 GMT
expires: Tue, 13 Sep 2022 21:17:19 GMT
cache-control: private, max-age=900
last-modified: Tue, 13 Sep 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 60693
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5152)
Size:   60693
Md5:    4cb4d4ca9948f10706c781368f92d324
Sha1:   eea2316a1719724c5586294cbe06e6c8c868015b
Sha256: f6a83804a6f37c55f4838a4ef30bb7ddf5417e5d78081357c204ea92c6413882
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 13 Sep 2022 21:17:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /seekda/image/upload/w_1920,ar_3.6,c_fill,f_auto,fl_lossy,q_auto/v1620373336/production/S001674/zimmer1.jpg HTTP/1.1 
Host: res.cloudinary.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.137
HTTP/2 200 OK
content-type: image/webp
                                        
content-disposition: inline; filename="zimmer1.webp"
etag: "e621e0b2ce62cdf53a22d90837a71580"
last-modified: Tue, 18 May 2021 20:16:05 GMT
date: Tue, 13 Sep 2022 21:17:20 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=1;start=2022-09-13T21:17:20.177Z;desc=hit,rtt;dur=9
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 58704
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 1920x533, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   58704
Md5:    e621e0b2ce62cdf53a22d90837a71580
Sha1:   9839dc257379a9ae17c9f03981129bf1c38b7dbf
Sha256: 11c6155d5f133c2feba0a562d8e9be9f537a1650037c1e797595abfee599ad5f
                                        
                                            GET /seekda/image/upload/v1620375278/production/S001674/logo_wieser_klein.png HTTP/1.1 
Host: res.cloudinary.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.137
HTTP/2 200 OK
content-type: image/png
                                        
etag: "185bf2cc017c9bbe5a292d845f86d3e4"
last-modified: Fri, 07 May 2021 08:14:39 GMT
date: Tue, 13 Sep 2022 21:17:20 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=0;start=2022-09-13T21:17:20.177Z;desc=hit,rtt;dur=9
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 186393
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1299 x 863, 8-bit/color RGBA, non-interlaced\012- data
Size:   186393
Md5:    185bf2cc017c9bbe5a292d845f86d3e4
Sha1:   4bc314478230e95b5fc6747e26d904ac85c6ca24
Sha256: 5d1158e6c6ea47c21d73fa402d8031359de667a0f4e9e306e0551e791df4b353
                                        
                                            GET /_next/static/media/bf-icons.3014e895.ttf HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://booking.hotel-wieser.com
Connection: keep-alive
Referer: https://d2jtzd336hs8un.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: application/octet-stream
                                        
content-length: 156184
date: Tue, 17 May 2022 21:05:46 GMT
last-modified: Tue, 03 May 2022 12:34:30 GMT
etag: "62712156-26218"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
strict-transport-security: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: k-zKRpzJx5osBDen22agFqeYBU7B_5H7qcfr1QyWPRDnDtWCFyR_sw==
age: 10282294
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data
Size:   156184
Md5:    e457529d073c28d569d2808199a9bffe
Sha1:   689f15a06422982cc641b6406abb13db284a9ab1
Sha256: 6004f0b7111e09c8acdae325b3e75d38f965d89d6321df8811dabaf44d76d5df
                                        
                                            GET /static/bf-icons-extended.ttf HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://booking.hotel-wieser.com
Connection: keep-alive
Referer: https://d2jtzd336hs8un.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: application/octet-stream
                                        
content-length: 93868
date: Tue, 13 Sep 2022 05:13:38 GMT
last-modified: Tue, 03 May 2022 12:24:30 GMT
etag: "62711efe-16eac"
access-control-allow-origin: *
accept-ranges: bytes
strict-transport-security: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3BhBtSYxW7_L_E8NN1rWHDzb9587Ky25ugtXef8dCT3qWCibttilkA==
age: 57822
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data
Size:   93868
Md5:    439b52438c772a69ba68cddd45b0ba56
Sha1:   acc851fc76bade985719ddd6b688e184f1096121
Sha256: fd15c1d08eecfa3bebd1c8a1e28836de2f04036509f7ee65e1945cc0decd725d
                                        
                                            GET /seekda/image/upload/w_192,h_192,c_fill/v1485873589/production/S001674/logo_wieser_quadratisch_800_800.png HTTP/1.1 
Host: res.cloudinary.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.137
HTTP/2 200 OK
content-type: image/png
                                        
etag: "da2db1952941d90ddaf9ec68f1d899ea"
last-modified: Thu, 13 May 2021 15:02:08 GMT
date: Tue, 13 Sep 2022 21:17:20 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2022-09-13T21:17:20.577Z;desc=hit,rtt;dur=7
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 3721
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 192 x 192, 8-bit colormap, non-interlaced\012- data
Size:   3721
Md5:    da2db1952941d90ddaf9ec68f1d899ea
Sha1:   bbd774e4d2a3ef46bf27af3b7109b49cccf19867
Sha256: ff4f0898aa106067b9f5586a5de763dfcda3a856c09708c5131c846e7292defe
                                        
                                            GET /seekda/image/upload/w_16,h_16,c_fill/v1485873589/production/S001674/logo_wieser_quadratisch_800_800.png HTTP/1.1 
Host: res.cloudinary.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.137
HTTP/2 200 OK
content-type: image/png
                                        
etag: "b2826ccd1282d8d38d662f2f5ff8279f"
last-modified: Fri, 07 May 2021 10:01:27 GMT
date: Tue, 13 Sep 2022 21:17:20 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2022-09-13T21:17:20.579Z;desc=hit,rtt;dur=7
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 240
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Size:   240
Md5:    b2826ccd1282d8d38d662f2f5ff8279f
Sha1:   0137b5f1733bbf9440fa7e3113cea44c6b9d3f88
Sha256: 3cf2dd3d61ceb0ac1796f824dcac464b8df82c4b861b6f00ef5ebddea24101ba
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 13 Sep 2022 21:17:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /widgets/tracking-api/js/tracking-api.min.js?R00932e9218b19dfb4142ea7d9e4b382739bb4cb6 HTTP/1.1 
Host: static.seekda.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         135.125.240.147
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 13 Sep 2022 21:17:20 GMT
content-security-policy: block-all-mixed-content
etag: W/"3868633285d5ac63f9bd0ba84f051796"
last-modified: Tue, 13 Sep 2022 12:55:48 GMT
vary: Accept-Encoding, Origin, Accept-Encoding
x-amz-replication-status: COMPLETED
x-amz-request-id: 17148821A5A0CED8
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: 24cb7ee9-617a-484c-9f68-cc9a03b8fff1
content-encoding: gzip
strict-transport-security: max-age=15768000
server: Kognitiv
set-cookie: WEIU3SASDIO=5e949bcc1c21420; path=/; HttpOnly; Secure; SameSite=none
cache-control: max-age=43200, private
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Size:   76499
Md5:    d5bfc5654d624f64fb66a914abbfd2a7
Sha1:   3dd61aa1a3916e9d65aad6103cef2ffb14a3a25f
Sha256: fcd00d5a929a5b615268d15e29efe95c7a46f034f056c89aae1d8913f55ac69e
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 13 Sep 2022 21:17:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /marketing?channelId=ibe&context=DETAIL HTTP/1.1 
Host: hbe-api.kognitiv.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://booking.hotel-wieser.com
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         135.125.240.149
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
content-length: 2
status: 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://booking.hotel-wieser.com
vary: Origin, Accept-Encoding
date: Tue, 13 Sep 2022 21:17:20 GMT
etag: W/"2-l9Fw4VUO7kr8CvBlt4zaMCqXZ0w"
set-cookie: MGLH51CKJDVB=HBE7KSGFADL4; path=/; HttpOnly; Secure
cache-control: private
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   2
Md5:    d751713988987e9331980363e24189ce
Sha1:   97d170e1550eee4afc0af065b78cda302a97674c
Sha256: 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Tue, 13 Sep 2022 20:41:12 GMT
expires: Tue, 13 Sep 2022 22:41:12 GMT
cache-control: public, max-age=7200
age: 2168
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   20006
Md5:    56f5d7f608e25d64207135f045f988cb
Sha1:   901eb59372ae330ae85e1384da93479b21ae1082
Sha256: 1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
                                        
                                            OPTIONS /offers HTTP/1.1 
Host: hbe-api.kognitiv.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://booking.hotel-wieser.com/
Origin: https://booking.hotel-wieser.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         135.125.240.149
HTTP/2 200 OK
                                        
status: 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://booking.hotel-wieser.com
vary: Origin
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-headers: content-type
date: Tue, 13 Sep 2022 21:17:20 GMT
set-cookie: MGLH51CKJDVB=HBE7KSGFADL4; path=/; HttpOnly; Secure
cache-control: private
X-Firefox-Spdy: h2

                                        
                                            GET /pagead/conversion_async.js HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Tue, 13 Sep 2022 21:17:20 GMT
expires: Tue, 13 Sep 2022 21:17:20 GMT
cache-control: private, max-age=3600
etag: 15579141248118922429
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 15687
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1623)
Size:   15687
Md5:    4738d969770682feba80f04bf171d65b
Sha1:   be0e0ceb91bf5ed0c64b0f3f2cc2c99c6d4cd6b7
Sha256: 1daca97cf9e8078299f94c50346e45fead45bf908ca97ded912f26986c1c4e9a
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 13 Sep 2022 21:17:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 13 Sep 2022 21:17:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /pagead/viewthroughconversion/742746138/?random=1663103827556&cv=9&fst=1663103827556&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9c0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fbooking.hotel-wieser.com%2F%3Fskd-checkin%3D2022-09-16%26skd-checkout%3D2022-09-23%26skd-property-code%3DS001674&tiba=Apart%20Hotel%20Wieser&auid=1714392520.1663103827&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.194
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 13 Sep 2022 21:17:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1068
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 13-Sep-2022 21:32:21 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2366), with no line terminators
Size:   1068
Md5:    b00d05d2741de6cad4d24d866a09182f
Sha1:   84e20acfbb685e917cfad6337372efab44ee13c5
Sha256: 465489ab2befbce050596c6923566606436deb0b51c0eba7f37bc1bf0d1ea2f8
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 13 Sep 2022 21:17:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 13 Sep 2022 21:17:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /pagead/1p-user-list/742746138/?random=1663103827556&cv=9&fst=1663102800000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9c0&sendb=1&frm=0&url=https%3A%2F%2Fbooking.hotel-wieser.com%2F%3Fskd-checkin%3D2022-09-16%26skd-checkout%3D2022-09-23%26skd-property-code%3DS001674&tiba=Apart%20Hotel%20Wieser&async=1&fmt=3&is_vtc=1&random=3917904576&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 13 Sep 2022 21:17:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            OPTIONS /events/ibe/searchBoxInit? HTTP/1.1 
Host: quality.seekda.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: cache-control,content-type
Referer: https://booking.hotel-wieser.com/
Origin: https://booking.hotel-wieser.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         135.125.240.141
HTTP/2 200 OK
                                        
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://booking.hotel-wieser.com
access-control-allow-methods: POST
access-control-allow-headers: cache-control, content-type
access-control-allow-credentials: true
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, TRACE, OPTIONS, PATCH
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-length: 0
date: Tue, 13 Sep 2022 21:17:21 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=cheiG8ch; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2

                                        
                                            OPTIONS /events/ibe/pageLoaded? HTTP/1.1 
Host: quality.seekda.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: cache-control,content-type
Referer: https://booking.hotel-wieser.com/
Origin: https://booking.hotel-wieser.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         135.125.240.141
HTTP/2 200 OK
                                        
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://booking.hotel-wieser.com
access-control-allow-methods: POST
access-control-allow-headers: cache-control, content-type
access-control-allow-credentials: true
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, TRACE, OPTIONS, PATCH
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-length: 0
date: Tue, 13 Sep 2022 21:17:20 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=thei9zuS; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 13 Sep 2022 21:17:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /events/ibe/pageLoaded? HTTP/1.1 
Host: quality.seekda.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Cache-Control: no-cache
Content-Length: 714
Origin: https://booking.hotel-wieser.com
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         135.125.240.141
HTTP/2 200 OK
content-type: application/json
                                        
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://booking.hotel-wieser.com
access-control-allow-credentials: true
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
date: Tue, 13 Sep 2022 21:17:20 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=thei9zuS; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   79
Md5:    41a600227c8d0071dbee9c5e71e96a60
Sha1:   e18f5a698a689c9dec4a8774fe2bdeebce0dc059
Sha256: 9b363b3777247dc54e3abb91cbb15d638f87633dd27bee967d104c9dccbd6a52
                                        
                                            OPTIONS /events/ibe/viewTrustYouBadge? HTTP/1.1 
Host: quality.seekda.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: cache-control,content-type
Referer: https://booking.hotel-wieser.com/
Origin: https://booking.hotel-wieser.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         135.125.240.141
HTTP/2 200 OK
                                        
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://booking.hotel-wieser.com
access-control-allow-methods: POST
access-control-allow-headers: cache-control, content-type
access-control-allow-credentials: true
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, TRACE, OPTIONS, PATCH
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-length: 0
date: Tue, 13 Sep 2022 21:17:21 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=cheiG8ch; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2

                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-3428744-6&cid=1928426967.1663103828&jid=81688589&gjid=650018431&_gid=2071276323.1663103828&_u=YEBAAAAAAAAAAC~&z=1270097073 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://booking.hotel-wieser.com
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.251.1.155
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://booking.hotel-wieser.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 13 Sep 2022 21:17:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   4
Md5:    48c0473b7821185d937e685216e2168b
Sha1:   3743e47f8a429a5e87b86cb582d78940733d9d2e
Sha256: 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
                                        
                                            OPTIONS /events/ibe/viewOffers? HTTP/1.1 
Host: quality.seekda.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: cache-control,content-type
Referer: https://booking.hotel-wieser.com/
Origin: https://booking.hotel-wieser.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         135.125.240.141
HTTP/2 200 OK
                                        
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://booking.hotel-wieser.com
access-control-allow-methods: POST
access-control-allow-headers: cache-control, content-type
access-control-allow-credentials: true
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, TRACE, OPTIONS, PATCH
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-length: 0
date: Tue, 13 Sep 2022 21:17:21 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=cheiG8ch; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         192.124.249.23
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Sucuri/Cloudproxy
Date: Tue, 13 Sep 2022 21:17:22 GMT
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 13 Sep 2022 20:37:03 GMT
Expires: Wed, 14 Sep 2022 20:37:03 GMT
ETag: "37da047f92b21bb35d7380b0fbe66bd7acb6c1d7"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"


--- Additional Info ---
Magic:  data
Size:   1777
Md5:    205eda9011485127ebee90f79f0f3167
Sha1:   37da047f92b21bb35d7380b0fbe66bd7acb6c1d7
Sha256: 4dd0ffac6cf93871a3370cf495f3b17aca3ee7bda804ae3a2258e0c6a1c3c6ec
                                        
                                            POST /offers HTTP/1.1 
Host: hbe-api.kognitiv.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 578
Origin: https://booking.hotel-wieser.com
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         135.125.240.149
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
status: 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://booking.hotel-wieser.com
vary: Accept-Encoding, Origin, Accept-Encoding
date: Tue, 13 Sep 2022 21:17:20 GMT
etag: W/"6c-CNBO+fJ5ETc5/7B2hdNlP/JWwx0"
content-encoding: gzip
set-cookie: MGLH51CKJDVB=HBE7KSGFADL4; path=/; HttpOnly; Secure
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (323), with no line terminators
Size:   311
Md5:    0359d99bc3e475ca95784bd4935cbea5
Sha1:   7f1f3ff465cb02a2bfb272a39f69aed8dfca0806
Sha256: 6f00775930eeaaf4f46f63076d4f15a5827229c20573293ea3fff0a34e623a1a
                                        
                                            GET /static/trust-you-bubbles.svg HTTP/1.1 
Host: booking.hotel-wieser.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/?skd-checkin=2022-09-16&skd-checkout=2022-09-23&skd-property-code=S001674
Cookie: _gcl_au=1.1.1714392520.1663103827; _ga=GA1.3.1928426967.1663103828; _gid=GA1.3.2071276323.1663103828; _gat_UA-3428744-6=1; _ga=GA1.2.1928426967.1663103828; _gid=GA1.2.2071276323.1663103828; _gat_UA-111111111-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         135.125.240.140
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Tue, 13 Sep 2022 21:17:21 GMT
Content-Length: 368
Connection: keep-alive
Last-Modified: Tue, 03 May 2022 12:34:48 GMT
ETag: "62712168-170"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text
Size:   368
Md5:    b790689f40532c460fdf8ae0fd23ae53
Sha1:   8ebf475e7ee62602d34c656f6297201cc39fbc5c
Sha256: fa446de041d2ad8712d9517fd0042b15e74886046b591a999d70e9815133cc0b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /channels/ibe/properties/S001674/offers-overview HTTP/1.1 
Host: hbe-api.kognitiv.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 233
Origin: https://booking.hotel-wieser.com
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         135.125.240.149
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
status: 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://booking.hotel-wieser.com
vary: Origin, Accept-Encoding
content-encoding: gzip
date: Tue, 13 Sep 2022 21:17:22 GMT
etag: W/"63c-rIC3BbcU3EPL7pW+C+nKX5vigRc"
set-cookie: MGLH51CKJDVB=HBE7KSGFADL4; path=/; HttpOnly; Secure
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   7518
Md5:    091be739a1ba1e64792b4d2afb219825
Sha1:   47dac2c760ff3de892f223ea846a5f90db737d26
Sha256: 0fac88a55e8515e391b00d370551823f467bc19471f5b790eb7744c4ee4908a6
                                        
                                            GET /seekda/image/upload/w_768,h_432,c_fill,f_auto,fl_lossy,q_auto/production/S001674/Zimmer1_(1).jpg HTTP/1.1 
Host: res.cloudinary.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.137
HTTP/2 200 OK
content-type: image/webp
                                        
content-disposition: inline; filename="Zimmer1_(1).webp"
etag: "81b3c03fe4b0542df8d736c97dc858be"
last-modified: Sat, 15 May 2021 12:45:24 GMT
date: Tue, 13 Sep 2022 21:17:23 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=0;start=2022-09-13T21:17:23.177Z;desc=hit,rtt;dur=7
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 21378
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 768x432, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   21378
Md5:    81b3c03fe4b0542df8d736c97dc858be
Sha1:   b8bd9afc8c37833b0e9e1fbf0abf6efa1c7d169a
Sha256: 4c4df96eabbb88e7d13afd6ce0432769e0fe194319094543079bbc8e80f06ac2
                                        
                                            GET /seekda/image/upload/w_768,h_432,c_fill,f_auto,fl_lossy,q_auto/production/S001674/Zimmer2_(3).jpg HTTP/1.1 
Host: res.cloudinary.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.137
HTTP/2 200 OK
content-type: image/webp
                                        
content-disposition: inline; filename="Zimmer2_(3).webp"
etag: "c03abf567bd4c56f8f5c260061e72f32"
last-modified: Sat, 23 Jan 2021 10:37:17 GMT
date: Tue, 13 Sep 2022 21:17:23 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2022-09-13T21:17:23.178Z;desc=hit,rtt;dur=7
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 19992
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 768x432, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   19992
Md5:    c03abf567bd4c56f8f5c260061e72f32
Sha1:   7b421b41e7b42d938f97b656a62f7d6c3de97bf5
Sha256: b98d13f0a8aa2ecf7f4ff50871d73d705d2c3560a98fa7889fdc90f99dca11ee
                                        
                                            OPTIONS /intake/v2/rum/events HTTP/1.1 
Host: apm-server.seekda.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://booking.hotel-wieser.com/
Origin: https://booking.hotel-wieser.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         135.125.240.139
HTTP/2 200 OK
                                        
access-control-allow-headers: Content-Type, Content-Encoding, Accept
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: https://booking.hotel-wieser.com
access-control-expose-headers: Etag
access-control-max-age: 3600
content-length: 0
vary: Origin
x-content-type-options: nosniff
date: Tue, 13 Sep 2022 21:17:23 GMT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

                                        
                                            POST /intake/v2/rum/events HTTP/1.1 
Host: apm-server.seekda.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-ndjson
Content-Length: 46119
Origin: https://booking.hotel-wieser.com
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         135.125.240.139
HTTP/2 202 Accepted
                                        
access-control-allow-origin: https://booking.hotel-wieser.com
x-content-type-options: nosniff
date: Tue, 13 Sep 2022 21:17:23 GMT
content-length: 0
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8485
x-amzn-requestid: a56c9282-2786-4ae7-9fc2-0468bcc820a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ1k_FM1oAMFZ2Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d02ec-753cc4f121c9b77d22bb82b5;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:34:36 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 2jR7F56GE_qqbRBWjNDiDBgWbCYv-Ac6kvC1LI0HciQkKGTeNDYlyw==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:57:43 GMT
age: 83983
etag: "166741631fb93d109b18dde6d316b3fa3276aa8f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8485
Md5:    e407da4d97d497925b1ab523fd416787
Sha1:   166741631fb93d109b18dde6d316b3fa3276aa8f
Sha256: 707460c02438da6114e35e0b6569d42c0f3fb747f8cb51002f4d52bedbcffa61
                                        
                                            OPTIONS /events/ibe/pageLeave? HTTP/1.1 
Host: quality.seekda.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: cache-control,content-type
Referer: https://booking.hotel-wieser.com/
Origin: https://booking.hotel-wieser.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         135.125.240.141
HTTP/2 200 OK
                                        
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://booking.hotel-wieser.com
access-control-allow-methods: POST
access-control-allow-headers: cache-control, content-type
access-control-allow-credentials: true
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, TRACE, OPTIONS, PATCH
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-length: 0
date: Tue, 13 Sep 2022 21:17:25 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=cheiG8ch; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2

                                        
                                            GET /_next/static/css/aa3f45358fc40b62.css HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 07 Sep 2022 13:24:41 GMT
last-modified: Wed, 07 Sep 2022 13:23:35 GMT
etag: W/"63189b57-4e671"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uuZYx2K8m0p9JWShGZmyYKTLwWRYU__17iYoTXCh992GAoseYNauHg==
age: 546758
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_next/static/chunks/main-5b70a9964c4ae71f.js HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Thu, 19 May 2022 05:30:55 GMT
last-modified: Tue, 03 May 2022 12:24:17 GMT
etag: W/"62711ef1-23bda"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hEPXh0QFayO2amZNvKKCXbx3gwoSpmm-kDm-z2tVHrPPsacGgfXWwQ==
age: 10165584
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_next/static/chunks/659-b421c54ce53883b8.js HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 07 Sep 2022 13:24:41 GMT
last-modified: Wed, 07 Sep 2022 13:23:35 GMT
etag: W/"63189b57-42542"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: m9eHPOmwhVzTov0-58W0cdJ1QMEsnDDEvhxc0WDrCtKelhDDeYIDGA==
age: 546758
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_next/static/chunks/38-f907332a60873f0a.js HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 07 Sep 2022 13:24:41 GMT
last-modified: Wed, 07 Sep 2022 13:23:58 GMT
etag: W/"63189b6e-2857"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3XHiuCucVWdj9y-25fF6YNyKc6Dke_rLqdBFn1uYwx0tYLDf00KTZQ==
age: 546758
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_next/static/chunks/956-60149f9c7b9507d7.js HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 07 Sep 2022 13:24:41 GMT
last-modified: Wed, 07 Sep 2022 13:23:58 GMT
etag: W/"63189b6e-efac"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: O46DtZnKsEmTcvLHLTHqhc2jCFSnyuYlbKjF__cce4tJ_24iMXmBKg==
age: 546758
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /static/scripts/elastic-apm-rum.umd.min.js?checksum=e93c8d4d150530d83ee4ee385157b262 HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 13 Sep 2022 02:08:36 GMT
last-modified: Wed, 11 May 2022 16:35:36 GMT
etag: W/"627be5d8-f0b3"
access-control-allow-origin: *
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8rqf7q5RAcSHBuIaQfpL1AJb-AUBqSR7guwPPW-v8o97-e_SuAvrlw==
age: 68923
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            POST /events/ibe/viewTrustYouBadge? HTTP/1.1 
Host: quality.seekda.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Cache-Control: no-cache
Content-Length: 809
Origin: https://booking.hotel-wieser.com
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         135.125.240.141
HTTP/2 200 OK
content-type: application/json
                                        
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://booking.hotel-wieser.com
access-control-allow-credentials: true
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
date: Tue, 13 Sep 2022 21:17:20 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=thei9zuS; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_next/static/chunks/0b7b90cd-2a28d1759dacf41f.js HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 13 Apr 2022 07:40:28 GMT
last-modified: Tue, 22 Mar 2022 12:29:17 GMT
etag: W/"6239c11d-22c77"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0qH8ldwz0LDt31TwgOzR0QbcguiAmpYetkQ0ZrcHeQugfgOsgCIxgg==
age: 13268211
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_next/static/chunks/914-de9574e65ecce828.js HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 07 Sep 2022 13:24:41 GMT
last-modified: Wed, 07 Sep 2022 13:23:35 GMT
etag: W/"63189b57-12bff"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xMAyURp71tQXOUZx50-jfEKsNa09o3FTuVyVpEZXovzNGleOXrybaQ==
age: 546758
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_next/static/chunks/505-c641b89b573a8980.js HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 07 Sep 2022 13:24:41 GMT
last-modified: Wed, 07 Sep 2022 13:23:35 GMT
etag: W/"63189b57-12424"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Z_-cdtKyRRQFxzA9E1D6_H5xx2pPw3TgoLI5ZdzsOyy4EBT0nDcgOg==
age: 546758
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_next/static/chunks/234-9663564c15a56e78.js HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 27 Jul 2022 15:16:48 GMT
last-modified: Wed, 27 Jul 2022 15:15:58 GMT
etag: W/"62e156ae-6f9b"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: paNa2nfL2H8kyGb4Dv2UDWVGSZ4bpHGiaAVYBG6Dgnp7_GWpb8aCmA==
age: 4168831
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            POST /unavailable-days HTTP/1.1 
Host: hbe-api.kognitiv.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 61
Origin: https://booking.hotel-wieser.com
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         135.125.240.149
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
status: 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://booking.hotel-wieser.com
vary: Accept-Encoding, Origin, Accept-Encoding
date: Tue, 13 Sep 2022 21:17:20 GMT
etag: W/"d3-7m0rdZZcvSxu2WIzghCZh22FSIQ"
content-encoding: gzip
set-cookie: MGLH51CKJDVB=VEI1698VEKLN9; path=/; HttpOnly; Secure
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            POST /events/ibe/searchBoxInit? HTTP/1.1 
Host: quality.seekda.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Cache-Control: no-cache
Content-Length: 697
Origin: https://booking.hotel-wieser.com
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         135.125.240.141
HTTP/2 200 OK
content-type: application/json
                                        
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://booking.hotel-wieser.com
access-control-allow-credentials: true
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
date: Tue, 13 Sep 2022 21:17:21 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=cheiG8ch; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_next/static/chunks/pages/_app-8a5fa765b4507d7b.js HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 07 Sep 2022 13:24:41 GMT
last-modified: Wed, 07 Sep 2022 13:23:35 GMT
etag: W/"63189b57-1d5a2a"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QB7SJ7FRxYW2cT9eNBXvvOW5YxQsEq6JNNFCeZSte_JGVsdBoz1T6g==
age: 546758
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_next/static/chunks/d099b070-221cabf5ffd73869.js HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 27 Jul 2022 15:16:48 GMT
last-modified: Wed, 27 Jul 2022 15:15:58 GMT
etag: W/"62e156ae-11876"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nUrZoJ1lYrXYUEAh7RRx5RxC_3za8Fv0pV92GmwLIjh230pLEywoKA==
age: 4168831
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_next/static/chunks/c0a33b72-efbe3e99c4b6522e.js HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sat, 21 May 2022 06:46:34 GMT
last-modified: Tue, 03 May 2022 12:34:30 GMT
etag: W/"62712156-4c0a4"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TnuwAQngEv4I_B4G5Z1ezNgcXE5S8GWAWIK7AsKYo7LV8pUisI3Cog==
age: 9988245
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_next/static/chunks/979-fc9d9c0ee5b8eeaa.js HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 07 Sep 2022 13:24:41 GMT
last-modified: Wed, 07 Sep 2022 13:23:35 GMT
etag: W/"63189b57-7ff8"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TLfHfXf8rGLF9D8YQWT6W4SW2MQWx0p4_QE_o18PpHHTPO-B_IHBRA==
age: 546758
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_next/static/h9EpbwJXwlTi2qocBB7wO/_ssgManifest.js HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 07 Sep 2022 17:03:36 GMT
last-modified: Wed, 07 Sep 2022 17:03:02 GMT
etag: W/"6318cec6-4d"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: H0kdyyizY5UQfMXyWV-yILW3Do5EPhxz0T0X2yechnNcRB4EuNxg_A==
age: 533623
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_next/static/h9EpbwJXwlTi2qocBB7wO/_buildManifest.js HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 07 Sep 2022 17:03:36 GMT
last-modified: Wed, 07 Sep 2022 17:03:02 GMT
etag: W/"6318cec6-af8"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pzCChD8ZqILcB32dxTxyJWDfDqV7i0okyE0QitUwEjsjKEBC0Lzlxg==
age: 533623
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_next/static/chunks/928-e8dfb95cce274f1b.js HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 07 Sep 2022 17:03:36 GMT
last-modified: Wed, 07 Sep 2022 17:03:08 GMT
etag: W/"6318cecc-11b68"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CUttl6Gj-JT_EyYSgDlW6_319SLSXPR1QxD9EFkV9ME-CCkf6YdRWQ==
age: 533623
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_next/static/h9EpbwJXwlTi2qocBB7wO/_middlewareManifest.js HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 07 Sep 2022 17:03:36 GMT
last-modified: Wed, 07 Sep 2022 17:03:08 GMT
etag: W/"6318cecc-5c"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BzBW7Pxdgymtw9psDKW7xuWzH27a3ntLfYYRqa5xckvjbdv1DWUsWQ==
age: 533623
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_next/static/chunks/webpack-af0fc1fb1b57cb39.js HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 22 Mar 2022 12:30:56 GMT
last-modified: Tue, 22 Mar 2022 12:29:17 GMT
etag: W/"6239c11d-7ce"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nUNo1JXRcaPwLQTaQ41RsvB9KCFR7Mv8TFXR9jGDERsAAEhAWhxpiQ==
age: 15151583
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            OPTIONS /unavailable-days HTTP/1.1 
Host: hbe-api.kognitiv.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://booking.hotel-wieser.com/
Origin: https://booking.hotel-wieser.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         135.125.240.149
HTTP/2 200 OK
                                        
status: 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://booking.hotel-wieser.com
vary: Origin
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-headers: content-type
date: Tue, 13 Sep 2022 21:17:20 GMT
set-cookie: MGLH51CKJDVB=VEI1698VEKLN9; path=/; HttpOnly; Secure
cache-control: private
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            POST /events/ibe/pageReady? HTTP/1.1 
Host: quality.seekda.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Cache-Control: no-cache
Content-Length: 722
Origin: https://booking.hotel-wieser.com
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         135.125.240.141
HTTP/2 200 OK
content-type: application/json
                                        
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://booking.hotel-wieser.com
access-control-allow-credentials: true
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
date: Tue, 13 Sep 2022 21:17:21 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=cheiG8ch; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_next/static/chunks/a5b39bfc-49c1a7d2b3896b18.js HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 07 Sep 2022 13:24:41 GMT
last-modified: Wed, 07 Sep 2022 13:23:58 GMT
etag: W/"63189b6e-5d1a0"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DNzshSzmPNrN7Sc561HKSBBAGlHw6ui5Jve23xsbVlYWNPa4m3hxzw==
age: 546758
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_next/static/chunks/245-1c87427965379c6b.js HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 07 Sep 2022 13:24:41 GMT
last-modified: Wed, 07 Sep 2022 13:23:35 GMT
etag: W/"63189b57-1239a"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: f9hCK9Dj54uMJR3Cn1mPdtymcwjjq_hM0G8G18d3sSpUY-FltO_H6g==
age: 546758
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_next/static/chunks/648-587e437c300c66ac.js HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 07 Sep 2022 13:24:41 GMT
last-modified: Wed, 07 Sep 2022 13:23:58 GMT
etag: W/"63189b6e-29d1c"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lwGSrwbaCxrX3Vj2bHMgiu2VTInY9KbIHejw34nWLvA1TuB6C5GWvA==
age: 546758
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_next/static/chunks/804-13fd754e32aa16c3.js HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 07 Sep 2022 13:24:41 GMT
last-modified: Wed, 07 Sep 2022 13:23:58 GMT
etag: W/"63189b6e-7319"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vgv9S3Wpt_DzBMiuOLxB_1Wbw4n8KXVlMkXPuCglwPvI6V1HF5CWlQ==
age: 546758
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_next/static/chunks/framework-4774102d6f75bb1e.js HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Mon, 30 May 2022 07:23:17 GMT
last-modified: Tue, 03 May 2022 12:24:17 GMT
etag: W/"62711ef1-2640a"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tsk-CKYgljURWQ9mf6o710qkfcBn7kuK-lnWazZZ1rq3OKpr-j1FpQ==
age: 9208442
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_next/static/chunks/b801886f-67213ca4fe13c051.js HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 07 Sep 2022 13:24:41 GMT
last-modified: Wed, 07 Sep 2022 13:23:58 GMT
etag: W/"63189b6e-ff19"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: THzfzDiZAaPf7i0lRQPqeKrWQnk16XIijVHCqC4_nF03Zq4SbnuVDA==
age: 546758
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_next/static/chunks/712fd759-df3e3ff50ae8b461.js HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 27 Jul 2022 15:16:48 GMT
last-modified: Wed, 27 Jul 2022 15:15:58 GMT
etag: W/"62e156ae-d499"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ztAmSxSwjvIVTD9OQ_VyuBOQ6T-5Vv4I58moTgL-sYrdDwU-mHVgMA==
age: 4168831
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_next/static/chunks/619-2b600639675c00e7.js HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 07 Sep 2022 13:24:41 GMT
last-modified: Wed, 07 Sep 2022 13:23:35 GMT
etag: W/"63189b57-5cbb1"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GRQkGu7DLyUWFKKweqnOLlJerVL-5sMhRgYxxDyQJA7Bos-2sM9Svg==
age: 546758
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_next/static/chunks/333-3f822163f625f7bf.js HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 07 Sep 2022 17:03:36 GMT
last-modified: Wed, 07 Sep 2022 17:03:02 GMT
etag: W/"6318cec6-31161"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qpiVSEFX2Y1htfabrJwBI6b3qkoj9wCHRdwcMrjOsxIxjazjkCt2rw==
age: 533623
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_next/static/chunks/695-5ea418b3362d2010.js HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 07 Sep 2022 13:24:41 GMT
last-modified: Wed, 07 Sep 2022 13:23:35 GMT
etag: W/"63189b57-fd62"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0WZFfPRMgpnRFJFy2iTHOdDg5p91ltXiF_zktUZtfp2h4W9piT0imA==
age: 546758
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /static/icons.css?checksum=10237f48c3fa09118c62aea0fad9d4f4 HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: text/css
                                        
date: Tue, 13 Sep 2022 00:35:56 GMT
last-modified: Tue, 03 May 2022 12:34:48 GMT
etag: W/"62712168-4a0a"
access-control-allow-origin: *
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Pr8pM1qBv_RI4joEBzE15BFdBG3XuNWFUW7ZZd3MZS7zHSYdoY_o2Q==
age: 74483
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_next/static/chunks/433-95fd6a619c0477f2.js HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 07 Sep 2022 13:24:41 GMT
last-modified: Wed, 07 Sep 2022 13:23:35 GMT
etag: W/"63189b57-428f5"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5ibrMvPssuxzpcJ0x-IH-JXCZBIu1_mNwiirxpkHnFiwWjfuE9WEDA==
age: 546758
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_next/static/chunks/pages/index-817392b44c4b0acf.js HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 07 Sep 2022 13:24:41 GMT
last-modified: Wed, 07 Sep 2022 13:23:35 GMT
etag: W/"63189b57-152b0"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: peZnDpEfvLq8Yv1hyGJQSpLUeD3Ytm82y0rwxrkO9ho8QT3Fe0174w==
age: 546758
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /static/semantic.min.css?checksum=c693bf067390b2ec6106c2aec0a1c2b1 HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: text/css
                                        
date: Tue, 13 Sep 2022 01:47:49 GMT
last-modified: Wed, 27 Jul 2022 15:15:58 GMT
etag: W/"62e156ae-996ea"
access-control-allow-origin: *
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GYtVrbbJZVLkgB06CtTDHbkLISAkjKTf8rtqlZCHpHV8uNVZeqGTDQ==
age: 70170
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /static/icons-extended.css?checksum=c68829aa4263885cfc63b20639cec261 HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: text/css
                                        
date: Tue, 13 Sep 2022 02:55:13 GMT
last-modified: Tue, 03 May 2022 12:24:30 GMT
etag: W/"62711efe-250b"
access-control-allow-origin: *
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vzIF1uNNkCJskgTStNMBEja7qqZ7F-MSG6BfXtYz6ySUaHlEzbjmOA==
age: 66126
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /w/w-tracking-api/group:BookingFlow/69549e60-3d6e-0136-cbf5-0050568253f2.js HTTP/1.1 
Host: cloud.seekda.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         135.125.240.147
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
status: 200 OK
x-rack-cache: miss
cache-control: max-age=0, private, must-revalidate
date: Tue, 13 Sep 2022 21:17:19 GMT
x-ua-compatible: IE=Edge,chrome=1
etag: W/"326875576b7eb771474b4ce1a97a6d7d"
x-runtime: 0.003939
x-request-id: 203e1710cef2024a4b45ee49fac54bc5
x-powered-by: Phusion Passenger(R) 6.0.14
server: nginx/1.20.2 + Phusion Passenger(R) 6.0.14
content-encoding: gzip
strict-transport-security: max-age=15768000
set-cookie: SDLKJWIUDKIJS=5ec24e309224d20; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_next/static/chunks/373-4ceee1c8d4fac8a7.js HTTP/1.1 
Host: d2jtzd336hs8un.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.245.124
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 07 Sep 2022 13:24:41 GMT
last-modified: Wed, 07 Sep 2022 13:23:58 GMT
etag: W/"63189b6e-bfb3"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: IqeyZPARXjGsiztIgvOXT1AcezpXPoH2SnwwPQKPAe2MFfA1GDKKfA==
age: 546758
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /dsr/S001674/attribution?callback=skdtracking1663103827460986&cookie-enabled=true HTTP/1.1 
Host: ibe.seekda.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-wieser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         135.125.240.149
HTTP/2 200 OK
content-type: application/javascript;charset=ISO-8859-1
                                        
server: Apache-Coyote/1.1
content-encoding: gzip
vary: Accept-Encoding
date: Tue, 13 Sep 2022 21:17:20 GMT
set-cookie: ULTZCTLUCKO67=qwiuxs88; path=/; HttpOnly; Secure
cache-control: private
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            OPTIONS /channels/ibe/properties/S001674/offers-overview HTTP/1.1 
Host: hbe-api.kognitiv.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://booking.hotel-wieser.com/
Origin: https://booking.hotel-wieser.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         135.125.240.149
HTTP/2 200 OK
                                        
status: 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://booking.hotel-wieser.com
vary: Origin
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-headers: content-type
date: Tue, 13 Sep 2022 21:17:21 GMT
set-cookie: MGLH51CKJDVB=VEI1698VEKLN9; path=/; HttpOnly; Secure
cache-control: private
X-Firefox-Spdy: h2


--- Additional Info ---