jiggasha.com/parkerlynch/docusi/eeb7280879e817493265820937410353/verification.php
93.115.28.104200 OK 541 B URL HTTP/1.1 jiggasha.com/parkerlynch/docusi/eeb7280879e817493265820937410353/verification.php
IP 93.115.28.104:0
ASN #16125 UAB Cherry Servers
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (541), with no line terminators
Hash 4be497d36f37a6f652dcc5af9c7704f8
3c098201d8c66eefecca6f3b295deae5dfe225a6
c5e4ccfdd9bc52515feef09a31ee1d31ba79e747b5a473fcf04e1f920075cb12
GET /parkerlynch/docusi/eeb7280879e817493265820937410353/verification.php HTTP/1.1
Host: jiggasha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile
Cache-Control: max-age=0, private, must-revalidate
Content-Length: 541
Content-Type: text/html; charset=utf-8
Date: Sat, 25 Mar 2023 13:29:51 GMT
Server: nginx
Set-Cookie: sid=1fc2ce06-cb11-11ed-a71d-78859d9132a4; path=/; domain=.jiggasha.com; expires=Thu, 12 Apr 2091 16:43:59 GMT; max-age=2147483647; HttpOnly
X-Cache: MISS from shluota
X-Cache-Lookup: MISS from shluota:3128
Via: 1.1 shluota (squid)
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5d9435c884bf4a0777fdf4b57079ae09
7f04b9db47ffeec90ac6397416b7553e5336a550
fe77420ec3a11f547cf5172b68d30faa4fe0c13165ae305f0013b02914e61084
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FE77420EC3A11F547CF5172B68D30FAA4FE0C13165AE305F0013B02914E61084"
Last-Modified: Sat, 25 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8317
Expires: Sat, 25 Mar 2023 15:48:29 GMT
Date: Sat, 25 Mar 2023 13:29:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dfd491ebe7381221b3674c2c8bf9e566
d2ac5badf17f348c28a52e9db10e6eb80e5a231a
34a026664386054b0b73c36cd1ddfce023551ee41963df0e38248bac1e1eb56c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "34A026664386054B0B73C36CD1DDFCE023551EE41963DF0E38248BAC1E1EB56C"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3521
Expires: Sat, 25 Mar 2023 14:28:33 GMT
Date: Sat, 25 Mar 2023 13:29:52 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 25 Mar 2023 13:27:45 GMT
content-type: application/json
age: 127
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9bb70197d53617b5e6889b890dd2ae26
f3e9b8a743de494529baf2d078a622539f965307
a094a13905b7f1cd89475f9c83f9245580d4c3c7228d51d5c16622aec3c6aa45
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A094A13905B7F1CD89475F9C83F9245580D4C3C7228D51D5C16622AEC3C6AA45"
Last-Modified: Sat, 25 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2949
Expires: Sat, 25 Mar 2023 14:19:01 GMT
Date: Sat, 25 Mar 2023 13:29:52 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: a/DF0KygoKDtsnZIb6P/xbl7iPkf6NBLkKXYTEBRC76tjndOgKJAHU9Gz/a0NhN5LZ7PXSCM+ds=
x-amz-request-id: FY9P06PAB4EEDS95
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 25 Mar 2023 12:54:55 GMT
age: 2097
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 25 Mar 2023 13:29:52 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Last-Modified, Content-Length, Pragma, Expires, ETag, Backoff, Alert, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 25 Mar 2023 13:14:33 GMT
age: 920
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
jiggasha.com/parkerlynch/docusi/eeb7280879e817493265820937410353/verification.php?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY3OTc1ODE5MiwiaWF0IjoxNjc5NzUwOTkyLCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydDdxcDg2OXIxa2h1OHU5ajgwMWRrMjkiLCJuYmYiOjE2Nzk3NTA5OTIsInRzIjoxNjc5NzUwOTkyNjEzNTUxfQ.iHQtUxAsF2V2ZwX1I4zloLmPpqTR96D7-gR_16yvzTk&sid=1fc2ce06-cb11-11ed-a71d-78859d9132a4
93.115.28.104302 Found 11 B URL HTTP/1.1 jiggasha.com/parkerlynch/docusi/eeb7280879e817493265820937410353/verification.php?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY3OTc1ODE5MiwiaWF0IjoxNjc5NzUwOTkyLCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydDdxcDg2OXIxa2h1OHU5ajgwMWRrMjkiLCJuYmYiOjE2Nzk3NTA5OTIsInRzIjoxNjc5NzUwOTkyNjEzNTUxfQ.iHQtUxAsF2V2ZwX1I4zloLmPpqTR96D7-gR_16yvzTk&sid=1fc2ce06-cb11-11ed-a71d-78859d9132a4
IP 93.115.28.104:0
ASN #16125 UAB Cherry Servers
File type ASCII text, with no line terminators
Hash 32682312d17c7cbf18e73594f5570319
60e22121bdd0bc71cdb2bae2a3aa577006b2eae9
e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47
GET /parkerlynch/docusi/eeb7280879e817493265820937410353/verification.php?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY3OTc1ODE5MiwiaWF0IjoxNjc5NzUwOTkyLCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydDdxcDg2OXIxa2h1OHU5ajgwMWRrMjkiLCJuYmYiOjE2Nzk3NTA5OTIsInRzIjoxNjc5NzUwOTkyNjEzNTUxfQ.iHQtUxAsF2V2ZwX1I4zloLmPpqTR96D7-gR_16yvzTk&sid=1fc2ce06-cb11-11ed-a71d-78859d9132a4 HTTP/1.1
Host: jiggasha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jiggasha.com/parkerlynch/docusi/eeb7280879e817493265820937410353/verification.php
Cookie: sid=1fc2ce06-cb11-11ed-a71d-78859d9132a4
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Cache-Control: max-age=0, private, must-revalidate
Content-Length: 11
Date: Sat, 25 Mar 2023 13:29:52 GMT
Location: http://ishku-wbq.com/zcvisitor/20034081-cb11-11ed-a5f0-0aae6356e381/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=c318c960-ffe4-11eb-9dd2-0a918cbcbb97
Server: nginx
Set-Cookie: sid=1fc2ce06-cb11-11ed-a71d-78859d9132a4; path=/; domain=.jiggasha.com; expires=Thu, 12 Apr 2091 16:44:00 GMT; max-age=2147483647; HttpOnly
X-Cache: MISS from shluota
X-Cache-Lookup: MISS from shluota:3128
Via: 1.1 shluota (squid)
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 70300b32357c46f3448d567189b64cb3
6ba66a5cf63cdbfeaec59b936151cc812bac56df
5a2b4f9fc5ebaa8062058bf68eae75fc28e06c6ef6a0e79c3c761c1d92f81cb9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5A2B4F9FC5EBAA8062058BF68EAE75FC28E06C6EF6A0E79C3C761C1D92F81CB9"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13552
Expires: Sat, 25 Mar 2023 17:15:45 GMT
Date: Sat, 25 Mar 2023 13:29:53 GMT
Connection: keep-alive
ishku-wbq.com/zcvisitor/20034081-cb11-11ed-a5f0-0aae6356e381/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=c318c960-ffe4-11eb-9dd2-0a918cbcbb97
54.237.193.255200 1.1 kB URL HTTP/1.1 ishku-wbq.com/zcvisitor/20034081-cb11-11ed-a5f0-0aae6356e381/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=c318c960-ffe4-11eb-9dd2-0a918cbcbb97
IP 54.237.193.255:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 446f68c669aa39515912bad18ffd1294
0f8064ce25edbd1e7002f499007ebdb689417bd1
19c9bea5dbcb3aa5498ac3d3d9cac4a62de4156a5aed7c1787b89ed4bedddbdb
GET /zcvisitor/20034081-cb11-11ed-a5f0-0aae6356e381/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=c318c960-ffe4-11eb-9dd2-0a918cbcbb97 HTTP/1.1
Host: ishku-wbq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://jiggasha.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Date: Sat, 25 Mar 2023 13:29:53 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Server: VZxopCWl
ishku-wbq.com/zcredirect?visitid=20034081-cb11-11ed-a5f0-0aae6356e381&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
54.237.193.255200 248 B URL HTTP/1.1 ishku-wbq.com/zcredirect?visitid=20034081-cb11-11ed-a5f0-0aae6356e381&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
IP 54.237.193.255:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 6cd69f4253ba10bd8f5197085dc69d95
d699fecf6d0e8c661e4860bec956a7276037206f
ac2d92011661df5298dbd45d0a1683f702955296930da13630abef8e869ecee4
GET /zcredirect?visitid=20034081-cb11-11ed-a5f0-0aae6356e381&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false HTTP/1.1
Host: ishku-wbq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ishku-wbq.com/zcvisitor/20034081-cb11-11ed-a5f0-0aae6356e381/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=c318c960-ffe4-11eb-9dd2-0a918cbcbb97
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Date: Sat, 25 Mar 2023 13:29:53 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
redirected: JS
Server: oXwZLbUp
push.services.mozilla.com/
44.232.34.220101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.232.34.220:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ttyvQnc0p+RPrAa6JxXThg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: EXBcaS71e7l9vyAfHx3PCG3wWUI=
ishku-wbq.com/favicon.ico
54.237.193.255404 653 B URL HTTP/1.1 ishku-wbq.com/favicon.ico
IP 54.237.193.255:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (649), with no line terminators
Hash ba2732b1b2fa2626ffaa15f62f9e7d66
203d4e7fbb1d80449d6e4e1f3ae7a9bf8625debe
879861cb72fe9fbb476dab246021c4c83b4066327de2529e05ec54d3afb0a1c8
GET /favicon.ico HTTP/1.1
Host: ishku-wbq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ishku-wbq.com/zcredirect?visitid=20034081-cb11-11ed-a5f0-0aae6356e381&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
HTTP/1.1 404
Date: Sat, 25 Mar 2023 13:29:54 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 653
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Content-Language: en
Server: ozHWcwBG
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3a85d9c2de0b1015b62c81a1ab7fe625
389c7fe2d0d53ff607a3fd8e27283c8f1cb3a238
717fa1c4098bd6e282c24452a39aafc0b436941b2f398ef0086960effcc3f2ca
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 13:29:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4355291ec58b85ddde02c2446ecb2bb4
4ad43e10f82193f83e862e8a78f3e46de9490ac4
e32fd5635627751770ee13e8f77b14b2555163cfc2d7db98aa8edb5b4bae4d9a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 13:29:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-143268205-18
142.250.74.168200 OK 45 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-143268205-18
IP 142.250.74.168:0
File type ASCII text, with very long lines (2206)
Hash 58065b2d135aae6d88971cc174c95412
98c4b232e2901a622b4b9240666f474b697a65e4
63d2cc67b6ea9daf127b9bc6717c9a3cab727d7ed7e2f8fd685bc026fb141904
GET /gtag/js?id=UA-143268205-18 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://travelcravel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 25 Mar 2023 13:29:54 GMT
expires: Sat, 25 Mar 2023 13:29:54 GMT
cache-control: private, max-age=900
last-modified: Sat, 25 Mar 2023 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44766
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3a85d9c2de0b1015b62c81a1ab7fe625
389c7fe2d0d53ff607a3fd8e27283c8f1cb3a238
717fa1c4098bd6e282c24452a39aafc0b436941b2f398ef0086960effcc3f2ca
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 13:29:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4355291ec58b85ddde02c2446ecb2bb4
4ad43e10f82193f83e862e8a78f3e46de9490ac4
e32fd5635627751770ee13e8f77b14b2555163cfc2d7db98aa8edb5b4bae4d9a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 13:29:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 4.8 kB IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8f2ccf990961a64270297f0340eea962
5b432580c503d0bd5a072e04200fc1aefd99d822
b415485f31fb44a13a072b56a88c4dfe2672de06324108f5ad288ab5da143d56
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9618
Expires: Sat, 25 Mar 2023 16:10:13 GMT
Date: Sat, 25 Mar 2023 13:29:55 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ce6948c57f579a85042a4388c45514d6
4b3002c036034ef0cb8d9eb73b7bf7f561862b99
85e655e198ac1724ffca7bf4efc4f98de8c436cebf41ed665cc397fbb02a243a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 13:29:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 5.4 kB IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9e7764cf1cccb033623f9bce9790a92d
6db773f3d4ca549cd0b74916c6ef5a9628f69491
9c8d785d85ae93a40bb24fc298cfdf4cfd2745d621ca3bfe58251563b428e3d9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9618
Expires: Sat, 25 Mar 2023 16:10:13 GMT
Date: Sat, 25 Mar 2023 13:29:55 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bda2583-e595-45ff-852f-d4b6bd713109.jpeg
34.120.237.76200 OK 41 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bda2583-e595-45ff-852f-d4b6bd713109.jpeg
IP 34.120.237.76:0
Hash 762cb03b84e474a11684de2b3c8a21a8
2680d1bc36aa89e35be8bd361d7a101a9bfa5e73
361b2a6216a10a7c283af50ec1f7141a7a824d17c933484f035cf7cc5f98cd66
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bda2583-e595-45ff-852f-d4b6bd713109.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8635
x-amzn-requestid: fc715b03-f48f-4300-b752-ab157a684f08
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTihcETyIAMFhYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e17a2-68f685ec0f50dae026ea3f64;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:35:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: i6dsVaC_gPijsRqh_EL5tZYZpjNEbQJvKIpPq501TIJZzcLUWeRz9w==
via: 1.1 ba490acb2ea716cd57876286ed686786.cloudfront.net (CloudFront), 1.1 34f8ef0e4c880df0650a814412a26ea6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:45:56 GMT
age: 56639
etag: "6323f751f6b7517f062a0442480f672086ea02a1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af2ab94-b5c3-4517-b9d7-97ddb369f62d.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af2ab94-b5c3-4517-b9d7-97ddb369f62d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5773974a7341690f006b052ad02c94db
1b11316c952e2195da1646dd94671669e7e3bc2b
a06b72138745500cacc919fea29536ebd4188a1c483f6123e3402458e299f16a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af2ab94-b5c3-4517-b9d7-97ddb369f62d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7800
x-amzn-requestid: bad99b1e-3923-4de9-8bea-4dd04e96f7cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTigfFGcIAMFdBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e179c-0826b92d4c4af16553503600;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:35:24 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 9AGLmjvUSTKIsYIWECOR8QwdF4PP1tP1TweUm0VYvxQ0qskqj3YuLA==
via: 1.1 3698a5f586d9ecca74d570e41f4c8516.cloudfront.net (CloudFront), 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:43:53 GMT
age: 56762
etag: "1b11316c952e2195da1646dd94671669e7e3bc2b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
IP 34.120.237.76:0
Hash 0ca2779b423fb99781fc2b68ad6ac307
4fbe2262e5ae0e32269b25582bd7352787326757
7c6fd32c16d4db3f33941ae193ce4fb7068209b874366076b0d428df2d7acd50
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4000
x-amzn-requestid: 68dc01d7-3eed-48f6-8532-8efaa96cc1ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJpraEqyoAMFgNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2315-3852cc8961365a560d1fa02f;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:17 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: I3GuoZ4ZxAtz0sKe3wrW67aitLlCAbaZkiPw23fl0F3FoumJDEnXiQ==
via: 1.1 288c777a01e22425da9494dad7a69734.cloudfront.net (CloudFront), 1.1 d90109c5a0c30f43223e0db85921c5c2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 05:56:24 GMT
age: 27211
etag: "b798268806dc2f79f033e5872676019faf0e0cc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ce6948c57f579a85042a4388c45514d6
4b3002c036034ef0cb8d9eb73b7bf7f561862b99
85e655e198ac1724ffca7bf4efc4f98de8c436cebf41ed665cc397fbb02a243a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 13:29:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ce6948c57f579a85042a4388c45514d6
4b3002c036034ef0cb8d9eb73b7bf7f561862b99
85e655e198ac1724ffca7bf4efc4f98de8c436cebf41ed665cc397fbb02a243a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 13:29:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.35200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://travelcravel.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:42 GMT
expires: Sat, 23 Mar 2024 10:26:42 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
age: 97393
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg
IP 34.120.237.76:0
Hash 621e165508152474f6d98c996d5fabc6
2e175e03e2dc739421844237bf598f282e03008e
5f08697201ce21dba3fac2d42d170384fe8a69e7e772e785f9db5d435cc542bc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5296
x-amzn-requestid: 11fdf0c8-244c-4cd5-bfa7-4c77d777174f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTiuzEqkIAMFXOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e17f8-5c241d63598dbf595b54ead5;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:36:56 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: b1KWFmKdRQ4DU0v5JmC7AJatpv2B5FAHKVWL7pFiyh13fqYDA5qydA==
via: 1.1 b5695e36d7fbc522ece27885d73757ae.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:57:13 GMT
age: 55962
etag: "d68861e96e12e8a3f293dbae8b687f05b6e15afb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6f9abe8-74dc-41f6-984c-4a9e53a6198a.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6f9abe8-74dc-41f6-984c-4a9e53a6198a.jpeg
IP 34.120.237.76:0
Hash b302c9eac558e5baf7c6a05f8e936361
48db8f5a097f6e10a9c66575d1c19c4711577384
4d21191f02da6687adbee02cb231a631be01301ae41c18a3b4863c901175f083
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6f9abe8-74dc-41f6-984c-4a9e53a6198a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6185
x-amzn-requestid: 223de50b-9a7e-4ac7-9305-336658eec4ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTiwYHoLoAMFXtg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e1802-226bd8524ade75234053ff50;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:37:06 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Ye0ADORg1hFVLxcNVj-qS60tlfguOEtyTx_XFU4ooJOcDHqNsqV3kw==
via: 1.1 3698a5f586d9ecca74d570e41f4c8516.cloudfront.net (CloudFront), 1.1 1ec2938341958d70d56193d709c89dee.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:57:14 GMT
age: 55961
etag: "aec88022970c93289434f8097e4a663da33e5271"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07b6f4d1-af89-4aaf-acec-609bb76366de.jpeg
34.120.237.76200 OK 21 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07b6f4d1-af89-4aaf-acec-609bb76366de.jpeg
IP 34.120.237.76:0
Hash c75a9269f480a6a7f3602ce4f173d772
d46ea8ac5915331fd68a4745674e371fc3d8c7e8
dca84521b3a27bc081c4fd86b6ca493439874b277271112f058493bc752df0ec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07b6f4d1-af89-4aaf-acec-609bb76366de.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12071
x-amzn-requestid: 02bb2a93-c0aa-4d43-aa99-759a0418bc20
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTigfGHYoAMF8BQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e179c-2258162e1901b5cd6e7144d3;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:35:24 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: n7Xm67vDO9_X3Xoe2HXJs4Y9dLE6cZgx16lmW7c3KHv-sOg7rZo9wg==
via: 1.1 b5695e36d7fbc522ece27885d73757ae.cloudfront.net (CloudFront), 1.1 d90109c5a0c30f43223e0db85921c5c2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:47:23 GMT
age: 56552
etag: "4cd24b81bd6ade3ab5ff90fc88b0f7497e93391d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52xwNZWMf6.woff2
142.250.74.35200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52xwNZWMf6.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 19740, version 1.0\012- data
Hash 101cf2a65d64322878605fa8472bb025
6dffc15e38c321e4bb567b4bd8107a2e8d97c61d
273c8613cdd2852dd5318f224d804ae6d2fc717c48d3f1dab587b6d396fb4fc8
GET /s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52xwNZWMf6.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://travelcravel.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:53 GMT
expires: Sat, 23 Mar 2024 10:26:53 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 26 Apr 2022 15:48:38 GMT
content-type: font/woff2
age: 97382
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2
142.250.74.35200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 20028, version 1.0\012- data
Hash 2bfde17b9a1384ce64af78db1b87a82f
8effd23e482511e249c3f8e91cdc503729b93598
5c2d662e92bcbf1a5970b97040f901031295e79a96314db8302f549003022087
GET /s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://travelcravel.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:27:01 GMT
expires: Sat, 23 Mar 2024 10:27:01 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 26 Apr 2022 16:41:08 GMT
content-type: font/woff2
age: 97374
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ce6948c57f579a85042a4388c45514d6
4b3002c036034ef0cb8d9eb73b7bf7f561862b99
85e655e198ac1724ffca7bf4efc4f98de8c436cebf41ed665cc397fbb02a243a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 13:29:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/OtAutoBlock.js
104.19.187.97200 OK 13 kB URL HTTP/2 cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/OtAutoBlock.js
IP 104.19.187.97:0
Hash c17292b6932c42c59d609d3f3b17e6f9
d396da59d7db854d3b524d929d0820a1e3790de1
396925362a174eab0b5b4fc3c53b18cb837eacda7009e025b1bb8c52990b9e1b
GET /consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/OtAutoBlock.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 13:29:56 GMT
content-type: application/x-javascript
content-length: 10921
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: UsHmWps2HewFvP1A/x6ZRg==
last-modified: Tue, 14 Mar 2023 09:25:31 GMT
etag: 0x8DB246E0E81E9BD
x-ms-request-id: 33ff692b-901e-00db-42e1-5a7c30000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 33625
expires: Sun, 26 Mar 2023 13:29:56 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ad7816f5cedb50c-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/otSDKStub.js
104.19.187.97200 OK 8.6 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP 104.19.187.97:0
File type ASCII text, with very long lines (26237)
Hash 5cfe6e7c620c540ce793517ea6ab70ce
060716263902f949959961d571ed852b88860cff
6ca1026b6121df8226a60f5608e52d71d5d32a77d9ee116014828e296a046d6e
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 13:29:56 GMT
content-type: application/javascript
content-length: 8618
content-encoding: gzip
content-md5: XP5ufGIMVAznk1F+pqtwzg==
last-modified: Thu, 23 Mar 2023 02:36:54 GMT
etag: 0x8DB2B4777370286
x-ms-request-id: 2ad230fe-c01e-0087-1ecd-5d8dc9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 33678
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ad781701e5bb50c-OSL
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/crossorigin_check_cloudfront_sd/2454015045ef79168d452ff4e7f30bdadff0aa81.js
18.173.5.36200 OK 95 B URL HTTP/2 cf.bstatic.com/static/js/crossorigin_check_cloudfront_sd/2454015045ef79168d452ff4e7f30bdadff0aa81.js
IP 18.173.5.36:0
File type ASCII text, with no line terminators
Hash 335be8900580e9c3875dba57334294ae
a86597d2ddfa410df13bceca86fdf9a2291fe798
8a882fd19a15567e53a5c3c08d22cdab714fa87734ed92d854c4e8fdf3940b1f
GET /static/js/crossorigin_check_cloudfront_sd/2454015045ef79168d452ff4e7f30bdadff0aa81.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 95
server: nginx
date: Tue, 07 Mar 2023 04:10:38 GMT
last-modified: Wed, 10 Apr 2019 11:21:38 GMT
etag: "5cadd1c2-5f"
expires: Thu, 06 Apr 2023 04:10:38 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 3b0715ca57820f19665e655f9f44da48.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: ijzz-8Wh-65x4zn8zFOqtlmOjkgojgdjdLZuVri1bgiiGzuOK-lQSQ==
age: 1588758
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/3ea94870-d4b1-483a-b1d2-faf1d982bb31.json
104.19.187.97200 OK 2.1 kB URL HTTP/2 cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/3ea94870-d4b1-483a-b1d2-faf1d982bb31.json
IP 104.19.187.97:0
File type JSON data\012- , ASCII text, with very long lines (8084), with no line terminators
Hash 09e62e612e2b54415dc82be1e55eb3e7
ffed52cfecd7e421981ed1e9e39d0558e00a2958
8d65536c42ac87a87a3b50259af913daa1e74682420d5163c58c747a0818733a
GET /consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/3ea94870-d4b1-483a-b1d2-faf1d982bb31.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 13:29:56 GMT
content-type: application/x-javascript
content-length: 2142
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: CeYuYS4rVEFdyCvh5V6z5w==
last-modified: Tue, 14 Mar 2023 09:25:31 GMT
etag: 0x8DB246E0EA1C955
x-ms-request-id: f70ebf1f-601e-00ce-30e1-5abea9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 33625
expires: Sun, 26 Mar 2023 13:29:56 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ad781704ed8b50c-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.22.0/otBannerSdk.js
104.19.187.97200 OK 76 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.22.0/otBannerSdk.js
IP 104.19.187.97:0
File type ASCII text, with very long lines (65455)
Hash 523e98a35ea92fd6e6d32d6728a8c98e
e0951a7bfa0700679aa41a03394286723e697d93
a746202b022948dfc0461cf24b3be5b01d0c08b924b23545f3cba6e2d15b41a9
GET /scripttemplates/6.22.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 13:29:56 GMT
content-type: application/javascript
content-length: 75930
content-encoding: gzip
content-md5: Uj6Yo16pL9bm0y1nKKjJjg==
last-modified: Thu, 19 Aug 2021 02:39:18 GMT
etag: 0x8D962BA8ADAEF03
x-ms-request-id: b83df397-701e-00bc-74e1-5acf97000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 33641
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ad78170bf8eb50c-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/77946762-1e41-44bb-9c76-9c2e81167e6d/en-us.json
104.19.187.97200 OK 18 kB URL HTTP/2 cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/77946762-1e41-44bb-9c76-9c2e81167e6d/en-us.json
IP 104.19.187.97:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65508), with no line terminators
Hash b86de79a88096ab008259d75ec356d3d
ed022582e20083072b0c0e4e7fa8c3397687d6ff
281675b89d2b78dca9400ce9e31ac034e835effac0391f0bc35124580183342a
GET /consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/77946762-1e41-44bb-9c76-9c2e81167e6d/en-us.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 13:29:56 GMT
content-type: application/x-javascript
content-length: 18492
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: uG3nmogJarAIJZ117DVtPQ==
last-modified: Tue, 14 Mar 2023 09:25:57 GMT
etag: 0x8DB246E1E644A73
x-ms-request-id: 312667f2-901e-017e-2de1-5a017c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 31543
expires: Sun, 26 Mar 2023 13:29:56 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ad78171281fb50c-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.22.0/assets/otFlat.json
104.19.187.97200 OK 3.0 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.22.0/assets/otFlat.json
IP 104.19.187.97:0
File type JSON data\012- , ASCII text, with very long lines (10843)
Hash 792fef665863081a7642f10bc7b22b49
f30de5899ad8675a26c5a1688c543e7044bce0ab
af415b02ce1afa491d86bd1fafa2416302d69906ded37715ca425b6778cd7d9c
GET /scripttemplates/6.22.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 13:29:56 GMT
content-type: application/json
content-length: 2950
content-encoding: gzip
content-md5: eS/vZlhjCBp2QvELx7IrSQ==
last-modified: Thu, 19 Aug 2021 02:39:10 GMT
etag: 0x8D962BA867F281F
x-ms-request-id: 9f1e8392-e01e-00d4-35e1-5a91c6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 33441
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ad781715868b50c-OSL
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/513.75e7f786.chunk.css
18.173.5.36200 OK 714 B URL HTTP/2 cf.bstatic.com/psb/capla/static/css/513.75e7f786.chunk.css
IP 18.173.5.36:0
File type ASCII text, with very long lines (600)
Hash 9646d566d863bf8858bb120001e00df9
2cf81c65fc9e9003213dbd7c67be287419983765
27f6fa9431e1b155845f98ee098a95dab2d94f280259983ca4cb7611ba3f2251
GET /psb/capla/static/css/513.75e7f786.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 714
server: nginx
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Tue, 31 Jan 2023 10:39:41 GMT
x-amz-expiration: expiry-date="Thu, 23 Mar 2023 10:15:47 GMT", rule-id=""
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Fri, 24 Mar 2023 02:28:36 GMT
expires: Sun, 23 Apr 2023 01:19:30 GMT
cache-control: max-age=2592000
etag: "9646d566d863bf8858bb120001e00df9"
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: MpthjV73d1Ki_OA3VXusbTBlXjNrPLJb6yB0HrxnRoIAubk4ufIsrg==
age: 130227
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/736.efc019bd.chunk.css
18.173.5.36200 OK 851 B URL HTTP/2 cf.bstatic.com/psb/capla/static/css/736.efc019bd.chunk.css
IP 18.173.5.36:0
File type ASCII text, with very long lines (737)
Hash 8c5c3443c3df14446e77dee5cad05769
0effbb1c48b73b93121ffa4d63bdf1af2a0bb8c4
daaafa4e355363ce4a9b42257a10160d18d17a22f38f159990e289fe07ace87d
GET /psb/capla/static/css/736.efc019bd.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 851
server: nginx
date: Thu, 16 Mar 2023 03:22:18 GMT
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Thu, 02 Mar 2023 02:15:28 GMT
x-amz-expiration: expiry-date="Fri, 17 Mar 2023 11:13:07 GMT", rule-id=""
expires: Sat, 15 Apr 2023 03:22:18 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "8c5c3443c3df14446e77dee5cad05769"
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: vRZJmIg46jkYnu5u32DAWFUdOgHXjvOSOc89KRCQAUdfVgjOyPd65A==
age: 814059
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/802.928bb228.chunk.css
18.173.5.36200 OK 354 B URL HTTP/2 cf.bstatic.com/psb/capla/static/css/802.928bb228.chunk.css
IP 18.173.5.36:0
Hash daeebf129b59c1a9ca8a02db535232af
4f6bfbc548876e7d27e8cc6145d77a1f8fe57f74
6bfd80f532a390c2035d7a2f5f5483308d9f12e935f60ebb205459c9f7038617
GET /psb/capla/static/css/802.928bb228.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 354
server: nginx
date: Sat, 11 Mar 2023 00:58:32 GMT
etag: "daeebf129b59c1a9ca8a02db535232af"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 13 Jan 2023 09:14:58 GMT
x-amz-expiration: expiry-date="Sat, 13 May 2023 09:14:58 GMT", rule-id=""
expires: Mon, 10 Apr 2023 00:58:32 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: qryUoPicp9qEZqTwNE3oH2-QWBAxwdoyCdvqluI1Pfw_OCIwNWpdtw==
age: 1254685
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/541.60bd0f47.chunk.css
18.173.5.36200 OK 349 B URL HTTP/2 cf.bstatic.com/psb/capla/static/css/541.60bd0f47.chunk.css
IP 18.173.5.36:0
Hash 3463768f1eada6681938129f4ac1f0cd
0e94fd7afdcf474745329e76795462278d22fb79
9ce1783fb0eb2bffa218d02d92cd320087f6bb3132dbf1e20b3443a87306412b
GET /psb/capla/static/css/541.60bd0f47.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 349
server: nginx
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Wed, 15 Feb 2023 13:35:48 GMT
x-amz-expiration: expiry-date="Wed, 01 Mar 2023 10:18:55 GMT", rule-id=""
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Mon, 20 Mar 2023 02:04:59 GMT
expires: Tue, 11 Apr 2023 00:50:11 GMT
cache-control: max-age=2592000
etag: "3463768f1eada6681938129f4ac1f0cd"
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: qiL8lskGV2gxPlrd2Vsz_ytUKmxZWBFmFXHE-BeYtzFICX03gY2CLA==
age: 1168786
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/665.4b0f9a6e.chunk.css
18.173.5.36200 OK 372 B URL HTTP/2 cf.bstatic.com/psb/capla/static/css/665.4b0f9a6e.chunk.css
IP 18.173.5.36:0
Hash 09de2c73a5e88fb7890e7bda05b388e1
5ddaf842181496df3827f019a004d4665ec6e34b
23470a91500ad85a0316944145d51f31e5a6f7a7d4b1aaed1c59b9ec4899722d
GET /psb/capla/static/css/665.4b0f9a6e.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 372
server: nginx
date: Wed, 15 Mar 2023 10:08:15 GMT
etag: "09de2c73a5e88fb7890e7bda05b388e1"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Tue, 14 Mar 2023 14:41:02 GMT
x-amz-expiration: expiry-date="Wed, 12 Jul 2023 14:41:02 GMT", rule-id=""
expires: Fri, 14 Apr 2023 10:08:15 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: pEZePxE0Gq5NTYUZnWEt4sfc2uCNChSvy-1E4X2chXvsnnjRvWccmw==
age: 876102
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/540x405/204288001.webp?k=eefb95e93232c14131e5d4a053f1b4d7c52dfb9f727fa4f427db0968098beac1&o=
18.173.5.36200 OK 35 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/540x405/204288001.webp?k=eefb95e93232c14131e5d4a053f1b4d7c52dfb9f727fa4f427db0968098beac1&o=
IP 18.173.5.36:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 540x405, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 7c11c2fb3ff179565607c5556fb4cc2a
ee9ec3dbde461d198a9b9b0b71cb6ea307a76506
55161a853365e809a3d88404b5a6b35b0506ab7d2a8a4a87d588f98834e9ef30
GET /xdata/images/xphoto/540x405/204288001.webp?k=eefb95e93232c14131e5d4a053f1b4d7c52dfb9f727fa4f427db0968098beac1&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 34678
server: nginx
date: Mon, 13 Mar 2023 14:20:22 GMT
etag: "00286e64d5183dbb086060f4de7dddbd969ea17b"
expires: Wed, 12 Apr 2023 14:20:22 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: OFpRd2iur75qhN8zqkKqP9gBleWLO3s9dFp7V1EEROkCno4kuNtoqw==
age: 1033775
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/540x405/196284125.webp?k=9bda565c6a99f647fd60119e0bb098e9efff57840b3dea388695b5b13f3edfbd&o=
18.173.5.36200 OK 40 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/540x405/196284125.webp?k=9bda565c6a99f647fd60119e0bb098e9efff57840b3dea388695b5b13f3edfbd&o=
IP 18.173.5.36:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 540x405, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a48ad1fc10a4a4a8d7e20fef40a68a39
af4e1fadf27c09f4b467202c4e491d426cbe68f4
233922d2000a4e9f8f77d10758daf1fc71574f907c9ff7da5f1e32639f6d5525
GET /xdata/images/xphoto/540x405/196284125.webp?k=9bda565c6a99f647fd60119e0bb098e9efff57840b3dea388695b5b13f3edfbd&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 39638
server: nginx
date: Sun, 05 Mar 2023 13:00:26 GMT
etag: "056efc1bdaa1d820ff99e59193fac56c5e4df3aa"
expires: Tue, 04 Apr 2023 13:00:26 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: -DUhLW562ClXFmiR-Z5QQ8swtqB4vJ9CPUSR1_pRW_wXIMzAvooh3Q==
age: 1729771
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/540x405/195762106.webp?k=0e7f1a78baf576759aaee56430a369a782ef03811c10f17675cfaa0a93da190a&o=
18.173.5.36200 OK 12 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/540x405/195762106.webp?k=0e7f1a78baf576759aaee56430a369a782ef03811c10f17675cfaa0a93da190a&o=
IP 18.173.5.36:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 540x405, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1902be68719b1462a96e07bfed696d87
6ed1e4bce807f541d61335ef2f63a54ae2ff8892
ad7f574e95c4627ff14eb1d708e0ba2da9f53675c9dc942761b575c9ff03c6a9
GET /xdata/images/xphoto/540x405/195762106.webp?k=0e7f1a78baf576759aaee56430a369a782ef03811c10f17675cfaa0a93da190a&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 11458
server: nginx
date: Fri, 03 Mar 2023 09:29:17 GMT
etag: "66b45a9c9299e111d74dd44ed1d1cbf7e83e11fc"
expires: Sun, 02 Apr 2023 09:29:17 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: 0X3uHK7hdZ42GSGr2GMWRk5ouaM_CvlY4_NLQC_YiPj7jdMSJ1bFgQ==
age: 1915240
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/700x350/191445417.webp?k=158eec3229f0447f2259710f61b7190c8912fd6fcdf8bc95812346c78365d5db&o=
18.173.5.36200 OK 44 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/700x350/191445417.webp?k=158eec3229f0447f2259710f61b7190c8912fd6fcdf8bc95812346c78365d5db&o=
IP 18.173.5.36:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 700x350, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 01b7b32c1e7d3c27b4528d5d7f974dce
9b76c31915dfcac1ab2379a759a25a39d466f4b7
f23b43f3214853888f19d778388be50159cfedd291454b479cd6978a742fc4da
GET /xdata/images/xphoto/700x350/191445417.webp?k=158eec3229f0447f2259710f61b7190c8912fd6fcdf8bc95812346c78365d5db&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 43452
server: nginx
date: Tue, 07 Mar 2023 02:07:02 GMT
etag: "3da65f279692a7d46d9f02cc50c1043721150d77"
expires: Thu, 06 Apr 2023 02:07:02 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: iBx5oZ8JA8tkCRhqIcpLTv7AOWvQzd2xAY4RJtGbdrwTlB7sF0A4TQ==
age: 1596175
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/tfl/group_logos/logo_booking/27c8d1832de6a3123b6ee45b59ae2f81b0d9d0d0.png
18.173.5.36200 OK 1.6 kB URL HTTP/2 cf.bstatic.com/static/img/tfl/group_logos/logo_booking/27c8d1832de6a3123b6ee45b59ae2f81b0d9d0d0.png
IP 18.173.5.36:0
File type PNG image data, 91 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 3e32efd25ac0214b375fc8a6a32890f2
cd46a79db7e53e19d5869b3cb3e7aa22ee523479
807c8a1b498e17d227cf48a640b778bdc4398a9852493cb2f40bf0f33651d0dd
GET /static/img/tfl/group_logos/logo_booking/27c8d1832de6a3123b6ee45b59ae2f81b0d9d0d0.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1628
server: nginx
date: Sat, 11 Mar 2023 01:27:51 GMT
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
etag: "5cadd1d3-65c"
expires: Mon, 10 Apr 2023 01:27:51 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: X2p_D8IXR0rOhFnITNjIYolAfsS3JlkFDOIoCJY6H1x3L37GCiqCoQ==
age: 1252926
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/tfl/group_logos/logo_priceline/f80e129541f2a952d470df2447373390f3dd4e44.png
18.173.5.36200 OK 1.6 kB URL HTTP/2 cf.bstatic.com/static/img/tfl/group_logos/logo_priceline/f80e129541f2a952d470df2447373390f3dd4e44.png
IP 18.173.5.36:0
File type PNG image data, 91 x 26, 8-bit colormap, non-interlaced\012- data
Hash b6d0b31340d7a113f63b936e23d06f78
268e3856da737f7e56e679258949ef70ddde47f4
18c62988860a8ffd90bab6376b4fe36a723bd39403c420d3943aa3eb5a0029c5
GET /static/img/tfl/group_logos/logo_priceline/f80e129541f2a952d470df2447373390f3dd4e44.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1591
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Mon, 20 Mar 2023 10:58:39 GMT
expires: Tue, 18 Apr 2023 04:41:32 GMT
cache-control: max-age=2592000
etag: "5cadd1d3-637"
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: en9cX0pk5Fzsu6cXL8SMV76gAcYUy_c8VpAc54gHvKLJyXYkMtOZQQ==
age: 550105
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/tfl/group_logos/logo_kayak/83ef7122074473a6566094e957ff834badb58ce6.png
18.173.5.36200 OK 1.2 kB URL HTTP/2 cf.bstatic.com/static/img/tfl/group_logos/logo_kayak/83ef7122074473a6566094e957ff834badb58ce6.png
IP 18.173.5.36:0
File type PNG image data, 79 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 6384185cbe9a4f106857a3cb85caea98
0e31a4fe2ce98a8b4fda60687aa71079b4d3a95b
5839f0330821cf08029beddd6d248170da1af16cd7aff253e7bd075d591f5d42
GET /static/img/tfl/group_logos/logo_kayak/83ef7122074473a6566094e957ff834badb58ce6.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1154
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Tue, 21 Mar 2023 01:38:32 GMT
expires: Wed, 19 Apr 2023 01:11:01 GMT
cache-control: max-age=2592000
etag: "5cadd1d3-482"
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: iYGE3_E0ZuJ7NgikZJG2h_C_n5sazrluCI5S4zvdrxNDu5AotltZrg==
age: 476336
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/tfl/group_logos/logo_agoda/1c9191b6a3651bf030e41e99a153b64f449845ed.png
18.173.5.36200 OK 2.1 kB URL HTTP/2 cf.bstatic.com/static/img/tfl/group_logos/logo_agoda/1c9191b6a3651bf030e41e99a153b64f449845ed.png
IP 18.173.5.36:0
File type PNG image data, 70 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 27e71a5124018e16eae0b8897618623d
d0d54d88b04edfc71f338c19eab9994632bc6ced
1d6e86e59ab7235a8343f494c8e8da6cc02c5a98a75d682401340e6d06935f20
GET /static/img/tfl/group_logos/logo_agoda/1c9191b6a3651bf030e41e99a153b64f449845ed.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2146
server: nginx
date: Mon, 13 Mar 2023 03:13:13 GMT
last-modified: Thu, 12 Mar 2020 10:15:57 GMT
etag: "5e6a0bdd-862"
expires: Wed, 12 Apr 2023 03:13:13 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: Nmls6qF0SrOYb6AKX0hjlGho6erY49fy1rYYjqXsfy_1d4NoPl4Ghg==
age: 1073804
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/tfl/group_logos/logo_rentalcars/6bc5ec89d870111592a378bbe7a2086f0b01abc4.png
18.173.5.36200 OK 3.2 kB URL HTTP/2 cf.bstatic.com/static/img/tfl/group_logos/logo_rentalcars/6bc5ec89d870111592a378bbe7a2086f0b01abc4.png
IP 18.173.5.36:0
File type PNG image data, 109 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 38784d782a29a302dab9135d63aef953
04db0e863a35062a355c4b2ea9585ec83c4ffc3e
8561e200a6a57195e480ed9d893b14579ef6acdeabfbb3fe22b5e4ec9b84b455
GET /static/img/tfl/group_logos/logo_rentalcars/6bc5ec89d870111592a378bbe7a2086f0b01abc4.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 3221
server: nginx
date: Mon, 27 Feb 2023 00:46:51 GMT
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
etag: "5cadd1d3-c95"
expires: Wed, 29 Mar 2023 00:46:51 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: gAB382mT9UK6Xpk0RECMlDEjMe3Q3TrrABa1A0D4M1Bf9QGWfb2o0g==
age: 2292186
X-Firefox-Spdy: h2
tracking.jvtinfotech.com/click?offer_id=21&pub_id=6
188.114.97.1302 Found 125 kB URL HTTP/2 tracking.jvtinfotech.com/click?offer_id=21&pub_id=6
IP 188.114.97.1:0
Size 125 kB (124792 bytes)
Hash 3852c11b240ff35d6dc50ae93c784719
e48d5e2ebce35a9e1ff94d1aaad88204c037fcbd
c5eead964e1403793ced47c152812847f33ab0591fe78d8d47b126475d1b0fdd
GET /click?offer_id=21&pub_id=6 HTTP/1.1
Host: tracking.jvtinfotech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://travelcravel.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 25 Mar 2023 13:29:55 GMT
content-type: text/html; charset=utf-8
location: https://www.booking.com/index.html?aid=7977348&label=travelcravel
content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
x-dns-prefetch-control: off
expect-ct: max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
origin-agent-cluster: ?1
x-permitted-cross-domain-policies: none
referrer-policy: no-referrer
x-xss-protection: 0
access-control-allow-origin: *
vary: Accept
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NdHkPrS6EsI0d4AdKul%2BgU3TvA8V6F4kzA95EUQIcHSM01SG1dp2hVQEzDY38XTdURuZlUdm%2BKmXd6RtohxMxZjP1e8mD1N5Om95gBEUmhB%2FHp05%2FHh3fQe93x6pWrfJDQx626XsgXWPIK8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ad78167d84cb521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/224.e9ab6600.chunk.css
18.173.5.36200 OK 1.3 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/224.e9ab6600.chunk.css
IP 18.173.5.36:0
File type ASCII text, with very long lines (2057)
Hash 6322f30c889b684f9aa4037e647d4340
a1cbdab0fc94a68fdac44ff55265604d4f9632a5
bbf0eccf403eabf8d86faaf5636a201a5a2c69f5a93bf0b59b9162e419b3694d
GET /psb/capla/static/css/224.e9ab6600.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Mon, 06 Mar 2023 14:01:16 GMT
etag: W/"6526ecd01320f2b7dd3f74cca2265112"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 03 Mar 2023 14:06:53 GMT
x-amz-expiration: expiry-date="Sat, 01 Jul 2023 14:06:53 GMT", rule-id=""
expires: Wed, 05 Apr 2023 14:01:16 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: X0ZeBvJTE9EccpOWg1axdf-I35r6N2oIYqDnOHr7IJmiJ3jtmuJFRQ==
age: 1639721
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/720x217/207074833.jpeg?k=7f5cb59e23576abf2c5b4c022e55c7a1c4a5b7181ed3b8ecf833bc7541b77485&o=
18.173.5.36200 OK 26 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/720x217/207074833.jpeg?k=7f5cb59e23576abf2c5b4c022e55c7a1c4a5b7181ed3b8ecf833bc7541b77485&o=
IP 18.173.5.36:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 720x217, components 3\012- data
Hash 41e584f462020f58202fb3d4887d8a5f
f4ecf3b2b9239b5694c476f56dcd359a4c71f9ce
b1bc09d266b9c18e32522c981e5b499cc5f58d5a8b834fde51adfa65675864b6
GET /xdata/images/xphoto/720x217/207074833.jpeg?k=7f5cb59e23576abf2c5b4c022e55c7a1c4a5b7181ed3b8ecf833bc7541b77485&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 26008
server: nginx
date: Mon, 20 Mar 2023 15:47:31 GMT
etag: "22466ed89b008a125f6cd21d2a7b2eb617ac5a39"
expires: Wed, 19 Apr 2023 15:47:31 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: hNCv4fWKfXFU_NCjEFj15JTboJabYZ_UFTtddMCnY4iET9lwGIhPkw==
age: 423746
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/bui-react.6c950ec3.css
18.173.5.36200 OK 23 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/bui-react.6c950ec3.css
IP 18.173.5.36:0
File type ASCII text, with very long lines (52456)
Hash 6274d0493c3cd3e2795678ab7412e982
958b52788ce45187c656c2ab3acfe41d00165c0b
9b6ae1d9486a758455440869679376df90cb3e6b5301fffd4953493ab4ba9ab9
GET /psb/capla/static/css/bui-react.6c950ec3.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Fri, 24 Mar 2023 14:33:37 GMT
etag: W/"a15309f68495a393fc297d720ae25a43"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 24 Mar 2023 14:16:38 GMT
x-amz-expiration: expiry-date="Sat, 22 Jul 2023 14:16:38 GMT", rule-id=""
expires: Sun, 23 Apr 2023 14:33:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: 1DLNUHuPNGKa_c8YysQPz6oqdpEjK2HhlRkwYhLch4YPTKPNNCj4Tw==
age: 82580
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/514.3e7abeb8.chunk.css
18.173.5.36200 OK 118 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/514.3e7abeb8.chunk.css
IP 18.173.5.36:0
File type ASCII text, with very long lines (1334)
Size 118 kB (117700 bytes)
Hash 7ade48c15d748dc26a095f2faf18f723
27a5b1ce40d32a342dfda4051adc12db86e4b2b1
6d90221e32c0e4c9503d98171b1ca3a9a5216b02d3b6881f5aefa8f7f896aa26
GET /psb/capla/static/css/514.3e7abeb8.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 03 Feb 2023 13:33:36 GMT
x-amz-expiration: expiry-date="Sat, 03 Jun 2023 13:33:36 GMT", rule-id=""
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sun, 05 Mar 2023 14:04:50 GMT
expires: Tue, 04 Apr 2023 14:04:50 GMT
cache-control: max-age=2592000
etag: W/"6f425779ee87e2f0e6f224f94ba87323"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: pfN4icvnbw6tWbdeWuSzOE69oG9dC9CWbk23TMIumfYVne62DHkMWQ==
age: 1725907
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/664.bdee9dfd.chunk.js
18.173.5.36200 OK 93 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/664.bdee9dfd.chunk.js
IP 18.173.5.36:0
File type ASCII text, with very long lines (65460)
Hash 658e3a88b1982e0229eca8e669595b9b
dbb73957ed6d1ed9793f77bf5d6401c081fc252e
e7e96ee2edc82b9ba042a9fcd283ff293b2300b34539f64e98c95542f0919bc8
GET /psb/capla/static/js/664.bdee9dfd.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 24 Mar 2023 14:33:37 GMT
etag: W/"f4a90ff7ef27c3351ca8588ed0bad578"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 24 Mar 2023 14:16:39 GMT
x-amz-expiration: expiry-date="Sat, 22 Jul 2023 14:16:39 GMT", rule-id=""
expires: Sun, 23 Apr 2023 14:33:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3b0715ca57820f19665e655f9f44da48.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: kqED9MNzvk_Eg2XGP9DkcnsZuufoRO-0F0VKPCYn0XWxHHAi_yUikg==
age: 82580
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/527.44af578a.chunk.css
18.173.5.36200 OK 42 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/527.44af578a.chunk.css
IP 18.173.5.36:0
File type ASCII text, with very long lines (1225)
Hash d09cce8ee032241cea5453f8b3e5a8fa
5565bc30d472c9f57a23bfb0dee2f1166c7822be
e29a16ef64d226354aa73a86b738cab31fd73e5b560f207612b5a86867a50744
GET /psb/capla/static/css/527.44af578a.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Thu, 09 Mar 2023 12:46:03 GMT
etag: W/"aeaaee4f62820ba9312c916cbdc16cd6"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Tue, 07 Mar 2023 14:39:41 GMT
x-amz-expiration: expiry-date="Wed, 05 Jul 2023 14:39:41 GMT", rule-id=""
expires: Sat, 08 Apr 2023 12:46:03 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: UyCpYmrq_Cv54xf0WyaD-QONxc1Cy1h75rGY9aA86BMmEHh_Gi1sEw==
age: 1385034
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/93.6839c00c.chunk.css
18.173.5.36200 OK 32 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/93.6839c00c.chunk.css
IP 18.173.5.36:0
File type ASCII text, with very long lines (6890)
Hash 11dbd7de1bf77ffe074a2f64efaf1e5a
e71d9d21ef37f6c1052b3e785bcb216a473e6e41
a70374a6cd8737d55e6da21965a0cf8453699d6885a7929d80f7093bfebf2fa5
GET /psb/capla/static/css/93.6839c00c.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Wed, 15 Mar 2023 10:08:15 GMT
etag: W/"fd77947cbad82bfb3628e9f44d8e2f6e"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Tue, 14 Mar 2023 14:41:03 GMT
x-amz-expiration: expiry-date="Wed, 12 Jul 2023 14:41:03 GMT", rule-id=""
expires: Fri, 14 Apr 2023 10:08:15 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: bXG-INP5u7OFNylkmB348zCGUb_coovD5IVudCDoHPkgGVsDMIYTIg==
age: 876102
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/600x600/613095.jpg?k=8caf960d96a59e284ac1518ac8777e89d17fda6572acd84dbec151f627c7bf07&o=
18.173.5.36200 OK 66 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/600x600/613095.jpg?k=8caf960d96a59e284ac1518ac8777e89d17fda6572acd84dbec151f627c7bf07&o=
IP 18.173.5.36:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 600x600, components 3\012- data
Hash 534f33dddfcef7a82be1dd0705bc9993
272d1caab27f275846308d3ff1ae43f10cc15f65
6cfc1901ba8cd98f725dfb4a7f3b45151674656b7b73729be72b48fa6f76bf8a
GET /xdata/images/city/600x600/613095.jpg?k=8caf960d96a59e284ac1518ac8777e89d17fda6572acd84dbec151f627c7bf07&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 65996
server: nginx
date: Sat, 25 Mar 2023 01:05:19 GMT
etag: "d4232a2e8e450d2dc3dc25d0f8d673cf8c2f9c70"
expires: Mon, 24 Apr 2023 01:05:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: -Goh4lNzGkFldHDwbCzVF-wlD3ldfvAZnNoBxPhqhZraejXq7lRIIg==
age: 44679
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/76.29ea6195.chunk.css
18.173.5.36200 OK 82 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/76.29ea6195.chunk.css
IP 18.173.5.36:0
File type ASCII text, with very long lines (1691)
Hash db50814794b64d345e289ca268e39661
45954d919daacf281ab9fee41ae89721575888bf
1c51f1f0832f0e39f3aacdaf5fd8a52bdf79d89a23f7fb02bd5b2d0e62eff96a
GET /psb/capla/static/css/76.29ea6195.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Mon, 06 Mar 2023 14:01:16 GMT
etag: W/"989c62f2f70b1385bf59101fe197a309"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 03 Mar 2023 14:07:01 GMT
x-amz-expiration: expiry-date="Sat, 01 Jul 2023 14:07:01 GMT", rule-id=""
expires: Wed, 05 Apr 2023 14:01:16 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: 5t3HPANe7znUAQ8FQ_kCWgLXW-p0jxB6V0zIEY4mbbOZx-pbMP6xRQ==
age: 1639721
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/527.0efee2e7.chunk.js
18.173.5.36200 OK 87 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/527.0efee2e7.chunk.js
IP 18.173.5.36:0
File type ASCII text, with very long lines (25434)
Hash 5db89327df9a19396cfc497601ce2088
954bf793d937e672c10510486e5eca899fc61f9c
601914d9775eeff0482c4a96c88a90478a4d1a802df4569ddb7f90379cd15438
GET /psb/capla/static/js/527.0efee2e7.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 24 Mar 2023 14:33:37 GMT
etag: W/"1b3296826dd430fb14ad26d3f6401b54"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 24 Mar 2023 14:16:39 GMT
x-amz-expiration: expiry-date="Sat, 22 Jul 2023 14:16:39 GMT", rule-id=""
expires: Sun, 23 Apr 2023 14:33:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3b0715ca57820f19665e655f9f44da48.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: xX7Lq2YIw353KKxFK_Cz4QcWoMNTjcUE-Be5PEwBe8JOSKZqZBkD8A==
age: 82580
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/448.78e745a1.chunk.js
18.173.5.36200 OK 64 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/448.78e745a1.chunk.js
IP 18.173.5.36:0
File type ASCII text, with very long lines (21648)
Hash 7b1483fb4a4f79b3a53aedc265c0601d
03b127fe984b1c39115b76ec6e9b4aa96fc8713f
21b9fbb9953e41f0703c975b37d0fa77e6882b85875adbc06bb95f7b35346bd2
GET /psb/capla/static/js/448.78e745a1.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 24 Mar 2023 14:33:37 GMT
etag: W/"e4e2b8ec484b4cfae39d2b4cd74d275e"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 24 Mar 2023 14:16:39 GMT
x-amz-expiration: expiry-date="Sat, 22 Jul 2023 14:16:39 GMT", rule-id=""
expires: Sun, 23 Apr 2023 14:33:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3b0715ca57820f19665e655f9f44da48.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: Nw2Jii4OuxV2mbSfC1rABp2PfIIuqmhJIkUb6krgwyfkAzYfRyynBA==
age: 82580
X-Firefox-Spdy: h2
t-cf.bstatic.com/design-assets/assets/v3.68.0/images-flags/Us@3x.png
54.230.111.45200 OK 587 B URL HTTP/2 t-cf.bstatic.com/design-assets/assets/v3.68.0/images-flags/Us@3x.png
IP 54.230.111.45:0
File type PNG image data, 71 x 72, 8-bit colormap, non-interlaced\012- data
Hash 32ac7724dfac7a299e05fce296a4a30d
076e9142066e978cab4b20854d92a38ac0de98a2
c1bf08cd6ee48e098dc753447c277e0b530ec8815d6279a28a1381447c35cbe2
GET /design-assets/assets/v3.68.0/images-flags/Us@3x.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 587
last-modified: Wed, 15 Mar 2023 17:26:07 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 25 Mar 2023 08:50:34 GMT
etag: "32ac7724dfac7a299e05fce296a4a30d"
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: E6Zpzg3Tjm1pbVHREgQXU0xkKGP3Wa5aFyilvYPzhdRpubs1cqypig==
age: 16771
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/186.5332db14.chunk.css
18.173.5.36200 OK 20 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/186.5332db14.chunk.css
IP 18.173.5.36:0
File type ASCII text, with very long lines (4228)
Hash ec8847cddcad5f1179a657af41e735ca
5634dbdc7aaeca33ec05193506b4eebd1e53aa8e
ab8d104f728c9372202b3386b8bb85f11074963b29a5ee68d1f10a63e66b0270
GET /psb/capla/static/css/186.5332db14.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Fri, 10 Mar 2023 08:52:10 GMT
etag: W/"6d805e3c42c329260ebf75641f2b598f"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Wed, 08 Mar 2023 15:27:47 GMT
x-amz-expiration: expiry-date="Thu, 06 Jul 2023 15:27:47 GMT", rule-id=""
expires: Sun, 09 Apr 2023 08:52:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: EcwwTliQNV_Qfnlsrr57lrI-hlIilkOj8nPEtewJbLbdnW3xCh-Ikw==
age: 1312666
X-Firefox-Spdy: h2
account.booking.com/privacy-consents/implicit
54.230.111.34204 No Content 0 B URL HTTP/2 account.booking.com/privacy-consents/implicit
IP 54.230.111.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /privacy-consents/implicit HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.booking.com/
Origin: https://www.booking.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
server: envoy
date: Sat, 25 Mar 2023 13:29:58 GMT
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: POST
access-control-allow-origin: https://www.booking.com
access-control-max-age: 1728000
set-cookie: bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJkYXRhX3N1YmplY3RfaWQiOiJmNWM3ZGFlYi1mZTRkLTQzZWQtOGE1OS0xMzkzZWNlY2NkNzMiLCJzZXNzaW9ucyI6W119fQ; domain=account.booking.com; path=/; expires=Thu, 23-Mar-2028 13:29:58 GMT; secure; HttpOnly
bkng_sso_session=e30; domain=.booking.com; path=/; expires=Thu, 23-Mar-2028 13:29:58 GMT; secure; HttpOnly
bkng_sso_ses=e30; domain=.booking.com; path=/; expires=Thu, 23-Mar-2028 13:29:58 GMT; secure; HttpOnly
bkng_sso_auth=CAIQARpy0rBOlEtFinVOU4J4qCAZOELlvcXOuKuKICbxz+RHC9Rgc9PHi3UNVrQ24PR9/ADUtfz9KaPWdmae4Jd5QfmNH1sBrj3A9L1fkPR2ctCP9eLoanphK018syHNvT87Ejc2Ai5BpjujADYJfx9Sq9aHltLR; Domain=.booking.com; Path=/; Expires=Sat, 08 Apr 2023 13:29:58 GMT; HttpOnly; Secure
content-security-policy: frame-ancestors https://*.booking.com 'self'; report-uri https://nellie.booking.com/csp-report-uri?type=block&tag=212&pid=eb125eeb100c03b6&e=UmFuZG9tSVYkc2RlIyh9YSWKtKO5TxgOpTwVTPfHZKNW3Hcrm1RLgTDT2V-m21UMJ4KxJTAfD3k6vpGGyphNZUfy-f31chCZb8612iO9R_UYhDOKZTX9f9H49t8PnK2N6xuOIDHFf7buORMsz0fvAvHQzAEESjf8AS6NeYfXqf4
content-security-policy-report-only: base-uri 'none'; connect-src saa.booking.com secure.booking.com reports.booking.com privacyportal-eu.onetrust.com geolocation.onetrust.com cdn.cookielaw.org www.google-analytics.com *.perimeterx.net *.pxchk.net *.px-cdn.net *.px-client.net *.px-cloud.net 'self' 'report-sample'; default-src *.bstatic.com bstatic.com 'self'; frame-src https://www.youtube.com/embed/Vv4w5SmRkss *.bstatic.com https://www.google.com bstatic.com www.booking.com secure.booking.com paymentcomponent.booking.com 'self'; img-src 'self' data: www.booking.com graph.facebook.com cdn.cookielaw.org account.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google-analytics.com www.google.com stats.g.doubleclick.net *.px-cloud.net *.perimeterx.net www.gstatic.com; object-src 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=213&pid=eb125eeb100c03b6&e=UmFuZG9tSVYkc2RlIyh9YSWKtKO5TxgOpTwVTPfHZKNW3Hcrm1RLgTDT2V-m21UMJ4KxJTAfD3k6vpGGyphNZUfy-f31chCZb8612iO9R_UYhDOKZTX9f9H49t8PnK2N6xuOIDHFf7buORMsz0fvAvHQzAEESjf8AS6NeYfXqf4; script-src saa.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google.com www.google-analytics.com cdn.cookielaw.org geolocation.onetrust.com 'self' 'nonce-pGQbWQmwLMDgjG8' 'report-sample'; style-src *.bstatic.com bstatic.com *.static.booking.cn 'self' 'unsafe-inline'
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9rwD4BLs6KoXQUb68tRNk6PV7xic1K73HOpzYro2FhhGxANIPRuEbQ==
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/778.c6b3509e.chunk.css
18.173.5.36200 OK 241 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/778.c6b3509e.chunk.css
IP 18.173.5.36:0
File type ASCII text, with very long lines (12279)
Size 241 kB (241332 bytes)
Hash 2856646000221bd1a14d388485f000c5
0a778943640c117781f5c9d9f146c5e175bf7937
39da6e93f6314b3640bdaae79fe70215f43032da07f6bcf8fe19005823326097
GET /psb/capla/static/css/778.c6b3509e.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Fri, 24 Mar 2023 15:45:19 GMT
etag: W/"355f0a8090a980eb343acaac145e14b1"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 24 Mar 2023 15:01:04 GMT
x-amz-expiration: expiry-date="Sat, 22 Jul 2023 15:01:04 GMT", rule-id=""
expires: Sun, 23 Apr 2023 15:45:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: o8EGZpT7-lNzngVjWRwUOZnahFBf4s4DlB9PX3IyUSmGqLFSSn3suQ==
age: 78278
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/665.90a83fd4.chunk.js
18.173.5.36200 OK 4.4 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/665.90a83fd4.chunk.js
IP 18.173.5.36:0
File type ASCII text, with very long lines (14831)
Hash 967cb702f30271e81eea085679b74263
39dffbe32260950500a3e89d03dba19133080ef7
bd6e6b2849b633abc90ce541b5edac67ae091908866a16df103d8c3cfacd50bc
GET /psb/capla/static/js/665.90a83fd4.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 24 Mar 2023 14:33:37 GMT
etag: W/"83396f0d1f3dcae8c5b2eff09f501904"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 24 Mar 2023 14:16:39 GMT
x-amz-expiration: expiry-date="Sat, 22 Jul 2023 14:16:39 GMT", rule-id=""
expires: Sun, 23 Apr 2023 14:33:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3b0715ca57820f19665e655f9f44da48.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: 5jChke5Bk0PsM80F9lsebMNCmJubqXGrNCraRhZJ0JLIAFqOwUyJpw==
age: 82580
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/58c63e4d3e4eb7090033901e75e2c80c0caa437b.css
18.173.5.36200 OK 12 kB URL HTTP/2 cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/58c63e4d3e4eb7090033901e75e2c80c0caa437b.css
IP 18.173.5.36:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 256f5a4c4161adcb03c9284e18d59c2c
30ffd995f53864e2b6bdf205272891b24e7d5a0f
1accd9029f6677765be40b4d50abcd5e9c356066ccbbf330133b67219369bcb1
GET /static/css/xp-index-sb_cloudfront_sd.iq_ltr/58c63e4d3e4eb7090033901e75e2c80c0caa437b.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
last-modified: Tue, 20 Dec 2022 12:37:08 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Fri, 24 Mar 2023 07:37:38 GMT
expires: Sat, 22 Apr 2023 01:30:26 GMT
cache-control: max-age=2592000
etag: W/"63a1ac74-12da0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: atVVsMhqoPXyaW5nr2m5ox14dMBOIR_0fgo5WPZbBxyDUHv7sNo3dA==
age: 215970
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/searchresults_cloudfront_sd/1f09101d5c5827d0bc230d8e5aab620e2062771b.js
18.173.5.36200 OK 45 kB URL HTTP/2 cf.bstatic.com/static/js/searchresults_cloudfront_sd/1f09101d5c5827d0bc230d8e5aab620e2062771b.js
IP 18.173.5.36:0
File type Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
Hash ad88191d3dc5712d33e01ea68593e804
165e5e1926d6bb45423f6377ed6bf613dd654bef
c53785d23d890be9ae824a07588aede3f2341b8b12bc7726e3c00b8c23ad0a19
GET /static/js/searchresults_cloudfront_sd/1f09101d5c5827d0bc230d8e5aab620e2062771b.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 23 Mar 2023 13:47:35 GMT
last-modified: Tue, 21 Mar 2023 13:15:51 GMT
etag: W/"6419ae07-30b48"
expires: Sat, 22 Apr 2023 13:47:35 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: LWAmMcCn75G5Fmby3LgTQGavO7UT-mT2v_MI6MxmsBzP0uJMKs3Xrg==
age: 171743
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/gprof_icons_cloudfront_sd.iq_ltr/45e1448a045ffbbe4ac3c464fb98c5df7c0fe7cd.css
18.173.5.36200 OK 42 kB URL HTTP/2 cf.bstatic.com/static/css/gprof_icons_cloudfront_sd.iq_ltr/45e1448a045ffbbe4ac3c464fb98c5df7c0fe7cd.css
IP 18.173.5.36:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 851471b805b6f2c3c3832596b3189236
62f35aced0ce80d7c23673cbbf7135d2e625f406
17ae933436af6f828cc2b4d1fac7d73053968d92a536c2458dd0deffa40ef421
GET /static/css/gprof_icons_cloudfront_sd.iq_ltr/45e1448a045ffbbe4ac3c464fb98c5df7c0fe7cd.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Sat, 25 Feb 2023 21:16:08 GMT
last-modified: Tue, 03 Jan 2023 03:11:28 GMT
etag: W/"63b39ce0-29a49"
expires: Mon, 27 Mar 2023 21:16:08 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: 77dny4rK6IdDr-6B8YBFthweeA2RjFbzkxZUEsdadDZlgr4UM7dO5A==
age: 2391228
X-Firefox-Spdy: h2
www.booking.com/logo?ver=1&sid=973fbaa4464723c391ea8a8655ac847e&t=16797509961
54.230.111.128200 OK 35 B URL HTTP/2 www.booking.com/logo?ver=1&sid=973fbaa4464723c391ea8a8655ac847e&t=16797509961
IP 54.230.111.128:0
Hash 79a611524d7c43a354c589264cc2376e
2e25649d9a8a208302be0502b47a0e44b07bc7c1
c7a9af81f3467d3c95760df18d0853bda8c191f612fb2e8b2b5c4ed941fbaf1a
GET /logo?ver=1&sid=973fbaa4464723c391ea8a8655ac847e&t=16797509961 HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=7977348&label=travelcravel
Connection: keep-alive
Cookie: _pxhd=hFILFIjK8cyfzP6ZwMFUgSN41w6fiq7EkqRDn3-ET8QLK2iuJ%252F3skvZFSIAZ53KtdHSZVh-gz0oAlSfBBEweqg%253D%253D%253AQkP9mx9a9WnjNN75rB%252FQQAz8%252FbTXnyvDVlaL3aicQA2-mg9Em2X7XVicaZalJn%252Fg0US0tNP15-WCPPSpXesHjkkTl8zcPJLmd9CsxlC85A0%253D; px_init=80; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBKtCN8f0CTZfct17W4l8IGXM2VWyUHBDoNJbDnxSPlv9BYxYobaPjlCabvwFthezMsmFiHl3WITFYI0u6M%2BOdgIDKQca6n1s8TAY9UEWngHpdqRCHNEoJOZeNHWa%2FnqRGVvT1aJcrU3joFJDvxVxVDL3aADm1e06Uk%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sat+Mar+25+2023+13%3A30%3A11+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=4f144e15-8173-4163-8484-29721c7e9173&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D7977348%26label%3Dtravelcravel&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1679751011775; bkng_sso_ses=e30; bkng_sso_session=e30; bkng_sso_auth=CAIQARpyb35Exs8C6vJYWz1cDHa1Ta+VDFziK+8q3chcCBEV2hhvUkoKEhcIt+0nxK5qUVwxoJIpdppBmKll8dfguzWAjtFD7jOSKnLICT8Hu8mqjbStoV6aOr0POtrs8N84pyepTLGtaTbZ8/AMqeNxEQwDAKHT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 35
server: nginx
date: Sat, 25 Mar 2023 13:29:58 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
set-cookie: BJS=-; domain=booking.com; expires=Sun, 26-Mar-2023 13:29:58 GMT; Secure; HTTPOnly
strict-transport-security: max-age=604800
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=844f5eeb099808c7&e=UmFuZG9tSVYkc2RlIyh9YbpBYTW1tHKzqukIHmFKbkaK71-AXGq0Y9Cz5fJHEckd
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -ofHOSZ9l878dYs4-QqOL3iHim7vG5th0mpxLKj-TlQwxmWgDnKljw==
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/979.f29a58a5.chunk.css
18.173.5.36200 OK 114 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/979.f29a58a5.chunk.css
IP 18.173.5.36:0
File type ASCII text, with very long lines (1892)
Size 114 kB (113646 bytes)
Hash 3a1b3d545040c0fffe3a92c778e40ef3
9a9e2f6c3888a90452525960070cfcaaca2471ca
957a14f0b6e722221c150b8bb0e67292c89afcf1bcbc50361a4d0ed306bb8f91
GET /psb/capla/static/css/979.f29a58a5.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Mon, 06 Mar 2023 14:01:16 GMT
etag: W/"2aa73f789b99806cbecef0ed3fac4583"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 03 Mar 2023 14:07:01 GMT
x-amz-expiration: expiry-date="Sat, 01 Jul 2023 14:07:01 GMT", rule-id=""
expires: Wed, 05 Apr 2023 14:01:16 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: SIJctu8xFUJPmJpFgrkaAcqToaZOXbaehU3E-gEP08TICl7F7tAUpQ==
age: 1639721
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/apple-touch-icon/c9b35bf29a75cac2f430f80a5d4bc7fd961d21a7.png
18.173.5.36200 OK 2.9 kB URL HTTP/2 cf.bstatic.com/static/img/apple-touch-icon/c9b35bf29a75cac2f430f80a5d4bc7fd961d21a7.png
IP 18.173.5.36:0
File type PNG image data, 141 x 141, 8-bit/color RGBA, non-interlaced\012- data
Hash eeda6c96402e2a9ec176f43f0ac79e09
9cd713387ba5b2a468ffae40d40ae3718d2d1c49
08a917ae9e017c4b633b3d5920bb8e073968fa14b9bb7e78192fd2761465d0a4
GET /static/img/apple-touch-icon/c9b35bf29a75cac2f430f80a5d4bc7fd961d21a7.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2915
server: nginx
date: Mon, 27 Feb 2023 07:49:01 GMT
last-modified: Wed, 10 Apr 2019 11:21:50 GMT
etag: "5cadd1ce-b63"
expires: Wed, 29 Mar 2023 07:49:01 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: 4ti-0a-N-wa0Vlh15gAgiMINfpMjzB-RfjetGrJbPV_UVCEGSc6Kgg==
age: 2266857
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/b25logo/favicon/ebc77706da3aae4aee7b05dadf182390f0d26d11.ico
18.173.5.36200 OK 1.6 kB URL HTTP/2 cf.bstatic.com/static/img/b25logo/favicon/ebc77706da3aae4aee7b05dadf182390f0d26d11.ico
IP 18.173.5.36:0
File type MS Windows icon resource - 3 icons, 32x32, 16 colors, 4 bits/pixel, 24x24, 16 colors, 4 bits/pixel\012- data
Hash faedfe66cf96784098c9b7b1f405ef12
645dce7842fa7483bb676def6df255317f203f22
a87ec2239235e2521bebe6f92dc4a65ca035fd419ebd09b68d04b989afd3141a
GET /static/img/b25logo/favicon/ebc77706da3aae4aee7b05dadf182390f0d26d11.ico HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/x-icon
content-length: 1582
server: nginx
date: Sun, 12 Mar 2023 14:13:35 GMT
last-modified: Wed, 10 Apr 2019 11:21:50 GMT
etag: "5cadd1ce-62e"
expires: Tue, 11 Apr 2023 14:13:35 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: c6OY_NhXw2yE3yMgT32okQ6yc_M8gS3KBssZZvusUUo-N_qm37Jz9g==
age: 1120583
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/93.cb196904.chunk.js
18.173.5.36200 OK 27 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/93.cb196904.chunk.js
IP 18.173.5.36:0
File type ASCII text, with very long lines (65461)
Hash 0854cbf193759f69bd3d99878920a478
0499577cc1cd75cae0f0ef2fb72ec975869bbcdf
92e48810fa32d9f2c325f6f63b0db68bdbdffde6be105c31727ef256c8fca829
GET /psb/capla/static/js/93.cb196904.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 24 Mar 2023 14:33:37 GMT
etag: W/"41763c243dc8eab1437ab7c2259ea5de"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 24 Mar 2023 14:16:40 GMT
x-amz-expiration: expiry-date="Sat, 22 Jul 2023 14:16:40 GMT", rule-id=""
expires: Sun, 23 Apr 2023 14:33:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3b0715ca57820f19665e655f9f44da48.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: 5pdhvTOYEfR5VH9L5Lh8ofG_fl-SFW-1HkDiIEOo-UY41b4zTIzLvw==
age: 82580
X-Firefox-Spdy: h2
www.booking.com/dml/graphql?aid=7977348&label=travelcravel&lang=en-us
54.230.111.128200 OK 3.1 kB URL HTTP/2 www.booking.com/dml/graphql?aid=7977348&label=travelcravel&lang=en-us
IP 54.230.111.128:0
File type JSON data\012- , ASCII text, with very long lines (15705), with no line terminators
Hash cc3e720a6fabb67d33c23b466f32a63c
a98391520247c0b4bdda371e6c90132bf5f8f7ca
06450b498c3bfceea42b14b2f1ee413f7c3997167691622a9f5ad0c4827184f3
POST /dml/graphql?aid=7977348&label=travelcravel&lang=en-us HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=7977348&label=travelcravel
content-type: application/json
x-booking-context-action-name: index
x-booking-context-aid: 7977348
x-booking-csrf-token: eyJhbGciOiJIUzUxMiJ9.eyJpc3MiOiJjb250ZXh0LWVucmljaG1lbnQtYXBpIiwic3ViIjoiY3NyZi10b2tlbiIsImlhdCI6MTY3OTc1MDk5NiwiZXhwIjoxNjc5ODM3Mzk2fQ.2JcAm9WrUG0kr8c6Ee5ciWSXo0Jv-2lDlEBr2-vy_yAxjvN1y33uvadJIxHdj3osr8O2I469Zm8SrudoX3AN_A
x-booking-et-serialized-state: EyWhX6gqZ0APx25VtFZGeB0Et13x31JWfCjvVwswfe_Vg8XHjsFu1kE66NnWpfeSB
x-booking-experiment-state: EyWhX6gqZ0APx25VtFZGeB0Et13x31JWfCjvVwswfe_Vg8XHjsFu1kE66NnWpfeSB
x-booking-pageview-id: d6705ee9c223000a
x-booking-site-type-id: 1
x-booking-timeout-ms: 800
x-booking-topic: capla_browser_b-index-lp-web-mfe
x-envoy-expected-rq-timeout-ms: 800
Origin: https://www.booking.com
Content-Length: 3833
Connection: keep-alive
Cookie: _pxhd=hFILFIjK8cyfzP6ZwMFUgSN41w6fiq7EkqRDn3-ET8QLK2iuJ%252F3skvZFSIAZ53KtdHSZVh-gz0oAlSfBBEweqg%253D%253D%253AQkP9mx9a9WnjNN75rB%252FQQAz8%252FbTXnyvDVlaL3aicQA2-mg9Em2X7XVicaZalJn%252Fg0US0tNP15-WCPPSpXesHjkkTl8zcPJLmd9CsxlC85A0%253D; px_init=80; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbof7CEiNviT%2F921ewUJZ1%2Ba02YM5R%2F7KlkjXRz1HzLYDMCdZ7tBEXMy53ZRu1BWdRaRwg2pN2HaG1V939N93qNV0Xgogv1nIbgRTjAxxPDQcoNKPe0oLx%2B3ARXC4%2FQ4svjkgHTiF2uJJWCwbJG0hculxN7J0jMNofF8yZECEDklI%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sat+Mar+25+2023+13%3A30%3A11+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=4f144e15-8173-4163-8484-29721c7e9173&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D7977348%26label%3Dtravelcravel&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1679751011775; bkng_sso_ses=e30; bkng_sso_session=e30; bkng_sso_auth=CAIQARpyb35Exs8C6vJYWz1cDHa1Ta+VDFziK+8q3chcCBEV2hhvUkoKEhcIt+0nxK5qUVwxoJIpdppBmKll8dfguzWAjtFD7jOSKnLICT8Hu8mqjbStoV6aOr0POtrs8N84pyepTLGtaTbZ8/AMqeNxEQwDAKHT; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 3093
server: nginx
date: Sat, 25 Mar 2023 13:29:59 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
set-cookie: _pxhd=TrvKAcfXzmTr9B2iqc9HCfxFYTIn0C7JBEUkSWgIUht8nJQ9wtVxDjcdnkzjIjqGwXpb5S6gRsfddXuvcTUw2g%3D%3D%3Af%2FxNmEZGtJH7o0p6enxlMS5FNzKXxz6jCrZ%2F%2Fdizw29xcq0JqdPneWnvayuHDnGpDwYknzKnxaxzXNXXb2GiPeeW9rFkJ0aBrdBeRQllSYE%3D; domain=booking.com; path=/; expires=Sun, 24-Mar-2024 13:29:59 GMT
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbbmD9q%2B5pe3UlWlXVbsWrPE78gG1lCgTYa50TWYWk4sh1eNkz7T3Bu4S55KAmJCww3HLkXunYqo8%2BzNTAP3TsQD73%2FSuRHI7EtoqkYdrln%2BTbhnbif79N4ZNwQP83CQvdtJhh49OjHsjInhbOlzZJ6X8NGIIqHwgPCfeXBC3ehDw%3D; domain=.booking.com; path=/; expires=Thu, 23-Mar-2028 13:29:59 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uy1myZmtPkpe9Kj75ppUJYo9OzHMgSyHOys0dUcsVRh2q6Ys9p3gIA==
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/atlas_cloudfront_sd/19f3caf45683339908eb5c67a2339275f1e20e50.js
18.173.5.36200 OK 29 kB URL HTTP/2 cf.bstatic.com/static/js/atlas_cloudfront_sd/19f3caf45683339908eb5c67a2339275f1e20e50.js
IP 18.173.5.36:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 9f94d168696be28e94307ce1f5062187
e6cf87f07a7ca976e8a2c29ecb5e62b222fe632e
3f1e9820cdd08a834e7dd4420417b7fdfdfe3e4458523394bae289880436996a
GET /static/js/atlas_cloudfront_sd/19f3caf45683339908eb5c67a2339275f1e20e50.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
last-modified: Fri, 06 Jan 2023 13:16:11 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Thu, 16 Mar 2023 07:16:05 GMT
expires: Sat, 15 Apr 2023 04:52:04 GMT
cache-control: max-age=2592000
etag: W/"63b81f1b-1d126"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: L0qEPfbvPOKkH6PoSwtcOfA9ct24eHIGw24R1M4UcbP8OXFVW2VZ7Q==
age: 808674
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/index_cloudfront_sd.iq_ltr/d74b843d5a5a520c1a4cc745812c592b71891081.css
18.173.5.36200 OK 57 kB URL HTTP/2 cf.bstatic.com/static/css/index_cloudfront_sd.iq_ltr/d74b843d5a5a520c1a4cc745812c592b71891081.css
IP 18.173.5.36:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash db280c62015802334173c317942bb5cd
ae6cc6313113ec4a39f8444b8fff168d5c63af29
83d891babd4667464cee957f26c5eed6baad41edac3f47c1be64c3bbac2ec027
GET /static/css/index_cloudfront_sd.iq_ltr/d74b843d5a5a520c1a4cc745812c592b71891081.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Tue, 21 Mar 2023 10:55:21 GMT
last-modified: Tue, 21 Mar 2023 10:44:11 GMT
etag: W/"64198a7b-5afcd"
expires: Thu, 20 Apr 2023 10:55:21 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: MavPFRAAZMN4Ei9z97Gj7pg20MjphAzlsumuWQheXaiUkAexIenMhQ==
age: 354875
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/atlas_cst_cloudfront_sd/7a53bc96eee4e5edc95c83ce211acc3776356696.js
18.173.5.36200 OK 80 kB URL HTTP/2 cf.bstatic.com/static/js/atlas_cst_cloudfront_sd/7a53bc96eee4e5edc95c83ce211acc3776356696.js
IP 18.173.5.36:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash a12d03493ba35b43bec634ae55790ff9
1f9cd7843efc63d952024ebc5eaa93f2725450d0
ec739c111c759c8130773804dfd114626d092cb1ffbcd3c58bc49367b1c384fa
GET /static/js/atlas_cst_cloudfront_sd/7a53bc96eee4e5edc95c83ce211acc3776356696.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 22 Mar 2023 14:55:05 GMT
last-modified: Wed, 22 Mar 2023 14:35:45 GMT
etag: W/"641b1241-a2afd"
expires: Fri, 21 Apr 2023 14:55:05 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: 7svzLlP14QjHpCbDcHskkfkpkBp5_SzwZICvlPaoRS6XJfL3VFEfMw==
age: 254092
X-Firefox-Spdy: h2
www.booking.com/dml/graphql?aid=7977348&label=travelcravel&lang=en-us
54.230.111.128200 OK 1.5 kB URL HTTP/2 www.booking.com/dml/graphql?aid=7977348&label=travelcravel&lang=en-us
IP 54.230.111.128:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (7495), with no line terminators
Hash b030b43550f0de737f520cfb7f0f8f9b
1b0471103cf9bdbe4eb0a52b30a834f069052f1e
d6de4929df88d6ca4c9af3300b879b9f0502c36b7ebb5ddc31979dcdf5b1079b
POST /dml/graphql?aid=7977348&label=travelcravel&lang=en-us HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=7977348&label=travelcravel
content-type: application/json
x-booking-context-action-name: index
x-booking-context-aid: 7977348
x-booking-csrf-token: eyJhbGciOiJIUzUxMiJ9.eyJpc3MiOiJjb250ZXh0LWVucmljaG1lbnQtYXBpIiwic3ViIjoiY3NyZi10b2tlbiIsImlhdCI6MTY3OTc1MDk5NiwiZXhwIjoxNjc5ODM3Mzk2fQ.2JcAm9WrUG0kr8c6Ee5ciWSXo0Jv-2lDlEBr2-vy_yAxjvN1y33uvadJIxHdj3osr8O2I469Zm8SrudoX3AN_A
x-booking-et-serialized-state: EyWhX6gqZ0APx25VtFZGeB0Et13x31JWfCjvVwswfe_Vg8XHjsFu1kE66NnWpfeSB
x-booking-experiment-state: EyWhX6gqZ0APx25VtFZGeB0Et13x31JWfCjvVwswfe_Vg8XHjsFu1kE66NnWpfeSB
x-booking-pageview-id: d6705ee9c223000a
x-booking-site-type-id: 1
x-booking-timeout-ms: 800
x-booking-topic: capla_browser_b-index-lp-web-mfe
x-envoy-expected-rq-timeout-ms: 800
Origin: https://www.booking.com
Content-Length: 3833
Connection: keep-alive
Cookie: _pxhd=hFILFIjK8cyfzP6ZwMFUgSN41w6fiq7EkqRDn3-ET8QLK2iuJ%252F3skvZFSIAZ53KtdHSZVh-gz0oAlSfBBEweqg%253D%253D%253AQkP9mx9a9WnjNN75rB%252FQQAz8%252FbTXnyvDVlaL3aicQA2-mg9Em2X7XVicaZalJn%252Fg0US0tNP15-WCPPSpXesHjkkTl8zcPJLmd9CsxlC85A0%253D; px_init=80; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbof7CEiNviT%2F921ewUJZ1%2Ba02YM5R%2F7KlkjXRz1HzLYDMCdZ7tBEXMy53ZRu1BWdRaRwg2pN2HaG1V939N93qNV0Xgogv1nIbgRTjAxxPDQcoNKPe0oLx%2B3ARXC4%2FQ4svjkgHTiF2uJJWCwbJG0hculxN7J0jMNofF8yZECEDklI%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sat+Mar+25+2023+13%3A30%3A11+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=4f144e15-8173-4163-8484-29721c7e9173&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D7977348%26label%3Dtravelcravel&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1679751011775; bkng_sso_ses=e30; bkng_sso_session=e30; bkng_sso_auth=CAIQARpyb35Exs8C6vJYWz1cDHa1Ta+VDFziK+8q3chcCBEV2hhvUkoKEhcIt+0nxK5qUVwxoJIpdppBmKll8dfguzWAjtFD7jOSKnLICT8Hu8mqjbStoV6aOr0POtrs8N84pyepTLGtaTbZ8/AMqeNxEQwDAKHT; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 1512
server: nginx
date: Sat, 25 Mar 2023 13:29:59 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
set-cookie: _pxhd=j7R9z31Gv7WWNOH0txZfZ%2Fgry2kS7PGNjadXGfjT%2Fz%2Fx0Fp7btlaoi2L3nbZLbuHqxhGYhVLyN3OXyW9AKdvyg%3D%3D%3AbPHJg7XTFqG2J8ZnjzhbeGsIMrtAbQGnuWj5msfk6Es3iwfLuEI975V4vyKVgzbGTlNzr9FlBXv6sbHwa2KcrwwvId61dOmyeX9sZo%2FKIB0%3D; domain=booking.com; path=/; expires=Sun, 24-Mar-2024 13:29:59 GMT
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbXpFeYC4TUhDMSfLvcMG2VGdTHL5Gk2EIHp%2Bi1ab9hvaevZuu4evu0%2FIxwXDbH14x7VoAbApnKRnKVvbu4AcDoghVC7G14hT5Xj4AkzA5n6%2Bg01ddUjfJr57BWZQCW9f75Zca3m%2BhHGPpwRZLilAPiIJupRwio144bzuJm%2FneCNo%3D; domain=.booking.com; path=/; expires=Thu, 23-Mar-2028 13:29:59 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pVKGgEuY_PCv-WzOI9kdOiJBuCwr3yfehxOWr_pFPswK70UmTT8sVw==
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/main_cloudfront_sd.iq_ltr/b7bedd8993e48f83754c034aeb06b5dacff5c174.css
18.173.5.36200 OK 74 kB URL HTTP/2 cf.bstatic.com/static/css/main_cloudfront_sd.iq_ltr/b7bedd8993e48f83754c034aeb06b5dacff5c174.css
IP 18.173.5.36:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash ad16e772091dc3742992c14b52aefb1e
097dc69d8a54f85a112f41d88bf2502bdb146ce4
670e82adadda7ae3a194637a0f933359a8edb10464353b10311b27738b531ff8
GET /static/css/main_cloudfront_sd.iq_ltr/b7bedd8993e48f83754c034aeb06b5dacff5c174.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Tue, 21 Mar 2023 10:55:16 GMT
last-modified: Tue, 21 Mar 2023 10:44:11 GMT
etag: W/"64198a7b-870b9"
expires: Thu, 20 Apr 2023 10:55:16 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: V78PIn3-hBkEECVCH_cwpGF2OYgLs3dfZxlzQ9HpY47NMKAuWfaOqg==
age: 354880
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/main_exps_cloudfront_sd.iq_ltr/249eb8c971cd2f65e9f15026f655b0001bdf43d9.css
18.173.5.36200 OK 31 kB URL HTTP/2 cf.bstatic.com/static/css/main_exps_cloudfront_sd.iq_ltr/249eb8c971cd2f65e9f15026f655b0001bdf43d9.css
IP 18.173.5.36:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 7f9bae5f3811bcbd38b69b38f0488442
a4649c90e29c17f7b9bfae8badf55477504a654e
2b9d8e93da1ee75f95f106685c32c416313c5b7e93af98269aa3cbcb925eda20
GET /static/css/main_exps_cloudfront_sd.iq_ltr/249eb8c971cd2f65e9f15026f655b0001bdf43d9.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Mon, 13 Mar 2023 12:05:43 GMT
last-modified: Mon, 13 Mar 2023 11:59:18 GMT
etag: W/"640f1016-20ce8"
expires: Wed, 12 Apr 2023 12:05:43 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: 9ceybMn4FyVhQBp7P-D_xCX8vtozRNpdh5RKbr3msUJtQJmHMO0G5A==
age: 1041853
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/263x210/100235855.jpeg?k=61ef6692e05b5971e2e8dc75687f844e6d0ad295a9a5ace17f7c713f167e61b5&o=
18.173.5.36200 OK 11 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/263x210/100235855.jpeg?k=61ef6692e05b5971e2e8dc75687f844e6d0ad295a9a5ace17f7c713f167e61b5&o=
IP 18.173.5.36:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3\012- data
Hash 897575d55451d09fc877e5e3136efc91
3c1859e57ac93ac2f8eaa89285ce6640d4519809
8d895a7a32bc03e73b30e93f03e88863bdef1adb27059f5d19150acfc2da86d3
GET /xdata/images/xphoto/263x210/100235855.jpeg?k=61ef6692e05b5971e2e8dc75687f844e6d0ad295a9a5ace17f7c713f167e61b5&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 11315
server: nginx
date: Fri, 24 Mar 2023 14:33:39 GMT
etag: "564b679b20df8965135e0ffafe2568bbb1de2d10"
expires: Sun, 23 Apr 2023 14:33:39 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: CLgYy_ajtkzy8Ox0h7NBl2sPyG_hVNUdEv_r_3FIZykJO33yuZKkUw==
age: 82580
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans%3A400%2C400italic%2C600%2C700%7CMerriweather%3A400%2C300italic%2C400italic%2C700
172.217.21.170200 OK 5.7 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A400%2C400italic%2C600%2C700%7CMerriweather%3A400%2C300italic%2C400italic%2C700
IP 172.217.21.170:0
Hash 88915aa774d7f3cc179c8d81ff9b3c00
82c5bc3e0c21d9bb881d4aaed18a096950410b78
aeca1ec04ceb25cfb90ad91aa789c9773f5db9d4cb310ec3a674c2456eb4b640
GET /css?family=Open+Sans%3A400%2C400italic%2C600%2C700%7CMerriweather%3A400%2C300italic%2C400italic%2C700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://travelcravel.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 25 Mar 2023 13:29:54 GMT
date: Sat, 25 Mar 2023 13:29:54 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/searchresults_slick_cloudfront_sd/528359eb9f21194adf8c26f81e07c6eb21a2cc89.js
18.173.5.36200 OK 24 kB URL HTTP/2 cf.bstatic.com/static/js/searchresults_slick_cloudfront_sd/528359eb9f21194adf8c26f81e07c6eb21a2cc89.js
IP 18.173.5.36:0
File type ASCII text, with very long lines (36716), with no line terminators
Hash 087a30be56ca5b401f0b4c14dca44a7f
59dbed0eadfae7f2c36c4249337b3a3fb77e80c7
44101fd48d1f673e8b203e7b29b8d0d3e3dfd32f370f52835ddbb7759d804cc8
GET /static/js/searchresults_slick_cloudfront_sd/528359eb9f21194adf8c26f81e07c6eb21a2cc89.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Sat, 11 Mar 2023 02:24:19 GMT
last-modified: Tue, 04 Feb 2020 10:19:58 GMT
etag: W/"5e39454e-8f6c"
expires: Mon, 10 Apr 2023 02:24:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: 7MssR-9T0MyTYiiM4AUmBQpDLJjdGrH2NoyKofVkkwcB6Kr3PvZ9Dw==
age: 1249539
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/jquery_cloudfront_sd/e1e8c0e862309cb4caf3c0d5fbea48bfb8eaad42.js
18.173.5.36200 OK 45 kB URL HTTP/2 cf.bstatic.com/static/js/jquery_cloudfront_sd/e1e8c0e862309cb4caf3c0d5fbea48bfb8eaad42.js
IP 18.173.5.36:0
File type ASCII text, with very long lines (60582)
Hash f1451fe1a2ca50e766a259ff6b704b92
0e4b9a6e71517067e5e102e52bb59a2fa2e4cbc3
40827d003550e85239ac070ffa5b3e0dc8fadfd884babb9fc3a8e575991c360c
GET /static/js/jquery_cloudfront_sd/e1e8c0e862309cb4caf3c0d5fbea48bfb8eaad42.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Sat, 11 Mar 2023 01:30:16 GMT
last-modified: Tue, 28 Jun 2022 15:19:38 GMT
etag: W/"62bb1c0a-19a42"
expires: Mon, 10 Apr 2023 01:30:16 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3b0715ca57820f19665e655f9f44da48.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: C_fwie5Bl0SG11pg1pcFCrgFlQhRB4od2vrAGoXP2qrpc3qpul-PqA==
age: 1252780
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/index_cloudfront_sd/0e8c08e4878c7a2dde2ba6890d49e46723d33da3.js
18.173.5.36200 OK 24 kB URL HTTP/2 cf.bstatic.com/static/js/index_cloudfront_sd/0e8c08e4878c7a2dde2ba6890d49e46723d33da3.js
IP 18.173.5.36:0
File type ASCII text, with very long lines (61097), with no line terminators
Hash 50b44fbe16f2d0819fda91ee5067467b
831d5611bfda1b5decd70b2146b08ad366a323ee
790ff07cb3196f772987d233f310b8113a59e3d68af641051e8873e56b10b7c1
GET /static/js/index_cloudfront_sd/0e8c08e4878c7a2dde2ba6890d49e46723d33da3.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 23 Mar 2023 13:47:39 GMT
last-modified: Thu, 23 Mar 2023 12:47:03 GMT
etag: W/"641c4a47-eea9"
expires: Sat, 22 Apr 2023 13:47:39 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3b0715ca57820f19665e655f9f44da48.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: niwVxOAKEa6DXQZZA0hW9PITX8VhYHukYBpbjHngKle0wDYI5b_j8g==
age: 171737
X-Firefox-Spdy: h2
account.booking.com/privacy-consents/implicit
54.230.111.34200 OK 88 B URL HTTP/2 account.booking.com/privacy-consents/implicit
IP 54.230.111.34:0
Hash 43b09f9f5b022888968ecacaa9e74d83
59d5991efe605df0864447c765f49c3528fa9ee8
3dd22803c02dc97c8b12e21898d708af352bad6e41f2349bd392f999911d0e8f
POST /privacy-consents/implicit HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-type: application/json;charset=UTF-8
Content-Length: 36
Origin: https://www.booking.com
Connection: keep-alive
Cookie: _pxhd=hFILFIjK8cyfzP6ZwMFUgSN41w6fiq7EkqRDn3-ET8QLK2iuJ%252F3skvZFSIAZ53KtdHSZVh-gz0oAlSfBBEweqg%253D%253D%253AQkP9mx9a9WnjNN75rB%252FQQAz8%252FbTXnyvDVlaL3aicQA2-mg9Em2X7XVicaZalJn%252Fg0US0tNP15-WCPPSpXesHjkkTl8zcPJLmd9CsxlC85A0%253D; px_init=80; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbnmKTRaewPBtgDtVvSDJvYkyLEbj3LtaUEeevS5Rrl4C39FEbhrYecr1SYL1R6pRNgf6t%2BWLVPnIoepWjkBd88AGhUblpU5pHvhcJnCVSVBtQLQzUBFPFp39x8akxRJK0%2F1Imj6t4AxwwBMyVGG%2Bkevso7wu%2F28CZ; cors_js=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
server: envoy
date: Sat, 25 Mar 2023 13:29:58 GMT
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-methods: POST
access-control-allow-origin: https://www.booking.com
access-control-max-age: 1728000
set-cookie: bkng_sso_ses=e30; domain=.booking.com; path=/; expires=Thu, 23-Mar-2028 13:29:58 GMT; secure; HttpOnly
bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJkYXRhX3N1YmplY3RfaWQiOiI1Y2ZmMDFkNS02NmZkLTQ0MDItYWMxNS1lODVjZjdkMDI3ZjIiLCJzZXNzaW9ucyI6W119fQ; domain=account.booking.com; path=/; expires=Thu, 23-Mar-2028 13:29:58 GMT; secure; HttpOnly
bkng_sso_session=e30; domain=.booking.com; path=/; expires=Thu, 23-Mar-2028 13:29:58 GMT; secure; HttpOnly
bkng_sso_auth=CAIQARpyb35Exs8C6vJYWz1cDHa1Ta+VDFziK+8q3chcCBEV2hhvUkoKEhcIt+0nxK5qUVwxoJIpdppBmKll8dfguzWAjtFD7jOSKnLICT8Hu8mqjbStoV6aOr0POtrs8N84pyepTLGtaTbZ8/AMqeNxEQwDAKHT; Domain=.booking.com; Path=/; Expires=Sat, 08 Apr 2023 13:29:58 GMT; HttpOnly; Secure
content-security-policy: frame-ancestors https://*.booking.com 'self'; report-uri https://nellie.booking.com/csp-report-uri?type=block&tag=212&pid=d2425eeb0f940348&e=UmFuZG9tSVYkc2RlIyh9YSWKtKO5TxgOpTwVTPfHZKNW3Hcrm1RLgTDT2V-m21UMJ4KxJTAfD3k6vpGGyphNZUfy-f31chCZHPTonodp_KimHZLP-kkm31nZp_X7YOBYWt1U6tx6H7krnHu3iHwGMeO6epWLTVq5QLwEJOKjwqE
content-security-policy-report-only: base-uri 'none'; connect-src saa.booking.com secure.booking.com reports.booking.com privacyportal-eu.onetrust.com geolocation.onetrust.com cdn.cookielaw.org www.google-analytics.com *.perimeterx.net *.pxchk.net *.px-cdn.net *.px-client.net *.px-cloud.net 'self' 'report-sample'; default-src *.bstatic.com bstatic.com 'self'; frame-src https://www.youtube.com/embed/Vv4w5SmRkss *.bstatic.com https://www.google.com bstatic.com www.booking.com secure.booking.com paymentcomponent.booking.com 'self'; img-src 'self' data: www.booking.com graph.facebook.com cdn.cookielaw.org account.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google-analytics.com www.google.com stats.g.doubleclick.net *.px-cloud.net *.perimeterx.net www.gstatic.com; object-src 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=213&pid=d2425eeb0f940348&e=UmFuZG9tSVYkc2RlIyh9YSWKtKO5TxgOpTwVTPfHZKNW3Hcrm1RLgTDT2V-m21UMJ4KxJTAfD3k6vpGGyphNZUfy-f31chCZHPTonodp_KimHZLP-kkm31nZp_X7YOBYWt1U6tx6H7krnHu3iHwGMeO6epWLTVq5QLwEJOKjwqE; script-src saa.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google.com www.google-analytics.com cdn.cookielaw.org geolocation.onetrust.com 'self' 'nonce-a33vdsl5TXCPFHV' 'report-sample'; style-src *.bstatic.com bstatic.com *.static.booking.cn 'self' 'unsafe-inline'
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cKL9uWJTVVsRVQZBECIt4tyBVmanafzN_dXO-CX6gKOv18fwXlOfUQ==
X-Firefox-Spdy: h2
www.booking.com/dml/graphql?aid=7977348&label=travelcravel&lang=en-us
54.230.111.128200 OK 3.7 kB URL HTTP/2 www.booking.com/dml/graphql?aid=7977348&label=travelcravel&lang=en-us
IP 54.230.111.128:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (14864), with no line terminators
Hash 0db406373e93d33afc6e42f600253777
71c381a158693bf09e0feffbf630a6d60956cd55
9866b589185e388b01184d029e5701fa7505cb37012104d8c4ef979df5703f60
POST /dml/graphql?aid=7977348&label=travelcravel&lang=en-us HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=7977348&label=travelcravel
content-type: application/json
x-booking-context-action-name: index
x-booking-context-aid: 7977348
x-booking-csrf-token: eyJhbGciOiJIUzUxMiJ9.eyJpc3MiOiJjb250ZXh0LWVucmljaG1lbnQtYXBpIiwic3ViIjoiY3NyZi10b2tlbiIsImlhdCI6MTY3OTc1MDk5NiwiZXhwIjoxNjc5ODM3Mzk2fQ.2JcAm9WrUG0kr8c6Ee5ciWSXo0Jv-2lDlEBr2-vy_yAxjvN1y33uvadJIxHdj3osr8O2I469Zm8SrudoX3AN_A
x-booking-et-serialized-state: EyWhX6gqZ0APx25VtFZGeB0Et13x31JWfCjvVwswfe_Vg8XHjsFu1kE66NnWpfeSB
x-booking-pageview-id: d6705ee9c223000a
x-booking-site-type-id: 1
x-booking-topic: capla_browser_b-index-lp-web-mfe
Origin: https://www.booking.com
Content-Length: 550
Connection: keep-alive
Cookie: _pxhd=hFILFIjK8cyfzP6ZwMFUgSN41w6fiq7EkqRDn3-ET8QLK2iuJ%252F3skvZFSIAZ53KtdHSZVh-gz0oAlSfBBEweqg%253D%253D%253AQkP9mx9a9WnjNN75rB%252FQQAz8%252FbTXnyvDVlaL3aicQA2-mg9Em2X7XVicaZalJn%252Fg0US0tNP15-WCPPSpXesHjkkTl8zcPJLmd9CsxlC85A0%253D; px_init=80; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbof7CEiNviT%2F921ewUJZ1%2Ba02YM5R%2F7KlkjXRz1HzLYDMCdZ7tBEXMy53ZRu1BWdRaRwg2pN2HaG1V939N93qNV0Xgogv1nIbgRTjAxxPDQcoNKPe0oLx%2B3ARXC4%2FQ4svjkgHTiF2uJJWCwbJG0hculxN7J0jMNofF8yZECEDklI%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sat+Mar+25+2023+13%3A30%3A11+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=4f144e15-8173-4163-8484-29721c7e9173&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D7977348%26label%3Dtravelcravel&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1679751011775; bkng_sso_ses=e30; bkng_sso_session=e30; bkng_sso_auth=CAIQARpyb35Exs8C6vJYWz1cDHa1Ta+VDFziK+8q3chcCBEV2hhvUkoKEhcIt+0nxK5qUVwxoJIpdppBmKll8dfguzWAjtFD7jOSKnLICT8Hu8mqjbStoV6aOr0POtrs8N84pyepTLGtaTbZ8/AMqeNxEQwDAKHT; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 3656
server: nginx
date: Sat, 25 Mar 2023 13:29:59 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
set-cookie: _pxhd=H3NhhyP%2F39EI-qDEih7bUKqzn43JpYnxLnk2jVkQBvsOuMaTXDzO82f4JAciSfE6680mSpqO3%2Fv%2FAeDyj7%2Fyww%3D%3D%3AVUM08AOJ7GjBDjlhiyM0ahwNe6CQboIyjG4I2czr5r0ZenNAULyNlQGZDslS-9232mkpcftz7RmkFPmLCtjXM6P3tgzD2Xt5NVTzsIrsVFI%3D; domain=booking.com; path=/; expires=Sun, 24-Mar-2024 13:29:59 GMT
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbof7CEiNviT8iC3XWxYMPsMsWCmSm8W%2FOZcFd617yZCH8Wut3bbybO%2FVTfMdgCFDvyqqG4bVAhCSWzmTgwMyNDFpzjk0u6XnGhgytQN9nPCx1cONAVVqf8WVIqYXudzNQRSIhAl1VzCTBD8DfCFy422Pcnas19xWMiw6TOQokEnk%3D; domain=.booking.com; path=/; expires=Thu, 23-Mar-2028 13:29:59 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Dg63931c_HGKpWHdig5ogGA0_yIJGY3KjNPDyYslOIGyqyEUX2W0hA==
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/263x210/45450058.jpeg?k=2449eb55e8269a66952858c80fd7bdec987f9514cd79d58685651b7d6e9cdfcf&o=
18.173.5.36200 OK 10 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/263x210/45450058.jpeg?k=2449eb55e8269a66952858c80fd7bdec987f9514cd79d58685651b7d6e9cdfcf&o=
IP 18.173.5.36:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3\012- data
Hash a84be65e3bb8d5eaa7fef90be796567a
551cdf363ee42d54ec96eb53ce7775f691ff7fb4
f01b19f78cfe046f9bb8a8b7f141f8c2fb0cef0a519adffee6dfb7009199b05e
GET /xdata/images/xphoto/263x210/45450058.jpeg?k=2449eb55e8269a66952858c80fd7bdec987f9514cd79d58685651b7d6e9cdfcf&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 10145
server: nginx
date: Fri, 24 Mar 2023 14:33:40 GMT
etag: "cb7f8dc66496f249701e2656a5205387fd39da44"
expires: Sun, 23 Apr 2023 14:33:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: yRU3weXbFPCmblcoe_XAZPhEeUoFxL3vop3YAh_xFtRn4T9UQPtH8w==
age: 82579
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/263x210/45450113.jpeg?k=76b3780a0e4aacb9d02ac3569b05b3c5e85e0fd875287e9ac334e3b569f320c7&o=
18.173.5.36200 OK 9.3 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/263x210/45450113.jpeg?k=76b3780a0e4aacb9d02ac3569b05b3c5e85e0fd875287e9ac334e3b569f320c7&o=
IP 18.173.5.36:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3\012- data
Hash 688b2d746bad439cade3efaa688d426b
de138925fb4975a2538828cc47b674ba4cba76bb
24f12dfd0c5f3d491c3ccb07c49c47cf79a245fe7e03f7dc8e4c99b547ccf0df
GET /xdata/images/xphoto/263x210/45450113.jpeg?k=76b3780a0e4aacb9d02ac3569b05b3c5e85e0fd875287e9ac334e3b569f320c7&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 9274
server: nginx
date: Fri, 24 Mar 2023 14:33:40 GMT
etag: "acaa666beedb428b1f5ef5442e781addf2f905d9"
expires: Sun, 23 Apr 2023 14:33:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: JfmMRnlvv6yMnJsmnM0bVn87EeAOkGxlhKV7HwtwinZ7jBktRpZZtA==
age: 82579
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/263x210/45450073.jpeg?k=795a94c30433de1858ea52375e8190a962b302376be2e68aa08be345d936557d&o=
18.173.5.36200 OK 9.0 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/263x210/45450073.jpeg?k=795a94c30433de1858ea52375e8190a962b302376be2e68aa08be345d936557d&o=
IP 18.173.5.36:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3\012- data
Hash 8989f4f10a45dd10156c3eb7fb1b078b
f8fbe15b7a89638a421f23164e1b3c283b0d888a
89b6890e5d14cdc0d9470023b09144793e2b6f769f7e8f05f0393a4227e002c5
GET /xdata/images/xphoto/263x210/45450073.jpeg?k=795a94c30433de1858ea52375e8190a962b302376be2e68aa08be345d936557d&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 8996
server: nginx
date: Fri, 24 Mar 2023 14:33:40 GMT
etag: "14935f52ff488b831c0b28b18d33ef39ae82c58f"
expires: Sun, 23 Apr 2023 14:33:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: CUVNzYHmxbTXiNulxGLiLFSvUQuNHcCWgQeRL5Ruv9lsVJEOTAngkg==
age: 82579
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/263x210/45450113.jpeg?k=76b3780a0e4aacb9d02ac3569b05b3c5e85e0fd875287e9ac334e3b569f320c7&o=
18.173.5.36200 OK 11 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/263x210/45450113.jpeg?k=76b3780a0e4aacb9d02ac3569b05b3c5e85e0fd875287e9ac334e3b569f320c7&o=
IP 18.173.5.36:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3\012- data
Hash b12af914e86a7dca0e4af96473cdb406
65d1e47c47fcc37ddac51cc0bfdb188782fed100
4fd4c96340bb4e3587288804ad9da4eebd9fe7e446191a6551d962db4cebb172
GET /xdata/images/xphoto/263x210/45450113.jpeg?k=76b3780a0e4aacb9d02ac3569b05b3c5e85e0fd875287e9ac334e3b569f320c7&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 9274
server: nginx
date: Fri, 24 Mar 2023 14:33:40 GMT
etag: "acaa666beedb428b1f5ef5442e781addf2f905d9"
expires: Sun, 23 Apr 2023 14:33:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: VnEHDtekFAzgnjsQdhlzRUO68tF6gGs740rTkZUiB0Qh90Jwkqkjrg==
age: 82579
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/incentives_cloudfront_sd.iq_ltr/c253238e9a1cc9e8fe7f142462ea4345a2c72799.css
18.173.5.36200 OK 15 kB URL HTTP/2 cf.bstatic.com/static/css/incentives_cloudfront_sd.iq_ltr/c253238e9a1cc9e8fe7f142462ea4345a2c72799.css
IP 18.173.5.36:0
Hash 838fed1ebb92df51ef850a09d1f2e3b4
ab145f095c5aeb621c6a386dbf7917db48203af7
c60effc9974b712d288602014e33347e445958c1709e12993fa9fac3291d93be
GET /static/css/incentives_cloudfront_sd.iq_ltr/c253238e9a1cc9e8fe7f142462ea4345a2c72799.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
last-modified: Tue, 17 Jan 2023 05:48:22 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sat, 18 Mar 2023 14:43:15 GMT
expires: Sun, 16 Apr 2023 01:08:12 GMT
cache-control: max-age=2592000
etag: W/"63c636a6-1e27"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: w2qFXE5UQ4chOk2ppeCUMSazzg2Goy8PfA9es534ONg_vzRP1CnmtQ==
age: 735704
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/263x210/45450056.jpeg?k=251e2507d43a24a4c58bb961b8d157147d56efbf91b49f9606bc768c58f581e4&o=
18.173.5.36200 OK 13 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/263x210/45450056.jpeg?k=251e2507d43a24a4c58bb961b8d157147d56efbf91b49f9606bc768c58f581e4&o=
IP 18.173.5.36:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3\012- data
Hash 046a6e4db3f4ea1dc3b0044b48f93093
e0997c00add73d0b3b38ccc79e9ba67b447e3f59
6676ced592b6b4e143ff6a71c0dd4a0a0d0f2c040d7d689f58b0053e09c82365
GET /xdata/images/xphoto/263x210/45450056.jpeg?k=251e2507d43a24a4c58bb961b8d157147d56efbf91b49f9606bc768c58f581e4&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 13102
server: nginx
date: Fri, 24 Mar 2023 14:33:40 GMT
etag: "d0408646d1cdcf4ea3eebf474147caf07500bf5c"
expires: Sun, 23 Apr 2023 14:33:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: rqKcn6YHBVPhAKy2D9NThv4xNrxe8BaV9zWV4PyEtOfpB2O-Fq1g9g==
age: 82579
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/263x210/45450279.jpeg?k=cb9ab85ffe439f3030e00281f2d52583a398bf076e54f00f746e1d1baf62bf6e&o=
18.173.5.36200 OK 18 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/263x210/45450279.jpeg?k=cb9ab85ffe439f3030e00281f2d52583a398bf076e54f00f746e1d1baf62bf6e&o=
IP 18.173.5.36:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3\012- data
Hash bde532f130b1e8e4fe12ad801cd77661
473b3d6fb52f5b967a9e13e3b0b91dd5b4c74165
48fb7dc5fed709b7868efd05d7f5bcbdb45d3dddd7f73a9c8aa72a75f46ebc0d
GET /xdata/images/xphoto/263x210/45450279.jpeg?k=cb9ab85ffe439f3030e00281f2d52583a398bf076e54f00f746e1d1baf62bf6e&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 18465
server: nginx
date: Fri, 24 Mar 2023 14:33:40 GMT
etag: "818c1f8036fa00d4b19724fac698287c8709e46c"
expires: Sun, 23 Apr 2023 14:33:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: of2koznO9YOI-MTxP3yG3w7F2pvnjp7jfnS9cQ9TUE50RMGtderpmA==
age: 82579
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/263x210/45450064.jpeg?k=4d4ea22dc4828fd55a3889e90531c9841ddb2d9abf460c420cdd24f2a9b658d2&o=
18.173.5.36200 OK 15 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/263x210/45450064.jpeg?k=4d4ea22dc4828fd55a3889e90531c9841ddb2d9abf460c420cdd24f2a9b658d2&o=
IP 18.173.5.36:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3\012- data
Hash 80f9f2fb77f37a3e57ac55d15de1a43b
9004c534f4e2730a4ed3985985db7527bfb6273c
4ad008815ae7efa7a3bbcabfc46d22e62f3206f3141d9d7ec8dbbb754f444a9d
GET /xdata/images/xphoto/263x210/45450064.jpeg?k=4d4ea22dc4828fd55a3889e90531c9841ddb2d9abf460c420cdd24f2a9b658d2&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 14855
server: nginx
date: Fri, 24 Mar 2023 14:33:40 GMT
etag: "0f7e3e8da36fd05428aebee66c33a486741df576"
expires: Sun, 23 Apr 2023 14:33:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: pCK1Dc-cXCsPqToMd0vX4l9N6B2aM_X0-YJ-GfXbSkQb-0VpZttKuA==
age: 82579
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/263x210/45450068.jpeg?k=41cc7c5449011323aaaaed4e845cb16200b5d540c77a50c1bea90399a1e92d70&o=
18.173.5.36200 OK 16 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/263x210/45450068.jpeg?k=41cc7c5449011323aaaaed4e845cb16200b5d540c77a50c1bea90399a1e92d70&o=
IP 18.173.5.36:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3\012- data
Hash e7bf96a1173c8a53e147151fadef91f5
d3c2d334b7fc33edea8492c6627bba1438c5ebe0
e84777ce16b3e1f4ebfe4a1422f5848b1a0370f33f78d99b7f4a060d880be76d
GET /xdata/images/xphoto/263x210/45450068.jpeg?k=41cc7c5449011323aaaaed4e845cb16200b5d540c77a50c1bea90399a1e92d70&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 15735
server: nginx
date: Fri, 24 Mar 2023 14:33:40 GMT
etag: "77e65d4346574b4f813c1997faace1817c74e471"
expires: Sun, 23 Apr 2023 14:33:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: nAMB0Z5vOlmZH5zxSxZPXQRUGQezmkg16Rp5iMq7M4ydre6FaRy6Jw==
age: 82579
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/263x210/45450066.jpeg?k=4adfab312f5d26da9f81da48d8c95ca8f108215b2c84085590891a9e0e17b144&o=
18.173.5.36200 OK 17 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/263x210/45450066.jpeg?k=4adfab312f5d26da9f81da48d8c95ca8f108215b2c84085590891a9e0e17b144&o=
IP 18.173.5.36:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3\012- data
Hash e08092b0569f8ee045e4bd45c1618f76
3c285568b967e02f24eb46c58f0d3eae278c58d7
bdc6ee8e1157c8084492b5735aedad96796d7aabd9b2f80949d5e747d652028d
GET /xdata/images/xphoto/263x210/45450066.jpeg?k=4adfab312f5d26da9f81da48d8c95ca8f108215b2c84085590891a9e0e17b144&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 16930
server: nginx
date: Fri, 24 Mar 2023 14:33:40 GMT
etag: "4146fd5303a677310d71584271b0a44aaf02da32"
expires: Sun, 23 Apr 2023 14:33:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: 6zcUcb-oOXXudd078pm8aA5KQ0XeTVIvpGr3zHbC7BDsU6EuGUnHgg==
age: 82579
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/landingpage_cloudfront_sd/d731e6c6e8c81339337d5fbb6d244a92803397b2.js
18.173.5.36200 OK 80 kB URL HTTP/2 cf.bstatic.com/static/js/landingpage_cloudfront_sd/d731e6c6e8c81339337d5fbb6d244a92803397b2.js
IP 18.173.5.36:0
Hash ccc60adc42a9f63f0255c679fe933331
5289b6b7ad7b8d3a13ba14240d6172c4630d3bd1
fdd02eb9fbe9b0ee733641c3bba7fa7b786b50776e66e117e458e403436d7016
GET /static/js/landingpage_cloudfront_sd/d731e6c6e8c81339337d5fbb6d244a92803397b2.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 10 Mar 2023 02:00:16 GMT
last-modified: Mon, 13 Feb 2023 06:55:39 GMT
etag: W/"63e9deeb-55b58"
expires: Sun, 09 Apr 2023 02:00:16 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3b0715ca57820f19665e655f9f44da48.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: 0UjwcqcvIm3FdZsYJwacIMBGQoTWANsYKQHK81R_n6r55GJR0d-91w==
age: 1337379
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/263x210/45450103.jpeg?k=a1fa72362160b1df6e288050afa7ce1aade80871acd368ddd4a4ebf6ad87764e&o=
18.173.5.36200 OK 17 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/263x210/45450103.jpeg?k=a1fa72362160b1df6e288050afa7ce1aade80871acd368ddd4a4ebf6ad87764e&o=
IP 18.173.5.36:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3\012- data
Hash f373341034a716f8a37655e46047d92d
4a7c67fbe52f102ca516e2d7fda504aa94df5942
1f189b367e0ec60548afd09578a8743af2069f18731a05c11b9b292ed0f0fc17
GET /xdata/images/xphoto/263x210/45450103.jpeg?k=a1fa72362160b1df6e288050afa7ce1aade80871acd368ddd4a4ebf6ad87764e&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 16555
server: nginx
date: Fri, 24 Mar 2023 14:33:40 GMT
etag: "37ffe8e559c8c379cf994bf8ea9224b49aacabbc"
expires: Sun, 23 Apr 2023 14:33:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: x-kWeoUkgMXL_EosHIIZ20UtKlOYFAE5Igwjf3laOv9cg371ur7BxA==
age: 82579
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/core-deps-inlinedet_cloudfront_sd/6da0bf621035bb8a2f9c756d6a89dda03b2f7864.js
18.173.5.36200 OK 23 kB URL HTTP/2 cf.bstatic.com/static/js/core-deps-inlinedet_cloudfront_sd/6da0bf621035bb8a2f9c756d6a89dda03b2f7864.js
IP 18.173.5.36:0
File type Unicode text, UTF-8 text, with very long lines (37718)
Hash 0452aedde6c705fdbddedab336bebb64
6a5a2feb6dfd5b33e4582415c7b2df48d041a66d
9f59c625ff246f6339c3f1c879e49967dd1d5caf87347ae09ab9fdc9965f549d
GET /static/js/core-deps-inlinedet_cloudfront_sd/6da0bf621035bb8a2f9c756d6a89dda03b2f7864.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
last-modified: Wed, 22 Jun 2022 10:40:45 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Tue, 21 Mar 2023 01:37:09 GMT
expires: Tue, 18 Apr 2023 08:04:01 GMT
cache-control: max-age=2592000
etag: W/"62b2f1ad-949e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3b0715ca57820f19665e655f9f44da48.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: rtU9WfRr478xOx5bqEGpODMaVzxbnIHddFMNFGYyFlh11f5HEVWNCg==
age: 537955
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/263x210/45450095.jpeg?k=cd5e46e632dab722d22217813485efde31fbe82f5f26a624166edccdbe8187bc&o=
18.173.5.36200 OK 16 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/263x210/45450095.jpeg?k=cd5e46e632dab722d22217813485efde31fbe82f5f26a624166edccdbe8187bc&o=
IP 18.173.5.36:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3\012- data
Hash 4a3d6681973906a15cf25575a34149c5
5cc846e08d4262f3b8d21a4fda93422e59e77519
911bb77dbdce93cc64009eb78b150865f1c5e6aec0e1d8c1a55ccd6d04154a2d
GET /xdata/images/xphoto/263x210/45450095.jpeg?k=cd5e46e632dab722d22217813485efde31fbe82f5f26a624166edccdbe8187bc&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 16076
server: nginx
date: Fri, 24 Mar 2023 14:33:40 GMT
etag: "0af9a183b39741f4b3453d48a2b4af49c26eae79"
expires: Sun, 23 Apr 2023 14:33:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: NXFhxqiKZhJng9T1aJMjoVxeTLTEkQW70PpuQB-I7T2pOmB1MWbXWg==
age: 82579
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/error_catcher_bec_cloudfront_sd/0acd2ada6c74d5dec978a04ea837952bdf050cd2.js
18.173.5.36200 OK 15 kB URL HTTP/2 cf.bstatic.com/static/js/error_catcher_bec_cloudfront_sd/0acd2ada6c74d5dec978a04ea837952bdf050cd2.js
IP 18.173.5.36:0
File type ASCII text, with very long lines (6155), with no line terminators
Hash e642c461d2832704c86f1bda96cf41b1
e3ce9b7f36108acb9e1653490a4117f84f178240
8c36e09840130e624127f8eab145ff1a12c4e4c026836fa8c16b388b5992a6f4
GET /static/js/error_catcher_bec_cloudfront_sd/0acd2ada6c74d5dec978a04ea837952bdf050cd2.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
last-modified: Wed, 21 Dec 2022 14:29:30 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Mon, 20 Mar 2023 00:25:43 GMT
expires: Wed, 19 Apr 2023 00:25:29 GMT
cache-control: max-age=2592000
etag: W/"63a3184a-180b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3b0715ca57820f19665e655f9f44da48.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: pv-W2gzpQKuAiQAtWUqelIKyQfegm6w5mHY_eSqmsrhjeHzPlY0BJw==
age: 479067
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/263x210/45450075.jpeg?k=d23cf8443780ac09f46f59e40393d75dbe64b06029b4959c60b81b7fdefc9be0&o=
18.173.5.36200 OK 11 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/263x210/45450075.jpeg?k=d23cf8443780ac09f46f59e40393d75dbe64b06029b4959c60b81b7fdefc9be0&o=
IP 18.173.5.36:0
File type Applesoft BASIC program data, first line number 97\012- data
Hash beea844079ba350de0bf17da0c691447
cb5f7eb3a50e70f36da5598a067562ee93c1b347
51556fe3ad754fb357688946e9aa7f46ea77e6da02f5ed15b8e5019b4da3f0ab
GET /xdata/images/xphoto/263x210/45450075.jpeg?k=d23cf8443780ac09f46f59e40393d75dbe64b06029b4959c60b81b7fdefc9be0&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 10192
server: nginx
date: Fri, 24 Mar 2023 14:33:40 GMT
etag: "07060e04c091991dc0617f56e8e03d25c3daec66"
expires: Sun, 23 Apr 2023 14:33:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: -cZ0rLwr2lB6sHgqFxF6XuNVrCesSzOZ2aPnOj3kNNAsLxu0WuVpqg==
age: 82579
X-Firefox-Spdy: h2
cf.bstatic.com/libs/privacy-consent/releases/2.1.38/customer/cookie-banner.min.js
18.173.5.36200 OK 17 kB URL HTTP/2 cf.bstatic.com/libs/privacy-consent/releases/2.1.38/customer/cookie-banner.min.js
IP 18.173.5.36:0
File type ASCII text, with very long lines (1327), with CRLF line terminators
Hash 6b02d4e738656340833ac2e309e55622
2e4d487a2111b65c46206e7d65b632e17e95cd2f
43c76e991cafbe83eb15e36199037d40bf2a80f6c7e06ab9148c671b1e589a44
GET /libs/privacy-consent/releases/2.1.38/customer/cookie-banner.min.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Tue, 07 Mar 2023 21:29:11 GMT
last-modified: Wed, 01 Feb 2023 09:52:04 GMT
etag: W/"63da3644-2396"
expires: Thu, 06 Apr 2023 21:29:11 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: 2B4pN_1jcE4bwLyEJor-Hheh-rU7f7LRGN2X8-QPwK_Zf3lYumLtMg==
age: 1526445
X-Firefox-Spdy: h2
www.booking.com/dml/graphql?aid=7977348&label=travelcravel&lang=en-us
54.230.111.128200 OK 2.2 kB URL HTTP/2 www.booking.com/dml/graphql?aid=7977348&label=travelcravel&lang=en-us
IP 54.230.111.128:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (8499), with no line terminators
Hash 2e9c0ebcee4ccd7cb750c675246de6f2
171cd8d39b74cc7a02d54728008d1be994b95aee
bf2e414bfcdcc2fedf29997e6823a8398abc3f6857fd4aabbd55e1aa389acec7
POST /dml/graphql?aid=7977348&label=travelcravel&lang=en-us HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=7977348&label=travelcravel
content-type: application/json
x-booking-context-action-name: index
x-booking-context-aid: 7977348
x-booking-csrf-token: eyJhbGciOiJIUzUxMiJ9.eyJpc3MiOiJjb250ZXh0LWVucmljaG1lbnQtYXBpIiwic3ViIjoiY3NyZi10b2tlbiIsImlhdCI6MTY3OTc1MDk5NiwiZXhwIjoxNjc5ODM3Mzk2fQ.2JcAm9WrUG0kr8c6Ee5ciWSXo0Jv-2lDlEBr2-vy_yAxjvN1y33uvadJIxHdj3osr8O2I469Zm8SrudoX3AN_A
x-booking-et-serialized-state: EyWhX6gqZ0APx25VtFZGeB0Et13x31JWfCjvVwswfe_Vg8XHjsFu1kE66NnWpfeSB
x-booking-pageview-id: d6705ee9c223000a
x-booking-site-type-id: 1
x-booking-topic: capla_browser_b-index-lp-web-mfe
Origin: https://www.booking.com
Content-Length: 1776
Connection: keep-alive
Cookie: _pxhd=AALGl6fvvx6gpSEaGSN9lpmX-4oNGuY7CSuO2FFiKc434iI7UZZZI7OqGE1fB9RWrtZcwZ4c1KSiPAiJszmfEQ%3D%3D%3A-TsU6UOuVuk0iDQ%2FaZqmh71-LNtwDwtlJAl%2Fg1I3vvR%2FBWpWjjd%2FjYZnObYf%2F8q2Pjlb7dBi7WVR0dnW-C38LuvQQSNdeuwjDdqY-EBb9QM%3D; px_init=80; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLblgO%2Fz4BDP5vPuaAXzge8huTj9tFevErFzYvV7F0PSybTfZGINYRSXSeFc95J9A2dDSnu6Knu9qhufSiVydR5PCtYCEf6s1%2BvFYz3Yo9rKXRGWXs6QhkmZgqFKtn9Mh4EfWPivST%2BQ9BzEtnGdEY%2BT6GF%2BWccaDY%2BZvXxdZ8kKr4%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sat+Mar+25+2023+13%3A30%3A11+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=4f144e15-8173-4163-8484-29721c7e9173&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D7977348%26label%3Dtravelcravel&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1679751011775; bkng_sso_ses=e30; bkng_sso_session=e30; bkng_sso_auth=CAIQARpyb35Exs8C6vJYWz1cDHa1Ta+VDFziK+8q3chcCBEV2hhvUkoKEhcIt+0nxK5qUVwxoJIpdppBmKll8dfguzWAjtFD7jOSKnLICT8Hu8mqjbStoV6aOr0POtrs8N84pyepTLGtaTbZ8/AMqeNxEQwDAKHT; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 2172
server: nginx
date: Sat, 25 Mar 2023 13:29:59 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
set-cookie: _pxhd=AALGl6fvvx6gpSEaGSN9lpmX-4oNGuY7CSuO2FFiKc434iI7UZZZI7OqGE1fB9RWrtZcwZ4c1KSiPAiJszmfEQ%3D%3D%3A-TsU6UOuVuk0iDQ%2FaZqmh71-LNtwDwtlJAl%2Fg1I3vvR%2FBWpWjjd%2FjYZnObYf%2F8q2Pjlb7dBi7WVR0dnW-C38LuvQQSNdeuwjDdqY-EBb9QM%3D; domain=booking.com; path=/; expires=Sun, 24-Mar-2024 13:29:59 GMT
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLblgO%2Fz4BDP5vPuaAXzge8huTj9tFevErF9lP4fmoGUjeq5z9m3y28WRoRB2ZFYliKl8TPEaK1JHBodpGT8EjmPV9bpLe533PiR61y1YtrwnqTNqVzLbG8EzExyS%2B%2BQlEiledO9BuG8Ta72oJgIIP2w6gjdK4Oypp6qRc%2BWrKKDA4%3D; domain=.booking.com; path=/; expires=Thu, 23-Mar-2028 13:29:59 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: h7QBL-pAf-zmRKTsjzq_c75PcSzhIAplslmbDdQOFLwQNPCSrHftAA==
X-Firefox-Spdy: h2
t-cf.bstatic.com/design-assets/assets/v3.68.0/illustrations-traveller/GeniusGenericGiftBox.png
54.230.111.45200 OK 19 kB URL HTTP/2 t-cf.bstatic.com/design-assets/assets/v3.68.0/illustrations-traveller/GeniusGenericGiftBox.png
IP 54.230.111.45:0
File type PNG image data, 223 x 260, 8-bit colormap, non-interlaced\012- data
Hash c9ab4a0dce421c7419b5acb0dc7f4c7b
bcad25c23a1de13ec3cb9797149aa1951d0f51ea
533ee008f26a7a0e3c08cfe0301e8d0d1b768fc84144cd747d54e0c991d88733
GET /design-assets/assets/v3.68.0/illustrations-traveller/GeniusGenericGiftBox.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 19200
last-modified: Wed, 15 Mar 2023 17:26:02 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 25 Mar 2023 08:02:51 GMT
etag: "c9ab4a0dce421c7419b5acb0dc7f4c7b"
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9QN5GH7wP3RkwZo7xR7fqRE8_JDVXeiTDFM5LQfuBdGa3A0xl7Nnqg==
age: 79243
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
t-cf.bstatic.com/design-assets/assets/v3.68.0/illustrations-traveller/Wallet.png
54.230.111.45200 OK 24 kB URL HTTP/2 t-cf.bstatic.com/design-assets/assets/v3.68.0/illustrations-traveller/Wallet.png
IP 54.230.111.45:0
File type PNG image data, 260 x 260, 8-bit colormap, non-interlaced\012- data
Hash 51217a348a8d529df59d9fda100f92e3
97717508055ad62db18a27ea89dcc81f096f682f
2012c4392d1e2f1024f8eb0372cdbecdaa286eee3669cef54312c44d8c60fcef
GET /design-assets/assets/v3.68.0/illustrations-traveller/Wallet.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 24421
last-modified: Wed, 15 Mar 2023 17:26:04 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 25 Mar 2023 02:23:20 GMT
etag: "51217a348a8d529df59d9fda100f92e3"
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bP_4tdBuZYPKyJbwmp23tj_vfYoR_5Z-FYUeJwaW-7z22LwesAguhA==
age: 40480
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
t-cf.bstatic.com/design-assets/assets/v3.68.0/illustrations-traveller/WishlistGeneric.png
54.230.111.45200 OK 13 kB URL HTTP/2 t-cf.bstatic.com/design-assets/assets/v3.68.0/illustrations-traveller/WishlistGeneric.png
IP 54.230.111.45:0
File type PNG image data, 298 x 260, 8-bit colormap, non-interlaced\012- data
Hash 15716b81f63d344a81840d45c27099d6
e9a9a37041d098bff255002490517a24c3badffb
c46f3a31bdc7af1f93f1295f459d307df436ed71a5db6adabc270bca85cf9ca7
GET /design-assets/assets/v3.68.0/illustrations-traveller/WishlistGeneric.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 13252
last-modified: Wed, 15 Mar 2023 17:26:05 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 25 Mar 2023 08:57:16 GMT
etag: "15716b81f63d344a81840d45c27099d6"
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EpAV5aFXq9wYomWrrKxHV9U3sd-qjYd128KVswuk3Yg9WQErbB2BYw==
age: 16392
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
www.booking.com/c360/v1/track
54.230.111.128200 OK 33 B URL HTTP/2 www.booking.com/c360/v1/track
IP 54.230.111.128:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2ef0949d72ccdcc083647d001c8ba940
ebe4e2284d3892b010623597d0945b6b5cd64448
fe1a912baa83e36855bb934de3f2cfdffe77b1224a552533a4a7f2e984a51e52
POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=7977348&label=travelcravel
Content-Type: application/json
X-Booking-Platform: WWW
X-Booking-SiteType-Id: undefined
X-Booking-Pageview-Id: undefined
X-Booking-Session-Id: undefined
X-Booking-ET-Seed: undefined
X-Booking-AID: undefined
X-Booking-Label: undefined
X-Booking-CSRF: undefined
X-Booking-Language-Code: en-us
Origin: https://www.booking.com
Content-Length: 579
Connection: keep-alive
Cookie: _pxhd=j7R9z31Gv7WWNOH0txZfZ%2Fgry2kS7PGNjadXGfjT%2Fz%2Fx0Fp7btlaoi2L3nbZLbuHqxhGYhVLyN3OXyW9AKdvyg%3D%3D%3AbPHJg7XTFqG2J8ZnjzhbeGsIMrtAbQGnuWj5msfk6Es3iwfLuEI975V4vyKVgzbGTlNzr9FlBXv6sbHwa2KcrwwvId61dOmyeX9sZo%2FKIB0%3D; px_init=80; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbXpFeYC4TUhDMSfLvcMG2VGdTHL5Gk2EIHp%2Bi1ab9hvaevZuu4evu0%2FIxwXDbH14x7VoAbApnKRnKVvbu4AcDoghVC7G14hT5Xj4AkzA5n6%2Bg01ddUjfJr57BWZQCW9f75Zca3m%2BhHGPpwRZLilAPiIJupRwio144bzuJm%2FneCNo%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sat+Mar+25+2023+13%3A30%3A11+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=4f144e15-8173-4163-8484-29721c7e9173&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D7977348%26label%3Dtravelcravel&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1679751011775; bkng_sso_ses=e30; bkng_sso_session=e30; bkng_sso_auth=CAIQARpyb35Exs8C6vJYWz1cDHa1Ta+VDFziK+8q3chcCBEV2hhvUkoKEhcIt+0nxK5qUVwxoJIpdppBmKll8dfguzWAjtFD7jOSKnLICT8Hu8mqjbStoV6aOr0POtrs8N84pyepTLGtaTbZ8/AMqeNxEQwDAKHT; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 33
server: nginx
date: Sat, 25 Mar 2023 13:29:59 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPefdem2E0MF90T6hQ0AMPf9SmnH7pjKqMq9ThLEPrtVu2jyazD6iuxhDYvQf5K03ERmxUTngPbMOYSbRGUljlKKPtabzlcle41ePXIeh3PAzVJkjxuOzX2gdLsny%2B1P46MhRXc%2FXcVq5lD0Hkg8Q4AcD9Avr6XC%2F7bY%3D; domain=.booking.com; path=/; expires=Thu, 23-Mar-2028 13:29:59 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=3b4e5eeb5c1b000c&e=UmFuZG9tSVYkc2RlIyh9YaKT1Ar0s2gSEmakdtrUqstTjsw0eIU70BPGk1IUNB-WtWvGn9r0pB0
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EwkXPgwoV-QlfreJPKigxXUvzy93O6ipXgz3F_rCtLn3ptt4bCauvA==
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/fonticons_clean/base64/woff/5d61b8a7156073e5e3e9741f65dda44ae3eef7d2.css
18.173.5.36200 OK 109 kB URL HTTP/2 cf.bstatic.com/static/css/fonticons_clean/base64/woff/5d61b8a7156073e5e3e9741f65dda44ae3eef7d2.css
IP 18.173.5.36:0
File type ASCII text, with very long lines (65487)
Size 109 kB (109059 bytes)
Hash 30991433a044b11ca546fad2d37370da
44e968fa042fb16210f71b630cd5a4b7e9d690ce
7862bd262013bdb663c374f99347fde1745aadeaaaccb0e61cbbe93c671c9edf
GET /static/css/fonticons_clean/base64/woff/5d61b8a7156073e5e3e9741f65dda44ae3eef7d2.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:48 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Thu, 16 Mar 2023 05:20:01 GMT
expires: Sat, 08 Apr 2023 19:00:21 GMT
cache-control: max-age=2592000
etag: W/"5cadd1cc-375af"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: jUjtAaj374AwRsHoNeLz2u17LJD67ufXJwZ7efdW3ltI7mAQpo9GMQ==
age: 1362578
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f0f306ea49f1bd3f358f7579513e7377
c2845c696f6685a211bc040895d28ebf23fa1bc0
cda7588d5040ef3c8e83955838618a0ed0a6ee242d24abf5af697b2289fc8bdb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 13:30:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cf.bstatic.com/xdata/images/hotel/square600/154512398.webp?k=f34c90d1aae9ef4b8c0eea552e829f669eac79b844bd6e88ced019273f4d3c4b&o=&s=1
18.173.5.36200 OK 72 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/154512398.webp?k=f34c90d1aae9ef4b8c0eea552e829f669eac79b844bd6e88ced019273f4d3c4b&o=&s=1
IP 18.173.5.36:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8f65d9111ef2d4aa2b2cb67dc112b64c
0ac0d2a13010ff6a3f65812cd8949393eefaeef2
74b91ae62006cdad22d6e702c8f1f432c2144abd4909cbc997c23d9425b63104
GET /xdata/images/hotel/square600/154512398.webp?k=f34c90d1aae9ef4b8c0eea552e829f669eac79b844bd6e88ced019273f4d3c4b&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 71718
server: nginx
date: Wed, 08 Mar 2023 08:03:07 GMT
etag: "31417662666e828bb8249e0ec967f50bd1dacee2"
expires: Fri, 07 Apr 2023 08:03:07 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: Lf6yxJMgwldTJRc3LClJYQTJeAuc5JqphXyy47U3Ebi5KQaNnZxk1w==
age: 1488413
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/90166571.webp?k=0b63f507a150b0e5f6e2173786be4374ee7deae468fc1a6443feef111cc01ef5&o=&s=1
18.173.5.36200 OK 31 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/90166571.webp?k=0b63f507a150b0e5f6e2173786be4374ee7deae468fc1a6443feef111cc01ef5&o=&s=1
IP 18.173.5.36:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 144ea530c7ce441545e4faf8436567c5
adc26707883764b633c3c56b6fd94eadd1f02658
3b463c2a52c167a2ca60af3010e689f9edb48dcdfab7918a06b9ca83df7f4270
GET /xdata/images/hotel/square600/90166571.webp?k=0b63f507a150b0e5f6e2173786be4374ee7deae468fc1a6443feef111cc01ef5&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 30798
server: nginx
date: Sun, 19 Mar 2023 01:53:22 GMT
etag: "fa1e2f45e6b91ebe41dc828ae1c8874d954604a4"
expires: Tue, 18 Apr 2023 01:53:22 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: f5zx9e_eFFKsBk8YWkGt5D3s7uiTmsWhXKepvQieI7Xkv9LHaPKecg==
age: 560198
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/125840065.webp?k=3443f59e7b7c521c1abdfa94fcbf62b8e5386a2a7b70d815db2714b793d22f96&o=&s=1
18.173.5.36200 OK 31 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/125840065.webp?k=3443f59e7b7c521c1abdfa94fcbf62b8e5386a2a7b70d815db2714b793d22f96&o=&s=1
IP 18.173.5.36:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 40c15dcecbbe184be6892d94541acc13
38bfdd7a11f114b478d926355ef9dfbb0d95ae34
e13b70dfc2ab40cc17975653efd4ddb411329be6e1f042511d754129b439db1c
GET /xdata/images/hotel/square600/125840065.webp?k=3443f59e7b7c521c1abdfa94fcbf62b8e5386a2a7b70d815db2714b793d22f96&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 31122
server: nginx
date: Mon, 13 Mar 2023 09:21:26 GMT
etag: "83510cb8f38b775c13a0af9aa773a4090a98502c"
expires: Thu, 27 Apr 2023 09:21:26 GMT
cache-control: max-age=3888000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: 7VCiIWDJOtvcv3NNeaN5ULJX_9WtL-m1t5WCgL0344dKPwuMzVERbw==
age: 1051714
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/236840535.webp?k=ce3c9fd759ec1a8d942b39f8fa1b8f4f388918523b269b9dff75842fec735038&o=&s=1
18.173.5.36200 OK 44 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/236840535.webp?k=ce3c9fd759ec1a8d942b39f8fa1b8f4f388918523b269b9dff75842fec735038&o=&s=1
IP 18.173.5.36:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1a4d2393c57cc8f4803d5142fbec0b15
bc63da22a153bbeb61fc53874e2c86fab68392ff
a4c1d356a4ef9d0eff6a71be2d6a8fd03300bf48087346743197f6a096f1628a
GET /xdata/images/hotel/square600/236840535.webp?k=ce3c9fd759ec1a8d942b39f8fa1b8f4f388918523b269b9dff75842fec735038&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 44364
server: nginx
date: Sat, 25 Feb 2023 04:09:17 GMT
etag: "48ceaa8a65b17b6ec671968b3846481f69f3f28f"
expires: Mon, 27 Mar 2023 04:09:17 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: p2hMpwKgr2CbSYqL86Sh7M3AnX7sWu9oudYX5kzoOoRgAHvRRooIQw==
age: 2452843
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/262247242.webp?k=ac5f696d6e7c82349e66d4e54d6a12bb0d89003eac8e7734489cc3e5d76944b8&o=&s=1
18.173.5.36200 OK 128 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/262247242.webp?k=ac5f696d6e7c82349e66d4e54d6a12bb0d89003eac8e7734489cc3e5d76944b8&o=&s=1
IP 18.173.5.36:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 128 kB (128296 bytes)
Hash 72a0c3af78637f10b366a61bb49696bc
4dc6662ac320116b46d35edf4bd07870b6924df2
db14d14f8adfd6cb7b6636aef60e31df2bd660773b870ddbbf05c509720bfad1
GET /xdata/images/hotel/square600/262247242.webp?k=ac5f696d6e7c82349e66d4e54d6a12bb0d89003eac8e7734489cc3e5d76944b8&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 128296
server: nginx
date: Wed, 22 Feb 2023 08:13:35 GMT
etag: "adcbf5275c82b8833a84fa5b188752afcecd72fa"
expires: Sat, 08 Apr 2023 08:13:35 GMT
cache-control: max-age=3888000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: a7nlOFXyQHZIqBYO64lBk8-tdH0yXWHuJ7fbP_HYcS8bFLZm7CeHRw==
age: 2697385
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/109319008.webp?k=b8fc6fbc8d874cffedf49c0080f14933a20995b040dc02aeaee3afad1e79c670&o=&s=1
18.173.5.36200 OK 72 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/109319008.webp?k=b8fc6fbc8d874cffedf49c0080f14933a20995b040dc02aeaee3afad1e79c670&o=&s=1
IP 18.173.5.36:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4bc699d1bd67bda2dd2771f1160ebf07
5bd339ae7baa59fb6ea72d9b0adfc22859458596
deb835a811f25db8ab52d0a20100d29baf15fa5b2ec3f2b4f01210c56fb0163f
GET /xdata/images/hotel/square600/109319008.webp?k=b8fc6fbc8d874cffedf49c0080f14933a20995b040dc02aeaee3afad1e79c670&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 71756
server: nginx
date: Mon, 06 Mar 2023 07:16:05 GMT
etag: "d527d3a285c3021065fbcc2bf74050c883f2e3e1"
expires: Wed, 05 Apr 2023 07:16:05 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: -ZVO9RA3ObxF4ftt_wJZxFNhC9AZRWq8NSdDsB0-WxMny5sQ0ruSIA==
age: 1664035
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/98662660.webp?k=6e981419e8af97778c5b13a8aca3c264a0be73e9ebfd565cb17c0e4134783564&o=&s=1
18.173.5.36200 OK 40 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/98662660.webp?k=6e981419e8af97778c5b13a8aca3c264a0be73e9ebfd565cb17c0e4134783564&o=&s=1
IP 18.173.5.36:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ae5abd3325e28c423001f3f540d38b80
aa9535e550f5c89977b4f598eb656de20ec767cc
938a823e490adc84ef5d12c5b763baebb2e0ccc0592b3f0faa785a7e94e88055
GET /xdata/images/hotel/square600/98662660.webp?k=6e981419e8af97778c5b13a8aca3c264a0be73e9ebfd565cb17c0e4134783564&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 39584
server: nginx
date: Sat, 11 Mar 2023 05:59:28 GMT
etag: "b178ee1d8fd458e0992569cca57b4b71320ab165"
expires: Mon, 10 Apr 2023 05:59:28 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: 4TnkpLZPEHi6Gxfw8luMT76BDuQPaDBuGgUfJGVwYN52Lz0aOpJwUg==
age: 1236632
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/101174842.webp?k=515b19cd29852207a9e6add777068c1df7931a0dc58ddb80b36af9b605a3a00d&o=&s=1
18.173.5.36200 OK 20 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/101174842.webp?k=515b19cd29852207a9e6add777068c1df7931a0dc58ddb80b36af9b605a3a00d&o=&s=1
IP 18.173.5.36:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ce2edbb1483dd2f1a695bb9fe57f7574
5684d3255717041c66037bd6d76f2aa9761578b7
e5c6e93bfa6be2a02b28f5b1e3bd4ff78eaf4b7738710e73f91c3235db6b3c77
GET /xdata/images/hotel/square600/101174842.webp?k=515b19cd29852207a9e6add777068c1df7931a0dc58ddb80b36af9b605a3a00d&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 19804
server: nginx
date: Tue, 14 Mar 2023 04:36:11 GMT
etag: "3197c2b0a102d5fe6c8230a2b8394e19bb715869"
expires: Thu, 13 Apr 2023 04:36:11 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: YSiAraln6DAAuXNzWAWyaL5mmylMoQYRkNtwLuU49nJaMX5LDfnh-A==
age: 982429
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/218529186.webp?k=669db47d57f15a20a66212f4d267ecde0a5866a896f3d2a3223441aef8b07f6c&o=&s=1
18.173.5.36200 OK 68 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/218529186.webp?k=669db47d57f15a20a66212f4d267ecde0a5866a896f3d2a3223441aef8b07f6c&o=&s=1
IP 18.173.5.36:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1ae4768126a76f4093bcf30833c7a4a0
3b35ab740b2f5860d1c6e0096446247d5b7c406d
9f222b46c7a092237c0e4bc1fe0c972365ba84e64463825f7b5fd31963e94c77
GET /xdata/images/hotel/square600/218529186.webp?k=669db47d57f15a20a66212f4d267ecde0a5866a896f3d2a3223441aef8b07f6c&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 68144
server: nginx
date: Sat, 11 Mar 2023 04:50:26 GMT
etag: "b00495f23320077078ba35509af4095fceb631dd"
expires: Mon, 10 Apr 2023 04:50:26 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: 3uYaveMaH3Ildc0CSwoItD9tMPGWGtwuB-6R6TmEDSLk_m6LS_ARWA==
age: 1240774
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/286573218.webp?k=05df3eea56c59038cf7fa2ab228ec44c47c66ac49f708bc924c2b24738ea1e61&o=&s=1
18.173.5.36200 OK 65 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/286573218.webp?k=05df3eea56c59038cf7fa2ab228ec44c47c66ac49f708bc924c2b24738ea1e61&o=&s=1
IP 18.173.5.36:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 651317e3637bdb07fead8acac91ff1df
677318c0d98efb6b0fed37c7f2594cedd7458f06
89f50060edeff15d0df29057194bcd3e035944bb5f8b14f64471174ff57a3389
GET /xdata/images/hotel/square600/286573218.webp?k=05df3eea56c59038cf7fa2ab228ec44c47c66ac49f708bc924c2b24738ea1e61&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 65350
server: nginx
date: Mon, 13 Mar 2023 03:19:01 GMT
etag: "f1337903199fbfcca6b1c61f85b97c45d3d93478"
expires: Wed, 12 Apr 2023 03:19:01 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: 9F6I5xgDsIgIQ3UDupRNFYJUBjT2i0VBmkq4TNtrrvTRKsHxaSDjiA==
age: 1073459
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/286573218.webp?k=05df3eea56c59038cf7fa2ab228ec44c47c66ac49f708bc924c2b24738ea1e61&o=&s=1
18.173.5.36200 OK 65 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/286573218.webp?k=05df3eea56c59038cf7fa2ab228ec44c47c66ac49f708bc924c2b24738ea1e61&o=&s=1
IP 18.173.5.36:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 651317e3637bdb07fead8acac91ff1df
677318c0d98efb6b0fed37c7f2594cedd7458f06
89f50060edeff15d0df29057194bcd3e035944bb5f8b14f64471174ff57a3389
GET /xdata/images/hotel/square600/286573218.webp?k=05df3eea56c59038cf7fa2ab228ec44c47c66ac49f708bc924c2b24738ea1e61&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 65350
server: nginx
date: Mon, 13 Mar 2023 03:19:01 GMT
etag: "f1337903199fbfcca6b1c61f85b97c45d3d93478"
expires: Wed, 12 Apr 2023 03:19:01 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 3b0715ca57820f19665e655f9f44da48.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: ct35tvc3ZpoDZXwb9tQxvEOSyYpbMdRyw73a6rpTZ9ZUr5mdEkyGzg==
age: 1073459
X-Firefox-Spdy: h2
cf.bstatic.com/libs/perimeterx/px.v7.6.9.min.js
18.173.5.36200 OK 211 kB URL HTTP/2 cf.bstatic.com/libs/perimeterx/px.v7.6.9.min.js
IP 18.173.5.36:0
File type ASCII text, with very long lines (65402)
Size 211 kB (211170 bytes)
Hash f732cb424b3329d721aa5fd2634f303c
e404eeb60f49ad40125ba100edd051fc4c53be78
f759779f1d0f029a3a65aa6f55bfb58a6f499fae8532006ce955a1edc63631c3
GET /libs/perimeterx/px.v7.6.9.min.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 22 Mar 2023 06:40:39 GMT
last-modified: Wed, 15 Mar 2023 09:57:35 GMT
etag: W/"6411968f-39901"
expires: Fri, 21 Apr 2023 06:40:39 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3b0715ca57820f19665e655f9f44da48.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: QdX-M8LiTKxcmB-iv8U5n-eFBFfJxi363TvX38rRDzagD66G36M_tg==
age: 283759
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/236967822.webp?k=1465d052cf64137e1976c658cf1d63c249e8409896cd8f58cc088effbe552af6&o=&s=1
18.173.5.36200 OK 124 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/236967822.webp?k=1465d052cf64137e1976c658cf1d63c249e8409896cd8f58cc088effbe552af6&o=&s=1
IP 18.173.5.36:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 124 kB (124272 bytes)
Hash 2867261384ef36b3257b72b797b26bb4
21e4abf06b714b14727e593d7e7cb543cbc1ff9d
ef3d8d9bbb1970944acaa14e0729f4001989221a35d0e91802534a3a8753268a
GET /xdata/images/hotel/square600/236967822.webp?k=1465d052cf64137e1976c658cf1d63c249e8409896cd8f58cc088effbe552af6&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 124272
server: nginx
date: Sat, 11 Mar 2023 04:50:26 GMT
etag: "0e85d8db88322cccb9b7427b7cefe14bb70a9524"
expires: Mon, 10 Apr 2023 04:50:26 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 3b0715ca57820f19665e655f9f44da48.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: FR2ZoOiLFPWWCY-cnONtAEODsIZOVkGQSLC4V3W0zNpKeoHVsfrqjg==
age: 1240774
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/106411975.webp?k=53597242e9727e6e44a618b8edbc222c39b6937ac1bbe76761e24a2d796aed62&o=&s=1
18.173.5.36200 OK 93 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/106411975.webp?k=53597242e9727e6e44a618b8edbc222c39b6937ac1bbe76761e24a2d796aed62&o=&s=1
IP 18.173.5.36:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c61a50dfef740fa62682940dacaad92d
da520b09281a21446f71695fed7700c2d80200c1
8d94001a72b6689fbb4f0bd7e34118fc7557043833acdb730565f5f3f5f4b622
GET /xdata/images/hotel/square600/106411975.webp?k=53597242e9727e6e44a618b8edbc222c39b6937ac1bbe76761e24a2d796aed62&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 46882
server: nginx
date: Thu, 16 Mar 2023 04:41:20 GMT
etag: "ee9b59de334a440398938200890cb70d7160fc8a"
expires: Sat, 15 Apr 2023 04:41:20 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: CpUSjDhXe9F6DWk4nV3T8sMJKZv2J2kTmn-GAHTQmplPYpKKNG8p9w==
age: 809320
X-Firefox-Spdy: h2
www.booking.com/js_tracking?ver=2&aid=7977348&lang=en-us&ref_action=index&stype=1&pid=d6705ee9c223000a&sid=973fbaa4464723c391ea8a8655ac847e&ete=&etg=&etcg=&ets=aaTBNZZJRLESPIDNJDPVBC|1,cCHObdRdJSfdQaRNFOSeDCJWMddKNKNKWe|1,cCHObdRdJSfdQaRNFOSeDCJWMddKNKNKWe|3,cCHObdRdJSfdQaRNFOSeDCJWMddKNKNKWe|6&etgwv=&m=UmFuZG9tSVYkc2RlIyh9Yb8jKz0OWD_Wv9_n3EBgX2109l2ZDLLUsX_54W7MPEll6KKyu7etfJlUiEhHMxLNLpa4BimhxJkucNGrNVHczz_GYRpzyOZUBmvMXBGhKEmPN6sSsl9cHvnxzLChTgQwaKaZeATkpGEuLmKW80jRF7NtJXtBKzMRoUgej8y9EA3Ldvq7emf8YBOr7sK6XBM5Qyj0C24kynfCpjj-sg3tcpyhWP4zB5eVcvCN7tKYzK1BdGWC5iJh5ZxgeEiUvCicwlqhJYGobKhEouwdnfS9F5Y49KTJZu1CFkK9yImA4sE6w3xRSmvbTNwwwVHoLM4J3_m9ecYQDEgq
54.230.111.128200 OK 36 kB URL HTTP/2 www.booking.com/js_tracking?ver=2&aid=7977348&lang=en-us&ref_action=index&stype=1&pid=d6705ee9c223000a&sid=973fbaa4464723c391ea8a8655ac847e&ete=&etg=&etcg=&ets=aaTBNZZJRLESPIDNJDPVBC|1,cCHObdRdJSfdQaRNFOSeDCJWMddKNKNKWe|1,cCHObdRdJSfdQaRNFOSeDCJWMddKNKNKWe|3,cCHObdRdJSfdQaRNFOSeDCJWMddKNKNKWe|6&etgwv=&m=UmFuZG9tSVYkc2RlIyh9Yb8jKz0OWD_Wv9_n3EBgX2109l2ZDLLUsX_54W7MPEll6KKyu7etfJlUiEhHMxLNLpa4BimhxJkucNGrNVHczz_GYRpzyOZUBmvMXBGhKEmPN6sSsl9cHvnxzLChTgQwaKaZeATkpGEuLmKW80jRF7NtJXtBKzMRoUgej8y9EA3Ldvq7emf8YBOr7sK6XBM5Qyj0C24kynfCpjj-sg3tcpyhWP4zB5eVcvCN7tKYzK1BdGWC5iJh5ZxgeEiUvCicwlqhJYGobKhEouwdnfS9F5Y49KTJZu1CFkK9yImA4sE6w3xRSmvbTNwwwVHoLM4J3_m9ecYQDEgq
IP 54.230.111.128:0
Hash 389a0b8a66414d51ce3b0c1e1a149251
588a17488de3cd8941fa727f4a43f980b2d9ebda
0913b8a60b9b2f99589c2a6159cea31145180261228e466948e20e0cd778bfd9
GET /js_tracking?ver=2&aid=7977348&lang=en-us&ref_action=index&stype=1&pid=d6705ee9c223000a&sid=973fbaa4464723c391ea8a8655ac847e&ete=&etg=&etcg=&ets=aaTBNZZJRLESPIDNJDPVBC|1,cCHObdRdJSfdQaRNFOSeDCJWMddKNKNKWe|1,cCHObdRdJSfdQaRNFOSeDCJWMddKNKNKWe|3,cCHObdRdJSfdQaRNFOSeDCJWMddKNKNKWe|6&etgwv=&m=UmFuZG9tSVYkc2RlIyh9Yb8jKz0OWD_Wv9_n3EBgX2109l2ZDLLUsX_54W7MPEll6KKyu7etfJlUiEhHMxLNLpa4BimhxJkucNGrNVHczz_GYRpzyOZUBmvMXBGhKEmPN6sSsl9cHvnxzLChTgQwaKaZeATkpGEuLmKW80jRF7NtJXtBKzMRoUgej8y9EA3Ldvq7emf8YBOr7sK6XBM5Qyj0C24kynfCpjj-sg3tcpyhWP4zB5eVcvCN7tKYzK1BdGWC5iJh5ZxgeEiUvCicwlqhJYGobKhEouwdnfS9F5Y49KTJZu1CFkK9yImA4sE6w3xRSmvbTNwwwVHoLM4J3_m9ecYQDEgq HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=7977348&label=travelcravel
X-Booking-AID: 7977348
X-Booking-CSRF: lC8fZAAAAAA=fQOgoko78kLdneVws8L1_4pf_BfBETIVk0VHMN5r7N0zPlbvjyuWcmO9-MVyD4NzRpiDneE8XIA1r7zogfU2djc-_hAf8XhzjY_4RSbOReUFQVkCd4pFgiw5ZuILgQJLHy93VeShZhikm76nK6qnWrRQJbs5g9K1-YF02h9LWufbu8p3n_kEWVFkq5eXHgHHaLDsV5FwBUkLF6kM
X-Booking-Info: 1670770,1683290,1693900,1694060,1695500,1696800,1698050,1699930,1701060,1703190,1703930,1704180,aaTBNZZJRLESPIDNJDPVBC|1,cCHObECVVDDORMTfFbRZFJGO|1,1699930|2,1694060|1,1696800|1,1693900|2,1703930|4,1694060|7,1693900|1,1703190|1,1703190|2,cCHObECVVDDORMTfFbRZFJGO|2,cCHObECVVDDORMTfFbRZFJGO|4,NAFLeOeJcQEcVOdWNeYZdfdbJae|1,NAFLeOeJaDMNAdGFdICFHUeUdLOLOLMO|1,NAFLeOeJdEdSdGFdICFHUeUdLOLOLMO|1,NAFLeOeJabUZFQbMWKZETTeMcCcCcCC|1,NAFLeOeJVCMcQEcVOdWNeYZaTaTaET|1,NAFLeOeJcLMbFQbMWKZETTeMcCcCcCC|1,NAFLeOeJcLdYZGQDaRNFOSeDdKNKNKWe|1,cCHObTRVEFDEXNBBTZBYSGSYO|5,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|1,cCHObMKdFEVYQGXUGScOTVaAFZKXe|1,cCHObMKdFEVYQGXUGScOTVaAFZKXe|3,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|1,cCHObdRdJJXRDVMDTEJWcFRURURHe|1,cCHObdRdJJXRDVMDTEJWcFRURURHe|2,cCHObVZMYCVKKMadMUPORIPBLAUFRURURHe|1,cCHObVZMYCVKKMadMUPORIPBLAUFRURURHe|4,cCHObVZMYCVKKMadMUPORIPBLAUFRURURHe|6,cCHObdRdJSfdQaRNFOSeDCJWMddKNKNKWe|1,NAFLeOeJcQEcVOdWNeYZdfdbJae|2,NAFLeOeJaDMNAdGFdICFHUeUdLOLOLMO|2,NAFLeOeJdEdSdGFdICFHUeUdLOLOLMO|2,NAFLeOeJabUZFQbMWKZETTeMcCcCcCC|2,NAFLeOeJVCMcQEcVOdWNeYZaTaTaET|2,NAFLeOeJcLMbFQbMWKZETTeMcCcCcCC|2,NAFLeOeJcLdYZGQDaRNFOSeDdKNKNKWe|2,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|1,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|2,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|8,cCHObVZMYCVKKMadMUPORIPBLAUFRURURHe|2,cCHObdRdJSfdQaRNFOSeDCJWMddKNKNKWe|3,cCHObdRdJSfdQaRNFOSeDCJWMddKNKNKWe|6
X-Booking-Client-Info: aaTBNZZJRLESPIDNJDPVBC|1,cCHObdRdJSfdQaRNFOSeDCJWMddKNKNKWe|1,cCHObdRdJSfdQaRNFOSeDCJWMddKNKNKWe|3,cCHObdRdJSfdQaRNFOSeDCJWMddKNKNKWe|6
X-Booking-Label: travelcravel
X-Booking-Language-Code: en-us
X-Booking-Pageview-Id: d6705ee9c223000a
X-Booking-Session-Id: 973fbaa4464723c391ea8a8655ac847e
X-Booking-SiteType-Id: 1
X-Partner-Channel-Id: 2
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: _pxhd=AALGl6fvvx6gpSEaGSN9lpmX-4oNGuY7CSuO2FFiKc434iI7UZZZI7OqGE1fB9RWrtZcwZ4c1KSiPAiJszmfEQ%3D%3D%3A-TsU6UOuVuk0iDQ%2FaZqmh71-LNtwDwtlJAl%2Fg1I3vvR%2FBWpWjjd%2FjYZnObYf%2F8q2Pjlb7dBi7WVR0dnW-C38LuvQQSNdeuwjDdqY-EBb9QM%3D; px_init=80; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLblgO%2Fz4BDP5vPuaAXzge8huTj9tFevErFzYvV7F0PSybTfZGINYRSXSeFc95J9A2dDSnu6Knu9qhufSiVydR5PCtYCEf6s1%2BvFYz3Yo9rKXRGWXs6QhkmZgqFKtn9Mh4EfWPivST%2BQ9BzEtnGdEY%2BT6GF%2BWccaDY%2BZvXxdZ8kKr4%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sat+Mar+25+2023+13%3A30%3A11+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=4f144e15-8173-4163-8484-29721c7e9173&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D7977348%26label%3Dtravelcravel&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1679751011775; bkng_sso_ses=e30; bkng_sso_session=e30; bkng_sso_auth=CAIQARpyb35Exs8C6vJYWz1cDHa1Ta+VDFziK+8q3chcCBEV2hhvUkoKEhcIt+0nxK5qUVwxoJIpdppBmKll8dfguzWAjtFD7jOSKnLICT8Hu8mqjbStoV6aOr0POtrs8N84pyepTLGtaTbZ8/AMqeNxEQwDAKHT; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
server: nginx
date: Sat, 25 Mar 2023 13:29:59 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
strict-transport-security: max-age=604800
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=4b0e5eebecb402e8&e=UmFuZG9tSVYkc2RlIyh9Yea92wm0yRUjnCBymoy8ejKvX1FvQ-bTMXzYpoIXfa0KDDmxx4ONQAk
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jmpzGQztNNXA8J-oeitMuL_dv0a4QrztyQ7eBdRP8_beuvhllothQQ==
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 3c7b6b42fcf62df912361ee549797d74
8744f056699e3aba84dbd3e878c22fefe2cd27e3
985dc4886c261db6c6445b8e48fca48d630da6fefb7e357b2c82841fbb8de58b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 13:30:00 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 17:38:18 GMT
Expires: Thu, 30 Mar 2023 17:38:17 GMT
Etag: "8744f056699e3aba84dbd3e878c22fefe2cd27e3"
Cache-Control: max-age=446296,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ad78187afb5b512-OSL
r-xx.bstatic.com/xdata/images/city/170x136/644293.jpg?k=24c08396bd44343c9dcc78f0df41e114bf7e6aeda3d339101c37e7ba3aa707db&o=
18.173.5.84200 OK 5.4 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/city/170x136/644293.jpg?k=24c08396bd44343c9dcc78f0df41e114bf7e6aeda3d339101c37e7ba3aa707db&o=
IP 18.173.5.84:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3\012- data
Hash 2500c3ceb70ede8cd27aa8104b6ba08d
171e77bfa910c602acd969ad5a2d6240764a01e2
85d4039adc55e4225f4f70866622be1d30a8978738539db37085264adff1c3d2
GET /xdata/images/city/170x136/644293.jpg?k=24c08396bd44343c9dcc78f0df41e114bf7e6aeda3d339101c37e7ba3aa707db&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 5421
server: nginx
date: Fri, 24 Mar 2023 14:35:08 GMT
etag: "9ab61d19e23b8d2b50ccef19340b3308cbb5c0ec"
expires: Sun, 23 Apr 2023 14:35:08 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f214e83505b2f65a27989014c17bb788.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: hGD8onMkRMMoVkYCpDILvNZBJe-cHWkCOa_E1JJKH7-pPjUJMSwvGg==
age: 82492
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/city/170x136/967346.jpg?k=f2fc26f8f1b8d3fbc6731b2818cba0888423bac3183cb1e87d1214045f4d4fd2&o=
18.173.5.84200 OK 6.6 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/city/170x136/967346.jpg?k=f2fc26f8f1b8d3fbc6731b2818cba0888423bac3183cb1e87d1214045f4d4fd2&o=
IP 18.173.5.84:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3\012- data
Hash 17fcb0a6d99d2e2756a338ef69d0009b
5aa111651cf8d7c65cdb1d44e44472e72099b86a
737d9fa072964396bdef9a1ff574b8274a15d45ce7cf5841c95c539bc334dab5
GET /xdata/images/city/170x136/967346.jpg?k=f2fc26f8f1b8d3fbc6731b2818cba0888423bac3183cb1e87d1214045f4d4fd2&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 6646
server: nginx
date: Fri, 24 Mar 2023 14:35:51 GMT
etag: "2eaaddf57782cd4119d7b4019fe857a2e1040673"
expires: Sun, 23 Apr 2023 14:35:51 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f214e83505b2f65a27989014c17bb788.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: JVxxr6NN2RsU78G6IotLUe6XdQ4Q3c04UF5mnM42Enk0V_skVIPSYA==
age: 82449
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/city/170x136/737551.jpg?k=ad4ef19a2b979ef794b56d1901e6937b874b4726a4085d8ddbe795f5c6bfed73&o=
18.173.5.84200 OK 6.2 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/city/170x136/737551.jpg?k=ad4ef19a2b979ef794b56d1901e6937b874b4726a4085d8ddbe795f5c6bfed73&o=
IP 18.173.5.84:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3\012- data
Hash 033e02e916d5f3791fb0edcde629ef86
d5cc83fc9698814ff92bf752ac0cbb004439f614
1815ead7ea4f562bb51ec2e39ee38db0e120120d1f8b98096dc60583c493e4d4
GET /xdata/images/city/170x136/737551.jpg?k=ad4ef19a2b979ef794b56d1901e6937b874b4726a4085d8ddbe795f5c6bfed73&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 6204
server: nginx
date: Fri, 24 Mar 2023 14:35:08 GMT
etag: "aae53963841f88dc78864b1f5e4d491d66f53d94"
expires: Mon, 08 May 2023 14:35:08 GMT
cache-control: max-age=3888000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f214e83505b2f65a27989014c17bb788.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: _U5X4WN5_ujJpi87laYhW1OjgFdlX7VjW4Ysu7NfHnuofOJ9udZung==
age: 82492
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/279333721.webp?k=8b632db276149b1ce327e8bfea4ac83e15d7ffc4f2b343a30af4bdd49197813e&o=&s=1
18.173.5.36200 OK 925 B URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/279333721.webp?k=8b632db276149b1ce327e8bfea4ac83e15d7ffc4f2b343a30af4bdd49197813e&o=&s=1
IP 18.173.5.36:0
File type JSON data\012- , ASCII text, with very long lines (924)
Hash 4a335b07fff05cef900b75d3f528044a
ffe59a08c459a00dd8b33d622f51be9ff3119066
3a5961ae9f088615a9a49b4ef8ed32a9ec15535c9e3600759c3faf9d1882193a
GET /xdata/images/hotel/square600/279333721.webp?k=8b632db276149b1ce327e8bfea4ac83e15d7ffc4f2b343a30af4bdd49197813e&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 51934
server: nginx
date: Wed, 22 Mar 2023 02:22:54 GMT
etag: "870a500038fa8c86e3ea086290b6823c2e849017"
expires: Fri, 21 Apr 2023 02:22:54 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 3b0715ca57820f19665e655f9f44da48.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: ClXgBN7dMwijOgBRmLJweax6JSJ2ueJv8tDqDdPzItU9M9aYw4xqbQ==
age: 299226
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/city/170x136/644297.jpg?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o=
18.173.5.36200 OK 7.1 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/city/170x136/644297.jpg?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o=
IP 18.173.5.36:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3\012- data
Hash bcabc853805644c852b5e28ceb4da21f
85e9e9be45cd209187f883151d869f07dce4a016
0e9deb49e94a0a7b46e1300d00ff66abc515bf83f77c53d322457e1cce9d3d5c
GET /xdata/images/city/170x136/644297.jpg?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 7131
server: nginx
date: Fri, 24 Mar 2023 14:35:24 GMT
etag: "ee7c9225f83f6e22a704baa5c8a2d70242b275a6"
expires: Sun, 23 Apr 2023 14:35:24 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 d08f4dcd72782736455af47335a765a0.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: f_jFZTiNT-YMfQJWbaJBdGwKXZAf5-8Q1kE_gYXtOzVQ3VHek9NYLg==
age: 82476
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/region/170x136/48107.jpg?k=bc7ff9cf4d26882ff93f92643455885a88b9b0ae37b9ed109687ad0890af2dfd&o=
18.173.5.36200 OK 4.8 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/region/170x136/48107.jpg?k=bc7ff9cf4d26882ff93f92643455885a88b9b0ae37b9ed109687ad0890af2dfd&o=
IP 18.173.5.36:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3\012- data
Hash 618f36c6dca24c1e13f65743924ad4d6
1cdfec657ca8b3ce961107de24a0a3c467cfc161
fc9631742c03f76f2df1dc803bff39e7c53ae024541dcfbed7b8c05f45dbf180
GET /xdata/images/region/170x136/48107.jpg?k=bc7ff9cf4d26882ff93f92643455885a88b9b0ae37b9ed109687ad0890af2dfd&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 4829
server: nginx
date: Sat, 25 Mar 2023 00:52:08 GMT
etag: "ef11e550e48aba95a95309520edc62633b3f412a"
expires: Tue, 09 May 2023 00:52:08 GMT
cache-control: max-age=3888000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 d08f4dcd72782736455af47335a765a0.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: LsBL3mRD2hu0tUYQWmX6om57wXgrkf0gMXTFCyGXmbvg_EAZ75rEVg==
age: 45472
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/city/170x136/930853.jpg?k=85cc355550cdcf1ca77d1a7a635f4294e09dee696051866597a63fd7edd7af5a&o=
18.173.5.36200 OK 7.0 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/city/170x136/930853.jpg?k=85cc355550cdcf1ca77d1a7a635f4294e09dee696051866597a63fd7edd7af5a&o=
IP 18.173.5.36:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3\012- data
Hash a74c25791bb6960282adb0b0bfac4614
5d6cb72e147c07299ae8aa66d6b7d8c8f1e1414b
a8d86240545c19cd5081d6a4dcd1c8ab8138fd88154bd9c281914216444ead84
GET /xdata/images/city/170x136/930853.jpg?k=85cc355550cdcf1ca77d1a7a635f4294e09dee696051866597a63fd7edd7af5a&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 7004
server: nginx
date: Fri, 24 Mar 2023 15:52:25 GMT
etag: "5f6142d47580baeef893983eac4299303f4f5a1e"
expires: Sun, 23 Apr 2023 15:52:25 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 d08f4dcd72782736455af47335a765a0.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: qcwYibSxF3FnbLIMVMvYyk7QfraFfih0tkUCwFR2v_YkDT47uXtOng==
age: 77855
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/city/170x136/954959.jpg?k=37410091e9d0e74278ef7710d594a8ef5882decaf47e8f9a7ca30f9e85bbab75&o=
18.173.5.36200 OK 3.8 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/city/170x136/954959.jpg?k=37410091e9d0e74278ef7710d594a8ef5882decaf47e8f9a7ca30f9e85bbab75&o=
IP 18.173.5.36:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3\012- data
Hash e4ebb57e831518d499a91657b0e1aec6
d232947d401ce3b2aa52c6a71d626fdcc5316c7b
9a5f2fe3143566a8aaf079959b5ee63c55b4b916fe1f3791f4b46f6ef65dcbfe
GET /xdata/images/city/170x136/954959.jpg?k=37410091e9d0e74278ef7710d594a8ef5882decaf47e8f9a7ca30f9e85bbab75&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 3812
server: nginx
date: Fri, 24 Mar 2023 15:46:12 GMT
etag: "659234fd6606d3f8f1ee701fb40fd80636f76c32"
expires: Sun, 23 Apr 2023 15:46:12 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 d08f4dcd72782736455af47335a765a0.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: IY06DJk_XspoPvoX-8Izli0oTBE7mYZxI7P08MyVDSXcqpq--VNETA==
age: 78228
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/city/170x136/644310.jpg?k=472fefd4c3c0aef36deb16adb91c965923d8b1078ab29056802f95aead0586bf&o=
18.173.5.36200 OK 6.5 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/city/170x136/644310.jpg?k=472fefd4c3c0aef36deb16adb91c965923d8b1078ab29056802f95aead0586bf&o=
IP 18.173.5.36:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3\012- data
Hash d8fc03a58b76828aa4d541100bd52964
ec876001abc6b7de78aada1dc0460f898269aa1e
08d047a4f12afcccef76d06b51501b8cbec55e66f828a08bedb06434b7249502
GET /xdata/images/city/170x136/644310.jpg?k=472fefd4c3c0aef36deb16adb91c965923d8b1078ab29056802f95aead0586bf&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 6544
server: nginx
date: Fri, 24 Mar 2023 14:35:24 GMT
etag: "df14955ce900aec0b8af485d7ed4438328d46f97"
expires: Mon, 08 May 2023 14:35:24 GMT
cache-control: max-age=3888000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 d08f4dcd72782736455af47335a765a0.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: EVPrGMwsPgqg5lL5YZb_GIfZTi2ixydGPLJLKPyqHB4R8KoFpT1IzQ==
age: 82476
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/city/170x136/671694.jpg?k=cd1e3603afe4edd09f829675efb1cdc9a5925bed25a642bfc4d909602c231624&o=
18.173.5.36200 OK 6.3 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/city/170x136/671694.jpg?k=cd1e3603afe4edd09f829675efb1cdc9a5925bed25a642bfc4d909602c231624&o=
IP 18.173.5.36:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3\012- data
Hash 566ef663c31a7da2e19277c795aab0fa
bcbc6af34645cb84bec41718185ab14768d36a31
207cf1ee36b9118a68d6b33bbef91c4eb9bd28edcabae628828b20a375f409c9
GET /xdata/images/city/170x136/671694.jpg?k=cd1e3603afe4edd09f829675efb1cdc9a5925bed25a642bfc4d909602c231624&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 6341
server: nginx
date: Fri, 24 Mar 2023 14:35:08 GMT
etag: "c86d357cdc59ad578a574e264e8b1f7dbcbf2f2c"
expires: Sun, 23 Apr 2023 14:35:08 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 d08f4dcd72782736455af47335a765a0.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: f9FVdI_NYkmXaceTOiNF4CNBP1Vt_ggwWJnbwFV5Kk3DRvCizzCIwg==
age: 82492
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/city/170x136/740935.jpg?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o=
18.173.5.36200 OK 5.5 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/city/170x136/740935.jpg?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o=
IP 18.173.5.36:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3\012- data
Hash afd71fd06632ac473b4c251dffc12f63
e9d7fc8cf381fa446a6c32178db4de8c5eaf7262
c9a8fd71cb76919e8b749e4b4055810bb6f6ab84f1171d06bdd70b02893c95cb
GET /xdata/images/city/170x136/740935.jpg?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 5506
server: nginx
date: Fri, 24 Mar 2023 14:35:24 GMT
etag: "d9b6ad8405fbc1cbb66a4b6f9a0149e87fa6dda4"
expires: Sun, 23 Apr 2023 14:35:24 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 d08f4dcd72782736455af47335a765a0.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: RzR_yEw939nd4k99fWuq56MnDZs7Y-LlgFTPqgdInivjw-oL4GR5Pw==
age: 82476
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/534.f6ac9b19.chunk.css
18.173.5.36200 OK 25 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/534.f6ac9b19.chunk.css
IP 18.173.5.36:0
File type ASCII text, with very long lines (1896)
Hash 8f9448974d3c8b3f27984afc71fd2a51
06080b22a18d521f2627e81bb880de0149c20e56
1331f2f67edf9cc98a4caaa02966138aba75afb1b693792126d95f81ae2b72bb
GET /psb/capla/static/css/534.f6ac9b19.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Mon, 06 Mar 2023 14:01:16 GMT
etag: W/"284305d18ed925580025c383621fdd3d"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 03 Mar 2023 14:07:00 GMT
x-amz-expiration: expiry-date="Sat, 01 Jul 2023 14:07:00 GMT", rule-id=""
expires: Wed, 05 Apr 2023 14:01:16 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: YZPjxU6cRp8kTM5VMb1dBk5p1Kw87-2b-NTTCCW-m1U61zmSQeuHLg==
age: 1639721
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/vendors.3e3b9629.js
18.173.5.36200 OK 110 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/vendors.3e3b9629.js
IP 18.173.5.36:0
File type ASCII text, with very long lines (65462)
Size 110 kB (110385 bytes)
Hash 31d009d5261485f43db6e85f58b79ced
0bf626633aa930691e2f3d04f50c633f3dfa2fda
7b7ee5dba9b02811d3a099bb8f84c33613fb2d0776bff5312fd62b8736893775
GET /psb/capla/static/js/vendors.3e3b9629.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 24 Mar 2023 15:45:19 GMT
etag: W/"bd198a8adf4f323beafe99679cd52967"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 24 Mar 2023 15:35:08 GMT
x-amz-expiration: expiry-date="Sat, 22 Jul 2023 15:35:08 GMT", rule-id=""
expires: Sun, 23 Apr 2023 15:45:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3b0715ca57820f19665e655f9f44da48.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: mDOsMvk-_cZthXtu79nYOYrCG7TVncWZFRiLw8p_9lb2gTFzH1V2ZA==
age: 78278
X-Firefox-Spdy: h2
www.booking.com/js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=d6705ee9c223000a&ete=&etg=&etcg=&ets=&etgwv=js_wcu_trip_type_based_destination_number_of_types|4
54.230.111.128200 OK 35 B URL HTTP/2 www.booking.com/js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=d6705ee9c223000a&ete=&etg=&etcg=&ets=&etgwv=js_wcu_trip_type_based_destination_number_of_types|4
IP 54.230.111.128:0
Hash 79a611524d7c43a354c589264cc2376e
2e25649d9a8a208302be0502b47a0e44b07bc7c1
c7a9af81f3467d3c95760df18d0853bda8c191f612fb2e8b2b5c4ed941fbaf1a
GET /js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=d6705ee9c223000a&ete=&etg=&etcg=&ets=&etgwv=js_wcu_trip_type_based_destination_number_of_types|4 HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=7977348&label=travelcravel
X-Booking-Info:
X-Booking-Client-Info:
X-Booking-Pageview-Id: d6705ee9c223000a
X-Booking-SiteType-Id: 1
X-Booking-Language-Code: en-us
X-Booking-AID: 7977348
X-Booking-Session-Id: fede55662ac9a2a819f721d822d6cc59
X-Booking-ET-Serialized-State: EyWhX6gqZ0APx25VtFZGeB0Et13x31JWfCjvVwswfe_Vg8XHjsFu1kE66NnWpfeSB
Connection: keep-alive
Cookie: _pxhd=AALGl6fvvx6gpSEaGSN9lpmX-4oNGuY7CSuO2FFiKc434iI7UZZZI7OqGE1fB9RWrtZcwZ4c1KSiPAiJszmfEQ%3D%3D%3A-TsU6UOuVuk0iDQ%2FaZqmh71-LNtwDwtlJAl%2Fg1I3vvR%2FBWpWjjd%2FjYZnObYf%2F8q2Pjlb7dBi7WVR0dnW-C38LuvQQSNdeuwjDdqY-EBb9QM%3D; px_init=80; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPefdem2E0MF90T6hQ0AMPf9SmnH7pjKqMq9ThLEPrtVu2jyazD6iuxhDYvQf5K03ERmxUTngPbMOYSbRGUljlKKPtabzlcle41ePXIeh3PAzVJkjxuOzX2gdLsny%2B1P46MhRXc%2FXcVq5lD0Hkg8Q4AcD9Avr6XC%2F7bY%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sat+Mar+25+2023+13%3A30%3A11+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=4f144e15-8173-4163-8484-29721c7e9173&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D7977348%26label%3Dtravelcravel&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1679751011775; bkng_sso_ses=e30; bkng_sso_session=e30; bkng_sso_auth=CAIQARpyb35Exs8C6vJYWz1cDHa1Ta+VDFziK+8q3chcCBEV2hhvUkoKEhcIt+0nxK5qUVwxoJIpdppBmKll8dfguzWAjtFD7jOSKnLICT8Hu8mqjbStoV6aOr0POtrs8N84pyepTLGtaTbZ8/AMqeNxEQwDAKHT; BJS=-; _px3=b3c4d5bdc1fa30106a165dc1eddb036ec60db8077cf32b0aa4637e3586a72954:pR/XfkJpT06BnRtxFyfj+gSzDNhDfzo8bGMbhB3jFBi37mbmJIVlNtqCmKumqKcjX5t/3q9n6OZLcTIj5s+HHA==:1000:6iNPNYKkA2kM6DbrirQY5V5YpH2/lcWCaFKiib5BjDTizHLSITmZUH/c1j7JjQztmecG0qB1pbXNJllQfQawnAAHWDm8EzczglhiOSsWhTyNxNgPBOT8WsN33YDX+ErgoDLM3cx/u0btLSld+41c2Gm2M7VvpBoYz0qLEaeKaukfcmmLPrMgOx/SzYgjmZCwe8r2MHYANtONOfih5T7yAw==; pxcts=245fcf01-cb11-11ed-9f5e-585052655a58; _pxvid=23c1fc48-cb11-11ed-a49c-48434e74564e; _pxff_ddtc=1; _pxde=fc1e1b063ccf1a3d71a8755b52f8aba7baecab1edcc648496f4af03c24bdf45b:eyJ0aW1lc3RhbXAiOjE2Nzk3NTEwMDAzNzEsImZfa2IiOjAsImlwY19pZCI6W119
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 35
server: nginx
date: Sat, 25 Mar 2023 13:30:00 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
strict-transport-security: max-age=604800
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=4a4f5eece0e0004c&e=UmFuZG9tSVYkc2RlIyh9Yea92wm0yRUjnCBymoy8ejL6k9Fso_xNcjmFfjRwsnQgI9ra82US9R4
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 50M9rmY-SWG0fEU60Jct_9XfCjJ29LuBqSxhqfvY8UhqiHp-TGekig==
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/13125860.webp?k=e148feeb802ac3d28d1391dad9e4cf1e12d9231f897d0b53ca067bde8a9d3355&o=&s=1
18.173.5.84200 OK 60 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/13125860.webp?k=e148feeb802ac3d28d1391dad9e4cf1e12d9231f897d0b53ca067bde8a9d3355&o=&s=1
IP 18.173.5.84:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0329fb19001ce1f08a5c54a4f0e14ef1
3746e16117b5165f4eb2075a717a5c3821705c92
e71dc53498cb3d2e1271eeefdcc4e24f959b73e24b24809cfc83dcdd0a12de08
GET /xdata/images/hotel/square600/13125860.webp?k=e148feeb802ac3d28d1391dad9e4cf1e12d9231f897d0b53ca067bde8a9d3355&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 60384
server: nginx
date: Thu, 09 Mar 2023 02:10:25 GMT
etag: "8e0a70244d5e9a4427dfbb840a9e6e4a3bbd4746"
expires: Sat, 08 Apr 2023 02:10:25 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f214e83505b2f65a27989014c17bb788.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: 0Q4dHzXxPpQgo8FsJpCbXycsaW1_eDQj9VXOqdS25rDrOND8euGCbw==
age: 1423175
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/87428762.webp?k=9a065fcd92168145d8c8358701662c76793535597b678efc8f6921c8e3c188e6&o=&s=1
18.173.5.84200 OK 48 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/87428762.webp?k=9a065fcd92168145d8c8358701662c76793535597b678efc8f6921c8e3c188e6&o=&s=1
IP 18.173.5.84:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ca4a151bce3aae248256f42fb3571039
7b604ef0875745900683208d6d5d3ec446c80c52
17961e2dc69e730f0aca9f0e96057a87990141d415dceee221a37e29aab7bc8e
GET /xdata/images/hotel/square600/87428762.webp?k=9a065fcd92168145d8c8358701662c76793535597b678efc8f6921c8e3c188e6&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 48402
server: nginx
date: Fri, 24 Feb 2023 01:11:45 GMT
etag: "b6fe079cde5c4cb27b55fcc5cb4d645395dd04ca"
expires: Sun, 26 Mar 2023 01:11:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f214e83505b2f65a27989014c17bb788.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: 4BEAbLeOx-qC2_7gB0fOtG9uJim4dbdgBwmXcoTPQnHrM-wV-sxFVQ==
age: 2549895
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/29466558.webp?k=fa323cf3e030ae6b41c8b475fe2853ae4e9e38148501d68dd5b915905dcea664&o=&s=1
18.173.5.84200 OK 57 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/29466558.webp?k=fa323cf3e030ae6b41c8b475fe2853ae4e9e38148501d68dd5b915905dcea664&o=&s=1
IP 18.173.5.84:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a326cddd2766fcf01137137afa27b7ed
bb6c0c7df182252e90d865dc15f7d8a7d603c273
d01e06c160e130aff36646885bee3f271eddb260094d872bc533cf49b010d84c
GET /xdata/images/hotel/square600/29466558.webp?k=fa323cf3e030ae6b41c8b475fe2853ae4e9e38148501d68dd5b915905dcea664&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 56656
server: nginx
date: Wed, 22 Mar 2023 01:21:58 GMT
etag: "fcd64eb9628d617d78fa5dcb563cf885e3f785e7"
expires: Fri, 21 Apr 2023 01:21:58 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f214e83505b2f65a27989014c17bb788.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: blllVAU3hYY4ltJnjw0zskRm-dZZYfJMXu-Vmf6aAH7QGM83grmTFw==
age: 302882
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/420377357.webp?k=73f8c029827076805ee781cdf818bb5e5e9b963227d74e4ebe071f3564ae4423&o=&s=1
18.173.5.84200 OK 43 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/420377357.webp?k=73f8c029827076805ee781cdf818bb5e5e9b963227d74e4ebe071f3564ae4423&o=&s=1
IP 18.173.5.84:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 787372c71c70c79ef1a22a1ca9012286
a7d15290c2b3f9794692b0de558801c93aa3d820
79ee90e4aeb9b89e1df19b6dacb81f1174c70fe04f1ecb73c61a3279f43d2581
GET /xdata/images/hotel/square600/420377357.webp?k=73f8c029827076805ee781cdf818bb5e5e9b963227d74e4ebe071f3564ae4423&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 43348
server: nginx
date: Thu, 23 Mar 2023 11:42:33 GMT
etag: "052ffc7f825bc166cf56b61652af7431d07b6772"
expires: Sat, 22 Apr 2023 11:42:33 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f214e83505b2f65a27989014c17bb788.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: VN2yGZCrNPy99c7Vvxaxk2hFVz_Cfub8pWn6tw0fzEVTPpNQZxePNg==
age: 179247
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/searchbox_cloudfront_sd/9559ce1436fc4edda283895e133a5ab0397c1ac8.js
18.173.5.36200 OK 99 kB URL HTTP/2 cf.bstatic.com/static/js/searchbox_cloudfront_sd/9559ce1436fc4edda283895e133a5ab0397c1ac8.js
IP 18.173.5.36:0
File type Unicode text, UTF-8 text, with very long lines (65528), with no line terminators
Hash 793a5fe93bcaf0681ad742128d3afe6a
4b71c42dcc9868d59d68741439d9ae6e231a4f49
26a9330b21472c35868932549f3f37161516d2798029be8f29f5452585137d50
GET /static/js/searchbox_cloudfront_sd/9559ce1436fc4edda283895e133a5ab0397c1ac8.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 17 Mar 2023 06:04:01 GMT
last-modified: Wed, 22 Feb 2023 14:34:30 GMT
etag: W/"63f627f6-39be8"
expires: Sun, 16 Apr 2023 06:04:01 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3b0715ca57820f19665e655f9f44da48.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: UYeth6TEOguyba1Pjq_gUh3B3aEgip-XpBut2JGXSKLA5z9N10sJ8w==
age: 717954
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/270323047.webp?k=ace18ab936560dac1e01f7d0f4b44206d354a8683e124c62f3f10c25cede9bd2&o=&s=1
18.173.5.84200 OK 22 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/270323047.webp?k=ace18ab936560dac1e01f7d0f4b44206d354a8683e124c62f3f10c25cede9bd2&o=&s=1
IP 18.173.5.84:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b099da28fae15a46bbfbd89b799f121c
01b26955d4c685e293e9e97d4a3fe51a19ee3c13
9a61b0c464b3593f2ed9c929ec7bc23697a125de4be4dd282aa9578e2d2162c0
GET /xdata/images/hotel/square600/270323047.webp?k=ace18ab936560dac1e01f7d0f4b44206d354a8683e124c62f3f10c25cede9bd2&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 22282
server: nginx
date: Tue, 14 Mar 2023 14:28:22 GMT
etag: "340a014c21bab82dc24d1a7cab21e7758587e38f"
expires: Thu, 13 Apr 2023 14:28:22 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f214e83505b2f65a27989014c17bb788.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: TYLa88Ty8KoD0K4KUQnHVgglyyNhQGFZmucuF-xj5jvbj0Gn4lhRug==
age: 946898
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/74065680.webp?k=892944ae3b207b552dc2de29bb3354d300e420630efe85ede890a9ec4c48f89a&o=&s=1
18.173.5.84200 OK 60 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/74065680.webp?k=892944ae3b207b552dc2de29bb3354d300e420630efe85ede890a9ec4c48f89a&o=&s=1
IP 18.173.5.84:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 23c80066c6edca295dcad549a18a8913
e72c7fd475b3ab8db132d2f3d10ada1e816e95d4
85386c12c2dae7d2f2acfb8b9c6ca0dfa35e6df9e69c1dabc8105998d5a94bf8
GET /xdata/images/hotel/square600/74065680.webp?k=892944ae3b207b552dc2de29bb3354d300e420630efe85ede890a9ec4c48f89a&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 59694
server: nginx
date: Tue, 07 Mar 2023 07:11:17 GMT
etag: "99152df2bdf6303972477ec87a1a45d4f485c400"
expires: Thu, 06 Apr 2023 07:11:17 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f214e83505b2f65a27989014c17bb788.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: mE0bRGZW3YodHzi1hsDgymNGBx2yuSs287KJhq7xeWKfIo9wShO-WA==
age: 1577923
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/main_cloudfront_sd/229dbc358eafa485d968f66760dd74858f8e7790.js
18.173.5.36200 OK 176 kB URL HTTP/2 cf.bstatic.com/static/js/main_cloudfront_sd/229dbc358eafa485d968f66760dd74858f8e7790.js
IP 18.173.5.36:0
Size 176 kB (176032 bytes)
Hash f2664bdb02aee01c3905cb0c4b0a91f2
dc005cd5d56d3bbdcae3ce80d0c57348e763939b
0af12cced12c09db403adf37f5feb687839bc554d9138bcab1fc45b873d0ea51
GET /static/js/main_cloudfront_sd/229dbc358eafa485d968f66760dd74858f8e7790.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 23 Mar 2023 13:47:35 GMT
last-modified: Thu, 23 Mar 2023 12:47:04 GMT
etag: W/"641c4a48-873f6"
expires: Sat, 22 Apr 2023 13:47:35 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3b0715ca57820f19665e655f9f44da48.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: v4UrBLJdVM8NZH57wypbiS2PYzfuF6zEl-8F_jd1XauoW0qiXy-mRw==
age: 171740
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/client.c01fc746.js
18.173.5.36200 OK 28 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/client.c01fc746.js
IP 18.173.5.36:0
File type ASCII text, with very long lines (36098)
Hash 95c5c0effe1e3967d9dfdb1ef23efad3
68d112d8366f8f42bdd0ba9f33fa729c753fe303
ef715f7dc6d45bc69f7f90f98069bde7758a3b986420041c7a0eeb9d09ba3d88
GET /psb/capla/static/js/client.c01fc746.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 24 Mar 2023 15:45:19 GMT
etag: W/"ece79631c3fa922515c00d6f75c01ec6"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 24 Mar 2023 15:35:08 GMT
x-amz-expiration: expiry-date="Sat, 22 Jul 2023 15:35:08 GMT", rule-id=""
expires: Sun, 23 Apr 2023 15:45:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3b0715ca57820f19665e655f9f44da48.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: ojjve1ARKoxxQ_SPBD4Rg8zpIk_vo4TCCXs6t_sVww5aFn6B_2rLZg==
age: 78278
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040786.jpg?k=7af39f6b3d8c0b3e171d876343c3c26e5cc26a877ed41976a716da57c4dc3ef1&o=
18.173.5.84200 OK 7.8 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040786.jpg?k=7af39f6b3d8c0b3e171d876343c3c26e5cc26a877ed41976a716da57c4dc3ef1&o=
IP 18.173.5.84:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash c598c4dcb3727ca8f99b993060427919
b3640d1c65c21563744a2ac2d55fbe10058c3079
2066310b6a21919e4d7facfff9d2896e7c8630e504942e26f6d63db076cfe9df
GET /xdata/images/xphoto/300x240/140040786.jpg?k=7af39f6b3d8c0b3e171d876343c3c26e5cc26a877ed41976a716da57c4dc3ef1&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 7820
server: nginx
date: Sat, 11 Mar 2023 02:15:28 GMT
etag: "8d17ecd41d52f52e1e1492e9838306a163a21039"
expires: Tue, 25 Apr 2023 02:15:28 GMT
cache-control: max-age=3888000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f214e83505b2f65a27989014c17bb788.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: eExwt7SUkowctuMh7IWJKASclgWlcqKXHFqO0a9CciI8ZNS6CVzhzg==
age: 1250072
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040692.jpg?k=525a82bc4ff232862f0214df25e19b94535b792955e8f10b3ce2bd151aac0af0&o=
18.173.5.84200 OK 12 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040692.jpg?k=525a82bc4ff232862f0214df25e19b94535b792955e8f10b3ce2bd151aac0af0&o=
IP 18.173.5.84:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash ffed4c1c9d2ee092ed991df22804e4b9
6a714c2ef5a865bf30de8a7c1d297d9e57534eca
d0f2672a80a9a2a11387d6ef3910d5c75747463b877e45971ec7426629734718
GET /xdata/images/xphoto/300x240/140040692.jpg?k=525a82bc4ff232862f0214df25e19b94535b792955e8f10b3ce2bd151aac0af0&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 11983
server: nginx
date: Wed, 08 Mar 2023 00:25:55 GMT
etag: "9ecb5a58db8f62e198e75ff2fea54ccd4a89a6a1"
expires: Fri, 07 Apr 2023 00:25:55 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f214e83505b2f65a27989014c17bb788.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: -brPJyySluKj9wefE1OCtuaFd2DTUAiuv_kQ4wgvqiuS8RYENenXFA==
age: 1515845
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140050621.jpg?k=f744dfb0b4f12cd94190d738a75eb6a0d5d58e5a971496bb789391c05a60bdba&o=
18.173.5.84200 OK 17 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140050621.jpg?k=f744dfb0b4f12cd94190d738a75eb6a0d5d58e5a971496bb789391c05a60bdba&o=
IP 18.173.5.84:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 0f61c800a3d9b0841e0c0760099b6bd8
e27b3b3eb5fbe350822cfa78f207c0608c47eecb
340612fdff510f6a24f8bb4e624959f6dad356aead3d5f2abcc2ccbe230d0d25
GET /xdata/images/xphoto/300x240/140050621.jpg?k=f744dfb0b4f12cd94190d738a75eb6a0d5d58e5a971496bb789391c05a60bdba&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 17441
server: nginx
date: Tue, 14 Mar 2023 07:22:38 GMT
etag: "9968332f9ec0ddb5eb32e6f279924849ff023618"
expires: Thu, 13 Apr 2023 07:22:38 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f214e83505b2f65a27989014c17bb788.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: 7NjbyP6IB56wPMox-uu9L1H-9N4kXXeaT3FGXCthIDb6Lm8U4r2Jbg==
age: 972442
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040791.jpg?k=bb3322bd62efa3aead56ece07d9f6338c98de541b10f919455973354ddcfdf76&o=
18.173.5.84200 OK 8.8 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040791.jpg?k=bb3322bd62efa3aead56ece07d9f6338c98de541b10f919455973354ddcfdf76&o=
IP 18.173.5.84:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 71501aba33491a4430453715c76dc4b2
85fc9f218b6b721bde7014133bb212e61f28b83c
9ff4140b3f0f4a9b6e8259f033efdb7f9819fbfb1069116c53ab588c13d4bf42
GET /xdata/images/xphoto/300x240/140040791.jpg?k=bb3322bd62efa3aead56ece07d9f6338c98de541b10f919455973354ddcfdf76&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 8799
server: nginx
date: Tue, 21 Mar 2023 01:38:17 GMT
etag: "39fe028a21dfd0ecf6523a0da02ab52f0ea9be7f"
expires: Thu, 20 Apr 2023 01:38:17 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f214e83505b2f65a27989014c17bb788.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: i7WUR1Jrjg4ICk6_yrjCB4oJx3iU8WYJcjiBItl5A40Puo4T_GnkaA==
age: 388303
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040762.jpg?k=7a9446b459690b60fba2d74ecd856b1c34b896ba3f9e231eff82abbfc8956b15&o=
18.173.5.84200 OK 17 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040762.jpg?k=7a9446b459690b60fba2d74ecd856b1c34b896ba3f9e231eff82abbfc8956b15&o=
IP 18.173.5.84:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 65e38b40c58827e57fd0cff25009e4ba
8460e679a4da3541a3e7a17aecde2238da826c1d
df53b855667fd3c922bc4c5a960890b5497a7f890c9fb216adaa94fbaf40ac0c
GET /xdata/images/xphoto/300x240/140040762.jpg?k=7a9446b459690b60fba2d74ecd856b1c34b896ba3f9e231eff82abbfc8956b15&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 16779
server: nginx
date: Sat, 25 Feb 2023 11:36:10 GMT
etag: "c3d81db07cc7c2b8ba44bc0368b0620869c99185"
expires: Mon, 27 Mar 2023 11:36:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f214e83505b2f65a27989014c17bb788.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: h7V_ld4mzdPRMJkBG245E3U_bo3V6PH6dGOblBRvOqAPnQYd2sRbqA==
age: 2426030
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040491.jpg?k=ad6e6050b93fe65224a29659793533d6562b424ee35882cb392c115d58ea1354&o=
18.173.5.84200 OK 7.0 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040491.jpg?k=ad6e6050b93fe65224a29659793533d6562b424ee35882cb392c115d58ea1354&o=
IP 18.173.5.84:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash da527d4ac8f4cb107e6a40c480d70d14
97fc6a9c91bb910fcf92b0e5dc4ec079385a0cc9
d4a7526e92a83ee550c888d6a3677b3c694393b979b442cd4c1f4a9d4def9759
GET /xdata/images/xphoto/300x240/140040491.jpg?k=ad6e6050b93fe65224a29659793533d6562b424ee35882cb392c115d58ea1354&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 6982
server: nginx
date: Sat, 18 Mar 2023 07:25:17 GMT
etag: "ee1b63a7e771651beb6701de39a1e1bbebba104e"
expires: Mon, 17 Apr 2023 07:25:17 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f214e83505b2f65a27989014c17bb788.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: J6vweKTdhoP2gE8Lk_Syc58emXdIf2wLrRQPWmDKdUr0MVSWLAqXJA==
age: 626683
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040870.jpg?k=b3e16242c2f01e3493f03bf8b863b6561f8c52b43fa48569d7446d94874bd080&o=
18.173.5.84200 OK 12 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040870.jpg?k=b3e16242c2f01e3493f03bf8b863b6561f8c52b43fa48569d7446d94874bd080&o=
IP 18.173.5.84:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 53edea1fadbd43623cbaf3da9da24419
a034eab2a360a9b2a94b4bbb2ec999bd27524f17
a9593ed4bdec054997e16c6ede0ceb76dc652041fe6378f8320c571ac460c96b
GET /xdata/images/xphoto/300x240/140040870.jpg?k=b3e16242c2f01e3493f03bf8b863b6561f8c52b43fa48569d7446d94874bd080&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 11607
server: nginx
date: Thu, 09 Mar 2023 04:35:41 GMT
etag: "9aa32863c01a6d9d7e9cf91edf3ac766916977f6"
expires: Sat, 08 Apr 2023 04:35:41 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f214e83505b2f65a27989014c17bb788.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: dgXkjmB0tf3t_WRn-laFuKJExKoObbq5FaOH5_PF1uaun65hMumfPA==
age: 1414459
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040599.jpg?k=574957ec36a2177a4b46f64993121848e62e61ced3932d1fdb6504f95652b439&o=
18.173.5.84200 OK 13 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040599.jpg?k=574957ec36a2177a4b46f64993121848e62e61ced3932d1fdb6504f95652b439&o=
IP 18.173.5.84:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash d3809e03fb1ae8fcef94ef19dca6228d
b97f714288003f6b3834ea9bc2a961ced5b89606
a000cfd08bff2b7ba4397d160bc02de6d5283e18bb06c8b3b018f41460108000
GET /xdata/images/xphoto/300x240/140040599.jpg?k=574957ec36a2177a4b46f64993121848e62e61ced3932d1fdb6504f95652b439&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 12804
server: nginx
date: Sun, 19 Mar 2023 05:45:28 GMT
etag: "76b227dcd9b81bf2d6a4ea220eb395300fb55995"
expires: Tue, 18 Apr 2023 05:45:28 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f214e83505b2f65a27989014c17bb788.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: YD_Fy2uC29XtIIm2RbIMi4w6ewNT9wJE_BWSGncHx6oZgdq8KhFiAQ==
age: 546272
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140050289.jpg?k=38a9f0bcadf1da09016399bec85f5d5b1ec53a8c24ae929da523e09c47db429b&o=
18.173.5.84200 OK 18 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140050289.jpg?k=38a9f0bcadf1da09016399bec85f5d5b1ec53a8c24ae929da523e09c47db429b&o=
IP 18.173.5.84:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash c11c7f9c8c482a844fa9f35a23ef554c
e4d700adcb02b63e9c6111dd857512eee1cbefe2
99aae4a81e7e564eecc8b4ed4db1d692542e37ee7b486bca7eef047ca0849056
GET /xdata/images/xphoto/300x240/140050289.jpg?k=38a9f0bcadf1da09016399bec85f5d5b1ec53a8c24ae929da523e09c47db429b&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 17735
server: nginx
date: Tue, 21 Mar 2023 07:49:59 GMT
etag: "fe7cb3273c22c5956efa72bf400cb3693c7d4272"
expires: Thu, 20 Apr 2023 07:49:59 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f214e83505b2f65a27989014c17bb788.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: UWqW44j8jswFSP0ZDadoT6I4n7RAApiu8xnAE0Gt_vv1i8OXesIKqQ==
age: 366001
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040807.jpg?k=9cab54a3a43d3b941837c79958b284376005784e9ded8dadcbb83e39e25fcb9e&o=
18.173.5.84200 OK 17 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040807.jpg?k=9cab54a3a43d3b941837c79958b284376005784e9ded8dadcbb83e39e25fcb9e&o=
IP 18.173.5.84:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 6b69600400c2e34e52ac22b8280a471e
04b0fa66f7203b41bc5bcb9773afdb035cf68793
1e1547673775158c1b697974f7161f71b87530d3f1e565f18bd975579e67ef57
GET /xdata/images/xphoto/300x240/140040807.jpg?k=9cab54a3a43d3b941837c79958b284376005784e9ded8dadcbb83e39e25fcb9e&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 17072
server: nginx
date: Sun, 19 Mar 2023 05:45:28 GMT
etag: "47cba472d4195142396456c0755269a624dfb5d7"
expires: Tue, 18 Apr 2023 05:45:28 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f214e83505b2f65a27989014c17bb788.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: u71rSbMp9WiBMd1wv8r7LfcMq3b53egl5TFIOwg9iBjZKR_D-knA_A==
age: 546272
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040762.jpg?k=7a9446b459690b60fba2d74ecd856b1c34b896ba3f9e231eff82abbfc8956b15&o=
18.173.5.84200 OK 17 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040762.jpg?k=7a9446b459690b60fba2d74ecd856b1c34b896ba3f9e231eff82abbfc8956b15&o=
IP 18.173.5.84:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 65e38b40c58827e57fd0cff25009e4ba
8460e679a4da3541a3e7a17aecde2238da826c1d
df53b855667fd3c922bc4c5a960890b5497a7f890c9fb216adaa94fbaf40ac0c
GET /xdata/images/xphoto/300x240/140040762.jpg?k=7a9446b459690b60fba2d74ecd856b1c34b896ba3f9e231eff82abbfc8956b15&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 16779
server: nginx
date: Sat, 25 Feb 2023 11:36:10 GMT
etag: "c3d81db07cc7c2b8ba44bc0368b0620869c99185"
expires: Mon, 27 Mar 2023 11:36:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f214e83505b2f65a27989014c17bb788.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: oe3dHfyigE38AIU3tAFp1DmxQKsu_64GSxeU-T43Cms1mPPivKi55Q==
age: 2426030
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040491.jpg?k=ad6e6050b93fe65224a29659793533d6562b424ee35882cb392c115d58ea1354&o=
18.173.5.84200 OK 7.0 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040491.jpg?k=ad6e6050b93fe65224a29659793533d6562b424ee35882cb392c115d58ea1354&o=
IP 18.173.5.84:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash da527d4ac8f4cb107e6a40c480d70d14
97fc6a9c91bb910fcf92b0e5dc4ec079385a0cc9
d4a7526e92a83ee550c888d6a3677b3c694393b979b442cd4c1f4a9d4def9759
GET /xdata/images/xphoto/300x240/140040491.jpg?k=ad6e6050b93fe65224a29659793533d6562b424ee35882cb392c115d58ea1354&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 6982
server: nginx
date: Sat, 18 Mar 2023 07:25:17 GMT
etag: "ee1b63a7e771651beb6701de39a1e1bbebba104e"
expires: Mon, 17 Apr 2023 07:25:17 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f214e83505b2f65a27989014c17bb788.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: yptlXLPBhrhy1KbWSWzPu_jwbHFpAinYKSZ2u_c_rpO-cD-w0Y9HdA==
age: 626683
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040870.jpg?k=b3e16242c2f01e3493f03bf8b863b6561f8c52b43fa48569d7446d94874bd080&o=
18.173.5.84200 OK 12 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040870.jpg?k=b3e16242c2f01e3493f03bf8b863b6561f8c52b43fa48569d7446d94874bd080&o=
IP 18.173.5.84:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 53edea1fadbd43623cbaf3da9da24419
a034eab2a360a9b2a94b4bbb2ec999bd27524f17
a9593ed4bdec054997e16c6ede0ceb76dc652041fe6378f8320c571ac460c96b
GET /xdata/images/xphoto/300x240/140040870.jpg?k=b3e16242c2f01e3493f03bf8b863b6561f8c52b43fa48569d7446d94874bd080&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 11607
server: nginx
date: Thu, 09 Mar 2023 04:35:41 GMT
etag: "9aa32863c01a6d9d7e9cf91edf3ac766916977f6"
expires: Sat, 08 Apr 2023 04:35:41 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f214e83505b2f65a27989014c17bb788.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: 6xi9WNu2P6UodpGsKmmI41WGtYLO-tGbFt-ciFYztdENX3nCgfetKg==
age: 1414459
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/29466558.webp?k=fa323cf3e030ae6b41c8b475fe2853ae4e9e38148501d68dd5b915905dcea664&o=&s=1
18.173.5.84200 OK 62 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/29466558.webp?k=fa323cf3e030ae6b41c8b475fe2853ae4e9e38148501d68dd5b915905dcea664&o=&s=1
IP 18.173.5.84:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8e4d19993d2f7f1364ea74392fbf9e85
0ea2b8adc560b64cb3083471a5b863e6862675f6
4dc49efbf179ceb49ff2cb70b5a202d23e57cab426e9e3b5ce3e43fabae83418
GET /xdata/images/hotel/square600/29466558.webp?k=fa323cf3e030ae6b41c8b475fe2853ae4e9e38148501d68dd5b915905dcea664&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 56656
server: nginx
date: Wed, 22 Mar 2023 01:21:58 GMT
etag: "fcd64eb9628d617d78fa5dcb563cf885e3f785e7"
expires: Fri, 21 Apr 2023 01:21:58 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f214e83505b2f65a27989014c17bb788.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: 5OTFsB6NYii_d_m6FzuGgBb2e7CDKWFRT-O2aDD_V5_HYCsurlZnSw==
age: 302882
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040807.jpg?k=9cab54a3a43d3b941837c79958b284376005784e9ded8dadcbb83e39e25fcb9e&o=
18.173.5.84200 OK 79 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040807.jpg?k=9cab54a3a43d3b941837c79958b284376005784e9ded8dadcbb83e39e25fcb9e&o=
IP 18.173.5.84:0
File type gzip compressed data, max compression\012- data
Hash 5326ecd3f5be6bbb7f8134286da7f628
093259bebc40c37f61f7bdcfc756c938211652a7
f0d1cfdfbc42b4bbb77e030140c9a22a6264a07dc30265239c0064a894d515af
GET /xdata/images/xphoto/300x240/140040807.jpg?k=9cab54a3a43d3b941837c79958b284376005784e9ded8dadcbb83e39e25fcb9e&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 17072
server: nginx
date: Sun, 19 Mar 2023 05:45:28 GMT
etag: "47cba472d4195142396456c0755269a624dfb5d7"
expires: Tue, 18 Apr 2023 05:45:28 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f214e83505b2f65a27989014c17bb788.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: utjD2NXtB8ZVbGUTrL7K3JahxYQ7XgNupNEF8gZXJoLcXlmModBUBA==
age: 546272
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040549.jpg?k=47295571a3c7ad6e86a62047a4aceb3c8c0a19f5b4b86d6eafab42d61abad33e&o=
18.173.5.84200 OK 14 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040549.jpg?k=47295571a3c7ad6e86a62047a4aceb3c8c0a19f5b4b86d6eafab42d61abad33e&o=
IP 18.173.5.84:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash f53be5a5dc8a5e0852c37ecef3f57e80
95e46d745e83d3e5767d50c82ddda8b871239225
4f4fd90acbda0f964439cf256b5ad16a879a517226656911b91ed51f96e38171
GET /xdata/images/xphoto/300x240/140040549.jpg?k=47295571a3c7ad6e86a62047a4aceb3c8c0a19f5b4b86d6eafab42d61abad33e&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 13659
server: nginx
date: Sun, 12 Mar 2023 07:59:44 GMT
etag: "32b5ceef2be605d808d104f7751705f50e0878a5"
expires: Tue, 11 Apr 2023 07:59:44 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f214e83505b2f65a27989014c17bb788.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: 7kiogPylYfqWtfyX9Z4C3b13WxDtlPE5RMRV4kFhpUzxkydSRawn-A==
age: 1143016
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040444.jpg?k=78183a30bc77a7f4eb2550c457f0645c654b2c70f80b40258ffa926712392726&o=
18.173.5.84200 OK 18 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040444.jpg?k=78183a30bc77a7f4eb2550c457f0645c654b2c70f80b40258ffa926712392726&o=
IP 18.173.5.84:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 6f57315028bfce58a9111a97386b32f8
f865cb601c242c7945fceb5cdbd39af8e22ee68d
b51cb67e6a957bf93a45b47510f5b355d3779812dc4d46a3f2653baa3bbd8396
GET /xdata/images/xphoto/300x240/140040444.jpg?k=78183a30bc77a7f4eb2550c457f0645c654b2c70f80b40258ffa926712392726&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 18535
server: nginx
date: Wed, 22 Mar 2023 03:51:01 GMT
etag: "0755858058a5e94834c8878dac70a19ea888b871"
expires: Fri, 21 Apr 2023 03:51:01 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f214e83505b2f65a27989014c17bb788.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: tEBCV9CEjszxDsHlXyva-ENvMIMRiT2fZKYVsdjUjDE_EvxZ5l9FJg==
age: 293939
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140052116.jpg?k=e94346578a825ccf04f419c702577198d3d6c797aec34b2b0f58678af9e90dd0&o=
18.173.5.84200 OK 12 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140052116.jpg?k=e94346578a825ccf04f419c702577198d3d6c797aec34b2b0f58678af9e90dd0&o=
IP 18.173.5.84:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 4dde8ac450ded1d8d519f89b54df536e
c0a91335d7ae7b2193a125f7dd713a3fa10a3c03
7f9e23934ff3e05b17c81977e3429b17908bf98f5b7fa350ba102a33565fe523
GET /xdata/images/xphoto/300x240/140052116.jpg?k=e94346578a825ccf04f419c702577198d3d6c797aec34b2b0f58678af9e90dd0&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 11892
server: nginx
date: Sat, 25 Mar 2023 04:24:18 GMT
etag: "a3e86f2564797bfa854a4a2886526cdc6c2da348"
expires: Mon, 24 Apr 2023 04:24:18 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f214e83505b2f65a27989014c17bb788.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: WRFL_P7aFMnh0Ejahm26nlrIlEkTykZPD6BkBbDQnyhs2CO7WXp-ow==
age: 32742
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040635.jpg?k=329ec95c88a102f72b8bbb381ce82f86f29a3fc4f4652b0c2ec768aee8f5ae4c&o=
18.173.5.84200 OK 11 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040635.jpg?k=329ec95c88a102f72b8bbb381ce82f86f29a3fc4f4652b0c2ec768aee8f5ae4c&o=
IP 18.173.5.84:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 803716a18dfcbff4ec89fc3c654cb930
a67609f33b295ca8cd8c1c886b50f272d98628cc
c497e60866f9e42e0307d57527ac5220da67166f21a77c45cd6f99f8c3fdef50
GET /xdata/images/xphoto/300x240/140040635.jpg?k=329ec95c88a102f72b8bbb381ce82f86f29a3fc4f4652b0c2ec768aee8f5ae4c&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 10747
server: nginx
date: Fri, 24 Feb 2023 02:25:03 GMT
etag: "6f0ba2cfca35f4ebe21b86ed10167d259396ade4"
expires: Sun, 26 Mar 2023 02:25:03 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f214e83505b2f65a27989014c17bb788.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: vD3GCjyXzfa86FN046IH4AWXgxDTHJpvo3l-q5064HOuiRrRQM1HMw==
age: 2545497
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ce6948c57f579a85042a4388c45514d6
4b3002c036034ef0cb8d9eb73b7bf7f561862b99
85e655e198ac1724ffca7bf4efc4f98de8c436cebf41ed665cc397fbb02a243a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 13:30:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ce6948c57f579a85042a4388c45514d6
4b3002c036034ef0cb8d9eb73b7bf7f561862b99
85e655e198ac1724ffca7bf4efc4f98de8c436cebf41ed665cc397fbb02a243a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 13:30:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
account.booking.com/oauth2/authorize/v2?client_id=vO1Kblk7xX9tUn2cpZLS&redirect_uri=https%3A%2F%2Fsecure.booking.com%2Flogin.html%3Fop%3Doauth_return&response_type=anon_session&prompt=none&iframe=1&dt=1679751013807&state=Ur8CDLiVDcBEgrojCa6pgeP2gvYxU5g6BCaxFSt6sh8dLe9vk-V0tALwR180RTXhb7EEN-cI0vlCHCDGxZQZm7unQQ8F8dCjkzlaHCiHBoiGJ8kcT9e8D6Yw1Oq4UCFcpZpzGmXOqXN-CqJ9VcTmWazn2Kx91_Lak9NlVsQMc96oCSrBXgcCT0cFD3ctOxDGBuYvlKoj74lLJUwMqeHZ-kijMxkeNq0YPHDBiFaJiaioJ8Wp0IvTT72hvd27x3XpvnEwAAbBtGcqbiV0ycheONCBz0ddL_KJVF54B_3lKOzSBm_TKl30iZLZ1IxWttge4qxa2gxaChaEBmTNWlvq6L0APRq5vAun1yG79WDw0AhE-bJFoAHQ-rONT1GNORv7MpQb_DFwlPN-a_aW_GzztQtwrZvQ0Y3ykJhIJ6u62cA0DQ&bkng_referrer=https%3A%2F%2Fwww.booking.com%2Findex.html&bkng_action=index
54.230.111.34302 Found 27 kB URL HTTP/2 account.booking.com/oauth2/authorize/v2?client_id=vO1Kblk7xX9tUn2cpZLS&redirect_uri=https%3A%2F%2Fsecure.booking.com%2Flogin.html%3Fop%3Doauth_return&response_type=anon_session&prompt=none&iframe=1&dt=1679751013807&state=Ur8CDLiVDcBEgrojCa6pgeP2gvYxU5g6BCaxFSt6sh8dLe9vk-V0tALwR180RTXhb7EEN-cI0vlCHCDGxZQZm7unQQ8F8dCjkzlaHCiHBoiGJ8kcT9e8D6Yw1Oq4UCFcpZpzGmXOqXN-CqJ9VcTmWazn2Kx91_Lak9NlVsQMc96oCSrBXgcCT0cFD3ctOxDGBuYvlKoj74lLJUwMqeHZ-kijMxkeNq0YPHDBiFaJiaioJ8Wp0IvTT72hvd27x3XpvnEwAAbBtGcqbiV0ycheONCBz0ddL_KJVF54B_3lKOzSBm_TKl30iZLZ1IxWttge4qxa2gxaChaEBmTNWlvq6L0APRq5vAun1yG79WDw0AhE-bJFoAHQ-rONT1GNORv7MpQb_DFwlPN-a_aW_GzztQtwrZvQ0Y3ykJhIJ6u62cA0DQ&bkng_referrer=https%3A%2F%2Fwww.booking.com%2Findex.html&bkng_action=index
IP 54.230.111.34:0
File type gzip compressed data, max compression\012- data
Hash 48d399faaa696e710b9d841b934461e2
8b867014ac0ae0a2b81a55f171deede8336a496f
c905a4d23caf1f95d96c244084f15336fba5f65b74de870ec5c2be878410625d
GET /oauth2/authorize/v2?client_id=vO1Kblk7xX9tUn2cpZLS&redirect_uri=https%3A%2F%2Fsecure.booking.com%2Flogin.html%3Fop%3Doauth_return&response_type=anon_session&prompt=none&iframe=1&dt=1679751013807&state=Ur8CDLiVDcBEgrojCa6pgeP2gvYxU5g6BCaxFSt6sh8dLe9vk-V0tALwR180RTXhb7EEN-cI0vlCHCDGxZQZm7unQQ8F8dCjkzlaHCiHBoiGJ8kcT9e8D6Yw1Oq4UCFcpZpzGmXOqXN-CqJ9VcTmWazn2Kx91_Lak9NlVsQMc96oCSrBXgcCT0cFD3ctOxDGBuYvlKoj74lLJUwMqeHZ-kijMxkeNq0YPHDBiFaJiaioJ8Wp0IvTT72hvd27x3XpvnEwAAbBtGcqbiV0ycheONCBz0ddL_KJVF54B_3lKOzSBm_TKl30iZLZ1IxWttge4qxa2gxaChaEBmTNWlvq6L0APRq5vAun1yG79WDw0AhE-bJFoAHQ-rONT1GNORv7MpQb_DFwlPN-a_aW_GzztQtwrZvQ0Y3ykJhIJ6u62cA0DQ&bkng_referrer=https%3A%2F%2Fwww.booking.com%2Findex.html&bkng_action=index HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Connection: keep-alive
Cookie: _pxhd=AALGl6fvvx6gpSEaGSN9lpmX-4oNGuY7CSuO2FFiKc434iI7UZZZI7OqGE1fB9RWrtZcwZ4c1KSiPAiJszmfEQ%3D%3D%3A-TsU6UOuVuk0iDQ%2FaZqmh71-LNtwDwtlJAl%2Fg1I3vvR%2FBWpWjjd%2FjYZnObYf%2F8q2Pjlb7dBi7WVR0dnW-C38LuvQQSNdeuwjDdqY-EBb9QM%3D; px_init=80; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPefdem2E0MF90T6hQ0AMPf9SmnH7pjKqMq9ThLEPrtVu2jyazD6iuxhDYvQf5K03ERmxUTngPbMOYSbRGUljlKKPtabzlcle41ePXIeh3PAzVJkjxuOzX2gdLsny%2B1P46MhRXc%2FXcVq5lD0Hkg8Q4AcD9Avr6XC%2F7bY%3D; cors_js=1; bkng_sso_ses=e30; bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJkYXRhX3N1YmplY3RfaWQiOiI1Y2ZmMDFkNS02NmZkLTQ0MDItYWMxNS1lODVjZjdkMDI3ZjIiLCJzZXNzaW9ucyI6W119fQ; bkng_sso_session=e30; bkng_sso_auth=CAIQARpyb35Exs8C6vJYWz1cDHa1Ta+VDFziK+8q3chcCBEV2hhvUkoKEhcIt+0nxK5qUVwxoJIpdppBmKll8dfguzWAjtFD7jOSKnLICT8Hu8mqjbStoV6aOr0POtrs8N84pyepTLGtaTbZ8/AMqeNxEQwDAKHT; BJS=-; _px3=b3c4d5bdc1fa30106a165dc1eddb036ec60db8077cf32b0aa4637e3586a72954:pR/XfkJpT06BnRtxFyfj+gSzDNhDfzo8bGMbhB3jFBi37mbmJIVlNtqCmKumqKcjX5t/3q9n6OZLcTIj5s+HHA==:1000:6iNPNYKkA2kM6DbrirQY5V5YpH2/lcWCaFKiib5BjDTizHLSITmZUH/c1j7JjQztmecG0qB1pbXNJllQfQawnAAHWDm8EzczglhiOSsWhTyNxNgPBOT8WsN33YDX+ErgoDLM3cx/u0btLSld+41c2Gm2M7VvpBoYz0qLEaeKaukfcmmLPrMgOx/SzYgjmZCwe8r2MHYANtONOfih5T7yAw==; pxcts=245fcf01-cb11-11ed-9f5e-585052655a58; _pxvid=23c1fc48-cb11-11ed-a49c-48434e74564e; _pxde=fc1e1b063ccf1a3d71a8755b52f8aba7baecab1edcc648496f4af03c24bdf45b:eyJ0aW1lc3RhbXAiOjE2Nzk3NTEwMDAzNzEsImZfa2IiOjAsImlwY19pZCI6W119
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 302 Found
location: https://secure.booking.com/login.html?state=Ur8CDLiVDcBEgrojCa6pgeP2gvYxU5g6BCaxFSt6sh8dLe9vk-V0tALwR180RTXhb7EEN-cI0vlCHCDGxZQZm7unQQ8F8dCjkzlaHCiHBoiGJ8kcT9e8D6Yw1Oq4UCFcpZpzGmXOqXN-CqJ9VcTmWazn2Kx91_Lak9NlVsQMc96oCSrBXgcCT0cFD3ctOxDGBuYvlKoj74lLJUwMqeHZ-kijMxkeNq0YPHDBiFaJiaioJ8Wp0IvTT72hvd27x3XpvnEwAAbBtGcqbiV0ycheONCBz0ddL_KJVF54B_3lKOzSBm_TKl30iZLZ1IxWttge4qxa2gxaChaEBmTNWlvq6L0APRq5vAun1yG79WDw0AhE-bJFoAHQ-rONT1GNORv7MpQb_DFwlPN-a_aW_GzztQtwrZvQ0Y3ykJhIJ6u62cA0DQ&code=idWQI2sthCzfDBaPQGspXdQPu2jJErGxEkAO2RcfdZx60h5hAZ69AHV4vvPYX0sa0RUOAlwldo9jJ2yAPbsLjfjRzTfrXWZwpvSkCe95ImOh7VwxClc6sTKQG5K3uIZeSpk7XCU&lang=en-us&aid=304142&op=oauth_return
server: envoy
date: Sat, 25 Mar 2023 13:30:00 GMT
set-cookie: bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJzZXNzaW9ucyI6W3sic2Vzc2lvbl9yZWZlcmVuY2UiOiI2MDdjNWMxNy0yZmE0LTQyMWItOGRlYi0yZmM5MDUwNTRiZmQiLCJyZWZyZXNoX3Rva2VuIjoiQ0FFU2QxSjFONHVjbUxORUtoUkxWVC00RmRBTnV1bUlDdjhhN1A4ZFU4N0M3MVEydVJaenVhT3Q1bVJteFU2MVFIWG11ZWdGenZNaGNXWjJLUnJMLTY3ZlVZV0hrZ2V1bnlHdE10SGdvYTlfVEpxYUNRSXZNRldFRi1YWFhwaHlhRjhyMHZQY3hsa18wTDZaM0I1M3hvWUdfdVRsb25VU2NjeDIifV0sImRhdGFfc3ViamVjdF9pZCI6IjVjZmYwMWQ1LTY2ZmQtNDQwMi1hYzE1LWU4NWNmN2QwMjdmMiJ9fQ; domain=account.booking.com; path=/; expires=Thu, 23-Mar-2028 13:30:00 GMT; secure; HttpOnly
bkng_sso_ses=eyJib29raW5nX2dsb2JhbCI6W3siaCI6IjRSeHgrdUJESmQzK2hoMnRhVDl1cWtRR0R6U242ejk1ZjRDQzhzUUwveDgiLCJhIjoxfV19; domain=.booking.com; path=/; expires=Thu, 23-Mar-2028 13:30:00 GMT; secure; HttpOnly
bkng_expired_hint=; domain=.booking.com; path=/; expires=Fri, 24-Mar-2023 13:30:00 GMT; secure; HttpOnly
bkng_sso_session=e30; domain=.booking.com; path=/; expires=Thu, 23-Mar-2028 13:30:00 GMT; secure; HttpOnly
bkng_sso_auth=CAIQARqEAYFqBfYFSeUSExfonBIIERdlXib2CZ0ObFS+Xgzia7vPVoULDjbDBubOcuSKsDeX15zutmuOdy8n2FXh/a2xXmczdXSHCa7VjhzIzv8Y/CWRLLW4JbFM84i+GIjVdpNpAsyhf87OftTsmWe8i6XyjeBxQitOxv4yh9lZNPuXYljzUGuOQw==; Domain=.booking.com; Path=/; Expires=Sat, 08 Apr 2023 13:30:00 GMT; HttpOnly; Secure
bkng_sso_auth_1679751000=CAIQARqEAYFqBfYFSeUSExfonBIIERdlXib2CZ0ObFS+Xgzia7vPVoULDjbDBubOcuSKsDeX15zutmuOdy8n2FXh/a2xXmczdXSHCa7VjhzIzv8Y/CWRLLW4JbFM84i+GIjVdpNpAsyhf87OftTsmWe8i6XyjeBxQitOxv4yh9lZNPuXYljzUGuOQw==; Domain=.booking.com; Path=/; Expires=Sat, 08 Apr 2023 13:30:00 GMT; HttpOnly; Secure
content-security-policy: frame-ancestors https://*.booking.com 'self'; report-uri https://nellie.booking.com/csp-report-uri?type=block&tag=212&pid=cfa95eec101c0e1a&e=UmFuZG9tSVYkc2RlIyh9YSWKtKO5TxgOpTwVTPfHZKNW3Hcrm1RLgTDT2V-m21UM2tEFs8WDzZmosDxjsVz6dkq2PhsoSZTOe0GPgs65_ifFUdrr0_98e2xQvQg19ADwAq_5NcNfVEHJE4DyrrELlx8ProGcO3-a
content-security-policy-report-only: base-uri 'none'; connect-src saa.booking.com secure.booking.com reports.booking.com privacyportal-eu.onetrust.com geolocation.onetrust.com cdn.cookielaw.org www.google-analytics.com *.perimeterx.net *.pxchk.net *.px-cdn.net *.px-client.net *.px-cloud.net 'self' 'report-sample'; default-src *.bstatic.com bstatic.com 'self'; frame-src https://www.youtube.com/embed/Vv4w5SmRkss *.bstatic.com https://www.google.com bstatic.com www.booking.com secure.booking.com paymentcomponent.booking.com 'self'; img-src 'self' data: www.booking.com graph.facebook.com cdn.cookielaw.org account.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google-analytics.com www.google.com stats.g.doubleclick.net *.px-cloud.net *.perimeterx.net www.gstatic.com; object-src 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=213&pid=cfa95eec101c0e1a&e=UmFuZG9tSVYkc2RlIyh9YSWKtKO5TxgOpTwVTPfHZKNW3Hcrm1RLgTDT2V-m21UM2tEFs8WDzZmosDxjsVz6dkq2PhsoSZTOe0GPgs65_ifFUdrr0_98e2xQvQg19ADwAq_5NcNfVEHJE4DyrrELlx8ProGcO3-a; script-src saa.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google.com www.google-analytics.com cdn.cookielaw.org geolocation.onetrust.com 'self' 'nonce-vdBi2tKvfmDT5NS' 'report-sample'; style-src *.bstatic.com bstatic.com *.static.booking.cn 'self' 'unsafe-inline'
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bfe97qE1UfZeGvP8YT_3_0U87D0kGl_kOuGJKyxngP_ZeTN6DzeaIw==
X-Firefox-Spdy: h2
fonts.gstatic.com/s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Owps.ttf
142.250.74.35200 OK 27 kB URL HTTP/2 fonts.gstatic.com/s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Owps.ttf
IP 142.250.74.35:0
File type TrueType Font data, 17 tables, 1st "GDEF", 7 names, Microsoft, language 0x409, Copyright 2015 Google LLC. All Rights Reserved.Google SansRegularGoogle;GoogleSans-RegularGoogle\012- data
Hash 097c4b560f821fb05c628abb70fab199
4650bf1244b6cba45b222aa269c96ad8ea95ab42
a9bd7cfb72481bd844fa2e3cd4019c8b2ab2a232b50cabe62f8d9483e284f672
GET /s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Owps.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://accounts.google.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27191
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:45 GMT
expires: Sat, 23 Mar 2024 10:26:45 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2019 23:42:54 GMT
content-type: font/ttf
vary: Accept-Encoding
age: 97396
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.booking.com/dml/graphql?aid=7977348&label=travelcravel&lang=en-us
54.230.111.128200 OK 3.1 kB URL HTTP/2 www.booking.com/dml/graphql?aid=7977348&label=travelcravel&lang=en-us
IP 54.230.111.128:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (12829), with no line terminators
Hash ed215123e195fbf313b689c8e1e8fa66
32a822f95d9e68d67e9ab2d9efc49054624710f3
d634a0df47a055951eaf185d89f4718c7b1bded02978021674328ce00cd6af0a
POST /dml/graphql?aid=7977348&label=travelcravel&lang=en-us HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=7977348&label=travelcravel
content-type: application/json
x-booking-context-action-name: index
x-booking-context-aid: 7977348
x-booking-csrf-token: eyJhbGciOiJIUzUxMiJ9.eyJpc3MiOiJjb250ZXh0LWVucmljaG1lbnQtYXBpIiwic3ViIjoiY3NyZi10b2tlbiIsImlhdCI6MTY3OTc1MDk5NiwiZXhwIjoxNjc5ODM3Mzk2fQ.2JcAm9WrUG0kr8c6Ee5ciWSXo0Jv-2lDlEBr2-vy_yAxjvN1y33uvadJIxHdj3osr8O2I469Zm8SrudoX3AN_A
x-booking-et-serialized-state: EyWhX6gqZ0APx25VtFZGeB0Et13x31JWfCjvVwswfe_Vg8XHjsFu1kE66NnWpfeSB
x-booking-pageview-id: d6705ee9c223000a
x-booking-site-type-id: 1
x-booking-topic: capla_browser_b-index-lp-web-mfe
Origin: https://www.booking.com
Content-Length: 1719
Connection: keep-alive
Cookie: _pxhd=AALGl6fvvx6gpSEaGSN9lpmX-4oNGuY7CSuO2FFiKc434iI7UZZZI7OqGE1fB9RWrtZcwZ4c1KSiPAiJszmfEQ%3D%3D%3A-TsU6UOuVuk0iDQ%2FaZqmh71-LNtwDwtlJAl%2Fg1I3vvR%2FBWpWjjd%2FjYZnObYf%2F8q2Pjlb7dBi7WVR0dnW-C38LuvQQSNdeuwjDdqY-EBb9QM%3D; px_init=80; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPefdem2E0MF90T6hQ0AMPf9SmnH7pjKqMq9ThLEPrtVu2jyazD6iuxhDYvQf5K03ERmxUTngPbMOYSbRGUljlKKPtabzlcle41ePXIeh3PAzVJkjxuOzX2gdLsny%2B1P46MhRXc%2FXcVq5lD0Hkg8Q4AcD9Avr6XC%2F7bY%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sat+Mar+25+2023+13%3A30%3A11+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=4f144e15-8173-4163-8484-29721c7e9173&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D7977348%26label%3Dtravelcravel&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1679751011775; bkng_sso_ses=e30; bkng_sso_session=e30; bkng_sso_auth=CAIQARpyb35Exs8C6vJYWz1cDHa1Ta+VDFziK+8q3chcCBEV2hhvUkoKEhcIt+0nxK5qUVwxoJIpdppBmKll8dfguzWAjtFD7jOSKnLICT8Hu8mqjbStoV6aOr0POtrs8N84pyepTLGtaTbZ8/AMqeNxEQwDAKHT; BJS=-; _px3=b3c4d5bdc1fa30106a165dc1eddb036ec60db8077cf32b0aa4637e3586a72954:pR/XfkJpT06BnRtxFyfj+gSzDNhDfzo8bGMbhB3jFBi37mbmJIVlNtqCmKumqKcjX5t/3q9n6OZLcTIj5s+HHA==:1000:6iNPNYKkA2kM6DbrirQY5V5YpH2/lcWCaFKiib5BjDTizHLSITmZUH/c1j7JjQztmecG0qB1pbXNJllQfQawnAAHWDm8EzczglhiOSsWhTyNxNgPBOT8WsN33YDX+ErgoDLM3cx/u0btLSld+41c2Gm2M7VvpBoYz0qLEaeKaukfcmmLPrMgOx/SzYgjmZCwe8r2MHYANtONOfih5T7yAw==; pxcts=245fcf01-cb11-11ed-9f5e-585052655a58; _pxvid=23c1fc48-cb11-11ed-a49c-48434e74564e; _pxff_ddtc=1; _pxde=fc1e1b063ccf1a3d71a8755b52f8aba7baecab1edcc648496f4af03c24bdf45b:eyJ0aW1lc3RhbXAiOjE2Nzk3NTEwMDAzNzEsImZfa2IiOjAsImlwY19pZCI6W119
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 3120
server: nginx
date: Sat, 25 Mar 2023 13:30:01 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBJp1T2BcNUmajRP6LMqDL64jgPGzd5etbniTb1RSg5W2UPL9s7EwXVaKlaaac5pXuIe7JKHHlIWQsRSpP1Q%2BraCNBJqBG0i30nPi91Gah4pewM6J23KjOAvuf3qCrNUMOMZ2RZElkXG0ZDs0yso1KM0bEBkc0vW0xI%3D; domain=.booking.com; path=/; expires=Thu, 23-Mar-2028 13:30:01 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qZONTEPHsoxKEYa9N2tk4lUVv6AFUzL0oabsdTdkPAxXYRYJ-FrbuA==
X-Firefox-Spdy: h2
collector-pxikkul2rm.px-cloud.net/api/v2/collector
35.190.10.96200 OK 573 B URL HTTP/2 collector-pxikkul2rm.px-cloud.net/api/v2/collector
IP 35.190.10.96:0
File type JSON data\012- , ASCII text, with very long lines (572)
Hash 7d42bde4e331658eefb3335e9f622710
3506a430f8f476382e9e3aa6e8cea10b646b2cc5
bcc29dce183ae7325e7b0fa27abcbcec2125198e5fc61f504f64ed0d0f16dfc7
POST /api/v2/collector HTTP/1.1
Host: collector-pxikkul2rm.px-cloud.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 4388
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 13:30:00 GMT
content-type: application/json; charset=utf-8
content-length: 573
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.booking.com
access-control-allow-credentials: true
timing-allow-origin: *
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
secure.booking.com/login.html?state=Ur8CDLiVDcBEgrojCa6pgeP2gvYxU5g6BCaxFSt6sh8dLe9vk-V0tALwR180RTXhb7EEN-cI0vlCHCDGxZQZm7unQQ8F8dCjkzlaHCiHBoiGJ8kcT9e8D6Yw1Oq4UCFcpZpzGmXOqXN-CqJ9VcTmWazn2Kx91_Lak9NlVsQMc96oCSrBXgcCT0cFD3ctOxDGBuYvlKoj74lLJUwMqeHZ-kijMxkeNq0YPHDBiFaJiaioJ8Wp0IvTT72hvd27x3XpvnEwAAbBtGcqbiV0ycheONCBz0ddL_KJVF54B_3lKOzSBm_TKl30iZLZ1IxWttge4qxa2gxaChaEBmTNWlvq6L0APRq5vAun1yG79WDw0AhE-bJFoAHQ-rONT1GNORv7MpQb_DFwlPN-a_aW_GzztQtwrZvQ0Y3ykJhIJ6u62cA0DQ&code=idWQI2sthCzfDBaPQGspXdQPu2jJErGxEkAO2RcfdZx60h5hAZ69AHV4vvPYX0sa0RUOAlwldo9jJ2yAPbsLjfjRzTfrXWZwpvSkCe95ImOh7VwxClc6sTKQG5K3uIZeSpk7XCU&lang=en-us&aid=304142&op=oauth_return
54.230.111.128302 Found 206 B URL HTTP/2 secure.booking.com/login.html?state=Ur8CDLiVDcBEgrojCa6pgeP2gvYxU5g6BCaxFSt6sh8dLe9vk-V0tALwR180RTXhb7EEN-cI0vlCHCDGxZQZm7unQQ8F8dCjkzlaHCiHBoiGJ8kcT9e8D6Yw1Oq4UCFcpZpzGmXOqXN-CqJ9VcTmWazn2Kx91_Lak9NlVsQMc96oCSrBXgcCT0cFD3ctOxDGBuYvlKoj74lLJUwMqeHZ-kijMxkeNq0YPHDBiFaJiaioJ8Wp0IvTT72hvd27x3XpvnEwAAbBtGcqbiV0ycheONCBz0ddL_KJVF54B_3lKOzSBm_TKl30iZLZ1IxWttge4qxa2gxaChaEBmTNWlvq6L0APRq5vAun1yG79WDw0AhE-bJFoAHQ-rONT1GNORv7MpQb_DFwlPN-a_aW_GzztQtwrZvQ0Y3ykJhIJ6u62cA0DQ&code=idWQI2sthCzfDBaPQGspXdQPu2jJErGxEkAO2RcfdZx60h5hAZ69AHV4vvPYX0sa0RUOAlwldo9jJ2yAPbsLjfjRzTfrXWZwpvSkCe95ImOh7VwxClc6sTKQG5K3uIZeSpk7XCU&lang=en-us&aid=304142&op=oauth_return
IP 54.230.111.128:0
Hash 1e3a83d8aa41b1497d78709f2361ac07
bcea1f03900c14b747bea50080bf4b1298b57ca5
0f5ab2429b72dc9a404e42cfdb04dffdf4500e012595a6cfbd6274ebfd9abe33
GET /login.html?state=Ur8CDLiVDcBEgrojCa6pgeP2gvYxU5g6BCaxFSt6sh8dLe9vk-V0tALwR180RTXhb7EEN-cI0vlCHCDGxZQZm7unQQ8F8dCjkzlaHCiHBoiGJ8kcT9e8D6Yw1Oq4UCFcpZpzGmXOqXN-CqJ9VcTmWazn2Kx91_Lak9NlVsQMc96oCSrBXgcCT0cFD3ctOxDGBuYvlKoj74lLJUwMqeHZ-kijMxkeNq0YPHDBiFaJiaioJ8Wp0IvTT72hvd27x3XpvnEwAAbBtGcqbiV0ycheONCBz0ddL_KJVF54B_3lKOzSBm_TKl30iZLZ1IxWttge4qxa2gxaChaEBmTNWlvq6L0APRq5vAun1yG79WDw0AhE-bJFoAHQ-rONT1GNORv7MpQb_DFwlPN-a_aW_GzztQtwrZvQ0Y3ykJhIJ6u62cA0DQ&code=idWQI2sthCzfDBaPQGspXdQPu2jJErGxEkAO2RcfdZx60h5hAZ69AHV4vvPYX0sa0RUOAlwldo9jJ2yAPbsLjfjRzTfrXWZwpvSkCe95ImOh7VwxClc6sTKQG5K3uIZeSpk7XCU&lang=en-us&aid=304142&op=oauth_return HTTP/1.1
Host: secure.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Connection: keep-alive
Cookie: _pxhd=AALGl6fvvx6gpSEaGSN9lpmX-4oNGuY7CSuO2FFiKc434iI7UZZZI7OqGE1fB9RWrtZcwZ4c1KSiPAiJszmfEQ%3D%3D%3A-TsU6UOuVuk0iDQ%2FaZqmh71-LNtwDwtlJAl%2Fg1I3vvR%2FBWpWjjd%2FjYZnObYf%2F8q2Pjlb7dBi7WVR0dnW-C38LuvQQSNdeuwjDdqY-EBb9QM%3D; px_init=80; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPefdem2E0MF90T6hQ0AMPf9SmnH7pjKqMq9ThLEPrtVu2jyazD6iuxhDYvQf5K03ERmxUTngPbMOYSbRGUljlKKPtabzlcle41ePXIeh3PAzVJkjxuOzX2gdLsny%2B1P46MhRXc%2FXcVq5lD0Hkg8Q4AcD9Avr6XC%2F7bY%3D; cors_js=1; bkng_sso_ses=eyJib29raW5nX2dsb2JhbCI6W3siaCI6IjRSeHgrdUJESmQzK2hoMnRhVDl1cWtRR0R6U242ejk1ZjRDQzhzUUwveDgiLCJhIjoxfV19; bkng_sso_session=e30; bkng_sso_auth=CAIQARqEAYFqBfYFSeUSExfonBIIERdlXib2CZ0ObFS+Xgzia7vPVoULDjbDBubOcuSKsDeX15zutmuOdy8n2FXh/a2xXmczdXSHCa7VjhzIzv8Y/CWRLLW4JbFM84i+GIjVdpNpAsyhf87OftTsmWe8i6XyjeBxQitOxv4yh9lZNPuXYljzUGuOQw==; BJS=-; _px3=b3c4d5bdc1fa30106a165dc1eddb036ec60db8077cf32b0aa4637e3586a72954:pR/XfkJpT06BnRtxFyfj+gSzDNhDfzo8bGMbhB3jFBi37mbmJIVlNtqCmKumqKcjX5t/3q9n6OZLcTIj5s+HHA==:1000:6iNPNYKkA2kM6DbrirQY5V5YpH2/lcWCaFKiib5BjDTizHLSITmZUH/c1j7JjQztmecG0qB1pbXNJllQfQawnAAHWDm8EzczglhiOSsWhTyNxNgPBOT8WsN33YDX+ErgoDLM3cx/u0btLSld+41c2Gm2M7VvpBoYz0qLEaeKaukfcmmLPrMgOx/SzYgjmZCwe8r2MHYANtONOfih5T7yAw==; pxcts=245fcf01-cb11-11ed-9f5e-585052655a58; _pxvid=23c1fc48-cb11-11ed-a49c-48434e74564e; _pxde=fc1e1b063ccf1a3d71a8755b52f8aba7baecab1edcc648496f4af03c24bdf45b:eyJ0aW1lc3RhbXAiOjE2Nzk3NTEwMDAzNzEsImZfa2IiOjAsImlwY19pZCI6W119; bkng_sso_auth_1679751000=CAIQARqEAYFqBfYFSeUSExfonBIIERdlXib2CZ0ObFS+Xgzia7vPVoULDjbDBubOcuSKsDeX15zutmuOdy8n2FXh/a2xXmczdXSHCa7VjhzIzv8Y/CWRLLW4JbFM84i+GIjVdpNpAsyhf87OftTsmWe8i6XyjeBxQitOxv4yh9lZNPuXYljzUGuOQw==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 302 Found
location: https://www.booking.com/general.en-us.html?tmpl=profile%2Flogin_callback_anon_session&aid=7977348&iframe=1&label=travelcravel&sid=973fbaa4464723c391ea8a8655ac847e
server: nginx
date: Sat, 25 Mar 2023 13:30:01 GMT
cache-control: no-cache, private, no-store, must-revalidate, max-stale=0, post-check=0, pre-check=0
nel: {"report_to":"default","max_age":604800}
report-to: {"group":"default","max_age":604800,"endpoints":[{"url":"https://nellie.booking.com/report"}]}
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbof7CEiNviT%2BhCNSHf8gE%2FK4LtjaIvhCAhjWTIs4ZQPL80hoKUWSTsXpoOuZqYQIQCrm02it46sq2Tv83CYZSvCKI8OQecD6UQd%2BwjDv8lN%2FwAH0%2B2cQgbxdAryYYtv0IeW23oKzYKHf0m78EtQq%2BoeBgFo4vW9lZxfDzn6tfva4%3D; domain=.booking.com; path=/; expires=Thu, 23-Mar-2028 13:30:01 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=17280000
x-content-type-options: nosniff
x-recruiting: Like HTTP headers? Come write ours: https://careers.booking.com
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: n1Js4gVqAilMkD2OT_sgbyEVJJoS__0sDBp3QPhv_1-dKa1yFgkbvg==
X-Firefox-Spdy: h2
privacyportal-eu.onetrust.com/request/v1/consentreceipts
104.18.43.158201 Created 0 B URL HTTP/2 privacyportal-eu.onetrust.com/request/v1/consentreceipts
IP 104.18.43.158:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /request/v1/consentreceipts HTTP/1.1
Host: privacyportal-eu.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 7858
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 201 Created
date: Sat, 25 Mar 2023 13:30:01 GMT
content-length: 0
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: *
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7ad781900d96b4eb-OSL
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/searchresults_cloudfront_sd.iq_ltr/0fc2f3e44fb8bc09dd6153cbef054eaccfdc20dd.css
18.173.5.36200 OK 0 B URL HTTP/2 cf.bstatic.com/static/css/searchresults_cloudfront_sd.iq_ltr/0fc2f3e44fb8bc09dd6153cbef054eaccfdc20dd.css
IP 18.173.5.36:0
GET /static/css/searchresults_cloudfront_sd.iq_ltr/0fc2f3e44fb8bc09dd6153cbef054eaccfdc20dd.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Wed, 15 Mar 2023 12:58:27 GMT
last-modified: Tue, 14 Mar 2023 16:12:11 GMT
etag: W/"64109cdb-5a074"
expires: Fri, 14 Apr 2023 12:58:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: mxt2d8Cf_6HHHrjBAgpy_DtOSRSzdp8BzJ2RArWY_Kduns2ISh58ZQ==
age: 865891
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/664.2fbcaa00.chunk.css
18.173.5.36200 OK 0 B URL HTTP/2 cf.bstatic.com/psb/capla/static/css/664.2fbcaa00.chunk.css
IP 18.173.5.36:0
GET /psb/capla/static/css/664.2fbcaa00.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Tue, 28 Feb 2023 09:17:20 GMT
etag: W/"27db955296046ba3b90c53ded6173fc1"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Mon, 27 Feb 2023 15:05:35 GMT
x-amz-expiration: expiry-date="Tue, 27 Jun 2023 15:05:35 GMT", rule-id=""
expires: Thu, 30 Mar 2023 09:17:20 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: 0t9rANfwwkOCV-EW_yB4mPVXpoUgYT4jgj9vUUUfeahZEXqpYPgjDw==
age: 2175157
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/cross_product_index/guest/b2e5f2aa32b71ca0fc66aa671e4e958bcd69b7d0.svg
18.173.5.36200 OK 0 B URL HTTP/2 cf.bstatic.com/static/img/cross_product_index/guest/b2e5f2aa32b71ca0fc66aa671e4e958bcd69b7d0.svg
IP 18.173.5.36:0
GET /static/img/cross_product_index/guest/b2e5f2aa32b71ca0fc66aa671e4e958bcd69b7d0.svg HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/58c63e4d3e4eb7090033901e75e2c80c0caa437b.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Sun, 05 Mar 2023 09:15:42 GMT
last-modified: Wed, 10 Apr 2019 11:21:51 GMT
etag: W/"5cadd1cf-63d"
expires: Tue, 04 Apr 2023 09:15:42 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: ncgH5JcPNlNDlG4LKqPJSl5geR7k2nxJewVM1md0VtKXQf84Oodgsg==
age: 1743255
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/970.dd5c66db.chunk.css
18.173.5.36200 OK 0 B URL HTTP/2 cf.bstatic.com/psb/capla/static/css/970.dd5c66db.chunk.css
IP 18.173.5.36:0
GET /psb/capla/static/css/970.dd5c66db.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Mon, 06 Mar 2023 14:01:16 GMT
etag: W/"70900b49c13c0ad6a4414d8afc5844f9"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 03 Mar 2023 14:07:01 GMT
x-amz-expiration: expiry-date="Sat, 01 Jul 2023 14:07:01 GMT", rule-id=""
expires: Wed, 05 Apr 2023 14:01:16 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: 0_k00bdT_BDcbppxQZSv08RAED1cqMxrJ4OGTtw2KG8pObB1gZfVGw==
age: 1639721
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/579.dd8b0c7c.chunk.js
18.173.5.36200 OK 0 B URL HTTP/2 cf.bstatic.com/psb/capla/static/js/579.dd8b0c7c.chunk.js
IP 18.173.5.36:0
GET /psb/capla/static/js/579.dd8b0c7c.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 24 Mar 2023 14:33:37 GMT
etag: W/"f97622c812f696eb60481dc64dd87e9c"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 24 Mar 2023 14:16:39 GMT
x-amz-expiration: expiry-date="Sat, 22 Jul 2023 14:16:39 GMT", rule-id=""
expires: Sun, 23 Apr 2023 14:33:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3b0715ca57820f19665e655f9f44da48.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: HtCshikL1h-r7Bqe7XwgF3lezGlhc2HvACzP80ga8ALmb_Tdp983KA==
age: 82580
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/541.b91c5c14.chunk.js
18.173.5.36200 OK 0 B URL HTTP/2 cf.bstatic.com/psb/capla/static/js/541.b91c5c14.chunk.js
IP 18.173.5.36:0
GET /psb/capla/static/js/541.b91c5c14.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 24 Mar 2023 14:33:37 GMT
etag: W/"c8e75c631da103d75c59f7cfe84aaba4"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 24 Mar 2023 14:16:39 GMT
x-amz-expiration: expiry-date="Sat, 22 Jul 2023 14:16:39 GMT", rule-id=""
expires: Sun, 23 Apr 2023 14:33:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3b0715ca57820f19665e655f9f44da48.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: Bo2ZzqVpJX5TCRpXlqZAGZoaXFmhBdCqAYr9TqzHDLmLo1TKUtrKLg==
age: 82580
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/lazy_load_images_cloudfront_sd/77204d4da4aa41b08b1a4062c8e66e4629550994.js
18.173.5.36200 OK 0 B URL HTTP/2 cf.bstatic.com/static/js/lazy_load_images_cloudfront_sd/77204d4da4aa41b08b1a4062c8e66e4629550994.js
IP 18.173.5.36:0
GET /static/js/lazy_load_images_cloudfront_sd/77204d4da4aa41b08b1a4062c8e66e4629550994.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 08 Mar 2023 03:00:43 GMT
last-modified: Tue, 04 Feb 2020 10:19:57 GMT
etag: W/"5e39454d-15f3"
expires: Fri, 07 Apr 2023 03:00:43 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3b0715ca57820f19665e655f9f44da48.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: eIF-ZvwzgIcyLbVJh3LGHekWr7bgJMgZtJYp_T-pqf2JVa7AwGNKHQ==
age: 1506553
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/448.6d37080b.chunk.css
18.173.5.36200 OK 0 B URL HTTP/2 cf.bstatic.com/psb/capla/static/css/448.6d37080b.chunk.css
IP 18.173.5.36:0
GET /psb/capla/static/css/448.6d37080b.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Tue, 14 Mar 2023 09:35:30 GMT
etag: W/"14d8c3c9f16c06fb087f16a7ec2c87d8"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Mon, 06 Mar 2023 14:42:39 GMT
x-amz-expiration: expiry-date="Thu, 29 Jun 2023 09:54:11 GMT", rule-id=""
expires: Thu, 13 Apr 2023 09:35:30 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: RnDAbKB9QmiXI42an5crg5mx5WD6T76hQFeAlJB3u8Ht1fHwa1DERQ==
age: 964467
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.22.0/assets/otCommonStyles.css
104.19.187.97200 OK 0 B URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.22.0/assets/otCommonStyles.css
IP 104.19.187.97:0
GET /scripttemplates/6.22.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 13:29:56 GMT
content-type: text/css
content-md5: F/Fs54+x9bQK/ULkNRp4fA==
last-modified: Thu, 19 Aug 2021 02:39:24 GMT
x-ms-request-id: 62ba7e0d-101e-014d-51e1-5a5851000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 33638
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ad781715869b50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
104.18.43.158200 OK 0 B URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP 104.18.43.158:0
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 13:29:56 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7ad7817079200b06-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
travelcravel.com/booking/
172.67.182.49200 OK 0 B URL HTTP/2 travelcravel.com/booking/
IP 172.67.182.49:0
Analyzer Verdict Alert fortinet Malware
GET /booking/ HTTP/1.1
Host: travelcravel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ishku-wbq.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 13:29:54 GMT
content-type: text/html; charset=UTF-8
link: <https://travelcravel.com/wp-json/>; rel="https://api.w.org/", <https://travelcravel.com/wp-json/wp/v2/pages/834>; rel="alternate"; type="application/json", <https://travelcravel.com/?p=834>; rel=shortlink
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dCGLxfZjR9pkBqhEGBhEUXURI7jQRaqPr5eBEmHDAcKZFmh%2Ft0aBOMSxx6yim3LzsMjeTqsQmeoCCF%2F%2FoB9X5xF%2FYpcXuAg8TenPmRbnJ72tByc7dyj3jXButa5WZioZ0S5u"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ad78161b9e3fab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2