booking.hotel-berghof.com/
302 Found 0 B URL HTTP/1.1 booking.hotel-berghof.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: booking.hotel-berghof.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
content-length: 0
location: https://booking.hotel-berghof.com/
cache-control: no-cache
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash cdbad2434b7d127a4fc769807a9dc3e7
fa98cd9fc2309ab4423f33f683d17bdb17d76713
560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14702
Expires: Sun, 27 Nov 2022 04:43:10 GMT
Date: Sun, 27 Nov 2022 00:38:08 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d94527128fae270ee4525c4e302f1274
e386f0db32390b44b1f4052cfd3b7c14dac5ea4b
5b8fb44c87c4d5b85bfcfb96a72bfe83adf8b9e043cb35ae3dea411c0a8e34c6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5B8FB44C87C4D5B85BFCFB96A72BFE83ADF8B9E043CB35AE3DEA411C0A8E34C6"
Last-Modified: Sat, 26 Nov 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10826
Expires: Sun, 27 Nov 2022 03:38:34 GMT
Date: Sun, 27 Nov 2022 00:38:08 GMT
Connection: keep-alive
getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30
200 OK 46 kB URL HTTP/2 getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 57d29330e510916dfbe832f0a4452273
19f657ab5e97d38c4cf4bf58ef113b6b111b85ca
c070f2bca1f37d8b863ceeaf7f74986b55009c1996d7c681c75a3c3da446b532
GET /v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30 HTTP/1.1
Host: getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
vary: Accept-Encoding
content-location: global-recs.php
tcn: choice
x-frame-options: SAMEORIGIN
status: 200 OK
x-source: Pocket
pragma: cache
p3p: policyref="/w3c/p3p.xml", CP="ALL CURa ADMa DEVa OUR IND UNI COM NAV INT STA PRE"
x-cache: Hit from cloudfront
x-amz-cf-pop: SEA73-P2
x-amz-cf-id: hy-Mfreuy-Nx0qCYJyahN84LqHv9idAxw3K_pD-BbGTdpar6HWV08A==
content-encoding: gzip
via: 1.1 0800f067ff646622f3e8e507cb9b52e8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 00:27:35 GMT
age: 633
content-type: application/json
content-length: 46037
cache-control: s-maxage=900,public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 71f9c681a82440fd55e76c780a20e55d
3147768cfbcdd06e0c6e69684292e68e99917a80
5ea71ce6dd9e927f9bb3f97f59cc1ac7dc25a949024815965b29bc5835614786
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17495
Expires: Sun, 27 Nov 2022 05:29:43 GMT
Date: Sun, 27 Nov 2022 00:38:08 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: j/KLwwZ7iGojusnjPGIp9n0LwBxlDhP7Y/mczAbYL1EUxsOpIYiAMxswcYAJk/8qe8SqFNhnOdE=
x-amz-request-id: D3WFDH5GM43K6RJY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 26 Nov 2022 23:41:24 GMT
age: 3404
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 15b59d5e62caedb4bec3ba6724906c1e
960f801e608a56fdd11449f4face29f62cad2b21
8c72a45737c2eeddf328b0ed3236f3243551d904e94ec9dd7254972ebfb9229e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4739
Cache-Control: max-age=126719
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 00:38:08 GMT
Etag: "6381eaec-1d7"
Expires: Mon, 28 Nov 2022 11:50:07 GMT
Last-Modified: Sat, 26 Nov 2022 10:31:08 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 27 Nov 2022 00:17:33 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1235
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 00:38:08 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 27 Nov 2022 00:08:54 GMT
cache-control: public,max-age=3600
age: 1755
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
booking.hotel-berghof.com/
200 OK 52 kB URL HTTP/1.1 booking.hotel-berghof.com/
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (7271), with CRLF, LF line terminators
Hash 80a25078b482138c7fecb900ed4397c6
b5c64b5933635ac13c836b74cd30ddf339bd4d75
93d7f775ca5cf5395034d5bfe0509f8af2be68ba7b3fcf48146501eef1ffc0e1
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: booking.hotel-berghof.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 00:38:09 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Status: 200 OK
Cache-Control: private, no-cache, no-store, max-age=0, must-revalidate
Vary: Accept-Encoding
Content-Encoding: gzip
ETag: "4495a-0OEDs4GM0Mm/Cd6qqA1u3nrnpkE"
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self' *.kognitiv.com
Strict-Transport-Security: max-age=31536000
ocsp.digicert.com/
200 OK 471 B IP
Hash d3df71aab146eefc49acb608796aab63
8401892995193919376dfcd798b09c8261579454
a616c1e54e896576601e6107c1814adbebf35364d8ed807cdd89ac36b8200c88
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6479
Cache-Control: max-age=123401
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 00:38:09 GMT
Etag: "6381d72b-1d7"
Expires: Mon, 28 Nov 2022 10:54:50 GMT
Last-Modified: Sat, 26 Nov 2022 09:06:51 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: O851EgG145+sBf7f0RNFBw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: CHL3lebr7hTIgbSBh0rryENwKwE=
d2jtzd336hs8un.cloudfront.net/_next/static/media/bf-icons-extended.00ff8422.ttf
200 OK 94 kB URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/media/bf-icons-extended.00ff8422.ttf
IP
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data
Hash 439b52438c772a69ba68cddd45b0ba56
acc851fc76bade985719ddd6b688e184f1096121
fd15c1d08eecfa3bebd1c8a1e28836de2f04036509f7ee65e1945cc0decd725d
GET /_next/static/media/bf-icons-extended.00ff8422.ttf HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Referer: https://d2jtzd336hs8un.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 93868
date: Tue, 15 Nov 2022 13:37:21 GMT
last-modified: Tue, 03 May 2022 12:24:17 GMT
etag: "62711ef1-16eac"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
strict-transport-security: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0ltSqN1K4EKL9qdYxNl5TOWVap1BGp7QKA3nbRyqMwq3Di7m15CeHQ==
age: 990048
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/static/themes/default/assets/fonts/icons.woff
200 OK 50 kB URL HTTP/2 d2jtzd336hs8un.cloudfront.net/static/themes/default/assets/fonts/icons.woff
IP
File type Web Open Font Format, TrueType, length 50524, version 1.0\012- data
Hash faff92145777a3cbaf8e7367b4807987
9c293328f39dc54bd654d273d0cc5af0d11905c6
95b6a4840f8711ecab427bc236eb86098db7e5c782bafb139c8c30805aa5ffe1
GET /static/themes/default/assets/fonts/icons.woff HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Referer: https://d2jtzd336hs8un.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/font-woff
content-length: 50524
last-modified: Tue, 03 May 2022 12:24:30 GMT
access-control-allow-origin: *
accept-ranges: bytes
strict-transport-security: max-age=31536000
date: Sat, 26 Nov 2022 13:41:48 GMT
etag: "62711efe-c55c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KgobR_AYQZ7uT3s1OGlNxXgLUKjSFPNnzzWbFGGpIK74zzyik8X5ag==
age: 39381
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash e388353a642bc503beff27c23339e2b5
7849301df8cbfa3f9c019b1d4033b66e0f44c4bd
5e595e9ce96c6147c3ff79ebba0068ddb0d997237a671936cb05d9575c59a424
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 00:38:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.seekda.com/assets/fonts/google/fira-sans-v16-latin-regular.woff2
200 OK 23 kB URL HTTP/2 static.seekda.com/assets/fonts/google/fira-sans-v16-latin-regular.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 22592, version 1.0\012- data
Hash 4528524c7142b4e2d5c0438763223328
d439d881fd8c4f41e77c2fb07678e53fce3e331a
ea03bd5d723c75f6d0a9419d4f9651afd78ea2a4abfcee7f926cbde0681a2671
GET /assets/fonts/google/fira-sans-v16-latin-regular.woff2 HTTP/1.1
Host: static.seekda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 00:38:09 GMT
content-type: font/woff2
content-length: 22592
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://booking.hotel-berghof.com
access-control-expose-headers: Date, Etag, Server, Connection, Accept-Ranges, Content-Range, Content-Encoding, Content-Length, Content-Type, Content-Disposition, Last-Modified, Content-Language, Cache-Control, Retry-After, X-Amz-Bucket-Region, Expires, X-Amz*, X-Amz*, *
content-security-policy: block-all-mixed-content
etag: "4528524c7142b4e2d5c0438763223328"
last-modified: Wed, 23 Nov 2022 09:00:18 GMT
no-gzip-compression: true
vary: Origin, Accept-Encoding
x-amz-replication-status: COMPLETED
x-amz-request-id: 172B4A091BF1190F
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: d619f217-d1ae-4ecf-b1ac-968490ee9678
strict-transport-security: max-age=15768000
server: Kognitiv
set-cookie: WEIU3SASDIO=5e949bcc1c21420; path=/; HttpOnly; Secure; SameSite=none
cache-control: max-age=43200, private
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-PH3725
200 OK 54 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-PH3725
IP
File type Unicode text, UTF-8 text, with very long lines (6098)
Hash 48457ebb6e0c6864b6989a3287dda2be
a6a4e6fc8d3e39198844091d5a85e948ce6e501e
5133cec056b5ea88bc37ae34c162a1388195b75595f299b2e9fa5334b4526885
GET /gtm.js?id=GTM-PH3725 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 27 Nov 2022 00:38:09 GMT
expires: Sun, 27 Nov 2022 00:38:09 GMT
cache-control: private, max-age=900
last-modified: Sun, 27 Nov 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 53682
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.seekda.com/assets/fonts/google/fira-sans-v16-latin-700.woff2
200 OK 24 kB URL HTTP/2 static.seekda.com/assets/fonts/google/fira-sans-v16-latin-700.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 23724, version 1.0\012- data
Hash 2ca1253c8e47277b38c02353cdf32102
3cd0373fd1ae7ad8cb62ff8f2200193a7e8977e7
51aa1f55f3d344d82ece24055a31012cf77d10cc4a2f9307f5dea293118d40f1
GET /assets/fonts/google/fira-sans-v16-latin-700.woff2 HTTP/1.1
Host: static.seekda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 00:38:09 GMT
content-type: font/woff2
content-length: 23724
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://booking.hotel-berghof.com
access-control-expose-headers: Date, Etag, Server, Connection, Accept-Ranges, Content-Range, Content-Encoding, Content-Length, Content-Type, Content-Disposition, Last-Modified, Content-Language, Cache-Control, Retry-After, X-Amz-Bucket-Region, Expires, X-Amz*, X-Amz*, *
content-security-policy: block-all-mixed-content
etag: "2ca1253c8e47277b38c02353cdf32102"
last-modified: Wed, 23 Nov 2022 09:00:18 GMT
no-gzip-compression: true
vary: Origin, Accept-Encoding
x-amz-replication-status: COMPLETED
x-amz-request-id: 172B4A091C0FEE0A
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: b7f4263d-07ac-4132-b8fc-06dfe378e10f
strict-transport-security: max-age=15768000
server: Kognitiv
set-cookie: WEIU3SASDIO=5e586ba66df10c0; path=/; HttpOnly; Secure; SameSite=none
cache-control: max-age=43200, private
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash e388353a642bc503beff27c23339e2b5
7849301df8cbfa3f9c019b1d4033b66e0f44c4bd
5e595e9ce96c6147c3ff79ebba0068ddb0d997237a671936cb05d9575c59a424
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 00:38:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
res.cloudinary.com/seekda/image/upload/w_1920,ar_3.8,c_fill,f_auto,fl_lossy,q_auto/v1612776003/production/AT_JOPO_BERG/wellnesshotel-berghof-banner-02.png
200 OK 53 kB URL HTTP/2 res.cloudinary.com/seekda/image/upload/w_1920,ar_3.8,c_fill,f_auto,fl_lossy,q_auto/v1612776003/production/AT_JOPO_BERG/wellnesshotel-berghof-banner-02.png
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1920x505, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash af7e47130b8fbc1d9bdd8e665efcc62d
9048a35f4461de87813675c2a672f570b095e40e
2d71f91681241cf657076d803225c1efc06c9c8fd2562ccda3a41a711fac728e
GET /seekda/image/upload/w_1920,ar_3.8,c_fill,f_auto,fl_lossy,q_auto/v1612776003/production/AT_JOPO_BERG/wellnesshotel-berghof-banner-02.png HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-disposition: inline; filename="wellnesshotel-berghof-banner-02.webp"
content-type: image/webp
etag: "af7e47130b8fbc1d9bdd8e665efcc62d"
last-modified: Wed, 19 Oct 2022 14:29:16 GMT
date: Sun, 27 Nov 2022 00:38:10 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=1;start=2022-11-27T00:38:10.128Z;desc=hit,rtt;dur=17
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 52710
X-Firefox-Spdy: h2
res.cloudinary.com/seekda/image/upload/v1612777299/production/AT_JOPO_BERG/Logo-Verw%C3%B6hnhotel-Berghof.png
200 OK 24 kB URL HTTP/2 res.cloudinary.com/seekda/image/upload/v1612777299/production/AT_JOPO_BERG/Logo-Verw%C3%B6hnhotel-Berghof.png
IP
File type PNG image data, 219 x 103, 8-bit/color RGBA, non-interlaced\012- data
Hash f7b11311515bbef177fa692d264a7e02
ea2ffab457533ebbc3d6adad1a894a9504bbe560
11da040f74ea5c45e103b09a959a2d7a1c0353c5945447dd2e6e78b9ee20cdce
GET /seekda/image/upload/v1612777299/production/AT_JOPO_BERG/Logo-Verw%C3%B6hnhotel-Berghof.png HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
etag: "f7b11311515bbef177fa692d264a7e02"
last-modified: Mon, 08 Feb 2021 09:41:40 GMT
date: Sun, 27 Nov 2022 00:38:10 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=0;start=2022-11-27T00:38:10.129Z;desc=hit,rtt;dur=17
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 24207
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/pages/index-8d1840455c368716.js
200 OK 174 kB URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/pages/index-8d1840455c368716.js
IP
Size 174 kB (174356 bytes)
Hash e8451f7fc614c0000a4996ef1fd08ca2
6d4e7b5f8d25819d4b196eef2e6a2b7e0d7b5789
a9eb1f25d1a498b03868b874d5ffe9964a5f2305911fe31c0d7ef4bc1c3f7203
GET /_next/static/chunks/pages/index-8d1840455c368716.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 14:08:22 GMT
last-modified: Tue, 15 Nov 2022 14:07:51 GMT
etag: W/"63739d37-135d7"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pQ_kWUzp2Pk2mdZq_fz05WkyfNv6HhV7ZyGlWGIHWdfus0JxGX-BYg==
age: 988187
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/static/bf-icons-extended.ttf
200 OK 94 kB URL HTTP/2 d2jtzd336hs8un.cloudfront.net/static/bf-icons-extended.ttf
IP
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data
Hash 439b52438c772a69ba68cddd45b0ba56
acc851fc76bade985719ddd6b688e184f1096121
fd15c1d08eecfa3bebd1c8a1e28836de2f04036509f7ee65e1945cc0decd725d
GET /static/bf-icons-extended.ttf HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Referer: https://d2jtzd336hs8un.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 93868
last-modified: Tue, 03 May 2022 12:34:48 GMT
access-control-allow-origin: *
accept-ranges: bytes
strict-transport-security: max-age=31536000
date: Sun, 27 Nov 2022 00:38:10 GMT
etag: "62712168-16eac"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fhWTtMdCJArSiUXNMZnabDYZXIGOEABreB7VHhVKTdfqZzup_kjgqQ==
age: 38266
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/eu95uf8U1F9lsTyjgNbKp/_ssgManifest.js
200 OK 2.2 kB URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/eu95uf8U1F9lsTyjgNbKp/_ssgManifest.js
IP
Hash 7bae1c3919e755089bcff069f60e0134
0fb5ba5dad97bd55cba5deb11d3c49f89760ebe3
a62b4f611297c876efc12c91e6588c8aac690e2365dd1fbe37721a5761686a44
GET /_next/static/eu95uf8U1F9lsTyjgNbKp/_ssgManifest.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 17 Nov 2022 14:56:47 GMT
last-modified: Thu, 17 Nov 2022 14:56:24 GMT
etag: W/"63764b98-4d"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: a_oqRzpygZkZo0naBh-oqC72Efae8HKop82MIC2RL4gnyjESSb_r3g==
age: 812482
X-Firefox-Spdy: h2
res.cloudinary.com/seekda/image/upload/w_16,h_16,c_fill/v1612776668/production/AT_JOPO_BERG/favicon.png
200 OK 295 B URL HTTP/2 res.cloudinary.com/seekda/image/upload/w_16,h_16,c_fill/v1612776668/production/AT_JOPO_BERG/favicon.png
IP
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 8b418458602a0ba38948c4f713774fd9
3e34e3802dad7b7b379160b04e6399c5bfb875b6
b85c33b87c93e00489af53a936406b300c58860dbf49f62126aa4184f634a5e9
GET /seekda/image/upload/w_16,h_16,c_fill/v1612776668/production/AT_JOPO_BERG/favicon.png HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
etag: "8b418458602a0ba38948c4f713774fd9"
last-modified: Mon, 08 Feb 2021 09:40:00 GMT
date: Sun, 27 Nov 2022 00:38:10 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2022-11-27T00:38:10.399Z;desc=hit,rtt;dur=18
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 295
X-Firefox-Spdy: h2
hbe-api.kognitiv.com/marketing?channelId=ibe&context=DETAIL
200 OK 2 B URL HTTP/2 hbe-api.kognitiv.com/marketing?channelId=ibe&context=DETAIL
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
GET /marketing?channelId=ibe&context=DETAIL HTTP/1.1
Host: hbe-api.kognitiv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-length: 2
status: 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://booking.hotel-berghof.com
vary: Origin, Accept-Encoding
date: Sun, 27 Nov 2022 00:38:10 GMT
etag: W/"2-l9Fw4VUO7kr8CvBlt4zaMCqXZ0w"
set-cookie: MGLH51CKJDVB=VEI1698VEKLN9; path=/; HttpOnly; Secure
cache-control: private
X-Firefox-Spdy: h2
hbe-api.kognitiv.com/unavailable-days
200 OK 20 kB URL HTTP/2 hbe-api.kognitiv.com/unavailable-days
IP
File type JSON data\012- , ASCII text, with very long lines (1325)
Hash 58e844b6895270fa22b84796ffc021c9
7139b801c98e2fa666626337b843b8c65a2c96ba
d8e9c064e020370de6c8cf8d0e857a1a09e3baa6bf7149284ba5e23c382bc27c
POST /unavailable-days HTTP/1.1
Host: hbe-api.kognitiv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 66
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
status: 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://booking.hotel-berghof.com
vary: Accept-Encoding, Origin, Accept-Encoding
date: Sun, 27 Nov 2022 00:38:10 GMT
etag: W/"ab-ODY6ce/6ig/GREhk2gNvDVHPcpg"
content-encoding: gzip
set-cookie: MGLH51CKJDVB=VEI1698VEKLN9; path=/; HttpOnly; Secure
X-Firefox-Spdy: h2
ibe.seekda.com/dsr/AT_JOPO_BERG/attribution?callback=skdtracking1669509490279309&cookie-enabled=true
200 OK 665 B URL HTTP/2 ibe.seekda.com/dsr/AT_JOPO_BERG/attribution?callback=skdtracking1669509490279309&cookie-enabled=true
IP
Hash 050984915f8ad86650d7af47c469b274
7a79b7c79dbe9b1575ece78f43ee621efb94bf9a
1fa5bc29cf96454c4dfedb6a30330a986d159c531a275e418abe98793e713f6e
GET /dsr/AT_JOPO_BERG/attribution?callback=skdtracking1669509490279309&cookie-enabled=true HTTP/1.1
Host: ibe.seekda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache-Coyote/1.1
content-type: application/javascript;charset=ISO-8859-1
content-encoding: gzip
vary: Accept-Encoding
date: Sun, 27 Nov 2022 00:38:10 GMT
set-cookie: ULTZCTLUCKO67=quiwzs77; path=/; HttpOnly; Secure
cache-control: private
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/1057760471/?random=1669509490357&cv=11&fst=1669509490357&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fbooking.hotel-berghof.com%2F&tiba=Verw%C3%B6hnhotel%20Berghof&auid=324547010.1669509490&data=event%3Dgtag.config&rfmt=3&fmt=4
200 OK 888 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/1057760471/?random=1669509490357&cv=11&fst=1669509490357&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fbooking.hotel-berghof.com%2F&tiba=Verw%C3%B6hnhotel%20Berghof&auid=324547010.1669509490&data=event%3Dgtag.config&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (1875), with no line terminators
Hash adb7b12e9c89110a6aed618f56a6dbd3
b541f502064685179e511c9616ef0ca9fa06b201
e8f9167135f8ae10e9ba4ad84b173623a317652cc5aafff0587cdb8177486de2
GET /pagead/viewthroughconversion/1057760471/?random=1669509490357&cv=11&fst=1669509490357&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fbooking.hotel-berghof.com%2F&tiba=Verw%C3%B6hnhotel%20Berghof&auid=324547010.1669509490&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 27 Nov 2022 00:38:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 888
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 27-Nov-2022 00:53:10 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
quality.seekda.com/events/ibe/searchBoxInit?
200 OK 0 B URL HTTP/2 quality.seekda.com/events/ibe/searchBoxInit?
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /events/ibe/searchBoxInit? HTTP/1.1
Host: quality.seekda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: cache-control,content-type
Referer: https://booking.hotel-berghof.com/
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://booking.hotel-berghof.com
access-control-allow-methods: POST
access-control-allow-headers: cache-control, content-type
access-control-allow-credentials: true
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, TRACE, OPTIONS, PATCH
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-length: 0
date: Sun, 27 Nov 2022 00:38:10 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=thei9zuS; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2
quality.seekda.com/events/ibe/pageReady?
200 OK 0 B URL HTTP/2 quality.seekda.com/events/ibe/pageReady?
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /events/ibe/pageReady? HTTP/1.1
Host: quality.seekda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: cache-control,content-type
Referer: https://booking.hotel-berghof.com/
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://booking.hotel-berghof.com
access-control-allow-methods: POST
access-control-allow-headers: cache-control, content-type
access-control-allow-credentials: true
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, TRACE, OPTIONS, PATCH
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-length: 0
date: Sun, 27 Nov 2022 00:38:10 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=thei9zuS; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2
hbe-api.kognitiv.com/banners
200 OK 385 B URL HTTP/2 hbe-api.kognitiv.com/banners
IP
File type JSON data\012- , ASCII text, with very long lines (1757), with no line terminators
Hash a52027e0a1a356073788c9311411f8df
8b84dbf12b8f81d2e5a3a095006a7a7278d8a1d5
01a47e8189525a4822894abe2f1d448a0c4ca88e095c4e671da0f399b60a0f54
POST /banners HTTP/1.1
Host: hbe-api.kognitiv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 190
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
status: 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://booking.hotel-berghof.com
vary: Origin, Accept-Encoding
content-encoding: gzip
date: Sun, 27 Nov 2022 00:38:10 GMT
etag: W/"6dd-1YW1/B+DeYKcmFfzd7O6Hw/RTyM"
set-cookie: MGLH51CKJDVB=VEI1698VEKLN9; path=/; HttpOnly; Secure
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a22bc94a1116f343d9c3377cfd4fc5b2
b0bad6a620abd0c33a96c32721ad87849da9f9e6
294cd4b44650b17a93cbe9a4de887ad1da8ab8c11105707cccff17812a8d5890
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 00:38:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
d2jtzd336hs8un.cloudfront.net/static/icons-extended.css?checksum=c68829aa4263885cfc63b20639cec261
200 OK 2.1 kB URL HTTP/2 d2jtzd336hs8un.cloudfront.net/static/icons-extended.css?checksum=c68829aa4263885cfc63b20639cec261
IP
Hash 6e9ffd2fcaeb8ccd019afaaae0f712d4
b4fb975af9dba64c4466ed9640e9d3b1826f2850
d1977b8100a3294929e0e5a1823a7a89e4c3da65bcceeb271a9cb2a864689d3f
GET /static/icons-extended.css?checksum=c68829aa4263885cfc63b20639cec261 HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 03 May 2022 12:24:30 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31536000
content-encoding: br
date: Sat, 26 Nov 2022 15:45:13 GMT
etag: W/"62711efe-250b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 18I0F_71mXLrbX8u_mUbYFRvcrRoViUIchIkbJPXu-KNCPdDwHiLfQ==
age: 31976
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash f3424fd0abb5ab18be62cd209cb3d3dc
dbb2a21b12e92c8837c4346b6d052454bb6dffd6
e69548655278cf6a48fce549928656eb5a91d787e7b1afc12959e2bffb58990b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 00:38:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/1p-user-list/1057760471/?random=1669509490357&cv=11&fst=1669507200000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbooking.hotel-berghof.com%2F&tiba=Verw%C3%B6hnhotel%20Berghof&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1089432673&rmt_tld=0&ipr=y
200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/1057760471/?random=1669509490357&cv=11&fst=1669507200000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbooking.hotel-berghof.com%2F&tiba=Verw%C3%B6hnhotel%20Berghof&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1089432673&rmt_tld=0&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1057760471/?random=1669509490357&cv=11&fst=1669507200000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbooking.hotel-berghof.com%2F&tiba=Verw%C3%B6hnhotel%20Berghof&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1089432673&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 27 Nov 2022 00:38:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/1057760471/?random=1669509490357&cv=11&fst=1669507200000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbooking.hotel-berghof.com%2F&tiba=Verw%C3%B6hnhotel%20Berghof&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1089432673&rmt_tld=1&ipr=y
200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/1057760471/?random=1669509490357&cv=11&fst=1669507200000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbooking.hotel-berghof.com%2F&tiba=Verw%C3%B6hnhotel%20Berghof&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1089432673&rmt_tld=1&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1057760471/?random=1669509490357&cv=11&fst=1669507200000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbooking.hotel-berghof.com%2F&tiba=Verw%C3%B6hnhotel%20Berghof&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1089432673&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 27 Nov 2022 00:38:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash e922b25acaba2d7f8921ebe973a4b261
5dd4c237c84a652cbcf3db163529f3788ceafc46
a7856c7777aa01b671ddae097494f2b031cbbddc7b244fe8714a8c02b85d8589
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 00:38:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.matomo.cloud/hotelberghof.matomo.cloud/matomo.js
200 OK 40 kB URL HTTP/2 cdn.matomo.cloud/hotelberghof.matomo.cloud/matomo.js
IP
Hash cdf58441d7204d74b90b359722052a97
a0c48ad1f1b6f7c888a630dc95073a3df81ac17b
eae437e276402aff6c9200451e6b2011d8e0423655fdb7e40812df54ed093102
GET /hotelberghof.matomo.cloud/matomo.js HTTP/1.1
Host: cdn.matomo.cloud
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Sun, 27 Nov 2022 00:38:11 GMT
x-amz-replication-status: COMPLETED
last-modified: Thu, 20 Oct 2022 12:22:21 GMT
etag: W/"00865cc0afbc5cff0aad9569c165b479"
x-amz-server-side-encryption: AES256
cache-control: max-age=691200
x-amz-version-id: WEGTtvy2n3LSpDQaDQb6dC4UjygAesnp
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zawG3emArJO02xEp7H3sus3Tnw-8up7OkeLpIVStH1oYE41R4hg0Xg==
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-2190190-1&cid=99875875.1669509491&jid=1277934120&gjid=1430192444&_gid=2080936862.1669509491&_u=aCDAgAAjAAAAAE~&z=481457476
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-2190190-1&cid=99875875.1669509491&jid=1277934120&gjid=1430192444&_gid=2080936862.1669509491&_u=aCDAgAAjAAAAAE~&z=481457476
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-2190190-1&cid=99875875.1669509491&jid=1277934120&gjid=1430192444&_gid=2080936862.1669509491&_u=aCDAgAAjAAAAAE~&z=481457476 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://booking.hotel-berghof.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 27 Nov 2022 00:38:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7921
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sun, 27 Nov 2022 00:38:11 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 69531ed0f5671ff58355a4ff659ef216
40932bc05d86429d7541d733d1e38c7b12e5a9c2
3e6f7039b6d93135ff5977e9e7630c141442f9f18adb6d93da4afca584426c40
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=144715
Date: Sun, 27 Nov 2022 00:38:10 GMT
Etag: "63823579-1d7"
Expires: Mon, 28 Nov 2022 16:50:05 GMT
Last-Modified: Sat, 26 Nov 2022 15:49:13 GMT
Server: ECS (dcb/7F18)
X-Cache: Miss from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: XPkmQ3OL5MOxH86fzBeBSS1cO-oQ2AbceURME-0P-OWNSNtWKdvLmw==
Age: 3652
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7921
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sun, 27 Nov 2022 00:38:11 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7921
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sun, 27 Nov 2022 00:38:11 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7921
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sun, 27 Nov 2022 00:38:11 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b2959f-9d1d-41c7-a7c1-b9f52a7766ac.jpeg
200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b2959f-9d1d-41c7-a7c1-b9f52a7766ac.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 76c00eceed956377d7469ef58b0815cb
97a135335f5b1b042adeb385718f8808cb78528b
81fb72ab752b2eb39ab6ee015055304490b3b6c3259968703fd07c2a2eed1e61
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b2959f-9d1d-41c7-a7c1-b9f52a7766ac.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7380
x-amzn-requestid: 18589644-299c-4a39-9376-db1bd1472009
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iEegIAMFeuQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-23990acc0fdc599a75a534e3;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RqsZxAtbOkWBGbXJ3sZHxcS-ZvWOw7Yg2Qd4zj0QLhrp3wAXC8w6jA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "97a135335f5b1b042adeb385718f8808cb78528b"
content-type: image/jpeg
age: 10557
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
booking.hotel-berghof.com/static/noimage.jpg
200 OK 7.3 kB URL HTTP/1.1 booking.hotel-berghof.com/static/noimage.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 768x432, components 3\012- data
Hash bc631f0f9afc6f7fa88c43e357dbf8ff
e8419abb2b0c726255e9b28cea7bfafca06b22d6
a7a7aac38152bf60bb768780deb951b121ac3ee54eb0028e7aeee5fab8b331b5
GET /static/noimage.jpg HTTP/1.1
Host: booking.hotel-berghof.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/?activeBookingEngine=KBE&propertyCode=AT_JOPO_BERG&skd-checkin=2022-12-08&skd-checkout=2022-12-15&skd-property-code=AT_JOPO_BERG
Cookie: BF_QUERYPARAMS={%22skd-checkin%22:%222022-12-08%22%2C%22skd-checkout%22:%222022-12-15%22%2C%22skd-property-code%22:%22AT_JOPO_BERG%22}; _gcl_au=1.1.324547010.1669509490; _ga_7S9V9CPDR2=GS1.1.1669509490.1.0.1669509490.0.0.0; _ga=GA1.1.99875875.1669509491; _ga=GA1.3.99875875.1669509491; _gid=GA1.3.2080936862.1669509491; _pk_id.1.131f=a59c81f0762e025d.1669509491.; _pk_ses.1.131f=1; _dc_gtm_UA-2190190-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 00:38:11 GMT
Content-Type: image/jpeg
Content-Length: 7273
Connection: keep-alive
Last-Modified: Tue, 03 May 2022 12:24:30 GMT
ETag: "62711efe-1c69"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F661e728e-05a1-40d9-ae81-c058443324b3.jpeg
200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F661e728e-05a1-40d9-ae81-c058443324b3.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 892849386662d30042f01ab952a3ec14
3b349ac17a00d68875e64bee110ec85d07cffda2
893797d55f15081d45af7a31af9fefe106ace9ba236e9b113787d07ab416faf9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F661e728e-05a1-40d9-ae81-c058443324b3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9926
x-amzn-requestid: 4e2c72af-2cce-4740-9962-6a7f9e217272
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b_cVCHwEoAMF3lQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637c7420-51c2e04b4fae5b576a679db5;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 07:02:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rZTk5ONMhQB66WF0VWIRmlTOdzEJO-NJVl4TCibzbH2fZXY_9Mx9kQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 18:42:19 GMT
age: 21352
etag: "3b349ac17a00d68875e64bee110ec85d07cffda2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa57bc6cf-beaa-443b-9756-cf26e4fe3767.jpeg
200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa57bc6cf-beaa-443b-9756-cf26e4fe3767.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2212cf75f99dc67fd45db47f7101d754
4b4a8c8e8aeccfff25d2748720dcef8fed287126
7b2d2e302faba8f273b51031fa48b444cb7839733b90e8c9d077ca63637320d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa57bc6cf-beaa-443b-9756-cf26e4fe3767.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6954
x-amzn-requestid: 94a02687-72f2-4796-a7ea-d3f28b412566
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1jHpGBVIAMFsSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63787efd-22666b18283ae59b1348bf47;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 07:00:13 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: feZayJeKq9jWHQ-rjutNr6buIjLVeIdY0A_ZeGo6NKgoQ6BBT3XQaw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 0906d4887f6625f4a4467d8d4fd268d2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 22:22:57 GMT
age: 8114
etag: "4b4a8c8e8aeccfff25d2748720dcef8fed287126"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
age: 10557
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2cd887044e91d7ed0f1a8d7119ff7dd0
ae8aa4ce6ddaccba771fe65446926b60fc5628da
bad283c15531000b7a8c126d442154b64a880cc26196a46cbd2e6266a526db67
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10199
x-amzn-requestid: baee3bbe-7ded-425a-ae39-fccfc8169217
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iF1VIAMF09g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-5522727b2f09b27e63b23270;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: K2eKLQhrsCdd4ASsfEibRuZAYW4CpPTlO3fZs7xdoKrw1HBxfTGkEA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "ae8aa4ce6ddaccba771fe65446926b60fc5628da"
content-type: image/jpeg
age: 10557
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46a2bb7d-e57c-4751-a56f-0802ae9eaee6.jpeg
200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46a2bb7d-e57c-4751-a56f-0802ae9eaee6.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e615cdc2e330b5cf76435abce9aa631a
71f737c3cee7766494157cd6491ce247a785c09e
853f68bf79a553b9fbf0e10391424faf0a3c071370d05d369563f7824d1bda84
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46a2bb7d-e57c-4751-a56f-0802ae9eaee6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9063
x-amzn-requestid: f00ac8bd-6466-4c92-9b99-0e71b4b2345c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b8Jr4ENtoAMFzvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637b2318-0e3a57932987e29521388dd7;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 07:04:56 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: ntfumip5IjOlyoe6ASlwJ1PjPLN1yZHkK_iiDDKfmMCyI__PrrGVMA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 82893cc36087a50f9a150a621d10e740.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 12:27:26 GMT
age: 43845
etag: "71f737c3cee7766494157cd6491ce247a785c09e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
hotelberghof.matomo.cloud/matomo.php?action_name=Verw%C3%B6hnhotel%20Berghof&idsite=1&rec=1&r=988368&h=0&m=38&s=10&url=https%3A%2F%2Fbooking.hotel-berghof.com%2F%3FactiveBookingEngine%3DKBE%26propertyCode%3DAT_JOPO_BERG%26skd-checkin%3D2022-12-08%26skd-checkout%3D2022-12-15%26skd-property-code%3DAT_JOPO_BERG&_id=a59c81f0762e025d&_idn=1&send_image=0&_refts=0&cookie=1&res=1280x1024&pv_id=3ZdFBB&pf_net=107&pf_srv=427&pf_tfr=58&pf_dm1=636&pf_dm2=619&pf_onl=0&uadata=%7B%7D
204 No Content 0 B URL HTTP/2 hotelberghof.matomo.cloud/matomo.php?action_name=Verw%C3%B6hnhotel%20Berghof&idsite=1&rec=1&r=988368&h=0&m=38&s=10&url=https%3A%2F%2Fbooking.hotel-berghof.com%2F%3FactiveBookingEngine%3DKBE%26propertyCode%3DAT_JOPO_BERG%26skd-checkin%3D2022-12-08%26skd-checkout%3D2022-12-15%26skd-property-code%3DAT_JOPO_BERG&_id=a59c81f0762e025d&_idn=1&send_image=0&_refts=0&cookie=1&res=1280x1024&pv_id=3ZdFBB&pf_net=107&pf_srv=427&pf_tfr=58&pf_dm1=636&pf_dm2=619&pf_onl=0&uadata=%7B%7D
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /matomo.php?action_name=Verw%C3%B6hnhotel%20Berghof&idsite=1&rec=1&r=988368&h=0&m=38&s=10&url=https%3A%2F%2Fbooking.hotel-berghof.com%2F%3FactiveBookingEngine%3DKBE%26propertyCode%3DAT_JOPO_BERG%26skd-checkin%3D2022-12-08%26skd-checkout%3D2022-12-15%26skd-property-code%3DAT_JOPO_BERG&_id=a59c81f0762e025d&_idn=1&send_image=0&_refts=0&cookie=1&res=1280x1024&pv_id=3ZdFBB&pf_net=107&pf_srv=427&pf_tfr=58&pf_dm1=636&pf_dm2=619&pf_onl=0&uadata=%7B%7D HTTP/1.1
Host: hotelberghof.matomo.cloud
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=utf-8
Content-Length: 0
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 27 Nov 2022 00:38:11 GMT
server: Apache
access-control-allow-origin: https://booking.hotel-berghof.com
access-control-allow-credentials: true
vary: X-Forwarded-Port-Override,X-Forwarded-Proto-Override,User-Agent
X-Firefox-Spdy: h2
static.seekda.com/assets/fonts/google/fira-sans-v16-latin-italic.woff2
200 OK 24 kB URL HTTP/2 static.seekda.com/assets/fonts/google/fira-sans-v16-latin-italic.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 23488, version 1.0\012- data
Hash cc3c05a080b3b37e42a52d2f1809f12b
877933cfc9c860dfa067db86e7f2e2cbacdb76f4
e895de4f58ade3e9cd2db4dcd61eb030c4d4f85274622bbb23755a34c41b870e
GET /assets/fonts/google/fira-sans-v16-latin-italic.woff2 HTTP/1.1
Host: static.seekda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 00:38:11 GMT
content-type: font/woff2
content-length: 23488
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://booking.hotel-berghof.com
access-control-expose-headers: Date, Etag, Server, Connection, Accept-Ranges, Content-Range, Content-Encoding, Content-Length, Content-Type, Content-Disposition, Last-Modified, Content-Language, Cache-Control, Retry-After, X-Amz-Bucket-Region, Expires, X-Amz*, X-Amz*, *
content-security-policy: block-all-mixed-content
etag: "cc3c05a080b3b37e42a52d2f1809f12b"
last-modified: Wed, 23 Nov 2022 09:00:18 GMT
no-gzip-compression: true
vary: Origin, Accept-Encoding
x-amz-replication-status: COMPLETED
x-amz-request-id: 172B4A096C303AB9
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: 264e06b1-1fba-443e-89b1-3de41e180f09
strict-transport-security: max-age=15768000
server: Kognitiv
set-cookie: WEIU3SASDIO=5e586ba66df10c0; path=/; HttpOnly; Secure; SameSite=none
cache-control: max-age=43200, private
X-Firefox-Spdy: h2
quality.seekda.com/events/ibe/viewOffers?
200 OK 0 B URL HTTP/2 quality.seekda.com/events/ibe/viewOffers?
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /events/ibe/viewOffers? HTTP/1.1
Host: quality.seekda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: cache-control,content-type
Referer: https://booking.hotel-berghof.com/
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://booking.hotel-berghof.com
access-control-allow-methods: POST
access-control-allow-headers: cache-control, content-type
access-control-allow-credentials: true
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, TRACE, OPTIONS, PATCH
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-length: 0
date: Sun, 27 Nov 2022 00:38:11 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=thei9zuS; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2
hbe-api.kognitiv.com/offers
200 OK 58 kB URL HTTP/2 hbe-api.kognitiv.com/offers
IP
Hash 4ce906813e1875c44551aad9b011bccf
b08c7d0430f1f68176bf8e54c6f0382e92e82469
9978b917b48aeb6445e744640bdeb57901d94a5acf58a98bf4a34c9fd8f14c54
POST /offers HTTP/1.1
Host: hbe-api.kognitiv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 574
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
status: 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://booking.hotel-berghof.com
vary: Origin, Accept-Encoding
content-encoding: gzip
date: Sun, 27 Nov 2022 00:38:10 GMT
etag: W/"14730-h8v3O5K+s4Wep6f5Ctozbfpp0vk"
set-cookie: MGLH51CKJDVB=HBE7KSGFADL4; path=/; HttpOnly; Secure
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-7S9V9CPDR2>m=2oeb90&_p=1910963617&cid=99875875.1669509491&ul=en-us&sr=1280x1024&_s=1&sid=1669509490&sct=1&seg=0&dl=https%3A%2F%2Fbooking.hotel-berghof.com%2F%3FactiveBookingEngine%3DKBE%26propertyCode%3DAT_JOPO_BERG%26skd-checkin%3D2022-12-08%26skd-checkout%3D2022-12-15%26skd-property-code%3DAT_JOPO_BERG&dt=Verw%C3%B6hnhotel%20Berghof&en=page_view&_fv=1&_nsi=1&_ss=1
204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-7S9V9CPDR2>m=2oeb90&_p=1910963617&cid=99875875.1669509491&ul=en-us&sr=1280x1024&_s=1&sid=1669509490&sct=1&seg=0&dl=https%3A%2F%2Fbooking.hotel-berghof.com%2F%3FactiveBookingEngine%3DKBE%26propertyCode%3DAT_JOPO_BERG%26skd-checkin%3D2022-12-08%26skd-checkout%3D2022-12-15%26skd-property-code%3DAT_JOPO_BERG&dt=Verw%C3%B6hnhotel%20Berghof&en=page_view&_fv=1&_nsi=1&_ss=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-7S9V9CPDR2>m=2oeb90&_p=1910963617&cid=99875875.1669509491&ul=en-us&sr=1280x1024&_s=1&sid=1669509490&sct=1&seg=0&dl=https%3A%2F%2Fbooking.hotel-berghof.com%2F%3FactiveBookingEngine%3DKBE%26propertyCode%3DAT_JOPO_BERG%26skd-checkin%3D2022-12-08%26skd-checkout%3D2022-12-15%26skd-property-code%3DAT_JOPO_BERG&dt=Verw%C3%B6hnhotel%20Berghof&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://booking.hotel-berghof.com
date: Sun, 27 Nov 2022 00:38:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
res.cloudinary.com/seekda/image/upload/w_768,h_432,c_fill,f_auto,fl_lossy,q_auto/production/AT_JOPO_BERG/_48_Sommer_Wellness.jpg
200 OK 17 kB URL HTTP/2 res.cloudinary.com/seekda/image/upload/w_768,h_432,c_fill,f_auto,fl_lossy,q_auto/production/AT_JOPO_BERG/_48_Sommer_Wellness.jpg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 768x432, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8d536562390681cae3e5ba692ed795f8
324fd67d8a240ad3ea4610366dac5fc43a4b79fc
b623fb2ab543894e42fdbe30058b3d6b4d1709de48734f66f8b1f9f813d54aa5
GET /seekda/image/upload/w_768,h_432,c_fill,f_auto,fl_lossy,q_auto/production/AT_JOPO_BERG/_48_Sommer_Wellness.jpg HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="_48_Sommer_Wellness.webp"
content-type: image/webp
etag: "8d536562390681cae3e5ba692ed795f8"
last-modified: Mon, 08 Mar 2021 09:49:46 GMT
date: Sun, 27 Nov 2022 00:38:11 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2022-11-27T00:38:11.515Z;desc=hit,rtt;dur=8
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 17274
X-Firefox-Spdy: h2
res.cloudinary.com/seekda/image/upload/w_768,h_432,c_fill,f_auto,fl_lossy,q_auto/production/AT_JOPO_BERG/adventszeit.jpg
200 OK 59 kB URL HTTP/2 res.cloudinary.com/seekda/image/upload/w_768,h_432,c_fill,f_auto,fl_lossy,q_auto/production/AT_JOPO_BERG/adventszeit.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 768x432, components 3\012- data
Hash e4155dd3327a6b16ea03eb5238085a7f
76c095a8d169d81defaf61bb2c77fc7ba5f3bf0d
1d2d6d9f56e70c0ee9534ef68d66261b94fec9855667a46b4f48c06cdc91556c
GET /seekda/image/upload/w_768,h_432,c_fill,f_auto,fl_lossy,q_auto/production/AT_JOPO_BERG/adventszeit.jpg HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "e4155dd3327a6b16ea03eb5238085a7f"
last-modified: Fri, 25 Mar 2022 09:59:33 GMT
date: Sun, 27 Nov 2022 00:38:11 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2022-11-27T00:38:11.522Z;desc=hit,rtt;dur=8
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 58723
X-Firefox-Spdy: h2
hbe-api.kognitiv.com/channels/ibe/properties/AT_JOPO_BERG/offers-overview
200 OK 139 B URL HTTP/2 hbe-api.kognitiv.com/channels/ibe/properties/AT_JOPO_BERG/offers-overview
IP
File type gzip compressed data, from Unix\012- data
Hash 96b21cde1263e02fccfabcd91f7d8f64
0499d485bc3947ade5f326f2116d7700bb1db6e5
d26c101c2cba2bbed1eabaa282c89c9466d2c3d5cebae46b81ed06305c830932
OPTIONS /channels/ibe/properties/AT_JOPO_BERG/offers-overview HTTP/1.1
Host: hbe-api.kognitiv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://booking.hotel-berghof.com/
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
status: 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://booking.hotel-berghof.com
vary: Origin
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-headers: content-type
date: Sun, 27 Nov 2022 00:38:11 GMT
set-cookie: MGLH51CKJDVB=VEI1698VEKLN9; path=/; HttpOnly; Secure
cache-control: private
X-Firefox-Spdy: h2
apm-server.seekda.com/intake/v2/rum/events
202 Accepted 0 B URL HTTP/2 apm-server.seekda.com/intake/v2/rum/events
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /intake/v2/rum/events HTTP/1.1
Host: apm-server.seekda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-ndjson
Content-Length: 46532
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
access-control-allow-origin: https://booking.hotel-berghof.com
x-content-type-options: nosniff
date: Sun, 27 Nov 2022 00:38:12 GMT
content-length: 0
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
quality.seekda.com/events/ibe/pageLeave?
200 OK 0 B URL HTTP/2 quality.seekda.com/events/ibe/pageLeave?
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /events/ibe/pageLeave? HTTP/1.1
Host: quality.seekda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: cache-control,content-type
Referer: https://booking.hotel-berghof.com/
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://booking.hotel-berghof.com
access-control-allow-methods: POST
access-control-allow-headers: cache-control, content-type
access-control-allow-credentials: true
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, TRACE, OPTIONS, PATCH
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-length: 0
date: Sun, 27 Nov 2022 00:38:17 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=cheiG8ch; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/7e0f675c-7628088f2378fdb4.js
200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/7e0f675c-7628088f2378fdb4.js
IP
GET /_next/static/chunks/7e0f675c-7628088f2378fdb4.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Tue, 27 Sep 2022 13:45:30 GMT
etag: W/"6332fe7a-cabd"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: eKEq6aqSgROC6De4rjXe7aqEgnaclL3AkGa_KGa17-S0eJZcNy12jA==
age: 990246
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/373-95390337f262d59f.js
200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/373-95390337f262d59f.js
IP
GET /_next/static/chunks/373-95390337f262d59f.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Mon, 14 Nov 2022 12:48:16 GMT
etag: W/"63723910-c616"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zsHc-eFakOSjPhdPxxzCu19uBgJY7kZqLhmfM8t6CRDmVVIouIhl8g==
age: 990246
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/234-5f3fb97a1b4a275f.js
200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/234-5f3fb97a1b4a275f.js
IP
GET /_next/static/chunks/234-5f3fb97a1b4a275f.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 14:08:22 GMT
last-modified: Tue, 15 Nov 2022 14:07:29 GMT
etag: W/"63739d21-70cc"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kgEACczJgszJkE3amKW_JGMS2J0FrJpiIsarcVo3n-uH_9RO8HRZrg==
age: 988187
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/914-7d07b1ef6b622c87.js
200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/914-7d07b1ef6b622c87.js
IP
GET /_next/static/chunks/914-7d07b1ef6b622c87.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Thu, 27 Oct 2022 11:02:24 GMT
etag: W/"635a6540-107e2"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rdjQrBjbmgdYazJEQRcrNwd-J8wpY_YFuD1clHxTHZEaWMEKEq_40A==
age: 990246
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/695-5ea418b3362d2010.js
200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/695-5ea418b3362d2010.js
IP
GET /_next/static/chunks/695-5ea418b3362d2010.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Wed, 07 Sep 2022 13:23:58 GMT
etag: W/"63189b6e-fd62"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yObfdU7C5KYMWRfB9TwhGkZvtRAWp2bk815mFEUONC_jp5A1VV7_Ug==
age: 990246
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/804-13fd754e32aa16c3.js
200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/804-13fd754e32aa16c3.js
IP
GET /_next/static/chunks/804-13fd754e32aa16c3.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Wed, 07 Sep 2022 13:23:58 GMT
etag: W/"63189b6e-7319"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _CpI5EGpn7cgqD4-4ZS8EYU8rxEbgy0nRQ8NdXnm5ngVQK2--g7rWQ==
age: 990246
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/55ba302e-56c033a647309a77.js
200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/55ba302e-56c033a647309a77.js
IP
GET /_next/static/chunks/55ba302e-56c033a647309a77.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Mon, 14 Nov 2022 12:48:16 GMT
etag: W/"63723910-100e3"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: N1hjVde-Au5P0Z3wBOz8qj0mo39YkxQD2eMK84MbbrXBJLISuKZHYg==
age: 990246
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/d099b070-221cabf5ffd73869.js
200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/d099b070-221cabf5ffd73869.js
IP
GET /_next/static/chunks/d099b070-221cabf5ffd73869.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Wed, 27 Jul 2022 15:16:14 GMT
etag: W/"62e156be-11876"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ljBAxNrwi8NQRHqNlztCOrBbd9NnjC0ciGkU7mX6ybtm0Kw-vG2_Tw==
age: 990246
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/648-e748d61c060db5c7.js
200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/648-e748d61c060db5c7.js
IP
GET /_next/static/chunks/648-e748d61c060db5c7.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Mon, 14 Nov 2022 12:48:39 GMT
etag: W/"63723927-3ac53"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: R_AFCujnNxbmNqX9qq_qISTDttAzDhN6dpJ4TpV2-QDIwh7JpbJuhQ==
age: 990246
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/eu95uf8U1F9lsTyjgNbKp/_middlewareManifest.js
200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/eu95uf8U1F9lsTyjgNbKp/_middlewareManifest.js
IP
GET /_next/static/eu95uf8U1F9lsTyjgNbKp/_middlewareManifest.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 17 Nov 2022 14:56:47 GMT
last-modified: Thu, 17 Nov 2022 14:56:17 GMT
etag: W/"63764b91-5c"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Y7HDHDf4rR0i60rZfn2aZMLanfhg6bJliRSi27Rq320DfUfFtPlBiQ==
age: 812482
X-Firefox-Spdy: h2
hbe-api.kognitiv.com/unavailable-days
200 OK 0 B URL HTTP/2 hbe-api.kognitiv.com/unavailable-days
IP
OPTIONS /unavailable-days HTTP/1.1
Host: hbe-api.kognitiv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://booking.hotel-berghof.com/
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
status: 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://booking.hotel-berghof.com
vary: Origin
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-headers: content-type
date: Sun, 27 Nov 2022 00:38:10 GMT
set-cookie: MGLH51CKJDVB=HBE7KSGFADL4; path=/; HttpOnly; Secure
cache-control: private
X-Firefox-Spdy: h2
quality.seekda.com/events/ibe/viewOffers?
200 OK 0 B URL HTTP/2 quality.seekda.com/events/ibe/viewOffers?
IP
POST /events/ibe/viewOffers? HTTP/1.1
Host: quality.seekda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Cache-Control: no-cache
Content-Length: 1791
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://booking.hotel-berghof.com
access-control-allow-credentials: true
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-type: application/json
date: Sun, 27 Nov 2022 00:38:11 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=cheiG8ch; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/659-a75792a0129c3b75.js
200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/659-a75792a0129c3b75.js
IP
GET /_next/static/chunks/659-a75792a0129c3b75.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Mon, 14 Nov 2022 12:48:39 GMT
etag: W/"63723927-42543"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: oNv163KZsDiZj99fJXY5vfpzjWgbsq5rx9jioyhFVYp8AkbVLSKPCQ==
age: 990246
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/static/icons.css?checksum=10237f48c3fa09118c62aea0fad9d4f4
200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/static/icons.css?checksum=10237f48c3fa09118c62aea0fad9d4f4
IP
GET /static/icons.css?checksum=10237f48c3fa09118c62aea0fad9d4f4 HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 03 May 2022 12:34:48 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31536000
content-encoding: br
date: Sat, 26 Nov 2022 15:45:13 GMT
etag: W/"62712168-4a0a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yTdoFA5qCd7Z8_aTsc9dk5tF9b7hx_7E9KkMXq-sF132r4jBgzHvyA==
age: 31976
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/pages/property/%5BpropertyCode%5D/packages/%5BpackageCode%5D-e7463ac5fb08b9cd.js
200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/pages/property/%5BpropertyCode%5D/packages/%5BpackageCode%5D-e7463ac5fb08b9cd.js
IP
GET /_next/static/chunks/pages/property/%5BpropertyCode%5D/packages/%5BpackageCode%5D-e7463ac5fb08b9cd.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 17 Nov 2022 14:57:01 GMT
last-modified: Thu, 17 Nov 2022 14:56:17 GMT
etag: W/"63764b91-9408"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hzs_uoec1cBCNCJa-yCjGqyMq9JLIupeZEZPODZMQaIPpB_xLT-24Q==
age: 812470
X-Firefox-Spdy: h2
static.seekda.com/widgets/tracking-api/js/tracking-api.min.js?R9f343f5a1880f9815284e9ef9423a193ba6976d2
200 OK 0 B URL HTTP/2 static.seekda.com/widgets/tracking-api/js/tracking-api.min.js?R9f343f5a1880f9815284e9ef9423a193ba6976d2
IP
GET /widgets/tracking-api/js/tracking-api.min.js?R9f343f5a1880f9815284e9ef9423a193ba6976d2 HTTP/1.1
Host: static.seekda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 00:38:10 GMT
content-type: application/javascript
content-security-policy: block-all-mixed-content
etag: W/"3868633285d5ac63f9bd0ba84f051796"
last-modified: Thu, 13 Oct 2022 12:11:40 GMT
vary: Accept-Encoding, Origin, Accept-Encoding
x-amz-replication-status: COMPLETED
x-amz-request-id: 172B4A09365551A7
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: 01da0275-ff14-45b1-acdb-50ac57ea90aa
content-encoding: gzip
strict-transport-security: max-age=15768000
server: Kognitiv
set-cookie: WEIU3SASDIO=5e35dcc058629f0; path=/; HttpOnly; Secure; SameSite=none
cache-control: max-age=43200, private
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/0b7b90cd-2a28d1759dacf41f.js
200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/0b7b90cd-2a28d1759dacf41f.js
IP
GET /_next/static/chunks/0b7b90cd-2a28d1759dacf41f.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Tue, 03 May 2022 12:24:17 GMT
etag: W/"62711ef1-22c77"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: iB6EJFFz3zbVjqMyyw2M7mGMEVAfW9Zc-5KsPgT2FIrwhrftv2Hq8Q==
age: 990246
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/38-7f41f4a9e2fe47a2.js
200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/38-7f41f4a9e2fe47a2.js
IP
GET /_next/static/chunks/38-7f41f4a9e2fe47a2.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Tue, 27 Sep 2022 13:45:54 GMT
etag: W/"6332fe92-2832"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vow_1ggYI79i01lXREhV9AmitCShN5S4fD3EZxwBDd_KQ7YnCp_pqw==
age: 990246
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/979-fc9d9c0ee5b8eeaa.js
200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/979-fc9d9c0ee5b8eeaa.js
IP
GET /_next/static/chunks/979-fc9d9c0ee5b8eeaa.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Wed, 07 Sep 2022 13:23:35 GMT
etag: W/"63189b57-7ff8"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: i1jr2_S9YJ8Qzy7P5iZXhLA53rhmYkK85JZgB7aYOWm2LUe3Rzd00Q==
age: 990246
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/956-9885616c4f0e27cf.js
200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/956-9885616c4f0e27cf.js
IP
GET /_next/static/chunks/956-9885616c4f0e27cf.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Mon, 14 Nov 2022 12:48:16 GMT
etag: W/"63723910-1052d"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: daD3X6UyNyV8j8Kt5xtJwOXnnYkZo3VLvtWtxrygyb-8hlgduJV2jg==
age: 990246
X-Firefox-Spdy: h2
hbe-api.kognitiv.com/offers
200 OK 0 B URL HTTP/2 hbe-api.kognitiv.com/offers
IP
OPTIONS /offers HTTP/1.1
Host: hbe-api.kognitiv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://booking.hotel-berghof.com/
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
status: 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://booking.hotel-berghof.com
vary: Origin
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-headers: content-type
date: Sun, 27 Nov 2022 00:38:10 GMT
set-cookie: MGLH51CKJDVB=HBE7KSGFADL4; path=/; HttpOnly; Secure
cache-control: private
X-Firefox-Spdy: h2
quality.seekda.com/events/ibe/pageReady?
200 OK 0 B URL HTTP/2 quality.seekda.com/events/ibe/pageReady?
IP
POST /events/ibe/pageReady? HTTP/1.1
Host: quality.seekda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Cache-Control: no-cache
Content-Length: 582
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://booking.hotel-berghof.com
access-control-allow-credentials: true
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-type: application/json
date: Sun, 27 Nov 2022 00:38:09 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=cheiG8ch; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/c0a33b72-efbe3e99c4b6522e.js
200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/c0a33b72-efbe3e99c4b6522e.js
IP
GET /_next/static/chunks/c0a33b72-efbe3e99c4b6522e.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Tue, 03 May 2022 12:24:17 GMT
etag: W/"62711ef1-4c0a4"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WDbmw8caTneqgBIM6dlt_I_lwTlJ5d3L7aukZ4fEqFKYybc5A85k3Q==
age: 990246
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/302-7b32094aede33cd2.js
200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/302-7b32094aede33cd2.js
IP
GET /_next/static/chunks/302-7b32094aede33cd2.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Mon, 14 Nov 2022 12:48:16 GMT
etag: W/"63723910-52fd"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 64nbE-cjUwZ5XztncWELBhiht1zefXNizzEFdaUDp7yiyv5PiHCaBg==
age: 990246
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/928-81d4822d4eb9e20b.js
200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/928-81d4822d4eb9e20b.js
IP
GET /_next/static/chunks/928-81d4822d4eb9e20b.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 14:08:22 GMT
last-modified: Tue, 15 Nov 2022 14:07:51 GMT
etag: W/"63739d37-122be"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hbYcMQvzx97XhdAiQua7Jp5mCMFOKmTjSHVu8uKS-e8EDx3iCWW6eA==
age: 988187
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/static/semantic.min.css?checksum=c693bf067390b2ec6106c2aec0a1c2b1
200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/static/semantic.min.css?checksum=c693bf067390b2ec6106c2aec0a1c2b1
IP
GET /static/semantic.min.css?checksum=c693bf067390b2ec6106c2aec0a1c2b1 HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
last-modified: Wed, 27 Jul 2022 15:15:58 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31536000
content-encoding: br
date: Sat, 26 Nov 2022 15:45:13 GMT
etag: W/"62e156ae-996ea"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: d7k3vREBZxj-N4mlbNoRZgyhioNDXtBt0ar9ExGBSrimYZIup6asmA==
age: 31976
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/main-1f7489bfb2b58832.js
200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/main-1f7489bfb2b58832.js
IP
GET /_next/static/chunks/main-1f7489bfb2b58832.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Tue, 27 Sep 2022 13:45:30 GMT
etag: W/"6332fe7a-23bda"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: H8M2_vKMJdszBoG8jlJGYTSupt0_gWiKr3JGv8eEoEsYr5hug7Skwg==
age: 990246
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/pages/_app-9e76c0e1e06f294d.js
200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/pages/_app-9e76c0e1e06f294d.js
IP
GET /_next/static/chunks/pages/_app-9e76c0e1e06f294d.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 17 Nov 2022 14:56:47 GMT
last-modified: Thu, 17 Nov 2022 14:56:17 GMT
etag: W/"63764b91-1b72b7"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CkVyqLkUXIEykCy7EIj4C6EfDf7--jSDIkZ8ADJlSAFMUsa4eQsBDA==
age: 812482
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/364-d92aebcb20cd5fa5.js
200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/364-d92aebcb20cd5fa5.js
IP
GET /_next/static/chunks/364-d92aebcb20cd5fa5.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Mon, 14 Nov 2022 12:48:39 GMT
etag: W/"63723927-2236"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: InOFz9a7Y3FMQNtw0MGF3gga6qWga2gBT7FQhnR5e_Y5PcCCFG_Tng==
age: 990246
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/333-46c4a7b284c2afba.js
200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/333-46c4a7b284c2afba.js
IP
GET /_next/static/chunks/333-46c4a7b284c2afba.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 17 Nov 2022 14:56:47 GMT
last-modified: Thu, 17 Nov 2022 14:56:24 GMT
etag: W/"63764b98-32164"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: prvbXI2PpfVZdpmTyhJ4j0Fmt7HrEwPHZs8EcwcWUqNnHNPvzms3uQ==
age: 812482
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/static/scripts/elastic-apm-rum.umd.min.js?checksum=e93c8d4d150530d83ee4ee385157b262
200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/static/scripts/elastic-apm-rum.umd.min.js?checksum=e93c8d4d150530d83ee4ee385157b262
IP
GET /static/scripts/elastic-apm-rum.umd.min.js?checksum=e93c8d4d150530d83ee4ee385157b262 HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 11 May 2022 16:35:36 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31536000
content-encoding: gzip
date: Sat, 26 Nov 2022 12:17:39 GMT
etag: W/"627be5d8-f0b3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4nl2YJqFhkAA1Xd2pyhy6ErBz2R7pw3-qJXItzRbQ3sTHgCtNG8o7Q==
age: 44430
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/framework-4774102d6f75bb1e.js
200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/framework-4774102d6f75bb1e.js
IP
GET /_next/static/chunks/framework-4774102d6f75bb1e.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Tue, 03 May 2022 12:24:17 GMT
etag: W/"62711ef1-2640a"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kjfv-SmklaT3yZ9hjfKXnv38jRpH2Ms_fTgZA2zKIOCrMoymWoYJhg==
age: 990246
X-Firefox-Spdy: h2
quality.seekda.com/events/ibe/searchBoxInit?
200 OK 0 B URL HTTP/2 quality.seekda.com/events/ibe/searchBoxInit?
IP
POST /events/ibe/searchBoxInit? HTTP/1.1
Host: quality.seekda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Cache-Control: no-cache
Content-Length: 606
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://booking.hotel-berghof.com
access-control-allow-credentials: true
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-type: application/json
date: Sun, 27 Nov 2022 00:38:10 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=thei9zuS; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/css/aef94e65b69df765.css
200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/css/aef94e65b69df765.css
IP
GET /_next/static/css/aef94e65b69df765.css HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
date: Tue, 15 Nov 2022 14:08:22 GMT
last-modified: Tue, 15 Nov 2022 14:07:51 GMT
etag: W/"63739d37-4f92a"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TJuai1RXCVZUvyzJUg9md3PHNVI8zM9WNorac4qkpyp6Z20COL7ZVQ==
age: 988187
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/818-a094285c8d767a46.js
200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/818-a094285c8d767a46.js
IP
GET /_next/static/chunks/818-a094285c8d767a46.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Mon, 14 Nov 2022 12:48:39 GMT
etag: W/"63723927-5d13a"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NYzXynqM03qRqIe8Yohv2IX8TGI29HB_wc8B0aBztgSAbmwrYfS4KA==
age: 990246
X-Firefox-Spdy: h2
quality.seekda.com/events/ibe/pageLoaded?
200 OK 0 B URL HTTP/2 quality.seekda.com/events/ibe/pageLoaded?
IP
POST /events/ibe/pageLoaded? HTTP/1.1
Host: quality.seekda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Cache-Control: no-cache
Content-Length: 623
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://booking.hotel-berghof.com
access-control-allow-credentials: true
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-type: application/json
date: Sun, 27 Nov 2022 00:38:09 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=cheiG8ch; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/webpack-af0fc1fb1b57cb39.js
200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/webpack-af0fc1fb1b57cb39.js
IP
GET /_next/static/chunks/webpack-af0fc1fb1b57cb39.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Tue, 03 May 2022 12:34:30 GMT
etag: W/"62712156-7ce"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uefCR4UL-xR92MZpogLxHaMwivHTGTy9o_4B0RpYzcpBP0DYYp5Lyw==
age: 990246
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/9925d6f9-594357b138804968.js
200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/9925d6f9-594357b138804968.js
IP
GET /_next/static/chunks/9925d6f9-594357b138804968.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Mon, 14 Nov 2022 12:48:16 GMT
etag: W/"63723910-5dc65"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -UYWmYS4Iz5IrWYxOQgZyPHqdg_V1N1NA8q2poXq7Vtl0fW7FAq1JQ==
age: 990246
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/433-a2824426e6ccb54e.js
200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/433-a2824426e6ccb54e.js
IP
GET /_next/static/chunks/433-a2824426e6ccb54e.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Mon, 14 Nov 2022 12:48:39 GMT
etag: W/"63723927-42f15"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ga0RoMTy1gDaUCOUz4511WZW9xwnJAtLJwKXWHydFLLQYS_S1zy9ug==
age: 990246
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/eu95uf8U1F9lsTyjgNbKp/_buildManifest.js
200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/eu95uf8U1F9lsTyjgNbKp/_buildManifest.js
IP
GET /_next/static/eu95uf8U1F9lsTyjgNbKp/_buildManifest.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 17 Nov 2022 14:56:47 GMT
last-modified: Thu, 17 Nov 2022 14:56:17 GMT
etag: W/"63764b91-e22"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7WJmPZ3F9ykHFVZ8O9iZ_yyQQ9hmSMOUYpAtGHBUs6vUA_C5COQcIA==
age: 812482
X-Firefox-Spdy: h2
cloud.seekda.com/w/w-tracking-api/group:BookingFlow/69549e60-3d6e-0136-cbf5-0050568253f2.js
200 OK 0 B URL HTTP/2 cloud.seekda.com/w/w-tracking-api/group:BookingFlow/69549e60-3d6e-0136-cbf5-0050568253f2.js
IP
GET /w/w-tracking-api/group:BookingFlow/69549e60-3d6e-0136-cbf5-0050568253f2.js HTTP/1.1
Host: cloud.seekda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
status: 200 OK
x-rack-cache: miss
cache-control: max-age=0, private, must-revalidate
date: Sun, 27 Nov 2022 00:38:09 GMT
x-ua-compatible: IE=Edge,chrome=1
etag: W/"22db3319eb65f407f66a7f4279770598"
x-runtime: 0.004152
x-request-id: 576e47d2bd8e65440472fe08af7bb315
x-powered-by: Phusion Passenger(R) 6.0.14
server: nginx/1.20.2 + Phusion Passenger(R) 6.0.14
content-encoding: gzip
strict-transport-security: max-age=15768000
set-cookie: SDLKJWIUDKIJS=5ec24e309224d20; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2
135.125.240.140
142.250.74.168
93.184.220.29
18.157.122.248
151.101.85.137
23.36.77.32
0.0.0.0