firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 27 Sep 2022 17:15:30 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _J2qtSA-Mq080tz-7LRWTu5v58tus4KKS_VabPGjrAkKzhoYyOwTlw==
Age: 558
sheep.blatnet.com/
45.79.19.196200 OK 7.0 kB IP 45.79.19.196:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (303)
Hash 9654a655fe16fb9c13be8ff044a406b2
c54ee98c15d98630fa5587e8af07faf3a8e9c2b1
973a723f9b452f9cfa12d2e09a9035f62b6ff373cb83deec08755a59b37d4bdf
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: sheep.blatnet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
server: openresty/1.13.6.1
date: Tue, 27 Sep 2022 17:24:48 GMT
content-type: text/html; charset=utf-8
content-length: 7037
vary: Accept-Language
content-language: en
connection: close
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10086
Expires: Tue, 27 Sep 2022 20:12:54 GMT
Date: Tue, 27 Sep 2022 17:24:48 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 27 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: wGDRtmO8GEwBaO5__DDiZnZbtpL7_C_C06GSpcvPNj0rxcRbRVgPBw==
age: 28835
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 17:24:48 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
sheep.blatnet.com/mtm/async/.eJxdi0kOwjAQBP8yx2DZHFnEW9DE6iSWvGEPwRLi7zjAiVtVl_pJ9-LoRIYUcZlrx04FEwrKV5ZU5Ro5oGtdgKxHzxIh2qaw3axFlh4FTcwiwSvO2TvL4lI0bVt27X8N_ny77PVRucAzDK9u-uEDY1aDGT79QK83JK02kQ:1odEK8:loUhLt_8My5bBqNH-1JjeoXqlzo/1/0
45.79.19.196200 OK 427 B URL HTTP/1.1 sheep.blatnet.com/mtm/async/.eJxdi0kOwjAQBP8yx2DZHFnEW9DE6iSWvGEPwRLi7zjAiVtVl_pJ9-LoRIYUcZlrx04FEwrKV5ZU5Ro5oGtdgKxHzxIh2qaw3axFlh4FTcwiwSvO2TvL4lI0bVt27X8N_ny77PVRucAzDK9u-uEDY1aDGT79QK83JK02kQ:1odEK8:loUhLt_8My5bBqNH-1JjeoXqlzo/1/0
IP 45.79.19.196:0
File type ASCII text, with very long lines (427), with no line terminators
Hash 0f5f2a28e93358917d6b50999e2615d1
f67a7a9f9b5ed4be31e62e1d7c500f16ab1a2a2d
bea144e7990e0667099ce365ad89315e964b5acdedb08bb3c3edd0804e9efc08
Analyzer Verdict Alert fortinet Malware
GET /mtm/async/.eJxdi0kOwjAQBP8yx2DZHFnEW9DE6iSWvGEPwRLi7zjAiVtVl_pJ9-LoRIYUcZlrx04FEwrKV5ZU5Ro5oGtdgKxHzxIh2qaw3axFlh4FTcwiwSvO2TvL4lI0bVt27X8N_ny77PVRucAzDK9u-uEDY1aDGT79QK83JK02kQ:1odEK8:loUhLt_8My5bBqNH-1JjeoXqlzo/1/0 HTTP/1.1
Host: sheep.blatnet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://sheep.blatnet.com/
Connection: keep-alive
HTTP/1.1 200 OK
server: openresty/1.13.6.1
date: Tue, 27 Sep 2022 17:24:48 GMT
content-type: text/html; charset=utf-8
content-length: 427
x-mtm-path: 0
vary: Accept-Language
content-language: en
set-cookie: mtm_delivered=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:1odEK8:HZrrlCrQ5k6MyUReW1MWnWSEGrc; expires=Tue, 27-Sep-2022 18:24:48 GMT; Max-Age=3600; Path=/
connection: close
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 27 Sep 2022 17:10:46 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Tue, 27 Sep 2022 17:50:23 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: krmuNig0k9qD_IgZoqFywlLLi3VgzYuNNxIV6XhWzMiFKemdhqJTww==
Age: 842
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c18823050f86339eaa73ddb1bf80d64c
ac4ee81f59f706cee8a74458d498bbc20d8d351a
9a505647517bd02d8ff994fd4ad98dc2f4b519916145b0c327691420c1084c46
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3340
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 17:24:49 GMT
Last-Modified: Tue, 27 Sep 2022 16:29:09 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
www1.blatnet.com/?tm=1&subid4=1664299488.0444880000&kw=options&KW1=Get%20An%20Online%20Degree&KW2=Elite%20Dating%20Services&KW3=B2B%20Travel%20Booking%20System&KW4=Dedicated%20Gaming%20Server&KW5=Social%20Media%20Automation%20Marketing%20Software&KW6=Elite%20Dating%20Services&KW7=Best%20Mortgage%20Refinancing%20Rates&KW8=Best%20Mortgage%20Refinancing%20Rates&KW9=Lowest%20Car%20Insurance%20Rates&searchbox=0&backfill=0
13.248.148.254200 OK 2.5 kB URL HTTP/1.1 www1.blatnet.com/?tm=1&subid4=1664299488.0444880000&kw=options&KW1=Get%20An%20Online%20Degree&KW2=Elite%20Dating%20Services&KW3=B2B%20Travel%20Booking%20System&KW4=Dedicated%20Gaming%20Server&KW5=Social%20Media%20Automation%20Marketing%20Software&KW6=Elite%20Dating%20Services&KW7=Best%20Mortgage%20Refinancing%20Rates&KW8=Best%20Mortgage%20Refinancing%20Rates&KW9=Lowest%20Car%20Insurance%20Rates&searchbox=0&backfill=0
IP 13.248.148.254:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2214)
Hash fa5addb7ca6eb794c80b78b63647c7d9
c8aa2fa3acd49f188f80efcf5ca59749d88e1ac8
8343a99202140d7cc82131a18d272c16bb82c16300f044b321756b39a8c3596a
GET /?tm=1&subid4=1664299488.0444880000&kw=options&KW1=Get%20An%20Online%20Degree&KW2=Elite%20Dating%20Services&KW3=B2B%20Travel%20Booking%20System&KW4=Dedicated%20Gaming%20Server&KW5=Social%20Media%20Automation%20Marketing%20Software&KW6=Elite%20Dating%20Services&KW7=Best%20Mortgage%20Refinancing%20Rates&KW8=Best%20Mortgage%20Refinancing%20Rates&KW9=Lowest%20Car%20Insurance%20Rates&searchbox=0&backfill=0 HTTP/1.1
Host: www1.blatnet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sheep.blatnet.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 17:24:49 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-Redirect: zeropark_zeroclick
X-Template: tpl_CleanPeppermintBlack_twoclick
X-Language: norwegian
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Content-Encoding: gzip
push.services.mozilla.com/
54.148.148.62101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.148.62:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Cothq5R24r69tu4/bo1UHg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 1jjNCaxyKwGb9eCCZjElYBYdwVs=
d38psrni17bvxu.cloudfront.net/scripts/js3.js
54.230.245.130200 OK 1.1 kB URL HTTP/1.1 d38psrni17bvxu.cloudfront.net/scripts/js3.js
IP 54.230.245.130:0
File type ASCII text, with very long lines (506)
Hash 64b79b43df8fbf2c5d082964b9116a68
dc3c763519baf0f4c32bb60bfc429651a491ea01
c57e9feec209e3ea5eb1d75a1ba6fa277242a3df250055be8446052b51e58637
GET /scripts/js3.js HTTP/1.1
Host: d38psrni17bvxu.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.blatnet.com/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 1134
Connection: keep-alive
Server: nginx
Date: Tue, 27 Sep 2022 09:14:30 GMT
Last-Modified: Tue, 17 Aug 2021 09:17:22 GMT
Accept-Ranges: bytes
ETag: "611b7ea2-46e"
X-Cache: Hit from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: mxyzb5uLdNtz1PVqdGa8zITWAdsBUejA_0Mkgj_qfFDdi-1YcmP5Uw==
Age: 29419
www1.blatnet.com/track.php?domain=blatnet.com&toggle=browserjs&uid=MTY2NDI5OTQ4OC44NTQ4OmIwNzEyNTY5NmMzYWMwNGQ0ZWYwNzA3Zjc0YjFlNzkyYjFkZjcyY2NiNWMzZjEzYjYxMzE1YmQ5MzI1NjhhMWM6NjMzMzMxZTBkMGIzNQ%3D%3D
13.248.148.254200 OK 20 B URL HTTP/1.1 www1.blatnet.com/track.php?domain=blatnet.com&toggle=browserjs&uid=MTY2NDI5OTQ4OC44NTQ4OmIwNzEyNTY5NmMzYWMwNGQ0ZWYwNzA3Zjc0YjFlNzkyYjFkZjcyY2NiNWMzZjEzYjYxMzE1YmQ5MzI1NjhhMWM6NjMzMzMxZTBkMGIzNQ%3D%3D
IP 13.248.148.254:0
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /track.php?domain=blatnet.com&toggle=browserjs&uid=MTY2NDI5OTQ4OC44NTQ4OmIwNzEyNTY5NmMzYWMwNGQ0ZWYwNzA3Zjc0YjFlNzkyYjFkZjcyY2NiNWMzZjEzYjYxMzE1YmQ5MzI1NjhhMWM6NjMzMzMxZTBkMGIzNQ%3D%3D HTTP/1.1
Host: www1.blatnet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.blatnet.com/?tm=1&subid4=1664299488.0444880000&kw=options&KW1=Get%20An%20Online%20Degree&KW2=Elite%20Dating%20Services&KW3=B2B%20Travel%20Booking%20System&KW4=Dedicated%20Gaming%20Server&KW5=Social%20Media%20Automation%20Marketing%20Software&KW6=Elite%20Dating%20Services&KW7=Best%20Mortgage%20Refinancing%20Rates&KW8=Best%20Mortgage%20Refinancing%20Rates&KW9=Lowest%20Car%20Insurance%20Rates&searchbox=0&backfill=0
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 17:24:50 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-Custom-Track: browserjs
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Access-Control-Allow-Origin: *
Content-Encoding: gzip
www1.blatnet.com/ls.php
13.248.148.254201 Created 0 B IP 13.248.148.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
POST /ls.php HTTP/1.1
Host: www1.blatnet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 2166
Origin: http://www1.blatnet.com
Connection: keep-alive
Referer: http://www1.blatnet.com/?tm=1&subid4=1664299488.0444880000&kw=options&KW1=Get%20An%20Online%20Degree&KW2=Elite%20Dating%20Services&KW3=B2B%20Travel%20Booking%20System&KW4=Dedicated%20Gaming%20Server&KW5=Social%20Media%20Automation%20Marketing%20Software&KW6=Elite%20Dating%20Services&KW7=Best%20Mortgage%20Refinancing%20Rates&KW8=Best%20Mortgage%20Refinancing%20Rates&KW9=Lowest%20Car%20Insurance%20Rates&searchbox=0&backfill=0
HTTP/1.1 201 Created
Date: Tue, 27 Sep 2022 17:24:50 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
X-Log-Success: 633331e282f48c06da0a047e
Charset: utf-8
Access-Control-Allow-Origin: http://www1.blatnet.com
Access-Control-Allow-Methods: POST, OPTIONS
Access-Control-Max-Age: 86400
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_C9zXq9UlCGeB5oNL2Vouk2yf9z7nwsAJwWdpPqfBuH5+DZDmegPMwTtz1A2fRm60hK5FusETYWIELLuUczWamA==
www1.blatnet.com/favicon.ico
13.248.148.254200 OK 0 B URL HTTP/1.1 www1.blatnet.com/favicon.ico
IP 13.248.148.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: www1.blatnet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.blatnet.com/?tm=1&subid4=1664299488.0444880000&kw=options&KW1=Get%20An%20Online%20Degree&KW2=Elite%20Dating%20Services&KW3=B2B%20Travel%20Booking%20System&KW4=Dedicated%20Gaming%20Server&KW5=Social%20Media%20Automation%20Marketing%20Software&KW6=Elite%20Dating%20Services&KW7=Best%20Mortgage%20Refinancing%20Rates&KW8=Best%20Mortgage%20Refinancing%20Rates&KW9=Lowest%20Car%20Insurance%20Rates&searchbox=0&backfill=0
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 17:24:50 GMT
Content-Type: image/x-icon
Content-Length: 0
Connection: keep-alive
Server: nginx
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
ETag: "5ebab1f0-0"
Accept-Ranges: bytes
www1.blatnet.com/track.php?click=7734c042495d131ef4c95617c4712d5c9f446293&domain=blatnet.com&uid=MTY2NDI5OTQ4OC44NTQ4OmIwNzEyNTY5NmMzYWMwNGQ0ZWYwNzA3Zjc0YjFlNzkyYjFkZjcyY2NiNWMzZjEzYjYxMzE1YmQ5MzI1NjhhMWM6NjMzMzMxZTBkMGIzNQ%3D%3D&ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTF8fHx8fHw2MzMzMzFlMGQwYjIyfHx8MTY2NDI5OTQ4OS4yNDkyfDgwNjVkMjU2MzQ0MGNkYTI1MDM0ZGRkMTNjYjI1ODdhM2EwMTQ0YTZ8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXxjYTI3ZDRhOTkxZGNjNTk4NWMxODI5MTkzNmM4ZDU2ZjgxMzk3MjFkfDB8ZHAtdGVhbWludGVybmV0MTJfM3BofDB8MA%3D%3D&kw=&search=&pcat=&rxid=&bucket=&clientID=&adtest=off
13.248.148.254200 OK 20 B URL HTTP/1.1 www1.blatnet.com/track.php?click=7734c042495d131ef4c95617c4712d5c9f446293&domain=blatnet.com&uid=MTY2NDI5OTQ4OC44NTQ4OmIwNzEyNTY5NmMzYWMwNGQ0ZWYwNzA3Zjc0YjFlNzkyYjFkZjcyY2NiNWMzZjEzYjYxMzE1YmQ5MzI1NjhhMWM6NjMzMzMxZTBkMGIzNQ%3D%3D&ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTF8fHx8fHw2MzMzMzFlMGQwYjIyfHx8MTY2NDI5OTQ4OS4yNDkyfDgwNjVkMjU2MzQ0MGNkYTI1MDM0ZGRkMTNjYjI1ODdhM2EwMTQ0YTZ8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXxjYTI3ZDRhOTkxZGNjNTk4NWMxODI5MTkzNmM4ZDU2ZjgxMzk3MjFkfDB8ZHAtdGVhbWludGVybmV0MTJfM3BofDB8MA%3D%3D&kw=&search=&pcat=&rxid=&bucket=&clientID=&adtest=off
IP 13.248.148.254:0
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /track.php?click=7734c042495d131ef4c95617c4712d5c9f446293&domain=blatnet.com&uid=MTY2NDI5OTQ4OC44NTQ4OmIwNzEyNTY5NmMzYWMwNGQ0ZWYwNzA3Zjc0YjFlNzkyYjFkZjcyY2NiNWMzZjEzYjYxMzE1YmQ5MzI1NjhhMWM6NjMzMzMxZTBkMGIzNQ%3D%3D&ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTF8fHx8fHw2MzMzMzFlMGQwYjIyfHx8MTY2NDI5OTQ4OS4yNDkyfDgwNjVkMjU2MzQ0MGNkYTI1MDM0ZGRkMTNjYjI1ODdhM2EwMTQ0YTZ8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXxjYTI3ZDRhOTkxZGNjNTk4NWMxODI5MTkzNmM4ZDU2ZjgxMzk3MjFkfDB8ZHAtdGVhbWludGVybmV0MTJfM3BofDB8MA%3D%3D&kw=&search=&pcat=&rxid=&bucket=&clientID=&adtest=off HTTP/1.1
Host: www1.blatnet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.blatnet.com/?tm=1&subid4=1664299488.0444880000&kw=options&KW1=Get%20An%20Online%20Degree&KW2=Elite%20Dating%20Services&KW3=B2B%20Travel%20Booking%20System&KW4=Dedicated%20Gaming%20Server&KW5=Social%20Media%20Automation%20Marketing%20Software&KW6=Elite%20Dating%20Services&KW7=Best%20Mortgage%20Refinancing%20Rates&KW8=Best%20Mortgage%20Refinancing%20Rates&KW9=Lowest%20Car%20Insurance%20Rates&searchbox=0&backfill=0
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 17:24:50 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-View-Match: true
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Access-Control-Allow-Origin: *
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5848
Expires: Tue, 27 Sep 2022 19:02:18 GMT
Date: Tue, 27 Sep 2022 17:24:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5848
Expires: Tue, 27 Sep 2022 19:02:18 GMT
Date: Tue, 27 Sep 2022 17:24:50 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2517fd65-65c6-43b1-93a6-b1205ba3f0f8.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2517fd65-65c6-43b1-93a6-b1205ba3f0f8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5274e770cb5a704916c8965659709f4a
1a26007f761e439db575fb80fb403031260aecf4
e36e8be75c92feb9b416a46c5918356d8f9694894a799b7c10de21034d33d5ef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2517fd65-65c6-43b1-93a6-b1205ba3f0f8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7455
x-amzn-requestid: 0887cd56-f324-46cf-a086-709e1c66f354
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGBTdHmhoAMFvIw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633248e2-42391706084f335228fe3994;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 00:50:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: IWzfDNFlgYdqYnbQ9uWfOvqb5zl3I3mgTZrT5pU5P3EvetMRDN5P7w==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 01:06:47 GMT
age: 58683
etag: "1a26007f761e439db575fb80fb403031260aecf4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 62e68c3cd08dd94d910507512a67e85f
3d4fa8701f17e8818c25584ef5f04bfbee8440cd
058d798963f83f5fb88ab728185f755c5353fa981d93e1b6ff869089f501586b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13213
x-amzn-requestid: fe9ec409-2757-4910-8443-5b4d3be7efd3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlATEp8oAMFd9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b9b-3230e97a4fe34413285eb578;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:37:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: kRSg9NTTAgeAJgIZ_C9_rRodCX4bzGduJEvNPNHUya0Moa2vsmWSoQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:38:57 GMT
age: 71153
etag: "3d4fa8701f17e8818c25584ef5f04bfbee8440cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash deb8d1e3b6d7fbc8c8ba478269621676
84f5a4c8b38acde814bc790e5b514347718d5bb9
ed14fa766f0708b4166e83b61f160db5671af430917b7c67184bf18d9208742b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9163
x-amzn-requestid: 8ccd9b1f-bef9-4591-be32-e6dd98f4ee78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlKpEZrIAMFS1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321bdd-4a40b9c8281b64c725fec0f1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:38:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: bs6HOUmHOoYKDuzBoVHhcr8d4HP4bBmwUF3EtOmwKXo7ozhfaIYEvw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:39:07 GMT
age: 71143
etag: "84f5a4c8b38acde814bc790e5b514347718d5bb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F171029d0-40d4-47b3-8936-8ba3b16b3212.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F171029d0-40d4-47b3-8936-8ba3b16b3212.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 347dca206e13a3b13953f0ab398310b4
be60bbc96c832ae385cc9ae5828bd32703011b21
f6da888a54a0c6c73466f2c2a72dd875514a39d81b760a6b0116b4dd56ef31dd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F171029d0-40d4-47b3-8936-8ba3b16b3212.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10211
x-amzn-requestid: 3ea4ac84-2465-4bd1-8ade-863de3c9576e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YbfSuGoQoAMF9oQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632145aa-7843b82728ead9a053c689d1;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 03:08:26 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: p1vYTqYjOmYHjVmJ8f6qyT_nLIsyXsr7ZI-DI7JBF9RJa0ZJNPiluA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:56:23 GMT
age: 70107
etag: "be60bbc96c832ae385cc9ae5828bd32703011b21"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F658e1cdd-3e54-47dd-9724-ec65659721ea.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F658e1cdd-3e54-47dd-9724-ec65659721ea.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 14218a43c5e5bbce546735a780c8ccce
61676358cdbb2373bc644e66f8a84fbc8cc5daf6
905b1c30a2273aef69904f2eb1451c756fc1fdba02e86ea5c957629dd056aeda
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F658e1cdd-3e54-47dd-9724-ec65659721ea.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6390
x-amzn-requestid: b2681ff8-ab83-41e6-adef-3e6772c93c3f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGFJ6Gc_oAMF44g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63324f0c-3dbf9f4e2047567b5abdbe74;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 01:17:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8JXEBo_L_xKuKdeoOXEJ6FO7ZVsZVQzUmQFe7fYcxaHRQNEq1HWp6w==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 01:37:50 GMT
age: 56820
etag: "61676358cdbb2373bc644e66f8a84fbc8cc5daf6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63a7aeb3-999a-4e57-9255-c40e0376d08e.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63a7aeb3-999a-4e57-9255-c40e0376d08e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 46e31aa06b8e86a9a5f9ba1cc3feca08
75df3341e30281fcbf78c7074980356fdf0be8e2
d1fd4f81b7e0f43de960f0ee024d9e87bcb395f032a4ab0360e3829d1ec8a42b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63a7aeb3-999a-4e57-9255-c40e0376d08e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5319
x-amzn-requestid: 74191b02-ebea-48bd-8522-f05bf8080f31
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlOKFtsIAMFyGQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321bf4-1f2daa9d7906bf9812e10953;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:39:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Y0gjPs-l9_JD9F-LSH_i1uL2Nz0UcWCG-9PmDmRH8cN_cNAeSchJTA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:39:00 GMT
etag: "75df3341e30281fcbf78c7074980356fdf0be8e2"
content-type: image/jpeg
age: 71150
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
irene-eux.com/zcvisitor/49ee9e92-3e89-11ed-9878-0a312085c2e5/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=69448440-0fb4-11eb-bafe-0afaf647e889
52.45.156.125200 996 B URL HTTP/1.1 irene-eux.com/zcvisitor/49ee9e92-3e89-11ed-9878-0a312085c2e5/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=69448440-0fb4-11eb-bafe-0afaf647e889
IP 52.45.156.125:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b52e441ebcb7943ef4c557e2bce88e0d
6738e808aebbd7e4b1fcc3160f564f6045304dcc
537eb931b7cbcdec2a275ecaf1ccbec84c7285fa3e655af83b8ba2bee468e352
GET /zcvisitor/49ee9e92-3e89-11ed-9878-0a312085c2e5/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=69448440-0fb4-11eb-bafe-0afaf647e889 HTTP/1.1
Host: irene-eux.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.blatnet.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Date: Tue, 27 Sep 2022 17:24:50 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Server: IEGrjnNP
irene-eux.com/zcredirect?visitid=49ee9e92-3e89-11ed-9878-0a312085c2e5&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false
52.45.156.125200 734 B URL HTTP/1.1 irene-eux.com/zcredirect?visitid=49ee9e92-3e89-11ed-9878-0a312085c2e5&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false
IP 52.45.156.125:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (324)
Hash b8ad5f2e830507d2cc0765fdbf3117fb
3d57d3865db0a76bd0c023b6588df79a8d91a91b
79fe5a9d590f52312df65d3f1d7d99f33733822a46f1e75a154ac48f52da0ee0
GET /zcredirect?visitid=49ee9e92-3e89-11ed-9878-0a312085c2e5&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false HTTP/1.1
Host: irene-eux.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://irene-eux.com/zcvisitor/49ee9e92-3e89-11ed-9878-0a312085c2e5/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=69448440-0fb4-11eb-bafe-0afaf647e889
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Date: Tue, 27 Sep 2022 17:24:50 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
redirected: JS
Server: tQOLENWR
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b851dbca60b0b9a4b1e8e9b6f29a6936
116ac4fa33d24267ac90741194cac6a474c6ab26
0e8d8ccd1dbd8d54d9f62c00a4359957de5956a6aa7ed4b19c6d7ba6da2f4625
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2570
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 17:24:50 GMT
Last-Modified: Tue, 27 Sep 2022 16:42:00 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b52b7af4de303ab479ecf74a5d5d9481
2d206ff47f554733419933f9004a5302c23edfd4
44feeafda5eef17395ee6ae1c2b7720d9070c0fdb23dc4ba3d0867417298da77
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5729
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 17:24:50 GMT
Last-Modified: Tue, 27 Sep 2022 15:49:21 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
bit.ly/2zkHJsK?utm_content=charlie-old-kgjy4d4mm5&utm_keyword=get+an+online+degree%2Celite+dating+services%2Cb2b+travel+booking+system%2Cdedicated+gaming+server%2Csocial+media+automation+marketing+software%2Cbest+mortgage+refinancing+rates%2Clowest+car+insurance+rates
67.199.248.11301 Moved Permanently 133 B URL HTTP/2 bit.ly/2zkHJsK?utm_content=charlie-old-kgjy4d4mm5&utm_keyword=get+an+online+degree%2Celite+dating+services%2Cb2b+travel+booking+system%2Cdedicated+gaming+server%2Csocial+media+automation+marketing+software%2Cbest+mortgage+refinancing+rates%2Clowest+car+insurance+rates
IP 67.199.248.11:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash fac4f22819054b3bcc5318fbd82717e5
007e7754ba5b50b781cbcd63fc47142b2d7fba58
0a833b8649fca4d9cdc9d9ba7683ec8971f2a6538a64d5b658946331a7d4e931
GET /2zkHJsK?utm_content=charlie-old-kgjy4d4mm5&utm_keyword=get+an+online+degree%2Celite+dating+services%2Cb2b+travel+booking+system%2Cdedicated+gaming+server%2Csocial+media+automation+marketing+software%2Cbest+mortgage+refinancing+rates%2Clowest+car+insurance+rates HTTP/1.1
Host: bit.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://irene-eux.com/
Cookie: _bit=m4n70G-fbf313ce899bb62166-00t
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Tue, 27 Sep 2022 17:24:50 GMT
content-type: text/html; charset=utf-8
content-length: 133
cache-control: private, max-age=90
location: https://www.booking.com/index.html?aid=1858279
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b851dbca60b0b9a4b1e8e9b6f29a6936
116ac4fa33d24267ac90741194cac6a474c6ab26
0e8d8ccd1dbd8d54d9f62c00a4359957de5956a6aa7ed4b19c6d7ba6da2f4625
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2571
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 17:24:51 GMT
Last-Modified: Tue, 27 Sep 2022 16:42:00 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b52b7af4de303ab479ecf74a5d5d9481
2d206ff47f554733419933f9004a5302c23edfd4
44feeafda5eef17395ee6ae1c2b7720d9070c0fdb23dc4ba3d0867417298da77
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5730
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 17:24:51 GMT
Last-Modified: Tue, 27 Sep 2022 15:49:21 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
irene-eux.com/favicon.ico
52.45.156.125404 653 B URL HTTP/1.1 irene-eux.com/favicon.ico
IP 52.45.156.125:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (649), with no line terminators
Hash ba2732b1b2fa2626ffaa15f62f9e7d66
203d4e7fbb1d80449d6e4e1f3ae7a9bf8625debe
879861cb72fe9fbb476dab246021c4c83b4066327de2529e05ec54d3afb0a1c8
GET /favicon.ico HTTP/1.1
Host: irene-eux.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://irene-eux.com/zcredirect?visitid=49ee9e92-3e89-11ed-9878-0a312085c2e5&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false
HTTP/1.1 404
Date: Tue, 27 Sep 2022 17:24:50 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 653
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Content-Language: en
Server: GqGIymIV
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 4b011405eee0c2ac5918e7efcf341b7c
3d1eb44df698798d6cfb7a228f1017bddaee9f6a
8e02ef5b600b6a91a66b099328e748758760fb4eb53fde27c263a61041dc78af
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3461
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 17:24:51 GMT
Last-Modified: Tue, 27 Sep 2022 16:27:10 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 314
cf.bstatic.com/static/js/crossorigin_check_cloudfront_sd/2454015045ef79168d452ff4e7f30bdadff0aa81.js
54.230.111.69200 OK 95 B URL HTTP/2 cf.bstatic.com/static/js/crossorigin_check_cloudfront_sd/2454015045ef79168d452ff4e7f30bdadff0aa81.js
IP 54.230.111.69:0
File type ASCII text, with no line terminators
Hash 335be8900580e9c3875dba57334294ae
a86597d2ddfa410df13bceca86fdf9a2291fe798
8a882fd19a15567e53a5c3c08d22cdab714fa87734ed92d854c4e8fdf3940b1f
GET /static/js/crossorigin_check_cloudfront_sd/2454015045ef79168d452ff4e7f30bdadff0aa81.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 95
server: nginx
date: Fri, 09 Sep 2022 04:23:47 GMT
last-modified: Wed, 10 Apr 2019 11:21:38 GMT
etag: "5cadd1c2-5f"
expires: Sun, 09 Oct 2022 04:23:47 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AohcgPb8BE-jbuuuJlo7y_a66Az3idug0depMCdhlhBpR-IPYE3Nfw==
age: 1602064
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/OtAutoBlock.js
104.16.149.64200 OK 6.7 kB URL HTTP/2 cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/OtAutoBlock.js
IP 104.16.149.64:0
File type ASCII text, with very long lines (37276)
Hash 7a162a3385ec2f2fbe0be1fdd55afde3
5a37630a30526266cdaa387a32f50f20bae5ffd3
f6143442002776683e3fe10ee2b1aa2fa3d3fba2e491ea7eb1044591adb8c515
GET /consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/OtAutoBlock.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 17:24:51 GMT
content-type: application/x-javascript
content-length: 6671
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: ehYqM4XsLy++C+H91Vr94w==
last-modified: Fri, 26 Aug 2022 07:01:56 GMT
etag: 0x8DA8730DD26D15A
x-ms-request-id: 7facd802-201e-00a4-6619-b9e202000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 13274
expires: Tue, 27 Sep 2022 21:24:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7515ef6ed885b4eb-OSL
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/error_catcher_bec_cloudfront_sd/282f83b6049fe9bacd964cb6ea8a6d5447528b14.js
54.230.111.69200 OK 9.3 kB URL HTTP/2 cf.bstatic.com/static/js/error_catcher_bec_cloudfront_sd/282f83b6049fe9bacd964cb6ea8a6d5447528b14.js
IP 54.230.111.69:0
File type ASCII text, with very long lines (6029), with no line terminators
Hash 4175a1aac871c1fbcc0311c296629cdb
a100464752ccf549c28c71614860c52a29636c4f
256c294aa36d58383bd320878f8a7b1cfb70f0584192f984bb18f4d18279d807
GET /static/js/error_catcher_bec_cloudfront_sd/282f83b6049fe9bacd964cb6ea8a6d5447528b14.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Sat, 10 Sep 2022 00:51:02 GMT
last-modified: Mon, 06 Sep 2021 09:43:20 GMT
etag: W/"6135e2b8-178d"
expires: Mon, 10 Oct 2022 00:51:02 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DL6XM4c31vjB8lTEl8_mlcVvVWWfyLFkLA4hGpQhBeZPXk6BLH_GMg==
age: 1528429
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/main_exps_cloudfront_sd.iq_ltr/905516ec33d6bdf24b9ce20846c8be7eafe7a886.css
54.230.111.69200 OK 23 kB URL HTTP/2 cf.bstatic.com/static/css/main_exps_cloudfront_sd.iq_ltr/905516ec33d6bdf24b9ce20846c8be7eafe7a886.css
IP 54.230.111.69:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 5e7936814d09e221f8cd73c687d40729
4389dcda65eb05f4427fa15141ca1712a1667bf9
3c75608cc40587ab2bf099ffa5a9d2ec94cd1925cba6b58a3f9c891e63a4f7a0
GET /static/css/main_exps_cloudfront_sd.iq_ltr/905516ec33d6bdf24b9ce20846c8be7eafe7a886.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Wed, 21 Sep 2022 13:24:06 GMT
last-modified: Mon, 22 Aug 2022 12:14:02 GMT
etag: W/"6303730a-1f32e"
expires: Fri, 21 Oct 2022 13:24:06 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qn1PHClDhwFACjY5ebOMK3bTFGMTYS-ar8AE-s-9EDyjgZvQlsn6TQ==
age: 532845
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/index_cloudfront_sd.iq_ltr/f4741905304bff7fd68a0534ff1d24487f2b7445.css
54.230.111.69200 OK 52 kB URL HTTP/2 cf.bstatic.com/static/css/index_cloudfront_sd.iq_ltr/f4741905304bff7fd68a0534ff1d24487f2b7445.css
IP 54.230.111.69:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 6caf079c5c631770afec26a8c6f6d68e
79659c129633f502503805491fdc788dc11c33cf
94a194eb6b796a3dd0bf7513a3195393c2ee7be74c0f0dce57fc68fd29858520
GET /static/css/index_cloudfront_sd.iq_ltr/f4741905304bff7fd68a0534ff1d24487f2b7445.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Mon, 12 Sep 2022 15:16:11 GMT
last-modified: Mon, 12 Sep 2022 08:58:19 GMT
etag: W/"631ef4ab-55970"
expires: Wed, 12 Oct 2022 15:16:11 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2MD9JnGvwkhfhrmJ22N7o8JlpgMPE3dCgRJXQF0S2YpL_JBw8dqh3g==
age: 1303720
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/searchbox_cloudfront_sd/8526c2d61b4ce92a75bec6e684616215bb1b5589.js
54.230.111.69200 OK 127 kB URL HTTP/2 cf.bstatic.com/static/js/searchbox_cloudfront_sd/8526c2d61b4ce92a75bec6e684616215bb1b5589.js
IP 54.230.111.69:0
File type Unicode text, UTF-8 text, with very long lines (65528), with no line terminators
Size 127 kB (126817 bytes)
Hash aeee94d756dcf5ae4c39917297a4e258
9d1b2401b87bedd211dfa994d9411e3b01899b0e
62c8a29f73271807d4b64cf38fdb65e6e8ed776fc46f8334f29cd549ccdb97ee
GET /static/js/searchbox_cloudfront_sd/8526c2d61b4ce92a75bec6e684616215bb1b5589.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 08 Sep 2022 16:25:16 GMT
last-modified: Thu, 08 Sep 2022 11:22:29 GMT
etag: W/"6319d075-397dd"
expires: Sat, 08 Oct 2022 16:25:16 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wyaVBCX6mHruVx0lkEsSaKAo1hl-32TH8OuErkdzxoaTojhx14Xh8A==
age: 1645174
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/28fe90b0-2a5a-4cf9-8e33-f3878e80e202/en-us.json
104.16.149.64200 OK 17 kB URL HTTP/2 cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/28fe90b0-2a5a-4cf9-8e33-f3878e80e202/en-us.json
IP 104.16.149.64:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65516), with no line terminators
Hash 1553d14ea96adc713e8e409ac35614e5
ca7ad63b4c853da3bbdd08bb04531068b5e40e85
bcebc0f51c302ae48104c4f7bcf4c023607dbfaa99459f0700c5668cd130d452
GET /consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/28fe90b0-2a5a-4cf9-8e33-f3878e80e202/en-us.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 17:24:51 GMT
content-type: application/x-javascript
content-length: 17106
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: FVPRTqlq3HE+jkCaw1YU5Q==
last-modified: Fri, 26 Aug 2022 07:02:17 GMT
etag: 0x8DA8730E9DD942B
x-ms-request-id: 3edae094-501e-00e4-5d19-b9cbec000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 11501
expires: Tue, 27 Sep 2022 21:24:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7515ef704b6fb4eb-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.22.0/assets/otFlat.json
104.16.149.64200 OK 3.0 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.22.0/assets/otFlat.json
IP 104.16.149.64:0
File type JSON data\012- , ASCII text, with very long lines (10843)
Hash 792fef665863081a7642f10bc7b22b49
f30de5899ad8675a26c5a1688c543e7044bce0ab
af415b02ce1afa491d86bd1fafa2416302d69906ded37715ca425b6778cd7d9c
GET /scripttemplates/6.22.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 17:24:51 GMT
content-type: application/json
content-length: 2950
content-encoding: gzip
content-md5: eS/vZlhjCBp2QvELx7IrSQ==
last-modified: Thu, 19 Aug 2021 02:39:10 GMT
etag: 0x8D962BA867F281F
x-ms-request-id: 1ab7d2f4-a01e-003d-026c-c46dc0000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 29697426
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7515ef707bbbb4eb-OSL
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/736.6d8c9c3c.chunk.css
54.230.111.69200 OK 852 B URL HTTP/2 cf.bstatic.com/psb/capla/static/css/736.6d8c9c3c.chunk.css
IP 54.230.111.69:0
File type ASCII text, with very long lines (738)
Hash 7a373db1d52f9aecd313d2e91e36aae3
4a69e416f297d2186f1580bbd0e996a9d3b932e5
4a8eebe3cc8acedc73afe8b068140753dd564e94dc3feb049a9d354638cd94bb
GET /psb/capla/static/css/736.6d8c9c3c.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 852
server: nginx
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Thu, 02 Jun 2022 10:36:44 GMT
x-amz-expiration: expiry-date="Fri, 30 Sep 2022 10:36:44 GMT", rule-id=""
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Mon, 26 Sep 2022 01:17:17 GMT
expires: Sat, 01 Oct 2022 02:23:32 GMT
cache-control: max-age=2592000
etag: "7a373db1d52f9aecd313d2e91e36aae3"
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vU8tc8fmh7QJ2pyxChVS6LWk3S10E5B5npkHVJw5U1exDjOSH6laAw==
age: 2300480
X-Firefox-Spdy: h2
www.booking.com/index.html?aid=1858279
5.57.17.220200 OK 109 kB URL HTTP/1.1 www.booking.com/index.html?aid=1858279
IP 5.57.17.220:0
File type HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10779)
Size 109 kB (109347 bytes)
Hash 0892f42036ea3f00512843aba05f4076
243f03447db43fe4baf978a4d363fa58c4ca1836
9f5302523182d58f380777572f39f3074eca5c4eade59a0419c0e1a822778fa1
GET /index.html?aid=1858279 HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://irene-eux.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
server: nginx
date: Tue, 27 Sep 2022 17:24:51 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
cache-control: private
vary: Accept-Encoding, User-Agent
content-encoding: br
link: <https://cf.bstatic.com/static/css/gprof_icons_cloudfront_sd.iq_ltr/ffb63ae1fc7eb55fb6a0076df245b082f4db180b.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/incentives_cloudfront_sd.iq_ltr/959ea19efde48226c932704421fa8f249d0bd0e9.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/index_cloudfront_sd.iq_ltr/f4741905304bff7fd68a0534ff1d24487f2b7445.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/main_cloudfront_sd.iq_ltr/c5356956c1e9d1a1b41da3877d3d3adf4e151479.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/main_exps_cloudfront_sd.iq_ltr/905516ec33d6bdf24b9ce20846c8be7eafe7a886.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/803db70cae57625135f844e5c55e577ab3a99323.css>; rel=preload; as=style
nel: {"max_age":604800,"report_to":"default"}
report-to: {"group":"default","endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":604800}
set-cookie: _pxhd=h8XODE%2FlYz-MyDEq9nmi%2FZnTQY1pKwzwc5w2Mx7snnS6LrSsWbu6vNV%2FQluuX%2FdlFk1tG7Vz00xaENF3eyEQ2w%3D%3D%3ASj8%2F9EM43AexDoTVN89bXJv6trA79lOctgg355KomLtDsclVoAULwclZor3bli5b-zNZNi8siQLsgOCn667y0ZRBcbjozagvWa2gmM8QpTk%3D; domain=booking.com; path=/; expires=Wed, 27-Sep-2023 17:24:51 GMT
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbwcLxQQ4VaCqdOakVnljXd16%2B%2BJTi0OIK7UbuuEL0fNkTs6GS0evToqpkDNGHz9mLAA2kpK19G81EF8AHTimfos0CCfgtQic4W1tV0ACisdCM3irbkfVImcfrQnJRbFcIMyyEcvDwP%2FcmC2Ln65R6IfK13KcysurL; domain=.booking.com; path=/; expires=Sun, 26-Sep-2027 17:24:51 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf.bstatic.com/static/img/flags/new/48-squared/us/fa2b2a0e643c840152ba856a8bb081c7ded40efa.png
54.230.111.69200 OK 642 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/us/fa2b2a0e643c840152ba856a8bb081c7ded40efa.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 41a0e840aa47c87e19d2bfe0b1231c3f
b5f588ca91fc9e67b5ea658c5ff943b0639e57b9
a333d02eedde7a4dd8643d58b0ea7947268a1762f35f517eb6000ec9e7fcfae8
GET /static/img/flags/new/48-squared/us/fa2b2a0e643c840152ba856a8bb081c7ded40efa.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 642
server: nginx
date: Fri, 02 Sep 2022 02:11:25 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-282"
expires: Sun, 02 Oct 2022 02:11:25 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: SsOSQGpzqsGQNO0ySnnJtiGJa3d3OeDNYeO39uJKVMLUsd5h3MI7ew==
age: 2214807
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/gb/daba79fdd4066d133e8bf59070fd6819b951c403.png
54.230.111.69200 OK 522 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/gb/daba79fdd4066d133e8bf59070fd6819b951c403.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 925ee33071ef712bda608ef3bf50ef13
c7d8844e68d5c9bc0294dc5a69f8550c6d6d39d5
996b0e99fcc7a553eac6f51569be5429b1bf8c071a708289fab808d7660cf74c
GET /static/img/flags/new/48-squared/gb/daba79fdd4066d133e8bf59070fd6819b951c403.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 522
server: nginx
date: Thu, 08 Sep 2022 02:12:22 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-20a"
expires: Sat, 08 Oct 2022 02:12:22 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1YUwJ5UY-w_oXw3n38raeyrG8iUP2REOt95KUuIFGAVGHbSN0qLFlA==
age: 1696350
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/incentives_cloudfront_sd.iq_ltr/959ea19efde48226c932704421fa8f249d0bd0e9.css
54.230.111.69200 OK 2.7 kB URL HTTP/2 cf.bstatic.com/static/css/incentives_cloudfront_sd.iq_ltr/959ea19efde48226c932704421fa8f249d0bd0e9.css
IP 54.230.111.69:0
File type ASCII text, with very long lines (5565), with no line terminators
Hash 1dfb92cac9d7d65e27f132db6d04483a
c9ca82b5a8e1032bf338079e3cdb9dd6f9a87876
870643165d05fb5f8c1ee85152cb28398a7cab592c43882eb86811283747203d
GET /static/css/incentives_cloudfront_sd.iq_ltr/959ea19efde48226c932704421fa8f249d0bd0e9.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Wed, 21 Sep 2022 13:24:06 GMT
last-modified: Mon, 22 Aug 2022 12:14:02 GMT
etag: W/"6303730a-15bd"
expires: Fri, 21 Oct 2022 13:24:06 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Wc6bzIyl0v4v8Dc77OuK3mdn0aSKF-t1oKh-toRLOVISYkvPi0zMMA==
age: 532845
X-Firefox-Spdy: h2
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
104.18.41.98200 OK 3.1 kB URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP 104.18.41.98:0
Hash 958c3c9f0549484e542a627cb623e459
c66f65a67fa01c721557469f2fe2f4d03c14f289
658d4fd09bd6dcafeab4b7c8a69ce119b75751a257a4734acf93135be1056bfc
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 17:24:51 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7515ef6fa8c3b512-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.22.0/assets/otCommonStyles.css
104.16.149.64200 OK 6.8 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.22.0/assets/otCommonStyles.css
IP 104.16.149.64:0
Hash 3487cd1b7844d8c704cfcead54d71077
a8683485933942b071a316e56827ec1c961fe96a
66667498359d574ed46d83ae371cf45758412c6cadca91a5c43ca0d05a0a0021
GET /scripttemplates/6.22.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 17:24:51 GMT
content-type: text/css
content-md5: F/Fs54+x9bQK/ULkNRp4fA==
last-modified: Thu, 19 Aug 2021 02:39:24 GMT
x-ms-request-id: cd51bff1-401e-0155-226c-c475c4000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 29697426
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7515ef707bc1b4eb-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/es/b3bd4690290a78b1303198dd6576bdab8d7f9a80.png
54.230.111.69200 OK 913 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/es/b3bd4690290a78b1303198dd6576bdab8d7f9a80.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash bf945804423b44b5acd2942719e4baf1
a94db5335a984d9b8633cbcdb22137bac8b4284b
2b311f37975788c34490b9fbd42602b3c2eb24bb87c1d7f4fc7fce70a230815f
GET /static/img/flags/new/48-squared/es/b3bd4690290a78b1303198dd6576bdab8d7f9a80.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 913
server: nginx
date: Mon, 05 Sep 2022 05:32:48 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-391"
expires: Wed, 05 Oct 2022 05:32:48 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: q0hISZAVWwIoo_fS7415muQLVN7mjs8ciNm3HHFLZ_VYEGGMg8S8SQ==
age: 1943524
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/ar/9cce2b91336709016282f06432a8b6366069e0c2.png
54.230.111.69200 OK 476 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/ar/9cce2b91336709016282f06432a8b6366069e0c2.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash d9198265fdc862184216b90209391ce3
6bf0123a310523ff9b392f5ef7bdb159ac3633fa
687a7e5fd4c9d0ecf220bc143a6b473dd3c2bfda30e7ac01fde79d39b5791720
GET /static/img/flags/new/48-squared/ar/9cce2b91336709016282f06432a8b6366069e0c2.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 476
server: nginx
date: Wed, 07 Sep 2022 01:53:20 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-1dc"
expires: Fri, 07 Oct 2022 01:53:20 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0vMn9t3N1rsg9t1WUHYqZDuQNnpY83lKtjOZ8JLPMIOC9k2fuJbbxA==
age: 1783892
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/main_cloudfront_sd/3335da89a06cb9b5162958b0d7d665c8fc74ecc6.js
54.230.111.69200 OK 140 kB URL HTTP/2 cf.bstatic.com/static/js/main_cloudfront_sd/3335da89a06cb9b5162958b0d7d665c8fc74ecc6.js
IP 54.230.111.69:0
File type ASCII text, with very long lines (57572)
Size 140 kB (140033 bytes)
Hash da53a8049b55436bd4d6ea85121050e9
d069addec904251287468bd939a0fcfe4b284d0c
4c0ffbef8d20b173b432d60c989157fffc0f09ef9afad8643396a4408febcfce
GET /static/js/main_cloudfront_sd/3335da89a06cb9b5162958b0d7d665c8fc74ecc6.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 21 Sep 2022 13:55:04 GMT
last-modified: Wed, 21 Sep 2022 13:40:55 GMT
etag: W/"632b1467-86a1d"
expires: Fri, 21 Oct 2022 13:55:04 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: IYDsr0ZHGLnsOCOlMsZZzSftuzYqAmLyXC9o0EQtty7HO0xqxRy-EQ==
age: 530987
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/catalonia/8578246a75d8b9dceaacb174072d0c6acafcc2df.png
54.230.111.69200 OK 155 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/catalonia/8578246a75d8b9dceaacb174072d0c6acafcc2df.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 9aa827fa86c5f431d15c5b23a78f0f9d
7a82e7b12cb63ae4afabddd04a83c94c468dc777
c6d8a7fe3c884ebb35313519fb7187cd6609b4c2ede2ddedcafb6ef8a9905310
GET /static/img/flags/new/48-squared/catalonia/8578246a75d8b9dceaacb174072d0c6acafcc2df.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 155
server: nginx
date: Tue, 27 Sep 2022 02:55:35 GMT
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
etag: "5f560e08-9b"
expires: Thu, 27 Oct 2022 02:55:35 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ThSfa1-H8Dpk5c5NbBMqTymPYf37NHySkQnoo4DceUCMt5k8FQViIQ==
age: 52157
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/landingpage_cloudfront_sd/0e668227dfa5572e7d59db0513af42229866726b.js
54.230.111.69200 OK 81 kB URL HTTP/2 cf.bstatic.com/static/js/landingpage_cloudfront_sd/0e668227dfa5572e7d59db0513af42229866726b.js
IP 54.230.111.69:0
File type ASCII text, with very long lines (51645)
Hash beef8c7a9a60d9b902185fee2583fcfd
4557dea991a60e6c6ecde31508e1e538508c1697
b5c072ca092b7edce97f59ee3595ca1a9a980e33b1833f52504eb1add87f4e54
GET /static/js/landingpage_cloudfront_sd/0e668227dfa5572e7d59db0513af42229866726b.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 12 Sep 2022 15:16:11 GMT
last-modified: Mon, 12 Sep 2022 08:58:19 GMT
etag: W/"631ef4ab-66f01"
expires: Wed, 12 Oct 2022 15:16:11 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yRfHS9dJ_HY6x7Mwk3sHhMU3D-3rFaHxTMYDcJXCMyIdVg_uYHrKLg==
age: 1303720
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/it/b8db3771480bd0c7971b9f94cad3640c89521882.png
54.230.111.69200 OK 153 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/it/b8db3771480bd0c7971b9f94cad3640c89521882.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 4261fd05fa4ff2f6b27961be52f72502
30b359e2111f9509e89b4740af3aa6be24fcc812
861f2142293eb28de2c5f7c6f0035847ae176dc02470bfa7fbb157bf2b89339d
GET /static/img/flags/new/48-squared/it/b8db3771480bd0c7971b9f94cad3640c89521882.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 153
server: nginx
date: Wed, 31 Aug 2022 07:29:02 GMT
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
etag: "5f560e08-99"
expires: Fri, 30 Sep 2022 07:29:02 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: evq9g9_thq0UAU9xBHTa3swBD2i4bWn95dFxZO9CIuM4QKlxiAmPXg==
age: 2368550
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/index_cloudfront_sd/af42a370d4e4883808589f4b3c40fbeeab6f0fa2.js
54.230.111.69200 OK 18 kB URL HTTP/2 cf.bstatic.com/static/js/index_cloudfront_sd/af42a370d4e4883808589f4b3c40fbeeab6f0fa2.js
IP 54.230.111.69:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash e285d2d95185b4ba8fbf6de46107803e
9c22abc38b304c403c84895bd3f697ef4ba9556a
ba830cc9e94f5826cac2cd0cf7967c91b6ac9141210abc34392630769c497128
GET /static/js/index_cloudfront_sd/af42a370d4e4883808589f4b3c40fbeeab6f0fa2.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 08 Sep 2022 11:04:29 GMT
last-modified: Thu, 08 Sep 2022 10:12:08 GMT
etag: W/"6319bff8-12d12"
expires: Sat, 08 Oct 2022 11:04:29 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: OES9ptzWuC7MjWObL0bxnMwOuqjmbvBdbzXjDf7NgY8_KYqCChVnag==
age: 1664422
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/no/827be8d24af5667778b4bc651fe03f738a812b60.png
54.230.111.69200 OK 266 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/no/827be8d24af5667778b4bc651fe03f738a812b60.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash ff013df9d8ed912796746aacd4cb18b9
e6bdb0e3516c2edbe53af0157b7db7ed08b7b376
c9b9d24d817a48351e24f4e5499e96a69d1cb8d783f57c9bdd1747cee64e50d8
GET /static/img/flags/new/48-squared/no/827be8d24af5667778b4bc651fe03f738a812b60.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 266
server: nginx
date: Tue, 06 Sep 2022 23:45:41 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-10a"
expires: Thu, 06 Oct 2022 23:45:41 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TTaW0qAnd5skoVWlN_SlsrDXbR6RFXL9zl2A1OFl-x8pKQmA66z0xw==
age: 1791551
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/fi/465d3b73ff07d1d696cb5dd26fbb91097c175e1b.png
54.230.111.69200 OK 206 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/fi/465d3b73ff07d1d696cb5dd26fbb91097c175e1b.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 9a822a64512f9ddc675a4225c98c7a3c
53f9de2996c049705b7f67f3e6b644e4e665b3bc
10b4eec5fd4c999a3d217c78ad0037396263602c5ad035613063a2b147231318
GET /static/img/flags/new/48-squared/fi/465d3b73ff07d1d696cb5dd26fbb91097c175e1b.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 206
server: nginx
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Mon, 26 Sep 2022 00:48:57 GMT
expires: Wed, 26 Oct 2022 00:48:57 GMT
cache-control: max-age=2592000
etag: "5f55f887-ce"
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PLhPVJ9tKnM-25jY5IJzHO6HAlcZsfR3qHS4SbNE1xe0Lyhh2Rtvgw==
age: 146155
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/se/5e126775c25a54a24956ddcc72c8bbcaeed20872.png
54.230.111.69200 OK 198 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/se/5e126775c25a54a24956ddcc72c8bbcaeed20872.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 13c8c96bf421d8616a6e22d2932a0b76
09c8720b6e8dec10ae55c6c71b83508a97d7103e
3e94a1d0a60d1870f9117b8b5ec1379df6040dead195531942a48a3ac57d11d9
GET /static/img/flags/new/48-squared/se/5e126775c25a54a24956ddcc72c8bbcaeed20872.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 198
server: nginx
date: Fri, 09 Sep 2022 02:09:43 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-c6"
expires: Sun, 09 Oct 2022 02:09:43 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wQp-dHiLQbCtiZ1hicCxEYnUNVe9vwrvw5jO7wy8Zkzi0iLhffvUXg==
age: 1610109
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/dk/744575dd4e87590a543b7c8cbacaef6c3de4e4d2.png
54.230.111.69200 OK 175 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/dk/744575dd4e87590a543b7c8cbacaef6c3de4e4d2.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 3275f76ec51c7d87571ef5a5f3e6ddea
995f9025c29c6ab965c3a29af50ae25c9a390ab0
a60eac8ef0e0d0dddef152891451b215d955373071d2bd32db7d4b2053fbaf08
GET /static/img/flags/new/48-squared/dk/744575dd4e87590a543b7c8cbacaef6c3de4e4d2.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 175
server: nginx
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sat, 24 Sep 2022 04:26:55 GMT
expires: Mon, 24 Oct 2022 04:26:55 GMT
cache-control: max-age=2592000
etag: "5f55f887-af"
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zv0otNgsrHI50rVPNr0a0LzSSg0rEkUWMtk55C2cwYpMvAIghVFyew==
age: 305877
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/cz/32002e60fead55ce886ff9827dfcf4af8cf4e277.png
54.230.111.69200 OK 342 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/cz/32002e60fead55ce886ff9827dfcf4af8cf4e277.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 20b632d22c7839d87dd7ab7628839ee7
e9d3232561f2812c02b6fb4e33251aaf620cd40b
ad11693269039a9a7ded88cb46a03eb85ee6f4cf29fa76376ba32c5dd9eb6612
GET /static/img/flags/new/48-squared/cz/32002e60fead55ce886ff9827dfcf4af8cf4e277.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 342
server: nginx
date: Sun, 11 Sep 2022 00:08:22 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-156"
expires: Tue, 11 Oct 2022 00:08:22 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KLKNIlKbcZZbn9qQ56vNHeG7vLkOmImd5bhHoRlHwubA-4whuhMI-w==
age: 1444590
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/bui-react.f7ce4f5c.css
54.230.111.69200 OK 16 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/bui-react.f7ce4f5c.css
IP 54.230.111.69:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 58081391de9d7f262a1473f5c819c71e
00237f9d4ef77f250b7e6b3476138ca4ecccac76
990a5dd285c26ea75215d1e75024c9b50d3b34f8dfa73c62fadcac0ce1cc5696
GET /psb/capla/static/css/bui-react.f7ce4f5c.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Tue, 27 Sep 2022 11:23:19 GMT
etag: W/"169a8d1afc529237201eb75ddb3d9e18"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Tue, 27 Sep 2022 10:26:30 GMT
x-amz-expiration: expiry-date="Wed, 25 Jan 2023 10:26:30 GMT", rule-id=""
expires: Thu, 27 Oct 2022 11:23:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Rm0gsgrWSNshebnPINeDZNlQPbsDVTFSZ5H7VfRRbax37O0xNpQPuQ==
age: 21692
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/ro/2d67b91f7beb87bd9286975da3e6dadc70d9c64b.png
54.230.111.69200 OK 153 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/ro/2d67b91f7beb87bd9286975da3e6dadc70d9c64b.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 1b1f1d1d57a2cd65c38748ed1e165aa7
58f0710ccff2655b04eb6ed0a2c86ec64eea5223
881978c2d219d2d9e3f0c5584e489e06e1948d0b4f9c5d7d3104a61ddb2e7372
GET /static/img/flags/new/48-squared/ro/2d67b91f7beb87bd9286975da3e6dadc70d9c64b.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 153
server: nginx
date: Fri, 02 Sep 2022 16:54:19 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-99"
expires: Sun, 02 Oct 2022 16:54:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: F0y0qVIBhNswtX0x86CjLo6f5fmv_lQCLJbyGeAGC_uZRsPHImm5-g==
age: 2161833
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/jp/9bf7e50bc6dc66599aeede9189ca16de461c60b6.png
54.230.111.69200 OK 333 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/jp/9bf7e50bc6dc66599aeede9189ca16de461c60b6.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 0430ec4fbfa9c9d0c02e4040873de949
6f5a96e43c5665af451ae5b0448ed5a7113e40d9
ee8b36adb5cbd88a5819e742a813ae397ace8c319861ad8aa4d9caaae90812a0
GET /static/img/flags/new/48-squared/jp/9bf7e50bc6dc66599aeede9189ca16de461c60b6.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 333
server: nginx
date: Wed, 07 Sep 2022 02:04:00 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-14d"
expires: Fri, 07 Oct 2022 02:04:00 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cgn_F0iKFpmUq9qp_cxnheIb7Py-lso7uX1PC1-_qIC5u63N4NXwcA==
age: 1783252
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/cn/5a221730f540facc62563bfa6192ce155a9f677e.png
54.230.111.69200 OK 332 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/cn/5a221730f540facc62563bfa6192ce155a9f677e.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash a12df81751d392f648a2785d2de72a05
39156191b034cde7e591faa6677153fae77e6770
3e3cbba48022f930c07d6bdea530464cca93dd1c5473c2e75548cabd56c3d5bc
GET /static/img/flags/new/48-squared/cn/5a221730f540facc62563bfa6192ce155a9f677e.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 332
server: nginx
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Mon, 19 Sep 2022 04:47:21 GMT
expires: Wed, 19 Oct 2022 04:47:21 GMT
cache-control: max-age=2592000
etag: "5f55f887-14c"
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: IbOE_SThGNJrE7iqN7gHf8orU5rSAjcMoVXQUPw0bw1teBK4RVYDUw==
age: 736651
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/z4/ced4751e6ac2cbb9884a5878fff59a4e24c3e386.png
54.230.111.69200 OK 547 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/z4/ced4751e6ac2cbb9884a5878fff59a4e24c3e386.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash b20acca9869722ee22594c1cb79aa80c
8547e31b2cb93793703caa352c4cc7c08daf9f39
b93aa481a175851c5691c27239100c897b7e42e2d06c19df05f9b5de422fde26
GET /static/img/flags/new/48-squared/z4/ced4751e6ac2cbb9884a5878fff59a4e24c3e386.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 547
server: nginx
date: Sat, 10 Sep 2022 08:29:18 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-223"
expires: Mon, 10 Oct 2022 08:29:18 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Jh8Te7Xz-4OwoIRA7n0jcUjB2sTEW9_zJl06ux9ETZ8wBQfRx8ADUg==
age: 1500934
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/pl/4d6b6e962b0b049a03924fc618b959395d60ae39.png
54.230.111.69200 OK 121 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/pl/4d6b6e962b0b049a03924fc618b959395d60ae39.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 2-bit colormap, non-interlaced\012- data
Hash f5426bca09243b610e38d3c14e677064
e2ab7e2d6380dc421aa64648c11ddab3b2233e49
2f404d211c6a0c69dcac5b38ae18a1fc57840c4bd330b1bd64def6bf8b748d64
GET /static/img/flags/new/48-squared/pl/4d6b6e962b0b049a03924fc618b959395d60ae39.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 121
server: nginx
date: Mon, 12 Sep 2022 14:10:48 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-79"
expires: Wed, 12 Oct 2022 14:10:48 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rG04vdjeJkE-dzhqMahCV86hO3VcjdDI3BDEa3xwkivMFgqF-z_cbQ==
age: 1307644
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/gr/e0e42a97a7b860fc9be71954262902f2a4e94aa6.png
54.230.111.69200 OK 215 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/gr/e0e42a97a7b860fc9be71954262902f2a4e94aa6.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 0c3be548c24fe302a6765670af14cb20
b14e18e90b32ec75ee248f748dee5aa6d7609822
84b0beb08ce848e9e03e1e2ef34d5cb421a429661bb837750a1c37cb44b05145
GET /static/img/flags/new/48-squared/gr/e0e42a97a7b860fc9be71954262902f2a4e94aa6.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 215
server: nginx
date: Wed, 14 Sep 2022 15:35:18 GMT
last-modified: Mon, 07 Sep 2020 10:40:09 GMT
etag: "5f560e09-d7"
expires: Fri, 14 Oct 2022 15:35:18 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: IKDwn1bAkS1TXvqsP23gMsSq5OlY19sf9sjRUmy_EcBFTHEZe-d2UA==
age: 1129774
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/ru/2277320023a64803843c36ca6aa48ad77523dd0d.png
54.230.111.69200 OK 139 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/ru/2277320023a64803843c36ca6aa48ad77523dd0d.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash e788f0359c4ebb5d12da0db2e46b5cae
7ef0e8f52982a8fe7a25e27011fca7716231a52b
6f71c4adcbf4ee888f31ee757fd52cdb61881a9aca9f8a571c00470df055185c
GET /static/img/flags/new/48-squared/ru/2277320023a64803843c36ca6aa48ad77523dd0d.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 139
server: nginx
date: Sun, 11 Sep 2022 02:17:31 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-8b"
expires: Tue, 11 Oct 2022 02:17:31 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Dj7rWZqqQgD7QmDD1q8WEoBaTTaenItdtjQQvGdZzQ6AAQtS3OpUhg==
age: 1436841
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/tr/f7ad0cb74f4ea5e7193cb6029c7f977e9786cfa2.png
54.230.111.69200 OK 400 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/tr/f7ad0cb74f4ea5e7193cb6029c7f977e9786cfa2.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 87321ae6e71b9b09c681058e91a468b5
3fb7872894da2daef6f66e73d8fd2f7b78b3b533
2c1c4611b00fa1da5b4cf45ac2c7d25744c4bf0897fab2e00833ff0aefdf5023
GET /static/img/flags/new/48-squared/tr/f7ad0cb74f4ea5e7193cb6029c7f977e9786cfa2.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 400
server: nginx
date: Fri, 23 Sep 2022 01:42:07 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-190"
expires: Sun, 23 Oct 2022 01:42:07 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PIvQnjbnpEPUSLHn5tsE_ssFrry5dsV2MUYEh1m7J4KNczn2G6fmcw==
age: 402165
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/sa/44ab510f37755d1d9d4c4dfa9b1f25bed9b2a95c.png
54.230.111.69200 OK 534 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/sa/44ab510f37755d1d9d4c4dfa9b1f25bed9b2a95c.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash c5ba34de4a5b15c8e5966ce4ac6dac7d
d87ca11092c06c059948bca64995703ce9646f98
3f32c4cf32cba619d3e8a5737d713c0d2633fd369f668a8fc038c525e6b20512
GET /static/img/flags/new/48-squared/sa/44ab510f37755d1d9d4c4dfa9b1f25bed9b2a95c.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 534
server: nginx
date: Thu, 01 Sep 2022 19:03:45 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-216"
expires: Sat, 01 Oct 2022 19:03:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tGTppJETdjygBIMyjDwwrvupE4rqS5zhzSQYQMCZam1t1rfMmJhVKA==
age: 2240467
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/kr/4cb76b458a73ca4c1de034c7623475278d363ce6.png
54.230.111.69200 OK 870 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/kr/4cb76b458a73ca4c1de034c7623475278d363ce6.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 52c9301117c90f4f0f02957fb952f163
7e947ebefa1352e7282626e90e68442896c606e6
9f31f4ed393b17f37ea3ec9572bdda6ac8c1a3e3ee410743ac2b69f4717b4425
GET /static/img/flags/new/48-squared/kr/4cb76b458a73ca4c1de034c7623475278d363ce6.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 870
server: nginx
date: Wed, 07 Sep 2022 01:53:21 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-366"
expires: Fri, 07 Oct 2022 01:53:21 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: oKNskBgbRRm68g9WtcUns07mLy8e4IizclLZK6vFKVzUMjgm-2bjuA==
age: 1783891
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/il/fc1907ccd86aa051f7fbe22649d1e31ac6aee016.png
54.230.111.69200 OK 325 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/il/fc1907ccd86aa051f7fbe22649d1e31ac6aee016.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 6fedf345605f454aa06cc4d6cdf07c95
566b06216ad282e7b0a34b23803f9f459cf0fa8c
6ad5ceae28b78a9253cc023db0dc2dc95684e086c9c69672f4d61c64b483adf5
GET /static/img/flags/new/48-squared/il/fc1907ccd86aa051f7fbe22649d1e31ac6aee016.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 325
server: nginx
date: Mon, 12 Sep 2022 08:41:17 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-145"
expires: Wed, 12 Oct 2022 08:41:17 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: eW6DJwaHY_T3O6PWVyTcsf_1g2mS3apFz7vejzQH4UcxVeqs0gB11w==
age: 1327415
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/lv/393103a26c1d5f1fbd7d9674732bbdfc42296399.png
54.230.111.69200 OK 142 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/lv/393103a26c1d5f1fbd7d9674732bbdfc42296399.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash ddb2ed817fb9ff1e8fa103e303126d92
db7c6839bb7acec47406626cd0db92f5ae203a7f
90f140a70c71755fed1d533e2f837406fb1a6dde2d18d4318d65fb90bad9332c
GET /static/img/flags/new/48-squared/lv/393103a26c1d5f1fbd7d9674732bbdfc42296399.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 142
server: nginx
date: Sun, 11 Sep 2022 14:32:05 GMT
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
etag: "5f560e08-8e"
expires: Tue, 11 Oct 2022 14:32:05 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XCoYZGZct93iDLR5j9p6F1KzSvtFHI7FrKp5I8gz9vYrtbbixqKQFg==
age: 1392767
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/ua/2ea50f1c1fb480c4557a5578f71657fc3152c3a1.png
54.230.111.69200 OK 134 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/ua/2ea50f1c1fb480c4557a5578f71657fc3152c3a1.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash f4db0dc55878fe02bb1efff8fc8dfe00
233ad877840f93216679c862e72be0d38a3c1132
4d5747ee4bfc01093d27ec5833305780e8797e361214269f85ca824274d7b4ed
GET /static/img/flags/new/48-squared/ua/2ea50f1c1fb480c4557a5578f71657fc3152c3a1.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 134
server: nginx
date: Sun, 04 Sep 2022 02:14:58 GMT
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
etag: "5f560e08-86"
expires: Tue, 04 Oct 2022 02:14:58 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QCd4xjstHShXRNGbATveHIFEX1cmorWlyPdvXtxKzxNONhFr0znU8w==
age: 2041794
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/id/e7d3d00965d8c994a72807b43b21c648250cf906.png
54.230.111.69200 OK 121 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/id/e7d3d00965d8c994a72807b43b21c648250cf906.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 2-bit colormap, non-interlaced\012- data
Hash 40b14f52ee0e84a6b7f2395438df4e89
3a1b4751f73b37112ea8abe9d8e1e43fb0b5dcc1
0839f5f4321e755f66f00aebe4ecad12e81de7d87b73600f621f3e4067bec79b
GET /static/img/flags/new/48-squared/id/e7d3d00965d8c994a72807b43b21c648250cf906.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 121
server: nginx
date: Sat, 03 Sep 2022 02:28:35 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-79"
expires: Mon, 03 Oct 2022 02:28:35 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6CAAz2eFu2byMQyM2_7PSklY-r_tKVrzAG8YhsbVaAjLDZmzA0N-8w==
age: 2127377
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/my/6d811cf6127cea0a957ca0243546a03339fa19ac.png
54.230.111.69200 OK 499 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/my/6d811cf6127cea0a957ca0243546a03339fa19ac.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 822b7bd88d4723227ae587567f978918
767884bb4c8904e55bd5c943aec9a867984137b4
e5f05ae53de8b16cc10e8bc868e9c5d9786930973bdce663ee64d206c04388ef
GET /static/img/flags/new/48-squared/my/6d811cf6127cea0a957ca0243546a03339fa19ac.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 499
server: nginx
date: Fri, 16 Sep 2022 17:06:10 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-1f3"
expires: Sun, 16 Oct 2022 17:06:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lMDZxWc-2WckhadiXn4NNRYNDTMcaMhBtjKRzmqeYxU7s87pzggoiA==
age: 951522
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/sk/29e3667f5aca74c157af9225d5a97a74a41e52ef.png
54.230.111.69200 OK 573 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/sk/29e3667f5aca74c157af9225d5a97a74a41e52ef.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 243c2ae0611333fde9bfb06dd47f6300
2deae15cb1ea681950abf0456e0ddffeb940b158
5acf315305da0ed67d79de0983465c4baf314b34456a0f8df7f0faad0e5dd34b
GET /static/img/flags/new/48-squared/sk/29e3667f5aca74c157af9225d5a97a74a41e52ef.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 573
server: nginx
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sun, 25 Sep 2022 01:16:08 GMT
expires: Tue, 25 Oct 2022 01:16:08 GMT
cache-control: max-age=2592000
etag: "5f560e08-23d"
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0CMMTPFMqeKgnMuhCOs2ROdv9VELn-31GpyAvWH2NLG5fMo6qX9IHw==
age: 230924
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/lt/5bb712a60a82b7e075deba5b102aa36348bbb255.png
54.230.111.69200 OK 140 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/lt/5bb712a60a82b7e075deba5b102aa36348bbb255.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 7c4ca938a6f3b20c4b24b24fc16afb3d
8e9569b41f3b36e88ddba9f85627dc6d48764e88
f28938e268eb5573c2e34f320e61a80b20599684a3fc502a01e29ec696701c8e
GET /static/img/flags/new/48-squared/lt/5bb712a60a82b7e075deba5b102aa36348bbb255.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 140
server: nginx
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Mon, 19 Sep 2022 04:47:21 GMT
expires: Wed, 19 Oct 2022 04:47:21 GMT
cache-control: max-age=2592000
etag: "5f55f887-8c"
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: z9tlGsqMmQ8d79QORNGvjp3ENB_iea1DZ5z3q4lCewVgOnPnyL3b6g==
age: 736651
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/ee/509074558f4fe7c71ceed57584dec0382274dd16.png
54.230.111.69200 OK 139 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/ee/509074558f4fe7c71ceed57584dec0382274dd16.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 12aaeead084db9341a3afbd71d0b123d
5e048ae4bd509d08cd5a17d99d5430e104da7013
8bc3c2630c36b9713f3d002ed54e49c7671ec960ef0d8b02e32f2fdba2af6cb6
GET /static/img/flags/new/48-squared/ee/509074558f4fe7c71ceed57584dec0382274dd16.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 139
server: nginx
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Wed, 07 Sep 2022 02:24:51 GMT
expires: Fri, 07 Oct 2022 02:24:51 GMT
cache-control: max-age=2592000
etag: "5f55f887-8b"
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XVKOg7nMaqgqvxkGCcAki1_2vRu4mGBxsw_cGkjR_QtO-6YUX9z6qg==
age: 1782001
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/hr/e7a46f4dad977aecafa6a3680972e0c137a1bc41.png
54.230.111.69200 OK 815 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/hr/e7a46f4dad977aecafa6a3680972e0c137a1bc41.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 0964eedc0f19b195664c3f75bb22c6ab
22b1a1a6062e7f5fcad6bcb023bb5fd87d22e07d
fff82225f56361a415858aa788a2d640331f82f6d9462ac9dbcf39e9023b5a6f
GET /static/img/flags/new/48-squared/hr/e7a46f4dad977aecafa6a3680972e0c137a1bc41.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 815
server: nginx
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Thu, 22 Sep 2022 01:59:40 GMT
expires: Sat, 22 Oct 2022 01:59:40 GMT
cache-control: max-age=2592000
etag: "5f55f887-32f"
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: seYc8c_GvfokvPKGGir1vq3iX0QiHBYpZtBXeBVqqER82vHG3-U60g==
age: 487512
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/rs/c1bc4fc1d782713cfec17a071dadca6b755a233e.png
54.230.111.69200 OK 1.4 kB URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/rs/c1bc4fc1d782713cfec17a071dadca6b755a233e.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash b9379a24299e89e8a3a7f67e055583f3
9fcee25113376edc2308bd7e28d30a4a924cbd58
b2d098301fdd75a1c93c85f1f349262d5f7ca3de8a6eaad518095258c19e8a1b
GET /static/img/flags/new/48-squared/rs/c1bc4fc1d782713cfec17a071dadca6b755a233e.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1386
server: nginx
date: Tue, 13 Sep 2022 08:25:53 GMT
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
etag: "5f560e08-56a"
expires: Thu, 13 Oct 2022 08:25:53 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VZOIzSqzDzfvOCwpGlVSgLQg4NTb88QcMKDHvSuLk9UkU6IbR2p7rg==
age: 1241939
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/th/53a76d6856962953d739d07ac61f04adee50a3d1.png
54.230.111.69200 OK 150 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/th/53a76d6856962953d739d07ac61f04adee50a3d1.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash ff949a5fc9c52cbb395e15afd6cbbf53
a63fbcbe8300ee1a16399b46c1fd300f1b9e6b8b
67b2c242d9fb8390f051c11070e23792de15f513d53175ce7730484a7c789ef9
GET /static/img/flags/new/48-squared/th/53a76d6856962953d739d07ac61f04adee50a3d1.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 150
server: nginx
date: Wed, 31 Aug 2022 00:57:17 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-96"
expires: Fri, 30 Sep 2022 00:57:17 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DaaUsqUJ4A6yEvWESHjCh8SI--t--p-wwLoOxXcz0lFQU3Q-c2VgHQ==
age: 2392055
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/si/f0619cdd45548522566c6d72a660ddc011906184.png
54.230.111.69200 OK 442 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/si/f0619cdd45548522566c6d72a660ddc011906184.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 05cbcc07c185368a084a9309aa914d61
8e11596590eacbb80269c99400b4a87e02e2583b
211e73d3bad99d5286e8f2378547adbf522b0f047e45aeed0d5dea6741488444
GET /static/img/flags/new/48-squared/si/f0619cdd45548522566c6d72a660ddc011906184.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 442
server: nginx
date: Wed, 31 Aug 2022 00:25:04 GMT
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
etag: "5f560e08-1ba"
expires: Fri, 30 Sep 2022 00:25:04 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3xir_gLw_TQVpVAJmO6vW4nhV2UtweX2C1229fele6ofTjO417r94w==
age: 2393988
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/ph/7048127466891462116ee2774154585fb5607aba.png
54.230.111.69200 OK 663 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/ph/7048127466891462116ee2774154585fb5607aba.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 47f9d3fafada1c4125dd5abbef01d314
5e36976caec0396e0847c76c413a0189ff2cbbf6
a99fa5dc87d4d9a32c930d644a790c6dfba9073d0a11f6cc000ce599b9ba00c7
GET /static/img/flags/new/48-squared/ph/7048127466891462116ee2774154585fb5607aba.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 663
server: nginx
date: Mon, 29 Aug 2022 03:46:41 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-297"
expires: Wed, 28 Sep 2022 03:46:41 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dTOukI69ZmXiSBICOaJxejd1CngwOa4p3q6SgnJX6Nx_5A_1NYozww==
age: 2554691
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/vn/90b17da2aafaebce7b0c34189747e1e10dba8041.png
54.230.111.69200 OK 333 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/vn/90b17da2aafaebce7b0c34189747e1e10dba8041.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 3a0135828216d13780bbd76bc0d6617c
613be32ee6beabb7a18a107f6c9bdd0c5d6dada9
37cb08ba3ee531e1f6b5a8a3fbf4be6013a3a9a0442286b07aeb2c947530cf04
GET /static/img/flags/new/48-squared/vn/90b17da2aafaebce7b0c34189747e1e10dba8041.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 333
server: nginx
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Tue, 06 Sep 2022 00:03:17 GMT
expires: Thu, 06 Oct 2022 00:03:17 GMT
cache-control: max-age=2592000
etag: "5f55f887-14d"
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZXbXXgm0GwKhMyXjeEwMdfCSJ3X39WersOa7MVjuBxpzfdAVhG9B_A==
age: 1876895
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/is/7d644655f895f8e346b964dc18cf5b6608a98d52.png
54.230.111.69200 OK 298 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/is/7d644655f895f8e346b964dc18cf5b6608a98d52.png
IP 54.230.111.69:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 227c1e1707b8caf0b17266f188b3b099
294b9da49254731a4cb0fe538d9bc8ef44d1dd92
e1e54eb27d785ff86901a728964f40183e845b8301f9196e163e5fe919bcfb5f
GET /static/img/flags/new/48-squared/is/7d644655f895f8e346b964dc18cf5b6608a98d52.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 298
server: nginx
date: Fri, 09 Sep 2022 02:09:07 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-12a"
expires: Sun, 09 Oct 2022 02:09:07 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5Hzo4Wpw3uaX-f-Q9lzFGl3mgyDPL-0CyrgfZF6a0_XvCQRL4lVoWA==
age: 1610145
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/square250/644297.webp?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o=
54.230.111.69200 OK 15 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/square250/644297.webp?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o=
IP 54.230.111.69:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ce0484a62e175f311523b75f140b4211
eba0d06f0c622ecf224822c856430ad707ebdfc1
edf0c0cf1cb6689a78e3b4cd11ff14de3c5947583b589dfbb87379023a484991
GET /xdata/images/city/square250/644297.webp?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 14598
server: nginx
date: Fri, 02 Sep 2022 00:32:09 GMT
etag: "01b5f5a4303fc935943a5022d206e5d990352225"
expires: Sun, 02 Oct 2022 00:32:09 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NUT9s1mDZNccWsNzZErWsxWn7U8gPWBuiW0IpxPZb5QuJtPACfIx9g==
age: 2220763
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/square250/644293.webp?k=24c08396bd44343c9dcc78f0df41e114bf7e6aeda3d339101c37e7ba3aa707db&o=
54.230.111.69200 OK 11 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/square250/644293.webp?k=24c08396bd44343c9dcc78f0df41e114bf7e6aeda3d339101c37e7ba3aa707db&o=
IP 54.230.111.69:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e61daadd9f2361db8bea014c640fc26b
8e637a06e40e6d0d780cf55b0982fd82d2dfbacc
941706cdc14e54f8ec6c3bacc8b5bad26dd5553d0bbd34490450e67387acb132
GET /xdata/images/city/square250/644293.webp?k=24c08396bd44343c9dcc78f0df41e114bf7e6aeda3d339101c37e7ba3aa707db&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 10668
server: nginx
date: Mon, 12 Sep 2022 06:24:16 GMT
etag: "4ee67766e2763c05e5c3e55ee6edca5603314280"
expires: Wed, 12 Oct 2022 06:24:16 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: FbqiloUeexKGcdLdr2BUIOLd2Wep6RHgjjcp_ekINNsg4JllEzzwpw==
age: 1335636
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/square250/740935.webp?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o=
54.230.111.69200 OK 10 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/square250/740935.webp?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o=
IP 54.230.111.69:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f46894a16ebb993b489c7eb4947b2321
a3ebffea1f61cb837f7512345ea899a5908cbf0a
ea3005e0d81b1ad9fded26293f7442ee24413818af379d68bed7d717e8b5f7f2
GET /xdata/images/city/square250/740935.webp?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 10180
server: nginx
date: Thu, 01 Sep 2022 03:34:08 GMT
etag: "608f6c63299ff46e23ef77be6773ea373eeea6ab"
expires: Sat, 01 Oct 2022 03:34:08 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nQjqx3dM2F9xlXJq0ihRlDKYS8q1Ij4kMC9Sgz7UZeI6_Aqte9o-_w==
age: 2296244
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/square250/671694.webp?k=cd1e3603afe4edd09f829675efb1cdc9a5925bed25a642bfc4d909602c231624&o=
54.230.111.69200 OK 14 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/square250/671694.webp?k=cd1e3603afe4edd09f829675efb1cdc9a5925bed25a642bfc4d909602c231624&o=
IP 54.230.111.69:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ae6f21ca1e36bc750e27be252a59c000
c5896a0dba0a94a551569b4cd040897d5bd935da
29c33b1d0971d25f68cee3a5f098598bb0e6246746f62341c066eb3fc53054f9
GET /xdata/images/city/square250/671694.webp?k=cd1e3603afe4edd09f829675efb1cdc9a5925bed25a642bfc4d909602c231624&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 13820
server: nginx
date: Sun, 11 Sep 2022 04:21:13 GMT
etag: "9db2dccc7fb797a1045730cb569f803f18aaba3e"
expires: Tue, 11 Oct 2022 04:21:13 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4uiZxfRe9nBAw9aw-_hJxrE6nIvPig-ZBrVCvAv412vQkCZPJ360iQ==
age: 1429419
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/square250/644310.webp?k=472fefd4c3c0aef36deb16adb91c965923d8b1078ab29056802f95aead0586bf&o=
54.230.111.69200 OK 13 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/square250/644310.webp?k=472fefd4c3c0aef36deb16adb91c965923d8b1078ab29056802f95aead0586bf&o=
IP 54.230.111.69:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash fc98564e400d3bd17e3f22b13e1b4ac7
504d945f247a1ed9d1e4f68416d2865d6558e5ad
b7fa20f8bab44db9578a888fe75778bd6b24331b1f0c81356be50c4fc70157c6
GET /xdata/images/city/square250/644310.webp?k=472fefd4c3c0aef36deb16adb91c965923d8b1078ab29056802f95aead0586bf&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 13014
server: nginx
date: Tue, 30 Aug 2022 05:08:08 GMT
etag: "8a00983e1551540469ce495731c50e0ed98f7074"
expires: Thu, 29 Sep 2022 05:08:08 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ma-JLpRpCzxqaDVg9gUlPJMhwVw63TRf7BHJXNdMvM_ohoulY71uCw==
age: 2463404
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/square250/737551.webp?k=ad4ef19a2b979ef794b56d1901e6937b874b4726a4085d8ddbe795f5c6bfed73&o=
54.230.111.69200 OK 12 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/square250/737551.webp?k=ad4ef19a2b979ef794b56d1901e6937b874b4726a4085d8ddbe795f5c6bfed73&o=
IP 54.230.111.69:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 443025206af2bd7174de9105a0d54e56
abed2877367f1a8e2ef8fcf107caee4ee915d095
b3d2c4aaa4adfa189b01e662ba5674f003db543e55b43e5237a78edb74b523b6
GET /xdata/images/city/square250/737551.webp?k=ad4ef19a2b979ef794b56d1901e6937b874b4726a4085d8ddbe795f5c6bfed73&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 11708
server: nginx
date: Wed, 31 Aug 2022 02:58:54 GMT
etag: "de7c81d835d49d4c7ad678645c3704824912eafa"
expires: Fri, 30 Sep 2022 02:58:54 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ld4axzGp9HOEzTce92O9YiZmDdstR9WDqBdg9o7tMLPt47RgvCGd8w==
age: 2384758
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/803db70cae57625135f844e5c55e577ab3a99323.css
54.230.111.69200 OK 20 kB URL HTTP/2 cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/803db70cae57625135f844e5c55e577ab3a99323.css
IP 54.230.111.69:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 947725fb96eea0edb61d3086703c275c
6c011d11f5eabd73eedacb728f0be1641bb3fd29
448d7f94b65224be43c637ef52545b712ec52c3b2238e80a59116b138947a0c3
GET /static/css/xp-index-sb_cloudfront_sd.iq_ltr/803db70cae57625135f844e5c55e577ab3a99323.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Tue, 06 Sep 2022 01:56:14 GMT
last-modified: Mon, 22 Aug 2022 12:14:04 GMT
etag: W/"6303730c-118e4"
expires: Thu, 06 Oct 2022 01:56:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: suRu1UUPqmOGU5BSkWncXVkHR4j3slj3NpiKAaxWLjw4PVZIhfIyog==
age: 1870117
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/square250/930853.webp?k=85cc355550cdcf1ca77d1a7a635f4294e09dee696051866597a63fd7edd7af5a&o=
54.230.111.69200 OK 12 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/square250/930853.webp?k=85cc355550cdcf1ca77d1a7a635f4294e09dee696051866597a63fd7edd7af5a&o=
IP 54.230.111.69:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0867b4a18dd02f341467ac3cd9c87624
6dfa10bfc60382146a1cbdcdeaa1d2bf94ca8fe6
abac49fbb301fb90860cc5c950d292473ac3db44a6fc2e62398e61bf2bf7655f
GET /xdata/images/city/square250/930853.webp?k=85cc355550cdcf1ca77d1a7a635f4294e09dee696051866597a63fd7edd7af5a&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 12010
server: nginx
date: Sat, 03 Sep 2022 07:10:27 GMT
etag: "ddb888cd1371f103834344e63666109a034e610d"
expires: Mon, 03 Oct 2022 07:10:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rs46QZyTiRe6OaL1pNOtzolVW7D_hfPpFy315pPOlta7LUpGkPOx2g==
age: 2110465
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/square250/967857.webp?k=5733a245dbb186ec0986c0a5c533acc704650d51cdfed7410cf0bcef375e5bc4&o=
54.230.111.69200 OK 12 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/square250/967857.webp?k=5733a245dbb186ec0986c0a5c533acc704650d51cdfed7410cf0bcef375e5bc4&o=
IP 54.230.111.69:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 57d087e34bf07df0e6df2f13d870f2e2
47462553409d660454e9bee14f3f442d7e757e13
d504a989b326836c6718ca6acb3806f60ad3e5a2cc48824a7b1c6d41691e8654
GET /xdata/images/city/square250/967857.webp?k=5733a245dbb186ec0986c0a5c533acc704650d51cdfed7410cf0bcef375e5bc4&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 12264
server: nginx
date: Mon, 05 Sep 2022 04:00:17 GMT
etag: "e6720fa193b7f128bb098f587c3fb1aacb9f16b1"
expires: Wed, 05 Oct 2022 04:00:17 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jq534Zo4k8uzIPQZUqtT8HJI5s3JueGUjSHOcZBaxKmc6RYE67drOA==
age: 1949075
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/24/no/6193a14e4d59f814f46ee6313cdd6e11811abeb3.png
54.230.111.69200 OK 405 B URL HTTP/2 cf.bstatic.com/static/img/flags/24/no/6193a14e4d59f814f46ee6313cdd6e11811abeb3.png
IP 54.230.111.69:0
File type PNG image data, 24 x 24, 8-bit colormap, non-interlaced\012- data
Hash be6379111ab8866c20c123b85af97d42
819ba2a2c986ed6f4ff309661b5c27ac172228df
fecd6ef10eb5111323f3b1bb9d8e99e37a881abe33ae37f8e74f046c3634b25f
GET /static/img/flags/24/no/6193a14e4d59f814f46ee6313cdd6e11811abeb3.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 405
server: nginx
date: Sat, 03 Sep 2022 03:48:19 GMT
last-modified: Wed, 10 Apr 2019 11:21:53 GMT
etag: "5cadd1d1-195"
expires: Mon, 03 Oct 2022 03:48:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PdEJYyoqcJkPNcvXwxu8TpwqJp3a-wTSxd_HS445oa8F8QMf9BycKg==
age: 2122593
X-Firefox-Spdy: h2
cf.bstatic.com/libs/privacy-consent/releases/2.1.32/customer/cookie-banner.min.js
54.230.111.69200 OK 7.9 kB URL HTTP/2 cf.bstatic.com/libs/privacy-consent/releases/2.1.32/customer/cookie-banner.min.js
IP 54.230.111.69:0
File type ASCII text, with very long lines (8638), with no line terminators
Hash d61a37808a45cb6ad97be43ea0c2c5a7
a97d733bbb32644c227088c3b7c208412d5ec002
320e9103155b12f4f95c163ffda5d5e616080b3953527c87b8374d482c9b4eee
GET /libs/privacy-consent/releases/2.1.32/customer/cookie-banner.min.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 14 Sep 2022 13:16:00 GMT
last-modified: Wed, 14 Sep 2022 13:15:04 GMT
etag: W/"6321d3d8-21be"
expires: Fri, 14 Oct 2022 13:16:00 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LsWY0SR7UQJ0TWZmivZnr7CS2TuvZ3vPevrkTd944eTDV-9Vixpnzw==
age: 1138131
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/jquery_cloudfront_sd/e1e8c0e862309cb4caf3c0d5fbea48bfb8eaad42.js
54.230.111.69200 OK 34 kB URL HTTP/2 cf.bstatic.com/static/js/jquery_cloudfront_sd/e1e8c0e862309cb4caf3c0d5fbea48bfb8eaad42.js
IP 54.230.111.69:0
File type ASCII text, with very long lines (60582)
Hash 1a7361cd693113ba466eb69f659f5451
faaa9f5d4afc14560cbab29c52b349fccca943d8
35c2961575fa26ea6adaeabf9db339de2eacda79d94e034f7517a567dcdc3652
GET /static/js/jquery_cloudfront_sd/e1e8c0e862309cb4caf3c0d5fbea48bfb8eaad42.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 29 Aug 2022 02:18:20 GMT
last-modified: Tue, 28 Jun 2022 15:19:38 GMT
etag: W/"62bb1c0a-19a42"
expires: Wed, 28 Sep 2022 02:18:20 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XAAR3Veogzdf46TMVyZHYNUT1mrh54gP5r1VEl62LN6Oe-WktiZIkg==
age: 2559991
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/core-deps-inlinedet_cloudfront_sd/6da0bf621035bb8a2f9c756d6a89dda03b2f7864.js
54.230.111.69200 OK 13 kB URL HTTP/2 cf.bstatic.com/static/js/core-deps-inlinedet_cloudfront_sd/6da0bf621035bb8a2f9c756d6a89dda03b2f7864.js
IP 54.230.111.69:0
File type Unicode text, UTF-8 text, with very long lines (37718)
Hash 2fa87de4b415f4ba58e0bbaa41a9962d
ddcea32a598f8af3df155790647c74fcb7aff7ed
f274b5f6e84f473e96052d1d3a6e189a2e8feb71bd6b607cbd64bcb4cbf52659
GET /static/js/core-deps-inlinedet_cloudfront_sd/6da0bf621035bb8a2f9c756d6a89dda03b2f7864.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
last-modified: Wed, 22 Jun 2022 10:40:45 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Mon, 19 Sep 2022 04:45:27 GMT
expires: Wed, 19 Oct 2022 04:45:27 GMT
cache-control: max-age=2592000
etag: W/"62b2f1ad-949e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: P_t8zU692ze9a3lndFfpwmd4UysCUOJEHc5uheds_rqaz_GTXk7h3g==
age: 736764
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/24/it/b539a003f197845e447b9d00d91cd74dd57bf3dd.png
54.230.111.69200 OK 436 B URL HTTP/2 cf.bstatic.com/static/img/flags/24/it/b539a003f197845e447b9d00d91cd74dd57bf3dd.png
IP 54.230.111.69:0
File type PNG image data, 24 x 24, 8-bit colormap, non-interlaced\012- data
Hash 1416ab6009ad93f86e9cfc23a54e0c40
0578e45fadd1da2c26a4d5fe814a9239ff5eae97
88bb107350d5324906a2cf2b95847879ecf6bb09502d1186c38daaf15268830f
GET /static/img/flags/24/it/b539a003f197845e447b9d00d91cd74dd57bf3dd.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 436
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:53 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Thu, 01 Sep 2022 03:54:04 GMT
expires: Sat, 01 Oct 2022 03:54:04 GMT
cache-control: max-age=2592000
etag: "5cadd1d1-1b4"
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: IgELzYDhrlk2W1bx1ix70HYm-XZuF6bGh7t2B8bZ_lXP6vXBK-Mp2A==
age: 2295048
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/genius-globe-with-badge_desktop/d807514761b3684aedebced9265c5548a063b7a0.png
54.230.111.69200 OK 7.5 kB URL HTTP/2 cf.bstatic.com/static/img/genius-globe-with-badge_desktop/d807514761b3684aedebced9265c5548a063b7a0.png
IP 54.230.111.69:0
File type PNG image data, 160 x 160, 8-bit colormap, non-interlaced\012- data
Hash 06184b155b03a3035384042b32a67174
3458ca2a84896f0f5c39e3fb705b5c51b41c6553
b0999281a9703706445e24c253b75e9e36fc0d5d76f01b0842f902b08f00c2dd
GET /static/img/genius-globe-with-badge_desktop/d807514761b3684aedebced9265c5548a063b7a0.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 7455
server: nginx
last-modified: Tue, 21 Sep 2021 07:46:56 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Wed, 21 Sep 2022 00:36:00 GMT
expires: Fri, 21 Oct 2022 00:36:00 GMT
cache-control: max-age=2592000
etag: "61498df0-1d1f"
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MFNfZfwywjd7gtRaQgA3m1XwB68E-Q5qy0B0Pt1FRMeLxApEDaNOWg==
age: 578932
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/nobg_all_blue_iq/b700d9e3067c1186a3364012df4fe1c48ae6da44.png
54.230.111.69200 OK 73 B URL HTTP/2 cf.bstatic.com/static/img/nobg_all_blue_iq/b700d9e3067c1186a3364012df4fe1c48ae6da44.png
IP 54.230.111.69:0
File type PNG image data, 1 x 100, 8-bit/color RGB, non-interlaced\012- data
Hash ff823944bc0bb9e4bf87f0ad14f687d1
4b68ba281b9ab171611569bf78971df6970efbc1
6153929734ec12ec07072f327c1112301828497e4dd356ca261461b0b7ba9621
GET /static/img/nobg_all_blue_iq/b700d9e3067c1186a3364012df4fe1c48ae6da44.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 73
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Mon, 12 Sep 2022 08:19:31 GMT
expires: Wed, 12 Oct 2022 08:19:31 GMT
cache-control: max-age=2592000
etag: "5cadd1d3-49"
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fEkumhAmENcvdZOTDG37KIRV8TcvLrOqDTEyqXONRbVOo7OyUyHV2g==
age: 1328721
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/tfl/group_logos/logo_priceline/f80e129541f2a952d470df2447373390f3dd4e44.png
54.230.111.69200 OK 1.6 kB URL HTTP/2 cf.bstatic.com/static/img/tfl/group_logos/logo_priceline/f80e129541f2a952d470df2447373390f3dd4e44.png
IP 54.230.111.69:0
File type PNG image data, 91 x 26, 8-bit colormap, non-interlaced\012- data
Hash b6d0b31340d7a113f63b936e23d06f78
268e3856da737f7e56e679258949ef70ddde47f4
18c62988860a8ffd90bab6376b4fe36a723bd39403c420d3943aa3eb5a0029c5
GET /static/img/tfl/group_logos/logo_priceline/f80e129541f2a952d470df2447373390f3dd4e44.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1591
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Wed, 21 Sep 2022 01:05:48 GMT
expires: Fri, 21 Oct 2022 00:35:52 GMT
cache-control: max-age=2592000
etag: "5cadd1d3-637"
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Z6eeA0F9ZRWhw7L854or6jV6zf3a2dpHqRmFu7ErmYJH0GAg8POMdg==
age: 578940
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/tfl/group_logos/logo_booking/27c8d1832de6a3123b6ee45b59ae2f81b0d9d0d0.png
54.230.111.69200 OK 1.6 kB URL HTTP/2 cf.bstatic.com/static/img/tfl/group_logos/logo_booking/27c8d1832de6a3123b6ee45b59ae2f81b0d9d0d0.png
IP 54.230.111.69:0
File type PNG image data, 91 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 3e32efd25ac0214b375fc8a6a32890f2
cd46a79db7e53e19d5869b3cb3e7aa22ee523479
807c8a1b498e17d227cf48a640b778bdc4398a9852493cb2f40bf0f33651d0dd
GET /static/img/tfl/group_logos/logo_booking/27c8d1832de6a3123b6ee45b59ae2f81b0d9d0d0.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1628
server: nginx
date: Fri, 09 Sep 2022 05:15:22 GMT
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
etag: "5cadd1d3-65c"
expires: Sun, 09 Oct 2022 05:15:22 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lGEtnXr-1moV9LkhFUDGsD7LZ55clWGlO64-EjvSVnlAMjDF5M3zUQ==
age: 1598970
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/tfl/group_logos/logo_kayak/83ef7122074473a6566094e957ff834badb58ce6.png
54.230.111.69200 OK 1.2 kB URL HTTP/2 cf.bstatic.com/static/img/tfl/group_logos/logo_kayak/83ef7122074473a6566094e957ff834badb58ce6.png
IP 54.230.111.69:0
File type PNG image data, 79 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 6384185cbe9a4f106857a3cb85caea98
0e31a4fe2ce98a8b4fda60687aa71079b4d3a95b
5839f0330821cf08029beddd6d248170da1af16cd7aff253e7bd075d591f5d42
GET /static/img/tfl/group_logos/logo_kayak/83ef7122074473a6566094e957ff834badb58ce6.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1154
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sat, 24 Sep 2022 10:52:57 GMT
expires: Mon, 24 Oct 2022 10:52:57 GMT
cache-control: max-age=2592000
etag: "5cadd1d3-482"
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pb0hQXujpHEiNtqsCTRgftRbP5ZsMilFXjDX8RDYKw9Ri_3ul_QlAw==
age: 282715
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/tfl/group_logos/logo_agoda/1c9191b6a3651bf030e41e99a153b64f449845ed.png
54.230.111.69200 OK 2.1 kB URL HTTP/2 cf.bstatic.com/static/img/tfl/group_logos/logo_agoda/1c9191b6a3651bf030e41e99a153b64f449845ed.png
IP 54.230.111.69:0
File type PNG image data, 70 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 27e71a5124018e16eae0b8897618623d
d0d54d88b04edfc71f338c19eab9994632bc6ced
1d6e86e59ab7235a8343f494c8e8da6cc02c5a98a75d682401340e6d06935f20
GET /static/img/tfl/group_logos/logo_agoda/1c9191b6a3651bf030e41e99a153b64f449845ed.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2146
server: nginx
date: Fri, 09 Sep 2022 01:58:08 GMT
last-modified: Thu, 12 Mar 2020 10:15:57 GMT
etag: "5e6a0bdd-862"
expires: Sun, 09 Oct 2022 01:58:08 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QtZQZgufTomGh24oWJsSFBavU7ycL0ULJlyqiQtU-UnCw0CYMcTHIw==
age: 1610804
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/tfl/group_logos/logo_rentalcars/6bc5ec89d870111592a378bbe7a2086f0b01abc4.png
54.230.111.69200 OK 3.2 kB URL HTTP/2 cf.bstatic.com/static/img/tfl/group_logos/logo_rentalcars/6bc5ec89d870111592a378bbe7a2086f0b01abc4.png
IP 54.230.111.69:0
File type PNG image data, 109 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 38784d782a29a302dab9135d63aef953
04db0e863a35062a355c4b2ea9585ec83c4ffc3e
8561e200a6a57195e480ed9d893b14579ef6acdeabfbb3fe22b5e4ec9b84b455
GET /static/img/tfl/group_logos/logo_rentalcars/6bc5ec89d870111592a378bbe7a2086f0b01abc4.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 3221
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Wed, 21 Sep 2022 01:46:25 GMT
expires: Fri, 21 Oct 2022 01:46:25 GMT
cache-control: max-age=2592000
etag: "5cadd1d3-c95"
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: P4umsQ0B2B8EclAFx-KUHypOBQ2IQdQ8nBvc2D7ds5R2RIZrsskGuA==
age: 574707
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/tfl/group_logos/logo_opentable/a4b50503eda6c15773d6e61c238230eb42fb050d.png
54.230.111.69200 OK 2.3 kB URL HTTP/2 cf.bstatic.com/static/img/tfl/group_logos/logo_opentable/a4b50503eda6c15773d6e61c238230eb42fb050d.png
IP 54.230.111.69:0
File type PNG image data, 95 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash d05a0ab9bf394439a1584a2b0d44db5c
183c28023d3ba3358a7a5df1db887582ae5340ed
b23272a9692c4ec3c020935917e9d096490876c976abec1290bd3cc9aae13974
GET /static/img/tfl/group_logos/logo_opentable/a4b50503eda6c15773d6e61c238230eb42fb050d.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2344
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sun, 25 Sep 2022 01:06:41 GMT
expires: Tue, 25 Oct 2022 01:06:15 GMT
cache-control: max-age=2592000
etag: "5cadd1d3-928"
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bD0oloInM9OO8y9Vx5wc-Z-cC9-08MPtOp5x6moBwSlIBUiDEFrB8g==
age: 231517
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/540x270/740930.webp?k=58e6fd52fcf3174223967fc1629c1de15a9ca9de10347618038d042b56e0f968&o=
54.230.111.69200 OK 24 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/540x270/740930.webp?k=58e6fd52fcf3174223967fc1629c1de15a9ca9de10347618038d042b56e0f968&o=
IP 54.230.111.69:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 540x270, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 33732427eae17faad3950d16a56bd1d4
b71ec639fd23492877892527f81334c568aa5597
c93462cc65dbadac1456b7c6428ff3f9e08eba808c7372f420144fa56307b75b
GET /xdata/images/city/540x270/740930.webp?k=58e6fd52fcf3174223967fc1629c1de15a9ca9de10347618038d042b56e0f968&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 23600
server: nginx
date: Tue, 20 Sep 2022 18:16:14 GMT
etag: "0a758e4f60a6556f4d8e559d60b762be8e18878e"
expires: Thu, 20 Oct 2022 18:16:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Y6Y6A2rTpSN3Puo70erGnSM0GU-ITZsuVpdhiHzjdaNyjQxDnxwaDA==
age: 601718
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/540x270/844103.webp?k=b4ff3d17a962184dfa8823beec573fa3f679306e8b3fa897b901ba0dedb157bd&o=
54.230.111.69200 OK 24 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/540x270/844103.webp?k=b4ff3d17a962184dfa8823beec573fa3f679306e8b3fa897b901ba0dedb157bd&o=
IP 54.230.111.69:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 540x270, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8da231dc5119fa2631196021b5b76b79
acc913dd71a600d59d1485aeaf478217e6efb323
0e422d4bd5462f934cf16f7cf8be46278492bc9f35f4765cbb2382ba9233588c
GET /xdata/images/city/540x270/844103.webp?k=b4ff3d17a962184dfa8823beec573fa3f679306e8b3fa897b901ba0dedb157bd&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 24262
server: nginx
date: Fri, 23 Sep 2022 02:16:34 GMT
etag: "da8bc70819abff4d880f11fa17e60a1d8fb4a2e9"
expires: Sun, 23 Oct 2022 02:16:34 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: k4V76T-KlSsIBAparQEeuFKZl3588l86v13fb_vEjPSICmZ80cSTEw==
age: 400098
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/cross_product_index/accommodation/07ca5cacc9d77a7b50ca3c424ecd606114d9be75.svg
54.230.111.69200 OK 19 kB URL HTTP/2 cf.bstatic.com/static/img/cross_product_index/accommodation/07ca5cacc9d77a7b50ca3c424ecd606114d9be75.svg
IP 54.230.111.69:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1446)
Hash 4a33b34546c516c51d4dca6d2d693163
106f0507799d47f93a7acf47d42f9d8de54ee211
38e7dc7adbe6a3bdc54621cb2ce2d7bca50204f6db66dad9d21d859253a3944f
GET /static/img/cross_product_index/accommodation/07ca5cacc9d77a7b50ca3c424ecd606114d9be75.svg HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/803db70cae57625135f844e5c55e577ab3a99323.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Tue, 30 Aug 2022 01:05:55 GMT
last-modified: Wed, 10 Apr 2019 11:21:51 GMT
etag: W/"5cadd1cf-7f2"
expires: Thu, 29 Sep 2022 01:05:55 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DrwV5wk_X5Xo4Lh5WNYeL1o0kosA1st0y7upOyPfiBjK1uU0XHg2bg==
age: 2477937
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/527.41563a1b.chunk.js
54.230.111.69200 OK 33 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/527.41563a1b.chunk.js
IP 54.230.111.69:0
File type ASCII text, with very long lines (3123)
Hash dd8e5bd5f20f1e8ec0e105e5ae602415
e79117d3218444e925a19ca95e571f2c57ce0742
4334522dd1951082e79463287ab5d56662f61e880328fa937db65e96829a653d
GET /psb/capla/static/js/527.41563a1b.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 09 Sep 2022 12:26:52 GMT
etag: W/"5bc8cd4924cffa276666fb51594590d9"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 09 Sep 2022 08:56:27 GMT
x-amz-expiration: expiry-date="Sat, 07 Jan 2023 08:56:27 GMT", rule-id=""
expires: Sun, 09 Oct 2022 12:26:52 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: OQwNKiHlSLx_IHd4pphcGgDUstpV8dA4i-TUqCiGYWTxQC4PXCR-fg==
age: 1573080
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/genius-banner-world-bg/2b5cdbad7b92073bc396b8b59d0bb421b3a01cba.png
54.230.111.69200 OK 7.4 kB URL HTTP/2 cf.bstatic.com/static/img/genius-banner-world-bg/2b5cdbad7b92073bc396b8b59d0bb421b3a01cba.png
IP 54.230.111.69:0
File type PNG image data, 520 x 340, 8-bit colormap, non-interlaced\012- data
Hash a2bdd966488047aaa17dcebc5238432b
65c52eeb866eb2acbd183e5fb2dccc5205dbb6bf
cfc71dcddda21b32c0ac5ba5322bd41612224261fecdc38cd20a45b6b502457c
GET /static/img/genius-banner-world-bg/2b5cdbad7b92073bc396b8b59d0bb421b3a01cba.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.bstatic.com/static/css/index_cloudfront_sd.iq_ltr/f4741905304bff7fd68a0534ff1d24487f2b7445.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 7367
server: nginx
date: Fri, 02 Sep 2022 18:04:32 GMT
last-modified: Tue, 21 Sep 2021 07:46:56 GMT
etag: "61498df0-1cc7"
expires: Sun, 02 Oct 2022 18:04:32 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GCcksNteX-PF5seHiMTC2zMLiNZgGezVFBRSstRWRaFNxhvBo7fUkw==
age: 2157620
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/540x270/693535.webp?k=39f09e1a64b76dc38b82fae5e51dd9728a68c06b8a0a26c2e6254a80eb792e72&o=
54.230.111.69200 OK 23 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/540x270/693535.webp?k=39f09e1a64b76dc38b82fae5e51dd9728a68c06b8a0a26c2e6254a80eb792e72&o=
IP 54.230.111.69:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 540x270, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1cf4d8802d8a7c29a1c6a8f84fb42743
f0517ef84d0f9c60d23155359835b7e7f208d000
b75539e7d3b58a9a64ecfc01b01c0829392c6ccd991b3a9479c426bba4c4f6ac
GET /xdata/images/city/540x270/693535.webp?k=39f09e1a64b76dc38b82fae5e51dd9728a68c06b8a0a26c2e6254a80eb792e72&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 23244
server: nginx
date: Mon, 05 Sep 2022 00:30:39 GMT
etag: "b7d0e5154dc82438512a5acb91365ae3c5554539"
expires: Wed, 05 Oct 2022 00:30:39 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XL4fV9mj-rF6kYPYl2GmxoPTRBZMI5D7Gq7dMLzhfoUj75Cc_o7Jow==
age: 1961653
X-Firefox-Spdy: h2
cf.bstatic.com/static/fonts/booking-iconset-original/29bca18dce5a8e111855e31314a9b1d750ea9beb.woff2
54.230.111.69200 OK 93 kB URL HTTP/2 cf.bstatic.com/static/fonts/booking-iconset-original/29bca18dce5a8e111855e31314a9b1d750ea9beb.woff2
IP 54.230.111.69:0
File type Web Open Font Format (Version 2), TrueType, length 92724, version 1.0\012- data
Hash f132633e65809ec36c0f01b8a29fa457
e68a5b0de3e08ac85a13426ce3d8c13ad21d38ff
a98c20990fe3e31203fe2db8384af8e05e7b358cdae3c28b034e1f02b47db630
GET /static/fonts/booking-iconset-original/29bca18dce5a8e111855e31314a9b1d750ea9beb.woff2 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://cf.bstatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
content-length: 92724
server: nginx
date: Mon, 05 Sep 2022 02:01:44 GMT
last-modified: Wed, 10 Apr 2019 11:21:49 GMT
etag: "5cadd1cd-16a34"
expires: Wed, 05 Oct 2022 02:01:44 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tg7wAEeDFzKYpBBaHTxIGNS83FklfNbRhu92VlpLv0bH4WzirV99Mw==
age: 1956188
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/bui-react.eae829a0.js
54.230.111.69200 OK 2.9 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/bui-react.eae829a0.js
IP 54.230.111.69:0
Hash eeda6c96402e2a9ec176f43f0ac79e09
9cd713387ba5b2a468ffae40d40ae3718d2d1c49
08a917ae9e017c4b633b3d5920bb8e073968fa14b9bb7e78192fd2761465d0a4
GET /psb/capla/static/js/bui-react.eae829a0.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Tue, 27 Sep 2022 11:23:20 GMT
etag: W/"016450e96d012bfdda8ce320a38f3448"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Tue, 27 Sep 2022 08:36:30 GMT
x-amz-expiration: expiry-date="Wed, 25 Jan 2023 08:36:30 GMT", rule-id=""
expires: Thu, 27 Oct 2022 11:23:20 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KGgBszN4uaDcXY0bWpmQfx6A2dzfyFidZc1jO8MjWrNVxnup_Qtvmg==
age: 21692
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/client.15a2db53.js
54.230.111.69200 OK 6.6 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/client.15a2db53.js
IP 54.230.111.69:0
File type ASCII text, with very long lines (25066)
Hash c36d5af11190c6ff093ad2aee702e4e7
023bdc6280780508c3546521c54a63b0a438ba13
ea71e8d35677388735015b5f26fc2ee31df1df66f84cea319f3e8ffb12ebda8e
GET /psb/capla/static/js/client.15a2db53.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Tue, 27 Sep 2022 11:28:47 GMT
etag: W/"bc3e5227a1bc2782e159e6e53bef2e1a"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Tue, 27 Sep 2022 11:15:26 GMT
x-amz-expiration: expiry-date="Wed, 25 Jan 2023 11:15:26 GMT", rule-id=""
expires: Thu, 27 Oct 2022 11:28:47 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nFl_aAhEoikTL7-lZQwES38Jq3E92ge8KcLSKnBvpmALB6JPi_e25w==
age: 21365
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/186.b04616f6.chunk.js
54.230.111.69200 OK 22 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/186.b04616f6.chunk.js
IP 54.230.111.69:0
File type ASCII text, with very long lines (65460)
Hash b00aee219d327c17c6e488bd52b1fe59
97e108bcfcedad9ccab3a6c2862d5fd933737dba
d92a0b00c97d1746715e5bcead8bf413a160e6e9ab5d0fcf0ee2b7b54f5b5915
GET /psb/capla/static/js/186.b04616f6.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 26 Sep 2022 10:18:44 GMT
etag: W/"c806c24a5fb840173787c795b372b381"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Mon, 26 Sep 2022 06:20:33 GMT
x-amz-expiration: expiry-date="Tue, 24 Jan 2023 06:20:33 GMT", rule-id=""
expires: Wed, 26 Oct 2022 10:18:44 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Re46Mo4Kh4vScPYGo-dKeEExLDn3Dh7alUGVhJ_p73JLdpxxRfxTHA==
age: 111968
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/cross_product_index/guest/b2e5f2aa32b71ca0fc66aa671e4e958bcd69b7d0.svg
54.230.111.69200 OK 673 B URL HTTP/2 cf.bstatic.com/static/img/cross_product_index/guest/b2e5f2aa32b71ca0fc66aa671e4e958bcd69b7d0.svg
IP 54.230.111.69:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (392)
Hash eb323a2fa4a4ec6033106190771146d5
2f02239fbf293f42f80a5c2b00d07cdc0270fed6
34836468b6df7b4f8d32fd57c363ee48a295b4a697e2673536f09c5d1e4d2f75
GET /static/img/cross_product_index/guest/b2e5f2aa32b71ca0fc66aa671e4e958bcd69b7d0.svg HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/803db70cae57625135f844e5c55e577ab3a99323.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:51 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Fri, 23 Sep 2022 02:15:39 GMT
expires: Sun, 23 Oct 2022 02:10:42 GMT
cache-control: max-age=2592000
etag: W/"5cadd1cf-63d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: clzzPDdoQxta_Fv7h17TEMikNjrJefgqpGjI8xE13miIc5xS0U1_Lg==
age: 400450
X-Firefox-Spdy: h2
account.booking.com/privacy-consents/implicit
54.230.111.51200 OK 106 B URL HTTP/2 account.booking.com/privacy-consents/implicit
IP 54.230.111.51:0
Hash e20e19c71ccea48175f44824861dc624
bd0b1a6481293889e798191950b0fbfe83bbae56
6a9f6ca97e4d0e883d835edb24a4865b317b32a5c76c953d99e9c59c2db212e9
POST /privacy-consents/implicit HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-type: application/json;charset=UTF-8
Content-Length: 36
Origin: https://www.booking.com
Connection: keep-alive
Cookie: _pxhd=h8XODE%2FlYz-MyDEq9nmi%2FZnTQY1pKwzwc5w2Mx7snnS6LrSsWbu6vNV%2FQluuX%2FdlFk1tG7Vz00xaENF3eyEQ2w%3D%3D%3ASj8%2F9EM43AexDoTVN89bXJv6trA79lOctgg355KomLtDsclVoAULwclZor3bli5b-zNZNi8siQLsgOCn667y0ZRBcbjozagvWa2gmM8QpTk%3D; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbwcLxQQ4VaCqdOakVnljXd16%2B%2BJTi0OIK7UbuuEL0fNkTs6GS0evToqpkDNGHz9mLAA2kpK19G81EF8AHTimfos0CCfgtQic4W1tV0ACisdCM3irbkfVImcfrQnJRbFcIMyyEcvDwP%2FcmC2Ln65R6IfK13KcysurL; cors_js=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
server: nginx
date: Tue, 27 Sep 2022 17:24:53 GMT
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-methods: POST
access-control-allow-origin: https://www.booking.com
access-control-max-age: 1728000
set-cookie: bkng_sso_ses=e30; domain=.booking.com; path=/; expires=Sun, 26-Sep-2027 17:24:53 GMT; secure; HttpOnly
bkng_sso_session=e30; domain=.booking.com; path=/; expires=Sun, 26-Sep-2027 17:24:53 GMT; secure; HttpOnly
bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJkYXRhX3N1YmplY3RfaWQiOiI0M2JhOGY0NS0yMjRjLTRjZjEtOTVjZi05MTk0OGY2NWY5ODUiLCJzZXNzaW9ucyI6W119fQ; domain=account.booking.com; path=/; expires=Sun, 26-Sep-2027 17:24:53 GMT; secure; HttpOnly
content-security-policy: frame-ancestors https://*.booking.com 'self'; report-uri https://nellie.booking.com/csp-report-uri?type=block&tag=42&pid=de157a727eab032d&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdaPywujlMqYClpEWWnp7GR_-kbA2HXm3PvFWRdnUFAhBYMXFCJXDh48JHUCCGzkjlgOcpV9tqBK3s-kvzzquTsLRJTgO9QlCqOiuzYfONmVE;
content-security-policy-report-only: script-src saa.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google.com www.google-analytics.com cdn.cookielaw.org geolocation.onetrust.com 'self' 'nonce-svCbBDfiYn5A4ef' 'report-sample'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=41&pid=de157a727eab032d&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdaPywujlMqYClpEWWnp7GR_-kbA2HXm3PvFWRdnUFAhBYMXFCJXDh48JHUCCGzkjlgOcpV9tqBK3s-kvzzquTsLRJTgO9QlCqOiuzYfONmVE; object-src 'none'; default-src *.bstatic.com bstatic.com 'self'; img-src 'self' data: www.booking.com graph.facebook.com cdn.cookielaw.org account.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google-analytics.com www.google.com stats.g.doubleclick.net *.px-cloud.net *.perimeterx.net www.gstatic.com; style-src *.bstatic.com bstatic.com *.static.booking.cn 'self' 'unsafe-inline'; connect-src saa.booking.com secure.booking.com reports.booking.com privacyportal-eu.onetrust.com geolocation.onetrust.com cdn.cookielaw.org www.google-analytics.com *.perimeterx.net *.pxchk.net *.px-cdn.net *.px-client.net *.px-cloud.net 'self' 'report-sample'; frame-src https://www.youtube.com/embed/Vv4w5SmRkss *.bstatic.com https://www.google.com bstatic.com www.booking.com secure.booking.com paymentcomponent.booking.com 'self'; base-uri 'none';
strict-transport-security: max-age=17280000
content-encoding: gzip
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: j9XAYv2EMUyKkKnPlfWHoK7wUzWMxVClmVY4FEHRKIVQ9r1b74SdVQ==
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/searchresults_cloudfront_sd.iq_ltr/11729c28690e9749158d923341c466aa6322cd44.css
54.230.111.69200 OK 51 kB URL HTTP/2 cf.bstatic.com/static/css/searchresults_cloudfront_sd.iq_ltr/11729c28690e9749158d923341c466aa6322cd44.css
IP 54.230.111.69:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 30b0ca360292498ae573608c400eec57
274cd921f7f5148307c105bebda3042c2fd62b4e
6d2db23e78dce305d3e301df8e4822a8725ec78c47ed2d1fad12002d8b9d25dd
GET /static/css/searchresults_cloudfront_sd.iq_ltr/11729c28690e9749158d923341c466aa6322cd44.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Thu, 08 Sep 2022 02:10:04 GMT
last-modified: Tue, 06 Sep 2022 14:20:56 GMT
etag: W/"63175748-5446a"
expires: Sat, 08 Oct 2022 02:10:04 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YKrO52r_8-OfSLk4QV2tjiBWqgshbisO0iI1Ef5y1ZoOcdZkw-nMJQ==
age: 1696489
X-Firefox-Spdy: h2
www.booking.com/js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=0cab7a710d0a01ac&ete=&etg=&etcg=&ets=cCcCcCJdDBKJJVaXNJIbVCMILcYJZXe|1,cCHObdRdJJXRDVMDTEHAFPRJdUDEYIbaTaTaET|1,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|1,cCHObdRdJJXCcAZTbaTaTaET|2,cCHObdRdJJXCcaWQOccCcCcCC|2,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|2&etgwv=
5.57.17.220200 OK 35 B URL HTTP/1.1 www.booking.com/js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=0cab7a710d0a01ac&ete=&etg=&etcg=&ets=cCcCcCJdDBKJJVaXNJIbVCMILcYJZXe|1,cCHObdRdJJXRDVMDTEHAFPRJdUDEYIbaTaTaET|1,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|1,cCHObdRdJJXCcAZTbaTaTaET|2,cCHObdRdJJXCcaWQOccCcCcCC|2,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|2&etgwv=
IP 5.57.17.220:0
Hash 79a611524d7c43a354c589264cc2376e
2e25649d9a8a208302be0502b47a0e44b07bc7c1
c7a9af81f3467d3c95760df18d0853bda8c191f612fb2e8b2b5c4ed941fbaf1a
GET /js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=0cab7a710d0a01ac&ete=&etg=&etcg=&ets=cCcCcCJdDBKJJVaXNJIbVCMILcYJZXe|1,cCHObdRdJJXRDVMDTEHAFPRJdUDEYIbaTaTaET|1,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|1,cCHObdRdJJXCcAZTbaTaTaET|2,cCHObdRdJJXCcaWQOccCcCcCC|2,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|2&etgwv= HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
X-Booking-Info:
X-Booking-Client-Info:
X-Booking-Pageview-Id: 0cab7a710d0a01ac
X-Booking-SiteType-Id: 1
X-Booking-Language-Code: en-us
X-Booking-AID: 1858279
X-Booking-Session-Id: dc5f82bffcd067499c22f7e35ff33257
X-Booking-ET-Serialized-State: E3NZ4odpgOTLUlpCb64woVTdLicEYdXUAD-54dKFZLH5-iRzCKO8U3zOt0eZvTRcn
Connection: keep-alive
Cookie: _pxhd=h8XODE%2FlYz-MyDEq9nmi%2FZnTQY1pKwzwc5w2Mx7snnS6LrSsWbu6vNV%2FQluuX%2FdlFk1tG7Vz00xaENF3eyEQ2w%3D%3D%3ASj8%2F9EM43AexDoTVN89bXJv6trA79lOctgg355KomLtDsclVoAULwclZor3bli5b-zNZNi8siQLsgOCn667y0ZRBcbjozagvWa2gmM8QpTk%3D; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPecWLrdF%2Fxs9xFrzwHYUNjFnqu9Ln7A0tjqoXdqL3UA%2BujUXjvgWwZOXBHo3aHxpk6FL2p7CWpQ3vmSMW8XX82VuiMhmfaYW4s78Y6jgQHXV8XJaFpioldJlkKyYpMgv0uJqok5ig79VkGhPnaF0Z7BS%2FGYfUy2pVp8%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Sep+27+2022+17%3A24%3A51+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=3e1f62ba-39e7-4566-8d4a-87fb8faae768&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1664299491427; bkng_frontend_sese_exp=0; bkng_sso_ses=e30; bkng_sso_session=e30; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
server: nginx
date: Tue, 27 Sep 2022 17:24:53 GMT
content-type: image/gif
content-length: 35
vary: Accept-Encoding, User-Agent
content-encoding: br
strict-transport-security: max-age=604800
content-security-policy-report-only: report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=20627a72796205e5&e=UmFuZG9tSVYkc2RlIyh9Yea92wm0yRUjnCBymoy8ejJx9rxlfEwGM9JXURWFXTt7DfFxok7G8UA; frame-ancestors 'none';
x-xss-protection: 1; mode=block
www.booking.com/js_tracking?sid=0fef4b6ec178f4037ad92b5d29bfdca4&stype=1&ver=2&pid=0cab7a710d0a01ac&aid=1858279&lang=en-us&ref_action=index&ete=&etg=&etcg=&ets=aaTBNZZJRLESPIDNJDPVBC|1,cCHObVZMYCAFFQZcNKNMC|1,cCHObVBEQBOJAZdJAINLRJAXaaO|1,cCHObIFfESfdQfQQDVCUBPSEbFZVGAZfTLKGBfC|8,cCHObEVdZVaRZVBZHEZXRFKQbeVEHe|1,cCHObEVdZAQaFBddQSBSQRdHHKe|1,cCHObVZMYCAFFQZcNKNMC|2,cCHObVBEQBOJAZdJAINLRJAXaaO|3,cCHObVZMYCAFFQZcNKNMC|4,cCHObVBEQBOJAZdJAINLRJAXaaO|4,cCHObVZMYCAFFQZcNKNMC|7&etgwv=&m=UmFuZG9tSVYkc2RlIyh9Yd-G9QbajTWUtk-azxcC7491vSDXNE1W17IswXo7GSQJTmKqZPZCSbiqDFJIrXa_vGZBjABkiyDEERQn6ccLe0PuOQ56BEXV5s035cMV9GWtaF5yBJ16dNuOZTKn8qNP1dvKkawmA15eVVNpDc3TFfMO5yHty-rcJVqfQOHc7JhrCKLOXRv1onv6mahkm4RkvcHFA2P2zaS-WIk05OQxvOAANj0Wj28Pbj4Rfwtg798eAldr1brcSj2jxXhxW35A8rYOIDK_JUvaOpQoYyEXuO0IFOHTKVyPAyo7HqwlAI0G
5.57.17.220200 OK 3 B URL HTTP/1.1 www.booking.com/js_tracking?sid=0fef4b6ec178f4037ad92b5d29bfdca4&stype=1&ver=2&pid=0cab7a710d0a01ac&aid=1858279&lang=en-us&ref_action=index&ete=&etg=&etcg=&ets=aaTBNZZJRLESPIDNJDPVBC|1,cCHObVZMYCAFFQZcNKNMC|1,cCHObVBEQBOJAZdJAINLRJAXaaO|1,cCHObIFfESfdQfQQDVCUBPSEbFZVGAZfTLKGBfC|8,cCHObEVdZVaRZVBZHEZXRFKQbeVEHe|1,cCHObEVdZAQaFBddQSBSQRdHHKe|1,cCHObVZMYCAFFQZcNKNMC|2,cCHObVBEQBOJAZdJAINLRJAXaaO|3,cCHObVZMYCAFFQZcNKNMC|4,cCHObVBEQBOJAZdJAINLRJAXaaO|4,cCHObVZMYCAFFQZcNKNMC|7&etgwv=&m=UmFuZG9tSVYkc2RlIyh9Yd-G9QbajTWUtk-azxcC7491vSDXNE1W17IswXo7GSQJTmKqZPZCSbiqDFJIrXa_vGZBjABkiyDEERQn6ccLe0PuOQ56BEXV5s035cMV9GWtaF5yBJ16dNuOZTKn8qNP1dvKkawmA15eVVNpDc3TFfMO5yHty-rcJVqfQOHc7JhrCKLOXRv1onv6mahkm4RkvcHFA2P2zaS-WIk05OQxvOAANj0Wj28Pbj4Rfwtg798eAldr1brcSj2jxXhxW35A8rYOIDK_JUvaOpQoYyEXuO0IFOHTKVyPAyo7HqwlAI0G
IP 5.57.17.220:0
Hash 29a29c1a9510295faffe1081ce907c38
e56ed85fa42ad8367711b2d7a5680f781bc8cf2c
953364ba17432048a9b97116a689d04da08ff77b1ead69c7fe1b51faa6542667
GET /js_tracking?sid=0fef4b6ec178f4037ad92b5d29bfdca4&stype=1&ver=2&pid=0cab7a710d0a01ac&aid=1858279&lang=en-us&ref_action=index&ete=&etg=&etcg=&ets=aaTBNZZJRLESPIDNJDPVBC|1,cCHObVZMYCAFFQZcNKNMC|1,cCHObVBEQBOJAZdJAINLRJAXaaO|1,cCHObIFfESfdQfQQDVCUBPSEbFZVGAZfTLKGBfC|8,cCHObEVdZVaRZVBZHEZXRFKQbeVEHe|1,cCHObEVdZAQaFBddQSBSQRdHHKe|1,cCHObVZMYCAFFQZcNKNMC|2,cCHObVBEQBOJAZdJAINLRJAXaaO|3,cCHObVZMYCAFFQZcNKNMC|4,cCHObVBEQBOJAZdJAINLRJAXaaO|4,cCHObVZMYCAFFQZcNKNMC|7&etgwv=&m=UmFuZG9tSVYkc2RlIyh9Yd-G9QbajTWUtk-azxcC7491vSDXNE1W17IswXo7GSQJTmKqZPZCSbiqDFJIrXa_vGZBjABkiyDEERQn6ccLe0PuOQ56BEXV5s035cMV9GWtaF5yBJ16dNuOZTKn8qNP1dvKkawmA15eVVNpDc3TFfMO5yHty-rcJVqfQOHc7JhrCKLOXRv1onv6mahkm4RkvcHFA2P2zaS-WIk05OQxvOAANj0Wj28Pbj4Rfwtg798eAldr1brcSj2jxXhxW35A8rYOIDK_JUvaOpQoYyEXuO0IFOHTKVyPAyo7HqwlAI0G HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
X-Booking-AID: 1858279
X-Booking-CSRF: I2ozYwAAAAA=7YcDS4io-VvZQrZDmtMEBuRBUcOf9o5XZcwMPORvx9HaTGizsK2YkltR3Yhgm7mCyq6cwgldZUgTI0DcOkyJDOgIrCaSHNg8cburDzlBJHj6mdB-34rOXq_H9a6Q0zreNvTRPLrXZL69T_gyDj7MF7M9XuXiRzJnnEO4lvpbahGbos2Z6Td9ab8ExAzEBXoVj0BX9Tb9skpDtWvJ
X-Booking-Info: 1554730,1581080,1586670,1588860,1590920,1591870,1591890,1592480,1597140,1598040,1600300,aaTBNZZJRLESPIDNJDPVBC|1,cCcCcCJdDBKJJVaXNJIbVCMILcYJZXe|1,1590920|2,cCHObdRdJJXRDVMDTEHAFPRJdUDEYIbaTaTaET|1,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|1,cCHObVZMYCAFFQZcNKNMC|1,cCHObdRdJJXCcAZTbaTaTaET|2,cCHObdRdJJXCcaWQOccCcCcCC|2,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|2,cCHObVBEQBOJAZdJAINLRJAXaaO|1,cCHObIFfESfdQfQQDVCUBPSEbFZVGAZfTLKGBfC|8,cCHObEVdZVaRZVBZHEZXRFKQbeVEHe|1,cCHObEVdZAQaFBddQSBSQRdHHKe|1,cCHObVZMYCAFFQZcNKNMC|2,cCHObVBEQBOJAZdJAINLRJAXaaO|3,cCHObVZMYCAFFQZcNKNMC|4,cCHObVBEQBOJAZdJAINLRJAXaaO|4,cCHObVZMYCAFFQZcNKNMC|7
X-Booking-Client-Info: aaTBNZZJRLESPIDNJDPVBC|1,cCHObVZMYCAFFQZcNKNMC|1,cCHObVBEQBOJAZdJAINLRJAXaaO|1,cCHObIFfESfdQfQQDVCUBPSEbFZVGAZfTLKGBfC|8,cCHObEVdZVaRZVBZHEZXRFKQbeVEHe|1,cCHObEVdZAQaFBddQSBSQRdHHKe|1,cCHObVZMYCAFFQZcNKNMC|2,cCHObVBEQBOJAZdJAINLRJAXaaO|3,cCHObVZMYCAFFQZcNKNMC|4,cCHObVBEQBOJAZdJAINLRJAXaaO|4,cCHObVZMYCAFFQZcNKNMC|7
X-Booking-Label:
X-Booking-Language-Code: en-us
X-Booking-Pageview-Id: 0cab7a710d0a01ac
X-Booking-Session-Id: 0fef4b6ec178f4037ad92b5d29bfdca4
X-Booking-SiteType-Id: 1
X-Partner-Channel-Id: 2
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: _pxhd=h8XODE%2FlYz-MyDEq9nmi%2FZnTQY1pKwzwc5w2Mx7snnS6LrSsWbu6vNV%2FQluuX%2FdlFk1tG7Vz00xaENF3eyEQ2w%3D%3D%3ASj8%2F9EM43AexDoTVN89bXJv6trA79lOctgg355KomLtDsclVoAULwclZor3bli5b-zNZNi8siQLsgOCn667y0ZRBcbjozagvWa2gmM8QpTk%3D; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPecWLrdF%2Fxs9xFrzwHYUNjFnqu9Ln7A0tjqoXdqL3UA%2BujUXjvgWwZOXBHo3aHxpk6FL2p7CWpQ3vmSMW8XX82VuiMhmfaYW4s78Y6jgQHXV8XJaFpioldJlkKyYpMgv0uJqok5ig79VkGhPnaF0Z7BS%2FGYfUy2pVp8%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Sep+27+2022+17%3A24%3A51+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=3e1f62ba-39e7-4566-8d4a-87fb8faae768&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1664299491427; bkng_frontend_sese_exp=0; bkng_sso_ses=e30; bkng_sso_session=e30; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
server: nginx
date: Tue, 27 Sep 2022 17:24:53 GMT
content-type: text/plain; charset=UTF-8
transfer-encoding: chunked
vary: User-Agent, Accept-Encoding
content-encoding: br
strict-transport-security: max-age=604800
content-security-policy-report-only: report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=c0d17a72b5b702a1&e=UmFuZG9tSVYkc2RlIyh9Yea92wm0yRUjnCBymoy8ejLuZ4B-uSjgM95qSyj6ja_qckOuk8_kr_E; frame-ancestors 'none';
x-xss-protection: 1; mode=block
www.booking.com/dml/graphql?aid=1858279&lang=en-us
5.57.17.220200 OK 2.6 kB URL HTTP/1.1 www.booking.com/dml/graphql?aid=1858279&lang=en-us
IP 5.57.17.220:0
File type JSON data\012- , ASCII text, with very long lines (10317), with no line terminators
Hash 4e4277458465ac31212d60ecf0402f01
ed0fd4133caf84a168fb5a2aee6a673c383cda41
3666b3850cc84f3641d19b51425ee6d385f353ad883a1e1bc8db636a9bb41195
POST /dml/graphql?aid=1858279&lang=en-us HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
content-type: application/json
x-booking-context-action-name: index
x-booking-context-aid: 1858279
x-booking-experiment-state: E3NZ4odpgOTLUlpCb64woVTdLicEYdXUAD-54dKFZLH5-iRzCKO8U3zOt0eZvTRcn
x-booking-pageview-id: 0cab7a710d0a01ac
x-booking-site-type-id: 1
x-booking-timeout-ms: 400
x-booking-topic: capla_browser_b-index-lp-web-mfe
x-envoy-expected-rq-timeout-ms: 400
Origin: https://www.booking.com
Content-Length: 1119
Connection: keep-alive
Cookie: _pxhd=h8XODE%2FlYz-MyDEq9nmi%2FZnTQY1pKwzwc5w2Mx7snnS6LrSsWbu6vNV%2FQluuX%2FdlFk1tG7Vz00xaENF3eyEQ2w%3D%3D%3ASj8%2F9EM43AexDoTVN89bXJv6trA79lOctgg355KomLtDsclVoAULwclZor3bli5b-zNZNi8siQLsgOCn667y0ZRBcbjozagvWa2gmM8QpTk%3D; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBKtCN8f0CTZfS3THIq6RFvdf9usDDYzyTPbfU5Qo7f2QE%2F8zTjgkzfHScTHnueZZcRVY3a2Cj9xRICDd%2FJnizTYITP9abYqbUopH3NZpZXbXcT2kKvTEaS4w2ZgrLn1N7Z8BGmU7dOkUzy4Q73bnq6Uqf%2FfLJcX0XQ%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Sep+27+2022+17%3A24%3A51+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=3e1f62ba-39e7-4566-8d4a-87fb8faae768&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1664299491427; bkng_frontend_sese_exp=0; bkng_sso_ses=e30; bkng_sso_session=e30
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
server: nginx
date: Tue, 27 Sep 2022 17:24:53 GMT
content-type: application/json; charset=UTF-8
content-length: 2619
vary: User-Agent, Accept-Encoding
content-encoding: br
set-cookie: _pxhd=h8XODE%2FlYz-MyDEq9nmi%2FZnTQY1pKwzwc5w2Mx7snnS6LrSsWbu6vNV%2FQluuX%2FdlFk1tG7Vz00xaENF3eyEQ2w%3D%3D%3ASj8%2F9EM43AexDoTVN89bXJv6trA79lOctgg355KomLtDsclVoAULwclZor3bli5b-zNZNi8siQLsgOCn667y0ZRBcbjozagvWa2gmM8QpTk%3D; domain=booking.com; path=/; expires=Wed, 27-Sep-2023 17:24:53 GMT
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLblgO%2Fz4BDP5vRW1wC3cEM5y1MJGZU%2FNyKM0fks8sBMZbGp0QcDRwQ4LDmPt%2BgU3MB40gu%2F1esDg6w04nBk%2F5iIgneJDca2T8WfyfY90AsG52GjE6g7BvRrCH8HC6wLcpDG8YW6d4OznkkIf8e%2BMRJ3obmsZsRupy5zDrD7jGoEkA%3D; domain=.booking.com; path=/; expires=Sun, 26-Sep-2027 17:24:53 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
q-xx.bstatic.com/xdata/images/xphoto/300x240/57584488.jpeg?k=d8d4706fc72ee789d870eb6b05c0e546fd4ad85d72a3af3e30fb80ca72f0ba57&o=
54.230.111.69200 OK 10 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/57584488.jpeg?k=d8d4706fc72ee789d870eb6b05c0e546fd4ad85d72a3af3e30fb80ca72f0ba57&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 3516533c36779b327798248218da8b19
36c0739bb6e85bd406f7e3c853bcde872c3302e3
8aba7cf83e43468f409963df22b718744c34fc9aba143af86d4b73219b3f5910
GET /xdata/images/xphoto/300x240/57584488.jpeg?k=d8d4706fc72ee789d870eb6b05c0e546fd4ad85d72a3af3e30fb80ca72f0ba57&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 10231
server: nginx
date: Mon, 26 Sep 2022 01:05:13 GMT
etag: "bb9c6c4d74831751a39ecf314d78789949390ede"
expires: Wed, 26 Oct 2022 01:05:13 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pm_zFezdRumO0FOs57KWQSkqgYeXFu_aIN6xDHZLhhJ2W7rQTMkCZA==
age: 145179
X-Firefox-Spdy: h2
www.booking.com/js_tracking?sid=0fef4b6ec178f4037ad92b5d29bfdca4&stype=1&ver=2&pid=0cab7a710d0a01ac&aid=1858279&lang=en-us&ref_action=index&ete=&etg=&etcg=&ets=BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|2,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|4,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|7&etgwv=&m=UmFuZG9tSVYkc2RlIyh9Yd-G9QbajTWUtk-azxcC7491vSDXNE1W17IswXo7GSQJTmKqZPZCSbiqDFJIrXa_vGZBjABkiyDEERQn6ccLe0PuOQ56BEXV5s035cMV9GWtaF5yBJ16dNuOZTKn8qNP1dvKkawmA15eVVNpDc3TFfMO5yHty-rcJVqfQOHc7JhrCKLOXRv1onv6mahkm4RkvcHFA2P2zaS-WIk05OQxvOAANj0Wj28Pbj4Rfwtg798eAldr1brcSj2jxXhxW35A8rYOIDK_JUvaOpQoYyEXuO0IFOHTKVyPAyo7HqwlAI0G
5.57.17.220200 OK 3 B URL HTTP/1.1 www.booking.com/js_tracking?sid=0fef4b6ec178f4037ad92b5d29bfdca4&stype=1&ver=2&pid=0cab7a710d0a01ac&aid=1858279&lang=en-us&ref_action=index&ete=&etg=&etcg=&ets=BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|2,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|4,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|7&etgwv=&m=UmFuZG9tSVYkc2RlIyh9Yd-G9QbajTWUtk-azxcC7491vSDXNE1W17IswXo7GSQJTmKqZPZCSbiqDFJIrXa_vGZBjABkiyDEERQn6ccLe0PuOQ56BEXV5s035cMV9GWtaF5yBJ16dNuOZTKn8qNP1dvKkawmA15eVVNpDc3TFfMO5yHty-rcJVqfQOHc7JhrCKLOXRv1onv6mahkm4RkvcHFA2P2zaS-WIk05OQxvOAANj0Wj28Pbj4Rfwtg798eAldr1brcSj2jxXhxW35A8rYOIDK_JUvaOpQoYyEXuO0IFOHTKVyPAyo7HqwlAI0G
IP 5.57.17.220:0
Hash 29a29c1a9510295faffe1081ce907c38
e56ed85fa42ad8367711b2d7a5680f781bc8cf2c
953364ba17432048a9b97116a689d04da08ff77b1ead69c7fe1b51faa6542667
GET /js_tracking?sid=0fef4b6ec178f4037ad92b5d29bfdca4&stype=1&ver=2&pid=0cab7a710d0a01ac&aid=1858279&lang=en-us&ref_action=index&ete=&etg=&etcg=&ets=BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|2,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|4,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|7&etgwv=&m=UmFuZG9tSVYkc2RlIyh9Yd-G9QbajTWUtk-azxcC7491vSDXNE1W17IswXo7GSQJTmKqZPZCSbiqDFJIrXa_vGZBjABkiyDEERQn6ccLe0PuOQ56BEXV5s035cMV9GWtaF5yBJ16dNuOZTKn8qNP1dvKkawmA15eVVNpDc3TFfMO5yHty-rcJVqfQOHc7JhrCKLOXRv1onv6mahkm4RkvcHFA2P2zaS-WIk05OQxvOAANj0Wj28Pbj4Rfwtg798eAldr1brcSj2jxXhxW35A8rYOIDK_JUvaOpQoYyEXuO0IFOHTKVyPAyo7HqwlAI0G HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
X-Booking-AID: 1858279
X-Booking-CSRF: I2ozYwAAAAA=7YcDS4io-VvZQrZDmtMEBuRBUcOf9o5XZcwMPORvx9HaTGizsK2YkltR3Yhgm7mCyq6cwgldZUgTI0DcOkyJDOgIrCaSHNg8cburDzlBJHj6mdB-34rOXq_H9a6Q0zreNvTRPLrXZL69T_gyDj7MF7M9XuXiRzJnnEO4lvpbahGbos2Z6Td9ab8ExAzEBXoVj0BX9Tb9skpDtWvJ
X-Booking-Info: 1554730,1581080,1586670,1588860,1590920,1591870,1591890,1592480,1597140,1598040,1600300,aaTBNZZJRLESPIDNJDPVBC|1,cCcCcCJdDBKJJVaXNJIbVCMILcYJZXe|1,1590920|2,cCHObdRdJJXRDVMDTEHAFPRJdUDEYIbaTaTaET|1,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|1,cCHObVZMYCAFFQZcNKNMC|1,cCHObdRdJJXCcAZTbaTaTaET|2,cCHObdRdJJXCcaWQOccCcCcCC|2,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|2,cCHObVBEQBOJAZdJAINLRJAXaaO|1,cCHObIFfESfdQfQQDVCUBPSEbFZVGAZfTLKGBfC|8,cCHObEVdZVaRZVBZHEZXRFKQbeVEHe|1,cCHObEVdZAQaFBddQSBSQRdHHKe|1,cCHObVZMYCAFFQZcNKNMC|2,cCHObVBEQBOJAZdJAINLRJAXaaO|3,cCHObVZMYCAFFQZcNKNMC|4,cCHObVBEQBOJAZdJAINLRJAXaaO|4,cCHObVZMYCAFFQZcNKNMC|7,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|4,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|7
X-Booking-Client-Info: aaTBNZZJRLESPIDNJDPVBC|1,cCHObVZMYCAFFQZcNKNMC|1,cCHObVBEQBOJAZdJAINLRJAXaaO|1,cCHObIFfESfdQfQQDVCUBPSEbFZVGAZfTLKGBfC|8,cCHObEVdZVaRZVBZHEZXRFKQbeVEHe|1,cCHObEVdZAQaFBddQSBSQRdHHKe|1,cCHObVZMYCAFFQZcNKNMC|2,cCHObVBEQBOJAZdJAINLRJAXaaO|3,cCHObVZMYCAFFQZcNKNMC|4,cCHObVBEQBOJAZdJAINLRJAXaaO|4,cCHObVZMYCAFFQZcNKNMC|7,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|2,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|4,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|7
X-Booking-Label:
X-Booking-Language-Code: en-us
X-Booking-Pageview-Id: 0cab7a710d0a01ac
X-Booking-Session-Id: 0fef4b6ec178f4037ad92b5d29bfdca4
X-Booking-SiteType-Id: 1
X-Partner-Channel-Id: 2
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: _pxhd=h8XODE%2FlYz-MyDEq9nmi%2FZnTQY1pKwzwc5w2Mx7snnS6LrSsWbu6vNV%2FQluuX%2FdlFk1tG7Vz00xaENF3eyEQ2w%3D%3D%3ASj8%2F9EM43AexDoTVN89bXJv6trA79lOctgg355KomLtDsclVoAULwclZor3bli5b-zNZNi8siQLsgOCn667y0ZRBcbjozagvWa2gmM8QpTk%3D; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPecWLrdF%2Fxs9xFrzwHYUNjFnqu9Ln7A0tjqoXdqL3UA%2BujUXjvgWwZOXBHo3aHxpk6FL2p7CWpQ3vmSMW8XX82VuiMhmfaYW4s78Y6jgQHXV8XJaFpioldJlkKyYpMgv0uJqok5ig79VkGhPnaF0Z7BS%2FGYfUy2pVp8%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Sep+27+2022+17%3A24%3A51+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=3e1f62ba-39e7-4566-8d4a-87fb8faae768&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1664299491427; bkng_frontend_sese_exp=0; bkng_sso_ses=e30; bkng_sso_session=e30; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
server: nginx
date: Tue, 27 Sep 2022 17:24:53 GMT
content-type: text/plain; charset=UTF-8
transfer-encoding: chunked
vary: Accept-Encoding, User-Agent
content-encoding: br
strict-transport-security: max-age=604800
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=67717a72a39f0410&e=UmFuZG9tSVYkc2RlIyh9Yea92wm0yRUjnCBymoy8ejISyw_PMhy-v89Ad3Nyq_JDMIBVaj_dSEg;
x-xss-protection: 1; mode=block
cf.bstatic.com/static/js/genius_vip_cloudfront_sd/f980dbafa6b20d980f25ca835a161e7cece00d9d.js
54.230.111.69200 OK 14 kB URL HTTP/2 cf.bstatic.com/static/js/genius_vip_cloudfront_sd/f980dbafa6b20d980f25ca835a161e7cece00d9d.js
IP 54.230.111.69:0
File type ASCII text, with very long lines (3122), with no line terminators
Hash bc7d59d7d3b588fe9e8eafd5b7aa99a5
568ad94ccbc94025edd257947ecd5930387d64d8
88651a346024cdee09a314492b0c3536b24a699ab645332f57e7821ccaeca175
GET /static/js/genius_vip_cloudfront_sd/f980dbafa6b20d980f25ca835a161e7cece00d9d.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 09 Sep 2022 01:48:07 GMT
last-modified: Thu, 30 Jun 2022 08:09:45 GMT
etag: W/"62bd5a49-c32"
expires: Sun, 09 Oct 2022 01:48:07 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Q90kbbHOBZIrVOvd4Na_kg7LpOM6worpzZ81hZEycDgcbEhMaF7qWQ==
age: 1611405
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/calendar2_cloudfront_sd/06071dd1c4e89fbe99e5ad6e21584a6bf9585e84.js
54.230.111.69200 OK 43 kB URL HTTP/2 cf.bstatic.com/static/js/calendar2_cloudfront_sd/06071dd1c4e89fbe99e5ad6e21584a6bf9585e84.js
IP 54.230.111.69:0
File type ASCII text, with very long lines (65460)
Hash aac003ffd009bea7fb0b46d08dd3c52c
df7b8a6f4734699c7dc13e72eb1c2960034c9578
f3d653f21bccda15c5993ed5448e2fb9322837565faa09338ab5fd3f15e0545e
GET /static/js/calendar2_cloudfront_sd/06071dd1c4e89fbe99e5ad6e21584a6bf9585e84.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
last-modified: Tue, 12 Jan 2021 10:06:38 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Mon, 19 Sep 2022 04:49:14 GMT
expires: Wed, 19 Oct 2022 04:49:14 GMT
cache-control: max-age=2592000
etag: W/"5ffd74ae-cbbc"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VasFJIOqmdwfjM7KcIuUVJPJjqPGfqnPwpc2tOdrAQe6NeypeLS8Fg==
age: 736539
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/hotel/300x240/100235855.jpeg?k=5b6e6cff16cfd290e953768d63ee15f633b56348238a705c45759aa3a81ba82b&o=
54.230.111.69200 OK 15 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/hotel/300x240/100235855.jpeg?k=5b6e6cff16cfd290e953768d63ee15f633b56348238a705c45759aa3a81ba82b&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash d7f7b2f37d55a0948fe4d3b371f78f41
3cf5a1f3b666afbd4e8f3ea39e9de2b9f628f72c
8d70465609b50fe82003fee4bad7def0ca7b231f3d8e5878471aa88cff9bcd9e
GET /xdata/images/hotel/300x240/100235855.jpeg?k=5b6e6cff16cfd290e953768d63ee15f633b56348238a705c45759aa3a81ba82b&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 15106
server: nginx
date: Mon, 19 Sep 2022 04:49:14 GMT
expires: Wed, 19 Oct 2022 04:49:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "8ceabb3f85635d377227a83b5a2b7d5080efb750"
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BhU9jMgFbR3eW2Sdc_ZXXAzv6b9NVj2BqbgKW7v9EQMNMHBd7PICIw==
age: 736539
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/hotel/300x240/52979454.jpeg?k=6ac6d0afd28e4ce00a8f817cc3045039e064469a3f9a88059706c0b45adf2e7d&o=
54.230.111.69200 OK 11 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/hotel/300x240/52979454.jpeg?k=6ac6d0afd28e4ce00a8f817cc3045039e064469a3f9a88059706c0b45adf2e7d&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash a278b4f84e27ae6e53694c50c6c0db6e
8289a6f74256ebe6ead5ed14c58d6704ec72a7ef
57c23f20cba27810aa9c20deabd2edc8dac96cee6d1ca27f1c659610becee55d
GET /xdata/images/hotel/300x240/52979454.jpeg?k=6ac6d0afd28e4ce00a8f817cc3045039e064469a3f9a88059706c0b45adf2e7d&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 11252
server: nginx
date: Fri, 09 Sep 2022 02:11:06 GMT
etag: "6b2f9efdbf548da9e197988fe68fbb3fce210d9c"
expires: Sun, 09 Oct 2022 02:11:06 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DPGrHb77UGWLbn8PtHyqsz2kyTsItvGylb1gnaetBkiKAxYYCjq03A==
age: 1610027
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450074.jpeg?k=7039b03a94f3b99262c4b3054b0edcbbb91e9dade85b6efc880d45288a06c126&o=
54.230.111.69200 OK 20 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450074.jpeg?k=7039b03a94f3b99262c4b3054b0edcbbb91e9dade85b6efc880d45288a06c126&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 2414c022c1585360984508f5c5de208b
7f2fe2e841f4929dcf52c93c7efbe6401ef9fd24
2309e00634f6000b455200aeaae2c868aef28a31a05571aeada61b9c78264135
GET /xdata/images/xphoto/300x240/45450074.jpeg?k=7039b03a94f3b99262c4b3054b0edcbbb91e9dade85b6efc880d45288a06c126&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 20152
server: nginx
date: Wed, 31 Aug 2022 06:34:59 GMT
etag: "72fe9c998b2edfc8437836fc091e53cfdd929a3c"
expires: Fri, 30 Sep 2022 06:34:59 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: enNMTQZ9rX9ZqxsasIA2VMkHCGxq9xQxnopNEIM7-BI7SsDSBEyRkA==
age: 2371794
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/searchresults_cloudfront_sd/e3537467dbf9f391fd5339e5a42b0e96897bf518.js
54.230.111.69200 OK 59 kB URL HTTP/2 cf.bstatic.com/static/js/searchresults_cloudfront_sd/e3537467dbf9f391fd5339e5a42b0e96897bf518.js
IP 54.230.111.69:0
File type Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
Hash 43c518963d64f15cfe14eff42657bbcd
049f6953bdb07842f2067c17bfc5c3d7784c5a24
9033fb301d2406abb05c0a51427b15ac220d32e477b26ca4bf2196a4a4af9db7
GET /static/js/searchresults_cloudfront_sd/e3537467dbf9f391fd5339e5a42b0e96897bf518.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Tue, 13 Sep 2022 13:57:05 GMT
last-modified: Tue, 13 Sep 2022 13:46:57 GMT
etag: W/"632089d1-2ff46"
expires: Thu, 13 Oct 2022 13:57:05 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1dhcd8Y0x3A2pRBdIidH61A6l-PcZgAc4x_G1LEtVG7SBxcPDTC-Ow==
age: 1222068
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450058.jpeg?k=2449eb55e8269a66952858c80fd7bdec987f9514cd79d58685651b7d6e9cdfcf&o=
54.230.111.69200 OK 12 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450058.jpeg?k=2449eb55e8269a66952858c80fd7bdec987f9514cd79d58685651b7d6e9cdfcf&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash b5b754cfdb4146c7a99d432dd323a23b
901d28c8ad2a1431c560f4fefbd96768cea85823
1718dd5438e00eacc0afd6176fbe286bb20531864915d3c07c4312737d25ce7a
GET /xdata/images/xphoto/300x240/45450058.jpeg?k=2449eb55e8269a66952858c80fd7bdec987f9514cd79d58685651b7d6e9cdfcf&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 12173
server: nginx
date: Sat, 24 Sep 2022 10:51:19 GMT
etag: "c640d9dab50e20f2d820223a90078e61edd61352"
expires: Mon, 24 Oct 2022 10:51:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dtGoNVk2c6ZFeMFpx2-U0Gf_P3Q_DFNaGY98TAwqxboNInNdvfghAA==
age: 282814
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450113.jpeg?k=76b3780a0e4aacb9d02ac3569b05b3c5e85e0fd875287e9ac334e3b569f320c7&o=
54.230.111.69200 OK 11 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450113.jpeg?k=76b3780a0e4aacb9d02ac3569b05b3c5e85e0fd875287e9ac334e3b569f320c7&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 36896ed28c3a04b337713e865e468131
b42b54b780ee6652ae6ba59bf57a1f7daaeb6458
6bf196e10de012119d344c3b9c9e1ca4637b5917264327dfb6704ecae22b059d
GET /xdata/images/xphoto/300x240/45450113.jpeg?k=76b3780a0e4aacb9d02ac3569b05b3c5e85e0fd875287e9ac334e3b569f320c7&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 11215
server: nginx
date: Mon, 29 Aug 2022 04:49:31 GMT
etag: "6704131e7aad0296f54f6294cd59ae299e67efff"
expires: Wed, 28 Sep 2022 04:49:31 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DEQBnsp-Az7W5yxhfXjJL1SB5cvanWU7YDsz16fNk-zg7um6ceynJQ==
age: 2550922
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450073.jpeg?k=795a94c30433de1858ea52375e8190a962b302376be2e68aa08be345d936557d&o=
54.230.111.69200 OK 11 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450073.jpeg?k=795a94c30433de1858ea52375e8190a962b302376be2e68aa08be345d936557d&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 5567eb5c3d7f1f8d3c5fa7d43cb32b34
4caeab4dfa4cbdad3bdde14b1f659f8b0b06b46f
84331b7d14d04d74b8b85ef87221f322f8508e5e596b5c8bae2f8197f233aec2
GET /xdata/images/xphoto/300x240/45450073.jpeg?k=795a94c30433de1858ea52375e8190a962b302376be2e68aa08be345d936557d&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 10959
server: nginx
date: Thu, 08 Sep 2022 02:10:03 GMT
etag: "189a4d47e7219003a4448708bef6f9493060c6ee"
expires: Sat, 08 Oct 2022 02:10:03 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: q2OAkDY8b1tqfTrRAmIJildIDf1HUJ6BJ9NWzcWOHOuL0CxThMvRVA==
age: 1696490
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450082.jpeg?k=beb101b827a729065964523184f4db6cac42900c2415d71d516999af40beb7aa&o=
54.230.111.69200 OK 13 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450082.jpeg?k=beb101b827a729065964523184f4db6cac42900c2415d71d516999af40beb7aa&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash cb649ad60fe5750fbc23da44d35206b4
a9c188e226fdd77e73f3fa374b210bf1bb0dfe65
a6f122a9ceb30d1ebc827c40e4e7e40b710da41f9a7ee454d8504128e0ca7aa0
GET /xdata/images/xphoto/300x240/45450082.jpeg?k=beb101b827a729065964523184f4db6cac42900c2415d71d516999af40beb7aa&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 13058
server: nginx
date: Fri, 02 Sep 2022 02:52:37 GMT
etag: "de1d806e2fd138970e3033e8b4bf47ac1e75c113"
expires: Sun, 02 Oct 2022 02:52:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ldaWKegRv4TSO69x1-Sl9UNTInZqSS2BTsh7d3b6Zh_hjd3cwb92vw==
age: 2212337
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450093.jpeg?k=aa5cc7703f3866af8ffd6de346c21161804a26c3d0a508d3999c11c337506ae1&o=
54.230.111.69200 OK 13 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450093.jpeg?k=aa5cc7703f3866af8ffd6de346c21161804a26c3d0a508d3999c11c337506ae1&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 34cd95647e7bfee64c4854f7146348b9
8017d1d7da4d9079bd0608f985a01630543c7d3a
7f72c1e1d27db3f66b0362c6b6066f384302247b1bc315af8054109102860740
GET /xdata/images/xphoto/300x240/45450093.jpeg?k=aa5cc7703f3866af8ffd6de346c21161804a26c3d0a508d3999c11c337506ae1&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 13027
server: nginx
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Mon, 26 Sep 2022 01:12:13 GMT
expires: Tue, 04 Oct 2022 00:56:00 GMT
cache-control: max-age=2592000
etag: "99f53c500f53a728d293370890f9ec0dc68d25b8"
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8scewSwO1zPtgP0SDOvRDt7yjb9YBsz9W9l14Z9Cz-4FES8gfGiWpA==
age: 2046534
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450056.jpeg?k=251e2507d43a24a4c58bb961b8d157147d56efbf91b49f9606bc768c58f581e4&o=
54.230.111.69200 OK 16 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450056.jpeg?k=251e2507d43a24a4c58bb961b8d157147d56efbf91b49f9606bc768c58f581e4&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 5ce55d22c4e06809b72801bf78198fb2
8cc49f26d00a1b2747ba599b06d67fd57d724047
3781416aa7ee06509ed5e7aa5143189ca6e1436f586194544fba3b8cfff6f27a
GET /xdata/images/xphoto/300x240/45450056.jpeg?k=251e2507d43a24a4c58bb961b8d157147d56efbf91b49f9606bc768c58f581e4&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 16003
server: nginx
date: Mon, 19 Sep 2022 04:54:34 GMT
expires: Wed, 19 Oct 2022 04:54:34 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "526a5e1ec8f03145a7e8429c115d39a4273a88fd"
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ysOne5-RC3HboUQU_X82-qsPZ91wE_CxJrkV3Frx8BDcH7151RQRjQ==
age: 736220
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450279.jpeg?k=cb9ab85ffe439f3030e00281f2d52583a398bf076e54f00f746e1d1baf62bf6e&o=
54.230.111.69200 OK 23 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450279.jpeg?k=cb9ab85ffe439f3030e00281f2d52583a398bf076e54f00f746e1d1baf62bf6e&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash d2777025d4a89299a415993ffee584ae
882aadd31ddf11f475cc870f291c0cb00909bb41
a358344c77aa72b8ed5c9aeb8989f3e5d01116badd07b0c8fa7a6a3d7b1afb2e
GET /xdata/images/xphoto/300x240/45450279.jpeg?k=cb9ab85ffe439f3030e00281f2d52583a398bf076e54f00f746e1d1baf62bf6e&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 22931
server: nginx
date: Thu, 22 Sep 2022 06:12:14 GMT
etag: "ff83021d06dde3d0712a57af903ab3a237a3c8df"
expires: Sat, 22 Oct 2022 06:12:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xetd6gK1Ee9ZlmJ9_Qg2uwH1iKqXtM7BfkWRTWeUfjGNS_JCwSi4bg==
age: 472360
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/searchresults_slick_cloudfront_sd/528359eb9f21194adf8c26f81e07c6eb21a2cc89.js
54.230.111.69200 OK 26 kB URL HTTP/2 cf.bstatic.com/static/js/searchresults_slick_cloudfront_sd/528359eb9f21194adf8c26f81e07c6eb21a2cc89.js
IP 54.230.111.69:0
File type ASCII text, with very long lines (36716), with no line terminators
Hash ede7eca313baeda54f7b86da5ff5c83f
acd8c3aea493a556cfb0049140b053630dab79fd
5420be942a92c1820643132861e70465ba458443f04443307de99d9265176bcf
GET /static/js/searchresults_slick_cloudfront_sd/528359eb9f21194adf8c26f81e07c6eb21a2cc89.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Sun, 04 Sep 2022 04:30:56 GMT
last-modified: Tue, 04 Feb 2020 10:19:58 GMT
etag: W/"5e39454e-8f6c"
expires: Tue, 04 Oct 2022 04:30:56 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7kf7ldC67h7iCLcNFhT8wzA7z_zWdHE9_kOsqQuZbpGxH4gh-O-bbQ==
age: 2033637
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450068.jpeg?k=41cc7c5449011323aaaaed4e845cb16200b5d540c77a50c1bea90399a1e92d70&o=
54.230.111.69200 OK 20 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450068.jpeg?k=41cc7c5449011323aaaaed4e845cb16200b5d540c77a50c1bea90399a1e92d70&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 41bf36733e71ce642c45069444cfcf64
c931c599e9519d6c110ceed2c92432b818780d07
5c330c4cabaf246ebde2e47b2153d3e070423478706634c810980d67173f503a
GET /xdata/images/xphoto/300x240/45450068.jpeg?k=41cc7c5449011323aaaaed4e845cb16200b5d540c77a50c1bea90399a1e92d70&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 19539
server: nginx
date: Mon, 12 Sep 2022 18:43:28 GMT
etag: "f19f5c7e4f44abe703a0559cc75caa9f35f807a4"
expires: Wed, 12 Oct 2022 18:43:28 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4uXpM3135rZ8SrHEZ-6qLyy0-bpjxyL2zZL3lcj_6Yk_ZHx6633J0Q==
age: 1291286
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450082.jpeg?k=beb101b827a729065964523184f4db6cac42900c2415d71d516999af40beb7aa&o=
54.230.111.69200 OK 13 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450082.jpeg?k=beb101b827a729065964523184f4db6cac42900c2415d71d516999af40beb7aa&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash cb649ad60fe5750fbc23da44d35206b4
a9c188e226fdd77e73f3fa374b210bf1bb0dfe65
a6f122a9ceb30d1ebc827c40e4e7e40b710da41f9a7ee454d8504128e0ca7aa0
GET /xdata/images/xphoto/300x240/45450082.jpeg?k=beb101b827a729065964523184f4db6cac42900c2415d71d516999af40beb7aa&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 13058
server: nginx
date: Fri, 02 Sep 2022 02:52:37 GMT
etag: "de1d806e2fd138970e3033e8b4bf47ac1e75c113"
expires: Sun, 02 Oct 2022 02:52:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xecE1RyucoxN-FGXcsUBjnzjRWhXj_sVv6jbKZG05jrUQ-vxaj64ww==
age: 2212337
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450093.jpeg?k=aa5cc7703f3866af8ffd6de346c21161804a26c3d0a508d3999c11c337506ae1&o=
54.230.111.69200 OK 13 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450093.jpeg?k=aa5cc7703f3866af8ffd6de346c21161804a26c3d0a508d3999c11c337506ae1&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 34cd95647e7bfee64c4854f7146348b9
8017d1d7da4d9079bd0608f985a01630543c7d3a
7f72c1e1d27db3f66b0362c6b6066f384302247b1bc315af8054109102860740
GET /xdata/images/xphoto/300x240/45450093.jpeg?k=aa5cc7703f3866af8ffd6de346c21161804a26c3d0a508d3999c11c337506ae1&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 13027
server: nginx
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Mon, 26 Sep 2022 01:12:13 GMT
expires: Tue, 04 Oct 2022 00:56:00 GMT
cache-control: max-age=2592000
etag: "99f53c500f53a728d293370890f9ec0dc68d25b8"
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VlP46dF9SatP-K3poAoN-ezM6XSBkV7AMXu4_ZnV6L1LwniWfuODIA==
age: 2046534
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/atlas_cst_cloudfront_sd/fa2106519ed598c0b80a0d36908ae36e9ebed2ed.js
54.230.111.69200 OK 81 kB URL HTTP/2 cf.bstatic.com/static/js/atlas_cst_cloudfront_sd/fa2106519ed598c0b80a0d36908ae36e9ebed2ed.js
IP 54.230.111.69:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 91f2a526e3de9a03a5f13798058e6b50
cb475a70e995dc1caaef56f29be0c40ce845ef51
8cfa2dd778b55e8478f365adb40ae789febd0706d8a586638b91def18c952a8e
GET /static/js/atlas_cst_cloudfront_sd/fa2106519ed598c0b80a0d36908ae36e9ebed2ed.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 12 Sep 2022 15:17:07 GMT
last-modified: Mon, 12 Sep 2022 14:50:33 GMT
etag: W/"631f4739-8b2a0"
expires: Wed, 12 Oct 2022 15:17:07 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vKh2SD-a_LGBvYK9cCN75hawiphqVWYqCveLWI4aH_XYYHvrre1Agw==
age: 1303665
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450279.jpeg?k=cb9ab85ffe439f3030e00281f2d52583a398bf076e54f00f746e1d1baf62bf6e&o=
54.230.111.69200 OK 23 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450279.jpeg?k=cb9ab85ffe439f3030e00281f2d52583a398bf076e54f00f746e1d1baf62bf6e&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash d2777025d4a89299a415993ffee584ae
882aadd31ddf11f475cc870f291c0cb00909bb41
a358344c77aa72b8ed5c9aeb8989f3e5d01116badd07b0c8fa7a6a3d7b1afb2e
GET /xdata/images/xphoto/300x240/45450279.jpeg?k=cb9ab85ffe439f3030e00281f2d52583a398bf076e54f00f746e1d1baf62bf6e&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 22931
server: nginx
date: Thu, 22 Sep 2022 06:12:14 GMT
etag: "ff83021d06dde3d0712a57af903ab3a237a3c8df"
expires: Sat, 22 Oct 2022 06:12:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jdNWI_UXL8DR9pYPAjGCMGXBuKLkSnfrU3wIkDm24A3XD7NDIFn0Ew==
age: 472360
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450064.jpeg?k=4d4ea22dc4828fd55a3889e90531c9841ddb2d9abf460c420cdd24f2a9b658d2&o=
54.230.111.69200 OK 18 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450064.jpeg?k=4d4ea22dc4828fd55a3889e90531c9841ddb2d9abf460c420cdd24f2a9b658d2&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 3d32707cb3ccfc843ca809ff0ff08c28
950e8aa81a2f546217a0ca433700c4df4550bbfd
10d7e42ad31f48815167a292170eaacedd4e7b0ae8546795a63975c2711ce024
GET /xdata/images/xphoto/300x240/45450064.jpeg?k=4d4ea22dc4828fd55a3889e90531c9841ddb2d9abf460c420cdd24f2a9b658d2&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 18103
server: nginx
date: Thu, 08 Sep 2022 02:13:19 GMT
etag: "f45401b74068655fa8b273b8f7f5d8c90bd3891c"
expires: Sat, 08 Oct 2022 02:13:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _LaFwMo1BH9T904J4QKsYsZiKkeHv66ORvz3ykIkYeQdA-loNKn66Q==
age: 1696295
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450068.jpeg?k=41cc7c5449011323aaaaed4e845cb16200b5d540c77a50c1bea90399a1e92d70&o=
54.230.111.69200 OK 20 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450068.jpeg?k=41cc7c5449011323aaaaed4e845cb16200b5d540c77a50c1bea90399a1e92d70&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 41bf36733e71ce642c45069444cfcf64
c931c599e9519d6c110ceed2c92432b818780d07
5c330c4cabaf246ebde2e47b2153d3e070423478706634c810980d67173f503a
GET /xdata/images/xphoto/300x240/45450068.jpeg?k=41cc7c5449011323aaaaed4e845cb16200b5d540c77a50c1bea90399a1e92d70&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 19539
server: nginx
date: Mon, 12 Sep 2022 18:43:28 GMT
etag: "f19f5c7e4f44abe703a0559cc75caa9f35f807a4"
expires: Wed, 12 Oct 2022 18:43:28 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Qd3cHdU2Bjfs3KsKNk7J9NwrxGYunMVO3TbuEHtGZbkVqb5lCbSXDQ==
age: 1291286
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450066.jpeg?k=4adfab312f5d26da9f81da48d8c95ca8f108215b2c84085590891a9e0e17b144&o=
54.230.111.69200 OK 22 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450066.jpeg?k=4adfab312f5d26da9f81da48d8c95ca8f108215b2c84085590891a9e0e17b144&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash a610b882e99f89c94893c05f18687ec3
16e551d6c5ac3a8db914ec8f5fc15bbe9589a1c8
9814b3eb58d8fb061b8ebe7b1a76f31f1d08e556f1c4b3662e3a6752f121ca07
GET /xdata/images/xphoto/300x240/45450066.jpeg?k=4adfab312f5d26da9f81da48d8c95ca8f108215b2c84085590891a9e0e17b144&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 21509
server: nginx
date: Sun, 25 Sep 2022 01:28:10 GMT
etag: "3bea92699f1083d6968c192ef53dc749683f43c6"
expires: Tue, 25 Oct 2022 01:28:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RcSCy3Gy667iKoTsJTBySYAmFcjMF1aj-_dW6qFbNyyM6a4VmiAQWg==
age: 230204
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450283.jpeg?k=44ef0e355cff36883935e4c99b5c01b035eabebad278d22363210b2fe40b2791&o=
54.230.111.69200 OK 16 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450283.jpeg?k=44ef0e355cff36883935e4c99b5c01b035eabebad278d22363210b2fe40b2791&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 6eb82e2bccd8b35e46f250238844ef3c
8f9cc26cce3b866559d1994c75147871b3d3bcea
0a96fd07340aee61dede1f72f25f593c9bed353963d8f289890b38fc2b827ba7
GET /xdata/images/xphoto/300x240/45450283.jpeg?k=44ef0e355cff36883935e4c99b5c01b035eabebad278d22363210b2fe40b2791&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 15976
server: nginx
date: Wed, 14 Sep 2022 04:30:47 GMT
etag: "a4e851951a2d61db8835272422f2380924bb1507"
expires: Fri, 14 Oct 2022 04:30:47 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: k6EACFzFWtdXvOX7LoBgWGWkAKjJra3_wMeFh2N4zs70XCpy7P20WA==
age: 1169647
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450080.jpeg?k=15d9709efa513f2b23b5fa8d5234d87bdee2bf97b3e7552244592da11413db9a&o=
54.230.111.69200 OK 13 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450080.jpeg?k=15d9709efa513f2b23b5fa8d5234d87bdee2bf97b3e7552244592da11413db9a&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 04e82ce3fa3ae9bd52cad3056a100c91
93693b20ed0103332bbb4e9f29852a5eaa187f1a
2e50a6fcd67533e10f476f84bbfafd558dd520f5b53ef1c2256e221bdaac9513
GET /xdata/images/xphoto/300x240/45450080.jpeg?k=15d9709efa513f2b23b5fa8d5234d87bdee2bf97b3e7552244592da11413db9a&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 12640
server: nginx
date: Wed, 31 Aug 2022 00:35:58 GMT
etag: "74803d9bd7c495716a74841200aa7bca950cb5d6"
expires: Fri, 30 Sep 2022 00:35:58 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: m9Is2gzoQ5D4MX-1fCLjtc95m0Jt7ptYlSHzuMjIJ96BQt9O_UEXSg==
age: 2393336
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450075.jpeg?k=d23cf8443780ac09f46f59e40393d75dbe64b06029b4959c60b81b7fdefc9be0&o=
54.230.111.69200 OK 12 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450075.jpeg?k=d23cf8443780ac09f46f59e40393d75dbe64b06029b4959c60b81b7fdefc9be0&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash f9b81d29754609253833fb749eb9c430
76bee0195580b7ed6fbbf132c14e4b04dd1828dc
f3ff755c327cbe08419dbc2fe6ef2452dba8c5e805e9bc1ac08dd55527360b4e
GET /xdata/images/xphoto/300x240/45450075.jpeg?k=d23cf8443780ac09f46f59e40393d75dbe64b06029b4959c60b81b7fdefc9be0&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 12281
server: nginx
date: Thu, 22 Sep 2022 02:06:15 GMT
etag: "958361b987eb3bc97c78ac7ee42a193c8d4f7bc2"
expires: Sat, 22 Oct 2022 02:06:15 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ikOXNaONOOPYPVGNJS0CaX-gkfIZjZk5kT2udrl3l2w7senoeijSdw==
age: 487119
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450103.jpeg?k=a1fa72362160b1df6e288050afa7ce1aade80871acd368ddd4a4ebf6ad87764e&o=
54.230.111.69200 OK 21 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450103.jpeg?k=a1fa72362160b1df6e288050afa7ce1aade80871acd368ddd4a4ebf6ad87764e&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 90383d39034028eafbd253eead13aecf
32035c5bcff0627f4901188d0e7b994aa46e64c8
150590b7a8af048e1a2696985211a78b0fa1800523f338e9fee9b5947cb0e5d7
GET /xdata/images/xphoto/300x240/45450103.jpeg?k=a1fa72362160b1df6e288050afa7ce1aade80871acd368ddd4a4ebf6ad87764e&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 20736
server: nginx
date: Wed, 21 Sep 2022 01:37:15 GMT
etag: "3c2fc8b2bdd469a0ee76213ffc3833402ae05059"
expires: Fri, 21 Oct 2022 01:37:15 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jE_xejMeyp1BUpw5FJPOcPWsOB2pvww3fmevc1uEUFLLCcbkeJ3jlQ==
age: 575259
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450095.jpeg?k=cd5e46e632dab722d22217813485efde31fbe82f5f26a624166edccdbe8187bc&o=
54.230.111.69200 OK 20 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450095.jpeg?k=cd5e46e632dab722d22217813485efde31fbe82f5f26a624166edccdbe8187bc&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash deb177f86bfc7083567ae12e1964f4ad
45c07c5d8cdec20431c81aee3aee189a4d87cd99
1f14eeb3c3ef9eeb1170e99a2fea2fbd034a83305f72be3fdfd7a7711f5fd4ee
GET /xdata/images/xphoto/300x240/45450095.jpeg?k=cd5e46e632dab722d22217813485efde31fbe82f5f26a624166edccdbe8187bc&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 20002
server: nginx
date: Tue, 06 Sep 2022 12:38:50 GMT
etag: "0e52839f50552ce80affe0af05042be3ab988e88"
expires: Thu, 06 Oct 2022 12:38:50 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CPNesl4R4gUtt1ECIW6f3Ns2ya6ViKnIu-iTj-bU_p-Ik2Uwcpni2w==
age: 1831564
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450097.jpeg?k=eac0f917a53dc395bd379fef8c191e7d5e37012b68e60232e4f6bba2a2901b7a&o=
54.230.111.69200 OK 15 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450097.jpeg?k=eac0f917a53dc395bd379fef8c191e7d5e37012b68e60232e4f6bba2a2901b7a&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 13d1467c76d772dd6647f49fe4140d08
7ff7e63be06a3e98495eae5c0a1fb26482025d78
50fa8a1dfe8f3251194c1564def0dda195ce6fc96f05a63a83753b7b6bc9463d
GET /xdata/images/xphoto/300x240/45450097.jpeg?k=eac0f917a53dc395bd379fef8c191e7d5e37012b68e60232e4f6bba2a2901b7a&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 15440
server: nginx
date: Sun, 11 Sep 2022 03:46:09 GMT
etag: "aef330691593fb28d6d4e8d313f3890da6332208"
expires: Tue, 11 Oct 2022 03:46:09 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XzkitnIusNcIl1tuHzJOlLOjnmP3YEmFTFmkwKlzy7M44nXTGl6p0A==
age: 1431525
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/57175023.jpeg?k=dc0319d4d64ded9ee4b0ddb162a2e80db7899300b7bf21b34506888895d74c79&o=
54.230.111.69200 OK 17 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/57175023.jpeg?k=dc0319d4d64ded9ee4b0ddb162a2e80db7899300b7bf21b34506888895d74c79&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash cb830f24406a145f18b29227188fe8d0
6244d25c3af11e7b1106c7652c6dd0818bf47849
3f3e48ee42260b5d5cbe17052df364872d6853d6a77db87b859d52d12411ede3
GET /xdata/images/xphoto/300x240/57175023.jpeg?k=dc0319d4d64ded9ee4b0ddb162a2e80db7899300b7bf21b34506888895d74c79&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 17041
server: nginx
date: Sat, 24 Sep 2022 04:27:12 GMT
etag: "bdf3a71bab130b7e172ceb7817c1e194512ec09e"
expires: Mon, 24 Oct 2022 04:27:12 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jIy7sZgzPTzAI-TyZN6QbvRw-nT32RpMwFfKESIL6mMIVKoGn8cslg==
age: 305862
X-Firefox-Spdy: h2
www.booking.com/c360/v1/track
5.57.17.220200 OK 33 B URL HTTP/1.1 www.booking.com/c360/v1/track
IP 5.57.17.220:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 42fcc80d879dd35c0bbdd04c1414890b
f1dbf58d1b458f9c50995bb8d84da4a67f2d437b
fb87565b58755d257fcf9af5b4b25e0dcfc682adb630dd2a32bbf56b91d2c325
POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
Content-Type: application/json
X-Booking-Platform: undefined
X-Booking-Pageview-Id: 0cab7a710d0a01ac
X-Booking-Session-Id: undefined
X-Booking-ET-Seed: undefined
X-Booking-AID: 1858279
X-Booking-Label: undefined
X-Booking-CSRF: undefined
X-Booking-Language-Code: en-us
Origin: https://www.booking.com
Content-Length: 636
Connection: keep-alive
Cookie: _pxhd=h8XODE%2FlYz-MyDEq9nmi%2FZnTQY1pKwzwc5w2Mx7snnS6LrSsWbu6vNV%2FQluuX%2FdlFk1tG7Vz00xaENF3eyEQ2w%3D%3D%3ASj8%2F9EM43AexDoTVN89bXJv6trA79lOctgg355KomLtDsclVoAULwclZor3bli5b-zNZNi8siQLsgOCn667y0ZRBcbjozagvWa2gmM8QpTk%3D; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLblgO%2Fz4BDP5vRW1wC3cEM5y1MJGZU%2FNyKM0fks8sBMZbGp0QcDRwQ4LDmPt%2BgU3MB40gu%2F1esDg6w04nBk%2F5iIgneJDca2T8WfyfY90AsG52GjE6g7BvRrCH8HC6wLcpDG8YW6d4OznkkIf8e%2BMRJ3obmsZsRupy5zDrD7jGoEkA%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Sep+27+2022+17%3A24%3A51+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=3e1f62ba-39e7-4566-8d4a-87fb8faae768&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1664299491427; bkng_frontend_sese_exp=0; bkng_sso_ses=e30; bkng_sso_session=e30; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
server: nginx
date: Tue, 27 Sep 2022 17:24:54 GMT
content-type: application/json; charset=UTF-8
content-length: 33
vary: User-Agent, Accept-Encoding
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLblgO%2Fz4BDP5vRW1wC3cEM5y1MJGZU%2FNyKkxRE7R%2BVYe2m0Kv4ZOBZmz1piKBWYc5NFwa4gdxRZyMNhf2j67%2FwRULMeSBTc4pqaa%2Fg6RPDNjMAycLl%2BVTWJKTLKc0DGCboG7vYviNdb2tcJ6vUeqd4QNnyJ6llduF6kmAeUT3tERc%3D; domain=.booking.com; path=/; expires=Sun, 26-Sep-2027 17:24:54 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
www.booking.com/c360/v1/track
5.57.17.220200 OK 33 B URL HTTP/1.1 www.booking.com/c360/v1/track
IP 5.57.17.220:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2ef0949d72ccdcc083647d001c8ba940
ebe4e2284d3892b010623597d0945b6b5cd64448
fe1a912baa83e36855bb934de3f2cfdffe77b1224a552533a4a7f2e984a51e52
POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
Content-Type: application/json
X-Booking-Platform: undefined
X-Booking-Pageview-Id: 0cab7a710d0a01ac
X-Booking-Session-Id: undefined
X-Booking-ET-Seed: undefined
X-Booking-AID: 1858279
X-Booking-Label: undefined
X-Booking-CSRF: undefined
X-Booking-Language-Code: en-us
Origin: https://www.booking.com
Content-Length: 636
Connection: keep-alive
Cookie: _pxhd=h8XODE%2FlYz-MyDEq9nmi%2FZnTQY1pKwzwc5w2Mx7snnS6LrSsWbu6vNV%2FQluuX%2FdlFk1tG7Vz00xaENF3eyEQ2w%3D%3D%3ASj8%2F9EM43AexDoTVN89bXJv6trA79lOctgg355KomLtDsclVoAULwclZor3bli5b-zNZNi8siQLsgOCn667y0ZRBcbjozagvWa2gmM8QpTk%3D; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLblgO%2Fz4BDP5vRW1wC3cEM5y1MJGZU%2FNyKM0fks8sBMZbGp0QcDRwQ4LDmPt%2BgU3MB40gu%2F1esDg6w04nBk%2F5iIgneJDca2T8WfyfY90AsG52GjE6g7BvRrCH8HC6wLcpDG8YW6d4OznkkIf8e%2BMRJ3obmsZsRupy5zDrD7jGoEkA%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Sep+27+2022+17%3A24%3A51+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=3e1f62ba-39e7-4566-8d4a-87fb8faae768&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1664299491427; bkng_frontend_sese_exp=0; bkng_sso_ses=e30; bkng_sso_session=e30; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
server: nginx
date: Tue, 27 Sep 2022 17:24:54 GMT
content-type: application/json; charset=UTF-8
content-length: 33
vary: Accept-Encoding, User-Agent
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbbmD9q%2B5pe3ULjCjRhzaVXcVdKKrMIINhNi4qTr1w043ks4uKsrk9eXg3GXoLan14pAjFF6SyxjibuV3FrEkOVyksTtvSW7XF%2FDM3Sf6SUfx6sVlx7Ys%2FKeRK7LPbX73Nk7QnW2074fZ0tRCrKDDxKjet3xUPSTBmRwrTQMNOyjo%3D; domain=.booking.com; path=/; expires=Sun, 26-Sep-2027 17:24:54 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
www.booking.com/c360/v1/track
5.57.17.220200 OK 33 B URL HTTP/1.1 www.booking.com/c360/v1/track
IP 5.57.17.220:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 42fcc80d879dd35c0bbdd04c1414890b
f1dbf58d1b458f9c50995bb8d84da4a67f2d437b
fb87565b58755d257fcf9af5b4b25e0dcfc682adb630dd2a32bbf56b91d2c325
POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
Content-Type: application/json
X-Booking-Platform: undefined
X-Booking-Pageview-Id: 0cab7a710d0a01ac
X-Booking-Session-Id: undefined
X-Booking-ET-Seed: undefined
X-Booking-AID: 1858279
X-Booking-Label: undefined
X-Booking-CSRF: undefined
X-Booking-Language-Code: en-us
Origin: https://www.booking.com
Content-Length: 636
Connection: keep-alive
Cookie: _pxhd=h8XODE%2FlYz-MyDEq9nmi%2FZnTQY1pKwzwc5w2Mx7snnS6LrSsWbu6vNV%2FQluuX%2FdlFk1tG7Vz00xaENF3eyEQ2w%3D%3D%3ASj8%2F9EM43AexDoTVN89bXJv6trA79lOctgg355KomLtDsclVoAULwclZor3bli5b-zNZNi8siQLsgOCn667y0ZRBcbjozagvWa2gmM8QpTk%3D; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLblgO%2Fz4BDP5vRW1wC3cEM5y1MJGZU%2FNyKM0fks8sBMZbGp0QcDRwQ4LDmPt%2BgU3MB40gu%2F1esDg6w04nBk%2F5iIgneJDca2T8WfyfY90AsG52GjE6g7BvRrCH8HC6wLcpDG8YW6d4OznkkIf8e%2BMRJ3obmsZsRupy5zDrD7jGoEkA%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Sep+27+2022+17%3A24%3A51+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=3e1f62ba-39e7-4566-8d4a-87fb8faae768&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1664299491427; bkng_frontend_sese_exp=0; bkng_sso_ses=e30; bkng_sso_session=e30; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
server: nginx
date: Tue, 27 Sep 2022 17:24:54 GMT
content-type: application/json; charset=UTF-8
content-length: 33
vary: Accept-Encoding, User-Agent
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbbmD9q%2B5pe3WIkHcy0cldEvj7CMB7kmUwcPx17aweOe5y2nUk9cSesUFXvXsZR4ZTiWkjVViQn4W%2FQ1VUeSEbXwQS%2F6NvSdWjyRSH4NUpj0h2W%2F0vSqDhW1xbTIVf24iJnAsJFnVxy%2B9inOAC64LDw2HHqGCXlWFkeyAvPHXuoQ4%3D; domain=.booking.com; path=/; expires=Sun, 26-Sep-2027 17:24:54 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
cf.bstatic.com/static/js/async_index_postcards_c360_cloudfront_sd/2f24f2e1b80d43ef2ebc74a5f9807e5a9aff16e6.js
54.230.111.69200 OK 711 B URL HTTP/2 cf.bstatic.com/static/js/async_index_postcards_c360_cloudfront_sd/2f24f2e1b80d43ef2ebc74a5f9807e5a9aff16e6.js
IP 54.230.111.69:0
File type ASCII text, with very long lines (1823), with no line terminators
Hash c6f680d1b6420e145c9fa9d3a6fcc955
c6995d5e302b0aea91244323b51a734d04662b0d
6d8b073813e448e46e767501300cee47c59329a099720519b4845b5d129ca863
GET /static/js/async_index_postcards_c360_cloudfront_sd/2f24f2e1b80d43ef2ebc74a5f9807e5a9aff16e6.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 08 Sep 2022 08:00:25 GMT
last-modified: Thu, 27 Jan 2022 15:00:28 GMT
etag: W/"61f2b38c-71f"
expires: Sat, 08 Oct 2022 08:00:25 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: sHzKOP9WxaTC5ndkOBBZYGDC2qZtSfJdPa7lwYXy6BYR_5J3_ujDuw==
age: 1675468
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash beca10924ed164065590e1a0e21b3239
f23abed0cdf9432e57ff254d0387fab383113224
3e9fa1f57aa876f400e6bbae847ef2aa01262fee23bce94dcbdb8dba8cc8d156
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 17:24:54 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 26 Sep 2022 05:38:15 GMT
Expires: Mon, 03 Oct 2022 05:38:14 GMT
Etag: "f23abed0cdf9432e57ff254d0387fab383113224"
Cache-Control: max-age=475399,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7515ef7f1d13b515-OSL
collector-pxikkul2rm.px-cloud.net/api/v2/collector
35.190.10.96200 OK 524 B URL HTTP/2 collector-pxikkul2rm.px-cloud.net/api/v2/collector
IP 35.190.10.96:0
File type JSON data\012- , ASCII text, with very long lines (523)
Hash 3d47f3dab3b6e1017de538894327b506
f56b84605913d1e74cc87e972a1251800b11cc6e
7dda32504743a76b8c28dcf01418282b585c7dc8dcecde045f18de448421b9e4
POST /api/v2/collector HTTP/1.1
Host: collector-pxikkul2rm.px-cloud.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 733
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 17:24:53 GMT
content-type: application/json; charset=utf-8
content-length: 524
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.booking.com
timing-allow-origin: *
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 173fcd5342ac62d5ae47a58bd4efec45
43e7bee3ae2630f431eb71277b0cda738068e2b6
e61014e02aa1c046c3a0f552e0fd2aade3d31714a63cfcd8d08eda3fb40c59cc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 17:24:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
accounts.google.com/gsi/client
216.58.207.237200 OK 76 kB URL HTTP/2 accounts.google.com/gsi/client
IP 216.58.207.237:0
Hash 8aa485e63c0a025fc29732071e9de762
05bb004ef929dbe71f2198366127ac758e473553
213bcf0508151f080c3768970dc320b7e0eeaf5129539b66318919ac2e361b8a
GET /gsi/client HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
expires: Tue, 27 Sep 2022 17:24:54 GMT
date: Tue, 27 Sep 2022 17:24:54 GMT
cache-control: private, max-age=1800
content-security-policy: require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, script-src 'nonce-vCilXzpJOCg29dH5wmlllg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
cross-origin-resource-policy: cross-origin
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cf.bstatic.com/libs/perimeterx/px.v7.6.9.min.js
54.230.111.69200 OK 100 kB URL HTTP/2 cf.bstatic.com/libs/perimeterx/px.v7.6.9.min.js
IP 54.230.111.69:0
File type ASCII text, with very long lines (45815)
Hash 7be7bd281569d14c84e704a64fb9e887
6e5ade01d9d7dd7377e38c92abb0ee0b550e4297
2d662c63cdeb8e0c6003d5c7d2de4ae1640c7c9db9d78ad8506cb78521a52675
GET /libs/perimeterx/px.v7.6.9.min.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 29 Aug 2022 03:37:20 GMT
last-modified: Wed, 24 Aug 2022 04:45:58 GMT
etag: W/"6305ad06-39901"
expires: Wed, 28 Sep 2022 03:37:20 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tTYOHHWUhw76yox7dThm1N0JUj10SW8Kvgespj0voLOgoKXfHlFwQw==
age: 2555254
X-Firefox-Spdy: h2
account.booking.com/oauth2/authorize/v2?client_id=vO1Kblk7xX9tUn2cpZLS&redirect_uri=https%3A%2F%2Fsecure.booking.com%2Flogin.html%3Fop%3Doauth_return&response_type=anon_session&prompt=none&iframe=1&dt=1664299492657&state=UqwCQ9-oqGu_J3cKMAmZ8eD6fQt8B15Z_lwKPF0wFyqAJo5l4mYO39T9EQDFM3hy4naT4Rl6NPy_9OX-kiafkHLgwWQ8anVagI_sphuno6et2F1P7x13LjU2LhN9fR_2vgNOVj1FAF3MwA3dTPkkVkTHjXnMwILqA1UqJat33MS0IPwA9aDtTlLRL5Ayq9JRuSQmtnIRHVPgksXQCWeKGbt82p2fyOUrgL8XVAmlXNr3BxmfvL9pSuivB-LLVOwpO5-S21qrftXyBBbdgRtPVZyPkx1Gaip7joOpxrE9XNmRE4qQSggv3h8Eh5ApVoX0eNDwmVRaMWtl8M8i4y4H4JxYFY-9-Xx0qdXXzrhN8LWbWfGwf7NupVss4lhivDYih9T8oZ4S5MKI12JY79A_&bkng_referrer=https%3A%2F%2Fwww.booking.com%2Findex.html&bkng_action=index
54.230.111.51302 Found 573 B URL HTTP/2 account.booking.com/oauth2/authorize/v2?client_id=vO1Kblk7xX9tUn2cpZLS&redirect_uri=https%3A%2F%2Fsecure.booking.com%2Flogin.html%3Fop%3Doauth_return&response_type=anon_session&prompt=none&iframe=1&dt=1664299492657&state=UqwCQ9-oqGu_J3cKMAmZ8eD6fQt8B15Z_lwKPF0wFyqAJo5l4mYO39T9EQDFM3hy4naT4Rl6NPy_9OX-kiafkHLgwWQ8anVagI_sphuno6et2F1P7x13LjU2LhN9fR_2vgNOVj1FAF3MwA3dTPkkVkTHjXnMwILqA1UqJat33MS0IPwA9aDtTlLRL5Ayq9JRuSQmtnIRHVPgksXQCWeKGbt82p2fyOUrgL8XVAmlXNr3BxmfvL9pSuivB-LLVOwpO5-S21qrftXyBBbdgRtPVZyPkx1Gaip7joOpxrE9XNmRE4qQSggv3h8Eh5ApVoX0eNDwmVRaMWtl8M8i4y4H4JxYFY-9-Xx0qdXXzrhN8LWbWfGwf7NupVss4lhivDYih9T8oZ4S5MKI12JY79A_&bkng_referrer=https%3A%2F%2Fwww.booking.com%2Findex.html&bkng_action=index
IP 54.230.111.51:0
File type JSON data\012- , ASCII text, with very long lines (572)
Hash 8f73bd315b066a523cbfa075ff11407e
7b8a96837c70ea2cfaaa90afeed08606b8708004
93174be4de7d81e0f9440b60517ef9002e3fd6b7f271cc2bc0a6c2558378f5da
GET /oauth2/authorize/v2?client_id=vO1Kblk7xX9tUn2cpZLS&redirect_uri=https%3A%2F%2Fsecure.booking.com%2Flogin.html%3Fop%3Doauth_return&response_type=anon_session&prompt=none&iframe=1&dt=1664299492657&state=UqwCQ9-oqGu_J3cKMAmZ8eD6fQt8B15Z_lwKPF0wFyqAJo5l4mYO39T9EQDFM3hy4naT4Rl6NPy_9OX-kiafkHLgwWQ8anVagI_sphuno6et2F1P7x13LjU2LhN9fR_2vgNOVj1FAF3MwA3dTPkkVkTHjXnMwILqA1UqJat33MS0IPwA9aDtTlLRL5Ayq9JRuSQmtnIRHVPgksXQCWeKGbt82p2fyOUrgL8XVAmlXNr3BxmfvL9pSuivB-LLVOwpO5-S21qrftXyBBbdgRtPVZyPkx1Gaip7joOpxrE9XNmRE4qQSggv3h8Eh5ApVoX0eNDwmVRaMWtl8M8i4y4H4JxYFY-9-Xx0qdXXzrhN8LWbWfGwf7NupVss4lhivDYih9T8oZ4S5MKI12JY79A_&bkng_referrer=https%3A%2F%2Fwww.booking.com%2Findex.html&bkng_action=index HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Connection: keep-alive
Cookie: _pxhd=h8XODE%2FlYz-MyDEq9nmi%2FZnTQY1pKwzwc5w2Mx7snnS6LrSsWbu6vNV%2FQluuX%2FdlFk1tG7Vz00xaENF3eyEQ2w%3D%3D%3ASj8%2F9EM43AexDoTVN89bXJv6trA79lOctgg355KomLtDsclVoAULwclZor3bli5b-zNZNi8siQLsgOCn667y0ZRBcbjozagvWa2gmM8QpTk%3D; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbXpFeYC4TUhDMSfLvcMG2VMkSaSgjQC16e54IhUrEYmQVxS5TdHcXIz2487ADKPQyuYjEx%2BkxTEbdGEUbifmpmLgyNW3Y8JSd438%2FaL3i%2BCCdUzw6rcJKJjWU%2BFgI1Xyp5SOwhZLZRswfAvN4I8TjJEtDQb%2FXKsNN; cors_js=1; bkng_frontend_sese_exp=0; bkng_sso_ses=e30; bkng_sso_session=e30; bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJkYXRhX3N1YmplY3RfaWQiOiI0M2JhOGY0NS0yMjRjLTRjZjEtOTVjZi05MTk0OGY2NWY5ODUiLCJzZXNzaW9ucyI6W119fQ; BJS=-; _px_f394gi7Fvmc43dfg_user_id=NGJiMzgwMTEtM2U4OS0xMWVkLWE4NTMtOTE4MTAyNDEyMjUx; pxcts=4d191bef-3e89-11ed-a057-744675666856; _pxvid=4b36c4f4-3e89-11ed-8615-63574d634878; _pxde=4e15309e36a3c87101488338e766c92f5651f77ff24d00ddaf1b6841eb0ae9e7:eyJ0aW1lc3RhbXAiOjE2NjQyOTk0OTQzNDksImZfa2IiOjAsImlwY19pZCI6W119
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 302 Found
location: https://secure.booking.com/login.html?lang=en-us&op=oauth_return&state=UqwCQ9-oqGu_J3cKMAmZ8eD6fQt8B15Z_lwKPF0wFyqAJo5l4mYO39T9EQDFM3hy4naT4Rl6NPy_9OX-kiafkHLgwWQ8anVagI_sphuno6et2F1P7x13LjU2LhN9fR_2vgNOVj1FAF3MwA3dTPkkVkTHjXnMwILqA1UqJat33MS0IPwA9aDtTlLRL5Ayq9JRuSQmtnIRHVPgksXQCWeKGbt82p2fyOUrgL8XVAmlXNr3BxmfvL9pSuivB-LLVOwpO5-S21qrftXyBBbdgRtPVZyPkx1Gaip7joOpxrE9XNmRE4qQSggv3h8Eh5ApVoX0eNDwmVRaMWtl8M8i4y4H4JxYFY-9-Xx0qdXXzrhN8LWbWfGwf7NupVss4lhivDYih9T8oZ4S5MKI12JY79A_&aid=304142&code=8IotS5N4Eb157CnhfNEiYoVZkdmlbtPUPRSKG09ojp75wzIviXG5QkLTuAnf95hwX7XeClEeCGUewxTifys4TtK8j9s9HmbeckEH61ZBtFxRzC6nRoXjuNd7NcoWLgDm7vK22Mm3JKI02jfwLeXVEoCVsOVRuMW1Ze8uIYMmxLZznt9gD
server: nginx
date: Tue, 27 Sep 2022 17:24:54 GMT
set-cookie: bkng_sso_session=e30; domain=.booking.com; path=/; expires=Sun, 26-Sep-2027 17:24:54 GMT; secure; HttpOnly
bkng_expired_hint=; domain=.booking.com; path=/; expires=Mon, 26-Sep-2022 17:24:54 GMT; secure; HttpOnly
bkng_sso_ses=eyJib29raW5nX2dsb2JhbCI6W3siYSI6MSwiaCI6ImpIZ1dGZzBKSFFSZkU2Nyt3SEVZZ1lzL3g0eVR2M3RyRTRLZW9RdUMxdGMifV19; domain=.booking.com; path=/; expires=Sun, 26-Sep-2027 17:24:54 GMT; secure; HttpOnly
bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJzZXNzaW9ucyI6W3sic2Vzc2lvbl9yZWZlcmVuY2UiOiI2MThjODE5Mi1iMjk1LTQxZGUtODhiNi02OTBmOGRkNjZjY2QiLCJyZWZyZXNoX3Rva2VuIjoiQ0FFU2QxSjFpcFNJTWQwZE8xd1ZacFFfM1hjczFicHdCZGtCVklSQ2p5U1BFUmN3SXF4aDRmVi14WHpFUzZMcV94cUN5YkYydGx3U1AxSWpVNEtRV0Ryb1JUVE9fckF2cFJrai1QVzFOUVdObGtMUElmZ0d4ZW16N0REQ0s2ZnNZdVNPaUhja3k5ejIwRFdaUUpSZm1reE04a25XQmZlVHMyZnIifV0sImRhdGFfc3ViamVjdF9pZCI6IjQzYmE4ZjQ1LTIyNGMtNGNmMS05NWNmLTkxOTQ4ZjY1Zjk4NSJ9fQ; domain=account.booking.com; path=/; expires=Sun, 26-Sep-2027 17:24:54 GMT; secure; HttpOnly
content-security-policy: report-uri https://nellie.booking.com/csp-report-uri?type=block&tag=42&pid=0b697a7397d90361&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdVGoUAc7XLxp8Xc7XQuWfM7nSTkT3Y1TELxA3w-qXihaSBP_o-RCyiBNhPkI-YW4ZC40B8bw2oyCfwwPxCNTz9s3PHuLc8vgwg; frame-ancestors https://*.booking.com 'self';
content-security-policy-report-only: report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=41&pid=0b697a7397d90361&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdVGoUAc7XLxp8Xc7XQuWfM7nSTkT3Y1TELxA3w-qXihaSBP_o-RCyiBNhPkI-YW4ZC40B8bw2oyCfwwPxCNTz9s3PHuLc8vgwg; script-src saa.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google.com www.google-analytics.com cdn.cookielaw.org geolocation.onetrust.com 'self' 'nonce-RI2JDknIU4okBhB' 'report-sample'; connect-src saa.booking.com secure.booking.com reports.booking.com privacyportal-eu.onetrust.com geolocation.onetrust.com cdn.cookielaw.org www.google-analytics.com *.perimeterx.net *.pxchk.net *.px-cdn.net *.px-client.net *.px-cloud.net 'self' 'report-sample'; base-uri 'none'; style-src *.bstatic.com bstatic.com *.static.booking.cn 'self' 'unsafe-inline'; object-src 'none'; img-src 'self' data: www.booking.com graph.facebook.com cdn.cookielaw.org account.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google-analytics.com www.google.com stats.g.doubleclick.net *.px-cloud.net *.perimeterx.net www.gstatic.com; default-src *.bstatic.com bstatic.com 'self'; frame-src https://www.youtube.com/embed/Vv4w5SmRkss *.bstatic.com https://www.google.com bstatic.com www.booking.com secure.booking.com paymentcomponent.booking.com 'self';
strict-transport-security: max-age=17280000
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TcoeqPPpEfrJBY3m6NvfwynPaUPBoIBp3G6nOBe4daw36vCPJmm1Xg==
X-Firefox-Spdy: h2
account.booking.com/static/booking-sso.v1.js
54.230.111.51200 OK 1.9 kB URL HTTP/2 account.booking.com/static/booking-sso.v1.js
IP 54.230.111.51:0
File type ASCII text, with very long lines (3593)
Hash d51e4d95a33be0f5b3483613f99461de
d2ca97b0fc5197a0b2dcf7d2a1901d6d42e272c1
879c18544328ef3c5af708beeae44bfc0e98890780469eb62cde23265b3e20e4
GET /static/booking-sso.v1.js HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Connection: keep-alive
Cookie: _pxhd=h8XODE%2FlYz-MyDEq9nmi%2FZnTQY1pKwzwc5w2Mx7snnS6LrSsWbu6vNV%2FQluuX%2FdlFk1tG7Vz00xaENF3eyEQ2w%3D%3D%3ASj8%2F9EM43AexDoTVN89bXJv6trA79lOctgg355KomLtDsclVoAULwclZor3bli5b-zNZNi8siQLsgOCn667y0ZRBcbjozagvWa2gmM8QpTk%3D; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbXpFeYC4TUhDMSfLvcMG2VMkSaSgjQC16e54IhUrEYmQVxS5TdHcXIz2487ADKPQyuYjEx%2BkxTEbdGEUbifmpmLgyNW3Y8JSd438%2FaL3i%2BCCdUzw6rcJKJjWU%2BFgI1Xyp5SOwhZLZRswfAvN4I8TjJEtDQb%2FXKsNN; cors_js=1; bkng_frontend_sese_exp=0; bkng_sso_ses=e30; bkng_sso_session=e30; bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJkYXRhX3N1YmplY3RfaWQiOiI0M2JhOGY0NS0yMjRjLTRjZjEtOTVjZi05MTk0OGY2NWY5ODUiLCJzZXNzaW9ucyI6W119fQ; BJS=-; _px_f394gi7Fvmc43dfg_user_id=NGJiMzgwMTEtM2U4OS0xMWVkLWE4NTMtOTE4MTAyNDEyMjUx; pxcts=4d191bef-3e89-11ed-a057-744675666856; _pxvid=4b36c4f4-3e89-11ed-8615-63574d634878; _pxde=4e15309e36a3c87101488338e766c92f5651f77ff24d00ddaf1b6841eb0ae9e7:eyJ0aW1lc3RhbXAiOjE2NjQyOTk0OTQzNDksImZfa2IiOjAsImlwY19pZCI6W119
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Tue, 27 Sep 2022 17:24:54 GMT
last-modified: Fri, 23 Sep 2022 23:25:31 GMT
vary: Accept-Encoding
etag: W/"632e406b-de7"
strict-transport-security: max-age=17280000
content-encoding: gzip
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wE8T0mfyqX96tLPW5JOOCvWP6Am1LwsHABhhYlfHQdyZ4gpHwl-AdA==
X-Firefox-Spdy: h2
www.booking.com/general.en-us.html?tmpl=profile%2Flogin_callback_anon_session&iframe=1&aid=1858279&sid=0fef4b6ec178f4037ad92b5d29bfdca4
5.57.17.220200 OK 208 B URL HTTP/1.1 www.booking.com/general.en-us.html?tmpl=profile%2Flogin_callback_anon_session&iframe=1&aid=1858279&sid=0fef4b6ec178f4037ad92b5d29bfdca4
IP 5.57.17.220:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 591138446fae5a16793598009fe72bb5
95a3a6b1dae015cfba7f7716fd1193611c2a238b
710ac4d49a11bd941891d1bb0512e800afdcd574837edba83c8753c58bb56798
GET /general.en-us.html?tmpl=profile%2Flogin_callback_anon_session&iframe=1&aid=1858279&sid=0fef4b6ec178f4037ad92b5d29bfdca4 HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Connection: keep-alive
Cookie: _pxhd=h8XODE%2FlYz-MyDEq9nmi%2FZnTQY1pKwzwc5w2Mx7snnS6LrSsWbu6vNV%2FQluuX%2FdlFk1tG7Vz00xaENF3eyEQ2w%3D%3D%3ASj8%2F9EM43AexDoTVN89bXJv6trA79lOctgg355KomLtDsclVoAULwclZor3bli5b-zNZNi8siQLsgOCn667y0ZRBcbjozagvWa2gmM8QpTk%3D; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPedL8CCmBhqzZW%2BwrYFfarKdozQM%2Bm9XNjAAsLTXN6dND%2BjuM%2FYsqtjraA6bPpXc%2BdhbRpBgJLAuLURwDFAqzrANZ2X2M6eR55zP4RTeQTfm7DEMB%2FH7VY91Sp7UESEmmfw%2BQGoKuDO%2F2sq0ITES4DJ71X%2FaXTlBZAo%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Sep+27+2022+17%3A24%3A51+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=3e1f62ba-39e7-4566-8d4a-87fb8faae768&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1664299491427; bkng_frontend_sese_exp=0; bkng_sso_ses=eyJib29raW5nX2dsb2JhbCI6W3siYSI6MSwiaCI6ImpIZ1dGZzBKSFFSZkU2Nyt3SEVZZ1lzL3g0eVR2M3RyRTRLZW9RdUMxdGMifV19; bkng_sso_session=e30; BJS=-; _px_f394gi7Fvmc43dfg_user_id=NGJiMzgwMTEtM2U4OS0xMWVkLWE4NTMtOTE4MTAyNDEyMjUx; pxcts=4d191bef-3e89-11ed-a057-744675666856; _pxvid=4b36c4f4-3e89-11ed-8615-63574d634878; _pxff_ddtc=1; _pxde=a46e7867f5434eaa26dc48b287876d326817e38c5c8a4aee2715267274cc9c8a:eyJ0aW1lc3RhbXAiOjE2NjQyOTk0OTUxNDUsImZfa2IiOjAsImlwY19pZCI6W119; _px3=43171a5d2ded3a7e5ac4541c9318400edb29068f1f6e8dadd921d740ae2d833f:VhbWp/kskLd2UVEq3z2Ht3PtnhCjYBX8ijxk4fU5PZsirUWkXXc/BOe3n60tcg7urJCbivcv9uPauQDzpvwxNA==:1000:nSxKvmh0FZzbHiA7hSoV+4Tsxl0/6BY1gEDHfxe6NcQCE2v1TlzHkguM/X+mjXAlj7yK7/Out4mfA5P9nR1H/INtvKzeH/eqP7hIdvkKh3yhodhGm0/f/L93V9eKTr+H5YPaczBidSjSXzZdJmygRKUNsOWrKcmD7r6UfrRPkuOWNMENxMyLdnwBlvr7YUf2h52pkoCFe7nbnMBBf0R0vQ==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
server: nginx
date: Tue, 27 Sep 2022 17:24:55 GMT
content-type: text/html; charset=UTF-8
content-length: 208
cache-control: private
vary: Accept-Encoding, User-Agent
content-encoding: br
nel: {"max_age":604800,"report_to":"default"}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"group":"default","max_age":604800}
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnscUrLfSdVQI07f%2F63dKzp9rS9eh66HN%2BkdBwsk%2Fns7mI9zn7N4Z21%2B2b6gG6toWptVBSBIYuMNt5lk%2B6PjAuqt2A96Lo%2FvWrENZEJ%2FsaHe0LqhWN%2BEaHMJe%2B6TnzpAobEogZutVFKE6xnqfRJlSzYM%3D; domain=.booking.com; path=/; expires=Sun, 26-Sep-2027 17:24:55 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
account.booking.com/collector/anon_session_init
54.230.111.51204 No Content 0 B URL HTTP/2 account.booking.com/collector/anon_session_init
IP 54.230.111.51:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /collector/anon_session_init HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.booking.com/
Origin: https://www.booking.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Tue, 27 Sep 2022 17:24:55 GMT
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: POST
access-control-allow-origin: https://www.booking.com
access-control-max-age: 1728000
set-cookie: bkng_sso_session=e30; domain=.booking.com; path=/; expires=Sun, 26-Sep-2027 17:24:55 GMT; secure; HttpOnly
bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJkYXRhX3N1YmplY3RfaWQiOiJjMmYyY2U2MC1jMTU2LTRlMjAtYjZmNC0yOTEzMWZhZmQwNTMiLCJzZXNzaW9ucyI6W119fQ; domain=account.booking.com; path=/; expires=Sun, 26-Sep-2027 17:24:55 GMT; secure; HttpOnly
bkng_sso_ses=e30; domain=.booking.com; path=/; expires=Sun, 26-Sep-2027 17:24:55 GMT; secure; HttpOnly
content-security-policy: frame-ancestors https://*.booking.com 'self'; report-uri https://nellie.booking.com/csp-report-uri?type=block&tag=42&pid=90ce7a734c4a011c&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdfdvBlyk9NlKcLEfSqFdAHuJUmoS1jnI5l8Ckpav_Buh2I8NJLAkmT_v2XtH3z--EgVIurJw_ypT8ip4Q5U67AH53P7tUchwqPIZ_Yk-bhKj;
content-security-policy-report-only: base-uri 'none'; frame-src https://www.youtube.com/embed/Vv4w5SmRkss *.bstatic.com https://www.google.com bstatic.com www.booking.com secure.booking.com paymentcomponent.booking.com 'self'; script-src saa.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google.com www.google-analytics.com cdn.cookielaw.org geolocation.onetrust.com 'self' 'nonce-47GFDxmSHeKFarb' 'report-sample'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=41&pid=90ce7a734c4a011c&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdfdvBlyk9NlKcLEfSqFdAHuJUmoS1jnI5l8Ckpav_Buh2I8NJLAkmT_v2XtH3z--EgVIurJw_ypT8ip4Q5U67AH53P7tUchwqPIZ_Yk-bhKj; default-src *.bstatic.com bstatic.com 'self'; object-src 'none'; img-src 'self' data: www.booking.com graph.facebook.com cdn.cookielaw.org account.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google-analytics.com www.google.com stats.g.doubleclick.net *.px-cloud.net *.perimeterx.net www.gstatic.com; connect-src saa.booking.com secure.booking.com reports.booking.com privacyportal-eu.onetrust.com geolocation.onetrust.com cdn.cookielaw.org www.google-analytics.com *.perimeterx.net *.pxchk.net *.px-cdn.net *.px-client.net *.px-cloud.net 'self' 'report-sample'; style-src *.bstatic.com bstatic.com *.static.booking.cn 'self' 'unsafe-inline';
strict-transport-security: max-age=17280000
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3CYnN0kPJATEOZ9d75adNq1xyl9xcAGLMjKNG6SrZOyxDLwNFhU60A==
X-Firefox-Spdy: h2
account.booking.com/collector/anon_session_init
54.230.111.51204 No Content 0 B URL HTTP/2 account.booking.com/collector/anon_session_init
IP 54.230.111.51:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collector/anon_session_init HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-Type: application/json
Content-Length: 144
Origin: https://www.booking.com
Connection: keep-alive
Cookie: _pxhd=h8XODE%2FlYz-MyDEq9nmi%2FZnTQY1pKwzwc5w2Mx7snnS6LrSsWbu6vNV%2FQluuX%2FdlFk1tG7Vz00xaENF3eyEQ2w%3D%3D%3ASj8%2F9EM43AexDoTVN89bXJv6trA79lOctgg355KomLtDsclVoAULwclZor3bli5b-zNZNi8siQLsgOCn667y0ZRBcbjozagvWa2gmM8QpTk%3D; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnscUrLfSdVQI07f%2F63dKzp9rS9eh66HN%2BkdBwsk%2Fns7mI9zn7N4Z21%2B2b6gG6toWptVBSBIYuMNt5lk%2B6PjAuqt2A96Lo%2FvWrENZEJ%2FsaHe0LqhWN%2BEaHMJe%2B6TnzpAobEogZutVFKE6xnqfRJlSzYM%3D; cors_js=1; bkng_frontend_sese_exp=0; bkng_sso_ses=eyJib29raW5nX2dsb2JhbCI6W3siYSI6MSwiaCI6ImpIZ1dGZzBKSFFSZkU2Nyt3SEVZZ1lzL3g0eVR2M3RyRTRLZW9RdUMxdGMifV19; bkng_sso_session=e30; bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJzZXNzaW9ucyI6W3sic2Vzc2lvbl9yZWZlcmVuY2UiOiI2MThjODE5Mi1iMjk1LTQxZGUtODhiNi02OTBmOGRkNjZjY2QiLCJyZWZyZXNoX3Rva2VuIjoiQ0FFU2QxSjFpcFNJTWQwZE8xd1ZacFFfM1hjczFicHdCZGtCVklSQ2p5U1BFUmN3SXF4aDRmVi14WHpFUzZMcV94cUN5YkYydGx3U1AxSWpVNEtRV0Ryb1JUVE9fckF2cFJrai1QVzFOUVdObGtMUElmZ0d4ZW16N0REQ0s2ZnNZdVNPaUhja3k5ejIwRFdaUUpSZm1reE04a25XQmZlVHMyZnIifV0sImRhdGFfc3ViamVjdF9pZCI6IjQzYmE4ZjQ1LTIyNGMtNGNmMS05NWNmLTkxOTQ4ZjY1Zjk4NSJ9fQ; BJS=-; _px_f394gi7Fvmc43dfg_user_id=NGJiMzgwMTEtM2U4OS0xMWVkLWE4NTMtOTE4MTAyNDEyMjUx; pxcts=4d191bef-3e89-11ed-a057-744675666856; _pxvid=4b36c4f4-3e89-11ed-8615-63574d634878; _pxde=a46e7867f5434eaa26dc48b287876d326817e38c5c8a4aee2715267274cc9c8a:eyJ0aW1lc3RhbXAiOjE2NjQyOTk0OTUxNDUsImZfa2IiOjAsImlwY19pZCI6W119; _px3=43171a5d2ded3a7e5ac4541c9318400edb29068f1f6e8dadd921d740ae2d833f:VhbWp/kskLd2UVEq3z2Ht3PtnhCjYBX8ijxk4fU5PZsirUWkXXc/BOe3n60tcg7urJCbivcv9uPauQDzpvwxNA==:1000:nSxKvmh0FZzbHiA7hSoV+4Tsxl0/6BY1gEDHfxe6NcQCE2v1TlzHkguM/X+mjXAlj7yK7/Out4mfA5P9nR1H/INtvKzeH/eqP7hIdvkKh3yhodhGm0/f/L93V9eKTr+H5YPaczBidSjSXzZdJmygRKUNsOWrKcmD7r6UfrRPkuOWNMENxMyLdnwBlvr7YUf2h52pkoCFe7nbnMBBf0R0vQ==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Tue, 27 Sep 2022 17:24:55 GMT
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-methods: POST
access-control-allow-origin: https://www.booking.com
access-control-max-age: 1728000
set-cookie: bkng_sso_ses=eyJib29raW5nX2dsb2JhbCI6W3siYSI6MSwiaCI6ImpIZ1dGZzBKSFFSZkU2Nyt3SEVZZ1lzL3g0eVR2M3RyRTRLZW9RdUMxdGMifV19; domain=.booking.com; path=/; expires=Sun, 26-Sep-2027 17:24:55 GMT; secure; HttpOnly
bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJzZXNzaW9ucyI6W3sicmVmcmVzaF90b2tlbiI6IkNBRVNkMUoxaXBTSU1kMGRPMXdWWnBRXzNYY3MxYnB3QmRrQlZJUkNqeVNQRVJjd0lxeGg0ZlYteFh6RVM2THFfeHFDeWJGMnRsd1NQMUlqVTRLUVdEcm9SVFRPX3JBdnBSa2otUFcxTlFXTmxrTFBJZmdHeGVtejdERENLNmZzWXVTT2lIY2t5OXoyMERXWlFKUmZta3hNOGtuV0JmZVRzMmZyIiwic2Vzc2lvbl9yZWZlcmVuY2UiOiI2MThjODE5Mi1iMjk1LTQxZGUtODhiNi02OTBmOGRkNjZjY2QifV0sImRhdGFfc3ViamVjdF9pZCI6IjQzYmE4ZjQ1LTIyNGMtNGNmMS05NWNmLTkxOTQ4ZjY1Zjk4NSJ9fQ; domain=account.booking.com; path=/; expires=Sun, 26-Sep-2027 17:24:55 GMT; secure; HttpOnly
bkng_sso_session=e30; domain=.booking.com; path=/; expires=Sun, 26-Sep-2027 17:24:55 GMT; secure; HttpOnly
content-security-policy: report-uri https://nellie.booking.com/csp-report-uri?type=block&tag=42&pid=e2597a734de70852&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdfdvBlyk9NlKcLEfSqFdAHv1CmYlbsbmyirNXm6MJ_S6d1wWGe6fE6L4Udx8pl8sAiO6tO4MukVcJ51dlv3Gvk5nTapNjG6BqA; frame-ancestors https://*.booking.com 'self';
content-security-policy-report-only: img-src 'self' data: www.booking.com graph.facebook.com cdn.cookielaw.org account.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google-analytics.com www.google.com stats.g.doubleclick.net *.px-cloud.net *.perimeterx.net www.gstatic.com; base-uri 'none'; style-src *.bstatic.com bstatic.com *.static.booking.cn 'self' 'unsafe-inline'; frame-src https://www.youtube.com/embed/Vv4w5SmRkss *.bstatic.com https://www.google.com bstatic.com www.booking.com secure.booking.com paymentcomponent.booking.com 'self'; script-src saa.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google.com www.google-analytics.com cdn.cookielaw.org geolocation.onetrust.com 'self' 'nonce-6Nw96n3ZgcrRALi' 'report-sample'; default-src *.bstatic.com bstatic.com 'self'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=41&pid=e2597a734de70852&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdfdvBlyk9NlKcLEfSqFdAHv1CmYlbsbmyirNXm6MJ_S6d1wWGe6fE6L4Udx8pl8sAiO6tO4MukVcJ51dlv3Gvk5nTapNjG6BqA; connect-src saa.booking.com secure.booking.com reports.booking.com privacyportal-eu.onetrust.com geolocation.onetrust.com cdn.cookielaw.org www.google-analytics.com *.perimeterx.net *.pxchk.net *.px-cdn.net *.px-client.net *.px-cloud.net 'self' 'report-sample'; object-src 'none';
strict-transport-security: max-age=17280000
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VLHucYds0FXTMqA-78x7b97YUJpjDXt377FaDWwM__LAPii4v0Vf5w==
X-Firefox-Spdy: h2
privacyportal-eu.onetrust.com/request/v1/consentreceipts
104.18.41.98201 Created 0 B URL HTTP/2 privacyportal-eu.onetrust.com/request/v1/consentreceipts
IP 104.18.41.98:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /request/v1/consentreceipts HTTP/1.1
Host: privacyportal-eu.onetrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 7826
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 201 Created
date: Tue, 27 Sep 2022 17:24:57 GMT
content-length: 0
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: *
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7515ef9008f8b529-OSL
X-Firefox-Spdy: h2
www.booking.com/js_tracking?sid=0fef4b6ec178f4037ad92b5d29bfdca4&stype=1&ver=2&pid=0cab7a710d0a01ac&aid=1858279&lang=en-us&ref_action=index&ete=&etg=&etcg=&ets=&etgwv=js_index_www_time_on_page_seconds|6&m=UmFuZG9tSVYkc2RlIyh9Yd-G9QbajTWUtk-azxcC7491vSDXNE1W17IswXo7GSQJTmKqZPZCSbiqDFJIrXa_vGZBjABkiyDEERQn6ccLe0PuOQ56BEXV5s035cMV9GWtaF5yBJ16dNuOZTKn8qNP1dvKkawmA15eVVNpDc3TFfMO5yHty-rcJVqfQOHc7JhrCKLOXRv1onv6mahkm4RkvcHFA2P2zaS-WIk05OQxvOAANj0Wj28Pbj4Rfwtg798eAldr1brcSj2jxXhxW35A8rYOIDK_JUvaOpQoYyEXuO0IFOHTKVyPAyo7HqwlAI0G
5.57.17.220200 OK 3 B URL HTTP/1.1 www.booking.com/js_tracking?sid=0fef4b6ec178f4037ad92b5d29bfdca4&stype=1&ver=2&pid=0cab7a710d0a01ac&aid=1858279&lang=en-us&ref_action=index&ete=&etg=&etcg=&ets=&etgwv=js_index_www_time_on_page_seconds|6&m=UmFuZG9tSVYkc2RlIyh9Yd-G9QbajTWUtk-azxcC7491vSDXNE1W17IswXo7GSQJTmKqZPZCSbiqDFJIrXa_vGZBjABkiyDEERQn6ccLe0PuOQ56BEXV5s035cMV9GWtaF5yBJ16dNuOZTKn8qNP1dvKkawmA15eVVNpDc3TFfMO5yHty-rcJVqfQOHc7JhrCKLOXRv1onv6mahkm4RkvcHFA2P2zaS-WIk05OQxvOAANj0Wj28Pbj4Rfwtg798eAldr1brcSj2jxXhxW35A8rYOIDK_JUvaOpQoYyEXuO0IFOHTKVyPAyo7HqwlAI0G
IP 5.57.17.220:0
Hash 29a29c1a9510295faffe1081ce907c38
e56ed85fa42ad8367711b2d7a5680f781bc8cf2c
953364ba17432048a9b97116a689d04da08ff77b1ead69c7fe1b51faa6542667
GET /js_tracking?sid=0fef4b6ec178f4037ad92b5d29bfdca4&stype=1&ver=2&pid=0cab7a710d0a01ac&aid=1858279&lang=en-us&ref_action=index&ete=&etg=&etcg=&ets=&etgwv=js_index_www_time_on_page_seconds|6&m=UmFuZG9tSVYkc2RlIyh9Yd-G9QbajTWUtk-azxcC7491vSDXNE1W17IswXo7GSQJTmKqZPZCSbiqDFJIrXa_vGZBjABkiyDEERQn6ccLe0PuOQ56BEXV5s035cMV9GWtaF5yBJ16dNuOZTKn8qNP1dvKkawmA15eVVNpDc3TFfMO5yHty-rcJVqfQOHc7JhrCKLOXRv1onv6mahkm4RkvcHFA2P2zaS-WIk05OQxvOAANj0Wj28Pbj4Rfwtg798eAldr1brcSj2jxXhxW35A8rYOIDK_JUvaOpQoYyEXuO0IFOHTKVyPAyo7HqwlAI0G HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
X-Booking-AID: 1858279
X-Booking-CSRF: I2ozYwAAAAA=7YcDS4io-VvZQrZDmtMEBuRBUcOf9o5XZcwMPORvx9HaTGizsK2YkltR3Yhgm7mCyq6cwgldZUgTI0DcOkyJDOgIrCaSHNg8cburDzlBJHj6mdB-34rOXq_H9a6Q0zreNvTRPLrXZL69T_gyDj7MF7M9XuXiRzJnnEO4lvpbahGbos2Z6Td9ab8ExAzEBXoVj0BX9Tb9skpDtWvJ
X-Booking-Info: 1554730,1581080,1586670,1588860,1590920,1591870,1591890,1592480,1597140,1598040,1600300,aaTBNZZJRLESPIDNJDPVBC|1,cCcCcCJdDBKJJVaXNJIbVCMILcYJZXe|1,1590920|2,cCHObdRdJJXRDVMDTEHAFPRJdUDEYIbaTaTaET|1,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|1,cCHObVZMYCAFFQZcNKNMC|1,cCHObdRdJJXCcAZTbaTaTaET|2,cCHObdRdJJXCcaWQOccCcCcCC|2,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|2,cCHObVBEQBOJAZdJAINLRJAXaaO|1,cCHObIFfESfdQfQQDVCUBPSEbFZVGAZfTLKGBfC|8,cCHObEVdZVaRZVBZHEZXRFKQbeVEHe|1,cCHObEVdZAQaFBddQSBSQRdHHKe|1,cCHObVZMYCAFFQZcNKNMC|2,cCHObVBEQBOJAZdJAINLRJAXaaO|3,cCHObVZMYCAFFQZcNKNMC|4,cCHObVBEQBOJAZdJAINLRJAXaaO|4,cCHObVZMYCAFFQZcNKNMC|7,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|4,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|7
X-Booking-Client-Info: aaTBNZZJRLESPIDNJDPVBC|1,cCHObVZMYCAFFQZcNKNMC|1,cCHObVBEQBOJAZdJAINLRJAXaaO|1,cCHObIFfESfdQfQQDVCUBPSEbFZVGAZfTLKGBfC|8,cCHObEVdZVaRZVBZHEZXRFKQbeVEHe|1,cCHObEVdZAQaFBddQSBSQRdHHKe|1,cCHObVZMYCAFFQZcNKNMC|2,cCHObVBEQBOJAZdJAINLRJAXaaO|3,cCHObVZMYCAFFQZcNKNMC|4,cCHObVBEQBOJAZdJAINLRJAXaaO|4,cCHObVZMYCAFFQZcNKNMC|7,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|2,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|4,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZcO|7
X-Booking-Label:
X-Booking-Language-Code: en-us
X-Booking-Pageview-Id: 0cab7a710d0a01ac
X-Booking-Session-Id: 0fef4b6ec178f4037ad92b5d29bfdca4
X-Booking-SiteType-Id: 1
X-Partner-Channel-Id: 2
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: _pxhd=h8XODE%2FlYz-MyDEq9nmi%2FZnTQY1pKwzwc5w2Mx7snnS6LrSsWbu6vNV%2FQluuX%2FdlFk1tG7Vz00xaENF3eyEQ2w%3D%3D%3ASj8%2F9EM43AexDoTVN89bXJv6trA79lOctgg355KomLtDsclVoAULwclZor3bli5b-zNZNi8siQLsgOCn667y0ZRBcbjozagvWa2gmM8QpTk%3D; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnscUrLfSdVQI07f%2F63dKzp9rS9eh66HN%2BkdBwsk%2Fns7mI9zn7N4Z21%2B2b6gG6toWptVBSBIYuMNt5lk%2B6PjAuqt2A96Lo%2FvWrENZEJ%2FsaHe0LqhWN%2BEaHMJe%2B6TnzpAobEogZutVFKE6xnqfRJlSzYM%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Sep+27+2022+17%3A24%3A54+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=3e1f62ba-39e7-4566-8d4a-87fb8faae768&interactionCount=1&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1664299491427; bkng_frontend_sese_exp=0; bkng_sso_ses=eyJib29raW5nX2dsb2JhbCI6W3siYSI6MSwiaCI6ImpIZ1dGZzBKSFFSZkU2Nyt3SEVZZ1lzL3g0eVR2M3RyRTRLZW9RdUMxdGMifV19; bkng_sso_session=e30; BJS=-; _px_f394gi7Fvmc43dfg_user_id=NGJiMzgwMTEtM2U4OS0xMWVkLWE4NTMtOTE4MTAyNDEyMjUx; pxcts=4d191bef-3e89-11ed-a057-744675666856; _pxvid=4b36c4f4-3e89-11ed-8615-63574d634878; _pxff_ddtc=1; _pxde=a46e7867f5434eaa26dc48b287876d326817e38c5c8a4aee2715267274cc9c8a:eyJ0aW1lc3RhbXAiOjE2NjQyOTk0OTUxNDUsImZfa2IiOjAsImlwY19pZCI6W119; _px3=43171a5d2ded3a7e5ac4541c9318400edb29068f1f6e8dadd921d740ae2d833f:VhbWp/kskLd2UVEq3z2Ht3PtnhCjYBX8ijxk4fU5PZsirUWkXXc/BOe3n60tcg7urJCbivcv9uPauQDzpvwxNA==:1000:nSxKvmh0FZzbHiA7hSoV+4Tsxl0/6BY1gEDHfxe6NcQCE2v1TlzHkguM/X+mjXAlj7yK7/Out4mfA5P9nR1H/INtvKzeH/eqP7hIdvkKh3yhodhGm0/f/L93V9eKTr+H5YPaczBidSjSXzZdJmygRKUNsOWrKcmD7r6UfrRPkuOWNMENxMyLdnwBlvr7YUf2h52pkoCFe7nbnMBBf0R0vQ==; lastSeen=1664299494772
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
server: nginx
date: Tue, 27 Sep 2022 17:24:57 GMT
content-type: text/plain; charset=UTF-8
transfer-encoding: chunked
vary: User-Agent, Accept-Encoding
content-encoding: br
strict-transport-security: max-age=604800
content-security-policy-report-only: report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=6eda7a74690e0109&e=UmFuZG9tSVYkc2RlIyh9Yea92wm0yRUjnCBymoy8ejIrG3KQl5kbf0fFgk-OhJbpC-CynIN92u8; frame-ancestors 'none';
x-xss-protection: 1; mode=block
cf.bstatic.com/static/js/raf_cloudfront_sd/b9e5b0bcf00cff69d910550bedf9b680172d2b89.js
54.230.111.69200 OK 0 B URL HTTP/2 cf.bstatic.com/static/js/raf_cloudfront_sd/b9e5b0bcf00cff69d910550bedf9b680172d2b89.js
IP 54.230.111.69:0
GET /static/js/raf_cloudfront_sd/b9e5b0bcf00cff69d910550bedf9b680172d2b89.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 16 Sep 2022 13:49:03 GMT
last-modified: Fri, 16 Sep 2022 13:33:46 GMT
etag: W/"63247b3a-1db04"
expires: Sun, 16 Oct 2022 13:49:03 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0_iG1AM2JyQAqw_9DW-2oi46nQrtQcr4Ppw860_wRiclOwMHB4RAsA==
age: 963349
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/main_cloudfront_sd.iq_ltr/c5356956c1e9d1a1b41da3877d3d3adf4e151479.css
54.230.111.69200 OK 0 B URL HTTP/2 cf.bstatic.com/static/css/main_cloudfront_sd.iq_ltr/c5356956c1e9d1a1b41da3877d3d3adf4e151479.css
IP 54.230.111.69:0
GET /static/css/main_cloudfront_sd.iq_ltr/c5356956c1e9d1a1b41da3877d3d3adf4e151479.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
last-modified: Mon, 22 Aug 2022 12:14:02 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Thu, 22 Sep 2022 00:24:14 GMT
expires: Sat, 22 Oct 2022 00:23:50 GMT
cache-control: max-age=2592000
etag: W/"6303730a-806e8"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RJv64pt1YhrqjQSKbMkkntlPfQy168lA4Qf3tqhMwT7_vchXPKBIdA==
age: 493261
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/579.33eaa97f.chunk.js
54.230.111.69200 OK 0 B URL HTTP/2 cf.bstatic.com/psb/capla/static/js/579.33eaa97f.chunk.js
IP 54.230.111.69:0
GET /psb/capla/static/js/579.33eaa97f.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Tue, 27 Sep 2022 11:23:20 GMT
etag: W/"63e5796f030f5fd068cc419faf05f993"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Tue, 27 Sep 2022 11:00:57 GMT
x-amz-expiration: expiry-date="Wed, 25 Jan 2023 11:00:57 GMT", rule-id=""
expires: Thu, 27 Oct 2022 11:23:20 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CEa5KOSrkaC3QKIdutOt64S_UVu2TKuy3hYs6w0QGqDgpBOp5VX_nQ==
age: 21692
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/736.e695e800.chunk.js
54.230.111.69200 OK 0 B URL HTTP/2 cf.bstatic.com/psb/capla/static/js/736.e695e800.chunk.js
IP 54.230.111.69:0
GET /psb/capla/static/js/736.e695e800.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Tue, 20 Sep 2022 03:28:18 GMT
etag: W/"987c209e1ab13ea61b377f16dae741e3"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Wed, 20 Jul 2022 12:07:08 GMT
x-amz-expiration: expiry-date="Thu, 17 Nov 2022 12:07:08 GMT", rule-id=""
expires: Thu, 20 Oct 2022 03:28:18 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wJ13o2CyuB7ZUpor6qgjg_eftKb9q0snHKYepkIKenfetr04c1UHCA==
age: 654994
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/664.b4186044.chunk.js
54.230.111.69200 OK 0 B URL HTTP/2 cf.bstatic.com/psb/capla/static/js/664.b4186044.chunk.js
IP 54.230.111.69:0
GET /psb/capla/static/js/664.b4186044.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Tue, 27 Sep 2022 11:23:20 GMT
etag: W/"716b66a984e3ca825f361192eece54b0"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Tue, 27 Sep 2022 11:00:57 GMT
x-amz-expiration: expiry-date="Wed, 25 Jan 2023 11:00:57 GMT", rule-id=""
expires: Thu, 27 Oct 2022 11:23:20 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: smMRs0kiMye0WM0X6wFc2xl3kE2IotDSHQlpiP7DGqUx8qPmQ7f2cQ==
age: 21692
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/cross_product_index/toggle/fb6f63d62231f9fe552d79b5448620b2e63c726e.svg
54.230.111.69200 OK 0 B URL HTTP/2 cf.bstatic.com/static/img/cross_product_index/toggle/fb6f63d62231f9fe552d79b5448620b2e63c726e.svg
IP 54.230.111.69:0
GET /static/img/cross_product_index/toggle/fb6f63d62231f9fe552d79b5448620b2e63c726e.svg HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/803db70cae57625135f844e5c55e577ab3a99323.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Wed, 31 Aug 2022 00:23:11 GMT
last-modified: Wed, 10 Apr 2019 11:21:51 GMT
etag: W/"5cadd1cf-5e7"
expires: Fri, 30 Sep 2022 00:23:11 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9OarIaHUs7SBlr7snu37DppdAzrSSAuZyqop-OQWHsg3si7FEl3VQQ==
age: 2394101
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/atlas_cloudfront_sd/1ae6debea4b5afce3eb21a79981d0208661c6c1c.js
54.230.111.69200 OK 0 B URL HTTP/2 cf.bstatic.com/static/js/atlas_cloudfront_sd/1ae6debea4b5afce3eb21a79981d0208661c6c1c.js
IP 54.230.111.69:0
GET /static/js/atlas_cloudfront_sd/1ae6debea4b5afce3eb21a79981d0208661c6c1c.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 05 Sep 2022 11:22:51 GMT
last-modified: Mon, 05 Sep 2022 10:51:43 GMT
etag: W/"6315d4bf-1d23b"
expires: Wed, 05 Oct 2022 11:22:51 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2mbo4xpwOUMZYH44k1MUb-u4ArYLgZsycB8BJoXiuRIltHZmmA1OTA==
age: 1922522
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/gprof_icons_cloudfront_sd.iq_ltr/ffb63ae1fc7eb55fb6a0076df245b082f4db180b.css
54.230.111.69200 OK 0 B URL HTTP/2 cf.bstatic.com/static/css/gprof_icons_cloudfront_sd.iq_ltr/ffb63ae1fc7eb55fb6a0076df245b082f4db180b.css
IP 54.230.111.69:0
GET /static/css/gprof_icons_cloudfront_sd.iq_ltr/ffb63ae1fc7eb55fb6a0076df245b082f4db180b.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Wed, 07 Sep 2022 01:38:39 GMT
last-modified: Mon, 22 Aug 2022 12:14:01 GMT
etag: W/"63037309-29208"
expires: Fri, 07 Oct 2022 01:38:39 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rzBV5ophs5AM6e2XTMewpCjo3QG6NR2El3LFHam4dVEYRfShTh4bfQ==
age: 1784772
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/fonticons_clean/base64/woff/5d61b8a7156073e5e3e9741f65dda44ae3eef7d2.css
54.230.111.69200 OK 0 B URL HTTP/2 cf.bstatic.com/static/css/fonticons_clean/base64/woff/5d61b8a7156073e5e3e9741f65dda44ae3eef7d2.css
IP 54.230.111.69:0
GET /static/css/fonticons_clean/base64/woff/5d61b8a7156073e5e3e9741f65dda44ae3eef7d2.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:48 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Wed, 14 Sep 2022 04:31:08 GMT
expires: Fri, 14 Oct 2022 04:31:08 GMT
cache-control: max-age=2592000
etag: W/"5cadd1cc-375af"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: JIV9LpbYfODujc9uR3n2tv0Rh04Jl184PQa6HB5QLD5YQd1pTa9rlg==
age: 1169626
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/lazy_load_images_cloudfront_sd/77204d4da4aa41b08b1a4062c8e66e4629550994.js
54.230.111.69200 OK 0 B URL HTTP/2 cf.bstatic.com/static/js/lazy_load_images_cloudfront_sd/77204d4da4aa41b08b1a4062c8e66e4629550994.js
IP 54.230.111.69:0
GET /static/js/lazy_load_images_cloudfront_sd/77204d4da4aa41b08b1a4062c8e66e4629550994.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
last-modified: Tue, 04 Feb 2020 10:19:57 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Tue, 27 Sep 2022 00:59:18 GMT
expires: Thu, 27 Oct 2022 00:38:10 GMT
cache-control: max-age=2592000
etag: W/"5e39454d-15f3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lGTwjfN6QSCqo_gVSJPljTU8aAWaMDue6UIsId3U8ks8nvXXETJKOw==
age: 60401
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/sp-on-maps_cloudfront_sd/d30eef4dc5202875d4c3301b8a0e8ff09f9a0e28.js
54.230.111.69200 OK 0 B URL HTTP/2 cf.bstatic.com/static/js/sp-on-maps_cloudfront_sd/d30eef4dc5202875d4c3301b8a0e8ff09f9a0e28.js
IP 54.230.111.69:0
GET /static/js/sp-on-maps_cloudfront_sd/d30eef4dc5202875d4c3301b8a0e8ff09f9a0e28.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 09 Sep 2022 01:16:47 GMT
last-modified: Thu, 19 May 2022 11:44:13 GMT
etag: W/"62862d8d-25ae"
expires: Sun, 09 Oct 2022 01:16:47 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wwJS0Iob4po9U_wRpoTMUNBTMwtzFR5-Ls9QtZxZhfZ9z7-Dgn7FuQ==
age: 1613285
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/vendors.faa9087e.js
54.230.111.69200 OK 0 B URL HTTP/2 cf.bstatic.com/psb/capla/static/js/vendors.faa9087e.js
IP 54.230.111.69:0
GET /psb/capla/static/js/vendors.faa9087e.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Tue, 27 Sep 2022 11:28:46 GMT
etag: W/"0df4b1d4e918af1b15c7ba47884411a8"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Tue, 27 Sep 2022 11:15:26 GMT
x-amz-expiration: expiry-date="Wed, 25 Jan 2023 11:15:26 GMT", rule-id=""
expires: Thu, 27 Oct 2022 11:28:46 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AbmGEzOpb-OKmTMQMesunMp_Hp-6uC6r7y2gJti8odKxZJIfSQHN2A==
age: 21365
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/513.1b93eb77.chunk.js
54.230.111.69200 OK 0 B URL HTTP/2 cf.bstatic.com/psb/capla/static/js/513.1b93eb77.chunk.js
IP 54.230.111.69:0
GET /psb/capla/static/js/513.1b93eb77.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 26 Sep 2022 10:18:44 GMT
etag: W/"a293aef5b3671f3f42d070ae6b494c80"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Mon, 26 Sep 2022 09:05:07 GMT
x-amz-expiration: expiry-date="Tue, 24 Jan 2023 09:05:07 GMT", rule-id=""
expires: Wed, 26 Oct 2022 10:18:44 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: y-RIouvF7vGROjaV6cibTSnX-35hRG-OmcQaVQStuFeVTkyVjscqiQ==
age: 111968
X-Firefox-Spdy: h2