oau.com/mtm/direct/.eJxdyUEKgzAQheG7zFKD47K19CxlCFMTSEw6jhAQ7-60G6G7_31vh00iTIDggGReLa2E3ywsNoJqnRALbYMv2a5QVn0tlNnOS8l7rmqk3BSD5uSo1hQ9aSwLtq_07V9zenye43B3HXa_usFxAlhsL6M:1ox2aZ:h9HIWQGB5EAPP5Nszp4BYLBy3iI/2
45.33.30.197302 Found 0 B URL HTTP/1.1 oau.com/mtm/direct/.eJxdyUEKgzAQheG7zFKD47K19CxlCFMTSEw6jhAQ7-60G6G7_31vh00iTIDggGReLa2E3ywsNoJqnRALbYMv2a5QVn0tlNnOS8l7rmqk3BSD5uSo1hQ9aSwLtq_07V9zenye43B3HXa_usFxAlhsL6M:1ox2aZ:h9HIWQGB5EAPP5Nszp4BYLBy3iI/2
IP 45.33.30.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /mtm/direct/.eJxdyUEKgzAQheG7zFKD47K19CxlCFMTSEw6jhAQ7-60G6G7_31vh00iTIDggGReLa2E3ywsNoJqnRALbYMv2a5QVn0tlNnOS8l7rmqk3BSD5uSo1hQ9aSwLtq_07V9zenye43B3HXa_usFxAlhsL6M:1ox2aZ:h9HIWQGB5EAPP5Nszp4BYLBy3iI/2 HTTP/1.1
Host: oau.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
server: openresty/1.13.6.1
date: Mon, 21 Nov 2022 20:14:40 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: http://www1.oau.com/?tm=1&subid4=1669061680.0285810000&KW1=Dedicated%20Gaming%20Servers&KW2=Get%20An%20Online%20Degree&KW3=Get%20An%20Online%20Degree&KW4=Social%20Media%20Automation%20Marketing%20Software&KW5=Best%20Mortgage%20Refinancing%20Rates&KW6=Online%20Career%20Counseling%20Programs&KW7=Elite%20Dating%20Service&KW8=B2B%20Travel%20Booking%20System&KW9=Lowest%20Car%20Insurance%20Rates&searchbox=0&backfill=0
x-mtm-path: 4
x-mtm-prov: 300:0.00;308:24.24
x-mtm-rd: 0.74
vary: Accept-Language
content-language: en
set-cookie: mtm_delivered=WyJvYXUuY29tIiwiaHR0cDovL3d3dzEub2F1LmNvbS8_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:1oxDBg:frc8sSPO6Opa7v_HgG6oWJjUe7Y; expires=Mon, 21-Nov-2022 21:14:40 GMT; Max-Age=3600; Path=/
connection: close
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash eb76c0b3adf4098ad8a9d1e38250758f
99610ddb2b4ec6d04250ac244f966951695d4f00
01ed8c191c175471aee23cbc196d558e5bf5209f166806fc97db08eb06544bab
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01ED8C191C175471AEE23CBC196D558E5BF5209F166806FC97DB08EB06544BAB"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15247
Expires: Tue, 22 Nov 2022 00:28:47 GMT
Date: Mon, 21 Nov 2022 20:14:40 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4843de3bf95411e6aa89834def44bb86
1f1882351ac63fba73a22014382f69df5e02ec96
1e6ed1df02f8fa6c89ddca66f7c9981f8a06127d7ec90b503703137e823bb4b7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3666
Cache-Control: max-age=141463
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 20:14:40 GMT
Etag: "637b5375-1d7"
Expires: Wed, 23 Nov 2022 11:32:23 GMT
Last-Modified: Mon, 21 Nov 2022 10:31:17 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8a6c553d89cb6fd1de4787fee2a0e0dc
b974e022ea8675c0a09f58864cc99df05b5b1241
a62ecedcb0953814f982237818a3d902fdca501f82b675629d28b5d476e0fbfa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A62ECEDCB0953814F982237818A3D902FDCA501F82B675629D28B5D476E0FBFA"
Last-Modified: Mon, 21 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14934
Expires: Tue, 22 Nov 2022 00:23:34 GMT
Date: Mon, 21 Nov 2022 20:14:40 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 21 Nov 2022 20:09:17 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 323
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: aIak5G4ou29zWSCNxl/HsZng/G4DjNf1wT8wIkuq4a7/i7L2/3lGckIT1pxsypAUSn5IDhTzNmE=
x-amz-request-id: MQZ3JKTGJHCMZK10
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 21 Nov 2022 19:39:16 GMT
age: 2124
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 21 Nov 2022 20:14:40 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www1.oau.com/?tm=1&subid4=1669061680.0285810000&KW1=Dedicated%20Gaming%20Servers&KW2=Get%20An%20Online%20Degree&KW3=Get%20An%20Online%20Degree&KW4=Social%20Media%20Automation%20Marketing%20Software&KW5=Best%20Mortgage%20Refinancing%20Rates&KW6=Online%20Career%20Counseling%20Programs&KW7=Elite%20Dating%20Service&KW8=B2B%20Travel%20Booking%20System&KW9=Lowest%20Car%20Insurance%20Rates&searchbox=0&backfill=0
13.248.148.254200 OK 2.5 kB URL HTTP/1.1 www1.oau.com/?tm=1&subid4=1669061680.0285810000&KW1=Dedicated%20Gaming%20Servers&KW2=Get%20An%20Online%20Degree&KW3=Get%20An%20Online%20Degree&KW4=Social%20Media%20Automation%20Marketing%20Software&KW5=Best%20Mortgage%20Refinancing%20Rates&KW6=Online%20Career%20Counseling%20Programs&KW7=Elite%20Dating%20Service&KW8=B2B%20Travel%20Booking%20System&KW9=Lowest%20Car%20Insurance%20Rates&searchbox=0&backfill=0
IP 13.248.148.254:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2214)
Hash caad09911dc93f7b1173bcd905b41a2f
9b885807a4d33322057506f847b7e3a4ee276bed
550fabb0fd0249c151c2c9fef39b4a7383b39a5cc85d14bd2ffe743792532708
GET /?tm=1&subid4=1669061680.0285810000&KW1=Dedicated%20Gaming%20Servers&KW2=Get%20An%20Online%20Degree&KW3=Get%20An%20Online%20Degree&KW4=Social%20Media%20Automation%20Marketing%20Software&KW5=Best%20Mortgage%20Refinancing%20Rates&KW6=Online%20Career%20Counseling%20Programs&KW7=Elite%20Dating%20Service&KW8=B2B%20Travel%20Booking%20System&KW9=Lowest%20Car%20Insurance%20Rates&searchbox=0&backfill=0 HTTP/1.1
Host: www1.oau.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 21 Nov 2022 20:14:41 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-Redirect: zeropark_zeroclick
X-Template: tpl_CleanPeppermintBlack_twoclick
X-Language: norwegian
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2db0ebb9efcf3be3c92f23b61de5c065
dd830565723f18a7944c26d24b0fb142d06a71a5
8615316184c4d1d64db923a5364363bbb3d25e146a042c5fbd5bf0cfcec8effb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1804
Cache-Control: max-age=134537
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 20:14:41 GMT
Etag: "637b3fae-1d7"
Expires: Wed, 23 Nov 2022 09:36:58 GMT
Last-Modified: Mon, 21 Nov 2022 09:06:54 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 21 Nov 2022 20:08:47 GMT
cache-control: public,max-age=3600
age: 354
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
d38psrni17bvxu.cloudfront.net/scripts/js3.js
54.230.245.22200 OK 1.1 kB URL HTTP/1.1 d38psrni17bvxu.cloudfront.net/scripts/js3.js
IP 54.230.245.22:0
File type ASCII text, with very long lines (506)
Hash 64b79b43df8fbf2c5d082964b9116a68
dc3c763519baf0f4c32bb60bfc429651a491ea01
c57e9feec209e3ea5eb1d75a1ba6fa277242a3df250055be8446052b51e58637
Analyzer Verdict Alert fortinet Malware
GET /scripts/js3.js HTTP/1.1
Host: d38psrni17bvxu.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.oau.com/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 1134
Connection: keep-alive
Server: nginx
Date: Mon, 21 Nov 2022 04:54:34 GMT
Last-Modified: Tue, 17 Aug 2021 09:17:22 GMT
Accept-Ranges: bytes
ETag: "611b7ea2-46e"
X-Cache: Hit from cloudfront
Via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: oxGuclMLUHQg3btsrsRdThgFyygqlLNmMzINlbacxsvZLAOcjQ1oCg==
Age: 55207
push.services.mozilla.com/
54.200.107.47101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.200.107.47:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JvKUG+R+EkqAAWkAzGyjvg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: eo3ai9v9KbDMXM1qlOCAeV+KLAY=
www1.oau.com/track.php?domain=oau.com&toggle=browserjs&uid=MTY2OTA2MTY4MC44Nzg4OmM0NzI4MTcyZjljNjhkZGJlMDM0NjdhZDZkZjVjY2YyMDY1YjM0OWE2MjRlM2Q2NmE1MjQ5NzFlMTYyZGFmMmI6NjM3YmRjMzBkNjhjNA%3D%3D
13.248.148.254200 OK 20 B URL HTTP/1.1 www1.oau.com/track.php?domain=oau.com&toggle=browserjs&uid=MTY2OTA2MTY4MC44Nzg4OmM0NzI4MTcyZjljNjhkZGJlMDM0NjdhZDZkZjVjY2YyMDY1YjM0OWE2MjRlM2Q2NmE1MjQ5NzFlMTYyZGFmMmI6NjM3YmRjMzBkNjhjNA%3D%3D
IP 13.248.148.254:0
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /track.php?domain=oau.com&toggle=browserjs&uid=MTY2OTA2MTY4MC44Nzg4OmM0NzI4MTcyZjljNjhkZGJlMDM0NjdhZDZkZjVjY2YyMDY1YjM0OWE2MjRlM2Q2NmE1MjQ5NzFlMTYyZGFmMmI6NjM3YmRjMzBkNjhjNA%3D%3D HTTP/1.1
Host: www1.oau.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.oau.com/?tm=1&subid4=1669061680.0285810000&KW1=Dedicated%20Gaming%20Servers&KW2=Get%20An%20Online%20Degree&KW3=Get%20An%20Online%20Degree&KW4=Social%20Media%20Automation%20Marketing%20Software&KW5=Best%20Mortgage%20Refinancing%20Rates&KW6=Online%20Career%20Counseling%20Programs&KW7=Elite%20Dating%20Service&KW8=B2B%20Travel%20Booking%20System&KW9=Lowest%20Car%20Insurance%20Rates&searchbox=0&backfill=0
HTTP/1.1 200 OK
Date: Mon, 21 Nov 2022 20:14:42 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-Custom-Track: browserjs
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Access-Control-Allow-Origin: *
Content-Encoding: gzip
www1.oau.com/ls.php
13.248.148.254201 Created 0 B IP 13.248.148.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
POST /ls.php HTTP/1.1
Host: www1.oau.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 2166
Origin: http://www1.oau.com
Connection: keep-alive
Referer: http://www1.oau.com/?tm=1&subid4=1669061680.0285810000&KW1=Dedicated%20Gaming%20Servers&KW2=Get%20An%20Online%20Degree&KW3=Get%20An%20Online%20Degree&KW4=Social%20Media%20Automation%20Marketing%20Software&KW5=Best%20Mortgage%20Refinancing%20Rates&KW6=Online%20Career%20Counseling%20Programs&KW7=Elite%20Dating%20Service&KW8=B2B%20Travel%20Booking%20System&KW9=Lowest%20Car%20Insurance%20Rates&searchbox=0&backfill=0
HTTP/1.1 201 Created
Date: Mon, 21 Nov 2022 20:14:42 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
X-Log-Success: 637bdc3208d0ac345c5e7b01
Charset: utf-8
Access-Control-Allow-Origin: http://www1.oau.com
Access-Control-Allow-Methods: POST, OPTIONS
Access-Control-Max-Age: 86400
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_rejQhowusro8i5oVVIejVBfCTS/nn5xz84LBPkA3fTJ9q6iFjm4FT9GzePSFKmvYDrXZXROY63BCFsJQ2N6jtg==
www1.oau.com/favicon.ico
13.248.148.254200 OK 0 B IP 13.248.148.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: www1.oau.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.oau.com/?tm=1&subid4=1669061680.0285810000&KW1=Dedicated%20Gaming%20Servers&KW2=Get%20An%20Online%20Degree&KW3=Get%20An%20Online%20Degree&KW4=Social%20Media%20Automation%20Marketing%20Software&KW5=Best%20Mortgage%20Refinancing%20Rates&KW6=Online%20Career%20Counseling%20Programs&KW7=Elite%20Dating%20Service&KW8=B2B%20Travel%20Booking%20System&KW9=Lowest%20Car%20Insurance%20Rates&searchbox=0&backfill=0
HTTP/1.1 200 OK
Date: Mon, 21 Nov 2022 20:14:42 GMT
Content-Type: image/x-icon
Content-Length: 0
Connection: keep-alive
Server: nginx
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
ETag: "5ebab1f0-0"
Accept-Ranges: bytes
www1.oau.com/track.php?click=8bc5311fea51f5d88ad90580a49f43a22d8f5165&domain=oau.com&uid=MTY2OTA2MTY4MC44Nzg4OmM0NzI4MTcyZjljNjhkZGJlMDM0NjdhZDZkZjVjY2YyMDY1YjM0OWE2MjRlM2Q2NmE1MjQ5NzFlMTYyZGFmMmI6NjM3YmRjMzBkNjhjNA%3D%3D&ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTF8fHx8fHw2MzdiZGMzMGQ2OGE1fHx8MTY2OTA2MTY4MS4yMDA5fGYzMTNhYmQxNWM1MzJiOTc5NDBmMjFmOTAzMDcyNGRiZjE1N2QzOWZ8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyM2Y4NDQ0NjJiM2ZiYTBkNzA4Y2QxZmVkZDlmN2VjMGMyYzA0MTMzfDB8ZHAtdGVhbWludGVybmV0MTJfM3BofDB8MA%3D%3D&kw=&search=&pcat=&rxid=&bucket=&clientID=&adtest=off
13.248.148.254200 OK 20 B URL HTTP/1.1 www1.oau.com/track.php?click=8bc5311fea51f5d88ad90580a49f43a22d8f5165&domain=oau.com&uid=MTY2OTA2MTY4MC44Nzg4OmM0NzI4MTcyZjljNjhkZGJlMDM0NjdhZDZkZjVjY2YyMDY1YjM0OWE2MjRlM2Q2NmE1MjQ5NzFlMTYyZGFmMmI6NjM3YmRjMzBkNjhjNA%3D%3D&ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTF8fHx8fHw2MzdiZGMzMGQ2OGE1fHx8MTY2OTA2MTY4MS4yMDA5fGYzMTNhYmQxNWM1MzJiOTc5NDBmMjFmOTAzMDcyNGRiZjE1N2QzOWZ8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyM2Y4NDQ0NjJiM2ZiYTBkNzA4Y2QxZmVkZDlmN2VjMGMyYzA0MTMzfDB8ZHAtdGVhbWludGVybmV0MTJfM3BofDB8MA%3D%3D&kw=&search=&pcat=&rxid=&bucket=&clientID=&adtest=off
IP 13.248.148.254:0
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /track.php?click=8bc5311fea51f5d88ad90580a49f43a22d8f5165&domain=oau.com&uid=MTY2OTA2MTY4MC44Nzg4OmM0NzI4MTcyZjljNjhkZGJlMDM0NjdhZDZkZjVjY2YyMDY1YjM0OWE2MjRlM2Q2NmE1MjQ5NzFlMTYyZGFmMmI6NjM3YmRjMzBkNjhjNA%3D%3D&ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTF8fHx8fHw2MzdiZGMzMGQ2OGE1fHx8MTY2OTA2MTY4MS4yMDA5fGYzMTNhYmQxNWM1MzJiOTc5NDBmMjFmOTAzMDcyNGRiZjE1N2QzOWZ8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyM2Y4NDQ0NjJiM2ZiYTBkNzA4Y2QxZmVkZDlmN2VjMGMyYzA0MTMzfDB8ZHAtdGVhbWludGVybmV0MTJfM3BofDB8MA%3D%3D&kw=&search=&pcat=&rxid=&bucket=&clientID=&adtest=off HTTP/1.1
Host: www1.oau.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.oau.com/?tm=1&subid4=1669061680.0285810000&KW1=Dedicated%20Gaming%20Servers&KW2=Get%20An%20Online%20Degree&KW3=Get%20An%20Online%20Degree&KW4=Social%20Media%20Automation%20Marketing%20Software&KW5=Best%20Mortgage%20Refinancing%20Rates&KW6=Online%20Career%20Counseling%20Programs&KW7=Elite%20Dating%20Service&KW8=B2B%20Travel%20Booking%20System&KW9=Lowest%20Car%20Insurance%20Rates&searchbox=0&backfill=0
HTTP/1.1 200 OK
Date: Mon, 21 Nov 2022 20:14:42 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-View-Match: true
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Access-Control-Allow-Origin: *
Content-Encoding: gzip
dipaka-ead.com/zcvisitor/21922903-69d9-11ed-b363-126c5a17dcb3/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=69448440-0fb4-11eb-bafe-0afaf647e889
3.208.247.235200 1.1 kB URL HTTP/1.1 dipaka-ead.com/zcvisitor/21922903-69d9-11ed-b363-126c5a17dcb3/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=69448440-0fb4-11eb-bafe-0afaf647e889
IP 3.208.247.235:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 16af328ebfa8b69cac54caaf1dddd013
0e16fad1d69e578582cfc43deb2b6594ebb5cb99
ebb66aaeaed52270af996d6eb5cc0f52fa5791ac8a2aef41ddcef30b8f5e4dd0
GET /zcvisitor/21922903-69d9-11ed-b363-126c5a17dcb3/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=69448440-0fb4-11eb-bafe-0afaf647e889 HTTP/1.1
Host: dipaka-ead.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.oau.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Date: Mon, 21 Nov 2022 20:14:42 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Server: BTPINyzt
dipaka-ead.com/zcredirect?visitid=21922903-69d9-11ed-b363-126c5a17dcb3&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
3.208.247.235200 748 B URL HTTP/1.1 dipaka-ead.com/zcredirect?visitid=21922903-69d9-11ed-b363-126c5a17dcb3&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
IP 3.208.247.235:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (331)
Hash b238f017736ce8c01cef9dc5fb87029f
0bc3057e0331ab63f67549d4b8f94bd519bf0d30
20d646bf756cb32146ac4a2c4ef02973cb904bc753564cc9fffc1eed2bd3e0a0
GET /zcredirect?visitid=21922903-69d9-11ed-b363-126c5a17dcb3&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false HTTP/1.1
Host: dipaka-ead.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dipaka-ead.com/zcvisitor/21922903-69d9-11ed-b363-126c5a17dcb3/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=69448440-0fb4-11eb-bafe-0afaf647e889
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Date: Mon, 21 Nov 2022 20:14:42 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
redirected: JS
Server: dRhMvINF
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 40bf63de8050e3daa5288a7de800a0aa
36e968f1628628f6e25f9cd6e50f46ebc4b8df8f
eadea6540d982ed6a3e66434a6fc7c894b45e86acd5c5774147562c636db6187
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4497
Cache-Control: max-age=109180
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 20:14:42 GMT
Etag: "637ad21d-1d7"
Expires: Wed, 23 Nov 2022 02:34:22 GMT
Last-Modified: Mon, 21 Nov 2022 01:19:25 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3b0a59bd9af47bc6cd7892ce5b3e23da
e56a2779ab4b59dcb557c4844ba40de238910ffb
464d67afa1c882a501c72133b65aa47ee1fb6647b3048553afa5ae42e7eeb5f8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2815
Cache-Control: max-age=93433
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 20:14:42 GMT
Etag: "637a9b2c-1d7"
Expires: Tue, 22 Nov 2022 22:11:55 GMT
Last-Modified: Sun, 20 Nov 2022 21:25:00 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
bit.ly/2zkHJsK?utm_content=november-kip-kppld8n8md&utm_keyword=dedicated+gaming+servers%2Cget+an+online+degree%2Csocial+media+automation+marketing+software%2Cbest+mortgage+refinancing+rates%2Conline+career+counseling+programs%2Celite+dating+service%2Cb2b+travel+booking+syste
67.199.248.10301 Moved Permanently 133 B URL HTTP/2 bit.ly/2zkHJsK?utm_content=november-kip-kppld8n8md&utm_keyword=dedicated+gaming+servers%2Cget+an+online+degree%2Csocial+media+automation+marketing+software%2Cbest+mortgage+refinancing+rates%2Conline+career+counseling+programs%2Celite+dating+service%2Cb2b+travel+booking+syste
IP 67.199.248.10:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash fac4f22819054b3bcc5318fbd82717e5
007e7754ba5b50b781cbcd63fc47142b2d7fba58
0a833b8649fca4d9cdc9d9ba7683ec8971f2a6538a64d5b658946331a7d4e931
GET /2zkHJsK?utm_content=november-kip-kppld8n8md&utm_keyword=dedicated+gaming+servers%2Cget+an+online+degree%2Csocial+media+automation+marketing+software%2Cbest+mortgage+refinancing+rates%2Conline+career+counseling+programs%2Celite+dating+service%2Cb2b+travel+booking+syste HTTP/1.1
Host: bit.ly
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dipaka-ead.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Mon, 21 Nov 2022 20:14:43 GMT
content-type: text/html; charset=utf-8
content-length: 133
cache-control: private, max-age=90
location: https://www.booking.com/index.html?aid=1858279
set-cookie: _bit=malkeH-f4d346d246eaa4ccc5-00h; Domain=bit.ly; Expires=Sat, 20 May 2023 20:14:43 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dipaka-ead.com/favicon.ico
3.208.247.235404 653 B URL HTTP/1.1 dipaka-ead.com/favicon.ico
IP 3.208.247.235:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (649), with no line terminators
Hash ba2732b1b2fa2626ffaa15f62f9e7d66
203d4e7fbb1d80449d6e4e1f3ae7a9bf8625debe
879861cb72fe9fbb476dab246021c4c83b4066327de2529e05ec54d3afb0a1c8
GET /favicon.ico HTTP/1.1
Host: dipaka-ead.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dipaka-ead.com/zcredirect?visitid=21922903-69d9-11ed-b363-126c5a17dcb3&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
HTTP/1.1 404
Date: Mon, 21 Nov 2022 20:14:43 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 653
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Content-Language: en
Server: tpRUOsiH
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 798ef0955be535268547903e74dacfcd
782823486f9ded693609cade264d1950e816f7d0
75df3810e787be95774282d4851ce350bba5c326843f1bd02348746355866e95
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "75DF3810E787BE95774282D4851CE350BBA5C326843F1BD02348746355866E95"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14893
Expires: Tue, 22 Nov 2022 00:22:56 GMT
Date: Mon, 21 Nov 2022 20:14:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 798ef0955be535268547903e74dacfcd
782823486f9ded693609cade264d1950e816f7d0
75df3810e787be95774282d4851ce350bba5c326843f1bd02348746355866e95
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "75DF3810E787BE95774282D4851CE350BBA5C326843F1BD02348746355866E95"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14893
Expires: Tue, 22 Nov 2022 00:22:56 GMT
Date: Mon, 21 Nov 2022 20:14:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 798ef0955be535268547903e74dacfcd
782823486f9ded693609cade264d1950e816f7d0
75df3810e787be95774282d4851ce350bba5c326843f1bd02348746355866e95
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "75DF3810E787BE95774282D4851CE350BBA5C326843F1BD02348746355866E95"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14893
Expires: Tue, 22 Nov 2022 00:22:56 GMT
Date: Mon, 21 Nov 2022 20:14:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 798ef0955be535268547903e74dacfcd
782823486f9ded693609cade264d1950e816f7d0
75df3810e787be95774282d4851ce350bba5c326843f1bd02348746355866e95
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "75DF3810E787BE95774282D4851CE350BBA5C326843F1BD02348746355866E95"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14893
Expires: Tue, 22 Nov 2022 00:22:56 GMT
Date: Mon, 21 Nov 2022 20:14:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 798ef0955be535268547903e74dacfcd
782823486f9ded693609cade264d1950e816f7d0
75df3810e787be95774282d4851ce350bba5c326843f1bd02348746355866e95
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "75DF3810E787BE95774282D4851CE350BBA5C326843F1BD02348746355866E95"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14893
Expires: Tue, 22 Nov 2022 00:22:56 GMT
Date: Mon, 21 Nov 2022 20:14:43 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F645dc32f-cd66-4021-92e9-77c4eff2fa1f.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F645dc32f-cd66-4021-92e9-77c4eff2fa1f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 96135f96986369533c0362367c1e6fd8
bc8b0612b79cb30817880fac9728318f837854b4
f4eab133baf21daae8b809966e8ffbe64a2414fd334538a226a2a39ab39c3d46
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F645dc32f-cd66-4021-92e9-77c4eff2fa1f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5045
x-amzn-requestid: a1d93586-2973-4156-8b59-a4be8bfb8cc4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b6x2zF6YoAMFazQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637a9691-7c6f10a850f8cbaa3065e39a;Sampled=0
x-amzn-remapped-date: Sun, 20 Nov 2022 21:05:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 8DDV0ZMws_Ta7xMvRiefhpDx6TuAynkYB-rX0KWpLtqq8HaW3Le0rA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sun, 20 Nov 2022 21:50:48 GMT
age: 80635
etag: "bc8b0612b79cb30817880fac9728318f837854b4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff64f225f-d92d-42e1-a0cd-0b9c89e36291.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff64f225f-d92d-42e1-a0cd-0b9c89e36291.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4a8070a1aa0d48b75c639fa24eec3d96
14a81b4e2bdcdcdd951aa6660dc640c0292a2109
70b29ce3872a0c46d8d0e61f2801df1a98c8ea6e516adb1c2fe1bdad35f654f6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff64f225f-d92d-42e1-a0cd-0b9c89e36291.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9042
x-amzn-requestid: 0bd8ae24-b687-4316-8af5-f9dc83c8d97a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b7ty7FrPIAMF3Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637af678-5fe271a8364a884a5f952619;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 03:54:32 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: f6irLwhMIC7KOVrudjGqGSqMHd67Izf_2ARgvjJvNFP_eJP4azhBIA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 8cb7de37a1655236518810d0aabb8656.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 04:32:21 GMT
age: 56542
etag: "14a81b4e2bdcdcdd951aa6660dc640c0292a2109"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 40bf63de8050e3daa5288a7de800a0aa
36e968f1628628f6e25f9cd6e50f46ebc4b8df8f
eadea6540d982ed6a3e66434a6fc7c894b45e86acd5c5774147562c636db6187
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4498
Cache-Control: max-age=109180
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 20:14:43 GMT
Etag: "637ad21d-1d7"
Expires: Wed, 23 Nov 2022 02:34:23 GMT
Last-Modified: Mon, 21 Nov 2022 01:19:25 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0e2c726b-e91a-4cf6-95b8-c267e110416c.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0e2c726b-e91a-4cf6-95b8-c267e110416c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a9e0f5c07511d0f6ad0f2441db92797d
2dcc6187d7173ce741975ad4ec24435c9dcb0880
3c57bf58bab9d54dd152eb0260a203b1cb201a9e2d960f25a0cea685b539ea04
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0e2c726b-e91a-4cf6-95b8-c267e110416c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5342
x-amzn-requestid: e396cea4-ddae-4b88-a73a-ceafb1e11620
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b0b91EMLoAMFYYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63780d25-7f1187713f288a0c158508ea;Sampled=0
x-amzn-remapped-date: Fri, 18 Nov 2022 22:54:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: PkFAourr7ixQ5NYcdMugerMxFTdCLgIAaBz6erANuppgzE2Tm4yVpA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 3236f234d59c0fda99b416088c283260.cloudfront.net (CloudFront), 1.1 google
date: Sun, 20 Nov 2022 21:55:58 GMT
age: 80325
etag: "2dcc6187d7173ce741975ad4ec24435c9dcb0880"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c8f6118fc03f31862ff68fef8a2b9a7f
318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73
cdd4d44f05cc524d7f2b1d6d792ecd8a9a933e52ecb7685a7d7ea786a510ef39
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8089
x-amzn-requestid: f3c55266-9b03-4b7f-b076-fdf56704318e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b0QQyECioAMFzdQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6377fa6b-3e10cef6117a10a4115cfce7;Sampled=0
x-amzn-remapped-date: Fri, 18 Nov 2022 21:34:35 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ngJvyUydpRDSiYy9kfeh8JmydmR_K8mjfZtGLgT0qeE2JaABbDMSaQ==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Sun, 20 Nov 2022 21:48:42 GMT
age: 80761
etag: "318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F308504cf-ed6b-4fb8-bc67-4165549bba4e.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F308504cf-ed6b-4fb8-bc67-4165549bba4e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 131cae0245e456c2497833b48cc1be0e
01b7bf2cfcdac73911dbd0a570d262978a43daf1
539cc2fdefb049df026b18d450c56d85b7821b8723ea0070efa460096669576e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F308504cf-ed6b-4fb8-bc67-4165549bba4e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7996
x-amzn-requestid: af3a6545-f0ad-40de-b1f6-56b9607242f4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1BvREKZoAMFzDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63784994-2659c8ec5fc04c510ea0e643;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 03:12:20 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: UU9m-kzHM4oKCHNiK2q4NWftsCueXeiBpJkk0cDv3et4v3MpF6eCtQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 f268a165a18929fd0a24a3189fbd16b2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 12:56:19 GMT
age: 26304
etag: "01b7bf2cfcdac73911dbd0a570d262978a43daf1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb19c1a99-6290-4f30-afcf-c426abf8c229.png
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb19c1a99-6290-4f30-afcf-c426abf8c229.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 907cdf495815b066cbeaccd9c862c544
6082de99b599bc3c9ce14e2641a2bf60f9f187d8
fbccb495391bba54b463e8c4eaf3207af00b098c4b5f816011d240257aa56f6c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb19c1a99-6290-4f30-afcf-c426abf8c229.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11562
x-amzn-requestid: f01b0409-b43d-4d9c-92c0-0023c5e49d58
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b3jV_GDmIAMFvqA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63794c26-69366c73760dcd5b72634f73;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 21:35:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: pvgyUJPVgG_PrCetQXIXLgxyEBar2nMFywc6HracpnEsn2tiCw_Pfg==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 20 Nov 2022 21:23:41 GMT
age: 82262
etag: "6082de99b599bc3c9ce14e2641a2bf60f9f187d8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3b0a59bd9af47bc6cd7892ce5b3e23da
e56a2779ab4b59dcb557c4844ba40de238910ffb
464d67afa1c882a501c72133b65aa47ee1fb6647b3048553afa5ae42e7eeb5f8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2816
Cache-Control: max-age=93433
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 20:14:43 GMT
Etag: "637a9b2c-1d7"
Expires: Tue, 22 Nov 2022 22:11:56 GMT
Last-Modified: Sun, 20 Nov 2022 21:25:00 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 55510f5b16bce3e8e9bb906da72f5832
099f9d2e9b33c0a572be8c0f6ee84268ba060706
7502302d436e3a337ed2b151dc44d5d9efebed9b71ba30678e10c9fb3e89dfdf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6130
Cache-Control: max-age=128809
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 20:14:43 GMT
Etag: "637b186a-118"
Expires: Wed, 23 Nov 2022 08:01:32 GMT
Last-Modified: Mon, 21 Nov 2022 06:19:22 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 280
cf.bstatic.com/static/js/crossorigin_check_cloudfront_sd/2454015045ef79168d452ff4e7f30bdadff0aa81.js
143.204.55.13200 OK 95 B URL HTTP/2 cf.bstatic.com/static/js/crossorigin_check_cloudfront_sd/2454015045ef79168d452ff4e7f30bdadff0aa81.js
IP 143.204.55.13:0
File type ASCII text, with no line terminators
Hash 335be8900580e9c3875dba57334294ae
a86597d2ddfa410df13bceca86fdf9a2291fe798
8a882fd19a15567e53a5c3c08d22cdab714fa87734ed92d854c4e8fdf3940b1f
GET /static/js/crossorigin_check_cloudfront_sd/2454015045ef79168d452ff4e7f30bdadff0aa81.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 95
server: nginx
date: Thu, 10 Nov 2022 02:09:12 GMT
last-modified: Wed, 10 Apr 2019 11:21:38 GMT
etag: "5cadd1c2-5f"
expires: Sat, 10 Dec 2022 02:09:12 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -lDgLvoky2Zb5MPQvKRFi8aAL116df4sAKW88Mf4ysr_vvsOSgxp6A==
age: 1015531
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/OtAutoBlock.js
104.16.148.64200 OK 6.7 kB URL HTTP/2 cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/OtAutoBlock.js
IP 104.16.148.64:0
File type ASCII text, with very long lines (37276)
Hash 7a162a3385ec2f2fbe0be1fdd55afde3
5a37630a30526266cdaa387a32f50f20bae5ffd3
f6143442002776683e3fe10ee2b1aa2fa3d3fba2e491ea7eb1044591adb8c515
GET /consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/OtAutoBlock.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 21 Nov 2022 20:14:43 GMT
content-type: application/x-javascript
content-length: 6671
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: ehYqM4XsLy++C+H91Vr94w==
last-modified: Tue, 15 Nov 2022 08:52:50 GMT
etag: 0x8DAC6E6C6719C76
x-ms-request-id: e8023ecf-a01e-001f-7acf-f803f6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 40883
expires: Tue, 22 Nov 2022 20:14:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76dc17e2bd641c0a-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/otSDKStub.js
104.16.148.64200 OK 7.2 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP 104.16.148.64:0
File type ASCII text, with very long lines (21747)
Hash 1cdc786dd1264609f9834f4aba53e2ef
fff15e833ab27c356e7723dce3441e194b6350bf
70768bac474def6b0ed3e517083dd9c2f1ae3f0fe714ea550c406ce89906adc9
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 20:14:43 GMT
content-type: application/javascript
content-length: 7151
content-encoding: gzip
content-md5: HNx4bdEmRgn5g09KulPi7w==
last-modified: Wed, 16 Nov 2022 03:30:08 GMT
etag: 0x8DAC782DC96F3AF
x-ms-request-id: a6a8bb9a-001e-017b-7619-faf503000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 66321
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76dc17e2ed9a1c0a-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/3ea94870-d4b1-483a-b1d2-faf1d982bb31.json
104.16.148.64200 OK 2.0 kB URL HTTP/2 cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/3ea94870-d4b1-483a-b1d2-faf1d982bb31.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (6106), with no line terminators
Hash 4acf7b6f3db453590fd5bbef69949a64
6a8b9148768a6af49e7a183b47f42a5b33569aa9
1e57187427b702038984f5c48618b51ff94617bd43cc7d340bd7411b5334aa03
GET /consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/3ea94870-d4b1-483a-b1d2-faf1d982bb31.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 20:14:43 GMT
content-type: application/x-javascript
content-length: 1970
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: Ss97bz20U1kP1bvvaZSaZA==
last-modified: Tue, 15 Nov 2022 08:52:49 GMT
etag: 0x8DAC6E6C63E85AD
x-ms-request-id: 2535b6f6-b01e-0000-52cf-f8d8e6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 40883
expires: Tue, 22 Nov 2022 20:14:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76dc17e34e1f1c0a-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 68abe1b15b48f9400c5171687e6d4ae7
16ca30a677567a2fddeb441546f6c986ba6da9c5
f2e42c1c85ae0f93c8b78f7ab4d5280effc43c3f061d6c5dadc6326e839b27c8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4389
Cache-Control: max-age=147578
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 20:14:43 GMT
Etag: "637b6888-118"
Expires: Wed, 23 Nov 2022 13:14:21 GMT
Last-Modified: Mon, 21 Nov 2022 12:01:12 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 280
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
104.18.27.85200 OK 76 kB URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP 104.18.27.85:0
File type JSON data\012- , ASCII text, with very long lines (65383)
Hash 6f7776ece73f2f9cb9a7eba09bee007f
304bd2cd78d2de2979fff9e0990414692337872e
0a54b06a33e899b82f81910bdffa921b09305aab450209d1abcce0541bf35a61
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 21 Nov 2022 20:14:43 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 76dc17e3ad52fac4-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/e1b8f75b-db25-46d6-8a45-749ed6c3e64c/en-us.json
104.16.148.64200 OK 18 kB URL HTTP/2 cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/e1b8f75b-db25-46d6-8a45-749ed6c3e64c/en-us.json
IP 104.16.148.64:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65508), with no line terminators
Hash bbca25f8e0afc65c235d5e701bdf08d9
b8a6c7c2a0081ae9dc7f50d3e6e29994fa1b3bf4
e8a079b3f468ad274075e4ede5b2e541bcad8e1389c0d2c0170af9a431bbed44
GET /consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/e1b8f75b-db25-46d6-8a45-749ed6c3e64c/en-us.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 20:14:43 GMT
content-type: application/x-javascript
content-length: 18041
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: u8ol+OCvxlwjXV5wG98I2Q==
last-modified: Tue, 15 Nov 2022 08:53:09 GMT
etag: 0x8DAC6E6D1C3CDC4
x-ms-request-id: afe69279-601e-008a-73cf-f862c5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 40862
expires: Tue, 22 Nov 2022 20:14:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76dc17e478371c0a-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.22.0/assets/otFlat.json
104.16.148.64200 OK 3.0 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.22.0/assets/otFlat.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (10843)
Hash 792fef665863081a7642f10bc7b22b49
f30de5899ad8675a26c5a1688c543e7044bce0ab
af415b02ce1afa491d86bd1fafa2416302d69906ded37715ca425b6778cd7d9c
GET /scripttemplates/6.22.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 20:14:43 GMT
content-type: application/json
content-length: 2950
content-encoding: gzip
content-md5: eS/vZlhjCBp2QvELx7IrSQ==
last-modified: Thu, 19 Aug 2021 02:39:10 GMT
etag: 0x8D962BA867F281F
x-ms-request-id: 1ab7d2f4-a01e-003d-026c-c46dc0000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 65796
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76dc17e4d8f71c0a-OSL
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/736.efc019bd.chunk.css
143.204.55.13200 OK 851 B URL HTTP/2 cf.bstatic.com/psb/capla/static/css/736.efc019bd.chunk.css
IP 143.204.55.13:0
File type ASCII text, with very long lines (737)
Hash 8c5c3443c3df14446e77dee5cad05769
0effbb1c48b73b93121ffa4d63bdf1af2a0bb8c4
daaafa4e355363ce4a9b42257a10160d18d17a22f38f159990e289fe07ace87d
GET /psb/capla/static/css/736.efc019bd.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 851
server: nginx
date: Thu, 17 Nov 2022 11:23:05 GMT
etag: "8c5c3443c3df14446e77dee5cad05769"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Thu, 17 Nov 2022 11:13:07 GMT
x-amz-expiration: expiry-date="Fri, 17 Mar 2023 11:13:07 GMT", rule-id=""
expires: Sat, 17 Dec 2022 11:23:05 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: THGikxrt3wtq3q5bSfTpF6oh8OQh7qLki-bB_aaopCMpst4yBKcuuw==
age: 377499
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/541.60bd0f47.chunk.css
143.204.55.13200 OK 349 B URL HTTP/2 cf.bstatic.com/psb/capla/static/css/541.60bd0f47.chunk.css
IP 143.204.55.13:0
Hash 3463768f1eada6681938129f4ac1f0cd
0e94fd7afdcf474745329e76795462278d22fb79
9ce1783fb0eb2bffa218d02d92cd320087f6bb3132dbf1e20b3443a87306412b
GET /psb/capla/static/css/541.60bd0f47.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 349
server: nginx
date: Tue, 08 Nov 2022 00:02:21 GMT
etag: "3463768f1eada6681938129f4ac1f0cd"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Tue, 01 Nov 2022 10:18:55 GMT
x-amz-expiration: expiry-date="Wed, 01 Mar 2023 10:18:55 GMT", rule-id=""
expires: Thu, 08 Dec 2022 00:02:21 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: eRvdg4bhWihnLeM80S1CJA9Va0jO3Lb6Sqyx37ld1Az0SN4rttaSdQ==
age: 1195943
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/us/fa2b2a0e643c840152ba856a8bb081c7ded40efa.png
143.204.55.13200 OK 642 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/us/fa2b2a0e643c840152ba856a8bb081c7ded40efa.png
IP 143.204.55.13:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 41a0e840aa47c87e19d2bfe0b1231c3f
b5f588ca91fc9e67b5ea658c5ff943b0639e57b9
a333d02eedde7a4dd8643d58b0ea7947268a1762f35f517eb6000ec9e7fcfae8
GET /static/img/flags/new/48-squared/us/fa2b2a0e643c840152ba856a8bb081c7ded40efa.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 642
server: nginx
date: Sun, 13 Nov 2022 07:27:58 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-282"
expires: Tue, 13 Dec 2022 07:27:58 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4IEthjVfiFIZtNOaH-jFZaPdKW7KuZhpKC-jpWagl4V4wExCdtASLQ==
age: 737206
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/gb/daba79fdd4066d133e8bf59070fd6819b951c403.png
143.204.55.13200 OK 522 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/gb/daba79fdd4066d133e8bf59070fd6819b951c403.png
IP 143.204.55.13:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 925ee33071ef712bda608ef3bf50ef13
c7d8844e68d5c9bc0294dc5a69f8550c6d6d39d5
996b0e99fcc7a553eac6f51569be5429b1bf8c071a708289fab808d7660cf74c
GET /static/img/flags/new/48-squared/gb/daba79fdd4066d133e8bf59070fd6819b951c403.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 522
server: nginx
date: Sun, 30 Oct 2022 03:39:07 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-20a"
expires: Tue, 29 Nov 2022 03:39:07 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: y8VmXsCeMw9RkosVQdbIv6eF2uXAad8zzi34-NFLxOZAOcey0IOinQ==
age: 1960537
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/bui-react.6e7f4ac5.css
143.204.55.13200 OK 17 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/bui-react.6e7f4ac5.css
IP 143.204.55.13:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 2449267df53be397db17f45c8fe63770
ffed489a0a9ce9041418b27afedb2922f5805825
589bb83efd61534da906dd0f8046f3f4b930dde308725a6074436e25663a7cfe
GET /psb/capla/static/css/bui-react.6e7f4ac5.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Sat, 19 Nov 2022 10:15:54 GMT
etag: W/"83b26f9b1ebc7024b4c245b4b05a6c2c"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 18 Nov 2022 17:51:33 GMT
x-amz-expiration: expiry-date="Sat, 18 Mar 2023 17:51:33 GMT", rule-id=""
expires: Mon, 19 Dec 2022 10:15:54 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hifq8JT9wGSoEzmRAIL14RP1kfR0tJFB8ui84W-nDIzHTfJDTTKZBQ==
age: 208730
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.22.0/assets/otCommonStyles.css
104.16.148.64200 OK 6.7 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.22.0/assets/otCommonStyles.css
IP 104.16.148.64:0
Hash 89fa09993e89cd8f19cc066f6a5f9a15
d423e47aa01a85a66c7ebec3b53c28b7526433d4
84d64d59d3b78155fede318b06a576677e5be6a5148812e6b64c68559ad74289
GET /scripttemplates/6.22.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 20:14:43 GMT
content-type: text/css
content-md5: F/Fs54+x9bQK/ULkNRp4fA==
last-modified: Thu, 19 Aug 2021 02:39:24 GMT
x-ms-request-id: 6bc20948-001e-0159-656c-c49b35000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 66257
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76dc17e4d8fb1c0a-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/fr/c48bc65c9dc57035fa983df37e9732c0f0a2663f.png
143.204.55.13200 OK 153 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/fr/c48bc65c9dc57035fa983df37e9732c0f0a2663f.png
IP 143.204.55.13:0
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash d61a768803223e8ecabed2277992e21a
bfd3ddcedb47e691ce233c863d782f0ac7e2e414
8c823b6fe7ed7a0af5f592357f0512e43a86813159f095e7292489ba86c1e6d6
GET /static/img/flags/new/48-squared/fr/c48bc65c9dc57035fa983df37e9732c0f0a2663f.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 153
server: nginx
date: Fri, 28 Oct 2022 14:12:05 GMT
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
etag: "5f560e08-99"
expires: Sun, 27 Nov 2022 14:12:05 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5LuxqFGd8_DLcnKv2o7kinA4RtXoxyBseOu-zCP0p_X5vQrMCcQ6pA==
age: 2095359
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/es/b3bd4690290a78b1303198dd6576bdab8d7f9a80.png
143.204.55.13200 OK 913 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/es/b3bd4690290a78b1303198dd6576bdab8d7f9a80.png
IP 143.204.55.13:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash bf945804423b44b5acd2942719e4baf1
a94db5335a984d9b8633cbcdb22137bac8b4284b
2b311f37975788c34490b9fbd42602b3c2eb24bb87c1d7f4fc7fce70a230815f
GET /static/img/flags/new/48-squared/es/b3bd4690290a78b1303198dd6576bdab8d7f9a80.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 913
server: nginx
date: Fri, 04 Nov 2022 05:32:48 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-391"
expires: Sun, 04 Dec 2022 05:32:48 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LeLz7o7jLq30BIhf5sqZw4j6fohg4oIU_GnHalY3KpIwWvLlWiEmLg==
age: 1521716
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/534.70efe2e7.chunk.css
143.204.55.13200 OK 3.6 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/534.70efe2e7.chunk.css
IP 143.204.55.13:0
File type ASCII text, with very long lines (4621)
Hash b40c2ad047c03ad8a34022cdaf38c039
ef75650ad114ddf17082b2ccfb714b38fb185277
043da2fcb3107d85546e830f5d5180c76d92c1a4985712782640675c7a511fc3
GET /psb/capla/static/css/534.70efe2e7.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Wed, 16 Nov 2022 16:58:56 GMT
etag: W/"17157b144e513da0e20a426bb19ec6d0"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Wed, 16 Nov 2022 16:44:33 GMT
x-amz-expiration: expiry-date="Thu, 16 Mar 2023 16:44:33 GMT", rule-id=""
expires: Fri, 16 Dec 2022 16:58:56 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: J5eNNzaWrCGOc8r6zn7nVq5GIhx8S68ep5XlxPurmLwy3foSFdXRtQ==
age: 443748
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/797.48bb97ad.chunk.css
143.204.55.13200 OK 2.3 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/797.48bb97ad.chunk.css
IP 143.204.55.13:0
File type ASCII text, with very long lines (4621)
Hash 0b3387790240dd19c05521676caabf75
3f18d582be3b85dfe83b4efa3a1f7d11aaf9083c
1016daff268fa1ce47f4f4f4f4b4453d43545d832f5788e1db13a61f0903e09c
GET /psb/capla/static/css/797.48bb97ad.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Wed, 16 Nov 2022 16:58:33 GMT
etag: W/"9a273214635022cb07ffef0733c38760"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Wed, 16 Nov 2022 16:44:33 GMT
x-amz-expiration: expiry-date="Thu, 16 Mar 2023 16:44:33 GMT", rule-id=""
expires: Fri, 16 Dec 2022 16:58:33 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jeQ4OE4Li4e_oBvz67uzSfGbBxRA5jSk8lPSctYA_MNFSe5xHRmcmA==
age: 443771
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/970.721cecb4.chunk.css
143.204.55.13200 OK 1.5 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/970.721cecb4.chunk.css
IP 143.204.55.13:0
File type ASCII text, with very long lines (4572)
Hash ae3deaf67050606a7e9cf1ab8fe86cfe
517a8575bef4cca86cb8f9a1654c87f6112dd43e
78678de9edc2ab4f81b692926761f85373ec7e530c99bc622a7d87bbca5275af
GET /psb/capla/static/css/970.721cecb4.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Wed, 16 Nov 2022 16:58:33 GMT
etag: W/"df456f141a90ddb7c3cdf16e7b2812a3"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Wed, 16 Nov 2022 16:44:33 GMT
x-amz-expiration: expiry-date="Thu, 16 Mar 2023 16:44:33 GMT", rule-id=""
expires: Fri, 16 Dec 2022 16:58:33 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8r7MvU84ZHM0Feexx8LdcC35c1KuDmH60k0ERZyQFxmAZi_LzYeE6A==
age: 443771
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/it/b8db3771480bd0c7971b9f94cad3640c89521882.png
143.204.55.13200 OK 153 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/it/b8db3771480bd0c7971b9f94cad3640c89521882.png
IP 143.204.55.13:0
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 4261fd05fa4ff2f6b27961be52f72502
30b359e2111f9509e89b4740af3aa6be24fcc812
861f2142293eb28de2c5f7c6f0035847ae176dc02470bfa7fbb157bf2b89339d
GET /static/img/flags/new/48-squared/it/b8db3771480bd0c7971b9f94cad3640c89521882.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 153
server: nginx
date: Wed, 26 Oct 2022 23:59:24 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-99"
expires: Fri, 25 Nov 2022 23:59:24 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: u8XlKeZorZNKf2J261XiuAgBKVLW0tWn-e_Ik4WBDv83WzirdDqHVg==
age: 2232920
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/pt/6542345c7408e3bd0d4c2e8f38d4396bba9b0e69.png
143.204.55.13200 OK 1.2 kB URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/pt/6542345c7408e3bd0d4c2e8f38d4396bba9b0e69.png
IP 143.204.55.13:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash fc9f3351718ecc0c40483fcc805b7004
24aad85601f4ed40c3cd66921a4d12d965855c13
06ee7ee0128fbc6c5700382476bf91e704ca66f00c2dc2f99fd5b00da0c3fd64
GET /static/img/flags/new/48-squared/pt/6542345c7408e3bd0d4c2e8f38d4396bba9b0e69.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1179
server: nginx
date: Mon, 31 Oct 2022 23:43:25 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-49b"
expires: Wed, 30 Nov 2022 23:43:25 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LrNrbwZsMpyNVpHSK4MPXyAFq02ejnFE32VftVW-sc3oN1uD2jDEZg==
age: 1801879
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/br/0cf5e55d996fdcf96a2d31733addf5c10bad1f74.png
143.204.55.13200 OK 717 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/br/0cf5e55d996fdcf96a2d31733addf5c10bad1f74.png
IP 143.204.55.13:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 26d9170b24250c48a61e05da682d06ee
42c33ea1b9376b9fb627d44fc56822672d5c0ac7
6873da5317b00141936efa7ff6b53e80aa1323ccff9c6a89f846534b725225b0
GET /static/img/flags/new/48-squared/br/0cf5e55d996fdcf96a2d31733addf5c10bad1f74.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 717
server: nginx
date: Mon, 31 Oct 2022 03:36:37 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-2cd"
expires: Wed, 30 Nov 2022 03:36:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zWAr1bpSZTf4rJUiriotWG_8bd1M6j9hDGQSZMzOcSmC4seZNZxTcg==
age: 1874287
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/no/827be8d24af5667778b4bc651fe03f738a812b60.png
143.204.55.13200 OK 266 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/no/827be8d24af5667778b4bc651fe03f738a812b60.png
IP 143.204.55.13:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash ff013df9d8ed912796746aacd4cb18b9
e6bdb0e3516c2edbe53af0157b7db7ed08b7b376
c9b9d24d817a48351e24f4e5499e96a69d1cb8d783f57c9bdd1747cee64e50d8
GET /static/img/flags/new/48-squared/no/827be8d24af5667778b4bc651fe03f738a812b60.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 266
server: nginx
date: Thu, 10 Nov 2022 00:56:19 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-10a"
expires: Sat, 10 Dec 2022 00:56:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _NENyWo3pz1BXCeV7vUFnkdUXBpsldSx2xposbVM3obTsYKcjn3YcA==
age: 1019905
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/fi/465d3b73ff07d1d696cb5dd26fbb91097c175e1b.png
143.204.55.13200 OK 206 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/fi/465d3b73ff07d1d696cb5dd26fbb91097c175e1b.png
IP 143.204.55.13:0
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 9a822a64512f9ddc675a4225c98c7a3c
53f9de2996c049705b7f67f3e6b644e4e665b3bc
10b4eec5fd4c999a3d217c78ad0037396263602c5ad035613063a2b147231318
GET /static/img/flags/new/48-squared/fi/465d3b73ff07d1d696cb5dd26fbb91097c175e1b.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 206
server: nginx
date: Sun, 06 Nov 2022 07:35:27 GMT
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
etag: "5f560e08-ce"
expires: Tue, 06 Dec 2022 07:35:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qZUnEbarR_TWQZYHs1Jle3lnhO9B1wGlmoiKAm11_a1ewvwfeKb5Gg==
age: 1341557
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/579.534ee6de.chunk.css
143.204.55.13200 OK 4.9 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/579.534ee6de.chunk.css
IP 143.204.55.13:0
File type ASCII text, with very long lines (5711)
Hash 5414bfe06e8a5524bd2dc5bf80723128
92254321fe123888230200420dbd2e90a6d8ba29
7627e038e12d550aefe00df98733fdafb6338e1ee501fb0a11dd0a107d7902ef
GET /psb/capla/static/css/579.534ee6de.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Sat, 12 Nov 2022 04:03:16 GMT
etag: W/"694ab61c354e799838488c1253971703"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Thu, 03 Nov 2022 14:56:30 GMT
x-amz-expiration: expiry-date="Fri, 03 Mar 2023 14:56:30 GMT", rule-id=""
expires: Mon, 12 Dec 2022 04:03:16 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: MGQjbkeMU_b9q5di2HxN-gE861BHvIx_SWlH9OM7BgW2OLz4PntB5A==
age: 835888
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/dk/744575dd4e87590a543b7c8cbacaef6c3de4e4d2.png
143.204.55.13200 OK 175 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/dk/744575dd4e87590a543b7c8cbacaef6c3de4e4d2.png
IP 143.204.55.13:0
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 3275f76ec51c7d87571ef5a5f3e6ddea
995f9025c29c6ab965c3a29af50ae25c9a390ab0
a60eac8ef0e0d0dddef152891451b215d955373071d2bd32db7d4b2053fbaf08
GET /static/img/flags/new/48-squared/dk/744575dd4e87590a543b7c8cbacaef6c3de4e4d2.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 175
server: nginx
date: Sun, 06 Nov 2022 07:35:27 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-af"
expires: Tue, 06 Dec 2022 07:35:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bXAeTiM_SqMrCntpCKvCr4Br8b3j-tcgfjrjSI88Z-1AL31L-fiMRg==
age: 1341557
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/cz/32002e60fead55ce886ff9827dfcf4af8cf4e277.png
143.204.55.13200 OK 342 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/cz/32002e60fead55ce886ff9827dfcf4af8cf4e277.png
IP 143.204.55.13:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 20b632d22c7839d87dd7ab7628839ee7
e9d3232561f2812c02b6fb4e33251aaf620cd40b
ad11693269039a9a7ded88cb46a03eb85ee6f4cf29fa76376ba32c5dd9eb6612
GET /static/img/flags/new/48-squared/cz/32002e60fead55ce886ff9827dfcf4af8cf4e277.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 342
server: nginx
date: Wed, 02 Nov 2022 07:19:50 GMT
last-modified: Mon, 07 Sep 2020 10:40:09 GMT
etag: "5f560e09-156"
expires: Fri, 02 Dec 2022 07:19:50 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 64t4pkfg6JsCAu7H_eC_2Z9W53xn6ZqjQv98lhbNGOr9gKPCc9eGKg==
age: 1688094
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/hu/fc7cb24c5c7cb9de74a74fad271d6838daabc4cb.png
143.204.55.13200 OK 133 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/hu/fc7cb24c5c7cb9de74a74fad271d6838daabc4cb.png
IP 143.204.55.13:0
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 9206b6715881ae75735ed659e808e94f
eed3ea9303a65b3b7f64f73d1a8499373aa26c0b
70c5cf7c80ec64caf926271a8832ca79342bd1d9203bae584f8c441aee10ddf0
GET /static/img/flags/new/48-squared/hu/fc7cb24c5c7cb9de74a74fad271d6838daabc4cb.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 133
server: nginx
date: Fri, 28 Oct 2022 03:46:42 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-85"
expires: Sun, 27 Nov 2022 03:46:42 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zexLEqgch9dCHsDPxtDLZDHtjlrFk-qo4Mxyu9MfcDcuDZiwrWVYog==
age: 2132882
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/ro/2d67b91f7beb87bd9286975da3e6dadc70d9c64b.png
143.204.55.13200 OK 153 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/ro/2d67b91f7beb87bd9286975da3e6dadc70d9c64b.png
IP 143.204.55.13:0
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 1b1f1d1d57a2cd65c38748ed1e165aa7
58f0710ccff2655b04eb6ed0a2c86ec64eea5223
881978c2d219d2d9e3f0c5584e489e06e1948d0b4f9c5d7d3104a61ddb2e7372
GET /static/img/flags/new/48-squared/ro/2d67b91f7beb87bd9286975da3e6dadc70d9c64b.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 153
server: nginx
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Wed, 02 Nov 2022 16:02:43 GMT
expires: Fri, 02 Dec 2022 16:02:43 GMT
cache-control: max-age=2592000
etag: "5f55f887-99"
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: pVfqBUfherGPxgc0J2sWQ9pmiiBjlIB52uVCVfdF8hHIihrNepqd6Q==
age: 1656721
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/jp/9bf7e50bc6dc66599aeede9189ca16de461c60b6.png
143.204.55.13200 OK 333 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/jp/9bf7e50bc6dc66599aeede9189ca16de461c60b6.png
IP 143.204.55.13:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 0430ec4fbfa9c9d0c02e4040873de949
6f5a96e43c5665af451ae5b0448ed5a7113e40d9
ee8b36adb5cbd88a5819e742a813ae397ace8c319861ad8aa4d9caaae90812a0
GET /static/img/flags/new/48-squared/jp/9bf7e50bc6dc66599aeede9189ca16de461c60b6.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 333
server: nginx
date: Sun, 06 Nov 2022 02:04:04 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-14d"
expires: Tue, 06 Dec 2022 02:04:04 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: aMQo0h2ZGZkXEJJz7ze1JUlQPeOtAh2y9ZOZLGBfAfOkPQGQ96cmWQ==
age: 1361440
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/cn/5a221730f540facc62563bfa6192ce155a9f677e.png
143.204.55.13200 OK 332 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/cn/5a221730f540facc62563bfa6192ce155a9f677e.png
IP 143.204.55.13:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash a12df81751d392f648a2785d2de72a05
39156191b034cde7e591faa6677153fae77e6770
3e3cbba48022f930c07d6bdea530464cca93dd1c5473c2e75548cabd56c3d5bc
GET /static/img/flags/new/48-squared/cn/5a221730f540facc62563bfa6192ce155a9f677e.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 332
server: nginx
date: Sat, 29 Oct 2022 06:04:22 GMT
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
etag: "5f560e08-14c"
expires: Mon, 28 Nov 2022 06:04:22 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _D4rTryStMdCqRaXQ4ijZZMIintYMh1FqE0jfD4rSvH4E7cXKLZP9A==
age: 2038222
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/z4/ced4751e6ac2cbb9884a5878fff59a4e24c3e386.png
143.204.55.13200 OK 547 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/z4/ced4751e6ac2cbb9884a5878fff59a4e24c3e386.png
IP 143.204.55.13:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash b20acca9869722ee22594c1cb79aa80c
8547e31b2cb93793703caa352c4cc7c08daf9f39
b93aa481a175851c5691c27239100c897b7e42e2d06c19df05f9b5de422fde26
GET /static/img/flags/new/48-squared/z4/ced4751e6ac2cbb9884a5878fff59a4e24c3e386.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 547
server: nginx
date: Tue, 01 Nov 2022 02:50:25 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-223"
expires: Thu, 01 Dec 2022 02:50:25 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 85VVdZ0Q8P8xR9LALksNVc6NfTwuWsRv8TFstPJzc-f8z6YZ3rgWEQ==
age: 1790659
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/pl/4d6b6e962b0b049a03924fc618b959395d60ae39.png
143.204.55.13200 OK 121 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/pl/4d6b6e962b0b049a03924fc618b959395d60ae39.png
IP 143.204.55.13:0
File type PNG image data, 48 x 48, 2-bit colormap, non-interlaced\012- data
Hash f5426bca09243b610e38d3c14e677064
e2ab7e2d6380dc421aa64648c11ddab3b2233e49
2f404d211c6a0c69dcac5b38ae18a1fc57840c4bd330b1bd64def6bf8b748d64
GET /static/img/flags/new/48-squared/pl/4d6b6e962b0b049a03924fc618b959395d60ae39.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 121
server: nginx
date: Tue, 01 Nov 2022 20:31:41 GMT
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
etag: "5f560e08-79"
expires: Thu, 01 Dec 2022 20:31:41 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: z486lt7DCjwKallSyaBKtW0KdfcwHIOSUYm0TsMbBiT7sw27Mne9Zg==
age: 1726983
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/gr/e0e42a97a7b860fc9be71954262902f2a4e94aa6.png
143.204.55.13200 OK 215 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/gr/e0e42a97a7b860fc9be71954262902f2a4e94aa6.png
IP 143.204.55.13:0
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 0c3be548c24fe302a6765670af14cb20
b14e18e90b32ec75ee248f748dee5aa6d7609822
84b0beb08ce848e9e03e1e2ef34d5cb421a429661bb837750a1c37cb44b05145
GET /static/img/flags/new/48-squared/gr/e0e42a97a7b860fc9be71954262902f2a4e94aa6.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 215
server: nginx
date: Thu, 27 Oct 2022 04:14:59 GMT
last-modified: Mon, 07 Sep 2020 10:40:09 GMT
etag: "5f560e09-d7"
expires: Sat, 26 Nov 2022 04:14:59 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: BRwPtYDnoPDjUIuO0ndkyaNMOPeXiYdHqYEENVPdtxPaZFV02vOITg==
age: 2217585
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/ru/2277320023a64803843c36ca6aa48ad77523dd0d.png
143.204.55.13200 OK 139 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/ru/2277320023a64803843c36ca6aa48ad77523dd0d.png
IP 143.204.55.13:0
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash e788f0359c4ebb5d12da0db2e46b5cae
7ef0e8f52982a8fe7a25e27011fca7716231a52b
6f71c4adcbf4ee888f31ee757fd52cdb61881a9aca9f8a571c00470df055185c
GET /static/img/flags/new/48-squared/ru/2277320023a64803843c36ca6aa48ad77523dd0d.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 139
server: nginx
date: Wed, 02 Nov 2022 08:23:58 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-8b"
expires: Fri, 02 Dec 2022 08:23:58 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RlWWI__pAgUdd1EHXt5gmiZb9zzYLP5b8BatxjwvsMaVrAQIws5ncw==
age: 1684246
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/tr/f7ad0cb74f4ea5e7193cb6029c7f977e9786cfa2.png
143.204.55.13200 OK 400 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/tr/f7ad0cb74f4ea5e7193cb6029c7f977e9786cfa2.png
IP 143.204.55.13:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 87321ae6e71b9b09c681058e91a468b5
3fb7872894da2daef6f66e73d8fd2f7b78b3b533
2c1c4611b00fa1da5b4cf45ac2c7d25744c4bf0897fab2e00833ff0aefdf5023
GET /static/img/flags/new/48-squared/tr/f7ad0cb74f4ea5e7193cb6029c7f977e9786cfa2.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 400
server: nginx
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sun, 23 Oct 2022 01:42:08 GMT
expires: Tue, 22 Nov 2022 01:42:08 GMT
cache-control: max-age=2592000
etag: "5f55f887-190"
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7F1JijwrKt3wvIhn_O8BbhJWR9iQGkZM43Dq8MgxYanmzUmeZvMgcw==
age: 2572356
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/bg/540f2da5fee31b7385af127619ab5ca4fc3783b5.png
143.204.55.13200 OK 99 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/bg/540f2da5fee31b7385af127619ab5ca4fc3783b5.png
IP 143.204.55.13:0
File type PNG image data, 48 x 48, 2-bit colormap, non-interlaced\012- data
Hash 49c081307e8d5ea32a47fb077905f2de
7b0a263172247879fd6255ab19f26aa45695f380
7ea8e075feac7c0c8a0cdecdf923fdab30b1b0d13336af312484b4f73b926dd9
GET /static/img/flags/new/48-squared/bg/540f2da5fee31b7385af127619ab5ca4fc3783b5.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 99
server: nginx
date: Mon, 31 Oct 2022 03:36:37 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-63"
expires: Wed, 30 Nov 2022 03:36:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Zpdw4yN4kMx2aBsJUiCNhSd59vd3Mk2eQIzjmh6pqxwe73pjUfh-5g==
age: 1874287
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/sa/44ab510f37755d1d9d4c4dfa9b1f25bed9b2a95c.png
143.204.55.13200 OK 534 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/sa/44ab510f37755d1d9d4c4dfa9b1f25bed9b2a95c.png
IP 143.204.55.13:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash c5ba34de4a5b15c8e5966ce4ac6dac7d
d87ca11092c06c059948bca64995703ce9646f98
3f32c4cf32cba619d3e8a5737d713c0d2633fd369f668a8fc038c525e6b20512
GET /static/img/flags/new/48-squared/sa/44ab510f37755d1d9d4c4dfa9b1f25bed9b2a95c.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 534
server: nginx
date: Mon, 07 Nov 2022 07:46:36 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-216"
expires: Wed, 07 Dec 2022 07:46:36 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: z6Vo0-_JQP209CZ6muG00YOOJxPu3rQTSaheI2ddPn58BmGiXGN9gg==
age: 1254488
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/il/fc1907ccd86aa051f7fbe22649d1e31ac6aee016.png
143.204.55.13200 OK 325 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/il/fc1907ccd86aa051f7fbe22649d1e31ac6aee016.png
IP 143.204.55.13:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 6fedf345605f454aa06cc4d6cdf07c95
566b06216ad282e7b0a34b23803f9f459cf0fa8c
6ad5ceae28b78a9253cc023db0dc2dc95684e086c9c69672f4d61c64b483adf5
GET /static/img/flags/new/48-squared/il/fc1907ccd86aa051f7fbe22649d1e31ac6aee016.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 325
server: nginx
date: Tue, 01 Nov 2022 01:04:15 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-145"
expires: Thu, 01 Dec 2022 01:04:15 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7k209HMlOv6ZOJtIoqMeDcZGb1E8gNiTNy5RP2Yuh9HeogZTzTnGQg==
age: 1797029
X-Firefox-Spdy: h2
www.booking.com/index.html?aid=1858279
143.204.55.11200 OK 117 kB URL HTTP/2 www.booking.com/index.html?aid=1858279
IP 143.204.55.11:0
File type HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8041)
Size 117 kB (117412 bytes)
Hash e95e831a1ace3b94704e8155cef7eba6
b685fe95dba4bdf8855d18b9b9f7211c9df0ef78
33cef67b72799a37bce390a042de21788d4704f1dbfe0dec2c4a909171cf9895
GET /index.html?aid=1858279 HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://dipaka-ead.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
server: nginx
date: Mon, 21 Nov 2022 20:14:43 GMT
cache-control: private
vary: Accept-Encoding, User-Agent
content-encoding: br
link: <https://cf.bstatic.com/static/css/gprof_icons_cloudfront_sd.iq_ltr/beb34d6a0e8ed1e0a5a6a79fc03b31730c7dd059.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/incentives_cloudfront_sd.iq_ltr/200d13c63f1a43e6ecc598ab2da5ed550e4df0ec.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/index_cloudfront_sd.iq_ltr/35d0d1a1256609c96f7318595478d40c6d053769.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/main_cloudfront_sd.iq_ltr/9827386e5badba346ac871f577c108b84c760629.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/main_exps_cloudfront_sd.iq_ltr/07b7521e537372d7a13dfedce56f9365de066e4a.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/sp_loyalty_cloudfront_sd.iq_ltr/c7c6b342312a9d5364889a78d1971cf24c388e48.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/2535e57c7ef14a8abc60b41d254b968015519b51.css>; rel=preload; as=style
nel: {"report_to":"default","max_age":604800}
report-to: {"max_age":604800,"endpoints":[{"url":"https://nellie.booking.com/report"}],"group":"default"}
set-cookie: _pxhd=L%252FxUnveIUFPAfEXptlqQEHi3yGIIBI5qSiJXj0NHp70D51KSLqPhrVeb4RTttfrd6vr2QYRJ8tA9ZcxsLOID7g%253D%253D%253A2Q3JZccZSfBY07nH6udHglgYKFLimtqJRqRR%252FtvK-c18IoJ4yiEvRiqyJMMdC%252F6ssG1EitL-tdCzSE9I7qV3FctHniYCKj343Z1p-o1hivg%253D; domain=booking.com; path=/; expires=Tue, 21-Nov-2023 20:14:43 GMT
px_init=0; domain=booking.com; expires=Wed, 11-Dec-2075 16:29:26 GMT; SameSite=Strict; secure; HttpOnly
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLUhe5QHoHLB7WfrMVlpOmtOdgvdPkiufdFLntHSva7q0ZNab0Kj%2B7Sw%2BpPqL3uik51DQLBp5QI2FHzlkI8g2pRXgG%2BQTuYV%2Fb0g1ErG%2BOZX3suS2LcH4jfMq10RiiDN8rBcvrcMpBVAKcpUz6VlUaESaaojciXaJ4%3D; domain=.booking.com; path=/; expires=Sat, 20-Nov-2027 20:14:43 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rJwDuBvqNfx75saCQIXlhVYD3PP_SvGniKQ8yFKzUzoZjF6ZuSKqdg==
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/kr/4cb76b458a73ca4c1de034c7623475278d363ce6.png
143.204.55.13200 OK 870 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/kr/4cb76b458a73ca4c1de034c7623475278d363ce6.png
IP 143.204.55.13:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 52c9301117c90f4f0f02957fb952f163
7e947ebefa1352e7282626e90e68442896c606e6
9f31f4ed393b17f37ea3ec9572bdda6ac8c1a3e3ee410743ac2b69f4717b4425
GET /static/img/flags/new/48-squared/kr/4cb76b458a73ca4c1de034c7623475278d363ce6.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 870
server: nginx
date: Mon, 07 Nov 2022 23:05:33 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-366"
expires: Wed, 07 Dec 2022 23:05:33 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hiX1UX41wx0UdmxkdaIY8inOkQF-qb--ANyj0IZwlIhkppBjxY7iUQ==
age: 1199351
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/core-deps-inlinedet_cloudfront_sd/6da0bf621035bb8a2f9c756d6a89dda03b2f7864.js
143.204.55.13200 OK 12 kB URL HTTP/2 cf.bstatic.com/static/js/core-deps-inlinedet_cloudfront_sd/6da0bf621035bb8a2f9c756d6a89dda03b2f7864.js
IP 143.204.55.13:0
File type Unicode text, UTF-8 text, with very long lines (37718)
Hash a24fd7c377947046fef7cb8e30bde10e
d73a406e6d98f4870a6fe386f2978988464ba34f
981f248294c94f2e270de9938dd9f4dbc44884e12e3d2bb1e706906a37bb97a7
GET /static/js/core-deps-inlinedet_cloudfront_sd/6da0bf621035bb8a2f9c756d6a89dda03b2f7864.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 04 Nov 2022 17:58:13 GMT
last-modified: Wed, 22 Jun 2022 10:40:45 GMT
etag: W/"62b2f1ad-949e"
expires: Sun, 04 Dec 2022 17:58:13 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: IekGn17BTd1GAdn6MDKR7Ck7z5A-zzNqqAQSaybRLD1dF7hF26rRMQ==
age: 1476990
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/186.c3c0de4f.chunk.css
143.204.55.13200 OK 1.6 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/186.c3c0de4f.chunk.css
IP 143.204.55.13:0
File type ASCII text, with very long lines (4237)
Hash c18a971c1dcd00ff6994c6f0e460118e
a10e5435b606974cd190c716449dd82b8e2f55f9
4c80eb385c928b3f0cab7d323cc8c9acc5fdc0eb38effe19319a152e96d7f1fe
GET /psb/capla/static/css/186.c3c0de4f.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Fri, 11 Nov 2022 07:12:46 GMT
etag: W/"bc1724443d5ead75f4747b3f87e9c9ee"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Wed, 20 Jul 2022 03:28:27 GMT
x-amz-expiration: expiry-date="Thu, 17 Nov 2022 03:28:27 GMT", rule-id=""
expires: Sun, 11 Dec 2022 07:12:46 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ra2BFtf7i4Du-XCL4bXNBzoFGWLBNWgszjClO-4UeBPRah5ajNegNg==
age: 910918
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/id/e7d3d00965d8c994a72807b43b21c648250cf906.png
143.204.55.13200 OK 121 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/id/e7d3d00965d8c994a72807b43b21c648250cf906.png
IP 143.204.55.13:0
File type PNG image data, 48 x 48, 2-bit colormap, non-interlaced\012- data
Hash 40b14f52ee0e84a6b7f2395438df4e89
3a1b4751f73b37112ea8abe9d8e1e43fb0b5dcc1
0839f5f4321e755f66f00aebe4ecad12e81de7d87b73600f621f3e4067bec79b
GET /static/img/flags/new/48-squared/id/e7d3d00965d8c994a72807b43b21c648250cf906.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 121
server: nginx
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Thu, 03 Nov 2022 03:00:19 GMT
expires: Sat, 03 Dec 2022 03:00:19 GMT
cache-control: max-age=2592000
etag: "5f55f887-79"
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: IpuRkGEfVSyRiJm48YWx-jKQAQWp3JW7lPIlxHPpedyUH9LCIH-dVw==
age: 1617265
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/gprof_icons_cloudfront_sd.iq_ltr/beb34d6a0e8ed1e0a5a6a79fc03b31730c7dd059.css
143.204.55.13200 OK 28 kB URL HTTP/2 cf.bstatic.com/static/css/gprof_icons_cloudfront_sd.iq_ltr/beb34d6a0e8ed1e0a5a6a79fc03b31730c7dd059.css
IP 143.204.55.13:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 81b024799ac2e89694dcd71e217edf52
b74b904958b30e21049a55fbcad6d2b0f21de5ba
01406b4f5000b3aa0bd4175537b4900fa90498585d642e815fbea0ee035e53ca
GET /static/css/gprof_icons_cloudfront_sd.iq_ltr/beb34d6a0e8ed1e0a5a6a79fc03b31730c7dd059.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Mon, 14 Nov 2022 05:00:17 GMT
last-modified: Mon, 14 Nov 2022 03:58:31 GMT
etag: W/"6371bce7-297d4"
expires: Wed, 14 Dec 2022 05:00:17 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vSFQC0UpWzqPAsFTiz0QIHMZH7z-O6iFaFmJ9Xvabmi_0YMWRVs1MA==
age: 659666
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/incentives_cloudfront_sd.iq_ltr/200d13c63f1a43e6ecc598ab2da5ed550e4df0ec.css
143.204.55.13200 OK 1.6 kB URL HTTP/2 cf.bstatic.com/static/css/incentives_cloudfront_sd.iq_ltr/200d13c63f1a43e6ecc598ab2da5ed550e4df0ec.css
IP 143.204.55.13:0
File type ASCII text, with very long lines (7453), with no line terminators
Hash 2800b7f59aa951f620fff2d27cfaef79
051069b8106ffcdf9c08d18921496b63faa751de
743a74d28b1e6f51b4e49cb38d266c9d18df3b7b92e88d9cec7a56a1fd357364
GET /static/css/incentives_cloudfront_sd.iq_ltr/200d13c63f1a43e6ecc598ab2da5ed550e4df0ec.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Sat, 12 Nov 2022 00:26:30 GMT
last-modified: Fri, 11 Nov 2022 01:23:42 GMT
etag: W/"636da41e-1d1d"
expires: Mon, 12 Dec 2022 00:26:30 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: mPTbF-Mabx1Mlar4qoJMbFwc0B_XPjGcQMBvv3kDU3shIwWG9AnNMw==
age: 848893
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/main_exps_cloudfront_sd.iq_ltr/07b7521e537372d7a13dfedce56f9365de066e4a.css
143.204.55.13200 OK 22 kB URL HTTP/2 cf.bstatic.com/static/css/main_exps_cloudfront_sd.iq_ltr/07b7521e537372d7a13dfedce56f9365de066e4a.css
IP 143.204.55.13:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 7718411bc138290536dce63236b87946
a71a769c2b187e32f7d605cbe9cd99c9c30b1438
ebdb2ab0c01147708a9d2b4fdb8b5e1930f582d589c4c844bf035a218e7e7e0a
GET /static/css/main_exps_cloudfront_sd.iq_ltr/07b7521e537372d7a13dfedce56f9365de066e4a.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Mon, 14 Nov 2022 05:06:43 GMT
last-modified: Mon, 14 Nov 2022 03:58:31 GMT
etag: W/"6371bce7-20a83"
expires: Wed, 14 Dec 2022 05:06:43 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: tekJyXrAAuRqvwpZgpBh6agTor1dqigCRuIRi2LdKodc3LEG8EaA1A==
age: 659279
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/index_cloudfront_sd.iq_ltr/35d0d1a1256609c96f7318595478d40c6d053769.css
143.204.55.13200 OK 52 kB URL HTTP/2 cf.bstatic.com/static/css/index_cloudfront_sd.iq_ltr/35d0d1a1256609c96f7318595478d40c6d053769.css
IP 143.204.55.13:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 8d96ed3dbfdf26c3fe3686129b103986
a0493c5a66ec00b1e67d3d850f142393e2c7e5ac
6538d0737fd1f3102beaa049522d0cc37c5c192ad42bb31d41e98e42386ca547
GET /static/css/index_cloudfront_sd.iq_ltr/35d0d1a1256609c96f7318595478d40c6d053769.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Mon, 14 Nov 2022 10:52:27 GMT
last-modified: Mon, 14 Nov 2022 03:58:32 GMT
etag: W/"6371bce8-5a721"
expires: Wed, 14 Dec 2022 10:52:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: gDc6q-cX8JzBvHElm5reczTEyFSkWWleyMKqfekdYweh0uqI1Os_Tg==
age: 638536
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/435.829226c8.chunk.js
143.204.55.13200 OK 593 B URL HTTP/2 cf.bstatic.com/psb/capla/static/js/435.829226c8.chunk.js
IP 143.204.55.13:0
File type ASCII text, with very long lines (483)
Hash fa29c83ab2dd0e8c893a53e85a65d93d
cc8ebb4b2f09940e3f2f726055179a6c3b51e563
6bbddbdb65eb60fa9fa38817747b2107ef36667b4c1beeacab6063cb55c51018
GET /psb/capla/static/js/435.829226c8.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 593
server: nginx
date: Thu, 17 Nov 2022 14:22:06 GMT
etag: "fa29c83ab2dd0e8c893a53e85a65d93d"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Thu, 17 Nov 2022 13:55:02 GMT
x-amz-expiration: expiry-date="Fri, 17 Mar 2023 13:55:02 GMT", rule-id=""
expires: Sat, 17 Dec 2022 14:22:06 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _LI17aOKIDjbtHOQmMeUHOdvdsadmsuDh5ej31-LakJPB702e37omQ==
age: 366758
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/sk/29e3667f5aca74c157af9225d5a97a74a41e52ef.png
143.204.55.13200 OK 573 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/sk/29e3667f5aca74c157af9225d5a97a74a41e52ef.png
IP 143.204.55.13:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 243c2ae0611333fde9bfb06dd47f6300
2deae15cb1ea681950abf0456e0ddffeb940b158
5acf315305da0ed67d79de0983465c4baf314b34456a0f8df7f0faad0e5dd34b
GET /static/img/flags/new/48-squared/sk/29e3667f5aca74c157af9225d5a97a74a41e52ef.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 573
server: nginx
date: Tue, 01 Nov 2022 04:24:12 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-23d"
expires: Thu, 01 Dec 2022 04:24:12 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: E9sV-m3qwXz0LuPPKB--CRVXxeD6girCY8jPiCeiDNTdDevS9AWahQ==
age: 1785032
X-Firefox-Spdy: h2
cf.bstatic.com/libs/privacy-consent/releases/2.1.32/customer/cookie-banner.min.js
143.204.55.13200 OK 4.3 kB URL HTTP/2 cf.bstatic.com/libs/privacy-consent/releases/2.1.32/customer/cookie-banner.min.js
IP 143.204.55.13:0
File type ASCII text, with very long lines (8638), with no line terminators
Hash 164016e5500c06ee28a8d27ff8338334
72d22395cda37005b162a5a3b9fe9aea9b8436d2
74dde2291f197077c5a5818f5bb86cc34841a809bca8167d30004f1ae6ce0e62
GET /libs/privacy-consent/releases/2.1.32/customer/cookie-banner.min.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 09 Nov 2022 07:49:57 GMT
last-modified: Tue, 04 Oct 2022 23:02:37 GMT
etag: W/"633cbb8d-21be"
expires: Fri, 09 Dec 2022 07:49:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ZbExKvZD0IjrS3Jn5CoL2nk8581YNOaWIHpAjZvrtSCJqwmqzG-DKQ==
age: 1081486
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/main_cloudfront_sd.iq_ltr/9827386e5badba346ac871f577c108b84c760629.css
143.204.55.13200 OK 61 kB URL HTTP/2 cf.bstatic.com/static/css/main_cloudfront_sd.iq_ltr/9827386e5badba346ac871f577c108b84c760629.css
IP 143.204.55.13:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash b951372035361185623c45912dcc0c29
9deb477f7aae5b582bcc827dc41595bf01f1b007
5054f498993bcd5ff6cf3ae7a3c6aa3e774f3da85bcbe1ffff0e721587471fbc
GET /static/css/main_cloudfront_sd.iq_ltr/9827386e5badba346ac871f577c108b84c760629.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Mon, 14 Nov 2022 05:06:43 GMT
last-modified: Mon, 14 Nov 2022 03:58:31 GMT
etag: W/"6371bce7-81d2a"
expires: Wed, 14 Dec 2022 05:06:43 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: BPmXh1C2-UYzQRHhm57N-f88POgMALwYfXb0yWOo6ks3RVDoDYegxA==
age: 659280
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/2535e57c7ef14a8abc60b41d254b968015519b51.css
143.204.55.13200 OK 12 kB URL HTTP/2 cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/2535e57c7ef14a8abc60b41d254b968015519b51.css
IP 143.204.55.13:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash f9818f2378c6bd50e926936ff3571fba
45fbaf4960a1c54fcf0c65b7e3b583507869bd79
4c5eaa39c694fffe5faec52068e826e943d8046e947841aa5e9ca5a0b4022903
GET /static/css/xp-index-sb_cloudfront_sd.iq_ltr/2535e57c7ef14a8abc60b41d254b968015519b51.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Mon, 14 Nov 2022 10:52:27 GMT
last-modified: Mon, 14 Nov 2022 03:58:33 GMT
etag: W/"6371bce9-126c7"
expires: Wed, 14 Dec 2022 10:52:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ntc7qKAmIJBCh9-5bZqiVbb9E7yPs9I8835Fz6jou68CFP_AaVHKPw==
age: 638536
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/index_cloudfront_sd/87845f8e598f9f9b0e822e3a97401a2e95e0d635.js
143.204.55.13200 OK 17 kB URL HTTP/2 cf.bstatic.com/static/js/index_cloudfront_sd/87845f8e598f9f9b0e822e3a97401a2e95e0d635.js
IP 143.204.55.13:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 04352454463e7230ed6322e3557bbffe
dc7a1361cb0561d2f6563ac2e2e7f774b7696e89
577c4349d3e4a06238f06b9d98eb190947001478fd5b59f3460e8d5fac0b776c
GET /static/js/index_cloudfront_sd/87845f8e598f9f9b0e822e3a97401a2e95e0d635.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 18 Nov 2022 12:53:09 GMT
last-modified: Fri, 18 Nov 2022 12:46:12 GMT
etag: W/"63777e94-12603"
expires: Sun, 18 Dec 2022 12:53:09 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ziddJdjn_GkYg4FZWUTcMLyEndEj5peru_B9M95PXNPZNa7JHRsLjg==
age: 285694
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/square250/740935.webp?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o=
143.204.55.13200 OK 10 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/square250/740935.webp?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o=
IP 143.204.55.13:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f46894a16ebb993b489c7eb4947b2321
a3ebffea1f61cb837f7512345ea899a5908cbf0a
ea3005e0d81b1ad9fded26293f7442ee24413818af379d68bed7d717e8b5f7f2
GET /xdata/images/city/square250/740935.webp?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 10180
server: nginx
date: Fri, 28 Oct 2022 06:15:36 GMT
etag: "459e14b7c2e0b84a1f4dee911c2c41e0490dc6ea"
expires: Sun, 27 Nov 2022 06:15:36 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: olpwbbeaOO3OFGMdWS65WoM_Ecbvf9UCd1hRz6iKlNf-QXP55BCsUw==
age: 2123948
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/square250/644297.webp?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o=
143.204.55.13200 OK 15 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/square250/644297.webp?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o=
IP 143.204.55.13:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ce0484a62e175f311523b75f140b4211
eba0d06f0c622ecf224822c856430ad707ebdfc1
edf0c0cf1cb6689a78e3b4cd11ff14de3c5947583b589dfbb87379023a484991
GET /xdata/images/city/square250/644297.webp?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 14598
server: nginx
date: Sun, 06 Nov 2022 02:37:20 GMT
etag: "28e7cbdab023762d0508afad609ffdf9e02f943c"
expires: Tue, 06 Dec 2022 02:37:20 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RVMLDFdFRatac2JPVLEWsXCOZD_uWD9kp3KGBN2APlExL-jJ3dt1ew==
age: 1359444
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/sp_loyalty_cloudfront_sd.iq_ltr/c7c6b342312a9d5364889a78d1971cf24c388e48.css
143.204.55.13200 OK 13 kB URL HTTP/2 cf.bstatic.com/static/css/sp_loyalty_cloudfront_sd.iq_ltr/c7c6b342312a9d5364889a78d1971cf24c388e48.css
IP 143.204.55.13:0
File type ASCII text, with very long lines (14322), with no line terminators
Hash 7e738dc3428cfd6103dbccdeaf92f4d0
5bf9655ef0a86ded7ea87fc163e16c7dcf96fb5c
629ef3e35fb341f6b4e0e5e3cf051ace67ae0c61caef2fbeae0c5613e5790a8c
GET /static/css/sp_loyalty_cloudfront_sd.iq_ltr/c7c6b342312a9d5364889a78d1971cf24c388e48.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Fri, 11 Nov 2022 10:54:42 GMT
last-modified: Fri, 11 Nov 2022 01:23:43 GMT
etag: W/"636da41f-37f2"
expires: Sun, 11 Dec 2022 10:54:42 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -vEjFfaby14u7rFo8yXCkBzd3Bt0258CHc7QpUW774WYNufRFqk_aw==
age: 897601
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/square250/644310.webp?k=472fefd4c3c0aef36deb16adb91c965923d8b1078ab29056802f95aead0586bf&o=
143.204.55.13200 OK 13 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/square250/644310.webp?k=472fefd4c3c0aef36deb16adb91c965923d8b1078ab29056802f95aead0586bf&o=
IP 143.204.55.13:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash fc98564e400d3bd17e3f22b13e1b4ac7
504d945f247a1ed9d1e4f68416d2865d6558e5ad
b7fa20f8bab44db9578a888fe75778bd6b24331b1f0c81356be50c4fc70157c6
GET /xdata/images/city/square250/644310.webp?k=472fefd4c3c0aef36deb16adb91c965923d8b1078ab29056802f95aead0586bf&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 13014
server: nginx
date: Sat, 29 Oct 2022 05:11:13 GMT
etag: "819802f9b8bd40ed05d9f23aa44874a4e1ac1e88"
expires: Mon, 28 Nov 2022 05:11:13 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: V6lmU_MBL5yW6bEo8Xr5S0_kb4HMl44N5gmQuv-gk0MN2jOtKrAwUw==
age: 2041411
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/square250/737551.webp?k=ad4ef19a2b979ef794b56d1901e6937b874b4726a4085d8ddbe795f5c6bfed73&o=
143.204.55.13200 OK 12 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/square250/737551.webp?k=ad4ef19a2b979ef794b56d1901e6937b874b4726a4085d8ddbe795f5c6bfed73&o=
IP 143.204.55.13:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 443025206af2bd7174de9105a0d54e56
abed2877367f1a8e2ef8fcf107caee4ee915d095
b3d2c4aaa4adfa189b01e662ba5674f003db543e55b43e5237a78edb74b523b6
GET /xdata/images/city/square250/737551.webp?k=ad4ef19a2b979ef794b56d1901e6937b874b4726a4085d8ddbe795f5c6bfed73&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 11708
server: nginx
date: Sun, 06 Nov 2022 08:46:01 GMT
etag: "0790aacd48db5f0b83aac324e38c6ff05169783c"
expires: Tue, 06 Dec 2022 08:46:01 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: uqcmU7l1KEPaX-PmmBMDM2YzFDNeQdJvgNhpGzb0T4les3OhgxqgeA==
age: 1337323
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/square250/930853.webp?k=85cc355550cdcf1ca77d1a7a635f4294e09dee696051866597a63fd7edd7af5a&o=
143.204.55.13200 OK 12 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/square250/930853.webp?k=85cc355550cdcf1ca77d1a7a635f4294e09dee696051866597a63fd7edd7af5a&o=
IP 143.204.55.13:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0867b4a18dd02f341467ac3cd9c87624
6dfa10bfc60382146a1cbdcdeaa1d2bf94ca8fe6
abac49fbb301fb90860cc5c950d292473ac3db44a6fc2e62398e61bf2bf7655f
GET /xdata/images/city/square250/930853.webp?k=85cc355550cdcf1ca77d1a7a635f4294e09dee696051866597a63fd7edd7af5a&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 12010
server: nginx
date: Wed, 02 Nov 2022 07:11:39 GMT
etag: "01fb7ecdb72996e49f4f820ffdd8c4e0b8a86e93"
expires: Fri, 02 Dec 2022 07:11:39 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: FtyPbofCGyaZ2KEsU_siZpD0NOjy7bUqvck5MsAYdVxzbkKQymakZA==
age: 1688585
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/square250/671694.webp?k=cd1e3603afe4edd09f829675efb1cdc9a5925bed25a642bfc4d909602c231624&o=
143.204.55.13200 OK 14 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/square250/671694.webp?k=cd1e3603afe4edd09f829675efb1cdc9a5925bed25a642bfc4d909602c231624&o=
IP 143.204.55.13:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ae6f21ca1e36bc750e27be252a59c000
c5896a0dba0a94a551569b4cd040897d5bd935da
29c33b1d0971d25f68cee3a5f098598bb0e6246746f62341c066eb3fc53054f9
GET /xdata/images/city/square250/671694.webp?k=cd1e3603afe4edd09f829675efb1cdc9a5925bed25a642bfc4d909602c231624&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 13820
server: nginx
date: Thu, 03 Nov 2022 07:27:49 GMT
etag: "cf950dea43cbc2e84cbf94450df274f733624e2d"
expires: Sat, 03 Dec 2022 07:27:49 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -BTMJ-plhQy0ILeRzlhQwcXtSWikh1Tz_0Ej9YHrwsEOgtAqAjqsmg==
age: 1601215
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/square250/954959.webp?k=37410091e9d0e74278ef7710d594a8ef5882decaf47e8f9a7ca30f9e85bbab75&o=
143.204.55.13200 OK 5.0 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/square250/954959.webp?k=37410091e9d0e74278ef7710d594a8ef5882decaf47e8f9a7ca30f9e85bbab75&o=
IP 143.204.55.13:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5f34caad9044fb6b97304bf376740090
d919e1aa423bdce0be6d91885666114f7093ee29
3ca928167fc0c1e2ffe56f5910307f715a69c7080d783492cd41ed1ebda75fd6
GET /xdata/images/city/square250/954959.webp?k=37410091e9d0e74278ef7710d594a8ef5882decaf47e8f9a7ca30f9e85bbab75&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 4970
server: nginx
date: Tue, 01 Nov 2022 07:28:19 GMT
etag: "3c13091e058816c654814e91a2285bf1112f4dd5"
expires: Thu, 01 Dec 2022 07:28:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9ZWKHUOkb3ltAhy-AeU4uFYXfc1uS4uEyRjpehgwdNtgrbLabmSpyA==
age: 1773985
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/landingpage_cloudfront_sd/92ed703e1939dfeded3ccd4ea8a2fb39c766e2e9.js
143.204.55.13200 OK 88 kB URL HTTP/2 cf.bstatic.com/static/js/landingpage_cloudfront_sd/92ed703e1939dfeded3ccd4ea8a2fb39c766e2e9.js
IP 143.204.55.13:0
File type ASCII text, with very long lines (51645)
Hash 2930cad5ddd75ee1c76fcc9e0ed7fb84
3e167383983a4f1d6ebfb9fb3a60bdf7688ff474
7c954af83d2f19ba998eda672cbb66a36eb9db61fbc002963aea6ae61205636a
GET /static/js/landingpage_cloudfront_sd/92ed703e1939dfeded3ccd4ea8a2fb39c766e2e9.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Tue, 15 Nov 2022 15:30:42 GMT
last-modified: Tue, 15 Nov 2022 15:27:21 GMT
etag: W/"6373afd9-67f01"
expires: Thu, 15 Dec 2022 15:30:42 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PG7Aq9AKYJFQcOyOJs5smSwgbGKicVpPaMDDzGcRcIj-RjG7MVOsJg==
age: 535440
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/square250/967857.webp?k=5733a245dbb186ec0986c0a5c533acc704650d51cdfed7410cf0bcef375e5bc4&o=
143.204.55.13200 OK 12 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/square250/967857.webp?k=5733a245dbb186ec0986c0a5c533acc704650d51cdfed7410cf0bcef375e5bc4&o=
IP 143.204.55.13:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 57d087e34bf07df0e6df2f13d870f2e2
47462553409d660454e9bee14f3f442d7e757e13
d504a989b326836c6718ca6acb3806f60ad3e5a2cc48824a7b1c6d41691e8654
GET /xdata/images/city/square250/967857.webp?k=5733a245dbb186ec0986c0a5c533acc704650d51cdfed7410cf0bcef375e5bc4&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 12264
server: nginx
date: Fri, 04 Nov 2022 04:07:57 GMT
etag: "27586967e639a71d2ce539658f0a6fe60eece616"
expires: Sun, 04 Dec 2022 04:07:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: QkwQ0rTHv9nOpIPNq4qqIY8A-kMHvjvyuLghojmc0wBgvXvy_haURg==
age: 1526807
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/24/no/6193a14e4d59f814f46ee6313cdd6e11811abeb3.png
143.204.55.13200 OK 405 B URL HTTP/2 cf.bstatic.com/static/img/flags/24/no/6193a14e4d59f814f46ee6313cdd6e11811abeb3.png
IP 143.204.55.13:0
File type PNG image data, 24 x 24, 8-bit colormap, non-interlaced\012- data
Hash be6379111ab8866c20c123b85af97d42
819ba2a2c986ed6f4ff309661b5c27ac172228df
fecd6ef10eb5111323f3b1bb9d8e99e37a881abe33ae37f8e74f046c3634b25f
GET /static/img/flags/24/no/6193a14e4d59f814f46ee6313cdd6e11811abeb3.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 405
server: nginx
date: Thu, 27 Oct 2022 04:57:00 GMT
last-modified: Wed, 10 Apr 2019 11:21:53 GMT
etag: "5cadd1d1-195"
expires: Sat, 26 Nov 2022 04:57:00 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: x7y8dz1rl9Pi0PEJ8oAkUWVJAEcJ_Lk2QpJ9l1PjNVZMym6WRNIdGw==
age: 2215064
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/24/gb/b2f01d4fd94cb1420fcdbbef62c06ade1026fbbd.png
143.204.55.13200 OK 786 B URL HTTP/2 cf.bstatic.com/static/img/flags/24/gb/b2f01d4fd94cb1420fcdbbef62c06ade1026fbbd.png
IP 143.204.55.13:0
File type PNG image data, 24 x 24, 8-bit colormap, non-interlaced\012- data
Hash b886858d3043782c8760367f40f31187
81bd3c37344c99a7ce8f29f685c770373aa6cc16
c4827c36112be1d0773cbf4eb709f4b01b4ab4bc1a79c90aafc4b196c9445393
GET /static/img/flags/24/gb/b2f01d4fd94cb1420fcdbbef62c06ade1026fbbd.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 786
server: nginx
date: Tue, 15 Nov 2022 02:42:58 GMT
last-modified: Wed, 10 Apr 2019 11:21:53 GMT
etag: "5cadd1d1-312"
expires: Thu, 15 Dec 2022 02:42:58 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: t_R8rK8-cHReJZklCEasm-77aN8P4WKceiUf9QWS7FlO1IMn9ZljhA==
age: 581506
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/24/fr/c3dafe717a0b4b97e6ddd0d791e8a018d8f96310.png
143.204.55.13200 OK 406 B URL HTTP/2 cf.bstatic.com/static/img/flags/24/fr/c3dafe717a0b4b97e6ddd0d791e8a018d8f96310.png
IP 143.204.55.13:0
File type PNG image data, 24 x 24, 8-bit colormap, non-interlaced\012- data
Hash 6e35d53899b5a1260f946a00b691e0b7
5afcc2cca4ef34005fe1d22784f90b727fceeb08
2fd19cf58102989e49660b27b21605038d4282cf758add4841285c2c17f2dacd
GET /static/img/flags/24/fr/c3dafe717a0b4b97e6ddd0d791e8a018d8f96310.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 406
server: nginx
date: Sun, 30 Oct 2022 02:09:54 GMT
last-modified: Wed, 10 Apr 2019 11:21:53 GMT
etag: "5cadd1d1-196"
expires: Tue, 29 Nov 2022 02:09:54 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3e2s8B5L14PoUiTnP1czF_zxKEJZfbZTUqcxiJk1_sA32UzjYU1TJQ==
age: 1965890
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/24/es/a14721d7698af5131b08bd34227508c729ab11bc.png
143.204.55.13200 OK 490 B URL HTTP/2 cf.bstatic.com/static/img/flags/24/es/a14721d7698af5131b08bd34227508c729ab11bc.png
IP 143.204.55.13:0
File type PNG image data, 24 x 24, 8-bit colormap, non-interlaced\012- data
Hash d2d4c6110399a8b2c4c1ea09b7f8eded
f846d4aee888c73998150452c3bde5ff71f7a0e7
630bbc6535a3d0cee406f52ee3664265adc2eaa51227fb8a3ff5c70af9e79b3a
GET /static/img/flags/24/es/a14721d7698af5131b08bd34227508c729ab11bc.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 490
server: nginx
date: Wed, 26 Oct 2022 05:38:32 GMT
last-modified: Wed, 10 Apr 2019 11:21:53 GMT
etag: "5cadd1d1-1ea"
expires: Fri, 25 Nov 2022 05:38:32 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _B_Oc3dOmPkGvI3GrqECRSWI0cgLxpPDbPSquWXgoT124rl6BWJDuQ==
age: 2298972
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/24/it/b539a003f197845e447b9d00d91cd74dd57bf3dd.png
143.204.55.13200 OK 436 B URL HTTP/2 cf.bstatic.com/static/img/flags/24/it/b539a003f197845e447b9d00d91cd74dd57bf3dd.png
IP 143.204.55.13:0
File type PNG image data, 24 x 24, 8-bit colormap, non-interlaced\012- data
Hash 1416ab6009ad93f86e9cfc23a54e0c40
0578e45fadd1da2c26a4d5fe814a9239ff5eae97
88bb107350d5324906a2cf2b95847879ecf6bb09502d1186c38daaf15268830f
GET /static/img/flags/24/it/b539a003f197845e447b9d00d91cd74dd57bf3dd.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 436
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:53 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sun, 23 Oct 2022 03:46:48 GMT
expires: Tue, 22 Nov 2022 03:46:48 GMT
cache-control: max-age=2592000
etag: "5cadd1d1-1b4"
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: J0SPoLDsOP8es670qk5IlaYnrwfFiR_5moCoByhtNSf1nxNEcmDaiQ==
age: 2564876
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/genius-globe-with-badge_desktop/d807514761b3684aedebced9265c5548a063b7a0.png
143.204.55.13200 OK 7.5 kB URL HTTP/2 cf.bstatic.com/static/img/genius-globe-with-badge_desktop/d807514761b3684aedebced9265c5548a063b7a0.png
IP 143.204.55.13:0
File type PNG image data, 160 x 160, 8-bit colormap, non-interlaced\012- data
Hash 06184b155b03a3035384042b32a67174
3458ca2a84896f0f5c39e3fb705b5c51b41c6553
b0999281a9703706445e24c253b75e9e36fc0d5d76f01b0842f902b08f00c2dd
GET /static/img/genius-globe-with-badge_desktop/d807514761b3684aedebced9265c5548a063b7a0.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 7455
server: nginx
date: Sat, 29 Oct 2022 07:54:00 GMT
last-modified: Tue, 21 Sep 2021 07:46:56 GMT
etag: "61498df0-1d1f"
expires: Mon, 28 Nov 2022 07:54:00 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: k9-i9z8K6kNtVTiiWvuCcGJU7xztcCevYXxCsBdFMjwCh6TSwugJCw==
age: 2031644
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/tfl/group_logos/logo_booking/27c8d1832de6a3123b6ee45b59ae2f81b0d9d0d0.png
143.204.55.13200 OK 1.6 kB URL HTTP/2 cf.bstatic.com/static/img/tfl/group_logos/logo_booking/27c8d1832de6a3123b6ee45b59ae2f81b0d9d0d0.png
IP 143.204.55.13:0
File type PNG image data, 91 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 3e32efd25ac0214b375fc8a6a32890f2
cd46a79db7e53e19d5869b3cb3e7aa22ee523479
807c8a1b498e17d227cf48a640b778bdc4398a9852493cb2f40bf0f33651d0dd
GET /static/img/tfl/group_logos/logo_booking/27c8d1832de6a3123b6ee45b59ae2f81b0d9d0d0.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1628
server: nginx
date: Thu, 10 Nov 2022 01:34:56 GMT
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
etag: "5cadd1d3-65c"
expires: Sat, 10 Dec 2022 01:34:56 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: FzrbPDDSBMPDLkl90pRwKhBk0tzPuhZuWhKCackt32knI_6El5KdqA==
age: 1017588
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/tfl/group_logos/logo_priceline/f80e129541f2a952d470df2447373390f3dd4e44.png
143.204.55.13200 OK 1.6 kB URL HTTP/2 cf.bstatic.com/static/img/tfl/group_logos/logo_priceline/f80e129541f2a952d470df2447373390f3dd4e44.png
IP 143.204.55.13:0
File type PNG image data, 91 x 26, 8-bit colormap, non-interlaced\012- data
Hash b6d0b31340d7a113f63b936e23d06f78
268e3856da737f7e56e679258949ef70ddde47f4
18c62988860a8ffd90bab6376b4fe36a723bd39403c420d3943aa3eb5a0029c5
GET /static/img/tfl/group_logos/logo_priceline/f80e129541f2a952d470df2447373390f3dd4e44.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1591
server: nginx
date: Fri, 28 Oct 2022 09:30:57 GMT
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
etag: "5cadd1d3-637"
expires: Sun, 27 Nov 2022 09:30:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: QmEad5nHKd6AB63Y8Pk1WMLfgPeWeyCkqPeZewelg9EoK6fo551p0w==
age: 2112227
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/tfl/group_logos/logo_kayak/83ef7122074473a6566094e957ff834badb58ce6.png
143.204.55.13200 OK 1.2 kB URL HTTP/2 cf.bstatic.com/static/img/tfl/group_logos/logo_kayak/83ef7122074473a6566094e957ff834badb58ce6.png
IP 143.204.55.13:0
File type PNG image data, 79 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 6384185cbe9a4f106857a3cb85caea98
0e31a4fe2ce98a8b4fda60687aa71079b4d3a95b
5839f0330821cf08029beddd6d248170da1af16cd7aff253e7bd075d591f5d42
GET /static/img/tfl/group_logos/logo_kayak/83ef7122074473a6566094e957ff834badb58ce6.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1154
server: nginx
date: Wed, 02 Nov 2022 00:28:17 GMT
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
etag: "5cadd1d3-482"
expires: Fri, 02 Dec 2022 00:28:17 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Ud4iwEOy-_0WOBDZC6CbQ2Dyx03-We-S8WxoW-3yLrYFQBJN8SVHow==
age: 1712787
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/tfl/group_logos/logo_agoda/1c9191b6a3651bf030e41e99a153b64f449845ed.png
143.204.55.13200 OK 2.1 kB URL HTTP/2 cf.bstatic.com/static/img/tfl/group_logos/logo_agoda/1c9191b6a3651bf030e41e99a153b64f449845ed.png
IP 143.204.55.13:0
File type PNG image data, 70 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 27e71a5124018e16eae0b8897618623d
d0d54d88b04edfc71f338c19eab9994632bc6ced
1d6e86e59ab7235a8343f494c8e8da6cc02c5a98a75d682401340e6d06935f20
GET /static/img/tfl/group_logos/logo_agoda/1c9191b6a3651bf030e41e99a153b64f449845ed.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2146
server: nginx
date: Thu, 27 Oct 2022 07:21:48 GMT
last-modified: Thu, 12 Mar 2020 10:15:57 GMT
etag: "5e6a0bdd-862"
expires: Sat, 26 Nov 2022 07:21:48 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: eNpC3q7fIfrL-oUAMr4kN7ATUYpmpURTuMs1NXIPA3Y8TGdT1VPLiA==
age: 2206376
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/tfl/group_logos/logo_opentable/a4b50503eda6c15773d6e61c238230eb42fb050d.png
143.204.55.13200 OK 2.3 kB URL HTTP/2 cf.bstatic.com/static/img/tfl/group_logos/logo_opentable/a4b50503eda6c15773d6e61c238230eb42fb050d.png
IP 143.204.55.13:0
File type PNG image data, 95 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash d05a0ab9bf394439a1584a2b0d44db5c
183c28023d3ba3358a7a5df1db887582ae5340ed
b23272a9692c4ec3c020935917e9d096490876c976abec1290bd3cc9aae13974
GET /static/img/tfl/group_logos/logo_opentable/a4b50503eda6c15773d6e61c238230eb42fb050d.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2344
server: nginx
date: Thu, 03 Nov 2022 00:31:50 GMT
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
etag: "5cadd1d3-928"
expires: Sat, 03 Dec 2022 00:31:50 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: DhsM7RROCuEwPumeaN0nNgDOhrycdfIBNiX-OGKV8l9HkvboRmstVQ==
age: 1626174
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/genius_vip_cloudfront_sd/f980dbafa6b20d980f25ca835a161e7cece00d9d.js
143.204.55.13200 OK 1.2 kB URL HTTP/2 cf.bstatic.com/static/js/genius_vip_cloudfront_sd/f980dbafa6b20d980f25ca835a161e7cece00d9d.js
IP 143.204.55.13:0
File type ASCII text, with very long lines (3122), with no line terminators
Hash 68aff2e735d6672a4e29048b0434281c
2386432c9dccdb97c4aac55d7e0b8b7e56fdd212
d11111bc980146cc5ec6162238a924d283a038bdf84e5781b9f37f4361cb7821
GET /static/js/genius_vip_cloudfront_sd/f980dbafa6b20d980f25ca835a161e7cece00d9d.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Tue, 15 Nov 2022 01:24:51 GMT
last-modified: Thu, 30 Jun 2022 08:09:45 GMT
etag: W/"62bd5a49-c32"
expires: Thu, 15 Dec 2022 01:24:51 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: keUX5HL0gvsDTyt8YcHjNqlLCgohqwLytWHItm_w20SbMVfq_vhe3Q==
age: 586193
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/500x500/180790832.jpeg?k=2a0933827747a803bdaa8fabe39a3fba8f0823b3adeb1647862ea118e368457a&o=
143.204.55.13200 OK 34 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/500x500/180790832.jpeg?k=2a0933827747a803bdaa8fabe39a3fba8f0823b3adeb1647862ea118e368457a&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 500x500, components 3\012- data
Hash 1068b4f74029ff9c62b7fc410284930f
a2d7b60da694d92247b6aa9229104dcfce141be2
6fb4586b1ebba9d9713fe3952fb042ba3c00a1703b95046f3d74ee0ea6bf1973
GET /xdata/images/xphoto/500x500/180790832.jpeg?k=2a0933827747a803bdaa8fabe39a3fba8f0823b3adeb1647862ea118e368457a&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 34257
server: nginx
date: Mon, 14 Nov 2022 13:58:16 GMT
etag: "2cf765ba886e65bb25d59059f859100e4449e2c4"
expires: Wed, 14 Dec 2022 13:58:16 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -8QHLvuDVeKjUFSHP7G6RENHJDPYdlLbvW5ZZuRZXEuWYEStTzW5ZA==
age: 627388
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/540x270/740930.webp?k=58e6fd52fcf3174223967fc1629c1de15a9ca9de10347618038d042b56e0f968&o=
143.204.55.13200 OK 24 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/540x270/740930.webp?k=58e6fd52fcf3174223967fc1629c1de15a9ca9de10347618038d042b56e0f968&o=
IP 143.204.55.13:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 540x270, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 33732427eae17faad3950d16a56bd1d4
b71ec639fd23492877892527f81334c568aa5597
c93462cc65dbadac1456b7c6428ff3f9e08eba808c7372f420144fa56307b75b
GET /xdata/images/city/540x270/740930.webp?k=58e6fd52fcf3174223967fc1629c1de15a9ca9de10347618038d042b56e0f968&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 23600
server: nginx
date: Fri, 04 Nov 2022 23:00:02 GMT
etag: "e5fc4108245a1fcf28fcd9d736a5547e0203f2a3"
expires: Sun, 04 Dec 2022 23:00:02 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: moTdaXeFbYzfXQTqZjQMLudO0V4rEW0--0pTdlg_7u8RFdrC4tY0EQ==
age: 1458883
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/540x270/844103.webp?k=b4ff3d17a962184dfa8823beec573fa3f679306e8b3fa897b901ba0dedb157bd&o=
143.204.55.13200 OK 24 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/540x270/844103.webp?k=b4ff3d17a962184dfa8823beec573fa3f679306e8b3fa897b901ba0dedb157bd&o=
IP 143.204.55.13:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 540x270, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8da231dc5119fa2631196021b5b76b79
acc913dd71a600d59d1485aeaf478217e6efb323
0e422d4bd5462f934cf16f7cf8be46278492bc9f35f4765cbb2382ba9233588c
GET /xdata/images/city/540x270/844103.webp?k=b4ff3d17a962184dfa8823beec573fa3f679306e8b3fa897b901ba0dedb157bd&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 24262
server: nginx
date: Sun, 23 Oct 2022 02:17:10 GMT
etag: "54008e3601207ff3ed07c301b8bd26fbfe29ada3"
expires: Tue, 22 Nov 2022 02:17:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RqqygCca_PKOsNkUJWmvRH_r-Vwz9rf5Y-xB0AJWmXhwFGFMrhB6HQ==
age: 2570255
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/540x270/879406.webp?k=dd541d1e78f3b12096d858880a21807954f88849a62946cca580a95ae81c99fb&o=
143.204.55.13200 OK 19 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/540x270/879406.webp?k=dd541d1e78f3b12096d858880a21807954f88849a62946cca580a95ae81c99fb&o=
IP 143.204.55.13:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 540x270, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b025c3e84da52e3a72be62b260253c10
d5f3416d6ff4cc224478a75718b543399839a02a
c50c5c5c0aa92f4411da494d76937f79499e88e1eb6569835a3946ef08828ee2
GET /xdata/images/city/540x270/879406.webp?k=dd541d1e78f3b12096d858880a21807954f88849a62946cca580a95ae81c99fb&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 18586
server: nginx
date: Sun, 23 Oct 2022 02:28:47 GMT
etag: "b83c16a467e31078a614e9cd1f055daa971d9099"
expires: Tue, 22 Nov 2022 02:28:47 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: kvCENf6HZr9YUmQQ9sjDchU58QL_bx0Rz5gT4ceEuvCMVGRNO9uD1w==
age: 2569558
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/bui-react.64aeaf1e.js
143.204.55.13200 OK 224 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/bui-react.64aeaf1e.js
IP 143.204.55.13:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 224 kB (224218 bytes)
Hash 4514f06f67967e15bd11395767d1169e
24df52dd8a203830e98a64f339dde5efbf95f2a8
c4d59f8684dd6c9b0485f61010f0c04422b492f59883d821eba1a5726b26048e
GET /psb/capla/static/js/bui-react.64aeaf1e.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 21 Nov 2022 10:20:28 GMT
etag: W/"e4e091270a84caf1e38df6ea3d86a11c"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 18 Nov 2022 17:51:34 GMT
x-amz-expiration: expiry-date="Sat, 18 Mar 2023 17:51:34 GMT", rule-id=""
expires: Wed, 21 Dec 2022 10:20:28 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Fb6bTQUTpP7eq0HStDyFyj4bJHka4tZM65bfk-_IB7CUHRAcFrvKvg==
age: 35655
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/cross_product_index/guest/b2e5f2aa32b71ca0fc66aa671e4e958bcd69b7d0.svg
143.204.55.13200 OK 8.0 kB URL HTTP/2 cf.bstatic.com/static/img/cross_product_index/guest/b2e5f2aa32b71ca0fc66aa671e4e958bcd69b7d0.svg
IP 143.204.55.13:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (392)
Hash f477eeff5e78cd6850fb7ac8b017d0b9
a01302bf606227d28e6f8b61ca4411f8a8f0ef44
d6cf2b0997dd57159623adc16bbcdb774654f6e465a2b5ff4c5da387262a768f
GET /static/img/cross_product_index/guest/b2e5f2aa32b71ca0fc66aa671e4e958bcd69b7d0.svg HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/2535e57c7ef14a8abc60b41d254b968015519b51.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Mon, 31 Oct 2022 03:36:50 GMT
last-modified: Wed, 10 Apr 2019 11:21:51 GMT
etag: W/"5cadd1cf-63d"
expires: Wed, 30 Nov 2022 03:36:50 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rKZVNEe4c5X3jSqmWWY_5N5PkPJLLTPaiHbK7_jwfRcTJ4ctFIqr7A==
age: 1874275
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/540x270/65633294.webp?k=13eb1edcf90c9ee12f1f3b130c6435a9ec3175cb0633862a897a10ea25f2f029&o=
143.204.55.13200 OK 31 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/540x270/65633294.webp?k=13eb1edcf90c9ee12f1f3b130c6435a9ec3175cb0633862a897a10ea25f2f029&o=
IP 143.204.55.13:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 540x270, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 606367d465fa9ffa8f549514869c322b
7e70beeff754fa21a0946def72031833fee1ea50
a4b97277078d575651a3745ddd9a0b4ecdec4c42591e16f2a873f8e680b6dd67
GET /xdata/images/hotel/540x270/65633294.webp?k=13eb1edcf90c9ee12f1f3b130c6435a9ec3175cb0633862a897a10ea25f2f029&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 31426
server: nginx
date: Sun, 23 Oct 2022 04:08:08 GMT
etag: "f72d440f1e08197a502576fac0d9988733f285f1"
expires: Tue, 22 Nov 2022 04:08:08 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: JChWFHeSEnM3FwbaqQfUtdMG3ShzMxw4RRWpqLLlc2_mjrYpcJ4Jlg==
age: 2563597
X-Firefox-Spdy: h2
cf.bstatic.com/static/fonts/booking-iconset-original/29bca18dce5a8e111855e31314a9b1d750ea9beb.woff2
143.204.55.13200 OK 93 kB URL HTTP/2 cf.bstatic.com/static/fonts/booking-iconset-original/29bca18dce5a8e111855e31314a9b1d750ea9beb.woff2
IP 143.204.55.13:0
File type Web Open Font Format (Version 2), TrueType, length 92724, version 1.0\012- data
Hash f132633e65809ec36c0f01b8a29fa457
e68a5b0de3e08ac85a13426ce3d8c13ad21d38ff
a98c20990fe3e31203fe2db8384af8e05e7b358cdae3c28b034e1f02b47db630
GET /static/fonts/booking-iconset-original/29bca18dce5a8e111855e31314a9b1d750ea9beb.woff2 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://cf.bstatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
content-length: 92724
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:49 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sat, 05 Nov 2022 08:17:37 GMT
expires: Mon, 05 Dec 2022 08:17:37 GMT
cache-control: max-age=2592000
etag: "5cadd1cd-16a34"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: E21SldK8Z0tsShW-V886mGRq27AcP_knusODWRZjXvAuf19GGS21gA==
age: 1425428
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/714x300/173282684.jpeg?k=e31b490d521194e65d41490f43dc704291ca07eaa762b6f36bca714d3211b9a1&o=
143.204.55.13200 OK 14 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/714x300/173282684.jpeg?k=e31b490d521194e65d41490f43dc704291ca07eaa762b6f36bca714d3211b9a1&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 714x300, components 3\012- data
Hash b08ebaadd8bdcdaab48146863ee7e2ac
ba8c861c80dfff7c6bb01c815341f7956f59908f
c3b9e0e160fdbdcfef162b2037b54f22235c6ed8186b1212666375215f9e671f
GET /xdata/images/xphoto/714x300/173282684.jpeg?k=e31b490d521194e65d41490f43dc704291ca07eaa762b6f36bca714d3211b9a1&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 14522
server: nginx
date: Wed, 02 Nov 2022 09:50:08 GMT
etag: "b4dba83094b5dfc2106ddfcf9a3737b2c45239b6"
expires: Fri, 02 Dec 2022 09:50:08 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -2qndE2VMp2fo_J6KrGK9ZS4ilr9XQl_AiURtlszfkRgEVA1PAjVog==
age: 1679077
X-Firefox-Spdy: h2
account.booking.com/privacy-consents/implicit
54.230.111.51204 No Content 0 B URL HTTP/2 account.booking.com/privacy-consents/implicit
IP 54.230.111.51:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /privacy-consents/implicit HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.booking.com/
Origin: https://www.booking.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
server: envoy
date: Mon, 21 Nov 2022 20:14:45 GMT
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: POST
access-control-allow-origin: https://www.booking.com
access-control-max-age: 1728000
set-cookie: bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJzZXNzaW9ucyI6W10sImRhdGFfc3ViamVjdF9pZCI6IjYyNThlNzkxLTgwNjQtNDBkNy1iMmZjLTkzNTQ0NjYzZDBjYiJ9fQ; domain=account.booking.com; path=/; expires=Sat, 20-Nov-2027 20:14:45 GMT; secure; HttpOnly
bkng_sso_ses=e30; domain=.booking.com; path=/; expires=Sat, 20-Nov-2027 20:14:45 GMT; secure; HttpOnly
bkng_sso_session=e30; domain=.booking.com; path=/; expires=Sat, 20-Nov-2027 20:14:45 GMT; secure; HttpOnly
content-security-policy: report-uri https://nellie.booking.com/csp-report-uri?type=block&tag=42&pid=c8a88e5a07df0191&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdaPywujlMqYClpEWWnp7GR_-kbA2HXm3PiRWopy3QrKMJMbZhg96Pj4F15TvX2AmS6O-MuirWpTEJ69IehW6JclrvR7K4TmYngAeLTKnRxQZ; frame-ancestors https://*.booking.com 'self';
content-security-policy-report-only: object-src 'none'; script-src saa.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google.com www.google-analytics.com cdn.cookielaw.org geolocation.onetrust.com 'self' 'nonce-7n8JDdyvCYQn0xd' 'report-sample'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=41&pid=c8a88e5a07df0191&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdaPywujlMqYClpEWWnp7GR_-kbA2HXm3PiRWopy3QrKMJMbZhg96Pj4F15TvX2AmS6O-MuirWpTEJ69IehW6JclrvR7K4TmYngAeLTKnRxQZ; default-src *.bstatic.com bstatic.com 'self'; img-src 'self' data: www.booking.com graph.facebook.com cdn.cookielaw.org account.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google-analytics.com www.google.com stats.g.doubleclick.net *.px-cloud.net *.perimeterx.net www.gstatic.com; style-src *.bstatic.com bstatic.com *.static.booking.cn 'self' 'unsafe-inline'; base-uri 'none'; frame-src https://www.youtube.com/embed/Vv4w5SmRkss *.bstatic.com https://www.google.com bstatic.com www.booking.com secure.booking.com paymentcomponent.booking.com 'self'; connect-src saa.booking.com secure.booking.com reports.booking.com privacyportal-eu.onetrust.com geolocation.onetrust.com cdn.cookielaw.org www.google-analytics.com *.perimeterx.net *.pxchk.net *.px-cdn.net *.px-client.net *.px-cloud.net 'self' 'report-sample';
strict-transport-security: max-age=17280000
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3mdOW0-nK-TOJHHvyYAmoGZ29ZdEfFNOR3CLG4HKTr0lisgqVJcffw==
X-Firefox-Spdy: h2
www.booking.com/c360/v1/track
143.204.55.11200 OK 33 B URL HTTP/2 www.booking.com/c360/v1/track
IP 143.204.55.11:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 42fcc80d879dd35c0bbdd04c1414890b
f1dbf58d1b458f9c50995bb8d84da4a67f2d437b
fb87565b58755d257fcf9af5b4b25e0dcfc682adb630dd2a32bbf56b91d2c325
POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Booking-Pageview-Id: aec88e59f5ef0262
X-Booking-AID: 1858279
X-Booking-Session-Id: 177553b3b65372b3d9593401240f5ec7
X-Booking-SiteType-Id: 1
X-Partner-Channel-Id: 2
X-Booking-CSRF: cxR8YwAAAAA=_L_qqguEpUGdLy7nfWDEq98NVaFah2uT0yMY4wxvJcveZRAfCNbQXhDIGtohOUOWYqO1TldHALpE-gl23pMBr0KWe8JtdZedP8X2xLj9uDgPKluy8WXjsWK02-S3OUOg5EXSxpr_8PXIc6nXRReDPKfaFdv8K7rCkfH54E7qU6bMEyxsKi3HgmRzNSdsEJJz0qC0eRXkQld3wdPK
X-Booking-Language-Code: en-us
X-Booking-Info: 1625890|2,1618710,1625850|4,1624940,1616480,1615950,1624940|2,1630600,1631430|1,1630360,1588860,1625600,1631160,1628410,1629910,1625850,1631430|3,1625890
X-Requested-With: XMLHttpRequest
Content-Length: 481
Origin: https://www.booking.com
Connection: keep-alive
Cookie: _pxhd=L%252FxUnveIUFPAfEXptlqQEHi3yGIIBI5qSiJXj0NHp70D51KSLqPhrVeb4RTttfrd6vr2QYRJ8tA9ZcxsLOID7g%253D%253D%253A2Q3JZccZSfBY07nH6udHglgYKFLimtqJRqRR%252FtvK-c18IoJ4yiEvRiqyJMMdC%252F6ssG1EitL-tdCzSE9I7qV3FctHniYCKj343Z1p-o1hivg%253D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLUhe5QHoHLB7WfrMVlpOmtOdgvdPkiufdFLntHSva7q0ZNab0Kj%2B7Sw%2BpPqL3uik51DQLBp5QI2FHzlkI8g2pRXgG%2BQTuYV%2Fb0g1ErG%2BOZX3suS2LcH4jfMq10RiiDN8rBcvrcMpBVAKcpUz6VlUaESaaojciXaJ4%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Nov+21+2022+20%3A14%3A45+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=4c626c01-6f57-4f54-b843-5129acbc4205&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 33
server: nginx
date: Mon, 21 Nov 2022 20:14:45 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng_frontend_sese_exp=1; domain=.booking.com; path=/; expires=Wed, 21-Dec-2022 20:14:45 GMT; secure; HttpOnly
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBIFrbiFpnpTrYEPPq1ksfgx%2BoyRAyO8PPL60JUM6ofYOW4Csa5DQrNOxvVyze75yUTfkzFfWMqEZHAPBb2kKTXPFarabUTyVQKD%2B0y3njyQfwca0lAbp3Rz0R6ZQw%2FwjHC0mZo85W8DCXncth%2B6SkYoNteI9PxMXYQ%3D; domain=.booking.com; path=/; expires=Sat, 20-Nov-2027 20:14:45 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: u0VJqhfvm72QfWYYDgrbuBaKdLOEBV8NMjFed6oDXrtmtbDTGQWQyQ==
X-Firefox-Spdy: h2
www.booking.com/sendlayoutevents
143.204.55.11200 OK 18 B URL HTTP/2 www.booking.com/sendlayoutevents
IP 143.204.55.11:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2e05820d6f78d44fc523264488c141ed
15a4675c7eb16f533ded02117788d8f642a062df
baa1fa10e6d9e9034747499cd67e611af00aea7c01264e221182934fcacb10e7
POST /sendlayoutevents HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
Content-Type: application/x-www-form-urlencoded;charset=UTF-8
Origin: https://www.booking.com
Content-Length: 115
Connection: keep-alive
Cookie: _pxhd=L%252FxUnveIUFPAfEXptlqQEHi3yGIIBI5qSiJXj0NHp70D51KSLqPhrVeb4RTttfrd6vr2QYRJ8tA9ZcxsLOID7g%253D%253D%253A2Q3JZccZSfBY07nH6udHglgYKFLimtqJRqRR%252FtvK-c18IoJ4yiEvRiqyJMMdC%252F6ssG1EitL-tdCzSE9I7qV3FctHniYCKj343Z1p-o1hivg%253D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBIFrbiFpnpTrYEPPq1ksfgx%2BoyRAyO8PPL60JUM6ofYOW4Csa5DQrNOxvVyze75yUTfkzFfWMqEZHAPBb2kKTXPFarabUTyVQKD%2B0y3njyQfwca0lAbp3Rz0R6ZQw%2FwjHC0mZo85W8DCXncth%2B6SkYoNteI9PxMXYQ%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Nov+21+2022+20%3A14%3A45+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=4c626c01-6f57-4f54-b843-5129acbc4205&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0; bkng_frontend_sese_exp=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 18
server: nginx
date: Mon, 21 Nov 2022 20:14:45 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLblgO%2Fz4BDP5tKlZGAiX4gr0D%2FZMjG1%2FfFX%2FePO2%2BJ1Kn%2Fisx7CNpQdw5GoWkqoPAju1MajT0cPci1sq4KBny%2Bpouq1HWGvdsb0x07T8RAmC4M9sa0b%2Fwc6CT%2FCY%2FxDOw9HEzFKUJ4M%2B0GG0CaaO1tSgwE9g4xZ4bMu%2Fifgs22Km8%3D; domain=.booking.com; path=/; expires=Sat, 20-Nov-2027 20:14:45 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
content-security-policy-report-only: report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=287e8e5a0a4c006d&e=UmFuZG9tSVYkc2RlIyh9YReXsVhv1rQKB4Zv_9za_vfbP9r4HMFvtOiFgkGgK_fhIBHAamYIZ5M; frame-ancestors 'none';
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rkFH2MfDRjXpj-AK56Fo3_Gb3sY53A7F_C-U9dN9e8M2aorkvfYsyw==
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/970.547a57a8.chunk.js
143.204.55.13200 OK 26 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/970.547a57a8.chunk.js
IP 143.204.55.13:0
File type ASCII text, with very long lines (65460)
Hash cd5c00108410e96e9c5ec9cdfe428247
0fd2c439250690bff81946309959d1d5a9e178e0
4e3d35fd82ca009acf9f0f0076dc1c21ebe6d7ac1b9fa48aed44bb9e07d2ba4a
GET /psb/capla/static/js/970.547a57a8.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Sat, 19 Nov 2022 10:15:54 GMT
etag: W/"2f64c4a56d5b359c1bd6e2abea3569a4"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 18 Nov 2022 17:51:34 GMT
x-amz-expiration: expiry-date="Sat, 18 Mar 2023 17:51:34 GMT", rule-id=""
expires: Mon, 19 Dec 2022 10:15:54 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vxy1KN7iUxvaxpXM9JX1DvD4TmfVZRfn3WQ-u-_dcIFiy0ePZwD_BQ==
age: 208730
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/raf_cloudfront_sd/b9e5b0bcf00cff69d910550bedf9b680172d2b89.js
143.204.55.13200 OK 22 kB URL HTTP/2 cf.bstatic.com/static/js/raf_cloudfront_sd/b9e5b0bcf00cff69d910550bedf9b680172d2b89.js
IP 143.204.55.13:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 687801a92ee81e6762f33bfe718a66fa
9370dcda5d358b497886271d527049ab92d1e2c7
b2b9a0a85a0b1cc543c95e5617a6753986f71a93dd272bb2a1571a9e4db00642
GET /static/js/raf_cloudfront_sd/b9e5b0bcf00cff69d910550bedf9b680172d2b89.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Sat, 12 Nov 2022 07:12:47 GMT
last-modified: Fri, 16 Sep 2022 13:33:46 GMT
etag: W/"63247b3a-1db04"
expires: Mon, 12 Dec 2022 07:12:47 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LYBPuZS85NvZvv1t12m2Ef2wi6v8hj95PBAQXXvQh5G3XrFDTl8RDg==
age: 824517
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/atlas_cst_cloudfront_sd/b3b2e507a16e749f30eab197fd0e1bc682f44d40.js
143.204.55.13200 OK 67 kB URL HTTP/2 cf.bstatic.com/static/js/atlas_cst_cloudfront_sd/b3b2e507a16e749f30eab197fd0e1bc682f44d40.js
IP 143.204.55.13:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 12632b61657496ccf949ba10079cf3ea
6e68594b6cdfbe497ca4450cc873f304ba97d9df
b450a58ae03bd43902f01817b1d37d74773871742153cfa392c8770f3c984f31
GET /static/js/atlas_cst_cloudfront_sd/b3b2e507a16e749f30eab197fd0e1bc682f44d40.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 18 Nov 2022 10:13:44 GMT
last-modified: Fri, 18 Nov 2022 09:59:22 GMT
etag: W/"6377577a-8da6e"
expires: Sun, 18 Dec 2022 10:13:44 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5NVyQrHfUWPBI-XD6xFYrCE1lNjNS0mqBguXiCOwbPt5qJBI-1vTKQ==
age: 295260
X-Firefox-Spdy: h2
www.booking.com/c360/v1/track
143.204.55.11200 OK 33 B URL HTTP/2 www.booking.com/c360/v1/track
IP 143.204.55.11:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2ef0949d72ccdcc083647d001c8ba940
ebe4e2284d3892b010623597d0945b6b5cd64448
fe1a912baa83e36855bb934de3f2cfdffe77b1224a552533a4a7f2e984a51e52
POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
Content-Type: application/json
X-Booking-Platform: undefined
X-Booking-SiteType-Id: undefined
X-Booking-Pageview-Id: aec88e59f5ef0262
X-Booking-Session-Id: undefined
X-Booking-ET-Seed: undefined
X-Booking-AID: 1858279
X-Booking-Label: undefined
X-Booking-CSRF: undefined
X-Booking-Language-Code: en-us
Origin: https://www.booking.com
Content-Length: 539
Connection: keep-alive
Cookie: _pxhd=L%252FxUnveIUFPAfEXptlqQEHi3yGIIBI5qSiJXj0NHp70D51KSLqPhrVeb4RTttfrd6vr2QYRJ8tA9ZcxsLOID7g%253D%253D%253A2Q3JZccZSfBY07nH6udHglgYKFLimtqJRqRR%252FtvK-c18IoJ4yiEvRiqyJMMdC%252F6ssG1EitL-tdCzSE9I7qV3FctHniYCKj343Z1p-o1hivg%253D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBIFrbiFpnpTrYEPPq1ksfgx%2BoyRAyO8PPL60JUM6ofYOW4Csa5DQrNOxvVyze75yUTfkzFfWMqEZHAPBb2kKTXPFarabUTyVQKD%2B0y3njyQfwca0lAbp3Rz0R6ZQw%2FwjHC0mZo85W8DCXncth%2B6SkYoNteI9PxMXYQ%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Nov+21+2022+20%3A14%3A45+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=4c626c01-6f57-4f54-b843-5129acbc4205&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0; bkng_frontend_sese_exp=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 33
server: nginx
date: Mon, 21 Nov 2022 20:14:45 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbbmD9q%2B5pe3WVYPieNoQmDVy1HtZ3ZMxWtjY60ngLFP30vwpj3lbF27cjWi3%2FFWR2M3fQPU16bSOowkbwBVL4D8lw%2Fy8XLrzbEWp%2BXRCP4aX3i7P1NhTBK5YJ2Um4q1rFKeTnjNs8JbYMiBRrHaC%2B3zR2tx3t%2B0fRoSf3tTQ%2FOVk%3D; domain=.booking.com; path=/; expires=Sat, 20-Nov-2027 20:14:45 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 85kQJnIrkLvsXwx0V6KswMVNd7195wucCImUasHAy1giC0rVKf5Ccw==
X-Firefox-Spdy: h2
account.booking.com/privacy-consents/implicit
54.230.111.51200 OK 108 B URL HTTP/2 account.booking.com/privacy-consents/implicit
IP 54.230.111.51:0
Hash 5feb6c83a19ae0f459cb0de1d401b62b
731c460bcf17d2e2f257da5b75559f36d12badb5
3757b4d29a00ea96ccadb7ddae9d505ca201a9f3e800dcb45061fc309c9b0d5f
POST /privacy-consents/implicit HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-type: application/json;charset=UTF-8
Content-Length: 36
Origin: https://www.booking.com
Connection: keep-alive
Cookie: _pxhd=L%252FxUnveIUFPAfEXptlqQEHi3yGIIBI5qSiJXj0NHp70D51KSLqPhrVeb4RTttfrd6vr2QYRJ8tA9ZcxsLOID7g%253D%253D%253A2Q3JZccZSfBY07nH6udHglgYKFLimtqJRqRR%252FtvK-c18IoJ4yiEvRiqyJMMdC%252F6ssG1EitL-tdCzSE9I7qV3FctHniYCKj343Z1p-o1hivg%253D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLUhe5QHoHLB7WfrMVlpOmtOdgvdPkiufdFLntHSva7q0ZNab0Kj%2B7Sw%2BpPqL3uik51DQLBp5QI2FHzlkI8g2pRXgG%2BQTuYV%2Fb0g1ErG%2BOZX3suS2LcH4jfMq10RiiDN8rBcvrcMpBVAKcpUz6VlUaESaaojciXaJ4%3D; cors_js=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
server: envoy
date: Mon, 21 Nov 2022 20:14:45 GMT
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-methods: POST
access-control-allow-origin: https://www.booking.com
access-control-max-age: 1728000
set-cookie: bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJzZXNzaW9ucyI6W10sImRhdGFfc3ViamVjdF9pZCI6ImJjY2RhZWVhLTFhZDItNDhhNy05NTgxLWQxNWJjMGMyMmJhMiJ9fQ; domain=account.booking.com; path=/; expires=Sat, 20-Nov-2027 20:14:45 GMT; secure; HttpOnly
bkng_sso_ses=e30; domain=.booking.com; path=/; expires=Sat, 20-Nov-2027 20:14:45 GMT; secure; HttpOnly
bkng_sso_session=e30; domain=.booking.com; path=/; expires=Sat, 20-Nov-2027 20:14:45 GMT; secure; HttpOnly
content-security-policy: frame-ancestors https://*.booking.com 'self'; report-uri https://nellie.booking.com/csp-report-uri?type=block&tag=42&pid=e2598e5aee210124&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdaPywujlMqYClpEWWnp7GR_-kbA2HXm3PvFWRdnUFAhBYMXFCJXDh48JHUCCGzkjlgOcpV9tqBK3wnWwCJ56D2wfBhXpCkBTApA8C2j4IjMY;
content-security-policy-report-only: script-src saa.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google.com www.google-analytics.com cdn.cookielaw.org geolocation.onetrust.com 'self' 'nonce-YpxFweF4lb3hPR2' 'report-sample'; default-src *.bstatic.com bstatic.com 'self'; style-src *.bstatic.com bstatic.com *.static.booking.cn 'self' 'unsafe-inline'; connect-src saa.booking.com secure.booking.com reports.booking.com privacyportal-eu.onetrust.com geolocation.onetrust.com cdn.cookielaw.org www.google-analytics.com *.perimeterx.net *.pxchk.net *.px-cdn.net *.px-client.net *.px-cloud.net 'self' 'report-sample'; img-src 'self' data: www.booking.com graph.facebook.com cdn.cookielaw.org account.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google-analytics.com www.google.com stats.g.doubleclick.net *.px-cloud.net *.perimeterx.net www.gstatic.com; base-uri 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=41&pid=e2598e5aee210124&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdaPywujlMqYClpEWWnp7GR_-kbA2HXm3PvFWRdnUFAhBYMXFCJXDh48JHUCCGzkjlgOcpV9tqBK3wnWwCJ56D2wfBhXpCkBTApA8C2j4IjMY; frame-src https://www.youtube.com/embed/Vv4w5SmRkss *.bstatic.com https://www.google.com bstatic.com www.booking.com secure.booking.com paymentcomponent.booking.com 'self'; object-src 'none';
strict-transport-security: max-age=17280000
content-encoding: gzip
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: y69g0epUva_wO-mj0uClDSS4hw9Jrm6aMeMQlPIc17jjRAe9c17TOg==
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/b25logo/favicon/ebc77706da3aae4aee7b05dadf182390f0d26d11.ico
143.204.55.13200 OK 1.6 kB URL HTTP/2 cf.bstatic.com/static/img/b25logo/favicon/ebc77706da3aae4aee7b05dadf182390f0d26d11.ico
IP 143.204.55.13:0
File type MS Windows icon resource - 3 icons, 32x32, 16 colors, 4 bits/pixel, 24x24, 16 colors, 4 bits/pixel\012- data
Hash faedfe66cf96784098c9b7b1f405ef12
645dce7842fa7483bb676def6df255317f203f22
a87ec2239235e2521bebe6f92dc4a65ca035fd419ebd09b68d04b989afd3141a
GET /static/img/b25logo/favicon/ebc77706da3aae4aee7b05dadf182390f0d26d11.ico HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/x-icon
content-length: 1582
server: nginx
date: Tue, 15 Nov 2022 01:15:23 GMT
last-modified: Wed, 10 Apr 2019 11:21:50 GMT
etag: "5cadd1ce-62e"
expires: Thu, 15 Dec 2022 01:15:23 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: JLpnve2mSGs8h5T36o1t77-HRDOaLTmfA0THn73KKo_QS1LUVBdcbQ==
age: 586762
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/apple-touch-icon/c9b35bf29a75cac2f430f80a5d4bc7fd961d21a7.png
143.204.55.13200 OK 2.9 kB URL HTTP/2 cf.bstatic.com/static/img/apple-touch-icon/c9b35bf29a75cac2f430f80a5d4bc7fd961d21a7.png
IP 143.204.55.13:0
File type PNG image data, 141 x 141, 8-bit/color RGBA, non-interlaced\012- data
Hash eeda6c96402e2a9ec176f43f0ac79e09
9cd713387ba5b2a468ffae40d40ae3718d2d1c49
08a917ae9e017c4b633b3d5920bb8e073968fa14b9bb7e78192fd2761465d0a4
GET /static/img/apple-touch-icon/c9b35bf29a75cac2f430f80a5d4bc7fd961d21a7.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2915
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:50 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sat, 05 Nov 2022 10:27:58 GMT
expires: Mon, 05 Dec 2022 10:27:58 GMT
cache-control: max-age=2592000
etag: "5cadd1ce-b63"
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Sp8qhSnaCp_d1rjnOq_IRHDlNIloak7l5mYSGiFC5GNInvHAEMI7KA==
age: 1417607
X-Firefox-Spdy: h2
www.booking.com/dml/graphql?aid=1858279&lang=en-us
143.204.55.11200 OK 2.6 kB URL HTTP/2 www.booking.com/dml/graphql?aid=1858279&lang=en-us
IP 143.204.55.11:0
File type JSON data\012- , ASCII text, with very long lines (10315), with no line terminators
Hash a83ee5f7de5a203b706d7fc125bc24b4
2ee26333f3e434a3c4978a6ac0510204c5e3def3
c994bd3c274dd87f2afa263e9847f22ef0a146a890e2d5c09dd1a22b3acffc92
POST /dml/graphql?aid=1858279&lang=en-us HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
content-type: application/json
x-booking-context-action-name: index
x-booking-context-aid: 1858279
x-booking-experiment-state: Eeo4xXdR5UAkF7pXw7ioJAU9htIbTIPTCR4zTbYriXTO9l4cMgFT9mHJvoFO2Ry_C
x-booking-pageview-id: aec88e59f5ef0262
x-booking-site-type-id: 1
x-booking-timeout-ms: 400
x-booking-topic: capla_browser_b-index-lp-web-mfe
x-envoy-expected-rq-timeout-ms: 400
Origin: https://www.booking.com
Content-Length: 1185
Connection: keep-alive
Cookie: _pxhd=L%252FxUnveIUFPAfEXptlqQEHi3yGIIBI5qSiJXj0NHp70D51KSLqPhrVeb4RTttfrd6vr2QYRJ8tA9ZcxsLOID7g%253D%253D%253A2Q3JZccZSfBY07nH6udHglgYKFLimtqJRqRR%252FtvK-c18IoJ4yiEvRiqyJMMdC%252F6ssG1EitL-tdCzSE9I7qV3FctHniYCKj343Z1p-o1hivg%253D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbbmD9q%2B5pe3WVYPieNoQmDVy1HtZ3ZMxWtjY60ngLFP30vwpj3lbF27cjWi3%2FFWR2M3fQPU16bSOowkbwBVL4D8lw%2Fy8XLrzbEWp%2BXRCP4aX3i7P1NhTBK5YJ2Um4q1rFKeTnjNs8JbYMiBRrHaC%2B3zR2tx3t%2B0fRoSf3tTQ%2FOVk%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Nov+21+2022+20%3A14%3A45+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=4c626c01-6f57-4f54-b843-5129acbc4205&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1669061685868; bkng_frontend_sese_exp=1; bkng_sso_ses=e30; bkng_sso_session=e30; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 2626
server: nginx
date: Mon, 21 Nov 2022 20:14:46 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
set-cookie: _pxhd=fC5hfTieda71fgcOqhmJoFf7mVJRpbL1FFbUvujbVq6e17GZiVyI29foZpc30Zqb5AO4704rKdApJWxSMjVWkA%3D%3D%3A0dGv8VZ8PMnDf-7U5D664d4EDEwy%2FW63S3ttMhFeC7yYZteU7HjPWQ6BVmxVDstfNJak4px7T8smdVRG1giSqIzFIbbZfbSQI4b4wiEywfQ%3D; domain=booking.com; path=/; expires=Tue, 21-Nov-2023 20:14:46 GMT
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBK6LEtX6%2Blc%2BS%2F7EhZB%2BVhOWnQXxiVRn6v5ssiE4Q11Ll6Joj2I1rQ%2FFFEx2rRiVWfYdJplW6Cm%2BoQKbOB1VSk5glOyyWjzq14cViNOrS6PaVemgQEEkf8vAOJDo7jBV7ciaDSHWNJHf%2FH%2FXJnjg%2Bb%2FFQCMJRcdKGc%3D; domain=.booking.com; path=/; expires=Sat, 20-Nov-2027 20:14:46 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: VpYtyeN8U2onHpXvH81ngEY0cjynUqn67rPc-YMXrNF6dIlMtv0AZQ==
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/vendors.7b4e9bf9.js
143.204.55.13200 OK 153 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/vendors.7b4e9bf9.js
IP 143.204.55.13:0
File type ASCII text, with very long lines (65462)
Size 153 kB (153102 bytes)
Hash 9be30abfda22e039222d36fecfbea057
ada1925de52d61d8016057da16d51bd69646efdc
ad0c7fe9452538054ee9f81579498ebfa644a65db34010519bb8aff78658aad0
GET /psb/capla/static/js/vendors.7b4e9bf9.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 21 Nov 2022 11:43:56 GMT
etag: W/"7546e34275565c2fd949ea30d6268ff1"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Mon, 21 Nov 2022 11:32:50 GMT
x-amz-expiration: expiry-date="Tue, 21 Mar 2023 11:32:50 GMT", rule-id=""
expires: Wed, 21 Dec 2022 11:43:56 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: GMCixXauwHVbBBi0hhB8Fi2MKMP3wCCDlJRN3MRlpEqOg-BmQO_JyQ==
age: 30647
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/async_index_postcards_c360_cloudfront_sd/2f24f2e1b80d43ef2ebc74a5f9807e5a9aff16e6.js
143.204.55.13200 OK 4.3 kB URL HTTP/2 cf.bstatic.com/static/js/async_index_postcards_c360_cloudfront_sd/2f24f2e1b80d43ef2ebc74a5f9807e5a9aff16e6.js
IP 143.204.55.13:0
File type ASCII text, with very long lines (1823), with no line terminators
Hash 4e3b1d78bfde1c9e876bf5c8a5732376
23b9c644ed592287ce7858b6ecb57636c65bab56
d912b4fe36f488d89bccb0b29dce95b99ad50a5340b2d33eb9d315bb630b986d
GET /static/js/async_index_postcards_c360_cloudfront_sd/2f24f2e1b80d43ef2ebc74a5f9807e5a9aff16e6.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Sat, 29 Oct 2022 10:06:06 GMT
last-modified: Thu, 27 Jan 2022 15:00:28 GMT
etag: W/"61f2b38c-71f"
expires: Mon, 28 Nov 2022 10:06:06 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vjoNJjfirurdak_c1Ni-xplLNLslHJ8x5fSVNMGQiU351Yzv9a1ceA==
age: 2023719
X-Firefox-Spdy: h2
www.booking.com/dml/graphql?aid=1858279&lang=en-us
143.204.55.11200 OK 3.1 kB URL HTTP/2 www.booking.com/dml/graphql?aid=1858279&lang=en-us
IP 143.204.55.11:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (12859), with no line terminators
Hash 2d383b1c5bad9f8c66c50b22b1fbbda5
61ae6a2f050da3b8b0e2355ce801c6668b3b2714
ebd43de560a98ca9bd56cc82b1e4701fa36632e6bc31606b94ef669c61ef3605
POST /dml/graphql?aid=1858279&lang=en-us HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
content-type: application/json
x-booking-context-action-name: index
x-booking-context-aid: 1858279
x-booking-pageview-id: aec88e59f5ef0262
x-booking-site-type-id: 1
x-booking-topic: capla_browser_b-index-lp-web-mfe
Origin: https://www.booking.com
Content-Length: 1719
Connection: keep-alive
Cookie: _pxhd=L%252FxUnveIUFPAfEXptlqQEHi3yGIIBI5qSiJXj0NHp70D51KSLqPhrVeb4RTttfrd6vr2QYRJ8tA9ZcxsLOID7g%253D%253D%253A2Q3JZccZSfBY07nH6udHglgYKFLimtqJRqRR%252FtvK-c18IoJ4yiEvRiqyJMMdC%252F6ssG1EitL-tdCzSE9I7qV3FctHniYCKj343Z1p-o1hivg%253D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbbmD9q%2B5pe3WVYPieNoQmDVy1HtZ3ZMxWtjY60ngLFP30vwpj3lbF27cjWi3%2FFWR2M3fQPU16bSOowkbwBVL4D8lw%2Fy8XLrzbEWp%2BXRCP4aX3i7P1NhTBK5YJ2Um4q1rFKeTnjNs8JbYMiBRrHaC%2B3zR2tx3t%2B0fRoSf3tTQ%2FOVk%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Nov+21+2022+20%3A14%3A45+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=4c626c01-6f57-4f54-b843-5129acbc4205&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1669061685868; bkng_frontend_sese_exp=1; bkng_sso_ses=e30; bkng_sso_session=e30; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 3132
server: nginx
date: Mon, 21 Nov 2022 20:14:46 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
set-cookie: _pxhd=j80EMJ5JjoJ7cNbdNeMWrAcvbfxGJGEC0qBeEmfAnSNiUUO6gNRZxjtRMHudmz6RKeU8YuBPAhyDPsPEBodTSw%3D%3D%3AyudIyPTz7517VjNUMUHUrMtnAXjCmpPNlHMJ1Xp60g%2FeJ3bVUtU9OUfYLKURZ-0A9nR1FpCp0DrURQGkoXxj4EfBEXp1D1l6txY7Ak5F9o4%3D; domain=booking.com; path=/; expires=Tue, 21-Nov-2023 20:14:46 GMT
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbof7CEiNviT9jDXfLQPlS6kzoLLmo90UkY08VODJtfeT8l3k%2F6Lj%2BOHN4%2FgwezRWEiSMKzL5rRRHClzqa3%2FcpwWrCXldRnaOt%2Fnrf0d6Uh0i99hwkbiHlgA20wFe%2B6fYJlaXxv9Db0UVikI6m%2BwyUC5n2F3sCIsEKOxYTHnKdyuE%3D; domain=.booking.com; path=/; expires=Sat, 20-Nov-2027 20:14:46 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: C5bOJ6IFae5oz9HO-REPi1TwH-mchH8OPlBcu9ZdBR69oQgA-ya82A==
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450090.jpeg?k=52f6b8190edb5a9c91528f8e0f875752ce55a6beb35dc62873601e57944990e4&o=
143.204.55.13200 OK 14 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450090.jpeg?k=52f6b8190edb5a9c91528f8e0f875752ce55a6beb35dc62873601e57944990e4&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 8acccb2d6683be0bca40bb1771e89a50
7b209f7d6f9a0f44f33f2a12b132ea391d5a7811
95e94b8bd3c16405b193fdd709c777fd2b5ea98d994a40232d95c26c04da6f79
GET /xdata/images/xphoto/300x240/45450090.jpeg?k=52f6b8190edb5a9c91528f8e0f875752ce55a6beb35dc62873601e57944990e4&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 14448
server: nginx
date: Sat, 29 Oct 2022 04:37:06 GMT
etag: "1045f7678cb214fb356ad84e5a961bdb605835ba"
expires: Mon, 28 Nov 2022 04:37:06 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Z_8zPmq7ODgDBMzK65s68z7zoFKSn4o36XVOVhK6kEYEbt4BIp_1MA==
age: 2043460
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/534.718e75ec.chunk.js
143.204.55.13200 OK 28 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/534.718e75ec.chunk.js
IP 143.204.55.13:0
File type ASCII text, with very long lines (56317)
Hash 0142f5b935d79ba034a03b28dc6f5361
0446e0a410356d8e517c2dd1ba5766600bc44bd7
881ee4a2bd7f748cbbc5c7f35eecded410fdd6a2325ddd53db9d62bfdc13e269
GET /psb/capla/static/js/534.718e75ec.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Sat, 19 Nov 2022 10:15:54 GMT
etag: W/"651e921c2cd89fd94244a7673a4bf053"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 18 Nov 2022 17:51:34 GMT
x-amz-expiration: expiry-date="Sat, 18 Mar 2023 17:51:34 GMT", rule-id=""
expires: Mon, 19 Dec 2022 10:15:54 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: aXGL_E36LPqz6QHqHU9ur5FQKaEWkTn51loZpznNxNxmJO5QIrNTKg==
age: 208730
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450073.jpeg?k=795a94c30433de1858ea52375e8190a962b302376be2e68aa08be345d936557d&o=
143.204.55.13200 OK 11 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450073.jpeg?k=795a94c30433de1858ea52375e8190a962b302376be2e68aa08be345d936557d&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 5567eb5c3d7f1f8d3c5fa7d43cb32b34
4caeab4dfa4cbdad3bdde14b1f659f8b0b06b46f
84331b7d14d04d74b8b85ef87221f322f8508e5e596b5c8bae2f8197f233aec2
GET /xdata/images/xphoto/300x240/45450073.jpeg?k=795a94c30433de1858ea52375e8190a962b302376be2e68aa08be345d936557d&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 10959
server: nginx
date: Sun, 30 Oct 2022 03:53:52 GMT
etag: "126fd077b5e50a4915447c1cfd532f813b3a3c2c"
expires: Tue, 29 Nov 2022 03:53:52 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: uhKbNy0-heN6OM67gMuIwbtLuUNRfog0gZpxWxmwWQIvhuvt_EF8TQ==
age: 1959654
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450056.jpeg?k=251e2507d43a24a4c58bb961b8d157147d56efbf91b49f9606bc768c58f581e4&o=
143.204.55.13200 OK 16 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450056.jpeg?k=251e2507d43a24a4c58bb961b8d157147d56efbf91b49f9606bc768c58f581e4&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 5ce55d22c4e06809b72801bf78198fb2
8cc49f26d00a1b2747ba599b06d67fd57d724047
3781416aa7ee06509ed5e7aa5143189ca6e1436f586194544fba3b8cfff6f27a
GET /xdata/images/xphoto/300x240/45450056.jpeg?k=251e2507d43a24a4c58bb961b8d157147d56efbf91b49f9606bc768c58f581e4&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 16003
server: nginx
date: Thu, 27 Oct 2022 06:24:55 GMT
etag: "997144e943ff350d511e29728a5a4ad1e60e14c0"
expires: Sat, 26 Nov 2022 06:24:55 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: NOQgD5jCdSOyIhWfWiTyJ_EbUPLwbvfB3bYkVcP2S3R3V9kcCaGQcA==
age: 2209791
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/778.9bb03ddc.chunk.js
143.204.55.13200 OK 63 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/778.9bb03ddc.chunk.js
IP 143.204.55.13:0
File type ASCII text, with very long lines (65460)
Hash ca0b5524d1de6c1649833a5753cab042
b68d0f43b6cfef79c934314fef6bda6efb358aee
dbe4abadbf3d4c24f4d9b7c79b1878d7b7c1db520546b2a76df26be0253dab6e
GET /psb/capla/static/js/778.9bb03ddc.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Sat, 19 Nov 2022 10:15:54 GMT
etag: W/"238f5abbbddb403e010068d308359b6b"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 18 Nov 2022 17:51:34 GMT
x-amz-expiration: expiry-date="Sat, 18 Mar 2023 17:51:34 GMT", rule-id=""
expires: Mon, 19 Dec 2022 10:15:54 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dKzzDJqT23j1D4Pdb0odLrIhR8oYHuKtUK0v7O-YnHa94PDiAHP3Rw==
age: 208730
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/797.161d2c81.chunk.js
143.204.55.13200 OK 25 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/797.161d2c81.chunk.js
IP 143.204.55.13:0
File type ASCII text, with very long lines (49577)
Hash f7ed16e70d19596d420307572afefe45
feda479fc924b5e01d46fd3de8a3c765f72f1379
f22d79cf62b75f1b03274889be3c32bdc3e53f26066ccad24e6e038a78c0b2fd
GET /psb/capla/static/js/797.161d2c81.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Sat, 19 Nov 2022 10:15:54 GMT
etag: W/"b531c2d4151ac727afa355a47a4b8815"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 18 Nov 2022 17:51:34 GMT
x-amz-expiration: expiry-date="Sat, 18 Mar 2023 17:51:34 GMT", rule-id=""
expires: Mon, 19 Dec 2022 10:15:54 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: UcTobzZGAzPpOYM5kT3L4Whz-VnczgQMH-5RbtUzJSqdS6FuCGPrmQ==
age: 208730
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/hotel/300x240/119467716.jpeg?k=f3c2c6271ab71513e044e48dfde378fcd6bb80cb893e39b9b78b33a60c0131c9&o=
143.204.55.13200 OK 13 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/hotel/300x240/119467716.jpeg?k=f3c2c6271ab71513e044e48dfde378fcd6bb80cb893e39b9b78b33a60c0131c9&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash b20c06f141858ff7b0aa0ade204140ba
a95923abb9dc509638db66c2821926f0e7d83db9
b5ecd72ebdb92a80d606d5f158ce5f7438d51a6075c80bfd8ba923df4c092025
GET /xdata/images/hotel/300x240/119467716.jpeg?k=f3c2c6271ab71513e044e48dfde378fcd6bb80cb893e39b9b78b33a60c0131c9&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 12557
server: nginx
date: Tue, 08 Nov 2022 02:56:44 GMT
etag: "c3658023e95e65e8077e8d7967746863ea4b34d8"
expires: Thu, 08 Dec 2022 02:56:44 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: EQtyrsGPc635G_PB2s0gFYK6TGI9RJdp8uPalCxi4AHBcEnflK7Arw==
age: 1185482
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/664.ac0bc498.chunk.js
143.204.55.13200 OK 32 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/664.ac0bc498.chunk.js
IP 143.204.55.13:0
File type ASCII text, with very long lines (65460)
Hash 2aa28c1931c90dfa072923f0d8b469c3
76477ab6decc3394269d149804685951ddf3cbb8
e41f59be3f6711d7efddcb12d86e41d9b638727b9f4a6a27cc3517a536902675
GET /psb/capla/static/js/664.ac0bc498.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 17 Nov 2022 14:22:06 GMT
etag: W/"36e0378761affe836d435fa1aa57d924"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Thu, 17 Nov 2022 13:55:02 GMT
x-amz-expiration: expiry-date="Fri, 17 Mar 2023 13:55:02 GMT", rule-id=""
expires: Sat, 17 Dec 2022 14:22:06 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: I2SL23yKjzjBXTkPOgZea2HywFfItFnwVkCCTSOXTlG2N3cv-6NU7Q==
age: 366757
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/579.ec5577fe.chunk.js
143.204.55.13200 OK 35 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/579.ec5577fe.chunk.js
IP 143.204.55.13:0
File type ASCII text, with very long lines (65460)
Hash a6776f7c8bf9442bdfbf7472d1f6ab9a
51ed39ace811d922b12f856bf5733e1e1b229b0e
8ba5c1e8289b5cd4897c3f5f30a8d3ecbcc667fb15ca91c0e39bf4dbd32acdb6
GET /psb/capla/static/js/579.ec5577fe.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Sat, 19 Nov 2022 10:15:54 GMT
etag: W/"9eb6c1afd9bcf298505a6035e452ce72"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 18 Nov 2022 19:30:16 GMT
x-amz-expiration: expiry-date="Sat, 18 Mar 2023 19:30:16 GMT", rule-id=""
expires: Mon, 19 Dec 2022 10:15:54 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: TZiorcYHrK8dci4fZKDJ2DNBxWOxZPMDjabE0O56YBTRR8mDLoGE0w==
age: 208730
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450074.jpeg?k=7039b03a94f3b99262c4b3054b0edcbbb91e9dade85b6efc880d45288a06c126&o=
143.204.55.13200 OK 20 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450074.jpeg?k=7039b03a94f3b99262c4b3054b0edcbbb91e9dade85b6efc880d45288a06c126&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 2414c022c1585360984508f5c5de208b
7f2fe2e841f4929dcf52c93c7efbe6401ef9fd24
2309e00634f6000b455200aeaae2c868aef28a31a05571aeada61b9c78264135
GET /xdata/images/xphoto/300x240/45450074.jpeg?k=7039b03a94f3b99262c4b3054b0edcbbb91e9dade85b6efc880d45288a06c126&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 20152
server: nginx
date: Sat, 05 Nov 2022 03:12:27 GMT
etag: "000cdbf26a44b29f411fd9bfd39e323fae522fec"
expires: Mon, 05 Dec 2022 03:12:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: KKaplX4aJAdGJMUHjxB4LCuBZVu6oNITrPOBRy54dnHsUgh4wECbzg==
age: 1443739
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/527.cc9339fe.chunk.js
143.204.55.13200 OK 13 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/527.cc9339fe.chunk.js
IP 143.204.55.13:0
File type ASCII text, with very long lines (3537)
Hash dfae49b004035615c862c61178932046
260fef0099bcf20e680bdd69aa9767fa7c785c1d
37635b9c8080e2761e0de3fafa632caedbf2558c372e2a37a48433c535b6e696
GET /psb/capla/static/js/527.cc9339fe.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 17 Nov 2022 14:22:06 GMT
etag: W/"c19eb298c8074c8fbb264c02bf2d567b"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Thu, 17 Nov 2022 13:55:02 GMT
x-amz-expiration: expiry-date="Fri, 17 Mar 2023 13:55:02 GMT", rule-id=""
expires: Sat, 17 Dec 2022 14:22:06 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -rhllURXVkkGp2j588gFKFmVKi3CuQ7BRGOZd7oD9rO8wwzi173TyQ==
age: 366758
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450082.jpeg?k=beb101b827a729065964523184f4db6cac42900c2415d71d516999af40beb7aa&o=
143.204.55.13200 OK 13 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450082.jpeg?k=beb101b827a729065964523184f4db6cac42900c2415d71d516999af40beb7aa&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash cb649ad60fe5750fbc23da44d35206b4
a9c188e226fdd77e73f3fa374b210bf1bb0dfe65
a6f122a9ceb30d1ebc827c40e4e7e40b710da41f9a7ee454d8504128e0ca7aa0
GET /xdata/images/xphoto/300x240/45450082.jpeg?k=beb101b827a729065964523184f4db6cac42900c2415d71d516999af40beb7aa&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 13058
server: nginx
date: Thu, 03 Nov 2022 00:53:00 GMT
etag: "b30a8b4e9a547c21f92a42d6c232362a7578e6e5"
expires: Sat, 03 Dec 2022 00:53:00 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: BmYK2UrBdUyuF3emzMYojsq-KCeYxjLBgcy1fEJgo0KX51SlFIdGww==
age: 1624906
X-Firefox-Spdy: h2
www.booking.com/get_handpicked_bh_properties?aid=1858279
143.204.55.11200 OK 1.1 kB URL HTTP/2 www.booking.com/get_handpicked_bh_properties?aid=1858279
IP 143.204.55.11:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (4849), with no line terminators
Hash fc73125d820c1d38624c84bc836224e7
ab7f3fd04ad2461c1ab5e5b6ed082f4a2c7239d3
eb1314ff0aad57fcb4c918421eb91f47794e844f9f9859660103d5293030f5f6
POST /get_handpicked_bh_properties?aid=1858279 HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Booking-Pageview-Id: aec88e59f5ef0262
X-Booking-AID: 1858279
X-Booking-Session-Id: 177553b3b65372b3d9593401240f5ec7
X-Booking-SiteType-Id: 1
X-Partner-Channel-Id: 2
X-Booking-CSRF: cxR8YwAAAAA=_L_qqguEpUGdLy7nfWDEq98NVaFah2uT0yMY4wxvJcveZRAfCNbQXhDIGtohOUOWYqO1TldHALpE-gl23pMBr0KWe8JtdZedP8X2xLj9uDgPKluy8WXjsWK02-S3OUOg5EXSxpr_8PXIc6nXRReDPKfaFdv8K7rCkfH54E7qU6bMEyxsKi3HgmRzNSdsEJJz0qC0eRXkQld3wdPK
X-Booking-Language-Code: en-us
X-Booking-Client-Info: aaTBNZZJRLESPIDNJDPVBC|1,cCHObTRVEFDEXNBBTZBYSGSYO|2,cCHObEfEITNPfbeQMITaSdFaLbFDXFZMIcCcCcCC|6
X-Booking-Info: 1588860,1615950,1616480,1618710,1624940,1625600,1625850,1625890,1628410,1629910,1630360,1630600,1631160,aaTBNZZJRLESPIDNJDPVBC|1,1625890|2,1625850|4,1624940|2,1631430|1,1631430|3,cCHObTRVEFDEXNBBTZBYSGSYO|2,cCHObTRVEFDEXNBBTZBYSGSYO|5,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|1,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|1,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|1,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|2,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|7,cCHObEfEITNPfbeQMITaSdFaLbFDXFZMIcCcCcCC|6
X-Requested-With: XMLHttpRequest
Content-Length: 43
Origin: https://www.booking.com
Connection: keep-alive
Cookie: _pxhd=L%252FxUnveIUFPAfEXptlqQEHi3yGIIBI5qSiJXj0NHp70D51KSLqPhrVeb4RTttfrd6vr2QYRJ8tA9ZcxsLOID7g%253D%253D%253A2Q3JZccZSfBY07nH6udHglgYKFLimtqJRqRR%252FtvK-c18IoJ4yiEvRiqyJMMdC%252F6ssG1EitL-tdCzSE9I7qV3FctHniYCKj343Z1p-o1hivg%253D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbbmD9q%2B5pe3WVYPieNoQmDVy1HtZ3ZMxWtjY60ngLFP30vwpj3lbF27cjWi3%2FFWR2M3fQPU16bSOowkbwBVL4D8lw%2Fy8XLrzbEWp%2BXRCP4aX3i7P1NhTBK5YJ2Um4q1rFKeTnjNs8JbYMiBRrHaC%2B3zR2tx3t%2B0fRoSf3tTQ%2FOVk%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Nov+21+2022+20%3A14%3A45+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=4c626c01-6f57-4f54-b843-5129acbc4205&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1669061685868; bkng_frontend_sese_exp=1; bkng_sso_ses=e30; bkng_sso_session=e30; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 1065
server: nginx
date: Mon, 21 Nov 2022 20:14:46 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
set-cookie: _pxhd=3w1k2f2h-SQ3ITm%2FMNOvosrzUfRnQV5EmgnbaufyI1O1%2F0P4TOec2r4vwjBjhajx9ZdTqsnHOzO5Be%2FxPldW2Q%3D%3D%3Ax5g%2FpTITyYmX6tOpqzFbUU-PqKWnc5%2FUfiSYoq-u8%2Fa4NrYbNExCq4By9T9n6x8SAN44K-zviz%2F-AazAWfl7p3S710mn4nyHL71FjbjCMak%3D; domain=booking.com; path=/; expires=Tue, 21-Nov-2023 20:14:46 GMT
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPeecd8bUNlU5JDEpuSBHIf4AueahX1qTsuTRqQI5Y8X9PrAcWQGj%2BoyEzv7rWlQkefgEvsyuHd87jR8XfHxe2D6UbVsL6SwmG3DiSN0AxQIBcpxC%2FQlHvYP8qSlbJgAenrd6A3Vfce8xP8fBrzXYOqfYUPmAE7MLQWo%3D; domain=.booking.com; path=/; expires=Sat, 20-Nov-2027 20:14:46 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: mRilBdRue_g7YGCaILersUizWQuDtsqA_a_vQs9TdH2t8Cgi_lUxRQ==
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450093.jpeg?k=aa5cc7703f3866af8ffd6de346c21161804a26c3d0a508d3999c11c337506ae1&o=
143.204.55.13200 OK 13 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450093.jpeg?k=aa5cc7703f3866af8ffd6de346c21161804a26c3d0a508d3999c11c337506ae1&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 34cd95647e7bfee64c4854f7146348b9
8017d1d7da4d9079bd0608f985a01630543c7d3a
7f72c1e1d27db3f66b0362c6b6066f384302247b1bc315af8054109102860740
GET /xdata/images/xphoto/300x240/45450093.jpeg?k=aa5cc7703f3866af8ffd6de346c21161804a26c3d0a508d3999c11c337506ae1&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 13027
server: nginx
date: Tue, 01 Nov 2022 02:51:32 GMT
etag: "406f0c3b30fffbbdeabca9631f0e99adc7571998"
expires: Thu, 01 Dec 2022 02:51:32 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: oHHN7HJYoSknfXKgC8zAlMCMSptXqcEuZMAGCXb9uplkrByGHX50bQ==
age: 1790594
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/736.71cd5248.chunk.js
143.204.55.13200 OK 8.6 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/736.71cd5248.chunk.js
IP 143.204.55.13:0
File type ASCII text, with very long lines (12379)
Hash 4bfe8c6a8f9a337359dc87ac2a92f44a
30746019aa14f3c3364331eb026b4a0f3a9188cc
afa670049e6906999915bb38bf4f96673bf1211fd9297c86bd55fd3b831d6de3
GET /psb/capla/static/js/736.71cd5248.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 17 Nov 2022 14:22:06 GMT
etag: W/"f3f7fa5bad133f7d70b363db5699d755"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Thu, 17 Nov 2022 13:55:02 GMT
x-amz-expiration: expiry-date="Fri, 17 Mar 2023 13:55:02 GMT", rule-id=""
expires: Sat, 17 Dec 2022 14:22:06 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: e8ZPNQyNjqOvGkDL7DnGt370GhJxIR5M8LflnKAj_lrY4e-sX4DcVA==
age: 366758
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450279.jpeg?k=cb9ab85ffe439f3030e00281f2d52583a398bf076e54f00f746e1d1baf62bf6e&o=
143.204.55.13200 OK 23 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450279.jpeg?k=cb9ab85ffe439f3030e00281f2d52583a398bf076e54f00f746e1d1baf62bf6e&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash d2777025d4a89299a415993ffee584ae
882aadd31ddf11f475cc870f291c0cb00909bb41
a358344c77aa72b8ed5c9aeb8989f3e5d01116badd07b0c8fa7a6a3d7b1afb2e
GET /xdata/images/xphoto/300x240/45450279.jpeg?k=cb9ab85ffe439f3030e00281f2d52583a398bf076e54f00f746e1d1baf62bf6e&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 22931
server: nginx
date: Sat, 29 Oct 2022 06:15:37 GMT
etag: "746ac579e716807bfd853d847472099eb8933bda"
expires: Mon, 28 Nov 2022 06:15:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: k3RYyOosyB4cSN93Mxu5OZEzE40ua9j550-bRWoUM_tD50mL3lkMsg==
age: 2037549
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450064.jpeg?k=4d4ea22dc4828fd55a3889e90531c9841ddb2d9abf460c420cdd24f2a9b658d2&o=
143.204.55.13200 OK 18 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450064.jpeg?k=4d4ea22dc4828fd55a3889e90531c9841ddb2d9abf460c420cdd24f2a9b658d2&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 3d32707cb3ccfc843ca809ff0ff08c28
950e8aa81a2f546217a0ca433700c4df4550bbfd
10d7e42ad31f48815167a292170eaacedd4e7b0ae8546795a63975c2711ce024
GET /xdata/images/xphoto/300x240/45450064.jpeg?k=4d4ea22dc4828fd55a3889e90531c9841ddb2d9abf460c420cdd24f2a9b658d2&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 18103
server: nginx
date: Tue, 01 Nov 2022 03:28:40 GMT
etag: "3ef10431f3d0c89bf87236a7c8668552e8e5dcff"
expires: Thu, 01 Dec 2022 03:28:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: stpHQj8lfmC0w8I9Fi5x0QUDLD5Cqq_oyGDjrSt8EJSnAr-FQfX8BA==
age: 1788366
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450068.jpeg?k=41cc7c5449011323aaaaed4e845cb16200b5d540c77a50c1bea90399a1e92d70&o=
143.204.55.13200 OK 20 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450068.jpeg?k=41cc7c5449011323aaaaed4e845cb16200b5d540c77a50c1bea90399a1e92d70&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 41bf36733e71ce642c45069444cfcf64
c931c599e9519d6c110ceed2c92432b818780d07
5c330c4cabaf246ebde2e47b2153d3e070423478706634c810980d67173f503a
GET /xdata/images/xphoto/300x240/45450068.jpeg?k=41cc7c5449011323aaaaed4e845cb16200b5d540c77a50c1bea90399a1e92d70&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 19539
server: nginx
date: Sun, 30 Oct 2022 21:27:44 GMT
etag: "295366f779b7f616fdaa29276db720185ace22d9"
expires: Tue, 29 Nov 2022 21:27:44 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Y4FO_uJvnCot-rGrcLJ9-V0RUKlflCfFQgFtIboyTT_flOUEktJQiQ==
age: 1896422
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450066.jpeg?k=4adfab312f5d26da9f81da48d8c95ca8f108215b2c84085590891a9e0e17b144&o=
143.204.55.13200 OK 22 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450066.jpeg?k=4adfab312f5d26da9f81da48d8c95ca8f108215b2c84085590891a9e0e17b144&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash a610b882e99f89c94893c05f18687ec3
16e551d6c5ac3a8db914ec8f5fc15bbe9589a1c8
9814b3eb58d8fb061b8ebe7b1a76f31f1d08e556f1c4b3662e3a6752f121ca07
GET /xdata/images/xphoto/300x240/45450066.jpeg?k=4adfab312f5d26da9f81da48d8c95ca8f108215b2c84085590891a9e0e17b144&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 21509
server: nginx
date: Mon, 07 Nov 2022 11:32:32 GMT
etag: "d039e515042fac48f10b9c9af9ae79ef1601f534"
expires: Wed, 07 Dec 2022 11:32:32 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: osQIMrzp4L9JuhD98s_MgVDzDgEKVMJPl4if_cFluV0Al0cnWXm40A==
age: 1240934
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450283.jpeg?k=44ef0e355cff36883935e4c99b5c01b035eabebad278d22363210b2fe40b2791&o=
143.204.55.13200 OK 16 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450283.jpeg?k=44ef0e355cff36883935e4c99b5c01b035eabebad278d22363210b2fe40b2791&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 6eb82e2bccd8b35e46f250238844ef3c
8f9cc26cce3b866559d1994c75147871b3d3bcea
0a96fd07340aee61dede1f72f25f593c9bed353963d8f289890b38fc2b827ba7
GET /xdata/images/xphoto/300x240/45450283.jpeg?k=44ef0e355cff36883935e4c99b5c01b035eabebad278d22363210b2fe40b2791&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 15976
server: nginx
date: Thu, 27 Oct 2022 08:44:00 GMT
etag: "b9e5194522818d8ae083a537bafc4100b2c592a1"
expires: Sat, 26 Nov 2022 08:44:00 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zy-wrql6tuXnhsgz3jUCKQGGD0H-0pNL82YeLRm-yjiUqVOkzwCAPg==
age: 2201446
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450103.jpeg?k=a1fa72362160b1df6e288050afa7ce1aade80871acd368ddd4a4ebf6ad87764e&o=
143.204.55.13200 OK 21 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450103.jpeg?k=a1fa72362160b1df6e288050afa7ce1aade80871acd368ddd4a4ebf6ad87764e&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 90383d39034028eafbd253eead13aecf
32035c5bcff0627f4901188d0e7b994aa46e64c8
150590b7a8af048e1a2696985211a78b0fa1800523f338e9fee9b5947cb0e5d7
GET /xdata/images/xphoto/300x240/45450103.jpeg?k=a1fa72362160b1df6e288050afa7ce1aade80871acd368ddd4a4ebf6ad87764e&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 20736
server: nginx
date: Thu, 03 Nov 2022 00:58:58 GMT
etag: "6321ccff0cd460c8afd84c79a5f56791f8a32987"
expires: Sat, 03 Dec 2022 00:58:58 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: sHUCIpvXSERfLQ_6qx69Ak02ciV1hSHCIOGeJqQC3NWzj29IoBOa6A==
age: 1624548
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450080.jpeg?k=15d9709efa513f2b23b5fa8d5234d87bdee2bf97b3e7552244592da11413db9a&o=
143.204.55.13200 OK 13 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450080.jpeg?k=15d9709efa513f2b23b5fa8d5234d87bdee2bf97b3e7552244592da11413db9a&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 04e82ce3fa3ae9bd52cad3056a100c91
93693b20ed0103332bbb4e9f29852a5eaa187f1a
2e50a6fcd67533e10f476f84bbfafd558dd520f5b53ef1c2256e221bdaac9513
GET /xdata/images/xphoto/300x240/45450080.jpeg?k=15d9709efa513f2b23b5fa8d5234d87bdee2bf97b3e7552244592da11413db9a&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 12640
server: nginx
date: Tue, 08 Nov 2022 04:25:59 GMT
etag: "3fee24361cbe69a1d0f1320cd1364e3114ae7344"
expires: Thu, 08 Dec 2022 04:25:59 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bD1WVQ_WsyCG10m3Foc7bLWeq-qXe9EQeWS95sJjqdGfkVwcwypYnw==
age: 1180127
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450095.jpeg?k=cd5e46e632dab722d22217813485efde31fbe82f5f26a624166edccdbe8187bc&o=
143.204.55.13200 OK 20 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450095.jpeg?k=cd5e46e632dab722d22217813485efde31fbe82f5f26a624166edccdbe8187bc&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash deb177f86bfc7083567ae12e1964f4ad
45c07c5d8cdec20431c81aee3aee189a4d87cd99
1f14eeb3c3ef9eeb1170e99a2fea2fbd034a83305f72be3fdfd7a7711f5fd4ee
GET /xdata/images/xphoto/300x240/45450095.jpeg?k=cd5e46e632dab722d22217813485efde31fbe82f5f26a624166edccdbe8187bc&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 20002
server: nginx
date: Wed, 26 Oct 2022 04:35:10 GMT
etag: "3b37dee95e4c922d0595fced952d47055cc7d91a"
expires: Fri, 25 Nov 2022 04:35:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: GDBiB1JrBKGbWekaD--5pWFX8h7wdHvOwVdANlHK9lXsbXCifmFA1Q==
age: 2302776
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450075.jpeg?k=d23cf8443780ac09f46f59e40393d75dbe64b06029b4959c60b81b7fdefc9be0&o=
143.204.55.13200 OK 12 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450075.jpeg?k=d23cf8443780ac09f46f59e40393d75dbe64b06029b4959c60b81b7fdefc9be0&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash f9b81d29754609253833fb749eb9c430
76bee0195580b7ed6fbbf132c14e4b04dd1828dc
f3ff755c327cbe08419dbc2fe6ef2452dba8c5e805e9bc1ac08dd55527360b4e
GET /xdata/images/xphoto/300x240/45450075.jpeg?k=d23cf8443780ac09f46f59e40393d75dbe64b06029b4959c60b81b7fdefc9be0&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 12281
server: nginx
date: Mon, 31 Oct 2022 03:20:42 GMT
etag: "6a97d451d0f58fbce9c4887b8171a333405e1df4"
expires: Wed, 30 Nov 2022 03:20:42 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: SyC8jkQRk9FBQlBoxaPXFPXtNuellVe0jqaDnQlDgebv5WxxPiYTwA==
age: 1875244
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/57175023.jpeg?k=dc0319d4d64ded9ee4b0ddb162a2e80db7899300b7bf21b34506888895d74c79&o=
143.204.55.13200 OK 17 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/57175023.jpeg?k=dc0319d4d64ded9ee4b0ddb162a2e80db7899300b7bf21b34506888895d74c79&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash cb830f24406a145f18b29227188fe8d0
6244d25c3af11e7b1106c7652c6dd0818bf47849
3f3e48ee42260b5d5cbe17052df364872d6853d6a77db87b859d52d12411ede3
GET /xdata/images/xphoto/300x240/57175023.jpeg?k=dc0319d4d64ded9ee4b0ddb162a2e80db7899300b7bf21b34506888895d74c79&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 17041
server: nginx
date: Mon, 07 Nov 2022 05:14:46 GMT
etag: "98d986837395cd37b1297e8c30f4017b67a337b3"
expires: Wed, 07 Dec 2022 05:14:46 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ptRJWA5SVFODUxBIvwTq2mLK2AN6qEe_DF4akLQ8_U0uhHQQ310uAw==
age: 1263600
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450097.jpeg?k=eac0f917a53dc395bd379fef8c191e7d5e37012b68e60232e4f6bba2a2901b7a&o=
143.204.55.13200 OK 15 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450097.jpeg?k=eac0f917a53dc395bd379fef8c191e7d5e37012b68e60232e4f6bba2a2901b7a&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 13d1467c76d772dd6647f49fe4140d08
7ff7e63be06a3e98495eae5c0a1fb26482025d78
50fa8a1dfe8f3251194c1564def0dda195ce6fc96f05a63a83753b7b6bc9463d
GET /xdata/images/xphoto/300x240/45450097.jpeg?k=eac0f917a53dc395bd379fef8c191e7d5e37012b68e60232e4f6bba2a2901b7a&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 15440
server: nginx
date: Wed, 02 Nov 2022 00:51:23 GMT
etag: "fbe15c466339e3107a497c74a5c4eb8e01bb01fe"
expires: Fri, 02 Dec 2022 00:51:23 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: y3GHniEwRT1LCdlBwgCRsXeqqXwn1nTepb0UR22fxp9dmeXS-K9AXw==
age: 1711403
X-Firefox-Spdy: h2
cf.bstatic.com/libs/perimeterx/px.v7.6.9.min.js
143.204.55.13200 OK 87 kB URL HTTP/2 cf.bstatic.com/libs/perimeterx/px.v7.6.9.min.js
IP 143.204.55.13:0
File type ASCII text, with very long lines (65402)
Hash 34c2415f3a9a24f7987413b5dd2c9000
41509e7adc2c19990b81698844d1eb060c1c8a39
0b051cc0de512fba4ce8f8c46a7c6562620487cbddf53b1fc63feb780c2dcad9
GET /libs/perimeterx/px.v7.6.9.min.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 07 Nov 2022 07:45:35 GMT
last-modified: Tue, 04 Oct 2022 23:02:37 GMT
etag: W/"633cbb8d-39901"
expires: Wed, 07 Dec 2022 07:45:35 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5fVsPmXKafPr1cO9WcLdcvDZDG20ysKH-1PP1H5sareeQMa_JLb54w==
age: 1254551
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/atlas_cloudfront_sd/9c56e70d002eaf621038d924731b360daeebe8bd.js
143.204.55.13200 OK 165 kB URL HTTP/2 cf.bstatic.com/static/js/atlas_cloudfront_sd/9c56e70d002eaf621038d924731b360daeebe8bd.js
IP 143.204.55.13:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 165 kB (164571 bytes)
Hash 6285a6ff70bc2ec90ee1ad3069f4a7b9
d45713bf08fceb467c148350a670b3b29544f236
216d9aeff1be7ef27ac4ad4ef18c99eeb2b7da7e56452c67937ca1375bb4505e
GET /static/js/atlas_cloudfront_sd/9c56e70d002eaf621038d924731b360daeebe8bd.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Tue, 15 Nov 2022 15:30:44 GMT
last-modified: Tue, 15 Nov 2022 15:27:21 GMT
etag: W/"6373afd9-1d126"
expires: Thu, 15 Dec 2022 15:30:44 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8AyNFaAjVyyiGYe24TDXz75X44D1SR2IcJgFZKBVt9ArHNj9leXpsA==
age: 535441
X-Firefox-Spdy: h2
www.booking.com/js_tracking?lang=en-us&sid=177553b3b65372b3d9593401240f5ec7&aid=1858279&ver=2&pid=aec88e59f5ef0262&ref_action=index&stype=1&ete=&etg=&etcg=&ets=cCHObTRVEFDEXNBBTZBYSGSYO|4,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|2,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|4,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|7,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|2,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|4,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|5,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|8,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|1,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|3,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|6,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|7&etgwv=&m=UmFuZG9tSVYkc2RlIyh9YUbfTKflR5q_n1-EGAsj-5UckUo1bbi5SL2gz2hWAF5i2hSio3RiELCxrbk2wqWTcvfv3mZoXBv7jBtCZujGNfMtF83cKcVcgboZCUoUcmhXemBXZEbviCkuamXo9MdVcFYuymu_UJ27YULHPKjJU6m1ch96AteFBrYQMPD8c8k26-0PVZsIv7OZs5xPr6EcwK3lZStOAu423NeEU1pAhB721vHpLq_FKHwH2ncdw3u1QAcTmCLrOxsj4a-yRrM_VJPLXctvfC2DwsIqvmcxUaCdugs1xNtC_CnWDLLOT3nVY71G0Lnvzd0M8bflEjC0rA
143.204.55.11200 OK 23 kB URL HTTP/2 www.booking.com/js_tracking?lang=en-us&sid=177553b3b65372b3d9593401240f5ec7&aid=1858279&ver=2&pid=aec88e59f5ef0262&ref_action=index&stype=1&ete=&etg=&etcg=&ets=cCHObTRVEFDEXNBBTZBYSGSYO|4,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|2,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|4,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|7,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|2,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|4,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|5,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|8,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|1,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|3,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|6,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|7&etgwv=&m=UmFuZG9tSVYkc2RlIyh9YUbfTKflR5q_n1-EGAsj-5UckUo1bbi5SL2gz2hWAF5i2hSio3RiELCxrbk2wqWTcvfv3mZoXBv7jBtCZujGNfMtF83cKcVcgboZCUoUcmhXemBXZEbviCkuamXo9MdVcFYuymu_UJ27YULHPKjJU6m1ch96AteFBrYQMPD8c8k26-0PVZsIv7OZs5xPr6EcwK3lZStOAu423NeEU1pAhB721vHpLq_FKHwH2ncdw3u1QAcTmCLrOxsj4a-yRrM_VJPLXctvfC2DwsIqvmcxUaCdugs1xNtC_CnWDLLOT3nVY71G0Lnvzd0M8bflEjC0rA
IP 143.204.55.11:0
Hash 69c424ec4ebb1e11a4c70052e66ba245
326e8783227d0e4859060cbf2d2a8b95051c1b05
2569c36a60f76e5fff20eebbe0bf3f965cb1b3565a52fa357b127af390cbc822
GET /js_tracking?lang=en-us&sid=177553b3b65372b3d9593401240f5ec7&aid=1858279&ver=2&pid=aec88e59f5ef0262&ref_action=index&stype=1&ete=&etg=&etcg=&ets=cCHObTRVEFDEXNBBTZBYSGSYO|4,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|2,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|4,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|7,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|2,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|4,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|5,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|8,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|1,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|3,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|6,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|7&etgwv=&m=UmFuZG9tSVYkc2RlIyh9YUbfTKflR5q_n1-EGAsj-5UckUo1bbi5SL2gz2hWAF5i2hSio3RiELCxrbk2wqWTcvfv3mZoXBv7jBtCZujGNfMtF83cKcVcgboZCUoUcmhXemBXZEbviCkuamXo9MdVcFYuymu_UJ27YULHPKjJU6m1ch96AteFBrYQMPD8c8k26-0PVZsIv7OZs5xPr6EcwK3lZStOAu423NeEU1pAhB721vHpLq_FKHwH2ncdw3u1QAcTmCLrOxsj4a-yRrM_VJPLXctvfC2DwsIqvmcxUaCdugs1xNtC_CnWDLLOT3nVY71G0Lnvzd0M8bflEjC0rA HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
X-Booking-AID: 1858279
X-Booking-CSRF: cxR8YwAAAAA=_L_qqguEpUGdLy7nfWDEq98NVaFah2uT0yMY4wxvJcveZRAfCNbQXhDIGtohOUOWYqO1TldHALpE-gl23pMBr0KWe8JtdZedP8X2xLj9uDgPKluy8WXjsWK02-S3OUOg5EXSxpr_8PXIc6nXRReDPKfaFdv8K7rCkfH54E7qU6bMEyxsKi3HgmRzNSdsEJJz0qC0eRXkQld3wdPK
X-Booking-Info: 1588860,1615950,1616480,1618710,1624940,1625600,1625850,1625890,1628410,1629910,1630360,1630600,1631160,aaTBNZZJRLESPIDNJDPVBC|1,1625890|2,1625850|4,1624940|2,1631430|1,1631430|3,cCHObTRVEFDEXNBBTZBYSGSYO|2,cCHObTRVEFDEXNBBTZBYSGSYO|5,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|1,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|1,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|1,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|2,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|7,cCHObEfEITNPfbeQMITaSdFaLbFDXFZMIcCcCcCC|6,cCHObTRVEFDEXNBBTZBYSGSYO|4,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|2,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|4,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|7,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|2,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|4,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|5,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|8,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|1,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|3,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|6,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|7
X-Booking-Client-Info: aaTBNZZJRLESPIDNJDPVBC|1,cCHObTRVEFDEXNBBTZBYSGSYO|2,cCHObEfEITNPfbeQMITaSdFaLbFDXFZMIcCcCcCC|6,cCHObTRVEFDEXNBBTZBYSGSYO|4,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|2,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|4,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|7,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|2,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|4,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|5,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|8,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|1,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|3,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|6,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|7
X-Booking-Label:
X-Booking-Language-Code: en-us
X-Booking-Pageview-Id: aec88e59f5ef0262
X-Booking-Session-Id: 177553b3b65372b3d9593401240f5ec7
X-Booking-SiteType-Id: 1
X-Partner-Channel-Id: 2
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: _pxhd=fC5hfTieda71fgcOqhmJoFf7mVJRpbL1FFbUvujbVq6e17GZiVyI29foZpc30Zqb5AO4704rKdApJWxSMjVWkA%3D%3D%3A0dGv8VZ8PMnDf-7U5D664d4EDEwy%2FW63S3ttMhFeC7yYZteU7HjPWQ6BVmxVDstfNJak4px7T8smdVRG1giSqIzFIbbZfbSQI4b4wiEywfQ%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBK6LEtX6%2Blc%2BS%2F7EhZB%2BVhOWnQXxiVRn6v5ssiE4Q11Ll6Joj2I1rQ%2FFFEx2rRiVWfYdJplW6Cm%2BoQKbOB1VSk5glOyyWjzq14cViNOrS6PaVemgQEEkf8vAOJDo7jBV7ciaDSHWNJHf%2FH%2FXJnjg%2Bb%2FFQCMJRcdKGc%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Nov+21+2022+20%3A14%3A45+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=4c626c01-6f57-4f54-b843-5129acbc4205&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1669061685868; bkng_frontend_sese_exp=1; bkng_sso_ses=e30; bkng_sso_session=e30; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
server: nginx
date: Mon, 21 Nov 2022 20:14:46 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
strict-transport-security: max-age=604800
content-security-policy-report-only: report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=af6f8e5b93b3019b&e=UmFuZG9tSVYkc2RlIyh9Yea92wm0yRUjnCBymoy8ejLXmLiARwySegUdaF9fD6Ofafl1mSqKYPQ; frame-ancestors 'none';
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _7TjDlWaYkdcnzRpt0NbNQ0IJTn63Kyk-khPiqbuXrbAB30PQxuO1A==
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/max500/69813393.jpg?k=aca2217cc21edcf3f108b94bc79ee527f8c709732b6e20815fcf4ba1f7fae991&o=
143.204.55.13200 OK 25 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/max500/69813393.jpg?k=aca2217cc21edcf3f108b94bc79ee527f8c709732b6e20815fcf4ba1f7fae991&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 500x334, components 3\012- data
Hash 8946e7afedbca918ec3e3f279eedf65a
67aed350a1372236cbdd719ab8f4e68ae9376fc2
3d81a85bf5cafe649484ce83cd51a115110753db238ce3a41d007ebb3345c6e0
GET /xdata/images/hotel/max500/69813393.jpg?k=aca2217cc21edcf3f108b94bc79ee527f8c709732b6e20815fcf4ba1f7fae991&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 25096
server: nginx
date: Thu, 27 Oct 2022 04:00:58 GMT
etag: "ffd45a52bddb6de3cebd41742b3a04d1a7e6f495"
expires: Sat, 26 Nov 2022 04:00:58 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 01lkKrntDWxPK2VInqhrfuRJX0sdIq2wPbCafUfvrW0wz3hNwpAiyw==
age: 2218428
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/max500/74594395.jpg?k=d5a71c0578774c302d2b8854482beaa8785077c616f956aac74766124023a319&o=
143.204.55.13200 OK 25 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/max500/74594395.jpg?k=d5a71c0578774c302d2b8854482beaa8785077c616f956aac74766124023a319&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 500x281, components 3\012- data
Hash 514a975e6c80a82c5ee7bcb638772299
dd0410d8e26d66c8d8b2542ba5cbbc0cf3f36d38
7b19dd3f6c71b2b61887584495fd5d573d5b641768f0cdcb87463b82262e2e0e
GET /xdata/images/hotel/max500/74594395.jpg?k=d5a71c0578774c302d2b8854482beaa8785077c616f956aac74766124023a319&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 24620
server: nginx
date: Fri, 04 Nov 2022 03:05:29 GMT
etag: "c1792097423301953c9ea7fe81ce65447c65a069"
expires: Sun, 04 Dec 2022 03:05:29 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: R8QQIRZjdNoMBGAkI7UleONhm6k4EtlkDdxpGZ4K4AXPztkizeBcwA==
age: 1530557
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/max500/13125904.jpg?k=4c7b5a8e3a8fc901e0337b162798b124dcc576fce2a244c54524564b550393fe&o=
143.204.55.13200 OK 37 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/max500/13125904.jpg?k=4c7b5a8e3a8fc901e0337b162798b124dcc576fce2a244c54524564b550393fe&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 500x335, components 3\012- data
Hash 738002a637fc79d4adcd4ded97b9038c
3291a5f0de9614b4721f4e1d7e2d4e0795440e58
77995c3099ad6cdf80bfabe84cd006ee3baeb70f9b7c555a450d3a5e147cc79b
GET /xdata/images/hotel/max500/13125904.jpg?k=4c7b5a8e3a8fc901e0337b162798b124dcc576fce2a244c54524564b550393fe&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 37070
server: nginx
date: Thu, 03 Nov 2022 01:26:27 GMT
etag: "328e715e4a3fe96ae0c80291af64d79f88dac8c2"
expires: Sat, 03 Dec 2022 01:26:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4_UgL3gLXCUiLjq4GjgUFQ2HKlKWVjMKWT0kbdkXJ_8wbIsSi-_2rw==
age: 1622899
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/join/bh_carousel_more_background/5132764897ca62019efeefc5ad9c296227434ba9.jpg
143.204.55.13200 OK 47 kB URL HTTP/2 cf.bstatic.com/static/img/join/bh_carousel_more_background/5132764897ca62019efeefc5ad9c296227434ba9.jpg
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 353x433, components 3\012- data
Hash 3471913b5eaf34016f7f8fd2b795353a
830765f7fccc5bc5a6e6ac6d57648c1f48e86c72
22d1b410f2a9e346185c14dbd28e358bab1edc3d1929751534c39b93010ee131
GET /static/img/join/bh_carousel_more_background/5132764897ca62019efeefc5ad9c296227434ba9.jpg HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.bstatic.com/static/css/index_cloudfront_sd.iq_ltr/35d0d1a1256609c96f7318595478d40c6d053769.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 47062
server: nginx
date: Mon, 31 Oct 2022 02:23:38 GMT
last-modified: Mon, 08 Jul 2019 08:01:33 GMT
etag: "5d22f85d-b7d6"
expires: Wed, 30 Nov 2022 02:23:38 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Oo9_DLzbf3kjnyt5peYxH5cHUkkOr8qwU2gYd4OsKm9r4T6LbzveVQ==
age: 1878668
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/224.69fdaa51.chunk.js
143.204.55.13200 OK 25 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/224.69fdaa51.chunk.js
IP 143.204.55.13:0
File type ASCII text, with very long lines (65460)
Hash cd521419940252107fa923faeed07f6f
11c6e8054bfc303f2c3c7e2f777c04f7588948ee
ebd4c41581e7408c825f01d16a6ee8fc93047a5d9157d280cf57c25b86b87540
GET /psb/capla/static/js/224.69fdaa51.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 21 Nov 2022 10:20:28 GMT
etag: W/"ac65a377b4427300f78afebb840f0310"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 18 Nov 2022 17:51:33 GMT
x-amz-expiration: expiry-date="Sat, 18 Mar 2023 17:51:33 GMT", rule-id=""
expires: Wed, 21 Dec 2022 10:20:28 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: skcfss_Rf_fgMYDf8vAwC-Hl0usW5bz1Nx9zuAPazRi2OUS-FOcm4g==
age: 35656
X-Firefox-Spdy: h2
www.booking.com/c360/v1/track
143.204.55.11200 OK 33 B URL HTTP/2 www.booking.com/c360/v1/track
IP 143.204.55.11:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 42fcc80d879dd35c0bbdd04c1414890b
f1dbf58d1b458f9c50995bb8d84da4a67f2d437b
fb87565b58755d257fcf9af5b4b25e0dcfc682adb630dd2a32bbf56b91d2c325
POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
Content-Type: application/json
X-Booking-Platform: undefined
X-Booking-SiteType-Id: undefined
X-Booking-Pageview-Id: aec88e59f5ef0262
X-Booking-Session-Id: undefined
X-Booking-ET-Seed: undefined
X-Booking-AID: 1858279
X-Booking-Label: undefined
X-Booking-CSRF: undefined
X-Booking-Language-Code: en-us
Origin: https://www.booking.com
Content-Length: 650
Connection: keep-alive
Cookie: _pxhd=3w1k2f2h-SQ3ITm%2FMNOvosrzUfRnQV5EmgnbaufyI1O1%2F0P4TOec2r4vwjBjhajx9ZdTqsnHOzO5Be%2FxPldW2Q%3D%3D%3Ax5g%2FpTITyYmX6tOpqzFbUU-PqKWnc5%2FUfiSYoq-u8%2Fa4NrYbNExCq4By9T9n6x8SAN44K-zviz%2F-AazAWfl7p3S710mn4nyHL71FjbjCMak%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPeecd8bUNlU5JDEpuSBHIf4AueahX1qTsuTRqQI5Y8X9PrAcWQGj%2BoyEzv7rWlQkefgEvsyuHd87jR8XfHxe2D6UbVsL6SwmG3DiSN0AxQIBcpxC%2FQlHvYP8qSlbJgAenrd6A3Vfce8xP8fBrzXYOqfYUPmAE7MLQWo%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Nov+21+2022+20%3A14%3A45+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=4c626c01-6f57-4f54-b843-5129acbc4205&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1669061685868; bkng_frontend_sese_exp=1; bkng_sso_ses=e30; bkng_sso_session=e30; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 33
server: nginx
date: Mon, 21 Nov 2022 20:14:46 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbwcLxQQ4VaCoRQ0yDkWy%2F9OlPX0T2e1u%2BtAtYJWhQEw%2F%2F%2BUdnhgshFbDdsw9LZpVJn%2FxHNJus2SMMmart4AYdYGinPyoI3AWsPf4eJsAHrETNy1pc2yOGfVO7CS7wqmcPd8Kh4sH3DNYERpa3VuNpsEH%2BNGhy8acdzlCKsYKMOQs%3D; domain=.booking.com; path=/; expires=Sat, 20-Nov-2027 20:14:46 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: n543aX8O9ZMpL8F5YkYv7LZiE3rHXRv5NZxdAyWXgtDL7KL-pygdxw==
X-Firefox-Spdy: h2
www.booking.com/c360/v1/track
143.204.55.11200 OK 33 B URL HTTP/2 www.booking.com/c360/v1/track
IP 143.204.55.11:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2ef0949d72ccdcc083647d001c8ba940
ebe4e2284d3892b010623597d0945b6b5cd64448
fe1a912baa83e36855bb934de3f2cfdffe77b1224a552533a4a7f2e984a51e52
POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
Content-Type: application/json
X-Booking-Platform: undefined
X-Booking-SiteType-Id: undefined
X-Booking-Pageview-Id: aec88e59f5ef0262
X-Booking-Session-Id: undefined
X-Booking-ET-Seed: undefined
X-Booking-AID: 1858279
X-Booking-Label: undefined
X-Booking-CSRF: undefined
X-Booking-Language-Code: en-us
Origin: https://www.booking.com
Content-Length: 650
Connection: keep-alive
Cookie: _pxhd=3w1k2f2h-SQ3ITm%2FMNOvosrzUfRnQV5EmgnbaufyI1O1%2F0P4TOec2r4vwjBjhajx9ZdTqsnHOzO5Be%2FxPldW2Q%3D%3D%3Ax5g%2FpTITyYmX6tOpqzFbUU-PqKWnc5%2FUfiSYoq-u8%2Fa4NrYbNExCq4By9T9n6x8SAN44K-zviz%2F-AazAWfl7p3S710mn4nyHL71FjbjCMak%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPeecd8bUNlU5JDEpuSBHIf4AueahX1qTsuTRqQI5Y8X9PrAcWQGj%2BoyEzv7rWlQkefgEvsyuHd87jR8XfHxe2D6UbVsL6SwmG3DiSN0AxQIBcpxC%2FQlHvYP8qSlbJgAenrd6A3Vfce8xP8fBrzXYOqfYUPmAE7MLQWo%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Nov+21+2022+20%3A14%3A45+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=4c626c01-6f57-4f54-b843-5129acbc4205&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1669061685868; bkng_frontend_sese_exp=1; bkng_sso_ses=e30; bkng_sso_session=e30; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 33
server: nginx
date: Mon, 21 Nov 2022 20:14:46 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbwcLxQQ4VaCp3t6067ST1eCffCyODpdgHz51B%2Fezl25WyC6aJR0AvCnT45YFUoPurXySe4GwTLvuJTqgfPAU2fLKQsxY%2BRz91JszQn5t1Bpk%2Bebz5gt%2FtfIUhcCVamE1U8WesXQooP9kQAT7mWGzujwTy9lFBRNhryCxIRbNRcLU%3D; domain=.booking.com; path=/; expires=Sat, 20-Nov-2027 20:14:46 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: TfGtDTXtq1Vp8BOQush2eeTa7i6NFEZ2OY59lV6Ji2y1UGqojnBnmA==
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040861.jpg?k=b3923be5ee58ae482fc655dacb085266ad442072fb5e267b4c425a591d4bd28b&o=
143.204.55.13200 OK 21 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040861.jpg?k=b3923be5ee58ae482fc655dacb085266ad442072fb5e267b4c425a591d4bd28b&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash d39ccfe2bd19314bee77123a52e0aefd
01f8cede86ab8add86197ed6f8a7e22c24412618
3f1572d10d71118c50b1f2478edf42b5bd0b2a5fb02c5f476cef309d1eb16523
GET /xdata/images/xphoto/300x240/140040861.jpg?k=b3923be5ee58ae482fc655dacb085266ad442072fb5e267b4c425a591d4bd28b&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 21427
server: nginx
date: Sat, 29 Oct 2022 08:12:53 GMT
etag: "720ec173d262f5b8f63ec8793f7b4711d3a380c4"
expires: Mon, 28 Nov 2022 08:12:53 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _msijUJQHCcQgAHHxdMADBQ0vmoMNrmt1o0gTyt_xuAdWdDEzFTB6w==
age: 2030513
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040692.jpg?k=525a82bc4ff232862f0214df25e19b94535b792955e8f10b3ce2bd151aac0af0&o=
143.204.55.13200 OK 12 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040692.jpg?k=525a82bc4ff232862f0214df25e19b94535b792955e8f10b3ce2bd151aac0af0&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash ffed4c1c9d2ee092ed991df22804e4b9
6a714c2ef5a865bf30de8a7c1d297d9e57534eca
d0f2672a80a9a2a11387d6ef3910d5c75747463b877e45971ec7426629734718
GET /xdata/images/xphoto/300x240/140040692.jpg?k=525a82bc4ff232862f0214df25e19b94535b792955e8f10b3ce2bd151aac0af0&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 11983
server: nginx
date: Sat, 05 Nov 2022 09:57:53 GMT
etag: "7cc79ebe7e7add834a0cf5703a3caf2fd3f80e71"
expires: Mon, 05 Dec 2022 09:57:53 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PS5vWEiOMrYudz4sycXQpKL20JNJsK9gZ5k0GzpF9RikPwoSb1b7gw==
age: 1419413
X-Firefox-Spdy: h2
www.booking.com/c360/v1/track
143.204.55.11200 OK 33 B URL HTTP/2 www.booking.com/c360/v1/track
IP 143.204.55.11:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2ef0949d72ccdcc083647d001c8ba940
ebe4e2284d3892b010623597d0945b6b5cd64448
fe1a912baa83e36855bb934de3f2cfdffe77b1224a552533a4a7f2e984a51e52
POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
Content-Type: application/json
X-Booking-Platform: undefined
X-Booking-SiteType-Id: undefined
X-Booking-Pageview-Id: aec88e59f5ef0262
X-Booking-Session-Id: undefined
X-Booking-ET-Seed: undefined
X-Booking-AID: 1858279
X-Booking-Label: undefined
X-Booking-CSRF: undefined
X-Booking-Language-Code: en-us
Origin: https://www.booking.com
Content-Length: 650
Connection: keep-alive
Cookie: _pxhd=3w1k2f2h-SQ3ITm%2FMNOvosrzUfRnQV5EmgnbaufyI1O1%2F0P4TOec2r4vwjBjhajx9ZdTqsnHOzO5Be%2FxPldW2Q%3D%3D%3Ax5g%2FpTITyYmX6tOpqzFbUU-PqKWnc5%2FUfiSYoq-u8%2Fa4NrYbNExCq4By9T9n6x8SAN44K-zviz%2F-AazAWfl7p3S710mn4nyHL71FjbjCMak%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPeecd8bUNlU5JDEpuSBHIf4AueahX1qTsuTRqQI5Y8X9PrAcWQGj%2BoyEzv7rWlQkefgEvsyuHd87jR8XfHxe2D6UbVsL6SwmG3DiSN0AxQIBcpxC%2FQlHvYP8qSlbJgAenrd6A3Vfce8xP8fBrzXYOqfYUPmAE7MLQWo%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Nov+21+2022+20%3A14%3A45+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=4c626c01-6f57-4f54-b843-5129acbc4205&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1669061685868; bkng_frontend_sese_exp=1; bkng_sso_ses=e30; bkng_sso_session=e30; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 33
server: nginx
date: Mon, 21 Nov 2022 20:14:46 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbKE7bjkbYWzkZ0wPxc0LXblXSLZC7wY7Tx20ByESXs4qxpiYiiRD2AVunXtRq4nn%2FyqCrphl6BydRk2xCPIIFSUDwrGFLpibSXDQ5dvHLkd%2FHrltr0kA0t4ThX17bMT0ACxM8GPfOacKnUCBTE1J7%2BOP8%2BJpZShSYVyQwpJSnnO4%3D; domain=.booking.com; path=/; expires=Sat, 20-Nov-2027 20:14:46 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9GLTvdi0PJNBeKihJok801KqSkYFD0u0i3B-VssXBSImClmVDsWIBA==
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040786.jpg?k=7af39f6b3d8c0b3e171d876343c3c26e5cc26a877ed41976a716da57c4dc3ef1&o=
143.204.55.13200 OK 7.8 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040786.jpg?k=7af39f6b3d8c0b3e171d876343c3c26e5cc26a877ed41976a716da57c4dc3ef1&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash c598c4dcb3727ca8f99b993060427919
b3640d1c65c21563744a2ac2d55fbe10058c3079
2066310b6a21919e4d7facfff9d2896e7c8630e504942e26f6d63db076cfe9df
GET /xdata/images/xphoto/300x240/140040786.jpg?k=7af39f6b3d8c0b3e171d876343c3c26e5cc26a877ed41976a716da57c4dc3ef1&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 7820
server: nginx
date: Sat, 05 Nov 2022 09:57:53 GMT
etag: "71040648a9130afeac322ed0eb93482f70ad73be"
expires: Mon, 05 Dec 2022 09:57:53 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4iPBtnGr7G891SGBPN1R9VL4atzY7l_l87tQq_JwIGrVJxpVfM5igw==
age: 1419413
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140050621.jpg?k=f744dfb0b4f12cd94190d738a75eb6a0d5d58e5a971496bb789391c05a60bdba&o=
143.204.55.13200 OK 17 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140050621.jpg?k=f744dfb0b4f12cd94190d738a75eb6a0d5d58e5a971496bb789391c05a60bdba&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 0f61c800a3d9b0841e0c0760099b6bd8
e27b3b3eb5fbe350822cfa78f207c0608c47eecb
340612fdff510f6a24f8bb4e624959f6dad356aead3d5f2abcc2ccbe230d0d25
GET /xdata/images/xphoto/300x240/140050621.jpg?k=f744dfb0b4f12cd94190d738a75eb6a0d5d58e5a971496bb789391c05a60bdba&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 17441
server: nginx
date: Fri, 28 Oct 2022 06:39:09 GMT
etag: "3815cd0b39506f6db332e337e75f5276f7d5eac9"
expires: Sun, 27 Nov 2022 06:39:09 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dLZwZuYbtfdZ9j68hbFzsm-xUKXOl-G35-zqU948G9_h--v_Izhnmg==
age: 2122537
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040791.jpg?k=bb3322bd62efa3aead56ece07d9f6338c98de541b10f919455973354ddcfdf76&o=
143.204.55.13200 OK 8.8 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040791.jpg?k=bb3322bd62efa3aead56ece07d9f6338c98de541b10f919455973354ddcfdf76&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 71501aba33491a4430453715c76dc4b2
85fc9f218b6b721bde7014133bb212e61f28b83c
9ff4140b3f0f4a9b6e8259f033efdb7f9819fbfb1069116c53ab588c13d4bf42
GET /xdata/images/xphoto/300x240/140040791.jpg?k=bb3322bd62efa3aead56ece07d9f6338c98de541b10f919455973354ddcfdf76&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 8799
server: nginx
date: Sat, 05 Nov 2022 09:57:53 GMT
etag: "d108a102dc3da8005a93c2d211c7e243e49eead2"
expires: Mon, 05 Dec 2022 09:57:53 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: YpTrSqSzNJNN6HTfjIiXuVTLp9GCsYFMbzgr3nhbK0C_pGOQ41psdg==
age: 1419413
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040762.jpg?k=7a9446b459690b60fba2d74ecd856b1c34b896ba3f9e231eff82abbfc8956b15&o=
143.204.55.13200 OK 17 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040762.jpg?k=7a9446b459690b60fba2d74ecd856b1c34b896ba3f9e231eff82abbfc8956b15&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 65e38b40c58827e57fd0cff25009e4ba
8460e679a4da3541a3e7a17aecde2238da826c1d
df53b855667fd3c922bc4c5a960890b5497a7f890c9fb216adaa94fbaf40ac0c
GET /xdata/images/xphoto/300x240/140040762.jpg?k=7a9446b459690b60fba2d74ecd856b1c34b896ba3f9e231eff82abbfc8956b15&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 16779
server: nginx
date: Wed, 02 Nov 2022 05:52:56 GMT
etag: "f9fd0819e3323b994b8f94e6f3e88cc398935a9a"
expires: Fri, 02 Dec 2022 05:52:56 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 64UnJsht2Jhz-YH8xSZjKaQxzWBIHYzAH2pLwhPGrZ4BbQbfKnbYGA==
age: 1693310
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040491.jpg?k=ad6e6050b93fe65224a29659793533d6562b424ee35882cb392c115d58ea1354&o=
143.204.55.13200 OK 7.0 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040491.jpg?k=ad6e6050b93fe65224a29659793533d6562b424ee35882cb392c115d58ea1354&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash da527d4ac8f4cb107e6a40c480d70d14
97fc6a9c91bb910fcf92b0e5dc4ec079385a0cc9
d4a7526e92a83ee550c888d6a3677b3c694393b979b442cd4c1f4a9d4def9759
GET /xdata/images/xphoto/300x240/140040491.jpg?k=ad6e6050b93fe65224a29659793533d6562b424ee35882cb392c115d58ea1354&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 6982
server: nginx
date: Sat, 05 Nov 2022 08:14:42 GMT
etag: "2708836cf21d5ff67f89d3dbf8afc25d6bd9e52f"
expires: Mon, 05 Dec 2022 08:14:42 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3B6LUiPAfgdnYCkorHDYic2aecaowT-cVWTwAr7VD5INluCV8TBOnQ==
age: 1425604
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040870.jpg?k=b3e16242c2f01e3493f03bf8b863b6561f8c52b43fa48569d7446d94874bd080&o=
143.204.55.13200 OK 12 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040870.jpg?k=b3e16242c2f01e3493f03bf8b863b6561f8c52b43fa48569d7446d94874bd080&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 53edea1fadbd43623cbaf3da9da24419
a034eab2a360a9b2a94b4bbb2ec999bd27524f17
a9593ed4bdec054997e16c6ede0ceb76dc652041fe6378f8320c571ac460c96b
GET /xdata/images/xphoto/300x240/140040870.jpg?k=b3e16242c2f01e3493f03bf8b863b6561f8c52b43fa48569d7446d94874bd080&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 11607
server: nginx
date: Wed, 26 Oct 2022 07:01:41 GMT
etag: "043102fb93dcdc8c3a38be91decdd1160d0ccb83"
expires: Fri, 25 Nov 2022 07:01:41 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: nP1OO8fWQ5bntVcl53V2_ARv-vQPiY9nO6bhLTmbjxqZzFg4ICFBWQ==
age: 2293985
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040599.jpg?k=574957ec36a2177a4b46f64993121848e62e61ced3932d1fdb6504f95652b439&o=
143.204.55.13200 OK 13 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040599.jpg?k=574957ec36a2177a4b46f64993121848e62e61ced3932d1fdb6504f95652b439&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash d3809e03fb1ae8fcef94ef19dca6228d
b97f714288003f6b3834ea9bc2a961ced5b89606
a000cfd08bff2b7ba4397d160bc02de6d5283e18bb06c8b3b018f41460108000
GET /xdata/images/xphoto/300x240/140040599.jpg?k=574957ec36a2177a4b46f64993121848e62e61ced3932d1fdb6504f95652b439&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 12804
server: nginx
date: Sat, 05 Nov 2022 09:58:23 GMT
etag: "1a9b6a02924178466532c6737245794919ed24b6"
expires: Mon, 05 Dec 2022 09:58:23 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: WX5PsZg6X0tSF3dksRNN9iXhN6PVUY_JCOOgQLIaqupHGJsHTlYqQw==
age: 1419383
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140050289.jpg?k=38a9f0bcadf1da09016399bec85f5d5b1ec53a8c24ae929da523e09c47db429b&o=
143.204.55.13200 OK 18 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140050289.jpg?k=38a9f0bcadf1da09016399bec85f5d5b1ec53a8c24ae929da523e09c47db429b&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash c11c7f9c8c482a844fa9f35a23ef554c
e4d700adcb02b63e9c6111dd857512eee1cbefe2
99aae4a81e7e564eecc8b4ed4db1d692542e37ee7b486bca7eef047ca0849056
GET /xdata/images/xphoto/300x240/140050289.jpg?k=38a9f0bcadf1da09016399bec85f5d5b1ec53a8c24ae929da523e09c47db429b&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 17735
server: nginx
date: Sat, 05 Nov 2022 09:58:23 GMT
etag: "0d6f84029fc3613b262daacbd07fa6d1756db89b"
expires: Mon, 05 Dec 2022 09:58:23 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8Cl6mhEbiTFlyV7gjX4SYuW5dXFxxfFjoOQ0SteMcyHC__8b0bcyzg==
age: 1419383
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040807.jpg?k=9cab54a3a43d3b941837c79958b284376005784e9ded8dadcbb83e39e25fcb9e&o=
143.204.55.13200 OK 17 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040807.jpg?k=9cab54a3a43d3b941837c79958b284376005784e9ded8dadcbb83e39e25fcb9e&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 6b69600400c2e34e52ac22b8280a471e
04b0fa66f7203b41bc5bcb9773afdb035cf68793
1e1547673775158c1b697974f7161f71b87530d3f1e565f18bd975579e67ef57
GET /xdata/images/xphoto/300x240/140040807.jpg?k=9cab54a3a43d3b941837c79958b284376005784e9ded8dadcbb83e39e25fcb9e&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 17072
server: nginx
date: Fri, 28 Oct 2022 03:38:42 GMT
etag: "a159aa3168e5b49ce4c73f601a4d686f9942dbb4"
expires: Sun, 27 Nov 2022 03:38:42 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: H3S2RmASS-sNQKtEreLfZHvPq8kpKmxtN4dP176rqbTFLoexjgobmg==
age: 2133364
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040444.jpg?k=78183a30bc77a7f4eb2550c457f0645c654b2c70f80b40258ffa926712392726&o=
143.204.55.13200 OK 18 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040444.jpg?k=78183a30bc77a7f4eb2550c457f0645c654b2c70f80b40258ffa926712392726&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 6f57315028bfce58a9111a97386b32f8
f865cb601c242c7945fceb5cdbd39af8e22ee68d
b51cb67e6a957bf93a45b47510f5b355d3779812dc4d46a3f2653baa3bbd8396
GET /xdata/images/xphoto/300x240/140040444.jpg?k=78183a30bc77a7f4eb2550c457f0645c654b2c70f80b40258ffa926712392726&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 18535
server: nginx
date: Sat, 05 Nov 2022 09:58:23 GMT
etag: "40b54ec5f01322af8c704d6bca0cf8b9d45f4336"
expires: Mon, 05 Dec 2022 09:58:23 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Z7cUg_Z7bSpHkeWU1Cxm0T8_ONpXlusZlO-z2qO7l9MeJOJDnr7kSw==
age: 1419383
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040549.jpg?k=47295571a3c7ad6e86a62047a4aceb3c8c0a19f5b4b86d6eafab42d61abad33e&o=
143.204.55.13200 OK 14 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040549.jpg?k=47295571a3c7ad6e86a62047a4aceb3c8c0a19f5b4b86d6eafab42d61abad33e&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash f53be5a5dc8a5e0852c37ecef3f57e80
95e46d745e83d3e5767d50c82ddda8b871239225
4f4fd90acbda0f964439cf256b5ad16a879a517226656911b91ed51f96e38171
GET /xdata/images/xphoto/300x240/140040549.jpg?k=47295571a3c7ad6e86a62047a4aceb3c8c0a19f5b4b86d6eafab42d61abad33e&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 13659
server: nginx
date: Sat, 05 Nov 2022 08:14:42 GMT
etag: "b16685775d88da04a38237a9ea6f9e60300fbf94"
expires: Mon, 05 Dec 2022 08:14:42 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: uVu3dctJj57jg7pynmtXbKQ_1N_zkZZ4QFeTLlPdtOXCzP_QmbRCgQ==
age: 1425604
X-Firefox-Spdy: h2
www.booking.com/c360/v1/track
143.204.55.11200 OK 33 B URL HTTP/2 www.booking.com/c360/v1/track
IP 143.204.55.11:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2ef0949d72ccdcc083647d001c8ba940
ebe4e2284d3892b010623597d0945b6b5cd64448
fe1a912baa83e36855bb934de3f2cfdffe77b1224a552533a4a7f2e984a51e52
POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
Content-Type: application/json
X-Booking-Platform: undefined
X-Booking-SiteType-Id: undefined
X-Booking-Pageview-Id: aec88e59f5ef0262
X-Booking-Session-Id: undefined
X-Booking-ET-Seed: undefined
X-Booking-AID: 1858279
X-Booking-Label: undefined
X-Booking-CSRF: undefined
X-Booking-Language-Code: en-us
Origin: https://www.booking.com
Content-Length: 650
Connection: keep-alive
Cookie: _pxhd=3w1k2f2h-SQ3ITm%2FMNOvosrzUfRnQV5EmgnbaufyI1O1%2F0P4TOec2r4vwjBjhajx9ZdTqsnHOzO5Be%2FxPldW2Q%3D%3D%3Ax5g%2FpTITyYmX6tOpqzFbUU-PqKWnc5%2FUfiSYoq-u8%2Fa4NrYbNExCq4By9T9n6x8SAN44K-zviz%2F-AazAWfl7p3S710mn4nyHL71FjbjCMak%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPeecd8bUNlU5JDEpuSBHIf4AueahX1qTsuTRqQI5Y8X9PrAcWQGj%2BoyEzv7rWlQkefgEvsyuHd87jR8XfHxe2D6UbVsL6SwmG3DiSN0AxQIBcpxC%2FQlHvYP8qSlbJgAenrd6A3Vfce8xP8fBrzXYOqfYUPmAE7MLQWo%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Nov+21+2022+20%3A14%3A45+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=4c626c01-6f57-4f54-b843-5129acbc4205&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1669061685868; bkng_frontend_sese_exp=1; bkng_sso_ses=e30; bkng_sso_session=e30; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 33
server: nginx
date: Mon, 21 Nov 2022 20:14:46 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBK9nqP1CuOaOHGCPjENSm5gZdzRNQovpBVxKojbhsP4kbdaBScvvEnkvqi8B%2F4Rqs8RYA%2B2sBrneAepxuuMa%2F%2BpUkG%2BTmh90Hm3MiQd3igANAFJ3zlYSbJ4UYfiOles2OLXtMDmlqbBxbMeX5a5KNOwnzHLpttd8cM%3D; domain=.booking.com; path=/; expires=Sat, 20-Nov-2027 20:14:46 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LhsSFSFZ-TV_OFxe-f3OR280WssOP5tT0zhMr8ifk-qdqTsaH5UHvQ==
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040635.jpg?k=329ec95c88a102f72b8bbb381ce82f86f29a3fc4f4652b0c2ec768aee8f5ae4c&o=
143.204.55.13200 OK 11 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040635.jpg?k=329ec95c88a102f72b8bbb381ce82f86f29a3fc4f4652b0c2ec768aee8f5ae4c&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 803716a18dfcbff4ec89fc3c654cb930
a67609f33b295ca8cd8c1c886b50f272d98628cc
c497e60866f9e42e0307d57527ac5220da67166f21a77c45cd6f99f8c3fdef50
GET /xdata/images/xphoto/300x240/140040635.jpg?k=329ec95c88a102f72b8bbb381ce82f86f29a3fc4f4652b0c2ec768aee8f5ae4c&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 10747
server: nginx
date: Sat, 05 Nov 2022 10:00:04 GMT
etag: "27e21d82a2425ac6f7c50ee80b783c81d10ba66a"
expires: Mon, 05 Dec 2022 10:00:04 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: v0l_F9REkk6vGCTWNrMOCjKl1SfUZH-1IRtmLT-YaCWrPzIv9ZGwpA==
age: 1419282
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140052116.jpg?k=e94346578a825ccf04f419c702577198d3d6c797aec34b2b0f58678af9e90dd0&o=
143.204.55.13200 OK 12 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140052116.jpg?k=e94346578a825ccf04f419c702577198d3d6c797aec34b2b0f58678af9e90dd0&o=
IP 143.204.55.13:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 4dde8ac450ded1d8d519f89b54df536e
c0a91335d7ae7b2193a125f7dd713a3fa10a3c03
7f9e23934ff3e05b17c81977e3429b17908bf98f5b7fa350ba102a33565fe523
GET /xdata/images/xphoto/300x240/140052116.jpg?k=e94346578a825ccf04f419c702577198d3d6c797aec34b2b0f58678af9e90dd0&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 11892
server: nginx
date: Sat, 05 Nov 2022 10:00:04 GMT
etag: "d8c934d0b608d77f79fbf66ae3ac29b5decc1ac7"
expires: Mon, 05 Dec 2022 10:00:04 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: GW64VB1Ca84StE4AZLFBxrdli-BKEfBHZ-f-75WroeAZxVa1iEEfIw==
age: 1419282
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/186.775dd420.chunk.js
143.204.55.13200 OK 95 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/186.775dd420.chunk.js
IP 143.204.55.13:0
File type ASCII text, with very long lines (65460)
Hash 4a7670f64cc88284c3d321af2cf597b7
f481ece613bd571db346600d46d1515d423658de
c51796c16496dc9887fb56b9de77c3057457b2d9663f674b7125bb2d32bc91d4
GET /psb/capla/static/js/186.775dd420.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 17 Nov 2022 14:22:06 GMT
etag: W/"371066a939e85d3067b309fa4e9c31f0"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Thu, 17 Nov 2022 13:55:01 GMT
x-amz-expiration: expiry-date="Fri, 17 Mar 2023 13:55:01 GMT", rule-id=""
expires: Sat, 17 Dec 2022 14:22:06 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: lk7T3NVzeJW20he2M3DJ6FAJa6uaZcKqYmbVTMoy5P_Zb42IzWznGA==
age: 366758
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/90166571.webp?k=0b63f507a150b0e5f6e2173786be4374ee7deae468fc1a6443feef111cc01ef5&o=&s=1
143.204.55.13200 OK 31 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/90166571.webp?k=0b63f507a150b0e5f6e2173786be4374ee7deae468fc1a6443feef111cc01ef5&o=&s=1
IP 143.204.55.13:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 144ea530c7ce441545e4faf8436567c5
adc26707883764b633c3c56b6fd94eadd1f02658
3b463c2a52c167a2ca60af3010e689f9edb48dcdfab7918a06b9ca83df7f4270
GET /xdata/images/hotel/square600/90166571.webp?k=0b63f507a150b0e5f6e2173786be4374ee7deae468fc1a6443feef111cc01ef5&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 30798
server: nginx
date: Sun, 13 Nov 2022 05:38:33 GMT
etag: "494d7241d5d000bee96a18c3fbafb509f867c944"
expires: Tue, 13 Dec 2022 05:38:33 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: pq1HFssW5ERKevR_baBLA30ywEEZhgDitRfxqF5bLNRQvgeQyK984g==
age: 743773
X-Firefox-Spdy: h2
www.booking.com/js_tracking?lang=en-us&sid=177553b3b65372b3d9593401240f5ec7&aid=1858279&ver=2&pid=aec88e59f5ef0262&ref_action=index&stype=1&ete=&etg=&etcg=cCHObEfEITNPfbeQMITaSdFaLbFDXFZMIcCcCcCC|5&ets=aaTBNZZJRLESPIDNJDPVBC|1,cCHObTRVEFDEXNBBTZBYSGSYO|2,cCHObEfEITNPfbeQMITaSdFaLbFDXFZMIcCcCcCC|6&etgwv=&m=UmFuZG9tSVYkc2RlIyh9YUbfTKflR5q_n1-EGAsj-5UckUo1bbi5SL2gz2hWAF5i2hSio3RiELCxrbk2wqWTcvfv3mZoXBv7jBtCZujGNfMtF83cKcVcgboZCUoUcmhXemBXZEbviCkuamXo9MdVcFYuymu_UJ27YULHPKjJU6m1ch96AteFBrYQMPD8c8k26-0PVZsIv7OZs5xPr6EcwK3lZStOAu423NeEU1pAhB721vHpLq_FKHwH2ncdw3u1QAcTmCLrOxsj4a-yRrM_VJPLXctvfC2DwsIqvmcxUaCdugs1xNtC_CnWDLLOT3nVY71G0Lnvzd0M8bflEjC0rA
143.204.55.11200 OK 474 B URL HTTP/2 www.booking.com/js_tracking?lang=en-us&sid=177553b3b65372b3d9593401240f5ec7&aid=1858279&ver=2&pid=aec88e59f5ef0262&ref_action=index&stype=1&ete=&etg=&etcg=cCHObEfEITNPfbeQMITaSdFaLbFDXFZMIcCcCcCC|5&ets=aaTBNZZJRLESPIDNJDPVBC|1,cCHObTRVEFDEXNBBTZBYSGSYO|2,cCHObEfEITNPfbeQMITaSdFaLbFDXFZMIcCcCcCC|6&etgwv=&m=UmFuZG9tSVYkc2RlIyh9YUbfTKflR5q_n1-EGAsj-5UckUo1bbi5SL2gz2hWAF5i2hSio3RiELCxrbk2wqWTcvfv3mZoXBv7jBtCZujGNfMtF83cKcVcgboZCUoUcmhXemBXZEbviCkuamXo9MdVcFYuymu_UJ27YULHPKjJU6m1ch96AteFBrYQMPD8c8k26-0PVZsIv7OZs5xPr6EcwK3lZStOAu423NeEU1pAhB721vHpLq_FKHwH2ncdw3u1QAcTmCLrOxsj4a-yRrM_VJPLXctvfC2DwsIqvmcxUaCdugs1xNtC_CnWDLLOT3nVY71G0Lnvzd0M8bflEjC0rA
IP 143.204.55.11:0
Hash 8fbedf850c39117218a3b26142e53e53
589ab2667e8388ace562f59d5bafe7f1b87fbb01
f186caf27fc86640520292d67b02f77097fc8b7522fc86dc85a1d58c56869e7b
GET /js_tracking?lang=en-us&sid=177553b3b65372b3d9593401240f5ec7&aid=1858279&ver=2&pid=aec88e59f5ef0262&ref_action=index&stype=1&ete=&etg=&etcg=cCHObEfEITNPfbeQMITaSdFaLbFDXFZMIcCcCcCC|5&ets=aaTBNZZJRLESPIDNJDPVBC|1,cCHObTRVEFDEXNBBTZBYSGSYO|2,cCHObEfEITNPfbeQMITaSdFaLbFDXFZMIcCcCcCC|6&etgwv=&m=UmFuZG9tSVYkc2RlIyh9YUbfTKflR5q_n1-EGAsj-5UckUo1bbi5SL2gz2hWAF5i2hSio3RiELCxrbk2wqWTcvfv3mZoXBv7jBtCZujGNfMtF83cKcVcgboZCUoUcmhXemBXZEbviCkuamXo9MdVcFYuymu_UJ27YULHPKjJU6m1ch96AteFBrYQMPD8c8k26-0PVZsIv7OZs5xPr6EcwK3lZStOAu423NeEU1pAhB721vHpLq_FKHwH2ncdw3u1QAcTmCLrOxsj4a-yRrM_VJPLXctvfC2DwsIqvmcxUaCdugs1xNtC_CnWDLLOT3nVY71G0Lnvzd0M8bflEjC0rA HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
X-Booking-AID: 1858279
X-Booking-CSRF: cxR8YwAAAAA=_L_qqguEpUGdLy7nfWDEq98NVaFah2uT0yMY4wxvJcveZRAfCNbQXhDIGtohOUOWYqO1TldHALpE-gl23pMBr0KWe8JtdZedP8X2xLj9uDgPKluy8WXjsWK02-S3OUOg5EXSxpr_8PXIc6nXRReDPKfaFdv8K7rCkfH54E7qU6bMEyxsKi3HgmRzNSdsEJJz0qC0eRXkQld3wdPK
X-Booking-Info: 1588860,1615950,1616480,1618710,1624940,1625600,1625850,1625890,1628410,1629910,1630360,1630600,1631160,aaTBNZZJRLESPIDNJDPVBC|1,1625890|2,1625850|4,1624940|2,1631430|1,1631430|3,cCHObTRVEFDEXNBBTZBYSGSYO|2,cCHObTRVEFDEXNBBTZBYSGSYO|5,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|1,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|1,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|1,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|2,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|7,cCHObEfEITNPfbeQMITaSdFaLbFDXFZMIcCcCcCC|6
X-Booking-Client-Info: aaTBNZZJRLESPIDNJDPVBC|1,cCHObTRVEFDEXNBBTZBYSGSYO|2,cCHObEfEITNPfbeQMITaSdFaLbFDXFZMIcCcCcCC|6
X-Booking-Label:
X-Booking-Language-Code: en-us
X-Booking-Pageview-Id: aec88e59f5ef0262
X-Booking-Session-Id: 177553b3b65372b3d9593401240f5ec7
X-Booking-SiteType-Id: 1
X-Partner-Channel-Id: 2
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: _pxhd=L%252FxUnveIUFPAfEXptlqQEHi3yGIIBI5qSiJXj0NHp70D51KSLqPhrVeb4RTttfrd6vr2QYRJ8tA9ZcxsLOID7g%253D%253D%253A2Q3JZccZSfBY07nH6udHglgYKFLimtqJRqRR%252FtvK-c18IoJ4yiEvRiqyJMMdC%252F6ssG1EitL-tdCzSE9I7qV3FctHniYCKj343Z1p-o1hivg%253D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbbmD9q%2B5pe3WVYPieNoQmDVy1HtZ3ZMxWtjY60ngLFP30vwpj3lbF27cjWi3%2FFWR2M3fQPU16bSOowkbwBVL4D8lw%2Fy8XLrzbEWp%2BXRCP4aX3i7P1NhTBK5YJ2Um4q1rFKeTnjNs8JbYMiBRrHaC%2B3zR2tx3t%2B0fRoSf3tTQ%2FOVk%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Nov+21+2022+20%3A14%3A45+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=4c626c01-6f57-4f54-b843-5129acbc4205&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1669061685868; bkng_frontend_sese_exp=1; bkng_sso_ses=e30; bkng_sso_session=e30; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
server: nginx
date: Mon, 21 Nov 2022 20:14:46 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
strict-transport-security: max-age=604800
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=1ae08e5b864a0183&e=UmFuZG9tSVYkc2RlIyh9Yea92wm0yRUjnCBymoy8ejLaq6DrJBZkUC1jiEJNCSi9YNg5J8cYrLQ;
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: JPi-_PPbezM4O2SQ-CdeEiCfVrCbvDQ_7gsqFY239jyav3CLJSakHQ==
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/125840065.webp?k=3443f59e7b7c521c1abdfa94fcbf62b8e5386a2a7b70d815db2714b793d22f96&o=&s=1
143.204.55.13200 OK 31 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/125840065.webp?k=3443f59e7b7c521c1abdfa94fcbf62b8e5386a2a7b70d815db2714b793d22f96&o=&s=1
IP 143.204.55.13:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 40c15dcecbbe184be6892d94541acc13
38bfdd7a11f114b478d926355ef9dfbb0d95ae34
e13b70dfc2ab40cc17975653efd4ddb411329be6e1f042511d754129b439db1c
GET /xdata/images/hotel/square600/125840065.webp?k=3443f59e7b7c521c1abdfa94fcbf62b8e5386a2a7b70d815db2714b793d22f96&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 31122
server: nginx
date: Wed, 02 Nov 2022 07:17:01 GMT
etag: "2425a87567769003c6601cf735bc26a61a8291d9"
expires: Fri, 02 Dec 2022 07:17:01 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: wPrz2GnGzUbTdIGxlHMlondybpEYe2CNVStV3YuRhNlUksRfB8Cj4A==
age: 1688265
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/236840535.webp?k=ce3c9fd759ec1a8d942b39f8fa1b8f4f388918523b269b9dff75842fec735038&o=&s=1
143.204.55.13200 OK 44 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/236840535.webp?k=ce3c9fd759ec1a8d942b39f8fa1b8f4f388918523b269b9dff75842fec735038&o=&s=1
IP 143.204.55.13:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1a4d2393c57cc8f4803d5142fbec0b15
bc63da22a153bbeb61fc53874e2c86fab68392ff
a4c1d356a4ef9d0eff6a71be2d6a8fd03300bf48087346743197f6a096f1628a
GET /xdata/images/hotel/square600/236840535.webp?k=ce3c9fd759ec1a8d942b39f8fa1b8f4f388918523b269b9dff75842fec735038&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 44364
server: nginx
date: Tue, 15 Nov 2022 03:58:23 GMT
etag: "8912b27b62c0dd4a66cf1833cbf600a7a5471cd1"
expires: Thu, 15 Dec 2022 03:58:23 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 10SEH4byUMtct8jx-DZzliHdgYXhkUA6rxKe7jyAwOhMcMUQ24LO6w==
age: 576983
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/262247242.webp?k=ac5f696d6e7c82349e66d4e54d6a12bb0d89003eac8e7734489cc3e5d76944b8&o=&s=1
143.204.55.13200 OK 128 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/262247242.webp?k=ac5f696d6e7c82349e66d4e54d6a12bb0d89003eac8e7734489cc3e5d76944b8&o=&s=1
IP 143.204.55.13:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 128 kB (128296 bytes)
Hash 72a0c3af78637f10b366a61bb49696bc
4dc6662ac320116b46d35edf4bd07870b6924df2
db14d14f8adfd6cb7b6636aef60e31df2bd660773b870ddbbf05c509720bfad1
GET /xdata/images/hotel/square600/262247242.webp?k=ac5f696d6e7c82349e66d4e54d6a12bb0d89003eac8e7734489cc3e5d76944b8&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 128296
server: nginx
date: Wed, 02 Nov 2022 07:17:03 GMT
etag: "0b81b7fc2385909348dbfdfc2f1dddcf4a14b6a8"
expires: Fri, 02 Dec 2022 07:17:03 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: WE9_msFjp9ebRUHMCBpvq1BrBVzs6igGQWhFvH-NpTOQO5Y8SQNDEg==
age: 1688263
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/236840535.webp?k=ce3c9fd759ec1a8d942b39f8fa1b8f4f388918523b269b9dff75842fec735038&o=&s=1
143.204.55.13200 OK 44 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/236840535.webp?k=ce3c9fd759ec1a8d942b39f8fa1b8f4f388918523b269b9dff75842fec735038&o=&s=1
IP 143.204.55.13:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1a4d2393c57cc8f4803d5142fbec0b15
bc63da22a153bbeb61fc53874e2c86fab68392ff
a4c1d356a4ef9d0eff6a71be2d6a8fd03300bf48087346743197f6a096f1628a
GET /xdata/images/hotel/square600/236840535.webp?k=ce3c9fd759ec1a8d942b39f8fa1b8f4f388918523b269b9dff75842fec735038&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 44364
server: nginx
date: Tue, 15 Nov 2022 03:58:23 GMT
etag: "8912b27b62c0dd4a66cf1833cbf600a7a5471cd1"
expires: Thu, 15 Dec 2022 03:58:23 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: EjeW8qQe7nl3Mr5q9hILNBdh0Oj0pdvUgrEd8sMAJRogepJpvT5IgA==
age: 576983
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/262247242.webp?k=ac5f696d6e7c82349e66d4e54d6a12bb0d89003eac8e7734489cc3e5d76944b8&o=&s=1
143.204.55.13200 OK 128 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/262247242.webp?k=ac5f696d6e7c82349e66d4e54d6a12bb0d89003eac8e7734489cc3e5d76944b8&o=&s=1
IP 143.204.55.13:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 128 kB (128296 bytes)
Hash 72a0c3af78637f10b366a61bb49696bc
4dc6662ac320116b46d35edf4bd07870b6924df2
db14d14f8adfd6cb7b6636aef60e31df2bd660773b870ddbbf05c509720bfad1
GET /xdata/images/hotel/square600/262247242.webp?k=ac5f696d6e7c82349e66d4e54d6a12bb0d89003eac8e7734489cc3e5d76944b8&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 128296
server: nginx
date: Wed, 02 Nov 2022 07:17:03 GMT
etag: "0b81b7fc2385909348dbfdfc2f1dddcf4a14b6a8"
expires: Fri, 02 Dec 2022 07:17:03 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hthSMzF_-FSukWWwca5hcpzBunLP-w3ewo8nkSWpP8TWb1hVc7knsg==
age: 1688263
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/109319008.webp?k=b8fc6fbc8d874cffedf49c0080f14933a20995b040dc02aeaee3afad1e79c670&o=&s=1
143.204.55.13200 OK 72 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/109319008.webp?k=b8fc6fbc8d874cffedf49c0080f14933a20995b040dc02aeaee3afad1e79c670&o=&s=1
IP 143.204.55.13:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4bc699d1bd67bda2dd2771f1160ebf07
5bd339ae7baa59fb6ea72d9b0adfc22859458596
deb835a811f25db8ab52d0a20100d29baf15fa5b2ec3f2b4f01210c56fb0163f
GET /xdata/images/hotel/square600/109319008.webp?k=b8fc6fbc8d874cffedf49c0080f14933a20995b040dc02aeaee3afad1e79c670&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 71756
server: nginx
date: Sat, 05 Nov 2022 07:25:41 GMT
etag: "2c7e00b39a6f43f55dc3ff980609243364d28d7d"
expires: Mon, 05 Dec 2022 07:25:41 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: CxkyFCmq7sd_f8m10_If1xUC3HkKEXMpvKtyFKdCtZGgL41fxcKDQw==
age: 1428545
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/98662660.webp?k=6e981419e8af97778c5b13a8aca3c264a0be73e9ebfd565cb17c0e4134783564&o=&s=1
143.204.55.13200 OK 40 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/98662660.webp?k=6e981419e8af97778c5b13a8aca3c264a0be73e9ebfd565cb17c0e4134783564&o=&s=1
IP 143.204.55.13:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ae5abd3325e28c423001f3f540d38b80
aa9535e550f5c89977b4f598eb656de20ec767cc
938a823e490adc84ef5d12c5b763baebb2e0ccc0592b3f0faa785a7e94e88055
GET /xdata/images/hotel/square600/98662660.webp?k=6e981419e8af97778c5b13a8aca3c264a0be73e9ebfd565cb17c0e4134783564&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 39584
server: nginx
date: Wed, 26 Oct 2022 11:02:58 GMT
etag: "045712ffdbdd393703b2a58375650a0ae234967e"
expires: Fri, 25 Nov 2022 11:02:58 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1BMhGQZrMOrbzq5jiR6a6ArVrlwkn3XANfaQSqFmLLyblkR3hxDsYQ==
age: 2279508
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/101174842.webp?k=515b19cd29852207a9e6add777068c1df7931a0dc58ddb80b36af9b605a3a00d&o=&s=1
143.204.55.13200 OK 20 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/101174842.webp?k=515b19cd29852207a9e6add777068c1df7931a0dc58ddb80b36af9b605a3a00d&o=&s=1
IP 143.204.55.13:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ce2edbb1483dd2f1a695bb9fe57f7574
5684d3255717041c66037bd6d76f2aa9761578b7
e5c6e93bfa6be2a02b28f5b1e3bd4ff78eaf4b7738710e73f91c3235db6b3c77
GET /xdata/images/hotel/square600/101174842.webp?k=515b19cd29852207a9e6add777068c1df7931a0dc58ddb80b36af9b605a3a00d&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 19804
server: nginx
date: Fri, 04 Nov 2022 06:04:35 GMT
etag: "c174105425ea41036d6c6eb2061d1af5d3134b86"
expires: Sun, 04 Dec 2022 06:04:35 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: g4sTSbeHv37M2l3f5q5N9pFKsLOAmFA14L60cgsnIR4PLIKF1nUmzg==
age: 1519811
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/218529186.webp?k=669db47d57f15a20a66212f4d267ecde0a5866a896f3d2a3223441aef8b07f6c&o=&s=1
143.204.55.13200 OK 68 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/218529186.webp?k=669db47d57f15a20a66212f4d267ecde0a5866a896f3d2a3223441aef8b07f6c&o=&s=1
IP 143.204.55.13:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1ae4768126a76f4093bcf30833c7a4a0
3b35ab740b2f5860d1c6e0096446247d5b7c406d
9f222b46c7a092237c0e4bc1fe0c972365ba84e64463825f7b5fd31963e94c77
GET /xdata/images/hotel/square600/218529186.webp?k=669db47d57f15a20a66212f4d267ecde0a5866a896f3d2a3223441aef8b07f6c&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 68144
server: nginx
date: Sat, 05 Nov 2022 23:05:13 GMT
etag: "f57e5833bf678265caff3d3e5f26b1585d6ef589"
expires: Mon, 05 Dec 2022 23:05:13 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: UF80BMc19WFBFL9NZ0_MiSvigxm9GVZn1iP4wABPxpVGuEXQrLkXFw==
age: 1372173
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/106411975.webp?k=53597242e9727e6e44a618b8edbc222c39b6937ac1bbe76761e24a2d796aed62&o=&s=1
143.204.55.13200 OK 47 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/106411975.webp?k=53597242e9727e6e44a618b8edbc222c39b6937ac1bbe76761e24a2d796aed62&o=&s=1
IP 143.204.55.13:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 305465a9638c31999672f217d98701d6
ab6a936d965af5e3b623e803fc46b48dd45e8641
58e195cf5d834d26264ad4f6641d2f8e7ca2e761ec4b8331f5d63e359ef5bbfc
GET /xdata/images/hotel/square600/106411975.webp?k=53597242e9727e6e44a618b8edbc222c39b6937ac1bbe76761e24a2d796aed62&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 46882
server: nginx
date: Wed, 26 Oct 2022 22:04:14 GMT
etag: "a9e2053f8127e11b16a3d61ffc400ed467db8532"
expires: Fri, 25 Nov 2022 22:04:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xFBlSNQAleZlPStH2AIBlZB-lt5b_mzmLOqbLA5-I8Yz58FgrFlVUg==
age: 2239832
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/286573218.webp?k=05df3eea56c59038cf7fa2ab228ec44c47c66ac49f708bc924c2b24738ea1e61&o=&s=1
143.204.55.13200 OK 65 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/286573218.webp?k=05df3eea56c59038cf7fa2ab228ec44c47c66ac49f708bc924c2b24738ea1e61&o=&s=1
IP 143.204.55.13:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 651317e3637bdb07fead8acac91ff1df
677318c0d98efb6b0fed37c7f2594cedd7458f06
89f50060edeff15d0df29057194bcd3e035944bb5f8b14f64471174ff57a3389
GET /xdata/images/hotel/square600/286573218.webp?k=05df3eea56c59038cf7fa2ab228ec44c47c66ac49f708bc924c2b24738ea1e61&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 65350
server: nginx
date: Tue, 01 Nov 2022 03:29:35 GMT
etag: "e82fcb57e1d0c36a9ed8dd812511975db6621ec3"
expires: Thu, 01 Dec 2022 03:29:35 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: nLgfJgzOW_PoW0FKk6agntubR4TsWwJPmKwQ9z_p6nykoP-QfFhNaw==
age: 1788311
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/jquery_cloudfront_sd/e1e8c0e862309cb4caf3c0d5fbea48bfb8eaad42.js
143.204.55.13200 OK 172 kB URL HTTP/2 cf.bstatic.com/static/js/jquery_cloudfront_sd/e1e8c0e862309cb4caf3c0d5fbea48bfb8eaad42.js
IP 143.204.55.13:0
File type ASCII text, with very long lines (60582)
Size 172 kB (172033 bytes)
Hash 3cb24e4d337b5bf2ef4d2418e5d3b161
a4d90685dea4b46741a62b80570634b5e7333cea
8b507f5af8e366bfe10be5e45750e8999858944f1b583c55c917838da30c9dbc
GET /static/js/jquery_cloudfront_sd/e1e8c0e862309cb4caf3c0d5fbea48bfb8eaad42.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Sat, 05 Nov 2022 01:03:56 GMT
last-modified: Tue, 28 Jun 2022 13:43:41 GMT
etag: W/"62bb058d-19a42"
expires: Mon, 05 Dec 2022 01:03:56 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: GA-3fIiXJNvKyc0lO0hXCBHrPtmNxMQnP_39_TtRjXD4ea6-UsoUZw==
age: 1451447
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/279333721.webp?k=8b632db276149b1ce327e8bfea4ac83e15d7ffc4f2b343a30af4bdd49197813e&o=&s=1
143.204.55.13200 OK 52 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/279333721.webp?k=8b632db276149b1ce327e8bfea4ac83e15d7ffc4f2b343a30af4bdd49197813e&o=&s=1
IP 143.204.55.13:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d04eb453f0e7fbbbdbba2a1951a8f290
1a6eb24b80524789134492cff32767adf785b1e9
d05234f5c8999958b2953ba76dc2180eecb1643c24419c009acd808332ba05f9
GET /xdata/images/hotel/square600/279333721.webp?k=8b632db276149b1ce327e8bfea4ac83e15d7ffc4f2b343a30af4bdd49197813e&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 51934
server: nginx
date: Fri, 28 Oct 2022 08:42:07 GMT
etag: "9a1888aa984771a00751cb0a72ab31ec699e3c9f"
expires: Sun, 27 Nov 2022 08:42:07 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: CQhS-seKFRpSDfkZecQSd_qiMgfnB8--NdKhywkGwUMnDwtt0FvkUQ==
age: 2115159
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/156985326.webp?k=26e1231c1a1e2dc7fe1dd0ad8ff94bdf807e0917f7a22cc1a15f71ad644743bb&o=&s=1
143.204.55.13200 OK 93 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/156985326.webp?k=26e1231c1a1e2dc7fe1dd0ad8ff94bdf807e0917f7a22cc1a15f71ad644743bb&o=&s=1
IP 143.204.55.13:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c61a50dfef740fa62682940dacaad92d
da520b09281a21446f71695fed7700c2d80200c1
8d94001a72b6689fbb4f0bd7e34118fc7557043833acdb730565f5f3f5f4b622
GET /xdata/images/hotel/square600/156985326.webp?k=26e1231c1a1e2dc7fe1dd0ad8ff94bdf807e0917f7a22cc1a15f71ad644743bb&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 92834
server: nginx
date: Sat, 12 Nov 2022 01:47:28 GMT
etag: "cf5d0bac177448c1a68bb9e0602d798a267f85ee"
expires: Mon, 12 Dec 2022 01:47:28 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PkfgIipDzV3iFq1KYh3_o7K_xROG--wwd4Yb4k2k8IUgKC-I_USgPQ==
age: 844038
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/294401155.webp?k=4c91bd821bcf8a21dfd3cd73dfc8043179b0b35412cd7ce30e14e45092db6be9&o=&s=1
143.204.55.13200 OK 36 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/294401155.webp?k=4c91bd821bcf8a21dfd3cd73dfc8043179b0b35412cd7ce30e14e45092db6be9&o=&s=1
IP 143.204.55.13:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash bb64ec57700ec86c850ac9d4f0f5589e
8d02a485746db6f9ec0935b2daf5577491003614
94de30bdfb15c208a49b1320082c994dfdf6b622cead146dbbb7b050578b6509
GET /xdata/images/hotel/square600/294401155.webp?k=4c91bd821bcf8a21dfd3cd73dfc8043179b0b35412cd7ce30e14e45092db6be9&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 35794
server: nginx
date: Tue, 08 Nov 2022 06:55:02 GMT
etag: "57ea7ba96b52ae88fe058fc447dcb031498c0d00"
expires: Thu, 08 Dec 2022 06:55:02 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5V8DJUgnJmMTyd2p08TNiEZaY-MsuFeSoilpHIfs2i1WIhh_MSJjUw==
age: 1171184
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/main_cloudfront_sd/a74e7f0555659fbe7938c2cc44bb7142ccaf4742.js
143.204.55.13200 OK 35 B URL HTTP/2 cf.bstatic.com/static/js/main_cloudfront_sd/a74e7f0555659fbe7938c2cc44bb7142ccaf4742.js
IP 143.204.55.13:0
Hash 79a611524d7c43a354c589264cc2376e
2e25649d9a8a208302be0502b47a0e44b07bc7c1
c7a9af81f3467d3c95760df18d0853bda8c191f612fb2e8b2b5c4ed941fbaf1a
GET /static/js/main_cloudfront_sd/a74e7f0555659fbe7938c2cc44bb7142ccaf4742.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 18 Nov 2022 12:53:02 GMT
last-modified: Fri, 18 Nov 2022 12:46:12 GMT
etag: W/"63777e94-8682b"
expires: Sun, 18 Dec 2022 12:53:02 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: aG1305NPP-UB71fLRlmx76NBexUsd0uYOxsFX5Rl_44EyoEXrZQsQw==
age: 285699
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash cdcd936a1ca3729e5415928204c25f17
2a0d0e6f94f8145a32f98b725bba52a9a6616f2b
e92ab786e674810e9a0faf3a8c98a99eddb356fa27861f965fd688e54b5bf8c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 20:14:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d9afe0ae0199aff69fefbe5a55490d31
126f648ad266469bf531b5c08f7f71a973d0eeb0
105d272d89fa39de018c77cb85f97c12af739243c6bf8172e2914217bd2efec5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 20:14:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d9afe0ae0199aff69fefbe5a55490d31
126f648ad266469bf531b5c08f7f71a973d0eeb0
105d272d89fa39de018c77cb85f97c12af739243c6bf8172e2914217bd2efec5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 20:14:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Owps.ttf
216.58.207.195200 OK 27 kB URL HTTP/2 fonts.gstatic.com/s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Owps.ttf
IP 216.58.207.195:0
File type TrueType Font data, 17 tables, 1st "GDEF", 7 names, Microsoft, language 0x409, Copyright 2015 Google LLC. All Rights Reserved.Google SansRegularGoogle;GoogleSans-RegularGoogle\012- data
Hash 097c4b560f821fb05c628abb70fab199
4650bf1244b6cba45b222aa269c96ad8ea95ab42
a9bd7cfb72481bd844fa2e3cd4019c8b2ab2a232b50cabe62f8d9483e284f672
GET /s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Owps.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://accounts.google.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27191
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 19 Nov 2022 00:34:03 GMT
expires: Sun, 19 Nov 2023 00:34:03 GMT
cache-control: public, max-age=31536000
age: 243644
last-modified: Mon, 22 Apr 2019 23:42:54 GMT
content-type: font/ttf
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/googlesans/v14/4UabrENHsxJlGDuGo1OIlLU94YtzCwM.ttf
216.58.207.195200 OK 27 kB URL HTTP/2 fonts.gstatic.com/s/googlesans/v14/4UabrENHsxJlGDuGo1OIlLU94YtzCwM.ttf
IP 216.58.207.195:0
File type TrueType Font data, 17 tables, 1st "GDEF", 7 names, Microsoft, language 0x409, Copyright 2015 Google LLC. All Rights Reserved.Google Sans MediumRegularGoogle;GoogleSans-Medium\012- data
Hash 48d399faaa696e710b9d841b934461e2
8b867014ac0ae0a2b81a55f171deede8336a496f
c905a4d23caf1f95d96c244084f15336fba5f65b74de870ec5c2be878410625d
GET /s/googlesans/v14/4UabrENHsxJlGDuGo1OIlLU94YtzCwM.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://accounts.google.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27431
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 21:41:56 GMT
expires: Fri, 17 Nov 2023 21:41:56 GMT
cache-control: public, max-age=31536000
age: 340371
last-modified: Mon, 22 Apr 2019 23:43:31 GMT
content-type: font/ttf
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
collector-pxikkul2rm.px-cloud.net/api/v2/collector
35.190.10.96200 OK 573 B URL HTTP/2 collector-pxikkul2rm.px-cloud.net/api/v2/collector
IP 35.190.10.96:0
File type JSON data\012- , ASCII text, with very long lines (572)
Hash 7c6268ea4bf667817f4a38c7a4af1fc4
62b2dbd5431124fe241bc16113b531114a5deaee
9a5ba61fa4528aaec5a0cab8e9b2bb896eb13c026e60f961821ce72723d25fcb
POST /api/v2/collector HTTP/1.1
Host: collector-pxikkul2rm.px-cloud.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 5270
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 20:14:46 GMT
content-type: application/json; charset=utf-8
content-length: 573
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.booking.com
timing-allow-origin: *
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d9afe0ae0199aff69fefbe5a55490d31
126f648ad266469bf531b5c08f7f71a973d0eeb0
105d272d89fa39de018c77cb85f97c12af739243c6bf8172e2914217bd2efec5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 20:14:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.booking.com/general.en-us.html?iframe=1&aid=1858279&tmpl=profile%2Flogin_callback_anon_session&sid=177553b3b65372b3d9593401240f5ec7
143.204.55.11200 OK 205 B URL HTTP/2 www.booking.com/general.en-us.html?iframe=1&aid=1858279&tmpl=profile%2Flogin_callback_anon_session&sid=177553b3b65372b3d9593401240f5ec7
IP 143.204.55.11:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 638ac3cd579f9d5dc554c29e7761555f
255dfcbd7a0c45f8a96e18c0bbafe6527635bb36
5bc79fce7866851185d05b6093959491a79508a845bf6a44355f868f28a87ed3
GET /general.en-us.html?iframe=1&aid=1858279&tmpl=profile%2Flogin_callback_anon_session&sid=177553b3b65372b3d9593401240f5ec7 HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Connection: keep-alive
Cookie: _pxhd=3w1k2f2h-SQ3ITm%2FMNOvosrzUfRnQV5EmgnbaufyI1O1%2F0P4TOec2r4vwjBjhajx9ZdTqsnHOzO5Be%2FxPldW2Q%3D%3D%3Ax5g%2FpTITyYmX6tOpqzFbUU-PqKWnc5%2FUfiSYoq-u8%2Fa4NrYbNExCq4By9T9n6x8SAN44K-zviz%2F-AazAWfl7p3S710mn4nyHL71FjbjCMak%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbbmD9q%2B5pe3U%2B8GlBNfPKPQ0f9WIbyLy1m2e9%2FC0bEHxdjPHMtiZLIcdu4bT0tIiVS2e%2FhWxiXq6OqIi58YN9gWfkKsmCVUNUkdB8cl2%2F7Uwthm%2F6oj6NpWzQr%2BbKrdmlqSWBVDEzwx4ZeUlURDJhdMWPYM0JcoBIOu86E48tvfY%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Nov+21+2022+20%3A14%3A45+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=4c626c01-6f57-4f54-b843-5129acbc4205&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1669061685868; bkng_frontend_sese_exp=1; bkng_sso_ses=eyJib29raW5nX2dsb2JhbCI6W3siYSI6MSwiaCI6IldQanQ5R3Q0aTlCTHN3SWN6OFZxTzJYek13NmREdHJtQUJucHE4NlpYZzAifV19; bkng_sso_session=e30; BJS=-; _px3=bc4c32c96732f6fc79b4e5ce8b9b91c1b061d4dbf9512affd63ce11289e1527a:Znkj5MrHYsw4lieiGaZwTJ+tD4fP74XlOHEelu2Nkm8czsgeja3dew2nllndKeXCp2sCRqmwiauYch21fdCN3g==:1000:3uQQ9weZ0W7TIeH2toSSZL+9MSkdHp9ZRpAuMAL2jevarAqGNOI77fNl6+rXg+b+qAtFfyAPjvZCy1NkhwFyOMJB+yywOuFqdg/OwAGcpxkip2mfdls1s8GzGcOZIk4kW64nUXaTXeXuKmNOABiCzyu7ePLGzMAHy+gBCwQp0tpnPWZjTWdb/ErDlNPW3zrDnzfg87tIYUKXCTqNr/PSrw==; pxcts=24d65b2a-69d9-11ed-a1d1-565167797369; _pxvid=24d64fc8-69d9-11ed-a1d1-565167797369; _pxff_rf=1; _pxff_ddtc=1; _pxde=5b9c762dd31daad773b84d67f7f926715a7ebabd57e35814d44f7dfffe5c6186:eyJ0aW1lc3RhbXAiOjE2NjkwNjE2ODc0MjQsImZfa2IiOjAsImlwY19pZCI6W119; lastSeen=1669061687548
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 205
server: nginx
date: Mon, 21 Nov 2022 20:14:47 GMT
cache-control: private
vary: User-Agent, Accept-Encoding
content-encoding: br
nel: {"max_age":604800,"report_to":"default"}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":604800,"group":"default"}
set-cookie: px_init=0; domain=booking.com; expires=Wed, 11-Dec-2075 16:29:34 GMT; SameSite=Strict; secure; HttpOnly
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLblgO%2Fz4BDP5tKlZGAiX4gr0D%2FZMjG1%2FfF6zYCYVIGKt%2Bho6Kav%2BFAr2r4wOepy8pAXiBR0fJSeLzREtmFyIX24SH6jv9xCXXgf%2FsVzXokvECcel%2BgzcGaQ3hN4nZ1Hi6z0DgcFpT9m6qfhKRhVhzFJQ2L9F4G2liP5NjCcpL1vLg%3D; domain=.booking.com; path=/; expires=Sat, 20-Nov-2027 20:14:47 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: krf7brvJHw9YOcDXnsxi_GvxVxpK_aASFQb3M_ldWYQtxvNxb0DWSA==
X-Firefox-Spdy: h2
account.booking.com/oauth2/authorize/v2?client_id=vO1Kblk7xX9tUn2cpZLS&redirect_uri=https%3A%2F%2Fsecure.booking.com%2Flogin.html%3Fop%3Doauth_return&response_type=anon_session&prompt=none&iframe=1&dt=1669061687250&state=UqwCFx1gvJJMJ7ZR8m3qhzwcKgRdbhgknS8ZKiV067V-tm1Z16Ndr3yKfQAEMDFiNALKWRNUUA_HAcppY-wON7NyP94LXLDdZ-zbSmv0K1rEvJLXS7r-qlFqGWm9CtIsiJ_AZD0ClY9WrOzs_Cikohh7H6KIdAwixlhNA5VTiWX9vIl8EKNFazqYeMuMjG9HF1HPTOS2dJUYnBnVw99MhwoT5f8hweAq_E0-ybMFuqx2nSKigRA_Vm1uAEP-cNJiV0roOOqZZj4fsa6jDtqm-Lo5K91O170rKCpGntdTItu4xfUOPlmZtEWuJ7kAE-5cjRdkoYYdhNIyakOBPfdg2OQ6KX9lYDxvr0T-WY3zGKheabn2RY_9ODQte8l2HpZIr8LZvrRY-raQPkgWt3FB&bkng_referrer=https%3A%2F%2Fwww.booking.com%2Findex.html&bkng_action=index
54.230.111.51302 Found 0 B URL HTTP/2 account.booking.com/oauth2/authorize/v2?client_id=vO1Kblk7xX9tUn2cpZLS&redirect_uri=https%3A%2F%2Fsecure.booking.com%2Flogin.html%3Fop%3Doauth_return&response_type=anon_session&prompt=none&iframe=1&dt=1669061687250&state=UqwCFx1gvJJMJ7ZR8m3qhzwcKgRdbhgknS8ZKiV067V-tm1Z16Ndr3yKfQAEMDFiNALKWRNUUA_HAcppY-wON7NyP94LXLDdZ-zbSmv0K1rEvJLXS7r-qlFqGWm9CtIsiJ_AZD0ClY9WrOzs_Cikohh7H6KIdAwixlhNA5VTiWX9vIl8EKNFazqYeMuMjG9HF1HPTOS2dJUYnBnVw99MhwoT5f8hweAq_E0-ybMFuqx2nSKigRA_Vm1uAEP-cNJiV0roOOqZZj4fsa6jDtqm-Lo5K91O170rKCpGntdTItu4xfUOPlmZtEWuJ7kAE-5cjRdkoYYdhNIyakOBPfdg2OQ6KX9lYDxvr0T-WY3zGKheabn2RY_9ODQte8l2HpZIr8LZvrRY-raQPkgWt3FB&bkng_referrer=https%3A%2F%2Fwww.booking.com%2Findex.html&bkng_action=index
IP 54.230.111.51:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /oauth2/authorize/v2?client_id=vO1Kblk7xX9tUn2cpZLS&redirect_uri=https%3A%2F%2Fsecure.booking.com%2Flogin.html%3Fop%3Doauth_return&response_type=anon_session&prompt=none&iframe=1&dt=1669061687250&state=UqwCFx1gvJJMJ7ZR8m3qhzwcKgRdbhgknS8ZKiV067V-tm1Z16Ndr3yKfQAEMDFiNALKWRNUUA_HAcppY-wON7NyP94LXLDdZ-zbSmv0K1rEvJLXS7r-qlFqGWm9CtIsiJ_AZD0ClY9WrOzs_Cikohh7H6KIdAwixlhNA5VTiWX9vIl8EKNFazqYeMuMjG9HF1HPTOS2dJUYnBnVw99MhwoT5f8hweAq_E0-ybMFuqx2nSKigRA_Vm1uAEP-cNJiV0roOOqZZj4fsa6jDtqm-Lo5K91O170rKCpGntdTItu4xfUOPlmZtEWuJ7kAE-5cjRdkoYYdhNIyakOBPfdg2OQ6KX9lYDxvr0T-WY3zGKheabn2RY_9ODQte8l2HpZIr8LZvrRY-raQPkgWt3FB&bkng_referrer=https%3A%2F%2Fwww.booking.com%2Findex.html&bkng_action=index HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Connection: keep-alive
Cookie: _pxhd=3w1k2f2h-SQ3ITm%2FMNOvosrzUfRnQV5EmgnbaufyI1O1%2F0P4TOec2r4vwjBjhajx9ZdTqsnHOzO5Be%2FxPldW2Q%3D%3D%3Ax5g%2FpTITyYmX6tOpqzFbUU-PqKWnc5%2FUfiSYoq-u8%2Fa4NrYbNExCq4By9T9n6x8SAN44K-zviz%2F-AazAWfl7p3S710mn4nyHL71FjbjCMak%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBK9nqP1CuOaOHGCPjENSm5gZdzRNQovpBVxKojbhsP4kbdaBScvvEnkvqi8B%2F4Rqs8RYA%2B2sBrneAepxuuMa%2F%2BpUkG%2BTmh90Hm3MiQd3igANAFJ3zlYSbJ4UYfiOles2OLXtMDmlqbBxbMeX5a5KNOwnzHLpttd8cM%3D; cors_js=1; bkng_frontend_sese_exp=1; bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJzZXNzaW9ucyI6W10sImRhdGFfc3ViamVjdF9pZCI6ImJjY2RhZWVhLTFhZDItNDhhNy05NTgxLWQxNWJjMGMyMmJhMiJ9fQ; bkng_sso_ses=e30; bkng_sso_session=e30; BJS=-; _px3=ab59ba5477398ec4e20d2c263f8c579cbb3d2cdf17b81ffc7db7339361a85a04:lQPaKac/E0nR9/hIVS9TVyr/VBcbxWxCGYVTei6Jvi+XAeEzzNXxkmCMjLhXkvAyoAw4HbMF9XGIUG2Nea6rww==:1000:HC8aZ5pQ+85W9dyAAV+I+0zX2aC9Chhu49TMDw6hR3GrDg+uei+mW8NuQMVucDNYNo8SGkWf9RiKq/PgpH3i2axWsdy02MrMc5HfjYv201bQc46AJG/zjJe6XagTi9njPUnIrLW29AJ5Yjc3Aqt7PUzy/kv30sGijP6Kt5UfnUxYEygJwucCDMqXrNfxuVGBLI9/D25dWpraGNi43HK2+w==; pxcts=24d65b2a-69d9-11ed-a1d1-565167797369; _pxvid=24d64fc8-69d9-11ed-a1d1-565167797369; _pxde=90f895764977264d1dde9cec7fe38149c32b8d836fca998d01d37641ce8f3d2e:eyJ0aW1lc3RhbXAiOjE2NjkwNjE2ODY1MzksImZfa2IiOjAsImlwY19pZCI6W119
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 302 Found
location: https://secure.booking.com/login.html?op=oauth_return&aid=304142&lang=en-us&state=UqwCFx1gvJJMJ7ZR8m3qhzwcKgRdbhgknS8ZKiV067V-tm1Z16Ndr3yKfQAEMDFiNALKWRNUUA_HAcppY-wON7NyP94LXLDdZ-zbSmv0K1rEvJLXS7r-qlFqGWm9CtIsiJ_AZD0ClY9WrOzs_Cikohh7H6KIdAwixlhNA5VTiWX9vIl8EKNFazqYeMuMjG9HF1HPTOS2dJUYnBnVw99MhwoT5f8hweAq_E0-ybMFuqx2nSKigRA_Vm1uAEP-cNJiV0roOOqZZj4fsa6jDtqm-Lo5K91O170rKCpGntdTItu4xfUOPlmZtEWuJ7kAE-5cjRdkoYYdhNIyakOBPfdg2OQ6KX9lYDxvr0T-WY3zGKheabn2RY_9ODQte8l2HpZIr8LZvrRY-raQPkgWt3FB&code=1EJg5dd6JXGkl0h1I8RC5EEbB5hpZCKO5EH5lXJXY1qReVx2Zt5SwrAj56WzgjOSOwu0runBxUz3FFXpNWt6f8r3tCKR4e3pJSl3AYYAvWzRPM74y0ryxe8uGqewjkpVLJUdJ7TUgGRnXnHsmyYJvNsvmMISdjtJ1tDUmTY
server: envoy
date: Mon, 21 Nov 2022 20:14:47 GMT
set-cookie: bkng_expired_hint=; domain=.booking.com; path=/; expires=Sun, 20-Nov-2022 20:14:47 GMT; secure; HttpOnly
bkng_sso_ses=eyJib29raW5nX2dsb2JhbCI6W3siYSI6MSwiaCI6IldQanQ5R3Q0aTlCTHN3SWN6OFZxTzJYek13NmREdHJtQUJucHE4NlpYZzAifV19; domain=.booking.com; path=/; expires=Sat, 20-Nov-2027 20:14:47 GMT; secure; HttpOnly
bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJkYXRhX3N1YmplY3RfaWQiOiJiY2NkYWVlYS0xYWQyLTQ4YTctOTU4MS1kMTViYzBjMjJiYTIiLCJzZXNzaW9ucyI6W3sicmVmcmVzaF90b2tlbiI6IkNBRVNkMUoxWEFIeUhVd1dONmU1SjgwRVA3OHlaUGdhSTFOYVJMeGNYeGdBbFVyS1lMSVRzeTNmLVctSW9EM1ptTzZXSzFnNDBCTmhvblAxZGllOHVHVjNmTFBHQ2VhQkMzNnlYVjliMXpqcGRRU3gxRThoekdtY1hzUTh4UnF0SjF4R1VVekdyckR1N1E1Y1N3LUlkTnBld0lvLUhLOWFRQl9yIiwic2Vzc2lvbl9yZWZlcmVuY2UiOiI0ZjE0YzYxMC02YWNjLTQxNzAtOGNkZC0wNmVmZjAxNDgzYzMifV19fQ; domain=account.booking.com; path=/; expires=Sat, 20-Nov-2027 20:14:47 GMT; secure; HttpOnly
bkng_sso_session=e30; domain=.booking.com; path=/; expires=Sat, 20-Nov-2027 20:14:47 GMT; secure; HttpOnly
content-security-policy: frame-ancestors https://*.booking.com 'self'; report-uri https://nellie.booking.com/csp-report-uri?type=block&tag=42&pid=0ffa8e5b3e74033f&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdVGoUAc7XLxp8Xc7XQuWfM7nSTkT3Y1TELxA3w-qXihaSBP_o-RCyiBNhPkI-YW4ZPtXPfgY78KkjhwYYuREOKWastSHwetB6g;
content-security-policy-report-only: default-src *.bstatic.com bstatic.com 'self'; connect-src saa.booking.com secure.booking.com reports.booking.com privacyportal-eu.onetrust.com geolocation.onetrust.com cdn.cookielaw.org www.google-analytics.com *.perimeterx.net *.pxchk.net *.px-cdn.net *.px-client.net *.px-cloud.net 'self' 'report-sample'; object-src 'none'; frame-src https://www.youtube.com/embed/Vv4w5SmRkss *.bstatic.com https://www.google.com bstatic.com www.booking.com secure.booking.com paymentcomponent.booking.com 'self'; img-src 'self' data: www.booking.com graph.facebook.com cdn.cookielaw.org account.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google-analytics.com www.google.com stats.g.doubleclick.net *.px-cloud.net *.perimeterx.net www.gstatic.com; script-src saa.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google.com www.google-analytics.com cdn.cookielaw.org geolocation.onetrust.com 'self' 'nonce-EgcOHZ7FzEvKdVv' 'report-sample'; base-uri 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=41&pid=0ffa8e5b3e74033f&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdVGoUAc7XLxp8Xc7XQuWfM7nSTkT3Y1TELxA3w-qXihaSBP_o-RCyiBNhPkI-YW4ZPtXPfgY78KkjhwYYuREOKWastSHwetB6g; style-src *.bstatic.com bstatic.com *.static.booking.cn 'self' 'unsafe-inline';
strict-transport-security: max-age=17280000
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: SaJsfYMAMzuU1_saDqhInxcoXEVqYh3SJKl7_O1_bFiZtceSiJhy5w==
X-Firefox-Spdy: h2
account.booking.com/collector/anon_session_init
54.230.111.51204 No Content 0 B URL HTTP/2 account.booking.com/collector/anon_session_init
IP 54.230.111.51:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collector/anon_session_init HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-Type: application/json
Content-Length: 144
Origin: https://www.booking.com
Connection: keep-alive
Cookie: _pxhd=3w1k2f2h-SQ3ITm%2FMNOvosrzUfRnQV5EmgnbaufyI1O1%2F0P4TOec2r4vwjBjhajx9ZdTqsnHOzO5Be%2FxPldW2Q%3D%3D%3Ax5g%2FpTITyYmX6tOpqzFbUU-PqKWnc5%2FUfiSYoq-u8%2Fa4NrYbNExCq4By9T9n6x8SAN44K-zviz%2F-AazAWfl7p3S710mn4nyHL71FjbjCMak%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLblgO%2Fz4BDP5tKlZGAiX4gr0D%2FZMjG1%2FfF6zYCYVIGKt%2Bho6Kav%2BFAr2r4wOepy8pAXiBR0fJSeLzREtmFyIX24SH6jv9xCXXgf%2FsVzXokvECcel%2BgzcGaQ3hN4nZ1Hi6z0DgcFpT9m6qfhKRhVhzFJQ2L9F4G2liP5NjCcpL1vLg%3D; cors_js=1; bkng_frontend_sese_exp=1; bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJkYXRhX3N1YmplY3RfaWQiOiJiY2NkYWVlYS0xYWQyLTQ4YTctOTU4MS1kMTViYzBjMjJiYTIiLCJzZXNzaW9ucyI6W3sicmVmcmVzaF90b2tlbiI6IkNBRVNkMUoxWEFIeUhVd1dONmU1SjgwRVA3OHlaUGdhSTFOYVJMeGNYeGdBbFVyS1lMSVRzeTNmLVctSW9EM1ptTzZXSzFnNDBCTmhvblAxZGllOHVHVjNmTFBHQ2VhQkMzNnlYVjliMXpqcGRRU3gxRThoekdtY1hzUTh4UnF0SjF4R1VVekdyckR1N1E1Y1N3LUlkTnBld0lvLUhLOWFRQl9yIiwic2Vzc2lvbl9yZWZlcmVuY2UiOiI0ZjE0YzYxMC02YWNjLTQxNzAtOGNkZC0wNmVmZjAxNDgzYzMifV19fQ; bkng_sso_ses=eyJib29raW5nX2dsb2JhbCI6W3siYSI6MSwiaCI6IldQanQ5R3Q0aTlCTHN3SWN6OFZxTzJYek13NmREdHJtQUJucHE4NlpYZzAifV19; bkng_sso_session=e30; BJS=-; _px3=bc4c32c96732f6fc79b4e5ce8b9b91c1b061d4dbf9512affd63ce11289e1527a:Znkj5MrHYsw4lieiGaZwTJ+tD4fP74XlOHEelu2Nkm8czsgeja3dew2nllndKeXCp2sCRqmwiauYch21fdCN3g==:1000:3uQQ9weZ0W7TIeH2toSSZL+9MSkdHp9ZRpAuMAL2jevarAqGNOI77fNl6+rXg+b+qAtFfyAPjvZCy1NkhwFyOMJB+yywOuFqdg/OwAGcpxkip2mfdls1s8GzGcOZIk4kW64nUXaTXeXuKmNOABiCzyu7ePLGzMAHy+gBCwQp0tpnPWZjTWdb/ErDlNPW3zrDnzfg87tIYUKXCTqNr/PSrw==; pxcts=24d65b2a-69d9-11ed-a1d1-565167797369; _pxvid=24d64fc8-69d9-11ed-a1d1-565167797369; _pxde=5b9c762dd31daad773b84d67f7f926715a7ebabd57e35814d44f7dfffe5c6186:eyJ0aW1lc3RhbXAiOjE2NjkwNjE2ODc0MjQsImZfa2IiOjAsImlwY19pZCI6W119; lastSeen=1669061687548
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
server: envoy
date: Mon, 21 Nov 2022 20:14:48 GMT
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-methods: POST
access-control-allow-origin: https://www.booking.com
access-control-max-age: 1728000
set-cookie: bkng_sso_ses=eyJib29raW5nX2dsb2JhbCI6W3siYSI6MSwiaCI6IldQanQ5R3Q0aTlCTHN3SWN6OFZxTzJYek13NmREdHJtQUJucHE4NlpYZzAifV19; domain=.booking.com; path=/; expires=Sat, 20-Nov-2027 20:14:48 GMT; secure; HttpOnly
bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJzZXNzaW9ucyI6W3sicmVmcmVzaF90b2tlbiI6IkNBRVNkMUoxWEFIeUhVd1dONmU1SjgwRVA3OHlaUGdhSTFOYVJMeGNYeGdBbFVyS1lMSVRzeTNmLVctSW9EM1ptTzZXSzFnNDBCTmhvblAxZGllOHVHVjNmTFBHQ2VhQkMzNnlYVjliMXpqcGRRU3gxRThoekdtY1hzUTh4UnF0SjF4R1VVekdyckR1N1E1Y1N3LUlkTnBld0lvLUhLOWFRQl9yIiwic2Vzc2lvbl9yZWZlcmVuY2UiOiI0ZjE0YzYxMC02YWNjLTQxNzAtOGNkZC0wNmVmZjAxNDgzYzMifV0sImRhdGFfc3ViamVjdF9pZCI6ImJjY2RhZWVhLTFhZDItNDhhNy05NTgxLWQxNWJjMGMyMmJhMiJ9fQ; domain=account.booking.com; path=/; expires=Sat, 20-Nov-2027 20:14:48 GMT; secure; HttpOnly
bkng_sso_session=e30; domain=.booking.com; path=/; expires=Sat, 20-Nov-2027 20:14:48 GMT; secure; HttpOnly
content-security-policy: report-uri https://nellie.booking.com/csp-report-uri?type=block&tag=42&pid=0ffa8e5c541f02e8&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdfdvBlyk9NlKcLEfSqFdAHv1CmYlbsbmyirNXm6MJ_S6d1wWGe6fE6L4Udx8pl8sAggJK_HDN9hELImREwHo8_uCzr1uSwrtvg; frame-ancestors https://*.booking.com 'self';
content-security-policy-report-only: object-src 'none'; connect-src saa.booking.com secure.booking.com reports.booking.com privacyportal-eu.onetrust.com geolocation.onetrust.com cdn.cookielaw.org www.google-analytics.com *.perimeterx.net *.pxchk.net *.px-cdn.net *.px-client.net *.px-cloud.net 'self' 'report-sample'; default-src *.bstatic.com bstatic.com 'self'; frame-src https://www.youtube.com/embed/Vv4w5SmRkss *.bstatic.com https://www.google.com bstatic.com www.booking.com secure.booking.com paymentcomponent.booking.com 'self'; img-src 'self' data: www.booking.com graph.facebook.com cdn.cookielaw.org account.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google-analytics.com www.google.com stats.g.doubleclick.net *.px-cloud.net *.perimeterx.net www.gstatic.com; script-src saa.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google.com www.google-analytics.com cdn.cookielaw.org geolocation.onetrust.com 'self' 'nonce-S6KW133pnRjbUAl' 'report-sample'; base-uri 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=41&pid=0ffa8e5c541f02e8&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdfdvBlyk9NlKcLEfSqFdAHv1CmYlbsbmyirNXm6MJ_S6d1wWGe6fE6L4Udx8pl8sAggJK_HDN9hELImREwHo8_uCzr1uSwrtvg; style-src *.bstatic.com bstatic.com *.static.booking.cn 'self' 'unsafe-inline';
strict-transport-security: max-age=17280000
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Sqr_sn45fgzuH2UIkaMOEcAYTsv78sLy4x4bu6aVAwQlnNV_tgmgYQ==
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 01acfa19c8f000af28252cf29a56a6bf
fd0d1cd92abc8961bb377f1b8ab0989c5fe229ec
5e125b28fed73ef1077174c750b35e233b84e05840327c38c75d6b02ee87ef8f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3560
Cache-Control: max-age=140251
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 20:14:48 GMT
Etag: "637b4f2b-117"
Expires: Wed, 23 Nov 2022 11:12:19 GMT
Last-Modified: Mon, 21 Nov 2022 10:12:59 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 279
account.booking.com/static/booking-sso.v1.js
54.230.111.51200 OK 0 B URL HTTP/2 account.booking.com/static/booking-sso.v1.js
IP 54.230.111.51:0
GET /static/booking-sso.v1.js HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Connection: keep-alive
Cookie: _pxhd=3w1k2f2h-SQ3ITm%2FMNOvosrzUfRnQV5EmgnbaufyI1O1%2F0P4TOec2r4vwjBjhajx9ZdTqsnHOzO5Be%2FxPldW2Q%3D%3D%3Ax5g%2FpTITyYmX6tOpqzFbUU-PqKWnc5%2FUfiSYoq-u8%2Fa4NrYbNExCq4By9T9n6x8SAN44K-zviz%2F-AazAWfl7p3S710mn4nyHL71FjbjCMak%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBK9nqP1CuOaOHGCPjENSm5gZdzRNQovpBVxKojbhsP4kbdaBScvvEnkvqi8B%2F4Rqs8RYA%2B2sBrneAepxuuMa%2F%2BpUkG%2BTmh90Hm3MiQd3igANAFJ3zlYSbJ4UYfiOles2OLXtMDmlqbBxbMeX5a5KNOwnzHLpttd8cM%3D; cors_js=1; bkng_frontend_sese_exp=1; bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJzZXNzaW9ucyI6W10sImRhdGFfc3ViamVjdF9pZCI6ImJjY2RhZWVhLTFhZDItNDhhNy05NTgxLWQxNWJjMGMyMmJhMiJ9fQ; bkng_sso_ses=e30; bkng_sso_session=e30; BJS=-; _px3=ab59ba5477398ec4e20d2c263f8c579cbb3d2cdf17b81ffc7db7339361a85a04:lQPaKac/E0nR9/hIVS9TVyr/VBcbxWxCGYVTei6Jvi+XAeEzzNXxkmCMjLhXkvAyoAw4HbMF9XGIUG2Nea6rww==:1000:HC8aZ5pQ+85W9dyAAV+I+0zX2aC9Chhu49TMDw6hR3GrDg+uei+mW8NuQMVucDNYNo8SGkWf9RiKq/PgpH3i2axWsdy02MrMc5HfjYv201bQc46AJG/zjJe6XagTi9njPUnIrLW29AJ5Yjc3Aqt7PUzy/kv30sGijP6Kt5UfnUxYEygJwucCDMqXrNfxuVGBLI9/D25dWpraGNi43HK2+w==; pxcts=24d65b2a-69d9-11ed-a1d1-565167797369; _pxvid=24d64fc8-69d9-11ed-a1d1-565167797369; _pxde=90f895764977264d1dde9cec7fe38149c32b8d836fca998d01d37641ce8f3d2e:eyJ0aW1lc3RhbXAiOjE2NjkwNjE2ODY1MzksImZfa2IiOjAsImlwY19pZCI6W119
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: envoy
date: Mon, 21 Nov 2022 20:14:47 GMT
last-modified: Sat, 19 Nov 2022 23:04:23 GMT
vary: Accept-Encoding
etag: W/"637960f7-de7"
strict-transport-security: max-age=17280000
content-encoding: gzip
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lOpneqDpN_ubuXzKoDzZuPIY3hlwAazTn1_RdsBYsrZM5q3zGD1qqg==
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/client.21d61460.js
143.204.55.13200 OK 0 B URL HTTP/2 cf.bstatic.com/psb/capla/static/js/client.21d61460.js
IP 143.204.55.13:0
GET /psb/capla/static/js/client.21d61460.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 21 Nov 2022 11:43:56 GMT
etag: W/"2ad37623e8f31779fcc3aa16c1566ed8"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Mon, 21 Nov 2022 11:32:50 GMT
x-amz-expiration: expiry-date="Tue, 21 Mar 2023 11:32:50 GMT", rule-id=""
expires: Wed, 21 Dec 2022 11:43:56 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Hx_hl0Zpaneow0Jdkj2aPXY9CQ_AmdnJzCX_As62P01LmoETfPrSUg==
age: 30648
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/print/0cc4ce4b7108d42a9f293fc9b654f749d84ba4eb.css
143.204.55.13200 OK 0 B URL HTTP/2 cf.bstatic.com/static/css/print/0cc4ce4b7108d42a9f293fc9b654f749d84ba4eb.css
IP 143.204.55.13:0
GET /static/css/print/0cc4ce4b7108d42a9f293fc9b654f749d84ba4eb.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Wed, 09 Nov 2022 00:26:35 GMT
last-modified: Wed, 10 Apr 2019 11:21:34 GMT
etag: W/"5cadd1be-13ac"
expires: Fri, 09 Dec 2022 00:26:35 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: gNoMLlpzk6UtcMhBIknLENnyix9QBRNhLhh9l6UbDTzNrTimsWWf1w==
age: 1108090
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/searchbox_cloudfront_sd/5d2edcc8d136dd8e0ef1a28d2d8495a87f39d811.js
143.204.55.13200 OK 0 B URL HTTP/2 cf.bstatic.com/static/js/searchbox_cloudfront_sd/5d2edcc8d136dd8e0ef1a28d2d8495a87f39d811.js
IP 143.204.55.13:0
GET /static/js/searchbox_cloudfront_sd/5d2edcc8d136dd8e0ef1a28d2d8495a87f39d811.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 14 Nov 2022 05:00:17 GMT
last-modified: Mon, 14 Nov 2022 03:58:32 GMT
etag: W/"6371bce8-398a1"
expires: Wed, 14 Dec 2022 05:00:17 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ZrGE3ItDvm54vSufuc27wVmwkU1pO5uFpp_xxPqg04KJBpGug-u48Q==
age: 659666
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/109319008.webp?k=b8fc6fbc8d874cffedf49c0080f14933a20995b040dc02aeaee3afad1e79c670&o=&s=1
143.204.55.13200 OK 0 B URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/109319008.webp?k=b8fc6fbc8d874cffedf49c0080f14933a20995b040dc02aeaee3afad1e79c670&o=&s=1
IP 143.204.55.13:0
GET /xdata/images/hotel/square600/109319008.webp?k=b8fc6fbc8d874cffedf49c0080f14933a20995b040dc02aeaee3afad1e79c670&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 71756
server: nginx
date: Sat, 05 Nov 2022 07:25:41 GMT
etag: "2c7e00b39a6f43f55dc3ff980609243364d28d7d"
expires: Mon, 05 Dec 2022 07:25:41 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: j7YkdF1WVe65ndBbn0ROLux9fMtUIRyr2Tlm7AaraNFVS6kuQh8zfw==
age: 1428545
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/513.8e32802c.chunk.js
143.204.55.13200 OK 0 B URL HTTP/2 cf.bstatic.com/psb/capla/static/js/513.8e32802c.chunk.js
IP 143.204.55.13:0
GET /psb/capla/static/js/513.8e32802c.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Sat, 19 Nov 2022 10:15:54 GMT
etag: W/"d8ea893fe7d06a8311662cb424b827a2"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 18 Nov 2022 17:51:34 GMT
x-amz-expiration: expiry-date="Sat, 18 Mar 2023 17:51:34 GMT", rule-id=""
expires: Mon, 19 Dec 2022 10:15:54 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: r1P2GV1KdvrhepkF_RKh7429wncgHKj6UST1SSCPc0UHm_DmlzndbA==
age: 208730
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/lazy_load_images_cloudfront_sd/77204d4da4aa41b08b1a4062c8e66e4629550994.js
143.204.55.13200 OK 0 B URL HTTP/2 cf.bstatic.com/static/js/lazy_load_images_cloudfront_sd/77204d4da4aa41b08b1a4062c8e66e4629550994.js
IP 143.204.55.13:0
GET /static/js/lazy_load_images_cloudfront_sd/77204d4da4aa41b08b1a4062c8e66e4629550994.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 11 Nov 2022 01:22:03 GMT
last-modified: Tue, 04 Feb 2020 10:19:57 GMT
etag: W/"5e39454d-15f3"
expires: Sun, 11 Dec 2022 01:22:03 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Kmvou6-yi9TzD9IUsoE7KBdDOCJTvqJwSGGUEmZyG1u5XvuYx0gTVA==
age: 931960
X-Firefox-Spdy: h2
accounts.google.com/gsi/client
216.58.207.237200 OK 0 B URL HTTP/2 accounts.google.com/gsi/client
IP 216.58.207.237:0
GET /gsi/client HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
expires: Mon, 21 Nov 2022 20:14:46 GMT
date: Mon, 21 Nov 2022 20:14:46 GMT
cache-control: private, max-age=1800
cross-origin-resource-policy: cross-origin
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
content-security-policy: require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, script-src 'nonce-zuFd115JBCk506zp1MsUnw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/error_catcher_bec_cloudfront_sd/282f83b6049fe9bacd964cb6ea8a6d5447528b14.js
143.204.55.13200 OK 0 B URL HTTP/2 cf.bstatic.com/static/js/error_catcher_bec_cloudfront_sd/282f83b6049fe9bacd964cb6ea8a6d5447528b14.js
IP 143.204.55.13:0
GET /static/js/error_catcher_bec_cloudfront_sd/282f83b6049fe9bacd964cb6ea8a6d5447528b14.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Sun, 13 Nov 2022 11:17:01 GMT
last-modified: Mon, 06 Sep 2021 09:06:05 GMT
etag: W/"6135d9fd-178d"
expires: Tue, 13 Dec 2022 11:17:01 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8ZCyjAaid6Ta7chdiuIxB5bAfTtcKYuVgZS6J43QF94Qpi-IGzJRBw==
age: 723462
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/tfl/group_logos/logo_rentalcars/6bc5ec89d870111592a378bbe7a2086f0b01abc4.png
143.204.55.13200 OK 0 B URL HTTP/2 cf.bstatic.com/static/img/tfl/group_logos/logo_rentalcars/6bc5ec89d870111592a378bbe7a2086f0b01abc4.png
IP 143.204.55.13:0
GET /static/img/tfl/group_logos/logo_rentalcars/6bc5ec89d870111592a378bbe7a2086f0b01abc4.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 3221
server: nginx
date: Sun, 30 Oct 2022 06:36:22 GMT
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
etag: "5cadd1d3-c95"
expires: Tue, 29 Nov 2022 06:36:22 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: GZ-6Kac5sOOfviQ-qm7QFWn3SRNyd7A54Gi613mSxpNM9C9a-7j-wA==
age: 1949902
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/sp-on-maps_cloudfront_sd/d30eef4dc5202875d4c3301b8a0e8ff09f9a0e28.js
143.204.55.13200 OK 0 B URL HTTP/2 cf.bstatic.com/static/js/sp-on-maps_cloudfront_sd/d30eef4dc5202875d4c3301b8a0e8ff09f9a0e28.js
IP 143.204.55.13:0
GET /static/js/sp-on-maps_cloudfront_sd/d30eef4dc5202875d4c3301b8a0e8ff09f9a0e28.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 31 Oct 2022 03:35:37 GMT
last-modified: Thu, 19 May 2022 11:44:13 GMT
etag: W/"62862d8d-25ae"
expires: Wed, 30 Nov 2022 03:35:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: nky2v0zkUKPsRSP9OlI3ZOsTW-T4CiLTcK-nb5Rf0rLdxpUiS6MUWQ==
age: 1874347
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/cross_product_index/toggle/fb6f63d62231f9fe552d79b5448620b2e63c726e.svg
143.204.55.13200 OK 0 B URL HTTP/2 cf.bstatic.com/static/img/cross_product_index/toggle/fb6f63d62231f9fe552d79b5448620b2e63c726e.svg
IP 143.204.55.13:0
GET /static/img/cross_product_index/toggle/fb6f63d62231f9fe552d79b5448620b2e63c726e.svg HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/2535e57c7ef14a8abc60b41d254b968015519b51.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Tue, 08 Nov 2022 02:59:11 GMT
last-modified: Wed, 10 Apr 2019 11:21:51 GMT
etag: W/"5cadd1cf-5e7"
expires: Thu, 08 Dec 2022 02:59:11 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3nZ30o1CjzsqNE70tW-LZ0NPffv20njiVWjKdK76NPp9wySymRNm3Q==
age: 1185334
X-Firefox-Spdy: h2