cdn3.partnerserving.com/toolbar/pub/43251/3623/download/HomeTab.exe
77.247.179.82200 OK 527 B URL HTTP/1.1 cdn3.partnerserving.com/toolbar/pub/43251/3623/download/HomeTab.exe
IP 77.247.179.82:0
ASN #43350 NForce Entertainment B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (527), with no line terminators
Hash 314f8b58820d1f354d229408620fc599
4727195749080162f764d058fcd6aa231ca0ee36
e1be57ae39318fc4943da223343b347ccf6087e29821fa1489eb70c33e503d54
Analyzer Verdict Alert fortinet Malware
GET /toolbar/pub/43251/3623/download/HomeTab.exe HTTP/1.1
Host: cdn3.partnerserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 527
content-type: text/html; charset=utf-8
date: Sat, 25 Mar 2023 13:34:56 GMT
server: nginx
set-cookie: sid=d4b401e0-cb11-11ed-8c8c-75a4d749fb02; path=/; domain=.partnerserving.com; expires=Thu, 12 Apr 2091 16:49:03 GMT; max-age=2147483647; HttpOnly
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash dfd491ebe7381221b3674c2c8bf9e566
d2ac5badf17f348c28a52e9db10e6eb80e5a231a
34a026664386054b0b73c36cd1ddfce023551ee41963df0e38248bac1e1eb56c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "34A026664386054B0B73C36CD1DDFCE023551EE41963DF0E38248BAC1E1EB56C"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3192
Expires: Sat, 25 Mar 2023 14:28:08 GMT
Date: Sat, 25 Mar 2023 13:34:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 5d9435c884bf4a0777fdf4b57079ae09
7f04b9db47ffeec90ac6397416b7553e5336a550
fe77420ec3a11f547cf5172b68d30faa4fe0c13165ae305f0013b02914e61084
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FE77420EC3A11F547CF5172B68D30FAA4FE0C13165AE305F0013B02914E61084"
Last-Modified: Sat, 25 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8065
Expires: Sat, 25 Mar 2023 15:49:21 GMT
Date: Sat, 25 Mar 2023 13:34:56 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 25 Mar 2023 13:27:45 GMT
content-type: application/json
age: 431
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1313ee2f06606d09c45b06ff9e8e1001
285ca89d1d3ea45d35832bc6d9827f834b3bfe21
63463447d29550c3734f621be02ec85290fbdf4612f79f9fad7e94f7e066dcb0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63463447D29550C3734F621BE02EC85290FBDF4612F79F9FAD7E94F7E066DCB0"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17104
Expires: Sat, 25 Mar 2023 18:20:00 GMT
Date: Sat, 25 Mar 2023 13:34:56 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: a/DF0KygoKDtsnZIb6P/xbl7iPkf6NBLkKXYTEBRC76tjndOgKJAHU9Gz/a0NhN5LZ7PXSCM+ds=
x-amz-request-id: FY9P06PAB4EEDS95
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 25 Mar 2023 12:54:55 GMT
age: 2401
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 25 Mar 2023 13:34:56 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
cdn3.partnerserving.com/favicon.ico
77.247.179.82404 Not Found 9 B URL HTTP/1.1 cdn3.partnerserving.com/favicon.ico
IP 77.247.179.82:0
ASN #43350 NForce Entertainment B.V.
File type ASCII text, with no line terminators
Hash d8f4a1993546cc4b850cde3599e27aec
094b763b4cfcc0b05e5d040581cd513c3ca08067
907ba78b4545338d3539683e63ecb51cf51c10adc9dabd86e92bd52339f298b9
GET /favicon.ico HTTP/1.1
Host: cdn3.partnerserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn3.partnerserving.com/toolbar/pub/43251/3623/download/HomeTab.exe
Cookie: sid=d4b401e0-cb11-11ed-8c8c-75a4d749fb02
HTTP/1.1 404 Not Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 9
date: Sat, 25 Mar 2023 13:34:56 GMT
server: nginx
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Last-Modified, Retry-After, Content-Length, Alert, Cache-Control, Expires, Content-Type, Backoff, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 25 Mar 2023 13:17:24 GMT
age: 1053
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 70300b32357c46f3448d567189b64cb3
6ba66a5cf63cdbfeaec59b936151cc812bac56df
5a2b4f9fc5ebaa8062058bf68eae75fc28e06c6ef6a0e79c3c761c1d92f81cb9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5A2B4F9FC5EBAA8062058BF68EAE75FC28E06C6EF6A0E79C3C761C1D92F81CB9"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20930
Expires: Sat, 25 Mar 2023 19:23:47 GMT
Date: Sat, 25 Mar 2023 13:34:57 GMT
Connection: keep-alive
cdn3.partnerserving.com/toolbar/pub/43251/3623/download/HomeTab.exe?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY3OTc1ODQ5NiwiaWF0IjoxNjc5NzUxMjk2LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydDdxcHBybzdjNG05OTlkYmMwM3VobzkiLCJuYmYiOjE2Nzk3NTEyOTYsInRzIjoxNjc5NzUxMjk2MTg2OTg3fQ.GXJdK2-mOqMAh3O9CM2o2L9qe5m_83FqURqgPyVQVoE&sid=d4b401e0-cb11-11ed-8c8c-75a4d749fb02
77.247.179.82302 Found 11 B URL HTTP/1.1 cdn3.partnerserving.com/toolbar/pub/43251/3623/download/HomeTab.exe?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY3OTc1ODQ5NiwiaWF0IjoxNjc5NzUxMjk2LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydDdxcHBybzdjNG05OTlkYmMwM3VobzkiLCJuYmYiOjE2Nzk3NTEyOTYsInRzIjoxNjc5NzUxMjk2MTg2OTg3fQ.GXJdK2-mOqMAh3O9CM2o2L9qe5m_83FqURqgPyVQVoE&sid=d4b401e0-cb11-11ed-8c8c-75a4d749fb02
IP 77.247.179.82:0
ASN #43350 NForce Entertainment B.V.
File type ASCII text, with no line terminators
Hash 32682312d17c7cbf18e73594f5570319
60e22121bdd0bc71cdb2bae2a3aa577006b2eae9
e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47
GET /toolbar/pub/43251/3623/download/HomeTab.exe?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY3OTc1ODQ5NiwiaWF0IjoxNjc5NzUxMjk2LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydDdxcHBybzdjNG05OTlkYmMwM3VobzkiLCJuYmYiOjE2Nzk3NTEyOTYsInRzIjoxNjc5NzUxMjk2MTg2OTg3fQ.GXJdK2-mOqMAh3O9CM2o2L9qe5m_83FqURqgPyVQVoE&sid=d4b401e0-cb11-11ed-8c8c-75a4d749fb02 HTTP/1.1
Host: cdn3.partnerserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn3.partnerserving.com/toolbar/pub/43251/3623/download/HomeTab.exe
Cookie: sid=d4b401e0-cb11-11ed-8c8c-75a4d749fb02
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 11
date: Sat, 25 Mar 2023 13:34:57 GMT
location: http://ishku-wbq.com/zcvisitor/d5041319-cb11-11ed-b9df-123a316fd6a1/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=35131a10-acf6-11ed-82e9-0a918cbcbb97
server: nginx
set-cookie: sid=d4b401e0-cb11-11ed-8c8c-75a4d749fb02; path=/; domain=.partnerserving.com; expires=Thu, 12 Apr 2091 16:49:04 GMT; max-age=2147483647; HttpOnly
ishku-wbq.com/zcvisitor/d5041319-cb11-11ed-b9df-123a316fd6a1/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=35131a10-acf6-11ed-82e9-0a918cbcbb97
3.231.116.86200 1.1 kB URL HTTP/1.1 ishku-wbq.com/zcvisitor/d5041319-cb11-11ed-b9df-123a316fd6a1/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=35131a10-acf6-11ed-82e9-0a918cbcbb97
IP 3.231.116.86:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b2baf9d54373236b1a2cf19d96545263
54197edec24efdc7a96c53d5d1e3ef03b11bf8b2
70dcd622ef3d6ce67b297132b646f21e319f949a14a1775a1fe271bf6c89f640
GET /zcvisitor/d5041319-cb11-11ed-b9df-123a316fd6a1/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=35131a10-acf6-11ed-82e9-0a918cbcbb97 HTTP/1.1
Host: ishku-wbq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://cdn3.partnerserving.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Date: Sat, 25 Mar 2023 13:34:57 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Server: ysAdzdxl
push.services.mozilla.com/
54.149.224.76101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.224.76:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: U4cgSgDmcmrjHT2VHic17g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: sn5SBAYSaIElsVW4pj3YLPL5nWc=
ishku-wbq.com/zcredirect?visitid=d5041319-cb11-11ed-b9df-123a316fd6a1&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
3.231.116.86200 732 B URL HTTP/1.1 ishku-wbq.com/zcredirect?visitid=d5041319-cb11-11ed-b9df-123a316fd6a1&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
IP 3.231.116.86:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (323)
Hash 4efdd2f8de8bf1b8e275c82dfe537b03
22862ca2604da9b2f168a73f6f7a82361983c4b2
807e8cb07a4ab5e672ba84d7133c34bb2824dcec8c500123357798f776aa4ba7
GET /zcredirect?visitid=d5041319-cb11-11ed-b9df-123a316fd6a1&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false HTTP/1.1
Host: ishku-wbq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ishku-wbq.com/zcvisitor/d5041319-cb11-11ed-b9df-123a316fd6a1/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=35131a10-acf6-11ed-82e9-0a918cbcbb97
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Date: Sat, 25 Mar 2023 13:34:57 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
redirected: JS
Server: ozHWcwBG
hit.teratracker.com/1I4b86TSR?x3v=MTGEBzCvgiQlYbgdfc8TslLgSYNPPN2n2pctUBDLJGFtsMfTUwak%2BA4TRDzq%2F9LwYP9D9RNp3sTsPQNrA0cLVzbGKyLZLvJWFBq4wgFqVnN65AeSVeNXNgKToXDy3ajTmUxfIo5wWFXgXWfbwkenZ77l61oIeDO%2BxDT87uxrwTYi7ao8dImgzA%3D%3D&sk=eaa3c9072007cd2f7e31137f17b0e0b2
104.21.75.190302 Found 0 B URL HTTP/2 hit.teratracker.com/1I4b86TSR?x3v=MTGEBzCvgiQlYbgdfc8TslLgSYNPPN2n2pctUBDLJGFtsMfTUwak%2BA4TRDzq%2F9LwYP9D9RNp3sTsPQNrA0cLVzbGKyLZLvJWFBq4wgFqVnN65AeSVeNXNgKToXDy3ajTmUxfIo5wWFXgXWfbwkenZ77l61oIeDO%2BxDT87uxrwTYi7ao8dImgzA%3D%3D&sk=eaa3c9072007cd2f7e31137f17b0e0b2
IP 104.21.75.190:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1I4b86TSR?x3v=MTGEBzCvgiQlYbgdfc8TslLgSYNPPN2n2pctUBDLJGFtsMfTUwak%2BA4TRDzq%2F9LwYP9D9RNp3sTsPQNrA0cLVzbGKyLZLvJWFBq4wgFqVnN65AeSVeNXNgKToXDy3ajTmUxfIo5wWFXgXWfbwkenZ77l61oIeDO%2BxDT87uxrwTYi7ao8dImgzA%3D%3D&sk=eaa3c9072007cd2f7e31137f17b0e0b2 HTTP/1.1
Host: hit.teratracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 25 Mar 2023 13:34:57 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
location: https://www.booking.com/index.html?aid=7952588
access-control-allow-origin: *
access-control-expose-headers: X-BurstFire-ReqID, X-BurstFire-ClientID, X-BurstFire-Version, Server
x-burstfire-reqid: 527def9e-f9a3-4ace-a711-eb3f768d59e1
x-burstfire-clientid: 836bf02e-8f2c-6465-41c2-5ccbed751294
x-burstfire-version: Generic
referrer-policy: no-referrer
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SY8CHQdEw0gMkjiTeMMIkVKjikO8TC48SNffKN2CYv4glmFwnpLzpX%2FBdgg3Gqi0bNxfbyhv1Ts766EEt6yIbuETnNkoTF%2FJpLEt6n5ojdvpXnOTck1Kqz7cwDTXtWIJnjmg0HQB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ad788cb38bd0b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ishku-wbq.com/favicon.ico
3.231.116.86404 653 B URL HTTP/1.1 ishku-wbq.com/favicon.ico
IP 3.231.116.86:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (649), with no line terminators
Hash ba2732b1b2fa2626ffaa15f62f9e7d66
203d4e7fbb1d80449d6e4e1f3ae7a9bf8625debe
879861cb72fe9fbb476dab246021c4c83b4066327de2529e05ec54d3afb0a1c8
GET /favicon.ico HTTP/1.1
Host: ishku-wbq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ishku-wbq.com/zcredirect?visitid=d5041319-cb11-11ed-b9df-123a316fd6a1&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
HTTP/1.1 404
Date: Sat, 25 Mar 2023 13:34:57 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 653
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Content-Language: en
Server: pvqJuaPN
cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/OtAutoBlock.js
104.19.188.97200 OK 11 kB URL HTTP/2 cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/OtAutoBlock.js
IP 104.19.188.97:0
File type ASCII text, with very long lines (65028)
Hash 52c1e65a9b361dec05bcfd40ff1e9946
757d9e9f5d94db529dc71dd7626c6fa3e2d9333c
7ca38e8635a9dca546dc5199e8c53f5452a5524c18e5a27ac7cae8d66012e81c
GET /consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/OtAutoBlock.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 13:34:58 GMT
content-type: application/x-javascript
content-length: 10921
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: UsHmWps2HewFvP1A/x6ZRg==
last-modified: Tue, 14 Mar 2023 09:25:31 GMT
etag: 0x8DB246E0E81E9BD
x-ms-request-id: 33ff692b-901e-00db-42e1-5a7c30000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 33927
expires: Sun, 26 Mar 2023 13:34:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ad788cf2b5bb509-OSL
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/crossorigin_check_cloudfront_sd/2454015045ef79168d452ff4e7f30bdadff0aa81.js
54.230.111.91200 OK 95 B URL HTTP/2 cf.bstatic.com/static/js/crossorigin_check_cloudfront_sd/2454015045ef79168d452ff4e7f30bdadff0aa81.js
IP 54.230.111.91:0
File type ASCII text, with no line terminators
Hash 335be8900580e9c3875dba57334294ae
a86597d2ddfa410df13bceca86fdf9a2291fe798
8a882fd19a15567e53a5c3c08d22cdab714fa87734ed92d854c4e8fdf3940b1f
GET /static/js/crossorigin_check_cloudfront_sd/2454015045ef79168d452ff4e7f30bdadff0aa81.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 95
server: nginx
date: Wed, 08 Mar 2023 13:32:57 GMT
last-modified: Wed, 10 Apr 2019 11:21:38 GMT
etag: "5cadd1c2-5f"
expires: Fri, 07 Apr 2023 13:32:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Bd9y0-rvC5RZKzHrA2NaJFIdneUUh3nrfaj3j0FGUxFxJA4v3bTQGA==
age: 1468921
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/otSDKStub.js
104.19.188.97200 OK 8.6 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP 104.19.188.97:0
File type ASCII text, with very long lines (26237)
Hash 5cfe6e7c620c540ce793517ea6ab70ce
060716263902f949959961d571ed852b88860cff
6ca1026b6121df8226a60f5608e52d71d5d32a77d9ee116014828e296a046d6e
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 13:34:58 GMT
content-type: application/javascript
content-length: 8618
content-encoding: gzip
content-md5: XP5ufGIMVAznk1F+pqtwzg==
last-modified: Thu, 23 Mar 2023 02:36:54 GMT
etag: 0x8DB2B4777370286
x-ms-request-id: 2ad230fe-c01e-0087-1ecd-5d8dc9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 33980
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ad788cf8c0ab509-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/3ea94870-d4b1-483a-b1d2-faf1d982bb31.json
104.19.188.97200 OK 2.1 kB URL HTTP/2 cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/3ea94870-d4b1-483a-b1d2-faf1d982bb31.json
IP 104.19.188.97:0
File type JSON data\012- , ASCII text, with very long lines (8084), with no line terminators
Hash 09e62e612e2b54415dc82be1e55eb3e7
ffed52cfecd7e421981ed1e9e39d0558e00a2958
8d65536c42ac87a87a3b50259af913daa1e74682420d5163c58c747a0818733a
GET /consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/3ea94870-d4b1-483a-b1d2-faf1d982bb31.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 13:34:58 GMT
content-type: application/x-javascript
content-length: 2142
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: CeYuYS4rVEFdyCvh5V6z5w==
last-modified: Tue, 14 Mar 2023 09:25:31 GMT
etag: 0x8DB246E0EA1C955
x-ms-request-id: f70ebf1f-601e-00ce-30e1-5abea9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 33927
expires: Sun, 26 Mar 2023 13:34:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ad788cfac3db509-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.22.0/otBannerSdk.js
104.19.188.97200 OK 76 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.22.0/otBannerSdk.js
IP 104.19.188.97:0
File type ASCII text, with very long lines (65455)
Hash 523e98a35ea92fd6e6d32d6728a8c98e
e0951a7bfa0700679aa41a03394286723e697d93
a746202b022948dfc0461cf24b3be5b01d0c08b924b23545f3cba6e2d15b41a9
GET /scripttemplates/6.22.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 13:34:58 GMT
content-type: application/javascript
content-length: 75930
content-encoding: gzip
content-md5: Uj6Yo16pL9bm0y1nKKjJjg==
last-modified: Thu, 19 Aug 2021 02:39:18 GMT
etag: 0x8D962BA8ADAEF03
x-ms-request-id: b83df397-701e-00bc-74e1-5acf97000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 33943
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ad788d07d39b509-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/77946762-1e41-44bb-9c76-9c2e81167e6d/en-us.json
104.19.188.97200 OK 18 kB URL HTTP/2 cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/77946762-1e41-44bb-9c76-9c2e81167e6d/en-us.json
IP 104.19.188.97:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65508), with no line terminators
Hash b86de79a88096ab008259d75ec356d3d
ed022582e20083072b0c0e4e7fa8c3397687d6ff
281675b89d2b78dca9400ce9e31ac034e835effac0391f0bc35124580183342a
GET /consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/77946762-1e41-44bb-9c76-9c2e81167e6d/en-us.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 13:34:58 GMT
content-type: application/x-javascript
content-length: 18492
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: uG3nmogJarAIJZ117DVtPQ==
last-modified: Tue, 14 Mar 2023 09:25:57 GMT
etag: 0x8DB246E1E644A73
x-ms-request-id: 312667f2-901e-017e-2de1-5a017c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 31845
expires: Sun, 26 Mar 2023 13:34:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ad788d10dd8b509-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4042
Expires: Sat, 25 Mar 2023 14:42:20 GMT
Date: Sat, 25 Mar 2023 13:34:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4042
Expires: Sat, 25 Mar 2023 14:42:20 GMT
Date: Sat, 25 Mar 2023 13:34:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4042
Expires: Sat, 25 Mar 2023 14:42:20 GMT
Date: Sat, 25 Mar 2023 13:34:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4042
Expires: Sat, 25 Mar 2023 14:42:20 GMT
Date: Sat, 25 Mar 2023 13:34:58 GMT
Connection: keep-alive
cdn.cookielaw.org/scripttemplates/6.22.0/assets/otFlat.json
104.19.188.97200 OK 3.0 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.22.0/assets/otFlat.json
IP 104.19.188.97:0
File type JSON data\012- , ASCII text, with very long lines (10843)
Hash 792fef665863081a7642f10bc7b22b49
f30de5899ad8675a26c5a1688c543e7044bce0ab
af415b02ce1afa491d86bd1fafa2416302d69906ded37715ca425b6778cd7d9c
GET /scripttemplates/6.22.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 13:34:58 GMT
content-type: application/json
content-length: 2950
content-encoding: gzip
content-md5: eS/vZlhjCBp2QvELx7IrSQ==
last-modified: Thu, 19 Aug 2021 02:39:10 GMT
etag: 0x8D962BA867F281F
x-ms-request-id: 9f1e8392-e01e-00d4-35e1-5a91c6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 33743
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ad788d14e27b509-OSL
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07b6f4d1-af89-4aaf-acec-609bb76366de.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07b6f4d1-af89-4aaf-acec-609bb76366de.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 70169fbc493bf12f91f072aa3a30ddde
4cd24b81bd6ade3ab5ff90fc88b0f7497e93391d
8b5fc3c8421d5696522231c3490a0853709897f5c9b645bd5e84398cf84089aa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07b6f4d1-af89-4aaf-acec-609bb76366de.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12071
x-amzn-requestid: 02bb2a93-c0aa-4d43-aa99-759a0418bc20
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTigfGHYoAMF8BQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e179c-2258162e1901b5cd6e7144d3;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:35:24 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: n7Xm67vDO9_X3Xoe2HXJs4Y9dLE6cZgx16lmW7c3KHv-sOg7rZo9wg==
via: 1.1 b5695e36d7fbc522ece27885d73757ae.cloudfront.net (CloudFront), 1.1 d90109c5a0c30f43223e0db85921c5c2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:47:23 GMT
age: 56855
etag: "4cd24b81bd6ade3ab5ff90fc88b0f7497e93391d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bda2583-e595-45ff-852f-d4b6bd713109.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bda2583-e595-45ff-852f-d4b6bd713109.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 73f9697594d173d623b331b5c35eab8d
6323f751f6b7517f062a0442480f672086ea02a1
116cb71658b31e87f19c390b242c684f6505cc8edf90b7fc934ac726fc7ddd18
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bda2583-e595-45ff-852f-d4b6bd713109.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8635
x-amzn-requestid: fc715b03-f48f-4300-b752-ab157a684f08
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTihcETyIAMFhYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e17a2-68f685ec0f50dae026ea3f64;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:35:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: i6dsVaC_gPijsRqh_EL5tZYZpjNEbQJvKIpPq501TIJZzcLUWeRz9w==
via: 1.1 ba490acb2ea716cd57876286ed686786.cloudfront.net (CloudFront), 1.1 34f8ef0e4c880df0650a814412a26ea6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:45:56 GMT
age: 56942
etag: "6323f751f6b7517f062a0442480f672086ea02a1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aecd210f66f83c73c3450d047ae7448a
d68861e96e12e8a3f293dbae8b687f05b6e15afb
22b69c41c56e5538d91f824d5dc2e63ab5563f99ae8e429c9166f4b397cacd0e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5296
x-amzn-requestid: 11fdf0c8-244c-4cd5-bfa7-4c77d777174f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTiuzEqkIAMFXOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e17f8-5c241d63598dbf595b54ead5;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:36:56 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: b1KWFmKdRQ4DU0v5JmC7AJatpv2B5FAHKVWL7pFiyh13fqYDA5qydA==
via: 1.1 b5695e36d7fbc522ece27885d73757ae.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:57:13 GMT
age: 56265
etag: "d68861e96e12e8a3f293dbae8b687f05b6e15afb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af2ab94-b5c3-4517-b9d7-97ddb369f62d.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af2ab94-b5c3-4517-b9d7-97ddb369f62d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5773974a7341690f006b052ad02c94db
1b11316c952e2195da1646dd94671669e7e3bc2b
a06b72138745500cacc919fea29536ebd4188a1c483f6123e3402458e299f16a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af2ab94-b5c3-4517-b9d7-97ddb369f62d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7800
x-amzn-requestid: bad99b1e-3923-4de9-8bea-4dd04e96f7cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTigfFGcIAMFdBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e179c-0826b92d4c4af16553503600;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:35:24 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 9AGLmjvUSTKIsYIWECOR8QwdF4PP1tP1TweUm0VYvxQ0qskqj3YuLA==
via: 1.1 3698a5f586d9ecca74d570e41f4c8516.cloudfront.net (CloudFront), 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:43:53 GMT
age: 57065
etag: "1b11316c952e2195da1646dd94671669e7e3bc2b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6f9abe8-74dc-41f6-984c-4a9e53a6198a.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6f9abe8-74dc-41f6-984c-4a9e53a6198a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dd191e3a122d6e31f81e6e9d434c58d6
aec88022970c93289434f8097e4a663da33e5271
1f00c901ef479637ec703d7924526a970cb13dd2635b2bbb68b285df9d98e011
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6f9abe8-74dc-41f6-984c-4a9e53a6198a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6185
x-amzn-requestid: 223de50b-9a7e-4ac7-9305-336658eec4ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTiwYHoLoAMFXtg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e1802-226bd8524ade75234053ff50;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:37:06 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Ye0ADORg1hFVLxcNVj-qS60tlfguOEtyTx_XFU4ooJOcDHqNsqV3kw==
via: 1.1 3698a5f586d9ecca74d570e41f4c8516.cloudfront.net (CloudFront), 1.1 1ec2938341958d70d56193d709c89dee.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:57:14 GMT
age: 56264
etag: "aec88022970c93289434f8097e4a663da33e5271"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 85351059b67b0a42eda7e69a31b3b4b4
b798268806dc2f79f033e5872676019faf0e0cc1
86e163b7159b197d6358ab01333ac6da221de0ebe1c5da8d5cef2977d38625fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4000
x-amzn-requestid: 68dc01d7-3eed-48f6-8532-8efaa96cc1ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJpraEqyoAMFgNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2315-3852cc8961365a560d1fa02f;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:17 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: I3GuoZ4ZxAtz0sKe3wrW67aitLlCAbaZkiPw23fl0F3FoumJDEnXiQ==
via: 1.1 288c777a01e22425da9494dad7a69734.cloudfront.net (CloudFront), 1.1 d90109c5a0c30f43223e0db85921c5c2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 05:56:24 GMT
age: 27514
etag: "b798268806dc2f79f033e5872676019faf0e0cc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/513.75e7f786.chunk.css
54.230.111.91200 OK 714 B URL HTTP/2 cf.bstatic.com/psb/capla/static/css/513.75e7f786.chunk.css
IP 54.230.111.91:0
File type ASCII text, with very long lines (600)
Hash 9646d566d863bf8858bb120001e00df9
2cf81c65fc9e9003213dbd7c67be287419983765
27f6fa9431e1b155845f98ee098a95dab2d94f280259983ca4cb7611ba3f2251
GET /psb/capla/static/css/513.75e7f786.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 714
server: nginx
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Tue, 31 Jan 2023 10:39:41 GMT
x-amz-expiration: expiry-date="Thu, 23 Mar 2023 10:15:47 GMT", rule-id=""
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Fri, 24 Mar 2023 02:28:59 GMT
expires: Sun, 23 Apr 2023 01:19:30 GMT
cache-control: max-age=2592000
etag: "9646d566d863bf8858bb120001e00df9"
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: y6QQoWHoYHSHzvObkxNe8KA4ZEnQ7aofOvJYoIELKBni9lOSj0CKog==
age: 130529
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/348.dc09efca.chunk.css
54.230.111.91200 OK 1.5 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/348.dc09efca.chunk.css
IP 54.230.111.91:0
File type ASCII text, with very long lines (1847)
Hash 240d3b5cf35876c454890ca4b9047db6
beba8fbd596478f0bc2b03c11134f08e866c703d
65b6b3ab229bef677b294b424cc23f6b35eb942a83a05f349f670cb3460053df
GET /psb/capla/static/css/348.dc09efca.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Mon, 06 Mar 2023 14:01:16 GMT
etag: W/"416b881ef6e331ce315a02e185efe3fa"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 03 Mar 2023 14:07:00 GMT
x-amz-expiration: expiry-date="Sat, 01 Jul 2023 14:07:00 GMT", rule-id=""
expires: Wed, 05 Apr 2023 14:01:16 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: s6jRSqeuYNQTy20mEuTt3tJQaPVhLD6YnqVbJhs40o8mR8MqFAUc3A==
age: 1640023
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/802.928bb228.chunk.css
54.230.111.91200 OK 354 B URL HTTP/2 cf.bstatic.com/psb/capla/static/css/802.928bb228.chunk.css
IP 54.230.111.91:0
Hash daeebf129b59c1a9ca8a02db535232af
4f6bfbc548876e7d27e8cc6145d77a1f8fe57f74
6bfd80f532a390c2035d7a2f5f5483308d9f12e935f60ebb205459c9f7038617
GET /psb/capla/static/css/802.928bb228.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 354
server: nginx
date: Sat, 11 Mar 2023 00:58:32 GMT
etag: "daeebf129b59c1a9ca8a02db535232af"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 13 Jan 2023 09:14:58 GMT
x-amz-expiration: expiry-date="Sat, 13 May 2023 09:14:58 GMT", rule-id=""
expires: Mon, 10 Apr 2023 00:58:32 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1dbntWzrSXMlEmkgSy6Ot5AwR9HiNt0L0Tg6PBOG5UqTAI4qWFqF3Q==
age: 1254987
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/541.60bd0f47.chunk.css
54.230.111.91200 OK 349 B URL HTTP/2 cf.bstatic.com/psb/capla/static/css/541.60bd0f47.chunk.css
IP 54.230.111.91:0
Hash 3463768f1eada6681938129f4ac1f0cd
0e94fd7afdcf474745329e76795462278d22fb79
9ce1783fb0eb2bffa218d02d92cd320087f6bb3132dbf1e20b3443a87306412b
GET /psb/capla/static/css/541.60bd0f47.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 349
server: nginx
date: Sun, 12 Mar 2023 00:50:11 GMT
etag: "3463768f1eada6681938129f4ac1f0cd"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Mon, 27 Feb 2023 11:51:30 GMT
x-amz-expiration: expiry-date="Wed, 01 Mar 2023 10:18:55 GMT", rule-id=""
expires: Tue, 11 Apr 2023 00:50:11 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uHUigzONwLXvBPnVhnnTmD-moHnxhC6PpROdEgQ11ld4PjshSDbQug==
age: 1169088
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/665.4b0f9a6e.chunk.css
54.230.111.91200 OK 372 B URL HTTP/2 cf.bstatic.com/psb/capla/static/css/665.4b0f9a6e.chunk.css
IP 54.230.111.91:0
Hash 09de2c73a5e88fb7890e7bda05b388e1
5ddaf842181496df3827f019a004d4665ec6e34b
23470a91500ad85a0316944145d51f31e5a6f7a7d4b1aaed1c59b9ec4899722d
GET /psb/capla/static/css/665.4b0f9a6e.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 372
server: nginx
date: Wed, 15 Mar 2023 10:08:15 GMT
etag: "09de2c73a5e88fb7890e7bda05b388e1"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Tue, 14 Mar 2023 14:41:02 GMT
x-amz-expiration: expiry-date="Wed, 12 Jul 2023 14:41:02 GMT", rule-id=""
expires: Fri, 14 Apr 2023 10:08:15 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vOpY-oG5QppZIVR1Tiuaf7-NV6D3bHERFX7mAY2xWwzJ5X7xMwyI8g==
age: 876404
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/jquery_cloudfront_sd/e1e8c0e862309cb4caf3c0d5fbea48bfb8eaad42.js
54.230.111.91200 OK 68 kB URL HTTP/2 cf.bstatic.com/static/js/jquery_cloudfront_sd/e1e8c0e862309cb4caf3c0d5fbea48bfb8eaad42.js
IP 54.230.111.91:0
File type ASCII text, with very long lines (60582)
Hash 148ebfa28c97fe3c5fac354b234ccb21
7445340476706e478b3914cc9a9e9bce031ad702
7e2e115b8892569531376a4db2308982dedbc4d8088666cab777e6658ba97142
GET /static/js/jquery_cloudfront_sd/e1e8c0e862309cb4caf3c0d5fbea48bfb8eaad42.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Sat, 11 Mar 2023 01:30:16 GMT
last-modified: Tue, 28 Jun 2022 15:19:38 GMT
etag: W/"62bb1c0a-19a42"
expires: Mon, 10 Apr 2023 01:30:16 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zvHU5B27LabZDl-azUFG5l6a_z1AXso7ksSXIpRsn3lRiPr2wRSCPw==
age: 1253082
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/540x405/196284125.webp?k=9bda565c6a99f647fd60119e0bb098e9efff57840b3dea388695b5b13f3edfbd&o=
54.230.111.91200 OK 40 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/540x405/196284125.webp?k=9bda565c6a99f647fd60119e0bb098e9efff57840b3dea388695b5b13f3edfbd&o=
IP 54.230.111.91:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 540x405, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a48ad1fc10a4a4a8d7e20fef40a68a39
af4e1fadf27c09f4b467202c4e491d426cbe68f4
233922d2000a4e9f8f77d10758daf1fc71574f907c9ff7da5f1e32639f6d5525
GET /xdata/images/xphoto/540x405/196284125.webp?k=9bda565c6a99f647fd60119e0bb098e9efff57840b3dea388695b5b13f3edfbd&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 39638
server: nginx
date: Sun, 05 Mar 2023 13:00:26 GMT
etag: "056efc1bdaa1d820ff99e59193fac56c5e4df3aa"
expires: Tue, 04 Apr 2023 13:00:26 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: auffoL4Fk7bbQYAXClyRX9n8tKTMvsrDCcr26X_E6VYacKfq03prbw==
age: 1730073
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/main_cloudfront_sd/229dbc358eafa485d968f66760dd74858f8e7790.js
54.230.111.91200 OK 151 kB URL HTTP/2 cf.bstatic.com/static/js/main_cloudfront_sd/229dbc358eafa485d968f66760dd74858f8e7790.js
IP 54.230.111.91:0
File type ASCII text, with very long lines (57572)
Size 151 kB (151250 bytes)
Hash 1f887dc46420e2914d0fc3b1437b7d92
d49facdb45ac7c095ac11eb35a25c71ccbfae772
ecc2a47a9d3c208fe25af0f0e565fe3ef8a506b186afe0a02e3f1dd6229352db
GET /static/js/main_cloudfront_sd/229dbc358eafa485d968f66760dd74858f8e7790.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 23 Mar 2023 13:47:35 GMT
last-modified: Thu, 23 Mar 2023 12:47:04 GMT
etag: W/"641c4a48-873f6"
expires: Sat, 22 Apr 2023 13:47:35 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: h7mvEe2OIV_ryjSWM4yq-KZL-88IgLm9jDe5MxoN4n3gpdObCl0J3g==
age: 172042
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/579.17f1f9fb.chunk.css
54.230.111.91200 OK 44 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/579.17f1f9fb.chunk.css
IP 54.230.111.91:0
File type ASCII text, with very long lines (2529)
Hash 8f5989091a967c7a97a57814831c1508
cad5df507304bdab54540bc8fb21cb34caf1b808
aba0a9b2b95212b424db09fa9af85ffe330ea98d1d5b13b8b05393e6766f7ab1
GET /psb/capla/static/css/579.17f1f9fb.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Fri, 03 Mar 2023 14:29:54 GMT
etag: W/"a7be7273517a8082ae2866fa12f084ad"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Thu, 02 Mar 2023 12:47:37 GMT
x-amz-expiration: expiry-date="Fri, 30 Jun 2023 12:47:37 GMT", rule-id=""
expires: Sun, 02 Apr 2023 14:29:54 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lwS-7EHjoF2I1WzA4AbR4DXr9XdzJ46F_0bW8ibIq4caQ3mwd9n0XA==
age: 1897505
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/index_cloudfront_sd.iq_ltr/d74b843d5a5a520c1a4cc745812c592b71891081.css
54.230.111.91200 OK 52 kB URL HTTP/2 cf.bstatic.com/static/css/index_cloudfront_sd.iq_ltr/d74b843d5a5a520c1a4cc745812c592b71891081.css
IP 54.230.111.91:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 2838571672d043136559298169c93ad2
b4b742b1a5a3b7832b1941a58e17697612f7419e
ec9fb9434acdb64cdc6dca5bd4184ba3b2ca38645eb948d116c4acacab5598b3
GET /static/css/index_cloudfront_sd.iq_ltr/d74b843d5a5a520c1a4cc745812c592b71891081.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Tue, 21 Mar 2023 10:55:21 GMT
last-modified: Tue, 21 Mar 2023 10:44:11 GMT
etag: W/"64198a7b-5afcd"
expires: Thu, 20 Apr 2023 10:55:21 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: FR3qgrjDXv6DLIDlipE_cN9kTEQ42gUA9N61sZPVnHt7EvZgGMk0AQ==
age: 355177
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/tfl/group_logos/logo_booking/27c8d1832de6a3123b6ee45b59ae2f81b0d9d0d0.png
54.230.111.91200 OK 1.6 kB URL HTTP/2 cf.bstatic.com/static/img/tfl/group_logos/logo_booking/27c8d1832de6a3123b6ee45b59ae2f81b0d9d0d0.png
IP 54.230.111.91:0
File type PNG image data, 91 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 3e32efd25ac0214b375fc8a6a32890f2
cd46a79db7e53e19d5869b3cb3e7aa22ee523479
807c8a1b498e17d227cf48a640b778bdc4398a9852493cb2f40bf0f33651d0dd
GET /static/img/tfl/group_logos/logo_booking/27c8d1832de6a3123b6ee45b59ae2f81b0d9d0d0.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1628
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Tue, 14 Mar 2023 17:39:18 GMT
expires: Mon, 10 Apr 2023 01:27:51 GMT
cache-control: max-age=2592000
etag: "5cadd1d3-65c"
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: UbTrxwrS8y19M8dcckQqT8eFnaIm7cEzJlM8oAerl12kN4o-kuPHhw==
age: 1253228
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/index_cloudfront_sd/0e8c08e4878c7a2dde2ba6890d49e46723d33da3.js
54.230.111.91200 OK 16 kB URL HTTP/2 cf.bstatic.com/static/js/index_cloudfront_sd/0e8c08e4878c7a2dde2ba6890d49e46723d33da3.js
IP 54.230.111.91:0
File type ASCII text, with very long lines (61097), with no line terminators
Hash 6211b8426e29a9eebd085a8c0621b238
3b664386ae314141df8303ee0744d29b4b88b1ae
66552fc4035273660b2ee51f4d066f6cdff092e399e746c0237351b860b1ad3e
GET /static/js/index_cloudfront_sd/0e8c08e4878c7a2dde2ba6890d49e46723d33da3.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 23 Mar 2023 13:47:39 GMT
last-modified: Thu, 23 Mar 2023 12:47:03 GMT
etag: W/"641c4a47-eea9"
expires: Sat, 22 Apr 2023 13:47:39 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4vwfF348N0sYcVwUz1QCpm2ZlrC4tgjlwgvf9LIatv-T98lxZmTokA==
age: 172039
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/tfl/group_logos/logo_kayak/83ef7122074473a6566094e957ff834badb58ce6.png
54.230.111.91200 OK 1.2 kB URL HTTP/2 cf.bstatic.com/static/img/tfl/group_logos/logo_kayak/83ef7122074473a6566094e957ff834badb58ce6.png
IP 54.230.111.91:0
File type PNG image data, 79 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 6384185cbe9a4f106857a3cb85caea98
0e31a4fe2ce98a8b4fda60687aa71079b4d3a95b
5839f0330821cf08029beddd6d248170da1af16cd7aff253e7bd075d591f5d42
GET /static/img/tfl/group_logos/logo_kayak/83ef7122074473a6566094e957ff834badb58ce6.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1154
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Tue, 21 Mar 2023 01:38:31 GMT
expires: Wed, 19 Apr 2023 01:11:01 GMT
cache-control: max-age=2592000
etag: "5cadd1d3-482"
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: L-RU23yRepg9H7xiIeIRX9Xlzb7js5m3vgE30kd-h8MpXSrDrH6l4g==
age: 476638
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/tfl/group_logos/logo_agoda/1c9191b6a3651bf030e41e99a153b64f449845ed.png
54.230.111.91200 OK 2.1 kB URL HTTP/2 cf.bstatic.com/static/img/tfl/group_logos/logo_agoda/1c9191b6a3651bf030e41e99a153b64f449845ed.png
IP 54.230.111.91:0
File type PNG image data, 70 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 27e71a5124018e16eae0b8897618623d
d0d54d88b04edfc71f338c19eab9994632bc6ced
1d6e86e59ab7235a8343f494c8e8da6cc02c5a98a75d682401340e6d06935f20
GET /static/img/tfl/group_logos/logo_agoda/1c9191b6a3651bf030e41e99a153b64f449845ed.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2146
server: nginx
last-modified: Thu, 12 Mar 2020 10:15:57 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Wed, 15 Mar 2023 14:52:18 GMT
expires: Wed, 12 Apr 2023 03:13:13 GMT
cache-control: max-age=2592000
etag: "5e6a0bdd-862"
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KuolaNNPwz2TsRt78JDQ7ts1mWzjUiJL_4h6O-Qi57FY2NY4aEGDFg==
age: 1074106
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/landingpage_cloudfront_sd/d731e6c6e8c81339337d5fbb6d244a92803397b2.js
54.230.111.91200 OK 70 kB URL HTTP/2 cf.bstatic.com/static/js/landingpage_cloudfront_sd/d731e6c6e8c81339337d5fbb6d244a92803397b2.js
IP 54.230.111.91:0
File type ASCII text, with very long lines (51645)
Hash 5b6d5e11d278e6610886543a55791c84
87a75d4d5fc1459d81efb7df7328e054f488b592
310e0007d703c757524a1cdc64ace473ce6a442b37f7ba92768b89b75b850ba2
GET /static/js/landingpage_cloudfront_sd/d731e6c6e8c81339337d5fbb6d244a92803397b2.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 16 Mar 2023 10:52:19 GMT
last-modified: Mon, 13 Feb 2023 06:55:39 GMT
etag: W/"63e9deeb-55b58"
expires: Sat, 15 Apr 2023 10:52:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BzYSCpRL4rDzGPZHceaXzPD_6P1e2Fuu8fd7ppsR-jwxOTxTvqw4OQ==
age: 787359
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/error_catcher_bec_cloudfront_sd/0acd2ada6c74d5dec978a04ea837952bdf050cd2.js
54.230.111.91200 OK 4.6 kB URL HTTP/2 cf.bstatic.com/static/js/error_catcher_bec_cloudfront_sd/0acd2ada6c74d5dec978a04ea837952bdf050cd2.js
IP 54.230.111.91:0
File type ASCII text, with very long lines (6155), with no line terminators
Hash 12dc88520a8fcf74a6b3575e06fcad3b
70b00be145325d98fa2ec4f493c68429f7ac842d
377ae8fb964a7d5fe686d9662acb97cfebb2a269e6b63b23384199ad85cbe2eb
GET /static/js/error_catcher_bec_cloudfront_sd/0acd2ada6c74d5dec978a04ea837952bdf050cd2.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 20 Mar 2023 00:25:29 GMT
last-modified: Wed, 21 Dec 2022 14:29:30 GMT
etag: W/"63a3184a-180b"
expires: Wed, 19 Apr 2023 00:25:29 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lIhKFnQ357mG26p14kenafgVGawW6kir4ZjjEcakyh0rz87uqNy48w==
age: 479369
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/514.3e7abeb8.chunk.css
54.230.111.91200 OK 19 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/514.3e7abeb8.chunk.css
IP 54.230.111.91:0
File type ASCII text, with very long lines (1334)
Hash d124c103096f0435e8b5034191124031
73116bb324b9a5f48eee77b2c999188ea19a46ef
0ea049b33d25a085a2f5acb944f2e5a1de212550462631a20dae769a0e823ca1
GET /psb/capla/static/css/514.3e7abeb8.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 03 Feb 2023 13:33:36 GMT
x-amz-expiration: expiry-date="Sat, 03 Jun 2023 13:33:36 GMT", rule-id=""
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sun, 05 Mar 2023 14:10:23 GMT
expires: Tue, 04 Apr 2023 14:04:50 GMT
cache-control: max-age=2592000
etag: W/"6f425779ee87e2f0e6f224f94ba87323"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: W2F_y1jkZq2aAS1nUgphADytu81hQdnTVBl22TBe5ufag6xn-_EzCA==
age: 1726209
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/720x217/207074833.jpeg?k=7f5cb59e23576abf2c5b4c022e55c7a1c4a5b7181ed3b8ecf833bc7541b77485&o=
54.230.111.91200 OK 26 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/720x217/207074833.jpeg?k=7f5cb59e23576abf2c5b4c022e55c7a1c4a5b7181ed3b8ecf833bc7541b77485&o=
IP 54.230.111.91:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 720x217, components 3\012- data
Hash 41e584f462020f58202fb3d4887d8a5f
f4ecf3b2b9239b5694c476f56dcd359a4c71f9ce
b1bc09d266b9c18e32522c981e5b499cc5f58d5a8b834fde51adfa65675864b6
GET /xdata/images/xphoto/720x217/207074833.jpeg?k=7f5cb59e23576abf2c5b4c022e55c7a1c4a5b7181ed3b8ecf833bc7541b77485&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 26008
server: nginx
date: Mon, 20 Mar 2023 15:47:31 GMT
etag: "22466ed89b008a125f6cd21d2a7b2eb617ac5a39"
expires: Wed, 19 Apr 2023 15:47:31 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Y_pLiuU0zryVzRHC_Qj0HOEScxQUSXjuj5V_thkNUZ07tP-tscwymQ==
age: 424048
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/527.44af578a.chunk.css
54.230.111.91200 OK 7.9 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/527.44af578a.chunk.css
IP 54.230.111.91:0
File type ASCII text, with very long lines (1225)
Hash 9226e12b2e4b89c979d8aec35c06b911
b04c2ae2f36d22a9a324e930839f6a9df0efb4c2
4a8843ed8fd2de8a449861b0ca31ac941426961f6eaf349148607b3825e64d1d
GET /psb/capla/static/css/527.44af578a.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Thu, 09 Mar 2023 12:46:03 GMT
etag: W/"aeaaee4f62820ba9312c916cbdc16cd6"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Tue, 07 Mar 2023 14:39:41 GMT
x-amz-expiration: expiry-date="Wed, 05 Jul 2023 14:39:41 GMT", rule-id=""
expires: Sat, 08 Apr 2023 12:46:03 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xPQhjxXbcA8yOS46oC_Ccad75hlsr3xcCttBXqvw3lYHhhewwd5XSQ==
age: 1385336
X-Firefox-Spdy: h2
cf.bstatic.com/static/fonts/booking-iconset-original/29bca18dce5a8e111855e31314a9b1d750ea9beb.woff2
54.230.111.91200 OK 93 kB URL HTTP/2 cf.bstatic.com/static/fonts/booking-iconset-original/29bca18dce5a8e111855e31314a9b1d750ea9beb.woff2
IP 54.230.111.91:0
File type Web Open Font Format (Version 2), TrueType, length 92724, version 1.0\012- data
Hash f132633e65809ec36c0f01b8a29fa457
e68a5b0de3e08ac85a13426ce3d8c13ad21d38ff
a98c20990fe3e31203fe2db8384af8e05e7b358cdae3c28b034e1f02b47db630
GET /static/fonts/booking-iconset-original/29bca18dce5a8e111855e31314a9b1d750ea9beb.woff2 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://cf.bstatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
content-length: 92724
server: nginx
date: Mon, 27 Feb 2023 04:20:39 GMT
last-modified: Wed, 10 Apr 2019 11:21:49 GMT
etag: "5cadd1cd-16a34"
expires: Wed, 29 Mar 2023 04:20:39 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ACBqHX6zdL-vQ7Qjthl5IY_4uPKxoAQccKARUtDa0wLB2zBNap0rhQ==
age: 2279660
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/sp-on-maps_cloudfront_sd/d30eef4dc5202875d4c3301b8a0e8ff09f9a0e28.js
54.230.111.91200 OK 29 kB URL HTTP/2 cf.bstatic.com/static/js/sp-on-maps_cloudfront_sd/d30eef4dc5202875d4c3301b8a0e8ff09f9a0e28.js
IP 54.230.111.91:0
File type ASCII text, with very long lines (9646), with no line terminators
Hash bd861878c14aa3950af0e54849147c59
5ddc6511b095ed660482996368511a5a22b28a21
29243d30976c73d96bfa83e658ad50be4b6b1835c621011919c98b77da32a719
GET /static/js/sp-on-maps_cloudfront_sd/d30eef4dc5202875d4c3301b8a0e8ff09f9a0e28.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Sat, 04 Mar 2023 03:23:11 GMT
last-modified: Thu, 19 May 2022 11:44:13 GMT
etag: W/"62862d8d-25ae"
expires: Mon, 03 Apr 2023 03:23:11 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ysaj5aqF768denanqIKM5uIR0JMMAqVI9TeYD--3zUuwZFyAITV3xA==
age: 1851108
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/600x600/644297.jpg?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o=
54.230.111.91200 OK 74 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/600x600/644297.jpg?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o=
IP 54.230.111.91:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 600x600, components 3\012- data
Hash 60b8665aff1e28f230d4fd9e1a479a31
4352c75c225caabb5d3848296dea9732f8e8af67
b41a7c475c3ff89bccf20787bd207218bc85a2eb3318a79300f29a5b6d09bea7
GET /xdata/images/city/600x600/644297.jpg?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 74421
server: nginx
date: Thu, 09 Mar 2023 02:26:25 GMT
etag: "351d989da218a5ac35737b71c59d8fb6d1da9888"
expires: Sat, 08 Apr 2023 02:26:25 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ooGsxNG61CX6TNrpWZUICjcktY4fh-weYO5Gt8JJHtcMjKmrPX_dAQ==
age: 1422515
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/541.b91c5c14.chunk.js
54.230.111.91200 OK 72 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/541.b91c5c14.chunk.js
IP 54.230.111.91:0
File type ASCII text, with very long lines (51578)
Hash d73e99c00e9ac273e8315ace28b0a3d5
988559ee241d78b3d3ea032bb8218cb21a2c7057
1adbf2433af8daceb7180a351e25d14129d1fb9f639d4df7e5ab317ea5a58eb4
GET /psb/capla/static/js/541.b91c5c14.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 24 Mar 2023 14:33:37 GMT
etag: W/"c8e75c631da103d75c59f7cfe84aaba4"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 24 Mar 2023 14:16:39 GMT
x-amz-expiration: expiry-date="Sat, 22 Jul 2023 14:16:39 GMT", rule-id=""
expires: Sun, 23 Apr 2023 14:33:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DbVTvCUTg_Vsattpq8uPxpmq_MtHKMIySLT7XPJqBUB-wgQ_V8Xwyg==
age: 82882
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/600x600/613095.jpg?k=8caf960d96a59e284ac1518ac8777e89d17fda6572acd84dbec151f627c7bf07&o=
54.230.111.91200 OK 66 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/600x600/613095.jpg?k=8caf960d96a59e284ac1518ac8777e89d17fda6572acd84dbec151f627c7bf07&o=
IP 54.230.111.91:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 600x600, components 3\012- data
Hash 534f33dddfcef7a82be1dd0705bc9993
272d1caab27f275846308d3ff1ae43f10cc15f65
6cfc1901ba8cd98f725dfb4a7f3b45151674656b7b73729be72b48fa6f76bf8a
GET /xdata/images/city/600x600/613095.jpg?k=8caf960d96a59e284ac1518ac8777e89d17fda6572acd84dbec151f627c7bf07&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 65996
server: nginx
date: Sat, 25 Mar 2023 01:05:19 GMT
etag: "d4232a2e8e450d2dc3dc25d0f8d673cf8c2f9c70"
expires: Mon, 24 Apr 2023 01:05:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ulMHXz_kk3ousF0gwv4zKaICPAac6aic06bygYONt31iOLCtHe6EQA==
age: 44981
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/600x600/688263.jpg?k=d035b168ba10814330f22dece7981262cefed72e9386ef74bcfe37a1e1fa1f58&o=
54.230.111.91200 OK 79 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/600x600/688263.jpg?k=d035b168ba10814330f22dece7981262cefed72e9386ef74bcfe37a1e1fa1f58&o=
IP 54.230.111.91:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 600x600, components 3\012- data
Hash 09b8284fe892d811ac46886012b16d3c
495ee36831c8243192c48d2f4c627c8fe3195c5e
5ba5cad731ab5b74bce1e8b2379ead5a826475ec9b7dce4062ae95aaf8e921c4
GET /xdata/images/city/600x600/688263.jpg?k=d035b168ba10814330f22dece7981262cefed72e9386ef74bcfe37a1e1fa1f58&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 78610
server: nginx
date: Tue, 14 Mar 2023 05:30:54 GMT
etag: "10bf794d7602b34b6efdcb76adac8508289a22d5"
expires: Thu, 13 Apr 2023 05:30:54 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wT2mvPlBfqkYmKWC-J_OM2npGrHbXi-5vOBudARXhhCrgab_KqpWTw==
age: 979446
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/600x600/740935.jpg?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o=
54.230.111.91200 OK 57 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/600x600/740935.jpg?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o=
IP 54.230.111.91:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 600x600, components 3\012- data
Hash a3c19e8e336a73bc6ccf10b5750903e7
cafc5470a580f4a01b02d991187079efbf888987
9e76043e1541f197c4af1a9dd15ed9e1a594f7823bfc01b9b639fa7d67e272d6
GET /xdata/images/city/600x600/740935.jpg?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 57347
server: nginx
date: Thu, 09 Mar 2023 01:53:32 GMT
etag: "bced1c209d580c45b5c8042e330450c5f405fec7"
expires: Sat, 08 Apr 2023 01:53:32 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Z6-5F45-pmm5qHFeBY1YaGemBGqbU6EyR85A0Lv3m6c6Fkv8FSS25g==
age: 1424488
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/186.5332db14.chunk.css
54.230.111.91200 OK 21 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/186.5332db14.chunk.css
IP 54.230.111.91:0
File type ASCII text, with very long lines (4228)
Hash 4b7e79321be2716e422b068c8bcb62f3
5ac539ec9fa4110e50d428ec4b028480a37cb299
19ab9c3e8684e72ce3a076ad2bc23e3bf2110f5c7cbfe5cea6cd96c4f8225c2d
GET /psb/capla/static/css/186.5332db14.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Fri, 10 Mar 2023 08:52:10 GMT
etag: W/"6d805e3c42c329260ebf75641f2b598f"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Wed, 08 Mar 2023 15:27:47 GMT
x-amz-expiration: expiry-date="Thu, 06 Jul 2023 15:27:47 GMT", rule-id=""
expires: Sun, 09 Apr 2023 08:52:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hcs46Oh5NfRW0lYW8HCkTaDDMFIgtz0RI36g-yE8crZMD5F7RAwgRw==
age: 1312968
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/bui-react.6c950ec3.css
54.230.111.91200 OK 32 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/bui-react.6c950ec3.css
IP 54.230.111.91:0
File type ASCII text, with very long lines (52456)
Hash f3b576d95330fcff6779965ac6133c7b
fa2358d102141cfa97524f1515e134d1f46296c9
7702c1c0fd21e1c0f09d22f9a4b77efbffea941d981c6a33a92135ae80689d7e
GET /psb/capla/static/css/bui-react.6c950ec3.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Fri, 24 Mar 2023 14:33:37 GMT
etag: W/"a15309f68495a393fc297d720ae25a43"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 24 Mar 2023 14:16:38 GMT
x-amz-expiration: expiry-date="Sat, 22 Jul 2023 14:16:38 GMT", rule-id=""
expires: Sun, 23 Apr 2023 14:33:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ypF7JzPxUsblEKCR8INGhATDqym8LuUi6REBj6BU2UAB6Qj_3d5WXQ==
age: 82882
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/apple-touch-icon-blue/5db9fd30d96b1796883ee94be7dddce50b73bb38.png
54.230.111.91200 OK 2.3 kB URL HTTP/2 cf.bstatic.com/static/img/apple-touch-icon-blue/5db9fd30d96b1796883ee94be7dddce50b73bb38.png
IP 54.230.111.91:0
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash d783325e1d6c8acfa93fea56b9882c15
0552ab01932ded2cf41de358cf577f13460c3c81
57f0acd6359b3240214f1651d4d6cf0b52d5be37564075453bbf2d6b8258a834
GET /static/img/apple-touch-icon-blue/5db9fd30d96b1796883ee94be7dddce50b73bb38.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2333
server: nginx
date: Tue, 21 Mar 2023 11:09:04 GMT
last-modified: Tue, 21 Mar 2023 10:44:12 GMT
etag: "64198a7c-91d"
expires: Thu, 20 Apr 2023 11:09:04 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: JSXyOs3u27hmI_xDnrP1cEyYk0Hy_E0lWDOrkvjT9HINHKnLnOhbzw==
age: 354356
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/2880x868/207074833.jpeg?k=7f5cb59e23576abf2c5b4c022e55c7a1c4a5b7181ed3b8ecf833bc7541b77485&o=
54.230.111.91200 OK 216 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/2880x868/207074833.jpeg?k=7f5cb59e23576abf2c5b4c022e55c7a1c4a5b7181ed3b8ecf833bc7541b77485&o=
IP 54.230.111.91:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 2880x868, components 3\012- data
Size 216 kB (216159 bytes)
Hash 87d292d997fd27176d86b30a83399bcc
7d83fd66ba85b3c44ae647682020681773dc80ba
8190fa4959be7dd0f9aa3627959fdda1b61016a4512f228b0567b755d1b81aa4
GET /xdata/images/xphoto/2880x868/207074833.jpeg?k=7f5cb59e23576abf2c5b4c022e55c7a1c4a5b7181ed3b8ecf833bc7541b77485&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 216159
server: nginx
date: Mon, 20 Mar 2023 15:47:32 GMT
etag: "558f8d3ece3aeec57584f47e235ea42049401bfe"
expires: Wed, 19 Apr 2023 15:47:32 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: M7LC4P7GeDEFnrX0YX7PevDi0KpfhdQGD6fc07FFnaEvM3TPQM7Q3Q==
age: 424048
X-Firefox-Spdy: h2
www.booking.com/c360/v1/track
54.230.111.57200 OK 33 B URL HTTP/2 www.booking.com/c360/v1/track
IP 54.230.111.57:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 42fcc80d879dd35c0bbdd04c1414890b
f1dbf58d1b458f9c50995bb8d84da4a67f2d437b
fb87565b58755d257fcf9af5b4b25e0dcfc682adb630dd2a32bbf56b91d2c325
POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=7952588
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Booking-Pageview-Id: 503b5f806208003a
X-Booking-AID: 7952588
X-Booking-Session-Id: 6e71e443fa5151ac941fa8e69254c3e3
X-Booking-SiteType-Id: 1
X-Partner-Channel-Id: 2
X-Booking-CSRF: wjAfZAAAAAA=68uFg0YnvTAkbcCYPDATS1zQ_o0Da7S4GogHD-OE2hcF5awH-mLS7e4GuLhdpMVbX15EM1Q5pqT-7LUZe0jIUmzKfikOOAD_FB9KmEG903IuiIg5N4d5Y4rL6PAWhagqn4lbbW5kXZXlmyE4UOuOXYqYpZg0jQoRd7UktgefzjeM8s1_otMB2hHB9PapcNULTF2-pQ8LA8IfVREm
X-Booking-Language-Code: en-us
X-Booking-Info: 1696800|1,1704180,1693900|2,1699930,1694060|1,1694060,1693900|1,1703190|2,1703930,1703190|1,1695500,1670770,1703930|4,1699930|2,1696800,1693900,1683290,1698050,1694060|7,1703190,1701060
X-Requested-With: XMLHttpRequest
Content-Length: 459
Origin: https://www.booking.com
Connection: keep-alive
Cookie: _pxhd=K3GZvpBol2O-%252FcMWAv7rAxEkkgtf4mCKbmoCTFzC7j3-mMc%252F0Xdc-Q%252FCWM5hKykYwvOMNAZOQhwE-5pEU0FmBg%253D%253D%253A2iMGyZW%252FuHjkYJBxxCjLaF0MKftI9hXuLhjJBjMdC0kdOVSSEgGhlMDaxB0YGiU-llINu4wiHerIDFP3FmxpoNTRHsDZpxcMGpgA7z-m2ks%253D; px_init=80; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLblgO%2Fz4BDP5sOBbJby3dIFmr7qqw6saGYQ6GpS3OjqXVyb4WEgoVIWyDAhSYwOjTU3JGsQXO%2BeTGAgou4XAUm1RDQprJrwJYnJfS4VloLuDUCXeMX%2BfYRZqYm02Yn2yKmU30z%2BzfiT5uQVikJWTqrZxdf7AP5%2BI%2FR; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sat+Mar+25+2023+13%3A35%3A13+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=2afcfc4c-ac3a-4de4-917b-ded9bd7817c2&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D7952588&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 33
server: nginx
date: Sat, 25 Mar 2023 13:35:00 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPecAZTHh1ZEEps%2Fcuc7QQgNBqylrYGYZuXa%2B%2BVdIP%2FMS6pW2VP%2FmpZvmi2bJL516qpQQh5fXlPNTrn0jLaMNSOXRMpTRioYUzOMiv3BBxmZI%2FgiNoVh%2FZ4cGFTNaQG9Pwb9TU89kK7uYpIk6Ck1XSTM60ejs2VWt3VQ%3D; domain=.booking.com; path=/; expires=Thu, 23-Mar-2028 13:35:00 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: b25nAWqgUURcC_IGokBc9ounvNK3FN60s8wEYwNDT3Pe25wmAC6l9w==
X-Firefox-Spdy: h2
account.booking.com/privacy-consents/implicit
54.230.111.55204 No Content 0 B URL HTTP/2 account.booking.com/privacy-consents/implicit
IP 54.230.111.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /privacy-consents/implicit HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.booking.com/
Origin: https://www.booking.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
server: envoy
date: Sat, 25 Mar 2023 13:35:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: POST
access-control-allow-origin: https://www.booking.com
access-control-max-age: 1728000
set-cookie: bkng_sso_ses=e30; domain=.booking.com; path=/; expires=Thu, 23-Mar-2028 13:35:00 GMT; secure; HttpOnly
bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJzZXNzaW9ucyI6W10sImRhdGFfc3ViamVjdF9pZCI6IjEwOTNiYTI3LTgyM2ItNDQ4YS05NmVjLTExODQxOGNmNGJlMSJ9fQ; domain=account.booking.com; path=/; expires=Thu, 23-Mar-2028 13:35:00 GMT; secure; HttpOnly
bkng_sso_session=e30; domain=.booking.com; path=/; expires=Thu, 23-Mar-2028 13:35:00 GMT; secure; HttpOnly
bkng_sso_auth=CAIQARpy2S2hUW0FnRQaj+vp7ymjjiW6o0pyBPdjQlDfSvv1rU3mGzzfxPVodJfIcy2GM7aaVzVSpBjs8uvJoHSslhVLDjw8U1YSRZbxakuy6rotpljpEkUxLyVhDt3YLmeJ3156crDhnoWfXxliZavrb2oyD5j+; Domain=.booking.com; Path=/; Expires=Sat, 08 Apr 2023 13:35:00 GMT; HttpOnly; Secure
content-security-policy: frame-ancestors https://*.booking.com 'self'; report-uri https://nellie.booking.com/csp-report-uri?type=block&tag=212&pid=fce05f820cd307c8&e=UmFuZG9tSVYkc2RlIyh9YSWKtKO5TxgOpTwVTPfHZKNW3Hcrm1RLgTDT2V-m21UMJ4KxJTAfD3k6vpGGyphNZUfy-f31chCZb8612iO9R_UYhDOKZTX9f9H49t8PnK2N6xuOIDHFf7bJJ1VO7rR0o5bviAmBIeD2rUGrcLoCh0o
content-security-policy-report-only: base-uri 'none'; connect-src saa.booking.com secure.booking.com reports.booking.com privacyportal-eu.onetrust.com geolocation.onetrust.com cdn.cookielaw.org www.google-analytics.com *.perimeterx.net *.pxchk.net *.px-cdn.net *.px-client.net *.px-cloud.net 'self' 'report-sample'; default-src *.bstatic.com bstatic.com 'self'; frame-src https://www.youtube.com/embed/Vv4w5SmRkss *.bstatic.com https://www.google.com bstatic.com www.booking.com secure.booking.com paymentcomponent.booking.com 'self'; img-src 'self' data: www.booking.com graph.facebook.com cdn.cookielaw.org account.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google-analytics.com www.google.com stats.g.doubleclick.net *.px-cloud.net *.perimeterx.net www.gstatic.com; object-src 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=213&pid=fce05f820cd307c8&e=UmFuZG9tSVYkc2RlIyh9YSWKtKO5TxgOpTwVTPfHZKNW3Hcrm1RLgTDT2V-m21UMJ4KxJTAfD3k6vpGGyphNZUfy-f31chCZb8612iO9R_UYhDOKZTX9f9H49t8PnK2N6xuOIDHFf7bJJ1VO7rR0o5bviAmBIeD2rUGrcLoCh0o; script-src saa.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google.com www.google-analytics.com cdn.cookielaw.org geolocation.onetrust.com 'self' 'nonce-tp2YmZ6ZiGRKYUK' 'report-sample'; style-src *.bstatic.com bstatic.com *.static.booking.cn 'self' 'unsafe-inline'
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4-ewdaBssqI5rc_2cZCxyHvNO5DyqjPj9YGIaVcPrqypgKbpz3r3gQ==
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/searchbox_cloudfront_sd/9559ce1436fc4edda283895e133a5ab0397c1ac8.js
54.230.111.91200 OK 72 kB URL HTTP/2 cf.bstatic.com/static/js/searchbox_cloudfront_sd/9559ce1436fc4edda283895e133a5ab0397c1ac8.js
IP 54.230.111.91:0
File type Unicode text, UTF-8 text, with very long lines (65528), with no line terminators
Hash 086b010cf1d6885a8f7ef6dc3c631efc
653e2bf91d89cd757b09567b95951fef69799ec1
272a59dcbdfede64b63ca19e8f05a9b4fdab686b1c82262cc69134292eb64568
GET /static/js/searchbox_cloudfront_sd/9559ce1436fc4edda283895e133a5ab0397c1ac8.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 17 Mar 2023 06:04:01 GMT
last-modified: Wed, 22 Feb 2023 14:34:30 GMT
etag: W/"63f627f6-39be8"
expires: Sun, 16 Apr 2023 06:04:01 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hJPhnRjsEog45s_8KCwmIWLHrPzNG613hId_P2LZf0J0yd97yMnIEA==
age: 718256
X-Firefox-Spdy: h2
www.booking.com/index.html?aid=7952588
54.230.111.57200 OK 128 kB URL HTTP/2 www.booking.com/index.html?aid=7952588
IP 54.230.111.57:0
File type HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (7364)
Size 128 kB (128525 bytes)
Hash 012a97449682577c079495aa3b126877
f079b8553fac742b0a5749ef39d7f4802f5d41dd
453eb86072c613ec460e79dd484839215e77b28a28d187b73607e525b1d862bd
GET /index.html?aid=7952588 HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
server: nginx
date: Sat, 25 Mar 2023 13:34:58 GMT
cache-control: private
vary: User-Agent, Accept-Encoding
content-encoding: br
link: <https://cf.bstatic.com/static/css/gprof_icons_cloudfront_sd.iq_ltr/45e1448a045ffbbe4ac3c464fb98c5df7c0fe7cd.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/incentives_cloudfront_sd.iq_ltr/c253238e9a1cc9e8fe7f142462ea4345a2c72799.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/index_cloudfront_sd.iq_ltr/d74b843d5a5a520c1a4cc745812c592b71891081.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/main_cloudfront_sd.iq_ltr/b7bedd8993e48f83754c034aeb06b5dacff5c174.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/main_exps_cloudfront_sd.iq_ltr/249eb8c971cd2f65e9f15026f655b0001bdf43d9.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/58c63e4d3e4eb7090033901e75e2c80c0caa437b.css>; rel=preload; as=style
nel: {"report_to":"default","max_age":604800}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"group":"default","max_age":604800}
set-cookie: _pxhd=K3GZvpBol2O-%252FcMWAv7rAxEkkgtf4mCKbmoCTFzC7j3-mMc%252F0Xdc-Q%252FCWM5hKykYwvOMNAZOQhwE-5pEU0FmBg%253D%253D%253A2iMGyZW%252FuHjkYJBxxCjLaF0MKftI9hXuLhjJBjMdC0kdOVSSEgGhlMDaxB0YGiU-llINu4wiHerIDFP3FmxpoNTRHsDZpxcMGpgA7z-m2ks%253D; domain=booking.com; path=/; expires=Sun, 24-Mar-2024 13:34:57 GMT
px_init=80; domain=booking.com; expires=Sat, 15-Aug-2076 03:09:56 GMT; SameSite=Strict; secure; HttpOnly
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLblgO%2Fz4BDP5sOBbJby3dIFmr7qqw6saGYQ6GpS3OjqXVyb4WEgoVIWyDAhSYwOjTU3JGsQXO%2BeTGAgou4XAUm1RDQprJrwJYnJfS4VloLuDUCXeMX%2BfYRZqYm02Yn2yKmU30z%2BzfiT5uQVikJWTqrZxdf7AP5%2BI%2FR; domain=.booking.com; path=/; expires=Thu, 23-Mar-2028 13:34:58 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Jm_o6zX2deCgqNMUQTE8r_9OmXnhMwcvTMUT54Qy7pHJ8zpoMCmXmw==
X-Firefox-Spdy: h2
www.booking.com/sendlayoutevents
54.230.111.57200 OK 18 B URL HTTP/2 www.booking.com/sendlayoutevents
IP 54.230.111.57:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2e05820d6f78d44fc523264488c141ed
15a4675c7eb16f533ded02117788d8f642a062df
baa1fa10e6d9e9034747499cd67e611af00aea7c01264e221182934fcacb10e7
POST /sendlayoutevents HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=7952588
Content-Type: application/x-www-form-urlencoded;charset=UTF-8
Origin: https://www.booking.com
Content-Length: 115
Connection: keep-alive
Cookie: _pxhd=K3GZvpBol2O-%252FcMWAv7rAxEkkgtf4mCKbmoCTFzC7j3-mMc%252F0Xdc-Q%252FCWM5hKykYwvOMNAZOQhwE-5pEU0FmBg%253D%253D%253A2iMGyZW%252FuHjkYJBxxCjLaF0MKftI9hXuLhjJBjMdC0kdOVSSEgGhlMDaxB0YGiU-llINu4wiHerIDFP3FmxpoNTRHsDZpxcMGpgA7z-m2ks%253D; px_init=80; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbXpFeYC4TUhBwIpQi%2F3aFkVZbjV1V%2B5HL85DEw0nECuroBfhTE6i1QPweaDn7Jc6mZgUGIaTwMVODagSN2mwkFW21Kb8KRMqZOtzeC6iWg5a%2BHmywooAv%2B%2Bd1Mg6BzFWM2uV6w5Nw0Sx5SLD2%2Bv%2FG1lENBgwcaexSKCJA%2BJXj1R0%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sat+Mar+25+2023+13%3A35%3A13+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=2afcfc4c-ac3a-4de4-917b-ded9bd7817c2&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D7952588&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 18
server: nginx
date: Sat, 25 Mar 2023 13:35:00 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbnmKTRaewPBtcTJJMbtWuHvWLCPRKptaQnFPkdfxVxlXYDwveKv5eXF6gpLaxatJtiMs8BArtFTTzm0roaKrG4ZapjG449mJ3sb534RcalnhI%2B3jrkBvUdVsdx5bmvc9fXh9NvdTp0%2Ft4HwXG9f58PQIhFfUjN%2BqG0l97FHMAhmk%3D; domain=.booking.com; path=/; expires=Thu, 23-Mar-2028 13:35:00 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=31d75f82d27b001f&e=UmFuZG9tSVYkc2RlIyh9YReXsVhv1rQKB4Zv_9za_vfzsFMyuy1jVC2Rz0dxQm_kQPfFs5lKwQ0
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Fgw2Yu9VqdnJcdfHdPsTe8kqfUXwUgFFZuCcZwQlB46_-VHKVemzOg==
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/main_cloudfront_sd.iq_ltr/b7bedd8993e48f83754c034aeb06b5dacff5c174.css
54.230.111.91200 OK 85 kB URL HTTP/2 cf.bstatic.com/static/css/main_cloudfront_sd.iq_ltr/b7bedd8993e48f83754c034aeb06b5dacff5c174.css
IP 54.230.111.91:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4e02be5674d4ea20722fee74390852f8
a9dc27797cc5726dca3c3945e3139f7d6616ea40
9efef21e6b88248f4ea8384f6352b85f69850265c4cdca4f29a7c23233611324
GET /static/css/main_cloudfront_sd.iq_ltr/b7bedd8993e48f83754c034aeb06b5dacff5c174.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Tue, 21 Mar 2023 10:55:16 GMT
last-modified: Tue, 21 Mar 2023 10:44:11 GMT
etag: W/"64198a7b-870b9"
expires: Thu, 20 Apr 2023 10:55:16 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NQr-LK53IA6_yiqndt0Gp_FVv_DgieZ2qZWTSLGqz61kZcJCeOKOXA==
age: 355182
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/348.5faf3a40.chunk.js
54.230.111.91200 OK 18 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/348.5faf3a40.chunk.js
IP 54.230.111.91:0
File type ASCII text, with very long lines (64541)
Hash 5c6c60af845e3d701310508f3419dd95
aeb3d436b9c586d5638e9d1968c34f4e61c631ee
2b6084526ee171f071d7fc28c9f31d7123fb920925b543b360202de0b6844a85
GET /psb/capla/static/js/348.5faf3a40.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 24 Mar 2023 14:33:37 GMT
etag: W/"bcff059b47ff4f9626883bb159f98571"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 24 Mar 2023 14:16:39 GMT
x-amz-expiration: expiry-date="Sat, 22 Jul 2023 14:16:39 GMT", rule-id=""
expires: Sun, 23 Apr 2023 14:33:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: JVR3mP2Ph36s-fB1goPbh70QC08OpwiVZXbVHx5E7_SRBjus-8EltA==
age: 82882
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/513.108d4156.chunk.js
54.230.111.91200 OK 2.5 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/513.108d4156.chunk.js
IP 54.230.111.91:0
File type ASCII text, with very long lines (5650)
Hash ab30692d4f97cb13c3fcf267d387e976
b371201578914fc3a27b44b83220f69ed2dd283d
4a914a90f09893cc64fd4a8f97a2ff4952d40605adbaca1eed68cefd946b2bb2
GET /psb/capla/static/js/513.108d4156.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 24 Mar 2023 14:33:37 GMT
etag: W/"6fd367c324f95e7fef101ab795ef01a9"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 24 Mar 2023 14:16:39 GMT
x-amz-expiration: expiry-date="Sat, 22 Jul 2023 14:16:39 GMT", rule-id=""
expires: Sun, 23 Apr 2023 14:33:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZIIChQDuzd8qaau0X9bk9o5-FFGkh3-VMWxR34YfqfrNyEnUweUKgg==
age: 82882
X-Firefox-Spdy: h2
www.booking.com/c360/v1/track
54.230.111.57200 OK 33 B URL HTTP/2 www.booking.com/c360/v1/track
IP 54.230.111.57:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2ef0949d72ccdcc083647d001c8ba940
ebe4e2284d3892b010623597d0945b6b5cd64448
fe1a912baa83e36855bb934de3f2cfdffe77b1224a552533a4a7f2e984a51e52
POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=7952588
Content-Type: application/json
X-Booking-Platform: undefined
X-Booking-SiteType-Id: undefined
X-Booking-Pageview-Id: 503b5f806208003a
X-Booking-Session-Id: undefined
X-Booking-ET-Seed: undefined
X-Booking-AID: 7952588
X-Booking-Label: undefined
X-Booking-CSRF: undefined
X-Booking-Language-Code: en-us
Origin: https://www.booking.com
Content-Length: 517
Connection: keep-alive
Cookie: _pxhd=K3GZvpBol2O-%252FcMWAv7rAxEkkgtf4mCKbmoCTFzC7j3-mMc%252F0Xdc-Q%252FCWM5hKykYwvOMNAZOQhwE-5pEU0FmBg%253D%253D%253A2iMGyZW%252FuHjkYJBxxCjLaF0MKftI9hXuLhjJBjMdC0kdOVSSEgGhlMDaxB0YGiU-llINu4wiHerIDFP3FmxpoNTRHsDZpxcMGpgA7z-m2ks%253D; px_init=80; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbXpFeYC4TUhBwIpQi%2F3aFkVZbjV1V%2B5HL85DEw0nECuroBfhTE6i1QPweaDn7Jc6mZgUGIaTwMVODagSN2mwkFW21Kb8KRMqZOtzeC6iWg5a%2BHmywooAv%2B%2Bd1Mg6BzFWM2uV6w5Nw0Sx5SLD2%2Bv%2FG1lENBgwcaexSKCJA%2BJXj1R0%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sat+Mar+25+2023+13%3A35%3A13+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=2afcfc4c-ac3a-4de4-917b-ded9bd7817c2&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D7952588&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 33
server: nginx
date: Sat, 25 Mar 2023 13:35:00 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnsHoc%2B3Wjg%2BuPeLh6kUr7zjV5YJOd7JHd8uJRI5NI2wpzIjQRwdPoWt4VR%2B2x71fcPKeVhn%2BiR0eiaPzjiMOHzD%2FCD%2FMwhKIgToCvwX%2BgQNjDlfBd8ttegr1CdKZsw2CugVjX4Y2zOi%2FtNuFX4zQLWA%3D; domain=.booking.com; path=/; expires=Thu, 23-Mar-2028 13:35:00 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: gRbAaiS-mNecEbKeV7uL3cjZGEyyDKhSxls9IRYmOK0y23UPi1bOmA==
X-Firefox-Spdy: h2
account.booking.com/privacy-consents/implicit
54.230.111.55200 OK 86 B URL HTTP/2 account.booking.com/privacy-consents/implicit
IP 54.230.111.55:0
Hash 4d45a4ef9c3d44a9c6d75acd88fd76ca
dc3b26464e63c71cf4704aa9f9b880eaa9d3f6f8
200b266d3df8a83e49cb9c2988ebdb2b8dd87aa02bbda875521b18c87874131d
POST /privacy-consents/implicit HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-type: application/json;charset=UTF-8
Content-Length: 36
Origin: https://www.booking.com
Connection: keep-alive
Cookie: _pxhd=K3GZvpBol2O-%252FcMWAv7rAxEkkgtf4mCKbmoCTFzC7j3-mMc%252F0Xdc-Q%252FCWM5hKykYwvOMNAZOQhwE-5pEU0FmBg%253D%253D%253A2iMGyZW%252FuHjkYJBxxCjLaF0MKftI9hXuLhjJBjMdC0kdOVSSEgGhlMDaxB0YGiU-llINu4wiHerIDFP3FmxpoNTRHsDZpxcMGpgA7z-m2ks%253D; px_init=80; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLblgO%2Fz4BDP5sOBbJby3dIFmr7qqw6saGYQ6GpS3OjqXVyb4WEgoVIWyDAhSYwOjTU3JGsQXO%2BeTGAgou4XAUm1RDQprJrwJYnJfS4VloLuDUCXeMX%2BfYRZqYm02Yn2yKmU30z%2BzfiT5uQVikJWTqrZxdf7AP5%2BI%2FR; cors_js=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
server: envoy
date: Sat, 25 Mar 2023 13:35:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-methods: POST
access-control-allow-origin: https://www.booking.com
access-control-max-age: 1728000
set-cookie: bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJzZXNzaW9ucyI6W10sImRhdGFfc3ViamVjdF9pZCI6IjE5ZmNiNDkzLWZiOWYtNGMwNy05Yzk5LWQ0YWQ4OTA4NmZlMCJ9fQ; domain=account.booking.com; path=/; expires=Thu, 23-Mar-2028 13:35:00 GMT; secure; HttpOnly
bkng_sso_session=e30; domain=.booking.com; path=/; expires=Thu, 23-Mar-2028 13:35:00 GMT; secure; HttpOnly
bkng_sso_ses=e30; domain=.booking.com; path=/; expires=Thu, 23-Mar-2028 13:35:00 GMT; secure; HttpOnly
bkng_sso_auth=CAIQARpydKuDILS1NlPskBo2drJLuJNOrMTobPrIMuQRiKtJFZFhXWCSS6CY/JzfCBglwTt7s6RHaNz6/kGEW94MV1pfDx8jrDxmSLn7A2CFuRZSJNDReLslEtdHEha2rwD+dpXGCUecNVKyEp0q1tBoLo6Z+puF; Domain=.booking.com; Path=/; Expires=Sat, 08 Apr 2023 13:35:00 GMT; HttpOnly; Secure
content-security-policy: frame-ancestors https://*.booking.com 'self'; report-uri https://nellie.booking.com/csp-report-uri?type=block&tag=212&pid=acb65f820f940265&e=UmFuZG9tSVYkc2RlIyh9YSWKtKO5TxgOpTwVTPfHZKNW3Hcrm1RLgTDT2V-m21UMJ4KxJTAfD3k6vpGGyphNZUfy-f31chCZHPTonodp_KimHZLP-kkm31nZp_X7YOBYWt1U6tx6H7l-KYNWi0s7yQBj2cfLBDtunRrsOzgXx_M
content-security-policy-report-only: base-uri 'none'; connect-src saa.booking.com secure.booking.com reports.booking.com privacyportal-eu.onetrust.com geolocation.onetrust.com cdn.cookielaw.org www.google-analytics.com *.perimeterx.net *.pxchk.net *.px-cdn.net *.px-client.net *.px-cloud.net 'self' 'report-sample'; default-src *.bstatic.com bstatic.com 'self'; frame-src https://www.youtube.com/embed/Vv4w5SmRkss *.bstatic.com https://www.google.com bstatic.com www.booking.com secure.booking.com paymentcomponent.booking.com 'self'; img-src 'self' data: www.booking.com graph.facebook.com cdn.cookielaw.org account.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google-analytics.com www.google.com stats.g.doubleclick.net *.px-cloud.net *.perimeterx.net www.gstatic.com; object-src 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=213&pid=acb65f820f940265&e=UmFuZG9tSVYkc2RlIyh9YSWKtKO5TxgOpTwVTPfHZKNW3Hcrm1RLgTDT2V-m21UMJ4KxJTAfD3k6vpGGyphNZUfy-f31chCZHPTonodp_KimHZLP-kkm31nZp_X7YOBYWt1U6tx6H7l-KYNWi0s7yQBj2cfLBDtunRrsOzgXx_M; script-src saa.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google.com www.google-analytics.com cdn.cookielaw.org geolocation.onetrust.com 'self' 'nonce-CAgIxjky42Z00ku' 'report-sample'; style-src *.bstatic.com bstatic.com *.static.booking.cn 'self' 'unsafe-inline'
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 3bff78035f818b6a3185b0f5f4586410.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: T4y1bXETRykbAihj20yNNNjfGHxsfZeIt-Krl_X5DOCoOB0bWJSDdQ==
X-Firefox-Spdy: h2
www.booking.com/dml/graphql?aid=7952588&lang=en-us
54.230.111.57200 OK 3.1 kB URL HTTP/2 www.booking.com/dml/graphql?aid=7952588&lang=en-us
IP 54.230.111.57:0
File type JSON data\012- , ASCII text, with very long lines (15705), with no line terminators
Hash aedf3fe3c5c2886d48f07a6c76f71fd9
709a236652634833d72f7e22edc6f51843a2eb2a
31919aaf50d4c4619f4dd60f8b577e9cf1e29b00793528c59b8fd24e40e2e518
POST /dml/graphql?aid=7952588&lang=en-us HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=7952588
content-type: application/json
x-booking-context-action-name: index
x-booking-context-aid: 7952588
x-booking-csrf-token: eyJhbGciOiJIUzUxMiJ9.eyJpc3MiOiJjb250ZXh0LWVucmljaG1lbnQtYXBpIiwic3ViIjoiY3NyZi10b2tlbiIsImlhdCI6MTY3OTc1MTI5OCwiZXhwIjoxNjc5ODM3Njk4fQ.SkmrO6opthq9etG69gdRnYRtU0NZtxgFimZrPCq92LjiJ7l8xCACdTiQTMTm-fGqdOEPvOqvXyNoB5jailngXA
x-booking-et-serialized-state: EzfWWEP6bN9n9uyldr1h0GXdI245QzsKBLCCqevjdxCH0CIhRCgUD-5G_pSjNdDMm
x-booking-experiment-state: EzfWWEP6bN9n9uyldr1h0GXdI245QzsKBLCCqevjdxCH0CIhRCgUD-5G_pSjNdDMm
x-booking-pageview-id: 503b5f806208003a
x-booking-site-type-id: 1
x-booking-timeout-ms: 800
x-booking-topic: capla_browser_b-index-lp-web-mfe
x-envoy-expected-rq-timeout-ms: 800
Origin: https://www.booking.com
Content-Length: 3833
Connection: keep-alive
Cookie: _pxhd=K3GZvpBol2O-%252FcMWAv7rAxEkkgtf4mCKbmoCTFzC7j3-mMc%252F0Xdc-Q%252FCWM5hKykYwvOMNAZOQhwE-5pEU0FmBg%253D%253D%253A2iMGyZW%252FuHjkYJBxxCjLaF0MKftI9hXuLhjJBjMdC0kdOVSSEgGhlMDaxB0YGiU-llINu4wiHerIDFP3FmxpoNTRHsDZpxcMGpgA7z-m2ks%253D; px_init=80; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLalZib7103qCXxl5tt24hS%2Fm%2F5RVrhxcOOdrVqplQpqp17wCqzMXpFgJX5hpqHSDrblGFCuUy5ir83D%2F5JA19mb2nuOKH7iBXhgdX3usr%2FFrLS9x8Y4dDCqA8FoaHyZt57tnbBhrGiJih2cGm7C7Y%2BGT91J%2FEeslI%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sat+Mar+25+2023+13%3A35%3A13+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=2afcfc4c-ac3a-4de4-917b-ded9bd7817c2&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D7952588&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1679751313821; bkng_sso_session=e30; bkng_sso_ses=e30; bkng_sso_auth=CAIQARpydKuDILS1NlPskBo2drJLuJNOrMTobPrIMuQRiKtJFZFhXWCSS6CY/JzfCBglwTt7s6RHaNz6/kGEW94MV1pfDx8jrDxmSLn7A2CFuRZSJNDReLslEtdHEha2rwD+dpXGCUecNVKyEp0q1tBoLo6Z+puF; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 3102
server: nginx
date: Sat, 25 Mar 2023 13:35:01 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
set-cookie: _pxhd=rp4wsHuMTYDbO9cwJ-bFqGg1v9-xrR9AAySzgVrcSGlREbROtsZ9lGTHre%2F7JsjgMyxTUtncYO77ExnA4tVoHw%3D%3D%3AQHscagZcwgQ9MFth6amAEQDvw6nSK0OUVANMLpsUtmkT7E9AHUCjwqSbfh-BhGAYZl3PLVuXMOSbi4%2FmrLLpwTErr-gNWM-KsTLUHSnT7Jo%3D; domain=booking.com; path=/; expires=Sun, 24-Mar-2024 13:35:01 GMT
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLblgO%2Fz4BDP5sOBbJby3dIFmr7qqw6saGYYv%2FiQAWakk3scsj8eIw4J7osNw7boXA1VW%2B3lcbLV1LMo5N0HE4ZcW55Cg0vnn9qwCH7pVMukWwFvIDbWvIEOMb6DZYXqrjnzBQj0m5gLHzLfQ1geKObQ8AkDEnCELM5A2M7rsxcUWM%3D; domain=.booking.com; path=/; expires=Thu, 23-Mar-2028 13:35:01 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: sbFACG75BsuZGxZWMoJ_tr_m74yXXu3x3NeVNaL2hd4nWubHH07aFw==
X-Firefox-Spdy: h2
www.booking.com/dml/graphql?aid=7952588&lang=en-us
54.230.111.57200 OK 1.5 kB URL HTTP/2 www.booking.com/dml/graphql?aid=7952588&lang=en-us
IP 54.230.111.57:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (7495), with no line terminators
Hash 0abd241058f6015fa29e190804d95cb0
a1218bd3a15054488b1aac8e19d8106de460a16d
0bcc71bda97459ed0def69da7a294a8ec4e7998c659f6fe3ee1106cc0c126d65
POST /dml/graphql?aid=7952588&lang=en-us HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=7952588
content-type: application/json
x-booking-context-action-name: index
x-booking-context-aid: 7952588
x-booking-csrf-token: eyJhbGciOiJIUzUxMiJ9.eyJpc3MiOiJjb250ZXh0LWVucmljaG1lbnQtYXBpIiwic3ViIjoiY3NyZi10b2tlbiIsImlhdCI6MTY3OTc1MTI5OCwiZXhwIjoxNjc5ODM3Njk4fQ.SkmrO6opthq9etG69gdRnYRtU0NZtxgFimZrPCq92LjiJ7l8xCACdTiQTMTm-fGqdOEPvOqvXyNoB5jailngXA
x-booking-et-serialized-state: EzfWWEP6bN9n9uyldr1h0GXdI245QzsKBLCCqevjdxCH0CIhRCgUD-5G_pSjNdDMm
x-booking-experiment-state: EzfWWEP6bN9n9uyldr1h0GXdI245QzsKBLCCqevjdxCH0CIhRCgUD-5G_pSjNdDMm
x-booking-pageview-id: 503b5f806208003a
x-booking-site-type-id: 1
x-booking-timeout-ms: 800
x-booking-topic: capla_browser_b-index-lp-web-mfe
x-envoy-expected-rq-timeout-ms: 800
Origin: https://www.booking.com
Content-Length: 3833
Connection: keep-alive
Cookie: _pxhd=K3GZvpBol2O-%252FcMWAv7rAxEkkgtf4mCKbmoCTFzC7j3-mMc%252F0Xdc-Q%252FCWM5hKykYwvOMNAZOQhwE-5pEU0FmBg%253D%253D%253A2iMGyZW%252FuHjkYJBxxCjLaF0MKftI9hXuLhjJBjMdC0kdOVSSEgGhlMDaxB0YGiU-llINu4wiHerIDFP3FmxpoNTRHsDZpxcMGpgA7z-m2ks%253D; px_init=80; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLalZib7103qCXxl5tt24hS%2Fm%2F5RVrhxcOOdrVqplQpqp17wCqzMXpFgJX5hpqHSDrblGFCuUy5ir83D%2F5JA19mb2nuOKH7iBXhgdX3usr%2FFrLS9x8Y4dDCqA8FoaHyZt57tnbBhrGiJih2cGm7C7Y%2BGT91J%2FEeslI%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sat+Mar+25+2023+13%3A35%3A13+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=2afcfc4c-ac3a-4de4-917b-ded9bd7817c2&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D7952588&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1679751313821; bkng_sso_session=e30; bkng_sso_ses=e30; bkng_sso_auth=CAIQARpydKuDILS1NlPskBo2drJLuJNOrMTobPrIMuQRiKtJFZFhXWCSS6CY/JzfCBglwTt7s6RHaNz6/kGEW94MV1pfDx8jrDxmSLn7A2CFuRZSJNDReLslEtdHEha2rwD+dpXGCUecNVKyEp0q1tBoLo6Z+puF; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 1512
server: nginx
date: Sat, 25 Mar 2023 13:35:01 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
set-cookie: _pxhd=3wW2MGb5luoaRCLGba10sHmc5z77UEVoQ2id7giogBtbZUu9Y4y3ysSPRWBcdlGqMkG3Ow1NfYZo72Dd4QArYA%3D%3D%3AvL%2FPfV6YjTIyOlQM7h9dbZd4aCwYy9Tk06f4ZdobnZlp5JIXcdee1pf6xIxl7XCxISjOfWCLmtiMzTzpe9qq7lOs8p4XHfNSKOZ-rYEAwgE%3D; domain=booking.com; path=/; expires=Sun, 24-Mar-2024 13:35:01 GMT
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbXpFeYC4TUhDMSfLvcMG2VKyYY198u%2BwvGqUANswTZdBl%2BknMt0E609wgeWFDdUFnMDuV9QN5dGCBoGUfsjLz%2F5eI%2BF%2BuJh4Ztclcwc7SgSsTbHRdUhFe4YV%2BoBnzMqE7lyxCucR3XAn2gafZiyjeRKUZtQG5aWvtIUrknuZjXXk%3D; domain=.booking.com; path=/; expires=Thu, 23-Mar-2028 13:35:01 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: iKCx4ZP7UenDTTCTnMReQu05JRDwfM1FDMC8Xfhr0sjaZQpuRUJDFA==
X-Firefox-Spdy: h2
www.booking.com/dml/graphql?aid=7952588&lang=en-us
54.230.111.57200 OK 3.7 kB URL HTTP/2 www.booking.com/dml/graphql?aid=7952588&lang=en-us
IP 54.230.111.57:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (14864), with no line terminators
Hash 94e94dbb5e598efc5cbcbeca0281f151
c067eb9b89a14c39c854e596bc26e7c5a1ad3efb
b4e488b6f4af75d27996edc3dc50a2d6c360fa27f6f85ecc40eb6482efb5ad9c
POST /dml/graphql?aid=7952588&lang=en-us HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=7952588
content-type: application/json
x-booking-context-action-name: index
x-booking-context-aid: 7952588
x-booking-csrf-token: eyJhbGciOiJIUzUxMiJ9.eyJpc3MiOiJjb250ZXh0LWVucmljaG1lbnQtYXBpIiwic3ViIjoiY3NyZi10b2tlbiIsImlhdCI6MTY3OTc1MTI5OCwiZXhwIjoxNjc5ODM3Njk4fQ.SkmrO6opthq9etG69gdRnYRtU0NZtxgFimZrPCq92LjiJ7l8xCACdTiQTMTm-fGqdOEPvOqvXyNoB5jailngXA
x-booking-et-serialized-state: EzfWWEP6bN9n9uyldr1h0GXdI245QzsKBLCCqevjdxCH0CIhRCgUD-5G_pSjNdDMm
x-booking-pageview-id: 503b5f806208003a
x-booking-site-type-id: 1
x-booking-topic: capla_browser_b-index-lp-web-mfe
Origin: https://www.booking.com
Content-Length: 550
Connection: keep-alive
Cookie: _pxhd=K3GZvpBol2O-%252FcMWAv7rAxEkkgtf4mCKbmoCTFzC7j3-mMc%252F0Xdc-Q%252FCWM5hKykYwvOMNAZOQhwE-5pEU0FmBg%253D%253D%253A2iMGyZW%252FuHjkYJBxxCjLaF0MKftI9hXuLhjJBjMdC0kdOVSSEgGhlMDaxB0YGiU-llINu4wiHerIDFP3FmxpoNTRHsDZpxcMGpgA7z-m2ks%253D; px_init=80; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLalZib7103qCXxl5tt24hS%2Fm%2F5RVrhxcOOdrVqplQpqp17wCqzMXpFgJX5hpqHSDrblGFCuUy5ir83D%2F5JA19mb2nuOKH7iBXhgdX3usr%2FFrLS9x8Y4dDCqA8FoaHyZt57tnbBhrGiJih2cGm7C7Y%2BGT91J%2FEeslI%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sat+Mar+25+2023+13%3A35%3A13+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=2afcfc4c-ac3a-4de4-917b-ded9bd7817c2&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D7952588&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1679751313821; bkng_sso_session=e30; bkng_sso_ses=e30; bkng_sso_auth=CAIQARpydKuDILS1NlPskBo2drJLuJNOrMTobPrIMuQRiKtJFZFhXWCSS6CY/JzfCBglwTt7s6RHaNz6/kGEW94MV1pfDx8jrDxmSLn7A2CFuRZSJNDReLslEtdHEha2rwD+dpXGCUecNVKyEp0q1tBoLo6Z+puF; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 3686
server: nginx
date: Sat, 25 Mar 2023 13:35:01 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
set-cookie: _pxhd=QodzLqMoz1oY7FFhtt%2FtH16Tvt-pgLU-vW72PEFBLuelRurNweZK%2FdWK4nFts030Rwu1aFvC%2F4uXMOJLH2Dnnw%3D%3D%3AYHSj9-Gc2WWeQLgfXIISIdbzBORCiVIzvs%2FQo3W3vfaaZHsZ%2FxyxHjnCioG9fv7c7Gz0333SqsmZQDErE85A4BeWFNd8WjRBSNUC0-4VKlo%3D; domain=booking.com; path=/; expires=Sun, 24-Mar-2024 13:35:01 GMT
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPef0jtgHVfzZ2PxJVKLCFZDaDV%2B58n3T6OxQI23c31JGUpEn7hdlecQj5ggNhKzzwi3NsF8SJZw16JqQAqF7HeAzIuTYI3VIxSyzZzBdnsPhNVEHGPkEDyeesh2E3LyJNcL%2FCJs85cVqtCltyxrQ%2BL1F84HTVFa8Kec%3D; domain=.booking.com; path=/; expires=Thu, 23-Mar-2028 13:35:01 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ceME79NtBdiF5wSJ3VANBGDqMMdboA5EdC665hwnWza8BnzovNLyAQ==
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/263x210/57584488.jpeg?k=d8d4706fc72ee789d870eb6b05c0e546fd4ad85d72a3af3e30fb80ca72f0ba57&o=
54.230.111.91200 OK 8.6 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/263x210/57584488.jpeg?k=d8d4706fc72ee789d870eb6b05c0e546fd4ad85d72a3af3e30fb80ca72f0ba57&o=
IP 54.230.111.91:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3\012- data
Hash 72c870c967629f6f1c36561800ec1e38
c01c9ff688f5b9ad0b586069afaa4b22db171f6c
fc11edd43a2d8fbaf64e61fcd71475cc9702097cf6a33f0884cb800b4efcae4b
GET /xdata/images/xphoto/263x210/57584488.jpeg?k=d8d4706fc72ee789d870eb6b05c0e546fd4ad85d72a3af3e30fb80ca72f0ba57&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 8621
server: nginx
date: Fri, 24 Mar 2023 14:33:39 GMT
etag: "20ea2d33ea1172285320a2f1b5d3d66683470c31"
expires: Mon, 08 May 2023 14:33:39 GMT
cache-control: max-age=3888000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7GBqfp81ZrNKPuQTiiqPSR-1M565hzZJ2vs14mf8piahXr1j1AMhyw==
age: 82882
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/main_exps_cloudfront_sd.iq_ltr/249eb8c971cd2f65e9f15026f655b0001bdf43d9.css
54.230.111.91200 OK 56 kB URL HTTP/2 cf.bstatic.com/static/css/main_exps_cloudfront_sd.iq_ltr/249eb8c971cd2f65e9f15026f655b0001bdf43d9.css
IP 54.230.111.91:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash ca9209b9856800e19490b2b2e570f499
c693e8c685ee07fc7d7cab949e60657515da3114
89565d52db7b0de6cf18f1e560c471cab1cf578885429d9c2c775c65e2cc2e39
GET /static/css/main_exps_cloudfront_sd.iq_ltr/249eb8c971cd2f65e9f15026f655b0001bdf43d9.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Mon, 13 Mar 2023 12:05:43 GMT
last-modified: Mon, 13 Mar 2023 11:59:18 GMT
etag: W/"640f1016-20ce8"
expires: Wed, 12 Apr 2023 12:05:43 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hdAdU-bU5RkbiZCbIUJkvhWlJbCbKmV66F65jrvaWI1k-F5lKuR-xQ==
age: 1042155
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/263x210/119467716.jpeg?k=63b69100225782d08fbd4d0205bf949c0be894ab946a0366edb8ad48e9c0ef46&o=
54.230.111.91200 OK 13 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/263x210/119467716.jpeg?k=63b69100225782d08fbd4d0205bf949c0be894ab946a0366edb8ad48e9c0ef46&o=
IP 54.230.111.91:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3\012- data
Hash 42bda2c4a22f9ddac20258beeac2d2d8
65bb889f565171c0a01a98f506ab19040c1a4d3e
d2234ba0d087f8b5962375380ad8575014e4532e5719a66797d8bc52f6d57670
GET /xdata/images/xphoto/263x210/119467716.jpeg?k=63b69100225782d08fbd4d0205bf949c0be894ab946a0366edb8ad48e9c0ef46&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 12662
server: nginx
date: Fri, 24 Mar 2023 14:33:39 GMT
etag: "c633b6daa91dcad729675bca90571002d2a1f336"
expires: Mon, 08 May 2023 14:33:39 GMT
cache-control: max-age=3888000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zQ27s0TX_jbPfdDiXIgumJt-PDcqhmBAvnEPRT3xDAH0y4D55fk_dA==
age: 82882
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/186.f46abc54.chunk.js
54.230.111.91200 OK 63 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/186.f46abc54.chunk.js
IP 54.230.111.91:0
File type ASCII text, with very long lines (65460)
Hash 428b13d4a306bb3ebca6386eb6a15f8c
23c2cf82edb554b993d01915ba221d3fae743087
37b20cc1ca92cdd08fd2a60a81f8bffdb0590351d90f9709ef34e471a122c007
GET /psb/capla/static/js/186.f46abc54.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 24 Mar 2023 14:33:37 GMT
etag: W/"8c696b8f8ca09419f75e92bc990915bb"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 24 Mar 2023 14:16:39 GMT
x-amz-expiration: expiry-date="Sat, 22 Jul 2023 14:16:39 GMT", rule-id=""
expires: Sun, 23 Apr 2023 14:33:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xomY3in7F2BLVgSO235W5p48JxGQ0TCdQKSyghUtQ4FIbvS0HvW3Qg==
age: 82882
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/263x210/52979454.jpeg?k=98337a30d1016ebce1cbebb9e24ba4585f535438bc455ff9efcaee27960ac8b2&o=
54.230.111.91200 OK 4.7 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/263x210/52979454.jpeg?k=98337a30d1016ebce1cbebb9e24ba4585f535438bc455ff9efcaee27960ac8b2&o=
IP 54.230.111.91:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3\012- data
Hash f566dd8bbe6577b178cc7fb2a455f1e9
8fb9173f1a7542b0f858ec617ab9fbfcf36a460b
373f86074e0dcf8a49cc4d5200a03334df2120893b645b06f91624cfcb23aaf2
GET /xdata/images/xphoto/263x210/52979454.jpeg?k=98337a30d1016ebce1cbebb9e24ba4585f535438bc455ff9efcaee27960ac8b2&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 4660
server: nginx
date: Fri, 24 Mar 2023 14:33:40 GMT
etag: "58f9c5e17776bffc5b908ec1efc4cc8ed9033846"
expires: Sun, 23 Apr 2023 14:33:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0McAlHWJUad8AtkPhegaaMJ4D4OFzANsa_xmrOTSXFEY_JbhAVUgbw==
age: 82881
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/263x210/45450074.jpeg?k=7039b03a94f3b99262c4b3054b0edcbbb91e9dade85b6efc880d45288a06c126&o=
54.230.111.91200 OK 16 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/263x210/45450074.jpeg?k=7039b03a94f3b99262c4b3054b0edcbbb91e9dade85b6efc880d45288a06c126&o=
IP 54.230.111.91:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3\012- data
Hash deb542d99141efe2386fcc72283af582
854409bb8dce07be7122904445a5d5cb4f866e8c
a70038725ecc3cbf4bfe6470f2ba07e07fdb5a4737104217e928f83260ecdd74
GET /xdata/images/xphoto/263x210/45450074.jpeg?k=7039b03a94f3b99262c4b3054b0edcbbb91e9dade85b6efc880d45288a06c126&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 16100
server: nginx
date: Fri, 24 Mar 2023 14:33:40 GMT
etag: "57290a667479cf91db94633f93e7279488c83eea"
expires: Mon, 08 May 2023 14:33:40 GMT
cache-control: max-age=3888000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2WqNO5sbouDemJctQ7JaENCiUFFKtsi2w9L8s_fL5FWKps8DKXbQ_Q==
age: 82881
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/579.dd8b0c7c.chunk.js
54.230.111.91200 OK 43 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/579.dd8b0c7c.chunk.js
IP 54.230.111.91:0
File type ASCII text, with very long lines (65460)
Hash 7a8ae7a69e6603ce875e629027d18174
da072b8f24eb7db427f31bbbfec491436244bd17
9615222558a346a1c4e1b9236004eedb0f2ad406a4ef46aafb28e440504116bc
GET /psb/capla/static/js/579.dd8b0c7c.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 24 Mar 2023 14:33:37 GMT
etag: W/"f97622c812f696eb60481dc64dd87e9c"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 24 Mar 2023 14:16:39 GMT
x-amz-expiration: expiry-date="Sat, 22 Jul 2023 14:16:39 GMT", rule-id=""
expires: Sun, 23 Apr 2023 14:33:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9SMmSoStJBlbapZQSWAFYfDCVktF0xs7bZPWgBeorz85RcHuMO2ybg==
age: 82882
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/263x210/45450058.jpeg?k=2449eb55e8269a66952858c80fd7bdec987f9514cd79d58685651b7d6e9cdfcf&o=
54.230.111.91200 OK 10 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/263x210/45450058.jpeg?k=2449eb55e8269a66952858c80fd7bdec987f9514cd79d58685651b7d6e9cdfcf&o=
IP 54.230.111.91:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3\012- data
Hash a84be65e3bb8d5eaa7fef90be796567a
551cdf363ee42d54ec96eb53ce7775f691ff7fb4
f01b19f78cfe046f9bb8a8b7f141f8c2fb0cef0a519adffee6dfb7009199b05e
GET /xdata/images/xphoto/263x210/45450058.jpeg?k=2449eb55e8269a66952858c80fd7bdec987f9514cd79d58685651b7d6e9cdfcf&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 10145
server: nginx
date: Fri, 24 Mar 2023 14:33:40 GMT
etag: "cb7f8dc66496f249701e2656a5205387fd39da44"
expires: Sun, 23 Apr 2023 14:33:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bkCopBK23zADsr54e4CU6IlMviCiPAa0cbk1FovL7Ejv916AtUPFWg==
age: 82881
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/736.148bb551.chunk.js
54.230.111.91200 OK 18 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/736.148bb551.chunk.js
IP 54.230.111.91:0
File type ASCII text, with very long lines (12496)
Hash 71c3848e85056b474394a5489d2515b0
02f539d57d19aa70398798a1f4b65f18d7feec16
44787243ba20866e129096c9603df478b5f5f261686d56c0ce71e18dc814d7e2
GET /psb/capla/static/js/736.148bb551.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 22 Mar 2023 15:30:53 GMT
etag: W/"73dcd178932f89dda75832fe38a2c790"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Wed, 22 Mar 2023 14:52:11 GMT
x-amz-expiration: expiry-date="Thu, 20 Jul 2023 14:52:11 GMT", rule-id=""
expires: Fri, 21 Apr 2023 15:30:53 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZH97bXLCsvuVptIH0kKvfgiFxtro2KU2-ZSfa2-1P-JxwZwfSuCzbA==
age: 252246
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/263x210/45450073.jpeg?k=795a94c30433de1858ea52375e8190a962b302376be2e68aa08be345d936557d&o=
54.230.111.91200 OK 9.0 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/263x210/45450073.jpeg?k=795a94c30433de1858ea52375e8190a962b302376be2e68aa08be345d936557d&o=
IP 54.230.111.91:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3\012- data
Hash 8989f4f10a45dd10156c3eb7fb1b078b
f8fbe15b7a89638a421f23164e1b3c283b0d888a
89b6890e5d14cdc0d9470023b09144793e2b6f769f7e8f05f0393a4227e002c5
GET /xdata/images/xphoto/263x210/45450073.jpeg?k=795a94c30433de1858ea52375e8190a962b302376be2e68aa08be345d936557d&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 8996
server: nginx
date: Fri, 24 Mar 2023 14:33:40 GMT
etag: "14935f52ff488b831c0b28b18d33ef39ae82c58f"
expires: Sun, 23 Apr 2023 14:33:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -Lfh7dICb8-8HdZPIdQR4hO3V83qtS8m8KuKg9vP6lA8ZxzqWpwPSQ==
age: 82881
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/263x210/45450082.jpeg?k=beb101b827a729065964523184f4db6cac42900c2415d71d516999af40beb7aa&o=
54.230.111.91200 OK 11 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/263x210/45450082.jpeg?k=beb101b827a729065964523184f4db6cac42900c2415d71d516999af40beb7aa&o=
IP 54.230.111.91:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3\012- data
Hash b12af914e86a7dca0e4af96473cdb406
65d1e47c47fcc37ddac51cc0bfdb188782fed100
4fd4c96340bb4e3587288804ad9da4eebd9fe7e446191a6551d962db4cebb172
GET /xdata/images/xphoto/263x210/45450082.jpeg?k=beb101b827a729065964523184f4db6cac42900c2415d71d516999af40beb7aa&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 10776
server: nginx
date: Fri, 24 Mar 2023 14:33:40 GMT
etag: "5d66ece6e479bdb028d57417652e0dfec8098e84"
expires: Sun, 23 Apr 2023 14:33:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fk_R1zaMwi8E56dkzixOEJdkQFWIvjMnGI7ngjKu4c80NOgSbii1Cg==
age: 82881
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/263x210/45450093.jpeg?k=aa5cc7703f3866af8ffd6de346c21161804a26c3d0a508d3999c11c337506ae1&o=
54.230.111.91200 OK 10 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/263x210/45450093.jpeg?k=aa5cc7703f3866af8ffd6de346c21161804a26c3d0a508d3999c11c337506ae1&o=
IP 54.230.111.91:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3\012- data
Hash cd3eaf6aea022228c168936fc9ba55d3
8df607a7c2ab95a99e253eb96a6e57fdc7ecc430
0bec321e1240ad08ea08ce06e335e0436ff05d3590f10a467dab4112649d6f18
GET /xdata/images/xphoto/263x210/45450093.jpeg?k=aa5cc7703f3866af8ffd6de346c21161804a26c3d0a508d3999c11c337506ae1&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 10434
server: nginx
date: Fri, 24 Mar 2023 14:33:40 GMT
etag: "89e7240f7b4b1b571d31c3d6b868998afd28959a"
expires: Sun, 23 Apr 2023 14:33:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9WZAyEk1gXa8NB8VPkcefDa-_vEzkqlD5VMkNYo0AAT3pHYwkGpIVQ==
age: 82881
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/263x210/45450056.jpeg?k=251e2507d43a24a4c58bb961b8d157147d56efbf91b49f9606bc768c58f581e4&o=
54.230.111.91200 OK 13 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/263x210/45450056.jpeg?k=251e2507d43a24a4c58bb961b8d157147d56efbf91b49f9606bc768c58f581e4&o=
IP 54.230.111.91:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3\012- data
Hash 046a6e4db3f4ea1dc3b0044b48f93093
e0997c00add73d0b3b38ccc79e9ba67b447e3f59
6676ced592b6b4e143ff6a71c0dd4a0a0d0f2c040d7d689f58b0053e09c82365
GET /xdata/images/xphoto/263x210/45450056.jpeg?k=251e2507d43a24a4c58bb961b8d157147d56efbf91b49f9606bc768c58f581e4&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 13102
server: nginx
date: Fri, 24 Mar 2023 14:33:40 GMT
etag: "d0408646d1cdcf4ea3eebf474147caf07500bf5c"
expires: Sun, 23 Apr 2023 14:33:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WXIs1T0hNQXF6A-1UI6d7pKKw8BuVEG98WAd48EU7ckIP7zqErk-Ow==
age: 82881
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/263x210/45450279.jpeg?k=cb9ab85ffe439f3030e00281f2d52583a398bf076e54f00f746e1d1baf62bf6e&o=
54.230.111.91200 OK 18 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/263x210/45450279.jpeg?k=cb9ab85ffe439f3030e00281f2d52583a398bf076e54f00f746e1d1baf62bf6e&o=
IP 54.230.111.91:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3\012- data
Hash bde532f130b1e8e4fe12ad801cd77661
473b3d6fb52f5b967a9e13e3b0b91dd5b4c74165
48fb7dc5fed709b7868efd05d7f5bcbdb45d3dddd7f73a9c8aa72a75f46ebc0d
GET /xdata/images/xphoto/263x210/45450279.jpeg?k=cb9ab85ffe439f3030e00281f2d52583a398bf076e54f00f746e1d1baf62bf6e&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 18465
server: nginx
date: Fri, 24 Mar 2023 14:33:40 GMT
etag: "818c1f8036fa00d4b19724fac698287c8709e46c"
expires: Sun, 23 Apr 2023 14:33:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: I0BFBPsPGMvrYNgG1b2EpedsTG2nmRWle42aDlhOUtp5v4ZP4aouCg==
age: 82881
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/263x210/45450064.jpeg?k=4d4ea22dc4828fd55a3889e90531c9841ddb2d9abf460c420cdd24f2a9b658d2&o=
54.230.111.91200 OK 15 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/263x210/45450064.jpeg?k=4d4ea22dc4828fd55a3889e90531c9841ddb2d9abf460c420cdd24f2a9b658d2&o=
IP 54.230.111.91:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3\012- data
Hash 80f9f2fb77f37a3e57ac55d15de1a43b
9004c534f4e2730a4ed3985985db7527bfb6273c
4ad008815ae7efa7a3bbcabfc46d22e62f3206f3141d9d7ec8dbbb754f444a9d
GET /xdata/images/xphoto/263x210/45450064.jpeg?k=4d4ea22dc4828fd55a3889e90531c9841ddb2d9abf460c420cdd24f2a9b658d2&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 14855
server: nginx
date: Fri, 24 Mar 2023 14:33:40 GMT
etag: "0f7e3e8da36fd05428aebee66c33a486741df576"
expires: Sun, 23 Apr 2023 14:33:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HB_UuBnqeheSNwtWJs_6r4xkAoExuyct7wCU_wdTQJgPDoeRtW3v5w==
age: 82881
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/263x210/45450068.jpeg?k=41cc7c5449011323aaaaed4e845cb16200b5d540c77a50c1bea90399a1e92d70&o=
54.230.111.91200 OK 16 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/263x210/45450068.jpeg?k=41cc7c5449011323aaaaed4e845cb16200b5d540c77a50c1bea90399a1e92d70&o=
IP 54.230.111.91:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3\012- data
Hash e7bf96a1173c8a53e147151fadef91f5
d3c2d334b7fc33edea8492c6627bba1438c5ebe0
e84777ce16b3e1f4ebfe4a1422f5848b1a0370f33f78d99b7f4a060d880be76d
GET /xdata/images/xphoto/263x210/45450068.jpeg?k=41cc7c5449011323aaaaed4e845cb16200b5d540c77a50c1bea90399a1e92d70&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 15735
server: nginx
date: Fri, 24 Mar 2023 14:33:40 GMT
etag: "77e65d4346574b4f813c1997faace1817c74e471"
expires: Sun, 23 Apr 2023 14:33:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MI1QiRlXJpadzgYE1FcR7gJ8eCfZwRL-bb9-3NZsNjUXQXQBg3uLag==
age: 82881
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/263x210/45450283.jpeg?k=44ef0e355cff36883935e4c99b5c01b035eabebad278d22363210b2fe40b2791&o=
54.230.111.91200 OK 13 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/263x210/45450283.jpeg?k=44ef0e355cff36883935e4c99b5c01b035eabebad278d22363210b2fe40b2791&o=
IP 54.230.111.91:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3\012- data
Hash 90fad3c997f2d9cbb8427bc6e46d492f
3ad80505bc020e11fe101a0f958d3280a1689add
899a98f9590565257e31af2acc3e49e56c689a693f0cb204a50a3d027e741154
GET /xdata/images/xphoto/263x210/45450283.jpeg?k=44ef0e355cff36883935e4c99b5c01b035eabebad278d22363210b2fe40b2791&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 12945
server: nginx
date: Fri, 24 Mar 2023 14:33:40 GMT
etag: "a8d7b64b8752f8ef3fc34c58edd9795db732884f"
expires: Sun, 23 Apr 2023 14:33:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7bpsbrrx4OjaC1xeJLwznVLc48u37pate37-b5shHKY-y-BG0gxK7g==
age: 82881
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/263x210/45450066.jpeg?k=4adfab312f5d26da9f81da48d8c95ca8f108215b2c84085590891a9e0e17b144&o=
54.230.111.91200 OK 17 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/263x210/45450066.jpeg?k=4adfab312f5d26da9f81da48d8c95ca8f108215b2c84085590891a9e0e17b144&o=
IP 54.230.111.91:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3\012- data
Hash e08092b0569f8ee045e4bd45c1618f76
3c285568b967e02f24eb46c58f0d3eae278c58d7
bdc6ee8e1157c8084492b5735aedad96796d7aabd9b2f80949d5e747d652028d
GET /xdata/images/xphoto/263x210/45450066.jpeg?k=4adfab312f5d26da9f81da48d8c95ca8f108215b2c84085590891a9e0e17b144&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 16930
server: nginx
date: Fri, 24 Mar 2023 14:33:40 GMT
etag: "4146fd5303a677310d71584271b0a44aaf02da32"
expires: Sun, 23 Apr 2023 14:33:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6ZPzAC-KQ-uZE4VPkpmxwKKIAe36nUqDENaluIZ2z812YlMnmKzAwQ==
age: 82881
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/58c63e4d3e4eb7090033901e75e2c80c0caa437b.css
54.230.111.91200 OK 52 kB URL HTTP/2 cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/58c63e4d3e4eb7090033901e75e2c80c0caa437b.css
IP 54.230.111.91:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 0b8b969c6e1567e1b5233ccde1cadbb5
a9df7f58e4aee78a9776f6e018ca19df28dacb6f
fa5dde3504d7ef934a3d37f0742b42a3bff5674a1b9d20a5e8662f387ad57db0
GET /static/css/xp-index-sb_cloudfront_sd.iq_ltr/58c63e4d3e4eb7090033901e75e2c80c0caa437b.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
last-modified: Tue, 20 Dec 2022 12:37:08 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Fri, 24 Mar 2023 07:37:38 GMT
expires: Sat, 22 Apr 2023 01:30:26 GMT
cache-control: max-age=2592000
etag: W/"63a1ac74-12da0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9Pbp13mEWS_e10Hz82_BEqlRBGteC04eI2DN_5t6LX1n1oAKqvbl-Q==
age: 216272
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/93.cb196904.chunk.js
54.230.111.91200 OK 108 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/93.cb196904.chunk.js
IP 54.230.111.91:0
File type ASCII text, with very long lines (65461)
Size 108 kB (107474 bytes)
Hash dc4371c48ff64cea07f52fb53cfaa407
e9fd9093e5f4f38edb1590eaa8486676c92932db
b390624beabdad607b70f97112ec6b91c670b02b61e5f521d5213d6f8849a212
GET /psb/capla/static/js/93.cb196904.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 24 Mar 2023 14:33:37 GMT
etag: W/"41763c243dc8eab1437ab7c2259ea5de"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 24 Mar 2023 14:16:40 GMT
x-amz-expiration: expiry-date="Sat, 22 Jul 2023 14:16:40 GMT", rule-id=""
expires: Sun, 23 Apr 2023 14:33:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NIqjmEDiyEEif40KrXmhD3KwIQb7ki9AIWb0BF6JOfEtFqeWtlFLsA==
age: 82882
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/263x210/45450095.jpeg?k=cd5e46e632dab722d22217813485efde31fbe82f5f26a624166edccdbe8187bc&o=
54.230.111.91200 OK 16 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/263x210/45450095.jpeg?k=cd5e46e632dab722d22217813485efde31fbe82f5f26a624166edccdbe8187bc&o=
IP 54.230.111.91:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3\012- data
Hash 4a3d6681973906a15cf25575a34149c5
5cc846e08d4262f3b8d21a4fda93422e59e77519
911bb77dbdce93cc64009eb78b150865f1c5e6aec0e1d8c1a55ccd6d04154a2d
GET /xdata/images/xphoto/263x210/45450095.jpeg?k=cd5e46e632dab722d22217813485efde31fbe82f5f26a624166edccdbe8187bc&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 16076
server: nginx
date: Fri, 24 Mar 2023 14:33:40 GMT
etag: "0af9a183b39741f4b3453d48a2b4af49c26eae79"
expires: Sun, 23 Apr 2023 14:33:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: J1HkYdt_LJygpt7GEVbOwd_i54ylHE4Nwh6uX027XdeJXZAuJWzOPw==
age: 82881
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/gprof_icons_cloudfront_sd.iq_ltr/45e1448a045ffbbe4ac3c464fb98c5df7c0fe7cd.css
54.230.111.91200 OK 153 kB URL HTTP/2 cf.bstatic.com/static/css/gprof_icons_cloudfront_sd.iq_ltr/45e1448a045ffbbe4ac3c464fb98c5df7c0fe7cd.css
IP 54.230.111.91:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 153 kB (153239 bytes)
Hash b5aa65cfac78e478432278c95f9d6219
1bc1d77ea77888166450bccd2ee07c45a4a5a79f
51fa00ff5ce5637965df5c90f9bd45ac8871f7b847b35351cfcd7b28365edef0
GET /static/css/gprof_icons_cloudfront_sd.iq_ltr/45e1448a045ffbbe4ac3c464fb98c5df7c0fe7cd.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Tue, 21 Mar 2023 02:55:24 GMT
last-modified: Tue, 03 Jan 2023 03:11:28 GMT
etag: W/"63b39ce0-29a49"
expires: Thu, 20 Apr 2023 02:55:24 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NqovL-CN3B7UZcyX9sxXyj0UEDcR74zcfdgx4YinlGL7O8IzvU3BhA==
age: 383974
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/263x210/45450095.jpeg?k=cd5e46e632dab722d22217813485efde31fbe82f5f26a624166edccdbe8187bc&o=
54.230.111.91200 OK 16 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/263x210/45450095.jpeg?k=cd5e46e632dab722d22217813485efde31fbe82f5f26a624166edccdbe8187bc&o=
IP 54.230.111.91:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3\012- data
Hash 4a3d6681973906a15cf25575a34149c5
5cc846e08d4262f3b8d21a4fda93422e59e77519
911bb77dbdce93cc64009eb78b150865f1c5e6aec0e1d8c1a55ccd6d04154a2d
GET /xdata/images/xphoto/263x210/45450095.jpeg?k=cd5e46e632dab722d22217813485efde31fbe82f5f26a624166edccdbe8187bc&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 16076
server: nginx
date: Fri, 24 Mar 2023 14:33:40 GMT
etag: "0af9a183b39741f4b3453d48a2b4af49c26eae79"
expires: Sun, 23 Apr 2023 14:33:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lKo7Q4FeTbo3XdMr8RljmmcGrg85eLC0nCdpDYciS9VG8b81Ivq4oA==
age: 82881
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/263x210/45450097.jpeg?k=eac0f917a53dc395bd379fef8c191e7d5e37012b68e60232e4f6bba2a2901b7a&o=
54.230.111.91200 OK 13 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/263x210/45450097.jpeg?k=eac0f917a53dc395bd379fef8c191e7d5e37012b68e60232e4f6bba2a2901b7a&o=
IP 54.230.111.91:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3\012- data
Hash 04512024ddb6c46c1f3ac299772afb1a
ff8a0c294780539fe8f873dad046bb227a4bf4db
75db3132568d756598728736eb981bfb3c05f7337c54ad5113ce1a3c8f3791cd
GET /xdata/images/xphoto/263x210/45450097.jpeg?k=eac0f917a53dc395bd379fef8c191e7d5e37012b68e60232e4f6bba2a2901b7a&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 12638
server: nginx
date: Fri, 24 Mar 2023 14:33:40 GMT
etag: "dd4ae8ddcc8ce917bee6fdf986abd539b47b457a"
expires: Sun, 23 Apr 2023 14:33:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: iiRXz-Tx85uBdyoiqZ4y2L5KnBfZBhaGYdiYLzgQoCzZakvBE7P6ag==
age: 82881
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/263x210/45450075.jpeg?k=d23cf8443780ac09f46f59e40393d75dbe64b06029b4959c60b81b7fdefc9be0&o=
54.230.111.91200 OK 10 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/263x210/45450075.jpeg?k=d23cf8443780ac09f46f59e40393d75dbe64b06029b4959c60b81b7fdefc9be0&o=
IP 54.230.111.91:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3\012- data
Hash e70f1d1992db27cada3baaf01be89329
379e6db7407215eec854ae8523b0a88f6134b293
2c67010b9f685164bd1cf6b5fab39fd9f7b3a165357b15a6ca3de2cef7c796e1
GET /xdata/images/xphoto/263x210/45450075.jpeg?k=d23cf8443780ac09f46f59e40393d75dbe64b06029b4959c60b81b7fdefc9be0&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 10192
server: nginx
date: Fri, 24 Mar 2023 14:33:40 GMT
etag: "07060e04c091991dc0617f56e8e03d25c3daec66"
expires: Sun, 23 Apr 2023 14:33:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kCHPZiQflbMzZ5lWAinCdMqW0KGUFjdMeEkZYh3935iaVpsC5HA5kw==
age: 82881
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/263x210/57175023.jpeg?k=dc0319d4d64ded9ee4b0ddb162a2e80db7899300b7bf21b34506888895d74c79&o=
54.230.111.91200 OK 14 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/263x210/57175023.jpeg?k=dc0319d4d64ded9ee4b0ddb162a2e80db7899300b7bf21b34506888895d74c79&o=
IP 54.230.111.91:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3\012- data
Hash 838fddff0171ed1414657c25c01ecbbe
d5141d047b54962f9572d8647909b23bf971cb3b
b2d4d41198dc45e52894033452988cdfbec766e6d9c04089070db89033acc4bf
GET /xdata/images/xphoto/263x210/57175023.jpeg?k=dc0319d4d64ded9ee4b0ddb162a2e80db7899300b7bf21b34506888895d74c79&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 13480
server: nginx
date: Fri, 24 Mar 2023 14:33:40 GMT
etag: "5bcc84c9d8a4375d096e03813d3bcbc92ac56a5f"
expires: Sun, 23 Apr 2023 14:33:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ObSWufrfZKXraFzIY6UjXLYyNrhoGMntPNOGAC4d8F2QF1Bc4KG-NQ==
age: 82881
X-Firefox-Spdy: h2
www.booking.com/dml/graphql?aid=7952588&lang=en-us
54.230.111.57200 OK 3.1 kB URL HTTP/2 www.booking.com/dml/graphql?aid=7952588&lang=en-us
IP 54.230.111.57:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (12829), with no line terminators
Hash 5309806c49b09bd291a783f9d326da12
94a9659bee671782102d70a192be94b448dcaf69
e680b7414b2fde87f744b8a0d75aff12467fb5a1f6c98f950f96082c3cc0204f
POST /dml/graphql?aid=7952588&lang=en-us HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=7952588
content-type: application/json
x-booking-context-action-name: index
x-booking-context-aid: 7952588
x-booking-csrf-token: eyJhbGciOiJIUzUxMiJ9.eyJpc3MiOiJjb250ZXh0LWVucmljaG1lbnQtYXBpIiwic3ViIjoiY3NyZi10b2tlbiIsImlhdCI6MTY3OTc1MTI5OCwiZXhwIjoxNjc5ODM3Njk4fQ.SkmrO6opthq9etG69gdRnYRtU0NZtxgFimZrPCq92LjiJ7l8xCACdTiQTMTm-fGqdOEPvOqvXyNoB5jailngXA
x-booking-et-serialized-state: EzfWWEP6bN9n9uyldr1h0GXdI245QzsKBLCCqevjdxCH0CIhRCgUD-5G_pSjNdDMm
x-booking-pageview-id: 503b5f806208003a
x-booking-site-type-id: 1
x-booking-topic: capla_browser_b-index-lp-web-mfe
Origin: https://www.booking.com
Content-Length: 1719
Connection: keep-alive
Cookie: _pxhd=K3GZvpBol2O-%252FcMWAv7rAxEkkgtf4mCKbmoCTFzC7j3-mMc%252F0Xdc-Q%252FCWM5hKykYwvOMNAZOQhwE-5pEU0FmBg%253D%253D%253A2iMGyZW%252FuHjkYJBxxCjLaF0MKftI9hXuLhjJBjMdC0kdOVSSEgGhlMDaxB0YGiU-llINu4wiHerIDFP3FmxpoNTRHsDZpxcMGpgA7z-m2ks%253D; px_init=80; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLalZib7103qCXxl5tt24hS%2Fm%2F5RVrhxcOOdrVqplQpqp17wCqzMXpFgJX5hpqHSDrblGFCuUy5ir83D%2F5JA19mb2nuOKH7iBXhgdX3usr%2FFrLS9x8Y4dDCqA8FoaHyZt57tnbBhrGiJih2cGm7C7Y%2BGT91J%2FEeslI%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sat+Mar+25+2023+13%3A35%3A13+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=2afcfc4c-ac3a-4de4-917b-ded9bd7817c2&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D7952588&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1679751313821; bkng_sso_session=e30; bkng_sso_ses=e30; bkng_sso_auth=CAIQARpydKuDILS1NlPskBo2drJLuJNOrMTobPrIMuQRiKtJFZFhXWCSS6CY/JzfCBglwTt7s6RHaNz6/kGEW94MV1pfDx8jrDxmSLn7A2CFuRZSJNDReLslEtdHEha2rwD+dpXGCUecNVKyEp0q1tBoLo6Z+puF; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 3116
server: nginx
date: Sat, 25 Mar 2023 13:35:01 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
set-cookie: _pxhd=EeaqPan-w0NYaGY8caujYxKvsgvVTe8aZTB6AUeSkGza9jSAbWYaon%2FrhV5LJzktL4VgAu7tZuac0G4PgSFsyA%3D%3D%3ASZNe2ZhatLOL76UrPn4dyRBCSQWmnpms4-YGbvadfs-MArRj0%2F08AikZA41rdFS5BqGmC5HzU9Fwukax1fMWv8FTORe7vzXrLG3OClkDyNQ%3D; domain=booking.com; path=/; expires=Sun, 24-Mar-2024 13:35:01 GMT
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPef0jtgHVfzZ2Asun8DaenuZ1Lel8PiRXHSG8FN7uSXII8u9ET%2BTCD9ENYcaq73QE4%2B4Gcadio7zMC13sHAq2X%2FIP9KltxrUCSIvkI4q8Bwjh3oszI3PpjBs569ppP4JLbULVaQWNyqs1pvCYmPgk8sUnq4XUdYVb4M%3D; domain=.booking.com; path=/; expires=Thu, 23-Mar-2028 13:35:01 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4FvM_LsdWCh27bJB1C469SO2YA-KWDOe5x0XVVcWBHZg11X8tGibww==
X-Firefox-Spdy: h2
www.booking.com/js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=503b5f806208003a&ete=&etg=&etcg=YTTHbXeeVeCFZAcbRbROfLMVNZTMPIMbIZDFDORMTfLT|1&ets=cCHObECVVDDORMTfFbRZFJGO|1,cCHObECVVDDORMTfFbRZFJGO|2,cCHObECVVDDORMTfFbRZFJGO|4,NAFLeOeJcQEcVOdWNeYZdfdbJae|1,NAFLeOeJaDMNAdGFdICFHUeUdLOLOLMO|1,NAFLeOeJdEdSdGFdICFHUeUdLOLOLMO|1,NAFLeOeJabUZFQbMWKZETTeMcCcCcCC|1,NAFLeOeJVCMcQEcVOdWNeYZaTaTaET|1,NAFLeOeJcLMbFQbMWKZETTeMcCcCcCC|1,NAFLeOeJcLdYZGQDaRNFOSeDdKNKNKWe|1,NAFLeOeJcQEcVOdWNeYZdfdbJae|2,NAFLeOeJaDMNAdGFdICFHUeUdLOLOLMO|2,NAFLeOeJdEdSdGFdICFHUeUdLOLOLMO|2,NAFLeOeJabUZFQbMWKZETTeMcCcCcCC|2,NAFLeOeJVCMcQEcVOdWNeYZaTaTaET|2,NAFLeOeJcLMbFQbMWKZETTeMcCcCcCC|2,NAFLeOeJcLdYZGQDaRNFOSeDdKNKNKWe|2,cCHObTRVEFDEXNBBTZBYSGSYO|5,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|1,cCHObMKdFEVYQGXUGScOTVaAFZKXe|1,cCHObMKdFEVYQGXUGScOTVaAFZKXe|3,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|1,cCHObdRdJJXRDVMDTEJWcFRURURHe|1,cCHObdRdJJXRDVMDTEJWcFRURURHe|2,cCHObVZMYCVKKMadMUPORIPBLAUFRURURHe|1,cCHObVZMYCVKKMadMUPORIPBLAUFRURURHe|4,cCHObVZMYCVKKMadMUPORIPBLAUFRURURHe|6,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|1,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|2,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|8,cCHObVZMYCVKKMadMUPORIPBLAUFRURURHe|2&etgwv=
54.230.111.57200 OK 35 B URL HTTP/2 www.booking.com/js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=503b5f806208003a&ete=&etg=&etcg=YTTHbXeeVeCFZAcbRbROfLMVNZTMPIMbIZDFDORMTfLT|1&ets=cCHObECVVDDORMTfFbRZFJGO|1,cCHObECVVDDORMTfFbRZFJGO|2,cCHObECVVDDORMTfFbRZFJGO|4,NAFLeOeJcQEcVOdWNeYZdfdbJae|1,NAFLeOeJaDMNAdGFdICFHUeUdLOLOLMO|1,NAFLeOeJdEdSdGFdICFHUeUdLOLOLMO|1,NAFLeOeJabUZFQbMWKZETTeMcCcCcCC|1,NAFLeOeJVCMcQEcVOdWNeYZaTaTaET|1,NAFLeOeJcLMbFQbMWKZETTeMcCcCcCC|1,NAFLeOeJcLdYZGQDaRNFOSeDdKNKNKWe|1,NAFLeOeJcQEcVOdWNeYZdfdbJae|2,NAFLeOeJaDMNAdGFdICFHUeUdLOLOLMO|2,NAFLeOeJdEdSdGFdICFHUeUdLOLOLMO|2,NAFLeOeJabUZFQbMWKZETTeMcCcCcCC|2,NAFLeOeJVCMcQEcVOdWNeYZaTaTaET|2,NAFLeOeJcLMbFQbMWKZETTeMcCcCcCC|2,NAFLeOeJcLdYZGQDaRNFOSeDdKNKNKWe|2,cCHObTRVEFDEXNBBTZBYSGSYO|5,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|1,cCHObMKdFEVYQGXUGScOTVaAFZKXe|1,cCHObMKdFEVYQGXUGScOTVaAFZKXe|3,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|1,cCHObdRdJJXRDVMDTEJWcFRURURHe|1,cCHObdRdJJXRDVMDTEJWcFRURURHe|2,cCHObVZMYCVKKMadMUPORIPBLAUFRURURHe|1,cCHObVZMYCVKKMadMUPORIPBLAUFRURURHe|4,cCHObVZMYCVKKMadMUPORIPBLAUFRURURHe|6,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|1,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|2,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|8,cCHObVZMYCVKKMadMUPORIPBLAUFRURURHe|2&etgwv=
IP 54.230.111.57:0
Hash 79a611524d7c43a354c589264cc2376e
2e25649d9a8a208302be0502b47a0e44b07bc7c1
c7a9af81f3467d3c95760df18d0853bda8c191f612fb2e8b2b5c4ed941fbaf1a
GET /js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=503b5f806208003a&ete=&etg=&etcg=YTTHbXeeVeCFZAcbRbROfLMVNZTMPIMbIZDFDORMTfLT|1&ets=cCHObECVVDDORMTfFbRZFJGO|1,cCHObECVVDDORMTfFbRZFJGO|2,cCHObECVVDDORMTfFbRZFJGO|4,NAFLeOeJcQEcVOdWNeYZdfdbJae|1,NAFLeOeJaDMNAdGFdICFHUeUdLOLOLMO|1,NAFLeOeJdEdSdGFdICFHUeUdLOLOLMO|1,NAFLeOeJabUZFQbMWKZETTeMcCcCcCC|1,NAFLeOeJVCMcQEcVOdWNeYZaTaTaET|1,NAFLeOeJcLMbFQbMWKZETTeMcCcCcCC|1,NAFLeOeJcLdYZGQDaRNFOSeDdKNKNKWe|1,NAFLeOeJcQEcVOdWNeYZdfdbJae|2,NAFLeOeJaDMNAdGFdICFHUeUdLOLOLMO|2,NAFLeOeJdEdSdGFdICFHUeUdLOLOLMO|2,NAFLeOeJabUZFQbMWKZETTeMcCcCcCC|2,NAFLeOeJVCMcQEcVOdWNeYZaTaTaET|2,NAFLeOeJcLMbFQbMWKZETTeMcCcCcCC|2,NAFLeOeJcLdYZGQDaRNFOSeDdKNKNKWe|2,cCHObTRVEFDEXNBBTZBYSGSYO|5,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|1,cCHObMKdFEVYQGXUGScOTVaAFZKXe|1,cCHObMKdFEVYQGXUGScOTVaAFZKXe|3,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|1,cCHObdRdJJXRDVMDTEJWcFRURURHe|1,cCHObdRdJJXRDVMDTEJWcFRURURHe|2,cCHObVZMYCVKKMadMUPORIPBLAUFRURURHe|1,cCHObVZMYCVKKMadMUPORIPBLAUFRURURHe|4,cCHObVZMYCVKKMadMUPORIPBLAUFRURURHe|6,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|1,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|2,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|8,cCHObVZMYCVKKMadMUPORIPBLAUFRURURHe|2&etgwv= HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=7952588
X-Booking-Info:
X-Booking-Client-Info:
X-Booking-Pageview-Id: 503b5f806208003a
X-Booking-SiteType-Id: 1
X-Booking-Language-Code: en-us
X-Booking-AID: 7952588
X-Booking-Session-Id: 646029efc21b5eb47e482bc14389a45c
X-Booking-ET-Serialized-State: EzfWWEP6bN9n9uyldr1h0GXdI245QzsKBLCCqevjdxCH0CIhRCgUD-5G_pSjNdDMm
Connection: keep-alive
Cookie: _pxhd=QodzLqMoz1oY7FFhtt%2FtH16Tvt-pgLU-vW72PEFBLuelRurNweZK%2FdWK4nFts030Rwu1aFvC%2F4uXMOJLH2Dnnw%3D%3D%3AYHSj9-Gc2WWeQLgfXIISIdbzBORCiVIzvs%2FQo3W3vfaaZHsZ%2FxyxHjnCioG9fv7c7Gz0333SqsmZQDErE85A4BeWFNd8WjRBSNUC0-4VKlo%3D; px_init=80; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPef0jtgHVfzZ2PxJVKLCFZDaDV%2B58n3T6OxQI23c31JGUpEn7hdlecQj5ggNhKzzwi3NsF8SJZw16JqQAqF7HeAzIuTYI3VIxSyzZzBdnsPhNVEHGPkEDyeesh2E3LyJNcL%2FCJs85cVqtCltyxrQ%2BL1F84HTVFa8Kec%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sat+Mar+25+2023+13%3A35%3A13+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=2afcfc4c-ac3a-4de4-917b-ded9bd7817c2&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D7952588&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1679751313821; bkng_sso_session=e30; bkng_sso_ses=e30; bkng_sso_auth=CAIQARpydKuDILS1NlPskBo2drJLuJNOrMTobPrIMuQRiKtJFZFhXWCSS6CY/JzfCBglwTt7s6RHaNz6/kGEW94MV1pfDx8jrDxmSLn7A2CFuRZSJNDReLslEtdHEha2rwD+dpXGCUecNVKyEp0q1tBoLo6Z+puF; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 35
server: nginx
date: Sat, 25 Mar 2023 13:35:01 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
strict-transport-security: max-age=604800
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=d2d35f82f73f0174&e=UmFuZG9tSVYkc2RlIyh9Yea92wm0yRUjnCBymoy8ejKkCfpMHtGQSEvF1E5KYwKfSc0-M55bE0E
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Xe74AyvER16b1om-v-PkxQ7VZTLQopHupizl2n_3M7dC4jnJy4pisQ==
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/favicon/9ca83ba2a5a3293ff07452cb24949a5843af4592.svg
54.230.111.91200 OK 2.8 kB URL HTTP/2 cf.bstatic.com/static/img/favicon/9ca83ba2a5a3293ff07452cb24949a5843af4592.svg
IP 54.230.111.91:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 58e500b215fa3c4c21d1f5294b708653
0dd7e7980c36b1664efaca471b4f7125a390f65a
d2b4b61d36b62ab0e4353f4987f085c45b114d92c744a5721c74e0175ff165b1
GET /static/img/favicon/9ca83ba2a5a3293ff07452cb24949a5843af4592.svg HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Tue, 21 Mar 2023 11:07:53 GMT
last-modified: Tue, 21 Mar 2023 10:44:12 GMT
etag: W/"64198a7c-4ad"
expires: Thu, 20 Apr 2023 11:07:53 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: K4I169gaudOFbRFv8eFvDXiC6q_XtZxXXLpzYDhUupuqV2jEltkf9Q==
age: 354427
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/city/170x136/644297.jpg?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o=
54.230.111.91200 OK 7.1 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/city/170x136/644297.jpg?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o=
IP 54.230.111.91:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3\012- data
Hash bcabc853805644c852b5e28ceb4da21f
85e9e9be45cd209187f883151d869f07dce4a016
0e9deb49e94a0a7b46e1300d00ff66abc515bf83f77c53d322457e1cce9d3d5c
GET /xdata/images/city/170x136/644297.jpg?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 7131
server: nginx
date: Fri, 24 Mar 2023 14:35:24 GMT
etag: "ee7c9225f83f6e22a704baa5c8a2d70242b275a6"
expires: Sun, 23 Apr 2023 14:35:24 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1nA50P3eQ7Q9pCAGWuwPwcPhz0Yo0ZMKs4EBKxfMCqwby8Cg1SU7bQ==
age: 82777
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/city/170x136/644293.jpg?k=24c08396bd44343c9dcc78f0df41e114bf7e6aeda3d339101c37e7ba3aa707db&o=
54.230.111.91200 OK 5.4 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/city/170x136/644293.jpg?k=24c08396bd44343c9dcc78f0df41e114bf7e6aeda3d339101c37e7ba3aa707db&o=
IP 54.230.111.91:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3\012- data
Hash 2500c3ceb70ede8cd27aa8104b6ba08d
171e77bfa910c602acd969ad5a2d6240764a01e2
85d4039adc55e4225f4f70866622be1d30a8978738539db37085264adff1c3d2
GET /xdata/images/city/170x136/644293.jpg?k=24c08396bd44343c9dcc78f0df41e114bf7e6aeda3d339101c37e7ba3aa707db&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 5421
server: nginx
date: Fri, 24 Mar 2023 14:35:08 GMT
etag: "9ab61d19e23b8d2b50ccef19340b3308cbb5c0ec"
expires: Sun, 23 Apr 2023 14:35:08 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PTVo8hrTrnFVo0eGfi4znX9NZto0fTxXB2hSnylGR6MQicMf2M_lMw==
age: 82793
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/calendar2_cloudfront_sd/06071dd1c4e89fbe99e5ad6e21584a6bf9585e84.js
54.230.111.91200 OK 19 kB URL HTTP/2 cf.bstatic.com/static/js/calendar2_cloudfront_sd/06071dd1c4e89fbe99e5ad6e21584a6bf9585e84.js
IP 54.230.111.91:0
File type Unicode text, UTF-8 text, with very long lines (52155), with no line terminators
Hash 40d205bb60c5052a7472086e7a2784c1
a12173dc1fe03740282e919171eebb8caa540c88
589804364adfe1b25d81d5d6aadee0e462798f939e4aa7c2bcffba0b0448831b
GET /static/js/calendar2_cloudfront_sd/06071dd1c4e89fbe99e5ad6e21584a6bf9585e84.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
last-modified: Tue, 12 Jan 2021 10:06:38 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Tue, 21 Mar 2023 01:38:01 GMT
expires: Thu, 20 Apr 2023 01:37:51 GMT
cache-control: max-age=2592000
etag: W/"5ffd74ae-cbbc"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: A29wHvfokPpOkn0SQa002IoQ010qhaO7k_i_PV7BASY-Fcls6RvdtQ==
age: 388629
X-Firefox-Spdy: h2
cf.bstatic.com/libs/perimeterx/px.v7.6.9.min.js
54.230.111.91200 OK 86 kB URL HTTP/2 cf.bstatic.com/libs/perimeterx/px.v7.6.9.min.js
IP 54.230.111.91:0
File type ASCII text, with very long lines (65402)
Hash cb32fe2c6ee7f7fe870a15f19549ae8d
bf6c0076b702e424c1f3f3ac27e7b627d94f7227
921575f8df3fa60963d94a28782d39506ff24bfba7374d30bad8ea996a88dd78
GET /libs/perimeterx/px.v7.6.9.min.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 22 Mar 2023 06:40:39 GMT
last-modified: Wed, 15 Mar 2023 09:57:35 GMT
etag: W/"6411968f-39901"
expires: Fri, 21 Apr 2023 06:40:39 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BQ8WBJM_feRMLKrfUiqsveJGBPp1SFdESVEUzfTsl3BVR2vU1WI9bw==
age: 284061
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/city/170x136/737551.jpg?k=ad4ef19a2b979ef794b56d1901e6937b874b4726a4085d8ddbe795f5c6bfed73&o=
54.230.111.91200 OK 6.2 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/city/170x136/737551.jpg?k=ad4ef19a2b979ef794b56d1901e6937b874b4726a4085d8ddbe795f5c6bfed73&o=
IP 54.230.111.91:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3\012- data
Hash 033e02e916d5f3791fb0edcde629ef86
d5cc83fc9698814ff92bf752ac0cbb004439f614
1815ead7ea4f562bb51ec2e39ee38db0e120120d1f8b98096dc60583c493e4d4
GET /xdata/images/city/170x136/737551.jpg?k=ad4ef19a2b979ef794b56d1901e6937b874b4726a4085d8ddbe795f5c6bfed73&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 6204
server: nginx
date: Fri, 24 Mar 2023 14:35:08 GMT
etag: "aae53963841f88dc78864b1f5e4d491d66f53d94"
expires: Mon, 08 May 2023 14:35:08 GMT
cache-control: max-age=3888000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: SMJ6vhjeGmILtP1drt_1StqhHzA9wVx-qo6ACi9LAhsysQDbg7Qt9A==
age: 82793
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/city/170x136/671694.jpg?k=cd1e3603afe4edd09f829675efb1cdc9a5925bed25a642bfc4d909602c231624&o=
54.230.111.91200 OK 6.3 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/city/170x136/671694.jpg?k=cd1e3603afe4edd09f829675efb1cdc9a5925bed25a642bfc4d909602c231624&o=
IP 54.230.111.91:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3\012- data
Hash 566ef663c31a7da2e19277c795aab0fa
bcbc6af34645cb84bec41718185ab14768d36a31
207cf1ee36b9118a68d6b33bbef91c4eb9bd28edcabae628828b20a375f409c9
GET /xdata/images/city/170x136/671694.jpg?k=cd1e3603afe4edd09f829675efb1cdc9a5925bed25a642bfc4d909602c231624&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 6341
server: nginx
date: Fri, 24 Mar 2023 14:35:08 GMT
etag: "c86d357cdc59ad578a574e264e8b1f7dbcbf2f2c"
expires: Sun, 23 Apr 2023 14:35:08 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HF-slSG2duoOfCYX9gAll3x-Sq30JSRYnTm8j-CwmbXVRSG-nUzGXg==
age: 82793
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/city/170x136/644310.jpg?k=472fefd4c3c0aef36deb16adb91c965923d8b1078ab29056802f95aead0586bf&o=
54.230.111.91200 OK 6.5 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/city/170x136/644310.jpg?k=472fefd4c3c0aef36deb16adb91c965923d8b1078ab29056802f95aead0586bf&o=
IP 54.230.111.91:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3\012- data
Hash d8fc03a58b76828aa4d541100bd52964
ec876001abc6b7de78aada1dc0460f898269aa1e
08d047a4f12afcccef76d06b51501b8cbec55e66f828a08bedb06434b7249502
GET /xdata/images/city/170x136/644310.jpg?k=472fefd4c3c0aef36deb16adb91c965923d8b1078ab29056802f95aead0586bf&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 6544
server: nginx
date: Fri, 24 Mar 2023 14:35:24 GMT
etag: "df14955ce900aec0b8af485d7ed4438328d46f97"
expires: Mon, 08 May 2023 14:35:24 GMT
cache-control: max-age=3888000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZTS1aJHJD6MI_fau4Yc2G_6khR2qO6b2i-dr2SsKs452gb3L2FZ2SQ==
age: 82777
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/city/170x136/954959.jpg?k=37410091e9d0e74278ef7710d594a8ef5882decaf47e8f9a7ca30f9e85bbab75&o=
54.230.111.91200 OK 3.8 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/city/170x136/954959.jpg?k=37410091e9d0e74278ef7710d594a8ef5882decaf47e8f9a7ca30f9e85bbab75&o=
IP 54.230.111.91:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3\012- data
Hash e4ebb57e831518d499a91657b0e1aec6
d232947d401ce3b2aa52c6a71d626fdcc5316c7b
9a5f2fe3143566a8aaf079959b5ee63c55b4b916fe1f3791f4b46f6ef65dcbfe
GET /xdata/images/city/170x136/954959.jpg?k=37410091e9d0e74278ef7710d594a8ef5882decaf47e8f9a7ca30f9e85bbab75&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 3812
server: nginx
date: Fri, 24 Mar 2023 15:46:12 GMT
etag: "659234fd6606d3f8f1ee701fb40fd80636f76c32"
expires: Sun, 23 Apr 2023 15:46:12 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: v3ryGmHoEEWT4_BRLUeKZJ-QNGruM6uL7ug0TNj_MywSq9g4gs6o6Q==
age: 78529
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/city/170x136/954959.jpg?k=37410091e9d0e74278ef7710d594a8ef5882decaf47e8f9a7ca30f9e85bbab75&o=
54.230.111.69200 OK 3.8 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/city/170x136/954959.jpg?k=37410091e9d0e74278ef7710d594a8ef5882decaf47e8f9a7ca30f9e85bbab75&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3\012- data
Hash e4ebb57e831518d499a91657b0e1aec6
d232947d401ce3b2aa52c6a71d626fdcc5316c7b
9a5f2fe3143566a8aaf079959b5ee63c55b4b916fe1f3791f4b46f6ef65dcbfe
GET /xdata/images/city/170x136/954959.jpg?k=37410091e9d0e74278ef7710d594a8ef5882decaf47e8f9a7ca30f9e85bbab75&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 3812
server: nginx
date: Fri, 24 Mar 2023 15:46:12 GMT
etag: "659234fd6606d3f8f1ee701fb40fd80636f76c32"
expires: Sun, 23 Apr 2023 15:46:12 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WYf54UidmcXH89Cud3tT2j99TspdvjmN0uWwbjxjE3on_ZlTD6Uldw==
age: 78529
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/region/170x136/48107.jpg?k=bc7ff9cf4d26882ff93f92643455885a88b9b0ae37b9ed109687ad0890af2dfd&o=
54.230.111.69200 OK 4.8 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/region/170x136/48107.jpg?k=bc7ff9cf4d26882ff93f92643455885a88b9b0ae37b9ed109687ad0890af2dfd&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3\012- data
Hash 618f36c6dca24c1e13f65743924ad4d6
1cdfec657ca8b3ce961107de24a0a3c467cfc161
fc9631742c03f76f2df1dc803bff39e7c53ae024541dcfbed7b8c05f45dbf180
GET /xdata/images/region/170x136/48107.jpg?k=bc7ff9cf4d26882ff93f92643455885a88b9b0ae37b9ed109687ad0890af2dfd&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 4829
server: nginx
date: Fri, 24 Mar 2023 14:35:51 GMT
etag: "ef11e550e48aba95a95309520edc62633b3f412a"
expires: Sun, 23 Apr 2023 14:35:51 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qHDHFIDAU9plgNS3s-l2wHEJbplwcw2wyR28m9eEkQilfUr3GmXfwg==
age: 82750
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/224.e9ab6600.chunk.css
54.230.111.91200 OK 7.7 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/224.e9ab6600.chunk.css
IP 54.230.111.91:0
File type ASCII text, with very long lines (2057)
Hash 25f5f0c7d6351c09d9e9a63039400f97
6a1de566933f3b4c036c373fce230370a210ce4c
fba45eaff30641b22508857c8f9bd26090f105a8aaa54308913080dc20f2b55b
GET /psb/capla/static/css/224.e9ab6600.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Mon, 06 Mar 2023 14:01:16 GMT
etag: W/"6526ecd01320f2b7dd3f74cca2265112"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 03 Mar 2023 14:06:53 GMT
x-amz-expiration: expiry-date="Sat, 01 Jul 2023 14:06:53 GMT", rule-id=""
expires: Wed, 05 Apr 2023 14:01:16 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Q4pqsq2RCpVZIWJ5Pdh476v_4VIzq6sfDv_4UivEy66YmMSN--gIHw==
age: 1640023
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/city/170x136/967346.jpg?k=f2fc26f8f1b8d3fbc6731b2818cba0888423bac3183cb1e87d1214045f4d4fd2&o=
54.230.111.69200 OK 6.6 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/city/170x136/967346.jpg?k=f2fc26f8f1b8d3fbc6731b2818cba0888423bac3183cb1e87d1214045f4d4fd2&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3\012- data
Hash 17fcb0a6d99d2e2756a338ef69d0009b
5aa111651cf8d7c65cdb1d44e44472e72099b86a
737d9fa072964396bdef9a1ff574b8274a15d45ce7cf5841c95c539bc334dab5
GET /xdata/images/city/170x136/967346.jpg?k=f2fc26f8f1b8d3fbc6731b2818cba0888423bac3183cb1e87d1214045f4d4fd2&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 6646
server: nginx
date: Fri, 24 Mar 2023 14:35:51 GMT
etag: "2eaaddf57782cd4119d7b4019fe857a2e1040673"
expires: Sun, 23 Apr 2023 14:35:51 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -BA9B1BybpDQ0mHpj7QeHm-VJiZ5pooNQZQGNDpMGttZtXjbV8_2Sg==
age: 82750
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash def1dbdfc3019fb787c5363a9db07e30
8319917266514767014b3efe9cbe94a3dbf4e28c
dd547a9803c12b2b44551a5fa5ecd5a4095b52d13a5e6e72717fcce1bf7ced91
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 13:35:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 3c7b6b42fcf62df912361ee549797d74
8744f056699e3aba84dbd3e878c22fefe2cd27e3
985dc4886c261db6c6445b8e48fca48d630da6fefb7e357b2c82841fbb8de58b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 13:35:01 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 17:38:18 GMT
Expires: Thu, 30 Mar 2023 17:38:17 GMT
Etag: "8744f056699e3aba84dbd3e878c22fefe2cd27e3"
Cache-Control: max-age=445995,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ad788e47df10b4d-OSL
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f0f306ea49f1bd3f358f7579513e7377
c2845c696f6685a211bc040895d28ebf23fa1bc0
cda7588d5040ef3c8e83955838618a0ed0a6ee242d24abf5af697b2289fc8bdb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 13:35:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
collector-pxikkul2rm.px-cloud.net/api/v2/collector
35.190.10.96200 OK 925 B URL HTTP/2 collector-pxikkul2rm.px-cloud.net/api/v2/collector
IP 35.190.10.96:0
File type JSON data\012- , ASCII text, with very long lines (924)
Hash 52c62304314e1b74532ed9cb0e2e255a
31049b36ccf72ca9b3553a593b03c49891c3038c
da5843369946f3e39ad326e31aab1c1191c4da3ea78ceb1a885f76a34a9fdd93
POST /api/v2/collector HTTP/1.1
Host: collector-pxikkul2rm.px-cloud.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 727
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 13:35:01 GMT
content-type: application/json; charset=utf-8
content-length: 925
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.booking.com
timing-allow-origin: *
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/154512398.webp?k=f34c90d1aae9ef4b8c0eea552e829f669eac79b844bd6e88ced019273f4d3c4b&o=&s=1
54.230.111.69200 OK 72 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/154512398.webp?k=f34c90d1aae9ef4b8c0eea552e829f669eac79b844bd6e88ced019273f4d3c4b&o=&s=1
IP 54.230.111.69:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8f65d9111ef2d4aa2b2cb67dc112b64c
0ac0d2a13010ff6a3f65812cd8949393eefaeef2
74b91ae62006cdad22d6e702c8f1f432c2144abd4909cbc997c23d9425b63104
GET /xdata/images/hotel/square600/154512398.webp?k=f34c90d1aae9ef4b8c0eea552e829f669eac79b844bd6e88ced019273f4d3c4b&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 71718
server: nginx
date: Wed, 08 Mar 2023 08:03:07 GMT
etag: "31417662666e828bb8249e0ec967f50bd1dacee2"
expires: Fri, 07 Apr 2023 08:03:07 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -crDACr9nmOCzawtdJJodc7IhkNPDPnAfhGkNgAYQKfoa7iw2O7AFA==
age: 1488714
X-Firefox-Spdy: h2
www.booking.com/js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=503b5f806208003a&ete=&etg=&etcg=&ets=&etgwv=js_wcu_trip_type_based_destination_number_of_types|4
54.230.111.57200 OK 35 B URL HTTP/2 www.booking.com/js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=503b5f806208003a&ete=&etg=&etcg=&ets=&etgwv=js_wcu_trip_type_based_destination_number_of_types|4
IP 54.230.111.57:0
Hash 79a611524d7c43a354c589264cc2376e
2e25649d9a8a208302be0502b47a0e44b07bc7c1
c7a9af81f3467d3c95760df18d0853bda8c191f612fb2e8b2b5c4ed941fbaf1a
GET /js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=503b5f806208003a&ete=&etg=&etcg=&ets=&etgwv=js_wcu_trip_type_based_destination_number_of_types|4 HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=7952588
X-Booking-Info:
X-Booking-Client-Info:
X-Booking-Pageview-Id: 503b5f806208003a
X-Booking-SiteType-Id: 1
X-Booking-Language-Code: en-us
X-Booking-AID: 7952588
X-Booking-Session-Id: 646029efc21b5eb47e482bc14389a45c
X-Booking-ET-Serialized-State: EzfWWEP6bN9n9uyldr1h0GXdI245QzsKBLCCqevjdxCH0CIhRCgUD-5G_pSjNdDMm
Connection: keep-alive
Cookie: _pxhd=rp4wsHuMTYDbO9cwJ-bFqGg1v9-xrR9AAySzgVrcSGlREbROtsZ9lGTHre%2F7JsjgMyxTUtncYO77ExnA4tVoHw%3D%3D%3AQHscagZcwgQ9MFth6amAEQDvw6nSK0OUVANMLpsUtmkT7E9AHUCjwqSbfh-BhGAYZl3PLVuXMOSbi4%2FmrLLpwTErr-gNWM-KsTLUHSnT7Jo%3D; px_init=80; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbbmD9q%2B5pe3ULjCjRhzaVXaIEbejWyKHDjrF%2Be3TRRWmmoDgFnwROHg811kyK6TeyN6w%2Fj5ZFn1EUxyS2EEBfPoGiAxHy1K59kRs4ePXAUGgJyVVFPJYW8s1MdD6HBt1gmeDPUPJ9x8iB7u8bI9bGTRqU9grEVOdmz%2FdQGAPybDU%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sat+Mar+25+2023+13%3A35%3A13+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=2afcfc4c-ac3a-4de4-917b-ded9bd7817c2&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D7952588&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1679751313821; bkng_sso_session=e30; bkng_sso_ses=e30; bkng_sso_auth=CAIQARpydKuDILS1NlPskBo2drJLuJNOrMTobPrIMuQRiKtJFZFhXWCSS6CY/JzfCBglwTt7s6RHaNz6/kGEW94MV1pfDx8jrDxmSLn7A2CFuRZSJNDReLslEtdHEha2rwD+dpXGCUecNVKyEp0q1tBoLo6Z+puF; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 35
server: nginx
date: Sat, 25 Mar 2023 13:35:01 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
strict-transport-security: max-age=604800
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=1da15f82c4000757&e=UmFuZG9tSVYkc2RlIyh9Yea92wm0yRUjnCBymoy8ejJkkbkIVT3cZZ_YfkeUgL-mmqwEFtu03ss
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6S2NBpd8E1A20VoGk-QU8iZ8dl6lsiDfx_5h0IMnDqv2xnX4E278Xw==
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/incentives_cloudfront_sd.iq_ltr/c253238e9a1cc9e8fe7f142462ea4345a2c72799.css
54.230.111.91200 OK 59 kB URL HTTP/2 cf.bstatic.com/static/css/incentives_cloudfront_sd.iq_ltr/c253238e9a1cc9e8fe7f142462ea4345a2c72799.css
IP 54.230.111.91:0
File type ASCII text, with very long lines (7719), with no line terminators
Hash 6fd4a5c391d85670797f4c5ebbabb85f
edce5d24b711d4273d0de49854c165fc6af08d82
af62e3b982d2d79fed8bd84a2be19a4caae7a1679f50531c6b943f085f865431
GET /static/css/incentives_cloudfront_sd.iq_ltr/c253238e9a1cc9e8fe7f142462ea4345a2c72799.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Fri, 17 Mar 2023 01:08:12 GMT
last-modified: Tue, 17 Jan 2023 05:48:22 GMT
etag: W/"63c636a6-1e27"
expires: Sun, 16 Apr 2023 01:08:12 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6YL66xBb6kaH4rk6_V25yjTNISZwcIrau49jKON7PN3j9KD7Egee-g==
age: 736006
X-Firefox-Spdy: h2
accounts.google.com/gsi/client
216.58.207.237200 OK 109 kB URL HTTP/2 accounts.google.com/gsi/client
IP 216.58.207.237:0
Size 109 kB (109335 bytes)
Hash 196545cd989aca02110cbe495b94ee9d
4ecf56cfb29741a5c5ab2cc03fa23fbdacafeae0
ee3cab59fb2db5925e22d68fb9faf241976e5cb210298df6998d3b1dc402ec64
GET /gsi/client HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
expires: Sat, 25 Mar 2023 13:35:01 GMT
date: Sat, 25 Mar 2023 13:35:01 GMT
cache-control: private, max-age=1800
content-security-policy: script-src 'nonce-to2n4xnhbE_HMxjFs8_piQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/236840535.webp?k=ce3c9fd759ec1a8d942b39f8fa1b8f4f388918523b269b9dff75842fec735038&o=&s=1
54.230.111.69200 OK 44 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/236840535.webp?k=ce3c9fd759ec1a8d942b39f8fa1b8f4f388918523b269b9dff75842fec735038&o=&s=1
IP 54.230.111.69:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1a4d2393c57cc8f4803d5142fbec0b15
bc63da22a153bbeb61fc53874e2c86fab68392ff
a4c1d356a4ef9d0eff6a71be2d6a8fd03300bf48087346743197f6a096f1628a
GET /xdata/images/hotel/square600/236840535.webp?k=ce3c9fd759ec1a8d942b39f8fa1b8f4f388918523b269b9dff75842fec735038&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 44364
server: nginx
date: Sat, 25 Feb 2023 04:09:17 GMT
etag: "48ceaa8a65b17b6ec671968b3846481f69f3f28f"
expires: Mon, 27 Mar 2023 04:09:17 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XrcBAtKh5NkxXqo-iBFZ-b54YhOoih-a_g-Ji-OdJP7-9UO1xfyC6g==
age: 2453144
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/262247242.webp?k=ac5f696d6e7c82349e66d4e54d6a12bb0d89003eac8e7734489cc3e5d76944b8&o=&s=1
54.230.111.69200 OK 128 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/262247242.webp?k=ac5f696d6e7c82349e66d4e54d6a12bb0d89003eac8e7734489cc3e5d76944b8&o=&s=1
IP 54.230.111.69:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 128 kB (128296 bytes)
Hash 72a0c3af78637f10b366a61bb49696bc
4dc6662ac320116b46d35edf4bd07870b6924df2
db14d14f8adfd6cb7b6636aef60e31df2bd660773b870ddbbf05c509720bfad1
GET /xdata/images/hotel/square600/262247242.webp?k=ac5f696d6e7c82349e66d4e54d6a12bb0d89003eac8e7734489cc3e5d76944b8&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 128296
server: nginx
date: Wed, 22 Feb 2023 08:13:35 GMT
etag: "adcbf5275c82b8833a84fa5b188752afcecd72fa"
expires: Sat, 08 Apr 2023 08:13:35 GMT
cache-control: max-age=3888000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: V3eChkhnbF_VEW__AbLLBaV959Pnrxl4ow_SRSalSn8ogRTg3fbnJQ==
age: 2697686
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/98662660.webp?k=6e981419e8af97778c5b13a8aca3c264a0be73e9ebfd565cb17c0e4134783564&o=&s=1
54.230.111.69200 OK 40 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/98662660.webp?k=6e981419e8af97778c5b13a8aca3c264a0be73e9ebfd565cb17c0e4134783564&o=&s=1
IP 54.230.111.69:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ae5abd3325e28c423001f3f540d38b80
aa9535e550f5c89977b4f598eb656de20ec767cc
938a823e490adc84ef5d12c5b763baebb2e0ccc0592b3f0faa785a7e94e88055
GET /xdata/images/hotel/square600/98662660.webp?k=6e981419e8af97778c5b13a8aca3c264a0be73e9ebfd565cb17c0e4134783564&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 39584
server: nginx
date: Fri, 03 Mar 2023 11:14:36 GMT
etag: "39b0f612e06ba0e66645bdc61a28024914c9ebb5"
expires: Sun, 02 Apr 2023 11:14:36 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Z9XfoO4FL1ijutq09zQKw2_89v0HTGtU7No2G_YcTf2PzBKEb28axQ==
age: 1909225
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/101174842.webp?k=515b19cd29852207a9e6add777068c1df7931a0dc58ddb80b36af9b605a3a00d&o=&s=1
54.230.111.69200 OK 20 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/101174842.webp?k=515b19cd29852207a9e6add777068c1df7931a0dc58ddb80b36af9b605a3a00d&o=&s=1
IP 54.230.111.69:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ce2edbb1483dd2f1a695bb9fe57f7574
5684d3255717041c66037bd6d76f2aa9761578b7
e5c6e93bfa6be2a02b28f5b1e3bd4ff78eaf4b7738710e73f91c3235db6b3c77
GET /xdata/images/hotel/square600/101174842.webp?k=515b19cd29852207a9e6add777068c1df7931a0dc58ddb80b36af9b605a3a00d&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 19804
server: nginx
date: Tue, 14 Mar 2023 04:36:11 GMT
etag: "3197c2b0a102d5fe6c8230a2b8394e19bb715869"
expires: Thu, 13 Apr 2023 04:36:11 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PodTzmtIinTXKBf0WUBOaq_gGgo5NMWv8yDHBFdELPhse_vKFlhqZQ==
age: 982730
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/218529186.webp?k=669db47d57f15a20a66212f4d267ecde0a5866a896f3d2a3223441aef8b07f6c&o=&s=1
54.230.111.69200 OK 68 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/218529186.webp?k=669db47d57f15a20a66212f4d267ecde0a5866a896f3d2a3223441aef8b07f6c&o=&s=1
IP 54.230.111.69:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1ae4768126a76f4093bcf30833c7a4a0
3b35ab740b2f5860d1c6e0096446247d5b7c406d
9f222b46c7a092237c0e4bc1fe0c972365ba84e64463825f7b5fd31963e94c77
GET /xdata/images/hotel/square600/218529186.webp?k=669db47d57f15a20a66212f4d267ecde0a5866a896f3d2a3223441aef8b07f6c&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 68144
server: nginx
date: Wed, 01 Mar 2023 14:03:52 GMT
etag: "93ba87291c0b3bc032b4843b3d8d9ec4c79f30eb"
expires: Fri, 31 Mar 2023 14:03:52 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: g-SlTNYGGfs-2730omI5qp5NQyLR1enJCaRHq1qEnX5_aAmQGcNbbQ==
age: 2071870
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/286573218.webp?k=05df3eea56c59038cf7fa2ab228ec44c47c66ac49f708bc924c2b24738ea1e61&o=&s=1
54.230.111.69200 OK 65 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/286573218.webp?k=05df3eea56c59038cf7fa2ab228ec44c47c66ac49f708bc924c2b24738ea1e61&o=&s=1
IP 54.230.111.69:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 651317e3637bdb07fead8acac91ff1df
677318c0d98efb6b0fed37c7f2594cedd7458f06
89f50060edeff15d0df29057194bcd3e035944bb5f8b14f64471174ff57a3389
GET /xdata/images/hotel/square600/286573218.webp?k=05df3eea56c59038cf7fa2ab228ec44c47c66ac49f708bc924c2b24738ea1e61&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 65350
server: nginx
date: Mon, 13 Mar 2023 03:19:01 GMT
etag: "f1337903199fbfcca6b1c61f85b97c45d3d93478"
expires: Wed, 12 Apr 2023 03:19:01 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bi0oOzBrFEQIBGHVNWNMaEHiEDnZPhLgAOYft0nvHTuM415vFoSVUA==
age: 1073761
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/109319008.webp?k=b8fc6fbc8d874cffedf49c0080f14933a20995b040dc02aeaee3afad1e79c670&o=&s=1
54.230.111.69200 OK 72 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/109319008.webp?k=b8fc6fbc8d874cffedf49c0080f14933a20995b040dc02aeaee3afad1e79c670&o=&s=1
IP 54.230.111.69:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4bc699d1bd67bda2dd2771f1160ebf07
5bd339ae7baa59fb6ea72d9b0adfc22859458596
deb835a811f25db8ab52d0a20100d29baf15fa5b2ec3f2b4f01210c56fb0163f
GET /xdata/images/hotel/square600/109319008.webp?k=b8fc6fbc8d874cffedf49c0080f14933a20995b040dc02aeaee3afad1e79c670&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 71756
server: nginx
date: Mon, 06 Mar 2023 07:16:05 GMT
etag: "d527d3a285c3021065fbcc2bf74050c883f2e3e1"
expires: Wed, 05 Apr 2023 07:16:05 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7upf-vDIDBXVztbZ3ymS72zzY_H-u7OLzYbwuh3Kds1B_d1QGvvo0w==
age: 1664337
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/98662660.webp?k=6e981419e8af97778c5b13a8aca3c264a0be73e9ebfd565cb17c0e4134783564&o=&s=1
54.230.111.69200 OK 40 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/98662660.webp?k=6e981419e8af97778c5b13a8aca3c264a0be73e9ebfd565cb17c0e4134783564&o=&s=1
IP 54.230.111.69:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ae5abd3325e28c423001f3f540d38b80
aa9535e550f5c89977b4f598eb656de20ec767cc
938a823e490adc84ef5d12c5b763baebb2e0ccc0592b3f0faa785a7e94e88055
GET /xdata/images/hotel/square600/98662660.webp?k=6e981419e8af97778c5b13a8aca3c264a0be73e9ebfd565cb17c0e4134783564&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 39584
server: nginx
date: Fri, 03 Mar 2023 11:14:36 GMT
etag: "39b0f612e06ba0e66645bdc61a28024914c9ebb5"
expires: Sun, 02 Apr 2023 11:14:36 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: onI7cIexRTysBi1YAEa-U687W8wOLFUcwL-3JVOBjhS1e4CojBpOQg==
age: 1909226
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/101174842.webp?k=515b19cd29852207a9e6add777068c1df7931a0dc58ddb80b36af9b605a3a00d&o=&s=1
54.230.111.69200 OK 20 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/101174842.webp?k=515b19cd29852207a9e6add777068c1df7931a0dc58ddb80b36af9b605a3a00d&o=&s=1
IP 54.230.111.69:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ce2edbb1483dd2f1a695bb9fe57f7574
5684d3255717041c66037bd6d76f2aa9761578b7
e5c6e93bfa6be2a02b28f5b1e3bd4ff78eaf4b7738710e73f91c3235db6b3c77
GET /xdata/images/hotel/square600/101174842.webp?k=515b19cd29852207a9e6add777068c1df7931a0dc58ddb80b36af9b605a3a00d&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 19804
server: nginx
date: Tue, 14 Mar 2023 04:36:11 GMT
etag: "3197c2b0a102d5fe6c8230a2b8394e19bb715869"
expires: Thu, 13 Apr 2023 04:36:11 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 686CdqXcXydJsoUbpXhIc1w_OmAcjYgqZAyQ2wDU2eWn3KVqBsFofg==
age: 982731
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/218529186.webp?k=669db47d57f15a20a66212f4d267ecde0a5866a896f3d2a3223441aef8b07f6c&o=&s=1
54.230.111.69200 OK 68 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/218529186.webp?k=669db47d57f15a20a66212f4d267ecde0a5866a896f3d2a3223441aef8b07f6c&o=&s=1
IP 54.230.111.69:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1ae4768126a76f4093bcf30833c7a4a0
3b35ab740b2f5860d1c6e0096446247d5b7c406d
9f222b46c7a092237c0e4bc1fe0c972365ba84e64463825f7b5fd31963e94c77
GET /xdata/images/hotel/square600/218529186.webp?k=669db47d57f15a20a66212f4d267ecde0a5866a896f3d2a3223441aef8b07f6c&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 68144
server: nginx
date: Wed, 01 Mar 2023 14:03:52 GMT
etag: "93ba87291c0b3bc032b4843b3d8d9ec4c79f30eb"
expires: Fri, 31 Mar 2023 14:03:52 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: za3KGPDMMLD3nZolgApO0167Aq8zh4t9j-SorcsR8RdnBzlDTBOXbQ==
age: 2071870
X-Firefox-Spdy: h2
cf.bstatic.com/libs/privacy-consent/releases/2.1.38/customer/cookie-banner.min.js
54.230.111.91200 OK 68 kB URL HTTP/2 cf.bstatic.com/libs/privacy-consent/releases/2.1.38/customer/cookie-banner.min.js
IP 54.230.111.91:0
File type ASCII text, with very long lines (9110), with no line terminators
Hash f5fd9d79e350d55c3517520b27b38cca
e8f28870b9cd9b8800b59c0a5d245359aca8d127
1674616dbba8945fff47740f6e5aeb870b43c9343928623ec2c2ac6e6d51a33c
GET /libs/privacy-consent/releases/2.1.38/customer/cookie-banner.min.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
last-modified: Wed, 01 Feb 2023 09:52:04 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Tue, 07 Mar 2023 21:29:11 GMT
expires: Thu, 06 Apr 2023 21:29:11 GMT
cache-control: max-age=2592000
etag: W/"63da3644-2396"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: L262JIZ28qF-kGv7vuUM5rUgfpREc_8dWIRz7CMdcI6LynZopYfP0Q==
age: 1526747
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/cross_product_index/toggle/fb6f63d62231f9fe552d79b5448620b2e63c726e.svg
54.230.111.91200 OK 47 kB URL HTTP/2 cf.bstatic.com/static/img/cross_product_index/toggle/fb6f63d62231f9fe552d79b5448620b2e63c726e.svg
IP 54.230.111.91:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 9c9e3496b7749d5beafef46baacfed86
fc74debcfd50d210c84fc3985e4de48e7c957322
4c6d610f522e9ea024b10526bb4069e923ae268cb69dd9cf052950b4dfd1c89c
GET /static/img/cross_product_index/toggle/fb6f63d62231f9fe552d79b5448620b2e63c726e.svg HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/58c63e4d3e4eb7090033901e75e2c80c0caa437b.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Sun, 19 Mar 2023 02:41:20 GMT
last-modified: Wed, 10 Apr 2019 11:21:51 GMT
etag: W/"5cadd1cf-5e7"
expires: Tue, 18 Apr 2023 02:41:20 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: mAQf1F98Fka2ZROpSTb83CXWkhjVTGMbLzyFZ7LhQA2ddeQA2S9lig==
age: 557619
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/fonticons_clean/base64/woff/5d61b8a7156073e5e3e9741f65dda44ae3eef7d2.css
54.230.111.91200 OK 233 kB URL HTTP/2 cf.bstatic.com/static/css/fonticons_clean/base64/woff/5d61b8a7156073e5e3e9741f65dda44ae3eef7d2.css
IP 54.230.111.91:0
File type ASCII text, with very long lines (65487)
Size 233 kB (232859 bytes)
Hash 605f120078b975213f5b19b7f98b60f7
5c404dfd5fa11bc99ddd4bf7cacecc9fb67f171a
af6e0622084e2bd7a1c6906d20a303561c742a32b0605a77a8c77e942ece8df0
GET /static/css/fonticons_clean/base64/woff/5d61b8a7156073e5e3e9741f65dda44ae3eef7d2.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:48 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Thu, 16 Mar 2023 05:20:02 GMT
expires: Sat, 08 Apr 2023 19:00:21 GMT
cache-control: max-age=2592000
etag: W/"5cadd1cc-375af"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ywBaVUg9TyHv6qRZ3amL3pSKlZj7Mn5s0DDwQPXW6RhhYnhjFZCLbA==
age: 1362880
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/156985326.webp?k=26e1231c1a1e2dc7fe1dd0ad8ff94bdf807e0917f7a22cc1a15f71ad644743bb&o=&s=1
54.230.111.69200 OK 93 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/156985326.webp?k=26e1231c1a1e2dc7fe1dd0ad8ff94bdf807e0917f7a22cc1a15f71ad644743bb&o=&s=1
IP 54.230.111.69:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c61a50dfef740fa62682940dacaad92d
da520b09281a21446f71695fed7700c2d80200c1
8d94001a72b6689fbb4f0bd7e34118fc7557043833acdb730565f5f3f5f4b622
GET /xdata/images/hotel/square600/156985326.webp?k=26e1231c1a1e2dc7fe1dd0ad8ff94bdf807e0917f7a22cc1a15f71ad644743bb&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 92834
server: nginx
date: Wed, 08 Mar 2023 08:52:00 GMT
etag: "3b0001af7f4c2096e08350343512fae765bd56d7"
expires: Fri, 07 Apr 2023 08:52:00 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5-iu0xe3zl-O3884CbJIiXBp7Y0iRfdwEinZbK8Ff4DVS7zB53mzWw==
age: 1485782
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 3c7b6b42fcf62df912361ee549797d74
8744f056699e3aba84dbd3e878c22fefe2cd27e3
985dc4886c261db6c6445b8e48fca48d630da6fefb7e357b2c82841fbb8de58b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 13:35:02 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 17:38:18 GMT
Expires: Thu, 30 Mar 2023 17:38:17 GMT
Etag: "8744f056699e3aba84dbd3e878c22fefe2cd27e3"
Cache-Control: max-age=445994,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ad788e5af670b4d-OSL
cf.bstatic.com/xdata/images/hotel/square600/279333721.webp?k=8b632db276149b1ce327e8bfea4ac83e15d7ffc4f2b343a30af4bdd49197813e&o=&s=1
54.230.111.69200 OK 52 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/279333721.webp?k=8b632db276149b1ce327e8bfea4ac83e15d7ffc4f2b343a30af4bdd49197813e&o=&s=1
IP 54.230.111.69:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d04eb453f0e7fbbbdbba2a1951a8f290
1a6eb24b80524789134492cff32767adf785b1e9
d05234f5c8999958b2953ba76dc2180eecb1643c24419c009acd808332ba05f9
GET /xdata/images/hotel/square600/279333721.webp?k=8b632db276149b1ce327e8bfea4ac83e15d7ffc4f2b343a30af4bdd49197813e&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 51934
server: nginx
date: Wed, 22 Mar 2023 02:22:54 GMT
etag: "870a500038fa8c86e3ea086290b6823c2e849017"
expires: Fri, 21 Apr 2023 02:22:54 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: H1NKuicoxh5EXpQIYLJROoap5LDKNiSmtx8NeorrfT3U13lsM7p8zA==
age: 299528
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/lazy_load_images_cloudfront_sd/77204d4da4aa41b08b1a4062c8e66e4629550994.js
54.230.111.91200 OK 60 kB URL HTTP/2 cf.bstatic.com/static/js/lazy_load_images_cloudfront_sd/77204d4da4aa41b08b1a4062c8e66e4629550994.js
IP 54.230.111.91:0
File type ASCII text, with very long lines (5619), with no line terminators
Hash 96baa53a7c0e0d1ae8cdfba7c6f89835
853a3a22a33fdfbb56d86a58771c40d8502badc4
c350df07bc5607820209116b9f8786ba05c7bcb6b2a635094e1c32a06f04a581
GET /static/js/lazy_load_images_cloudfront_sd/77204d4da4aa41b08b1a4062c8e66e4629550994.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
last-modified: Tue, 04 Feb 2020 10:19:57 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Thu, 09 Mar 2023 10:19:24 GMT
expires: Fri, 07 Apr 2023 03:00:43 GMT
cache-control: max-age=2592000
etag: W/"5e39454d-15f3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: UP-ctQtJERLqE_T0Bg8xtACg4uPvfQjO_FH0v5RLgg0iI1JN3fAx-g==
age: 1506855
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040861.jpg?k=b3923be5ee58ae482fc655dacb085266ad442072fb5e267b4c425a591d4bd28b&o=
54.230.111.69200 OK 21 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040861.jpg?k=b3923be5ee58ae482fc655dacb085266ad442072fb5e267b4c425a591d4bd28b&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash d39ccfe2bd19314bee77123a52e0aefd
01f8cede86ab8add86197ed6f8a7e22c24412618
3f1572d10d71118c50b1f2478edf42b5bd0b2a5fb02c5f476cef309d1eb16523
GET /xdata/images/xphoto/300x240/140040861.jpg?k=b3923be5ee58ae482fc655dacb085266ad442072fb5e267b4c425a591d4bd28b&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 21427
server: nginx
date: Fri, 10 Mar 2023 04:16:07 GMT
etag: "a4cdc1b900c22bd41953c1ba8169f4e55137eecb"
expires: Sun, 09 Apr 2023 04:16:07 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -aX2H8y6i55jLXeGB3GLDCZ2PfINeZSwZtPOkcdRChoWVD934ONU6A==
age: 1329535
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040786.jpg?k=7af39f6b3d8c0b3e171d876343c3c26e5cc26a877ed41976a716da57c4dc3ef1&o=
54.230.111.69200 OK 7.8 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040786.jpg?k=7af39f6b3d8c0b3e171d876343c3c26e5cc26a877ed41976a716da57c4dc3ef1&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash c598c4dcb3727ca8f99b993060427919
b3640d1c65c21563744a2ac2d55fbe10058c3079
2066310b6a21919e4d7facfff9d2896e7c8630e504942e26f6d63db076cfe9df
GET /xdata/images/xphoto/300x240/140040786.jpg?k=7af39f6b3d8c0b3e171d876343c3c26e5cc26a877ed41976a716da57c4dc3ef1&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 7820
server: nginx
date: Sat, 11 Mar 2023 02:15:28 GMT
etag: "8d17ecd41d52f52e1e1492e9838306a163a21039"
expires: Tue, 25 Apr 2023 02:15:28 GMT
cache-control: max-age=3888000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YMU9VE9CALYlcbcN_-nIDA1wQUUQnUuga1F3YKhn0ZHm9QsbVJaBZw==
age: 1250374
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040692.jpg?k=525a82bc4ff232862f0214df25e19b94535b792955e8f10b3ce2bd151aac0af0&o=
54.230.111.69200 OK 12 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040692.jpg?k=525a82bc4ff232862f0214df25e19b94535b792955e8f10b3ce2bd151aac0af0&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash ffed4c1c9d2ee092ed991df22804e4b9
6a714c2ef5a865bf30de8a7c1d297d9e57534eca
d0f2672a80a9a2a11387d6ef3910d5c75747463b877e45971ec7426629734718
GET /xdata/images/xphoto/300x240/140040692.jpg?k=525a82bc4ff232862f0214df25e19b94535b792955e8f10b3ce2bd151aac0af0&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 11983
server: nginx
date: Wed, 08 Mar 2023 00:25:55 GMT
etag: "9ecb5a58db8f62e198e75ff2fea54ccd4a89a6a1"
expires: Fri, 07 Apr 2023 00:25:55 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bshq0I9XwyAw1nfoH3w6IYJ_qo4Q28cIPhJoETYnPMhHIZ_Z-dUXRw==
age: 1516147
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140050621.jpg?k=f744dfb0b4f12cd94190d738a75eb6a0d5d58e5a971496bb789391c05a60bdba&o=
54.230.111.69200 OK 17 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140050621.jpg?k=f744dfb0b4f12cd94190d738a75eb6a0d5d58e5a971496bb789391c05a60bdba&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 0f61c800a3d9b0841e0c0760099b6bd8
e27b3b3eb5fbe350822cfa78f207c0608c47eecb
340612fdff510f6a24f8bb4e624959f6dad356aead3d5f2abcc2ccbe230d0d25
GET /xdata/images/xphoto/300x240/140050621.jpg?k=f744dfb0b4f12cd94190d738a75eb6a0d5d58e5a971496bb789391c05a60bdba&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 17441
server: nginx
date: Tue, 14 Mar 2023 07:22:38 GMT
etag: "9968332f9ec0ddb5eb32e6f279924849ff023618"
expires: Thu, 13 Apr 2023 07:22:38 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: W-5yaMndI2FwCqlZjOHy6QTq2_JxXa6bWFhn36SYzfM7BtNp3_khHw==
age: 972744
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040791.jpg?k=bb3322bd62efa3aead56ece07d9f6338c98de541b10f919455973354ddcfdf76&o=
54.230.111.69200 OK 8.8 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040791.jpg?k=bb3322bd62efa3aead56ece07d9f6338c98de541b10f919455973354ddcfdf76&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 71501aba33491a4430453715c76dc4b2
85fc9f218b6b721bde7014133bb212e61f28b83c
9ff4140b3f0f4a9b6e8259f033efdb7f9819fbfb1069116c53ab588c13d4bf42
GET /xdata/images/xphoto/300x240/140040791.jpg?k=bb3322bd62efa3aead56ece07d9f6338c98de541b10f919455973354ddcfdf76&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 8799
server: nginx
date: Tue, 21 Mar 2023 01:38:17 GMT
etag: "39fe028a21dfd0ecf6523a0da02ab52f0ea9be7f"
expires: Thu, 20 Apr 2023 01:38:17 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: e1SxAbBUksI21ga4moQ4zBnIr7fjc5U9Acb0SiAOeM8zmWd6uf-Ypw==
age: 388605
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040762.jpg?k=7a9446b459690b60fba2d74ecd856b1c34b896ba3f9e231eff82abbfc8956b15&o=
54.230.111.69200 OK 17 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040762.jpg?k=7a9446b459690b60fba2d74ecd856b1c34b896ba3f9e231eff82abbfc8956b15&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 65e38b40c58827e57fd0cff25009e4ba
8460e679a4da3541a3e7a17aecde2238da826c1d
df53b855667fd3c922bc4c5a960890b5497a7f890c9fb216adaa94fbaf40ac0c
GET /xdata/images/xphoto/300x240/140040762.jpg?k=7a9446b459690b60fba2d74ecd856b1c34b896ba3f9e231eff82abbfc8956b15&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 16779
server: nginx
date: Sat, 25 Feb 2023 11:36:10 GMT
etag: "c3d81db07cc7c2b8ba44bc0368b0620869c99185"
expires: Mon, 27 Mar 2023 11:36:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0NpZ7tWzo2B8IWl9ZcSwZdI3eeZQu-o9Gvaqv4RxDdPl0avEtsDKZg==
age: 2426332
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040491.jpg?k=ad6e6050b93fe65224a29659793533d6562b424ee35882cb392c115d58ea1354&o=
54.230.111.69200 OK 7.0 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040491.jpg?k=ad6e6050b93fe65224a29659793533d6562b424ee35882cb392c115d58ea1354&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash da527d4ac8f4cb107e6a40c480d70d14
97fc6a9c91bb910fcf92b0e5dc4ec079385a0cc9
d4a7526e92a83ee550c888d6a3677b3c694393b979b442cd4c1f4a9d4def9759
GET /xdata/images/xphoto/300x240/140040491.jpg?k=ad6e6050b93fe65224a29659793533d6562b424ee35882cb392c115d58ea1354&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 6982
server: nginx
date: Sat, 18 Mar 2023 07:25:17 GMT
etag: "ee1b63a7e771651beb6701de39a1e1bbebba104e"
expires: Mon, 17 Apr 2023 07:25:17 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WhAknMwisce5WABAbEFn9aXgISFA7HXhcO1AzzuCqYsTEmiANA892A==
age: 626985
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040870.jpg?k=b3e16242c2f01e3493f03bf8b863b6561f8c52b43fa48569d7446d94874bd080&o=
54.230.111.69200 OK 12 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040870.jpg?k=b3e16242c2f01e3493f03bf8b863b6561f8c52b43fa48569d7446d94874bd080&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 53edea1fadbd43623cbaf3da9da24419
a034eab2a360a9b2a94b4bbb2ec999bd27524f17
a9593ed4bdec054997e16c6ede0ceb76dc652041fe6378f8320c571ac460c96b
GET /xdata/images/xphoto/300x240/140040870.jpg?k=b3e16242c2f01e3493f03bf8b863b6561f8c52b43fa48569d7446d94874bd080&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 11607
server: nginx
date: Thu, 09 Mar 2023 04:35:41 GMT
etag: "9aa32863c01a6d9d7e9cf91edf3ac766916977f6"
expires: Sat, 08 Apr 2023 04:35:41 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: usGhh2To85yry3S5ywtm-9-mCy-DlJhzkhX4eodU8QpliruqiteWcQ==
age: 1414761
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040599.jpg?k=574957ec36a2177a4b46f64993121848e62e61ced3932d1fdb6504f95652b439&o=
54.230.111.69200 OK 13 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040599.jpg?k=574957ec36a2177a4b46f64993121848e62e61ced3932d1fdb6504f95652b439&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash d3809e03fb1ae8fcef94ef19dca6228d
b97f714288003f6b3834ea9bc2a961ced5b89606
a000cfd08bff2b7ba4397d160bc02de6d5283e18bb06c8b3b018f41460108000
GET /xdata/images/xphoto/300x240/140040599.jpg?k=574957ec36a2177a4b46f64993121848e62e61ced3932d1fdb6504f95652b439&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 12804
server: nginx
date: Sun, 19 Mar 2023 05:45:28 GMT
etag: "76b227dcd9b81bf2d6a4ea220eb395300fb55995"
expires: Tue, 18 Apr 2023 05:45:28 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -Kseodf_76d-EyOqb6HFSTO_O5b-EQ8OBu5-HSHTMF1Ncazph4ytDg==
age: 546574
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/76.29ea6195.chunk.css
54.230.111.91200 OK 23 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/76.29ea6195.chunk.css
IP 54.230.111.91:0
File type ASCII text, with very long lines (1691)
Hash 4f69cf0697a82b12a2d4e2ef751a2c0c
1c57fc458b5f69c2bdaf5dddef991108505f0ff7
b80d908edb2c50c7ce4ff0ac7936104092a63ebaf9c53264fafd17aa6ef959db
GET /psb/capla/static/css/76.29ea6195.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Mon, 06 Mar 2023 14:01:16 GMT
etag: W/"989c62f2f70b1385bf59101fe197a309"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 03 Mar 2023 14:07:01 GMT
x-amz-expiration: expiry-date="Sat, 01 Jul 2023 14:07:01 GMT", rule-id=""
expires: Wed, 05 Apr 2023 14:01:16 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZCSmzePIQ1IQDxn0UFCnWSBApxCM-Kdv5d19uRehqQL4l-AmWRdkEw==
age: 1640023
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040786.jpg?k=7af39f6b3d8c0b3e171d876343c3c26e5cc26a877ed41976a716da57c4dc3ef1&o=
54.230.111.69200 OK 7.8 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040786.jpg?k=7af39f6b3d8c0b3e171d876343c3c26e5cc26a877ed41976a716da57c4dc3ef1&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash c598c4dcb3727ca8f99b993060427919
b3640d1c65c21563744a2ac2d55fbe10058c3079
2066310b6a21919e4d7facfff9d2896e7c8630e504942e26f6d63db076cfe9df
GET /xdata/images/xphoto/300x240/140040786.jpg?k=7af39f6b3d8c0b3e171d876343c3c26e5cc26a877ed41976a716da57c4dc3ef1&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 7820
server: nginx
date: Sat, 11 Mar 2023 02:15:28 GMT
etag: "8d17ecd41d52f52e1e1492e9838306a163a21039"
expires: Tue, 25 Apr 2023 02:15:28 GMT
cache-control: max-age=3888000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: c8rmPMvOuHiZl6CVgbX0ZuihINr1b_MWns5GTdQpfBzILn6xLGrbJA==
age: 1250374
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040692.jpg?k=525a82bc4ff232862f0214df25e19b94535b792955e8f10b3ce2bd151aac0af0&o=
54.230.111.69200 OK 12 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040692.jpg?k=525a82bc4ff232862f0214df25e19b94535b792955e8f10b3ce2bd151aac0af0&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash ffed4c1c9d2ee092ed991df22804e4b9
6a714c2ef5a865bf30de8a7c1d297d9e57534eca
d0f2672a80a9a2a11387d6ef3910d5c75747463b877e45971ec7426629734718
GET /xdata/images/xphoto/300x240/140040692.jpg?k=525a82bc4ff232862f0214df25e19b94535b792955e8f10b3ce2bd151aac0af0&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 11983
server: nginx
date: Wed, 08 Mar 2023 00:25:55 GMT
etag: "9ecb5a58db8f62e198e75ff2fea54ccd4a89a6a1"
expires: Fri, 07 Apr 2023 00:25:55 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4alYJ_pvB6rAGQJ9sOl2t7WC_WTPhlTRx8YdluKlbBtq8yENheizDw==
age: 1516147
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040491.jpg?k=ad6e6050b93fe65224a29659793533d6562b424ee35882cb392c115d58ea1354&o=
54.230.111.69200 OK 7.0 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040491.jpg?k=ad6e6050b93fe65224a29659793533d6562b424ee35882cb392c115d58ea1354&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash da527d4ac8f4cb107e6a40c480d70d14
97fc6a9c91bb910fcf92b0e5dc4ec079385a0cc9
d4a7526e92a83ee550c888d6a3677b3c694393b979b442cd4c1f4a9d4def9759
GET /xdata/images/xphoto/300x240/140040491.jpg?k=ad6e6050b93fe65224a29659793533d6562b424ee35882cb392c115d58ea1354&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 6982
server: nginx
date: Sat, 18 Mar 2023 07:25:17 GMT
etag: "ee1b63a7e771651beb6701de39a1e1bbebba104e"
expires: Mon, 17 Apr 2023 07:25:17 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5TSmNrnHPfzKBFh4REJLw_dc6bSC_mkYE1vB7l9ZoNGH-1UcZkkttg==
age: 626985
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040870.jpg?k=b3e16242c2f01e3493f03bf8b863b6561f8c52b43fa48569d7446d94874bd080&o=
54.230.111.69200 OK 12 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040870.jpg?k=b3e16242c2f01e3493f03bf8b863b6561f8c52b43fa48569d7446d94874bd080&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 53edea1fadbd43623cbaf3da9da24419
a034eab2a360a9b2a94b4bbb2ec999bd27524f17
a9593ed4bdec054997e16c6ede0ceb76dc652041fe6378f8320c571ac460c96b
GET /xdata/images/xphoto/300x240/140040870.jpg?k=b3e16242c2f01e3493f03bf8b863b6561f8c52b43fa48569d7446d94874bd080&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 11607
server: nginx
date: Thu, 09 Mar 2023 04:35:41 GMT
etag: "9aa32863c01a6d9d7e9cf91edf3ac766916977f6"
expires: Sat, 08 Apr 2023 04:35:41 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: UbCkKvMMdY0MjbGCgDXcx4GJ6J-5Eb8-oZH5A6duVs63jOJDSU6Dqw==
age: 1414761
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040599.jpg?k=574957ec36a2177a4b46f64993121848e62e61ced3932d1fdb6504f95652b439&o=
54.230.111.69200 OK 13 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040599.jpg?k=574957ec36a2177a4b46f64993121848e62e61ced3932d1fdb6504f95652b439&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash d3809e03fb1ae8fcef94ef19dca6228d
b97f714288003f6b3834ea9bc2a961ced5b89606
a000cfd08bff2b7ba4397d160bc02de6d5283e18bb06c8b3b018f41460108000
GET /xdata/images/xphoto/300x240/140040599.jpg?k=574957ec36a2177a4b46f64993121848e62e61ced3932d1fdb6504f95652b439&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 12804
server: nginx
date: Sun, 19 Mar 2023 05:45:28 GMT
etag: "76b227dcd9b81bf2d6a4ea220eb395300fb55995"
expires: Tue, 18 Apr 2023 05:45:28 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -YXDJoxMsCwyJ5qM94UgSCgNvFCrctH5rWmapA16K93vPhyp7WbZkw==
age: 546574
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140050289.jpg?k=38a9f0bcadf1da09016399bec85f5d5b1ec53a8c24ae929da523e09c47db429b&o=
54.230.111.69200 OK 18 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140050289.jpg?k=38a9f0bcadf1da09016399bec85f5d5b1ec53a8c24ae929da523e09c47db429b&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash c11c7f9c8c482a844fa9f35a23ef554c
e4d700adcb02b63e9c6111dd857512eee1cbefe2
99aae4a81e7e564eecc8b4ed4db1d692542e37ee7b486bca7eef047ca0849056
GET /xdata/images/xphoto/300x240/140050289.jpg?k=38a9f0bcadf1da09016399bec85f5d5b1ec53a8c24ae929da523e09c47db429b&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 17735
server: nginx
date: Tue, 21 Mar 2023 07:49:59 GMT
etag: "fe7cb3273c22c5956efa72bf400cb3693c7d4272"
expires: Thu, 20 Apr 2023 07:49:59 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KiWT1qGqtsdk5hYw9QbwMCWwF4SMgAWLG38Wy-FLucW16NdpN1-iCA==
age: 366303
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040549.jpg?k=47295571a3c7ad6e86a62047a4aceb3c8c0a19f5b4b86d6eafab42d61abad33e&o=
54.230.111.69200 OK 14 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040549.jpg?k=47295571a3c7ad6e86a62047a4aceb3c8c0a19f5b4b86d6eafab42d61abad33e&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash f53be5a5dc8a5e0852c37ecef3f57e80
95e46d745e83d3e5767d50c82ddda8b871239225
4f4fd90acbda0f964439cf256b5ad16a879a517226656911b91ed51f96e38171
GET /xdata/images/xphoto/300x240/140040549.jpg?k=47295571a3c7ad6e86a62047a4aceb3c8c0a19f5b4b86d6eafab42d61abad33e&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 13659
server: nginx
date: Sun, 12 Mar 2023 07:59:44 GMT
etag: "32b5ceef2be605d808d104f7751705f50e0878a5"
expires: Tue, 11 Apr 2023 07:59:44 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: IoCHWDUJDd2PUB3qPthrm-m22cNASsHcCkC1snV6XA9LJz7oeoRUlQ==
age: 1143318
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040807.jpg?k=9cab54a3a43d3b941837c79958b284376005784e9ded8dadcbb83e39e25fcb9e&o=
54.230.111.69200 OK 17 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040807.jpg?k=9cab54a3a43d3b941837c79958b284376005784e9ded8dadcbb83e39e25fcb9e&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 6b69600400c2e34e52ac22b8280a471e
04b0fa66f7203b41bc5bcb9773afdb035cf68793
1e1547673775158c1b697974f7161f71b87530d3f1e565f18bd975579e67ef57
GET /xdata/images/xphoto/300x240/140040807.jpg?k=9cab54a3a43d3b941837c79958b284376005784e9ded8dadcbb83e39e25fcb9e&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 17072
server: nginx
date: Sun, 19 Mar 2023 05:45:28 GMT
etag: "47cba472d4195142396456c0755269a624dfb5d7"
expires: Tue, 18 Apr 2023 05:45:28 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: H0Ml45BL8gYPR6QaezuTUFzqk2dSnv0vizUyMbJqmpc_77K3CJSCwg==
age: 546574
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140052116.jpg?k=e94346578a825ccf04f419c702577198d3d6c797aec34b2b0f58678af9e90dd0&o=
54.230.111.69200 OK 12 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140052116.jpg?k=e94346578a825ccf04f419c702577198d3d6c797aec34b2b0f58678af9e90dd0&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 4dde8ac450ded1d8d519f89b54df536e
c0a91335d7ae7b2193a125f7dd713a3fa10a3c03
7f9e23934ff3e05b17c81977e3429b17908bf98f5b7fa350ba102a33565fe523
GET /xdata/images/xphoto/300x240/140052116.jpg?k=e94346578a825ccf04f419c702577198d3d6c797aec34b2b0f58678af9e90dd0&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 11892
server: nginx
date: Sat, 25 Mar 2023 04:24:18 GMT
etag: "a3e86f2564797bfa854a4a2886526cdc6c2da348"
expires: Mon, 24 Apr 2023 04:24:18 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3Fz3G1d9XvROfObXWo57V4ampio14dfW0oFFQyiJGQw5FLl3RVc1iQ==
age: 33044
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040444.jpg?k=78183a30bc77a7f4eb2550c457f0645c654b2c70f80b40258ffa926712392726&o=
54.230.111.69200 OK 18 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040444.jpg?k=78183a30bc77a7f4eb2550c457f0645c654b2c70f80b40258ffa926712392726&o=
IP 54.230.111.69:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 6f57315028bfce58a9111a97386b32f8
f865cb601c242c7945fceb5cdbd39af8e22ee68d
b51cb67e6a957bf93a45b47510f5b355d3779812dc4d46a3f2653baa3bbd8396
GET /xdata/images/xphoto/300x240/140040444.jpg?k=78183a30bc77a7f4eb2550c457f0645c654b2c70f80b40258ffa926712392726&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 18535
server: nginx
date: Wed, 22 Mar 2023 03:51:01 GMT
etag: "0755858058a5e94834c8878dac70a19ea888b871"
expires: Fri, 21 Apr 2023 03:51:01 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CGDgnzL7cdiAKTxZrUgMlhTh2mcovlozgv5cBKyAqQWldKI68xvm_A==
age: 294241
X-Firefox-Spdy: h2
hit.teratracker.com/?s2=7piWk5y7W2YhZZaA%2Fxu3budnw1A0AA7jlmWik5GdFxrSCl4FqWwpm7GiPNLclW5CmKXdciXR%2Fh9xTuk9FWVqjrUxyJ0en2SMoljznxankzryyUp3Dtc%2FGJUBqUOeTKU4izR4shKoiDdzFWx9EPxtHDR1%2Flh7JlmPk8H45Emfk5qmZS1g19jYN7eSeB5mqwRIe9i%2Fjl0%3D&v=6511624661.a0532be5.2a8a040d
104.21.75.190302 Found 11 kB URL HTTP/2 hit.teratracker.com/?s2=7piWk5y7W2YhZZaA%2Fxu3budnw1A0AA7jlmWik5GdFxrSCl4FqWwpm7GiPNLclW5CmKXdciXR%2Fh9xTuk9FWVqjrUxyJ0en2SMoljznxankzryyUp3Dtc%2FGJUBqUOeTKU4izR4shKoiDdzFWx9EPxtHDR1%2Flh7JlmPk8H45Emfk5qmZS1g19jYN7eSeB5mqwRIe9i%2Fjl0%3D&v=6511624661.a0532be5.2a8a040d
IP 104.21.75.190:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 803716a18dfcbff4ec89fc3c654cb930
a67609f33b295ca8cd8c1c886b50f272d98628cc
c497e60866f9e42e0307d57527ac5220da67166f21a77c45cd6f99f8c3fdef50
GET /?s2=7piWk5y7W2YhZZaA%2Fxu3budnw1A0AA7jlmWik5GdFxrSCl4FqWwpm7GiPNLclW5CmKXdciXR%2Fh9xTuk9FWVqjrUxyJ0en2SMoljznxankzryyUp3Dtc%2FGJUBqUOeTKU4izR4shKoiDdzFWx9EPxtHDR1%2Flh7JlmPk8H45Emfk5qmZS1g19jYN7eSeB5mqwRIe9i%2Fjl0%3D&v=6511624661.a0532be5.2a8a040d HTTP/1.1
Host: hit.teratracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ishku-wbq.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 25 Mar 2023 13:34:57 GMT
content-type: text/html; charset=UTF-8
location: https://hit.teratracker.com/1I4b86TSR?x3v=MTGEBzCvgiQlYbgdfc8TslLgSYNPPN2n2pctUBDLJGFtsMfTUwak%2BA4TRDzq%2F9LwYP9D9RNp3sTsPQNrA0cLVzbGKyLZLvJWFBq4wgFqVnN65AeSVeNXNgKToXDy3ajTmUxfIo5wWFXgXWfbwkenZ77l61oIeDO%2BxDT87uxrwTYi7ao8dImgzA%3D%3D&sk=eaa3c9072007cd2f7e31137f17b0e0b2
access-control-allow-origin: *
referrer-policy: no-referrer
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nRqKKcUkpxA%2BoO7QFhuSzpEqbMDAzcpQAxa8tAIzS%2BtmItJXv1IW3BbgaHtRiEbQ0XvsTO63D0oMiOjAK7IY%2F%2BNDTvZ7Dij%2FptNbb2UmCRoJoaZujG0bhizfUAXZpeTYK1DI5Q6G"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ad788cae8590b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/13125860.webp?k=e148feeb802ac3d28d1391dad9e4cf1e12d9231f897d0b53ca067bde8a9d3355&o=&s=1
54.230.111.69200 OK 60 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/13125860.webp?k=e148feeb802ac3d28d1391dad9e4cf1e12d9231f897d0b53ca067bde8a9d3355&o=&s=1
IP 54.230.111.69:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0329fb19001ce1f08a5c54a4f0e14ef1
3746e16117b5165f4eb2075a717a5c3821705c92
e71dc53498cb3d2e1271eeefdcc4e24f959b73e24b24809cfc83dcdd0a12de08
GET /xdata/images/hotel/square600/13125860.webp?k=e148feeb802ac3d28d1391dad9e4cf1e12d9231f897d0b53ca067bde8a9d3355&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 60384
server: nginx
date: Thu, 09 Mar 2023 02:10:25 GMT
etag: "8e0a70244d5e9a4427dfbb840a9e6e4a3bbd4746"
expires: Sat, 08 Apr 2023 02:10:25 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BgVg4ndpbef_mbyYmz_bPHBd6rz2SirFoAM_SsS-hxuXul4MmsgC6Q==
age: 1423477
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/87428762.webp?k=9a065fcd92168145d8c8358701662c76793535597b678efc8f6921c8e3c188e6&o=&s=1
54.230.111.69200 OK 48 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/87428762.webp?k=9a065fcd92168145d8c8358701662c76793535597b678efc8f6921c8e3c188e6&o=&s=1
IP 54.230.111.69:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ca4a151bce3aae248256f42fb3571039
7b604ef0875745900683208d6d5d3ec446c80c52
17961e2dc69e730f0aca9f0e96057a87990141d415dceee221a37e29aab7bc8e
GET /xdata/images/hotel/square600/87428762.webp?k=9a065fcd92168145d8c8358701662c76793535597b678efc8f6921c8e3c188e6&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 48402
server: nginx
date: Fri, 24 Feb 2023 01:11:45 GMT
etag: "b6fe079cde5c4cb27b55fcc5cb4d645395dd04ca"
expires: Sun, 26 Mar 2023 01:11:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YxeoFB_vEa93l0QWQdUvq6yEnbdQ4kYQK-WYu3Cht0I9aJEpKBWNBA==
age: 2550197
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/29466558.webp?k=fa323cf3e030ae6b41c8b475fe2853ae4e9e38148501d68dd5b915905dcea664&o=&s=1
54.230.111.69200 OK 57 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/29466558.webp?k=fa323cf3e030ae6b41c8b475fe2853ae4e9e38148501d68dd5b915905dcea664&o=&s=1
IP 54.230.111.69:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a326cddd2766fcf01137137afa27b7ed
bb6c0c7df182252e90d865dc15f7d8a7d603c273
d01e06c160e130aff36646885bee3f271eddb260094d872bc533cf49b010d84c
GET /xdata/images/hotel/square600/29466558.webp?k=fa323cf3e030ae6b41c8b475fe2853ae4e9e38148501d68dd5b915905dcea664&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 56656
server: nginx
date: Wed, 22 Mar 2023 01:21:58 GMT
etag: "fcd64eb9628d617d78fa5dcb563cf885e3f785e7"
expires: Fri, 21 Apr 2023 01:21:58 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kamy7Vs57oWQK55QHqfdt3N3eTY-iwYPK68t291logXKsIeZyerjeA==
age: 303184
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/420377357.webp?k=73f8c029827076805ee781cdf818bb5e5e9b963227d74e4ebe071f3564ae4423&o=&s=1
54.230.111.91200 OK 44 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/420377357.webp?k=73f8c029827076805ee781cdf818bb5e5e9b963227d74e4ebe071f3564ae4423&o=&s=1
IP 54.230.111.91:0
File type gzip compressed data, max compression\012- data
Hash 895957740738af8f61dae3353cb8345b
323d6ffbc916699892619f119623c5aaea1228c7
1455efe0066ae392d100aa8e92c105626a29b14e8d8515b79bc2ba8454da73ee
GET /xdata/images/hotel/square600/420377357.webp?k=73f8c029827076805ee781cdf818bb5e5e9b963227d74e4ebe071f3564ae4423&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 43348
server: nginx
date: Thu, 23 Mar 2023 11:42:33 GMT
etag: "052ffc7f825bc166cf56b61652af7431d07b6772"
expires: Sat, 22 Apr 2023 11:42:33 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8hICNfi_64CRTuAXM9Un6qmt_CSLZ5j4o53dP7FO-lIA7hPVSMhzNQ==
age: 179549
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/421852968.webp?k=f3889222c82f4a8e3783dddb5f1cc04d6140eeb2d5cb8297817a15aacfe4d191&o=&s=1
54.230.111.91200 OK 48 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/421852968.webp?k=f3889222c82f4a8e3783dddb5f1cc04d6140eeb2d5cb8297817a15aacfe4d191&o=&s=1
IP 54.230.111.91:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6ec5534eacb5eca078aa4adcf9b3daa0
861a1c6d83dff1f56153f68b267f9eeb9aa4cb2c
81c2a51cc8e6f40ccb75c9ac5a47dd61e127f3c6c53d4428a9d92fda9282427e
GET /xdata/images/hotel/square600/421852968.webp?k=f3889222c82f4a8e3783dddb5f1cc04d6140eeb2d5cb8297817a15aacfe4d191&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 47698
server: nginx
date: Sat, 18 Feb 2023 07:43:27 GMT
etag: "3366d1b1a1352b1b3d48dca4e34a841cd30cf562"
expires: Tue, 04 Apr 2023 07:43:27 GMT
cache-control: max-age=3888000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9HdD3OqVGBxb790J6y4vRhB0j8qzKiqSoIRxjEmpTP8JLR4B5CevAw==
age: 3045095
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/270323047.webp?k=ace18ab936560dac1e01f7d0f4b44206d354a8683e124c62f3f10c25cede9bd2&o=&s=1
54.230.111.91200 OK 22 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/270323047.webp?k=ace18ab936560dac1e01f7d0f4b44206d354a8683e124c62f3f10c25cede9bd2&o=&s=1
IP 54.230.111.91:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b099da28fae15a46bbfbd89b799f121c
01b26955d4c685e293e9e97d4a3fe51a19ee3c13
9a61b0c464b3593f2ed9c929ec7bc23697a125de4be4dd282aa9578e2d2162c0
GET /xdata/images/hotel/square600/270323047.webp?k=ace18ab936560dac1e01f7d0f4b44206d354a8683e124c62f3f10c25cede9bd2&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 22282
server: nginx
date: Tue, 14 Mar 2023 14:28:22 GMT
etag: "340a014c21bab82dc24d1a7cab21e7758587e38f"
expires: Thu, 13 Apr 2023 14:28:22 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vyNhPLPfE6DXK2YsOxJYoV0wkPeD5NlHYTEeR2LZxR-UA3buqnJsww==
age: 947200
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/74065680.webp?k=892944ae3b207b552dc2de29bb3354d300e420630efe85ede890a9ec4c48f89a&o=&s=1
54.230.111.91200 OK 60 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/74065680.webp?k=892944ae3b207b552dc2de29bb3354d300e420630efe85ede890a9ec4c48f89a&o=&s=1
IP 54.230.111.91:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 23c80066c6edca295dcad549a18a8913
e72c7fd475b3ab8db132d2f3d10ada1e816e95d4
85386c12c2dae7d2f2acfb8b9c6ca0dfa35e6df9e69c1dabc8105998d5a94bf8
GET /xdata/images/hotel/square600/74065680.webp?k=892944ae3b207b552dc2de29bb3354d300e420630efe85ede890a9ec4c48f89a&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 59694
server: nginx
date: Sat, 18 Mar 2023 04:19:33 GMT
etag: "99152df2bdf6303972477ec87a1a45d4f485c400"
expires: Mon, 17 Apr 2023 04:19:33 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7RwpCXCQD4ruj8tiBd9-QgGENXtHdoW5ZBNM5bCxRST7xfh7qHZS3A==
age: 638129
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/64768746.webp?k=bcadbce621d8b9ab9941b6dc1fa4d7905e1fdfb52cdf45798fc68675e3e53a53&o=&s=1
54.230.111.91200 OK 35 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/64768746.webp?k=bcadbce621d8b9ab9941b6dc1fa4d7905e1fdfb52cdf45798fc68675e3e53a53&o=&s=1
IP 54.230.111.91:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2f9fb1d0617a742da0432f4797a27fa3
56ce03a8ec3d486ed75c7986431e6c40901a5b85
254b041f258cc36e8baa47942f0f51b526c3e7705d7d2866e1a124cd394948fe
GET /xdata/images/hotel/square600/64768746.webp?k=bcadbce621d8b9ab9941b6dc1fa4d7905e1fdfb52cdf45798fc68675e3e53a53&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 35294
server: nginx
date: Mon, 27 Feb 2023 11:48:54 GMT
etag: "1014669d7aa5141be325fcac4052b5c7c0035e92"
expires: Wed, 29 Mar 2023 11:48:54 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zq3l57DQav5ByNW4V7O8eA5FfpmqhtxLmIRvJGtafN6IG6U1hhGhDg==
age: 2252768
X-Firefox-Spdy: h2
account.booking.com/static/booking-sso.v1.js
54.230.111.55200 OK 3.6 kB URL HTTP/2 account.booking.com/static/booking-sso.v1.js
IP 54.230.111.55:0
File type ASCII text, with very long lines (3558)
Hash 57974846eeec5ba455de4e7ed2264627
e3319c816120f819a93f1bab2bb0683d9a6d8460
fb0b3aef25c12ebb0a3d15eef6c367e790b1a8ea0660ae5ad4ea5d24b83778f0
GET /static/booking-sso.v1.js HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Connection: keep-alive
Cookie: _pxhd=rp4wsHuMTYDbO9cwJ-bFqGg1v9-xrR9AAySzgVrcSGlREbROtsZ9lGTHre%2F7JsjgMyxTUtncYO77ExnA4tVoHw%3D%3D%3AQHscagZcwgQ9MFth6amAEQDvw6nSK0OUVANMLpsUtmkT7E9AHUCjwqSbfh-BhGAYZl3PLVuXMOSbi4%2FmrLLpwTErr-gNWM-KsTLUHSnT7Jo%3D; px_init=80; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbbmD9q%2B5pe3ULjCjRhzaVXaIEbejWyKHDjrF%2Be3TRRWmmoDgFnwROHg811kyK6TeyN6w%2Fj5ZFn1EUxyS2EEBfPoGiAxHy1K59kRs4ePXAUGgJyVVFPJYW8s1MdD6HBt1gmeDPUPJ9x8iB7u8bI9bGTRqU9grEVOdmz%2FdQGAPybDU%3D; cors_js=1; bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJzZXNzaW9ucyI6W10sImRhdGFfc3ViamVjdF9pZCI6IjE5ZmNiNDkzLWZiOWYtNGMwNy05Yzk5LWQ0YWQ4OTA4NmZlMCJ9fQ; bkng_sso_session=e30; bkng_sso_ses=e30; bkng_sso_auth=CAIQARpydKuDILS1NlPskBo2drJLuJNOrMTobPrIMuQRiKtJFZFhXWCSS6CY/JzfCBglwTt7s6RHaNz6/kGEW94MV1pfDx8jrDxmSLn7A2CFuRZSJNDReLslEtdHEha2rwD+dpXGCUecNVKyEp0q1tBoLo6Z+puF; BJS=-; _px3=0767979f5ca6bcbccdb5615b996596e13c05611d6b44bfe57e4495f04b72cee0:fTrLZzYyraAvUB3VgbzJ7yBXSNii9X80MWgqsMz54b0iTXoaO0CMi9GE3Ensgv7sXHWA37DIfQnDOcV1/BYRnA==:1000:pX9MpjOfom7EO7Ur6gYje1VmbMcnM9/9pSvVjMz7/UWvXLsdcdq+9ZDx5yf/QPFZtcfFiLg/Ipj+akH9GVo8OhNbeLOaFE8spnZ1hrvr0gk7Rr/cr7J7LY9Zcnad/ds905LFhaiFyey63+YTunzQz9sMOCJAFdggcUfzSYdgFTPrlCGrMEYKnPDowV3Kc3LxdaKHHZM/ANoFQ2+T4InfBQ==; pxcts=d81e58be-cb11-11ed-92b9-4c694e6e7655; _pxvid=d7c20d9a-cb11-11ed-93e4-4c5076475162; _pxde=572507c7c256fe678b6ec57022242d1cc2c8d4f1683bb27a4a6e7572e444d5f0:eyJ0aW1lc3RhbXAiOjE2Nzk3NTEzMDE5MzAsImZfa2IiOjAsImlwY19pZCI6W119
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 3559
server: envoy
date: Sat, 25 Mar 2023 13:35:02 GMT
last-modified: Sat, 25 Mar 2023 01:27:38 GMT
etag: "641e4e0a-de7"
accept-ranges: bytes
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 3bff78035f818b6a3185b0f5f4586410.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: p3ic8MGDxpYPAu9Ylxrmgc0QIvuCAjEhPDbyVQ2pPBSWuAUg4nPdwA==
X-Firefox-Spdy: h2
www.booking.com/dml/graphql?aid=7952588&lang=en-us
54.230.111.57200 OK 3.2 kB URL HTTP/2 www.booking.com/dml/graphql?aid=7952588&lang=en-us
IP 54.230.111.57:0
Hash cf1ea521778059be44075f3516b3eddf
fe67a1347d9ca5a01f641d4264590bcceaa6ff3f
65f9bf5d69ea7f1a19ad14e7852a4d2151fdd033b6371e01af3bbb96d86ff820
POST /dml/graphql?aid=7952588&lang=en-us HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=7952588
content-type: application/json
x-booking-context-action-name: index
x-booking-context-aid: 7952588
x-booking-csrf-token: eyJhbGciOiJIUzUxMiJ9.eyJpc3MiOiJjb250ZXh0LWVucmljaG1lbnQtYXBpIiwic3ViIjoiY3NyZi10b2tlbiIsImlhdCI6MTY3OTc1MTI5OCwiZXhwIjoxNjc5ODM3Njk4fQ.SkmrO6opthq9etG69gdRnYRtU0NZtxgFimZrPCq92LjiJ7l8xCACdTiQTMTm-fGqdOEPvOqvXyNoB5jailngXA
x-booking-et-serialized-state: EzfWWEP6bN9n9uyldr1h0GXdI245QzsKBLCCqevjdxCH0CIhRCgUD-5G_pSjNdDMm
x-booking-pageview-id: 503b5f806208003a
x-booking-site-type-id: 1
x-booking-topic: capla_browser_b-index-lp-web-mfe
Origin: https://www.booking.com
Content-Length: 1719
Connection: keep-alive
Cookie: _pxhd=rp4wsHuMTYDbO9cwJ-bFqGg1v9-xrR9AAySzgVrcSGlREbROtsZ9lGTHre%2F7JsjgMyxTUtncYO77ExnA4tVoHw%3D%3D%3AQHscagZcwgQ9MFth6amAEQDvw6nSK0OUVANMLpsUtmkT7E9AHUCjwqSbfh-BhGAYZl3PLVuXMOSbi4%2FmrLLpwTErr-gNWM-KsTLUHSnT7Jo%3D; px_init=80; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbbmD9q%2B5pe3ULjCjRhzaVXaIEbejWyKHDjrF%2Be3TRRWmmoDgFnwROHg811kyK6TeyN6w%2Fj5ZFn1EUxyS2EEBfPoGiAxHy1K59kRs4ePXAUGgJyVVFPJYW8s1MdD6HBt1gmeDPUPJ9x8iB7u8bI9bGTRqU9grEVOdmz%2FdQGAPybDU%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sat+Mar+25+2023+13%3A35%3A13+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=2afcfc4c-ac3a-4de4-917b-ded9bd7817c2&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D7952588&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1679751313821; bkng_sso_session=e30; bkng_sso_ses=e30; bkng_sso_auth=CAIQARpydKuDILS1NlPskBo2drJLuJNOrMTobPrIMuQRiKtJFZFhXWCSS6CY/JzfCBglwTt7s6RHaNz6/kGEW94MV1pfDx8jrDxmSLn7A2CFuRZSJNDReLslEtdHEha2rwD+dpXGCUecNVKyEp0q1tBoLo6Z+puF; BJS=-; _px3=0767979f5ca6bcbccdb5615b996596e13c05611d6b44bfe57e4495f04b72cee0:fTrLZzYyraAvUB3VgbzJ7yBXSNii9X80MWgqsMz54b0iTXoaO0CMi9GE3Ensgv7sXHWA37DIfQnDOcV1/BYRnA==:1000:pX9MpjOfom7EO7Ur6gYje1VmbMcnM9/9pSvVjMz7/UWvXLsdcdq+9ZDx5yf/QPFZtcfFiLg/Ipj+akH9GVo8OhNbeLOaFE8spnZ1hrvr0gk7Rr/cr7J7LY9Zcnad/ds905LFhaiFyey63+YTunzQz9sMOCJAFdggcUfzSYdgFTPrlCGrMEYKnPDowV3Kc3LxdaKHHZM/ANoFQ2+T4InfBQ==; pxcts=d81e58be-cb11-11ed-92b9-4c694e6e7655; _pxvid=d7c20d9a-cb11-11ed-93e4-4c5076475162; _pxff_ddtc=1; _pxde=572507c7c256fe678b6ec57022242d1cc2c8d4f1683bb27a4a6e7572e444d5f0:eyJ0aW1lc3RhbXAiOjE2Nzk3NTEzMDE5MzAsImZfa2IiOjAsImlwY19pZCI6W119
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 3139
server: nginx
date: Sat, 25 Mar 2023 13:35:02 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbnmKTRaewPBtcTJJMbtWuHvWLCPRKptaQnFPkdfxVxlXYDwveKv5eXNTgy40vIchX8Harhz5Hbz0dy0ccwpdER2sE5WHiVFO2npHeWQb8pAy6NnOXzn3tGSvjmJcE0vW4YgXmkMhukx2wipdVg7xn5a449b1nowLUfCNjzSTfylc%3D; domain=.booking.com; path=/; expires=Thu, 23-Mar-2028 13:35:02 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: JOGUmpRow3XyP0PanTMIOnoe0I7akDpcM5VP1Li8AMkd_oasgwHKwg==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ce6948c57f579a85042a4388c45514d6
4b3002c036034ef0cb8d9eb73b7bf7f561862b99
85e655e198ac1724ffca7bf4efc4f98de8c436cebf41ed665cc397fbb02a243a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 13:35:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ce6948c57f579a85042a4388c45514d6
4b3002c036034ef0cb8d9eb73b7bf7f561862b99
85e655e198ac1724ffca7bf4efc4f98de8c436cebf41ed665cc397fbb02a243a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 13:35:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/googlesans/v14/4UabrENHsxJlGDuGo1OIlLU94YtzCwM.ttf
142.250.74.163200 OK 89 kB URL HTTP/2 fonts.gstatic.com/s/googlesans/v14/4UabrENHsxJlGDuGo1OIlLU94YtzCwM.ttf
IP 142.250.74.163:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (14101)
Hash 9caddd54012933f9e76241be3376b9bc
a762116d4d142b943a3a43834d1d8930109bbf4f
52a5e5c15372b09209acf9362a2ef54fc27113ae108e2b2f5aeb25357a727c7a
GET /s/googlesans/v14/4UabrENHsxJlGDuGo1OIlLU94YtzCwM.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://accounts.google.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27431
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:51 GMT
expires: Sat, 23 Mar 2024 10:26:51 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2019 23:43:31 GMT
content-type: font/ttf
vary: Accept-Encoding
age: 97691
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Owps.ttf
142.250.74.163200 OK 27 kB URL HTTP/2 fonts.gstatic.com/s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Owps.ttf
IP 142.250.74.163:0
File type TrueType Font data, 17 tables, 1st "GDEF", 7 names, Microsoft, language 0x409, Copyright 2015 Google LLC. All Rights Reserved.Google SansRegularGoogle;GoogleSans-RegularGoogle\012- data
Hash 097c4b560f821fb05c628abb70fab199
4650bf1244b6cba45b222aa269c96ad8ea95ab42
a9bd7cfb72481bd844fa2e3cd4019c8b2ab2a232b50cabe62f8d9483e284f672
GET /s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Owps.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://accounts.google.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27191
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:53 GMT
expires: Sat, 23 Mar 2024 10:26:53 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2019 23:42:54 GMT
content-type: font/ttf
vary: Accept-Encoding
age: 97689
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ce6948c57f579a85042a4388c45514d6
4b3002c036034ef0cb8d9eb73b7bf7f561862b99
85e655e198ac1724ffca7bf4efc4f98de8c436cebf41ed665cc397fbb02a243a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 13:35:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
collector-pxikkul2rm.px-cloud.net/api/v2/collector
35.190.10.96200 OK 573 B URL HTTP/2 collector-pxikkul2rm.px-cloud.net/api/v2/collector
IP 35.190.10.96:0
File type JSON data\012- , ASCII text, with very long lines (572)
Hash 4bbf397c08c615a60ea37e5b5d68ec97
d8a665ab82e110fd21bde9c482d44fdc38aa4855
ee67c73a30db79abb929eb86cc8afdd4de365befd3b5ce8abfd1b46301ffb5be
POST /api/v2/collector HTTP/1.1
Host: collector-pxikkul2rm.px-cloud.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 4358
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 13:35:01 GMT
content-type: application/json; charset=utf-8
content-length: 573
access-control-allow-origin: https://www.booking.com
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
timing-allow-origin: *
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.booking.com/general.en-us.html?sid=6e71e443fa5151ac941fa8e69254c3e3&aid=7952588&iframe=1&tmpl=profile%2Flogin_callback_anon_session
54.230.111.57200 OK 207 B URL HTTP/2 www.booking.com/general.en-us.html?sid=6e71e443fa5151ac941fa8e69254c3e3&aid=7952588&iframe=1&tmpl=profile%2Flogin_callback_anon_session
IP 54.230.111.57:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a56998df204f2fa1b4ccf71e79e64e3c
85deb0d46a4b5259cb387acdeb5e871485457e4a
6970f311232ab070b11a043f0724b4112b86d41967044405c31c57a3609ef5db
GET /general.en-us.html?sid=6e71e443fa5151ac941fa8e69254c3e3&aid=7952588&iframe=1&tmpl=profile%2Flogin_callback_anon_session HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Connection: keep-alive
Cookie: _pxhd=rp4wsHuMTYDbO9cwJ-bFqGg1v9-xrR9AAySzgVrcSGlREbROtsZ9lGTHre%2F7JsjgMyxTUtncYO77ExnA4tVoHw%3D%3D%3AQHscagZcwgQ9MFth6amAEQDvw6nSK0OUVANMLpsUtmkT7E9AHUCjwqSbfh-BhGAYZl3PLVuXMOSbi4%2FmrLLpwTErr-gNWM-KsTLUHSnT7Jo%3D; px_init=80; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBJdLVm1JF0%2FiepulI%2F4jZnRx1vEOah7QXj%2B4GBA8vEY6AcIBIlFV4J45Jlv10fXaa9MJYOpGRB380MlxzLbeSfFqtAN%2FeCkFHscviyLC0%2BuRnj73b6PhESVEwGaGKU74ut5AkQoZdatA1PV7ffVYnPF; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sat+Mar+25+2023+13%3A35%3A13+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=2afcfc4c-ac3a-4de4-917b-ded9bd7817c2&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D7952588&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1679751313821; bkng_sso_session=e30; bkng_sso_ses=eyJib29raW5nX2dsb2JhbCI6W3siaCI6IjB3MDBrRGFvYWZ3SHBXeGEvZEkwdlVHQ3l1R3pJZDY5Z2hEVjhseWtBM2MiLCJhIjoxfV19; bkng_sso_auth=CAIQARqEAQ6fwb2/e9M9dTB/fss/C1Pke0IAxCTkTQCIC+D6GpMsWvEFNJS1oWwesajNpbtn+CDnOf2BlSPRrYeosm0VMTTFSnCrseAByYARlUratNXC+tY1tG9JriaX0zbzx5GkGX84JwEO81daNzsHNwJCI4zkaDt/NMr0OFoSH8R3Vm8mcUCObQ==; BJS=-; _px3=3e55ff0da403b6db86ca7145d434490fb1ef7f5d970df7a4c5d493e70659f6a5:zkYnypSQou1tTR4S+q5cq5JPDW4qkCUPcMMZEpUrRLAB0ROvzI4oR/OJn0K/H7IRVbkEzItek1J/9dTVx/4R3w==:1000:1wAipkPz75W1rbEt5xoKXSrBTEY6qJXkiY05at8nhLtXiHIUxKH5i/Jo30HYPmQ9tvZxsTGDQzt9NOA0j9E7OLnP7MmsottUo4fMfwlB21R0lWcOWonI/qgJ2rzpwjukI8ExJUAF6zYOEAmXk4eMRrbGDeI2OqL2+QsoJ6hXB0X15N0b6sDsTm7Mpb5COCkWxjxALhogPatL9pVZ5L3ZrQ==; pxcts=d81e58be-cb11-11ed-92b9-4c694e6e7655; _pxvid=d7c20d9a-cb11-11ed-93e4-4c5076475162; _pxff_ddtc=1; _pxde=092aa6333e59f3aaa9caa805655dca4e7932e31c71d511f776ed02299914395b:eyJ0aW1lc3RhbXAiOjE2Nzk3NTEzMDI4MzUsImZfa2IiOjAsImlwY19pZCI6W119; lastSeen=1679751315848; bkng_sso_auth_1679751302=CAIQARqEAQ6fwb2/e9M9dTB/fss/C1Pke0IAxCTkTQCIC+D6GpMsWvEFNJS1oWwesajNpbtn+CDnOf2BlSPRrYeosm0VMTTFSnCrseAByYARlUratNXC+tY1tG9JriaX0zbzx5GkGX84JwEO81daNzsHNwJCI4zkaDt/NMr0OFoSH8R3Vm8mcUCObQ==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 207
server: nginx
date: Sat, 25 Mar 2023 13:35:03 GMT
cache-control: private
vary: User-Agent, Accept-Encoding
content-encoding: br
nel: {"max_age":604800,"report_to":"default"}
report-to: {"max_age":604800,"group":"default","endpoints":[{"url":"https://nellie.booking.com/report"}]}
set-cookie: px_init=80; domain=booking.com; expires=Sat, 15-Aug-2076 03:10:06 GMT; SameSite=Strict; secure; HttpOnly
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbXpFeYC4TUhBQaaLhV81ZEUK8xfxudyuBrB9g1%2F9KLZ5eMBShfF7ssb92hSfwHvIttJW0bt%2FHuW%2BTcrUdeo7d5IEc3F%2FDljBEtMK13%2BmcC9I%2FHga7GMCY9tuo6SCplRYinde6cLrWF4Vs2H2vVTBBOxTH9QU7Z8Q%2B; domain=.booking.com; path=/; expires=Thu, 23-Mar-2028 13:35:03 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lg594epGKx8loEbiBgGVWRtqly_wWHNCXNSYhFdXqEn9pr1I07l6wg==
X-Firefox-Spdy: h2
account.booking.com/collector/anon_session_init
54.230.111.55204 No Content 0 B URL HTTP/2 account.booking.com/collector/anon_session_init
IP 54.230.111.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /collector/anon_session_init HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.booking.com/
Origin: https://www.booking.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
server: envoy
date: Sat, 25 Mar 2023 13:35:03 GMT
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: POST
access-control-allow-origin: https://www.booking.com
access-control-max-age: 1728000
set-cookie: bkng_sso_ses=e30; domain=.booking.com; path=/; expires=Thu, 23-Mar-2028 13:35:03 GMT; secure; HttpOnly
bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJkYXRhX3N1YmplY3RfaWQiOiJkYzIzODZiNS1mZjFjLTRmMDMtOTliMy1mNDM2NzNiMTkyNjMiLCJzZXNzaW9ucyI6W119fQ; domain=account.booking.com; path=/; expires=Thu, 23-Mar-2028 13:35:03 GMT; secure; HttpOnly
bkng_sso_session=e30; domain=.booking.com; path=/; expires=Thu, 23-Mar-2028 13:35:03 GMT; secure; HttpOnly
content-security-policy: frame-ancestors https://*.booking.com 'self'; report-uri https://nellie.booking.com/csp-report-uri?type=block&tag=212&pid=c8575f830f4402f7&e=UmFuZG9tSVYkc2RlIyh9YSWKtKO5TxgOpTwVTPfHZKNW3Hcrm1RLgTDT2V-m21UMdbC_b9IesoHYup-AC0nelpES1qqE6fifR5JViA8Go4CwOe8yYFSeDLiZ1Uua75nNAdVKxHFsDKwD-aKB_j8LFyG_2ocVeY7g7jHGlgKwg4I
content-security-policy-report-only: base-uri 'none'; connect-src saa.booking.com secure.booking.com reports.booking.com privacyportal-eu.onetrust.com geolocation.onetrust.com cdn.cookielaw.org www.google-analytics.com *.perimeterx.net *.pxchk.net *.px-cdn.net *.px-client.net *.px-cloud.net 'self' 'report-sample'; default-src *.bstatic.com bstatic.com 'self'; frame-src https://www.youtube.com/embed/Vv4w5SmRkss *.bstatic.com https://www.google.com bstatic.com www.booking.com secure.booking.com paymentcomponent.booking.com 'self'; img-src 'self' data: www.booking.com graph.facebook.com cdn.cookielaw.org account.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google-analytics.com www.google.com stats.g.doubleclick.net *.px-cloud.net *.perimeterx.net www.gstatic.com; object-src 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=213&pid=c8575f830f4402f7&e=UmFuZG9tSVYkc2RlIyh9YSWKtKO5TxgOpTwVTPfHZKNW3Hcrm1RLgTDT2V-m21UMdbC_b9IesoHYup-AC0nelpES1qqE6fifR5JViA8Go4CwOe8yYFSeDLiZ1Uua75nNAdVKxHFsDKwD-aKB_j8LFyG_2ocVeY7g7jHGlgKwg4I; script-src saa.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google.com www.google-analytics.com cdn.cookielaw.org geolocation.onetrust.com 'self' 'nonce-DDq4Tg5cdGQFfHh' 'report-sample'; style-src *.bstatic.com bstatic.com *.static.booking.cn 'self' 'unsafe-inline'
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fsslJy0DKfg0fJ-TiDpR878ZrCvvRJyTOy7ECrrosOhiDKMHk9yF3Q==
X-Firefox-Spdy: h2
account.booking.com/collector/anon_session_init
54.230.111.55204 No Content 0 B URL HTTP/2 account.booking.com/collector/anon_session_init
IP 54.230.111.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collector/anon_session_init HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-Type: application/json
Content-Length: 144
Origin: https://www.booking.com
Connection: keep-alive
Cookie: _pxhd=rp4wsHuMTYDbO9cwJ-bFqGg1v9-xrR9AAySzgVrcSGlREbROtsZ9lGTHre%2F7JsjgMyxTUtncYO77ExnA4tVoHw%3D%3D%3AQHscagZcwgQ9MFth6amAEQDvw6nSK0OUVANMLpsUtmkT7E9AHUCjwqSbfh-BhGAYZl3PLVuXMOSbi4%2FmrLLpwTErr-gNWM-KsTLUHSnT7Jo%3D; px_init=80; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbXpFeYC4TUhBQaaLhV81ZEUK8xfxudyuBrB9g1%2F9KLZ5eMBShfF7ssb92hSfwHvIttJW0bt%2FHuW%2BTcrUdeo7d5IEc3F%2FDljBEtMK13%2BmcC9I%2FHga7GMCY9tuo6SCplRYinde6cLrWF4Vs2H2vVTBBOxTH9QU7Z8Q%2B; cors_js=1; bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJkYXRhX3N1YmplY3RfaWQiOiIxOWZjYjQ5My1mYjlmLTRjMDctOWM5OS1kNGFkODkwODZmZTAiLCJzZXNzaW9ucyI6W3sic2Vzc2lvbl9yZWZlcmVuY2UiOiIxYWY5OWE4NS1mODRkLTQxOGQtYjVlYi1mMjBkZGY3ZTc0MWQiLCJyZWZyZXNoX3Rva2VuIjoiQ0FFU2QxSjFONHVjbUxORUtoUmtzQ3l4cnFBcnBaWDJ0a3RZajNuSmdndlBmWXc5aDlybVRlQkkwVjdZSHhoaWtxMUJ3bG95em5rMFhmT284V0VmbXpfY2pJTTBxNHpLb3c4V3lTazhvREFDeUdQMEhESTVYV1BBaUJsYVZzQUxtYXZQS3BDRjR0Y09XVnF1V2UtVnlPRmNMelFLRkZqeGs2eDIifV19fQ; bkng_sso_session=e30; bkng_sso_ses=eyJib29raW5nX2dsb2JhbCI6W3siaCI6IjB3MDBrRGFvYWZ3SHBXeGEvZEkwdlVHQ3l1R3pJZDY5Z2hEVjhseWtBM2MiLCJhIjoxfV19; bkng_sso_auth=CAIQARqEAQ6fwb2/e9M9dTB/fss/C1Pke0IAxCTkTQCIC+D6GpMsWvEFNJS1oWwesajNpbtn+CDnOf2BlSPRrYeosm0VMTTFSnCrseAByYARlUratNXC+tY1tG9JriaX0zbzx5GkGX84JwEO81daNzsHNwJCI4zkaDt/NMr0OFoSH8R3Vm8mcUCObQ==; BJS=-; _px3=3e55ff0da403b6db86ca7145d434490fb1ef7f5d970df7a4c5d493e70659f6a5:zkYnypSQou1tTR4S+q5cq5JPDW4qkCUPcMMZEpUrRLAB0ROvzI4oR/OJn0K/H7IRVbkEzItek1J/9dTVx/4R3w==:1000:1wAipkPz75W1rbEt5xoKXSrBTEY6qJXkiY05at8nhLtXiHIUxKH5i/Jo30HYPmQ9tvZxsTGDQzt9NOA0j9E7OLnP7MmsottUo4fMfwlB21R0lWcOWonI/qgJ2rzpwjukI8ExJUAF6zYOEAmXk4eMRrbGDeI2OqL2+QsoJ6hXB0X15N0b6sDsTm7Mpb5COCkWxjxALhogPatL9pVZ5L3ZrQ==; pxcts=d81e58be-cb11-11ed-92b9-4c694e6e7655; _pxvid=d7c20d9a-cb11-11ed-93e4-4c5076475162; _pxde=092aa6333e59f3aaa9caa805655dca4e7932e31c71d511f776ed02299914395b:eyJ0aW1lc3RhbXAiOjE2Nzk3NTEzMDI4MzUsImZfa2IiOjAsImlwY19pZCI6W119; lastSeen=1679751315848; bkng_sso_auth_1679751302=CAIQARqEAQ6fwb2/e9M9dTB/fss/C1Pke0IAxCTkTQCIC+D6GpMsWvEFNJS1oWwesajNpbtn+CDnOf2BlSPRrYeosm0VMTTFSnCrseAByYARlUratNXC+tY1tG9JriaX0zbzx5GkGX84JwEO81daNzsHNwJCI4zkaDt/NMr0OFoSH8R3Vm8mcUCObQ==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
server: envoy
date: Sat, 25 Mar 2023 13:35:03 GMT
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-methods: POST
access-control-allow-origin: https://www.booking.com
access-control-max-age: 1728000
set-cookie: bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJkYXRhX3N1YmplY3RfaWQiOiIxOWZjYjQ5My1mYjlmLTRjMDctOWM5OS1kNGFkODkwODZmZTAiLCJzZXNzaW9ucyI6W3sic2Vzc2lvbl9yZWZlcmVuY2UiOiIxYWY5OWE4NS1mODRkLTQxOGQtYjVlYi1mMjBkZGY3ZTc0MWQiLCJyZWZyZXNoX3Rva2VuIjoiQ0FFU2QxSjFONHVjbUxORUtoUmtzQ3l4cnFBcnBaWDJ0a3RZajNuSmdndlBmWXc5aDlybVRlQkkwVjdZSHhoaWtxMUJ3bG95em5rMFhmT284V0VmbXpfY2pJTTBxNHpLb3c4V3lTazhvREFDeUdQMEhESTVYV1BBaUJsYVZzQUxtYXZQS3BDRjR0Y09XVnF1V2UtVnlPRmNMelFLRkZqeGs2eDIifV19fQ; domain=account.booking.com; path=/; expires=Thu, 23-Mar-2028 13:35:03 GMT; secure; HttpOnly
bkng_sso_ses=eyJib29raW5nX2dsb2JhbCI6W3siYSI6MSwiaCI6IjB3MDBrRGFvYWZ3SHBXeGEvZEkwdlVHQ3l1R3pJZDY5Z2hEVjhseWtBM2MifV19; domain=.booking.com; path=/; expires=Thu, 23-Mar-2028 13:35:03 GMT; secure; HttpOnly
bkng_sso_session=e30; domain=.booking.com; path=/; expires=Thu, 23-Mar-2028 13:35:03 GMT; secure; HttpOnly
content-security-policy: frame-ancestors https://*.booking.com 'self'; report-uri https://nellie.booking.com/csp-report-uri?type=block&tag=212&pid=69015f830dbe05f6&e=UmFuZG9tSVYkc2RlIyh9YSWKtKO5TxgOpTwVTPfHZKNW3Hcrm1RLgTDT2V-m21UMdbC_b9IesoHYup-AC0nelvqgPHcBnofAqt2SY5ZSxNbVqJQeKAmLH0L5sda2rluvzqrcurLtY0DWhPAFhABqQ1HHksKUWAhOWkMiEQG_LWo
content-security-policy-report-only: base-uri 'none'; connect-src saa.booking.com secure.booking.com reports.booking.com privacyportal-eu.onetrust.com geolocation.onetrust.com cdn.cookielaw.org www.google-analytics.com *.perimeterx.net *.pxchk.net *.px-cdn.net *.px-client.net *.px-cloud.net 'self' 'report-sample'; default-src *.bstatic.com bstatic.com 'self'; frame-src https://www.youtube.com/embed/Vv4w5SmRkss *.bstatic.com https://www.google.com bstatic.com www.booking.com secure.booking.com paymentcomponent.booking.com 'self'; img-src 'self' data: www.booking.com graph.facebook.com cdn.cookielaw.org account.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google-analytics.com www.google.com stats.g.doubleclick.net *.px-cloud.net *.perimeterx.net www.gstatic.com; object-src 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=213&pid=69015f830dbe05f6&e=UmFuZG9tSVYkc2RlIyh9YSWKtKO5TxgOpTwVTPfHZKNW3Hcrm1RLgTDT2V-m21UMdbC_b9IesoHYup-AC0nelvqgPHcBnofAqt2SY5ZSxNbVqJQeKAmLH0L5sda2rluvzqrcurLtY0DWhPAFhABqQ1HHksKUWAhOWkMiEQG_LWo; script-src saa.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google.com www.google-analytics.com cdn.cookielaw.org geolocation.onetrust.com 'self' 'nonce-j7z7mdOOscUj9L2' 'report-sample'; style-src *.bstatic.com bstatic.com *.static.booking.cn 'self' 'unsafe-inline'
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 3bff78035f818b6a3185b0f5f4586410.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: E4Hmku-mbh_JntgVDPT_JjwGMLJlQlf0cJ0Fkoz5qkqeQ7VMofkDSA==
X-Firefox-Spdy: h2
privacyportal-eu.onetrust.com/request/v1/consentreceipts
172.64.144.98201 Created 0 B URL HTTP/2 privacyportal-eu.onetrust.com/request/v1/consentreceipts
IP 172.64.144.98:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /request/v1/consentreceipts HTTP/1.1
Host: privacyportal-eu.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 7858
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 201 Created
date: Sat, 25 Mar 2023 13:35:05 GMT
content-length: 0
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: *
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7ad788f9787fb51e-OSL
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/searchresults_cloudfront_sd.iq_ltr/0fc2f3e44fb8bc09dd6153cbef054eaccfdc20dd.css
54.230.111.91200 OK 0 B URL HTTP/2 cf.bstatic.com/static/css/searchresults_cloudfront_sd.iq_ltr/0fc2f3e44fb8bc09dd6153cbef054eaccfdc20dd.css
IP 54.230.111.91:0
GET /static/css/searchresults_cloudfront_sd.iq_ltr/0fc2f3e44fb8bc09dd6153cbef054eaccfdc20dd.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Wed, 15 Mar 2023 12:58:27 GMT
last-modified: Tue, 14 Mar 2023 16:12:11 GMT
etag: W/"64109cdb-5a074"
expires: Fri, 14 Apr 2023 12:58:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wSuS5BabopxhbdKu0_C-rV_w94faK4JUa82BrBgQNXCLlPXsp6_Djw==
age: 866193
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/778.c6b3509e.chunk.css
54.230.111.91200 OK 0 B URL HTTP/2 cf.bstatic.com/psb/capla/static/css/778.c6b3509e.chunk.css
IP 54.230.111.91:0
GET /psb/capla/static/css/778.c6b3509e.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Fri, 24 Mar 2023 15:45:19 GMT
etag: W/"355f0a8090a980eb343acaac145e14b1"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 24 Mar 2023 15:01:04 GMT
x-amz-expiration: expiry-date="Sat, 22 Jul 2023 15:01:04 GMT", rule-id=""
expires: Sun, 23 Apr 2023 15:45:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dqRwWWtwmGSqsvhEBNJDASMzofEZfLMmomHUkViN0LxYu2s53RaYPg==
age: 78580
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/core-deps-inlinedet_cloudfront_sd/6da0bf621035bb8a2f9c756d6a89dda03b2f7864.js
54.230.111.91200 OK 0 B URL HTTP/2 cf.bstatic.com/static/js/core-deps-inlinedet_cloudfront_sd/6da0bf621035bb8a2f9c756d6a89dda03b2f7864.js
IP 54.230.111.91:0
GET /static/js/core-deps-inlinedet_cloudfront_sd/6da0bf621035bb8a2f9c756d6a89dda03b2f7864.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
last-modified: Wed, 22 Jun 2022 10:40:45 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Tue, 21 Mar 2023 01:37:15 GMT
expires: Tue, 18 Apr 2023 08:04:01 GMT
cache-control: max-age=2592000
etag: W/"62b2f1ad-949e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1L1IT_jyDYEB-fMHhdmaXEiOYQEiNUlzSmCsMMeTBUDW_JJdI6QVjw==
age: 538257
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/print/0cc4ce4b7108d42a9f293fc9b654f749d84ba4eb.css
54.230.111.91200 OK 0 B URL HTTP/2 cf.bstatic.com/static/css/print/0cc4ce4b7108d42a9f293fc9b654f749d84ba4eb.css
IP 54.230.111.91:0
GET /static/css/print/0cc4ce4b7108d42a9f293fc9b654f749d84ba4eb.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:34 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sun, 12 Mar 2023 14:03:03 GMT
expires: Mon, 10 Apr 2023 00:58:42 GMT
cache-control: max-age=2592000
etag: W/"5cadd1be-13ac"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: b0v5vsz7hVtehbKoXPXsCAh9R9375D2T_8wzGbtqzWLsb0sECtTIDw==
age: 1254978
X-Firefox-Spdy: h2
secure.booking.com/login.html?lang=en-us&code=UBpaUbxR88ArXiikHuGgnvFlRU3iqWrT0Mo0FYRqkoUr4ByGCwSEv8f0ehWDtJzGwP34pLGoRgRP8H44YFrnbbsigvsmrJITcmLBsTZUnrtEKGK3kFLGBWzmdspu07IKA1wnt9p2pWbcJWGGbMpQ&aid=304142&state=UqwCDLiVDcBEgrrV4Uo_VW3BJgNIjIkBTnC9HcAvmJerBJF4L_UeCBYojDxkKAqDLlfyYRQ8ZH-N6u_MBZ_BkwQ8pslJMao2-wEwExrb1GcgZbPrRLaI4sLqRoSiAeSZN4jb3IaJskHh8GsInAuEm9ij0YqwFuoj5Td6fGooh-uhHjBRyeAbZ_ZyNpmK8ff_d_GE6Y0qxxSmt7i6cyQ4iijHlyWQQaVvVW_0Hk6ZNXVhMwbTrEhXlqTNDA2tCwWPxr5hS1nD1DXYl7nTQ1AexBLe8E1ynmkj5gyz6ZSPTSNqWcteWmj2VBb4vSLLa0OjtVhZELAuiVMTeWF_jYNkHqUP2Spk8JIfl4OjmkwpX6FdPYs_gGRj7wuFtkE-zc-EXypu30gbHpEuQQo2VIVL&op=oauth_return
54.230.111.57302 Found 0 B URL HTTP/2 secure.booking.com/login.html?lang=en-us&code=UBpaUbxR88ArXiikHuGgnvFlRU3iqWrT0Mo0FYRqkoUr4ByGCwSEv8f0ehWDtJzGwP34pLGoRgRP8H44YFrnbbsigvsmrJITcmLBsTZUnrtEKGK3kFLGBWzmdspu07IKA1wnt9p2pWbcJWGGbMpQ&aid=304142&state=UqwCDLiVDcBEgrrV4Uo_VW3BJgNIjIkBTnC9HcAvmJerBJF4L_UeCBYojDxkKAqDLlfyYRQ8ZH-N6u_MBZ_BkwQ8pslJMao2-wEwExrb1GcgZbPrRLaI4sLqRoSiAeSZN4jb3IaJskHh8GsInAuEm9ij0YqwFuoj5Td6fGooh-uhHjBRyeAbZ_ZyNpmK8ff_d_GE6Y0qxxSmt7i6cyQ4iijHlyWQQaVvVW_0Hk6ZNXVhMwbTrEhXlqTNDA2tCwWPxr5hS1nD1DXYl7nTQ1AexBLe8E1ynmkj5gyz6ZSPTSNqWcteWmj2VBb4vSLLa0OjtVhZELAuiVMTeWF_jYNkHqUP2Spk8JIfl4OjmkwpX6FdPYs_gGRj7wuFtkE-zc-EXypu30gbHpEuQQo2VIVL&op=oauth_return
IP 54.230.111.57:0
GET /login.html?lang=en-us&code=UBpaUbxR88ArXiikHuGgnvFlRU3iqWrT0Mo0FYRqkoUr4ByGCwSEv8f0ehWDtJzGwP34pLGoRgRP8H44YFrnbbsigvsmrJITcmLBsTZUnrtEKGK3kFLGBWzmdspu07IKA1wnt9p2pWbcJWGGbMpQ&aid=304142&state=UqwCDLiVDcBEgrrV4Uo_VW3BJgNIjIkBTnC9HcAvmJerBJF4L_UeCBYojDxkKAqDLlfyYRQ8ZH-N6u_MBZ_BkwQ8pslJMao2-wEwExrb1GcgZbPrRLaI4sLqRoSiAeSZN4jb3IaJskHh8GsInAuEm9ij0YqwFuoj5Td6fGooh-uhHjBRyeAbZ_ZyNpmK8ff_d_GE6Y0qxxSmt7i6cyQ4iijHlyWQQaVvVW_0Hk6ZNXVhMwbTrEhXlqTNDA2tCwWPxr5hS1nD1DXYl7nTQ1AexBLe8E1ynmkj5gyz6ZSPTSNqWcteWmj2VBb4vSLLa0OjtVhZELAuiVMTeWF_jYNkHqUP2Spk8JIfl4OjmkwpX6FdPYs_gGRj7wuFtkE-zc-EXypu30gbHpEuQQo2VIVL&op=oauth_return HTTP/1.1
Host: secure.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Connection: keep-alive
Cookie: _pxhd=rp4wsHuMTYDbO9cwJ-bFqGg1v9-xrR9AAySzgVrcSGlREbROtsZ9lGTHre%2F7JsjgMyxTUtncYO77ExnA4tVoHw%3D%3D%3AQHscagZcwgQ9MFth6amAEQDvw6nSK0OUVANMLpsUtmkT7E9AHUCjwqSbfh-BhGAYZl3PLVuXMOSbi4%2FmrLLpwTErr-gNWM-KsTLUHSnT7Jo%3D; px_init=80; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbnmKTRaewPBtcTJJMbtWuHvWLCPRKptaQnFPkdfxVxlXYDwveKv5eXNTgy40vIchX8Harhz5Hbz0dy0ccwpdER2sE5WHiVFO2npHeWQb8pAy6NnOXzn3tGSvjmJcE0vW4YgXmkMhukx2wipdVg7xn5a449b1nowLUfCNjzSTfylc%3D; cors_js=1; bkng_sso_session=e30; bkng_sso_ses=eyJib29raW5nX2dsb2JhbCI6W3siaCI6IjB3MDBrRGFvYWZ3SHBXeGEvZEkwdlVHQ3l1R3pJZDY5Z2hEVjhseWtBM2MiLCJhIjoxfV19; bkng_sso_auth=CAIQARqEAQ6fwb2/e9M9dTB/fss/C1Pke0IAxCTkTQCIC+D6GpMsWvEFNJS1oWwesajNpbtn+CDnOf2BlSPRrYeosm0VMTTFSnCrseAByYARlUratNXC+tY1tG9JriaX0zbzx5GkGX84JwEO81daNzsHNwJCI4zkaDt/NMr0OFoSH8R3Vm8mcUCObQ==; BJS=-; _px3=0767979f5ca6bcbccdb5615b996596e13c05611d6b44bfe57e4495f04b72cee0:fTrLZzYyraAvUB3VgbzJ7yBXSNii9X80MWgqsMz54b0iTXoaO0CMi9GE3Ensgv7sXHWA37DIfQnDOcV1/BYRnA==:1000:pX9MpjOfom7EO7Ur6gYje1VmbMcnM9/9pSvVjMz7/UWvXLsdcdq+9ZDx5yf/QPFZtcfFiLg/Ipj+akH9GVo8OhNbeLOaFE8spnZ1hrvr0gk7Rr/cr7J7LY9Zcnad/ds905LFhaiFyey63+YTunzQz9sMOCJAFdggcUfzSYdgFTPrlCGrMEYKnPDowV3Kc3LxdaKHHZM/ANoFQ2+T4InfBQ==; pxcts=d81e58be-cb11-11ed-92b9-4c694e6e7655; _pxvid=d7c20d9a-cb11-11ed-93e4-4c5076475162; _pxde=572507c7c256fe678b6ec57022242d1cc2c8d4f1683bb27a4a6e7572e444d5f0:eyJ0aW1lc3RhbXAiOjE2Nzk3NTEzMDE5MzAsImZfa2IiOjAsImlwY19pZCI6W119; lastSeen=1679751315848; bkng_sso_auth_1679751302=CAIQARqEAQ6fwb2/e9M9dTB/fss/C1Pke0IAxCTkTQCIC+D6GpMsWvEFNJS1oWwesajNpbtn+CDnOf2BlSPRrYeosm0VMTTFSnCrseAByYARlUratNXC+tY1tG9JriaX0zbzx5GkGX84JwEO81daNzsHNwJCI4zkaDt/NMr0OFoSH8R3Vm8mcUCObQ==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 302 Found
location: https://www.booking.com/general.en-us.html?sid=6e71e443fa5151ac941fa8e69254c3e3&aid=7952588&iframe=1&tmpl=profile%2Flogin_callback_anon_session
server: nginx
date: Sat, 25 Mar 2023 13:35:03 GMT
cache-control: no-cache, private, no-store, must-revalidate, max-stale=0, post-check=0, pre-check=0
nel: {"report_to":"default","max_age":604800}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"group":"default","max_age":604800}
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBJdLVm1JF0%2FiepulI%2F4jZnRx1vEOah7QXj%2B4GBA8vEY6AcIBIlFV4J45Jlv10fXaa9MJYOpGRB380MlxzLbeSfFqtAN%2FeCkFHscviyLC0%2BuRnj73b6PhESVEwGaGKU74ut5AkQoZdatA1PV7ffVYnPF; domain=.booking.com; path=/; expires=Thu, 23-Mar-2028 13:35:03 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=17280000
x-content-type-options: nosniff
x-recruiting: Like HTTP headers? Come write ours: https://careers.booking.com
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rE2C557s6Az7Sexy5d7K-ERiNR__bxRFG9fKVBBSNW3M8M-s4gMCWw==
X-Firefox-Spdy: h2
account.booking.com/oauth2/authorize/v2?client_id=vO1Kblk7xX9tUn2cpZLS&redirect_uri=https%3A%2F%2Fsecure.booking.com%2Flogin.html%3Fop%3Doauth_return&response_type=anon_session&prompt=none&iframe=1&dt=1679751315630&state=UqwCDLiVDcBEgrrV4Uo_VW3BJgNIjIkBTnC9HcAvmJerBJF4L_UeCBYojDxkKAqDLlfyYRQ8ZH-N6u_MBZ_BkwQ8pslJMao2-wEwExrb1GcgZbPrRLaI4sLqRoSiAeSZN4jb3IaJskHh8GsInAuEm9ij0YqwFuoj5Td6fGooh-uhHjBRyeAbZ_ZyNpmK8ff_d_GE6Y0qxxSmt7i6cyQ4iijHlyWQQaVvVW_0Hk6ZNXVhMwbTrEhXlqTNDA2tCwWPxr5hS1nD1DXYl7nTQ1AexBLe8E1ynmkj5gyz6ZSPTSNqWcteWmj2VBb4vSLLa0OjtVhZELAuiVMTeWF_jYNkHqUP2Spk8JIfl4OjmkwpX6FdPYs_gGRj7wuFtkE-zc-EXypu30gbHpEuQQo2VIVL&bkng_referrer=https%3A%2F%2Fwww.booking.com%2Findex.html&bkng_action=index
54.230.111.55302 Found 0 B URL HTTP/2 account.booking.com/oauth2/authorize/v2?client_id=vO1Kblk7xX9tUn2cpZLS&redirect_uri=https%3A%2F%2Fsecure.booking.com%2Flogin.html%3Fop%3Doauth_return&response_type=anon_session&prompt=none&iframe=1&dt=1679751315630&state=UqwCDLiVDcBEgrrV4Uo_VW3BJgNIjIkBTnC9HcAvmJerBJF4L_UeCBYojDxkKAqDLlfyYRQ8ZH-N6u_MBZ_BkwQ8pslJMao2-wEwExrb1GcgZbPrRLaI4sLqRoSiAeSZN4jb3IaJskHh8GsInAuEm9ij0YqwFuoj5Td6fGooh-uhHjBRyeAbZ_ZyNpmK8ff_d_GE6Y0qxxSmt7i6cyQ4iijHlyWQQaVvVW_0Hk6ZNXVhMwbTrEhXlqTNDA2tCwWPxr5hS1nD1DXYl7nTQ1AexBLe8E1ynmkj5gyz6ZSPTSNqWcteWmj2VBb4vSLLa0OjtVhZELAuiVMTeWF_jYNkHqUP2Spk8JIfl4OjmkwpX6FdPYs_gGRj7wuFtkE-zc-EXypu30gbHpEuQQo2VIVL&bkng_referrer=https%3A%2F%2Fwww.booking.com%2Findex.html&bkng_action=index
IP 54.230.111.55:0
GET /oauth2/authorize/v2?client_id=vO1Kblk7xX9tUn2cpZLS&redirect_uri=https%3A%2F%2Fsecure.booking.com%2Flogin.html%3Fop%3Doauth_return&response_type=anon_session&prompt=none&iframe=1&dt=1679751315630&state=UqwCDLiVDcBEgrrV4Uo_VW3BJgNIjIkBTnC9HcAvmJerBJF4L_UeCBYojDxkKAqDLlfyYRQ8ZH-N6u_MBZ_BkwQ8pslJMao2-wEwExrb1GcgZbPrRLaI4sLqRoSiAeSZN4jb3IaJskHh8GsInAuEm9ij0YqwFuoj5Td6fGooh-uhHjBRyeAbZ_ZyNpmK8ff_d_GE6Y0qxxSmt7i6cyQ4iijHlyWQQaVvVW_0Hk6ZNXVhMwbTrEhXlqTNDA2tCwWPxr5hS1nD1DXYl7nTQ1AexBLe8E1ynmkj5gyz6ZSPTSNqWcteWmj2VBb4vSLLa0OjtVhZELAuiVMTeWF_jYNkHqUP2Spk8JIfl4OjmkwpX6FdPYs_gGRj7wuFtkE-zc-EXypu30gbHpEuQQo2VIVL&bkng_referrer=https%3A%2F%2Fwww.booking.com%2Findex.html&bkng_action=index HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Connection: keep-alive
Cookie: _pxhd=rp4wsHuMTYDbO9cwJ-bFqGg1v9-xrR9AAySzgVrcSGlREbROtsZ9lGTHre%2F7JsjgMyxTUtncYO77ExnA4tVoHw%3D%3D%3AQHscagZcwgQ9MFth6amAEQDvw6nSK0OUVANMLpsUtmkT7E9AHUCjwqSbfh-BhGAYZl3PLVuXMOSbi4%2FmrLLpwTErr-gNWM-KsTLUHSnT7Jo%3D; px_init=80; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbbmD9q%2B5pe3ULjCjRhzaVXaIEbejWyKHDjrF%2Be3TRRWmmoDgFnwROHg811kyK6TeyN6w%2Fj5ZFn1EUxyS2EEBfPoGiAxHy1K59kRs4ePXAUGgJyVVFPJYW8s1MdD6HBt1gmeDPUPJ9x8iB7u8bI9bGTRqU9grEVOdmz%2FdQGAPybDU%3D; cors_js=1; bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJzZXNzaW9ucyI6W10sImRhdGFfc3ViamVjdF9pZCI6IjE5ZmNiNDkzLWZiOWYtNGMwNy05Yzk5LWQ0YWQ4OTA4NmZlMCJ9fQ; bkng_sso_session=e30; bkng_sso_ses=e30; bkng_sso_auth=CAIQARpydKuDILS1NlPskBo2drJLuJNOrMTobPrIMuQRiKtJFZFhXWCSS6CY/JzfCBglwTt7s6RHaNz6/kGEW94MV1pfDx8jrDxmSLn7A2CFuRZSJNDReLslEtdHEha2rwD+dpXGCUecNVKyEp0q1tBoLo6Z+puF; BJS=-; _px3=0767979f5ca6bcbccdb5615b996596e13c05611d6b44bfe57e4495f04b72cee0:fTrLZzYyraAvUB3VgbzJ7yBXSNii9X80MWgqsMz54b0iTXoaO0CMi9GE3Ensgv7sXHWA37DIfQnDOcV1/BYRnA==:1000:pX9MpjOfom7EO7Ur6gYje1VmbMcnM9/9pSvVjMz7/UWvXLsdcdq+9ZDx5yf/QPFZtcfFiLg/Ipj+akH9GVo8OhNbeLOaFE8spnZ1hrvr0gk7Rr/cr7J7LY9Zcnad/ds905LFhaiFyey63+YTunzQz9sMOCJAFdggcUfzSYdgFTPrlCGrMEYKnPDowV3Kc3LxdaKHHZM/ANoFQ2+T4InfBQ==; pxcts=d81e58be-cb11-11ed-92b9-4c694e6e7655; _pxvid=d7c20d9a-cb11-11ed-93e4-4c5076475162; _pxde=572507c7c256fe678b6ec57022242d1cc2c8d4f1683bb27a4a6e7572e444d5f0:eyJ0aW1lc3RhbXAiOjE2Nzk3NTEzMDE5MzAsImZfa2IiOjAsImlwY19pZCI6W119
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 302 Found
location: https://secure.booking.com/login.html?lang=en-us&code=UBpaUbxR88ArXiikHuGgnvFlRU3iqWrT0Mo0FYRqkoUr4ByGCwSEv8f0ehWDtJzGwP34pLGoRgRP8H44YFrnbbsigvsmrJITcmLBsTZUnrtEKGK3kFLGBWzmdspu07IKA1wnt9p2pWbcJWGGbMpQ&aid=304142&state=UqwCDLiVDcBEgrrV4Uo_VW3BJgNIjIkBTnC9HcAvmJerBJF4L_UeCBYojDxkKAqDLlfyYRQ8ZH-N6u_MBZ_BkwQ8pslJMao2-wEwExrb1GcgZbPrRLaI4sLqRoSiAeSZN4jb3IaJskHh8GsInAuEm9ij0YqwFuoj5Td6fGooh-uhHjBRyeAbZ_ZyNpmK8ff_d_GE6Y0qxxSmt7i6cyQ4iijHlyWQQaVvVW_0Hk6ZNXVhMwbTrEhXlqTNDA2tCwWPxr5hS1nD1DXYl7nTQ1AexBLe8E1ynmkj5gyz6ZSPTSNqWcteWmj2VBb4vSLLa0OjtVhZELAuiVMTeWF_jYNkHqUP2Spk8JIfl4OjmkwpX6FdPYs_gGRj7wuFtkE-zc-EXypu30gbHpEuQQo2VIVL&op=oauth_return
server: envoy
date: Sat, 25 Mar 2023 13:35:02 GMT
set-cookie: bkng_expired_hint=; domain=.booking.com; path=/; expires=Fri, 24-Mar-2023 13:35:02 GMT; secure; HttpOnly
bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJkYXRhX3N1YmplY3RfaWQiOiIxOWZjYjQ5My1mYjlmLTRjMDctOWM5OS1kNGFkODkwODZmZTAiLCJzZXNzaW9ucyI6W3sic2Vzc2lvbl9yZWZlcmVuY2UiOiIxYWY5OWE4NS1mODRkLTQxOGQtYjVlYi1mMjBkZGY3ZTc0MWQiLCJyZWZyZXNoX3Rva2VuIjoiQ0FFU2QxSjFONHVjbUxORUtoUmtzQ3l4cnFBcnBaWDJ0a3RZajNuSmdndlBmWXc5aDlybVRlQkkwVjdZSHhoaWtxMUJ3bG95em5rMFhmT284V0VmbXpfY2pJTTBxNHpLb3c4V3lTazhvREFDeUdQMEhESTVYV1BBaUJsYVZzQUxtYXZQS3BDRjR0Y09XVnF1V2UtVnlPRmNMelFLRkZqeGs2eDIifV19fQ; domain=account.booking.com; path=/; expires=Thu, 23-Mar-2028 13:35:02 GMT; secure; HttpOnly
bkng_sso_ses=eyJib29raW5nX2dsb2JhbCI6W3siaCI6IjB3MDBrRGFvYWZ3SHBXeGEvZEkwdlVHQ3l1R3pJZDY5Z2hEVjhseWtBM2MiLCJhIjoxfV19; domain=.booking.com; path=/; expires=Thu, 23-Mar-2028 13:35:02 GMT; secure; HttpOnly
bkng_sso_session=e30; domain=.booking.com; path=/; expires=Thu, 23-Mar-2028 13:35:02 GMT; secure; HttpOnly
bkng_sso_auth=CAIQARqEAQ6fwb2/e9M9dTB/fss/C1Pke0IAxCTkTQCIC+D6GpMsWvEFNJS1oWwesajNpbtn+CDnOf2BlSPRrYeosm0VMTTFSnCrseAByYARlUratNXC+tY1tG9JriaX0zbzx5GkGX84JwEO81daNzsHNwJCI4zkaDt/NMr0OFoSH8R3Vm8mcUCObQ==; Domain=.booking.com; Path=/; Expires=Sat, 08 Apr 2023 13:35:02 GMT; HttpOnly; Secure
bkng_sso_auth_1679751302=CAIQARqEAQ6fwb2/e9M9dTB/fss/C1Pke0IAxCTkTQCIC+D6GpMsWvEFNJS1oWwesajNpbtn+CDnOf2BlSPRrYeosm0VMTTFSnCrseAByYARlUratNXC+tY1tG9JriaX0zbzx5GkGX84JwEO81daNzsHNwJCI4zkaDt/NMr0OFoSH8R3Vm8mcUCObQ==; Domain=.booking.com; Path=/; Expires=Sat, 08 Apr 2023 13:35:02 GMT; HttpOnly; Secure
content-security-policy: frame-ancestors https://*.booking.com 'self'; report-uri https://nellie.booking.com/csp-report-uri?type=block&tag=212&pid=b2235f830f8a026d&e=UmFuZG9tSVYkc2RlIyh9YSWKtKO5TxgOpTwVTPfHZKNW3Hcrm1RLgTDT2V-m21UM2tEFs8WDzZmosDxjsVz6dkq2PhsoSZTOe0GPgs65_ifFUdrr0_98e2xQvQg19ADwkTZXNfofChfkP_heSX2q0FYznr2OF3aU
content-security-policy-report-only: base-uri 'none'; connect-src saa.booking.com secure.booking.com reports.booking.com privacyportal-eu.onetrust.com geolocation.onetrust.com cdn.cookielaw.org www.google-analytics.com *.perimeterx.net *.pxchk.net *.px-cdn.net *.px-client.net *.px-cloud.net 'self' 'report-sample'; default-src *.bstatic.com bstatic.com 'self'; frame-src https://www.youtube.com/embed/Vv4w5SmRkss *.bstatic.com https://www.google.com bstatic.com www.booking.com secure.booking.com paymentcomponent.booking.com 'self'; img-src 'self' data: www.booking.com graph.facebook.com cdn.cookielaw.org account.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google-analytics.com www.google.com stats.g.doubleclick.net *.px-cloud.net *.perimeterx.net www.gstatic.com; object-src 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=213&pid=b2235f830f8a026d&e=UmFuZG9tSVYkc2RlIyh9YSWKtKO5TxgOpTwVTPfHZKNW3Hcrm1RLgTDT2V-m21UM2tEFs8WDzZmosDxjsVz6dkq2PhsoSZTOe0GPgs65_ifFUdrr0_98e2xQvQg19ADwkTZXNfofChfkP_heSX2q0FYznr2OF3aU; script-src saa.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google.com www.google-analytics.com cdn.cookielaw.org geolocation.onetrust.com 'self' 'nonce-OL4WJqzvXxlxu8G' 'report-sample'; style-src *.bstatic.com bstatic.com *.static.booking.cn 'self' 'unsafe-inline'
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 3bff78035f818b6a3185b0f5f4586410.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: sPVGIFV7FXRwUq1FfLHOkOYYMgBsBf9vL92d_821y9Ob-x42-NBAmA==
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/664.2fbcaa00.chunk.css
54.230.111.91200 OK 0 B URL HTTP/2 cf.bstatic.com/psb/capla/static/css/664.2fbcaa00.chunk.css
IP 54.230.111.91:0
GET /psb/capla/static/css/664.2fbcaa00.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Tue, 28 Feb 2023 09:17:20 GMT
etag: W/"27db955296046ba3b90c53ded6173fc1"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Mon, 27 Feb 2023 15:05:35 GMT
x-amz-expiration: expiry-date="Tue, 27 Jun 2023 15:05:35 GMT", rule-id=""
expires: Thu, 30 Mar 2023 09:17:20 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: sDzRcjkWwuJNoPn4E7yQ6BBrPzPbYRAkC7D8vjYIQGvWdaYQTmYBIw==
age: 2175459
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/bui-react.b1ecfd9c.js
54.230.111.91200 OK 0 B URL HTTP/2 cf.bstatic.com/psb/capla/static/js/bui-react.b1ecfd9c.js
IP 54.230.111.91:0
GET /psb/capla/static/js/bui-react.b1ecfd9c.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 24 Mar 2023 14:33:37 GMT
etag: W/"6697c9210393db6ff924bb9d71629149"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 24 Mar 2023 09:57:22 GMT
x-amz-expiration: expiry-date="Sat, 22 Jul 2023 09:57:22 GMT", rule-id=""
expires: Sun, 23 Apr 2023 14:33:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Fp6LcfqdLFm-VdV5RPtCHrWepkNj19MQi8bvR_nzcxbpoH4fvsQIIQ==
age: 82881
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/109319008.webp?k=b8fc6fbc8d874cffedf49c0080f14933a20995b040dc02aeaee3afad1e79c670&o=&s=1
54.230.111.69200 OK 0 B URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/109319008.webp?k=b8fc6fbc8d874cffedf49c0080f14933a20995b040dc02aeaee3afad1e79c670&o=&s=1
IP 54.230.111.69:0
GET /xdata/images/hotel/square600/109319008.webp?k=b8fc6fbc8d874cffedf49c0080f14933a20995b040dc02aeaee3afad1e79c670&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 71756
server: nginx
date: Mon, 06 Mar 2023 07:16:05 GMT
etag: "d527d3a285c3021065fbcc2bf74050c883f2e3e1"
expires: Wed, 05 Apr 2023 07:16:05 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: A-fdmNACAHfNrtj_HbVuG3o-GafClPvzTGDyyL-v0SFEMvLUnKritw==
age: 1664336
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/cross_product_index/accommodation/07ca5cacc9d77a7b50ca3c424ecd606114d9be75.svg
54.230.111.91200 OK 0 B URL HTTP/2 cf.bstatic.com/static/img/cross_product_index/accommodation/07ca5cacc9d77a7b50ca3c424ecd606114d9be75.svg
IP 54.230.111.91:0
GET /static/img/cross_product_index/accommodation/07ca5cacc9d77a7b50ca3c424ecd606114d9be75.svg HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/58c63e4d3e4eb7090033901e75e2c80c0caa437b.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:51 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sun, 19 Mar 2023 20:20:59 GMT
expires: Sun, 16 Apr 2023 00:44:06 GMT
cache-control: max-age=2592000
etag: W/"5cadd1cf-7f2"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: I9Wh8qho6MsiHFGzwTcq6w4Qx-7mHfEgbOjpJJWYPAht9KDjxOVu0g==
age: 737453
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/searchresults_cloudfront_sd/1f09101d5c5827d0bc230d8e5aab620e2062771b.js
54.230.111.91200 OK 0 B URL HTTP/2 cf.bstatic.com/static/js/searchresults_cloudfront_sd/1f09101d5c5827d0bc230d8e5aab620e2062771b.js
IP 54.230.111.91:0
GET /static/js/searchresults_cloudfront_sd/1f09101d5c5827d0bc230d8e5aab620e2062771b.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 23 Mar 2023 13:47:35 GMT
last-modified: Tue, 21 Mar 2023 13:15:51 GMT
etag: W/"6419ae07-30b48"
expires: Sat, 22 Apr 2023 13:47:35 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5DoToOI_5k6XTgA9Ttwb7y7X9sUBj7b6NgI14Z6ZKyRoBLHNt_SAOA==
age: 172045
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/970.dd5c66db.chunk.css
54.230.111.91200 OK 0 B URL HTTP/2 cf.bstatic.com/psb/capla/static/css/970.dd5c66db.chunk.css
IP 54.230.111.91:0
GET /psb/capla/static/css/970.dd5c66db.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Mon, 06 Mar 2023 14:01:16 GMT
etag: W/"70900b49c13c0ad6a4414d8afc5844f9"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 03 Mar 2023 14:07:01 GMT
x-amz-expiration: expiry-date="Sat, 01 Jul 2023 14:07:01 GMT", rule-id=""
expires: Wed, 05 Apr 2023 14:01:16 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: u13Bpaz32OxAVAcjfqpiKHuv1FoDVtY1iS49-h1sYdXXRsRftN-WhQ==
age: 1640023
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/vendors.3e3b9629.js
54.230.111.91200 OK 0 B URL HTTP/2 cf.bstatic.com/psb/capla/static/js/vendors.3e3b9629.js
IP 54.230.111.91:0
GET /psb/capla/static/js/vendors.3e3b9629.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 24 Mar 2023 15:45:19 GMT
etag: W/"bd198a8adf4f323beafe99679cd52967"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 24 Mar 2023 15:35:08 GMT
x-amz-expiration: expiry-date="Sat, 22 Jul 2023 15:35:08 GMT", rule-id=""
expires: Sun, 23 Apr 2023 15:45:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qcfhiouXcQ42OEfG69Y2uAzZLGUlwKqBPul2IweqDdFmRVJ2I7PXIg==
age: 78580
X-Firefox-Spdy: h2
www.booking.com/js_tracking?pid=503b5f806208003a&lang=en-us&stype=1&sid=6e71e443fa5151ac941fa8e69254c3e3&ver=2&aid=7952588&ref_action=index&ete=&etg=&etcg=&ets=aaTBNZZJRLESPIDNJDPVBC|1,cCHObdRdJSfdQaRNFOSeDCJWMddKNKNKWe|1,cCHObdRdJSfdQaRNFOSeDCJWMddKNKNKWe|3,cCHObdRdJSfdQaRNFOSeDCJWMddKNKNKWe|6&etgwv=&m=UmFuZG9tSVYkc2RlIyh9YZNoP0QSzkbUHNonynuUVSKbHg6vK36I9mThEDQ3ZQisThIgK721L0ZgI1am17zQFUTx8EYmbKnnzf87RvP47JEC-1aVC-I_ooLsdfJXU2Coq1dSrcxnhy0NzWCXFZu4-cnYxgO65O8hBDna_BXV0yRMHlncNj5dq5PzrvGmz-p7EPZnfY0_cI3ldg2po2UQiEcuWjdrv3rEqyrmTbBm5Qa9LiW2vLY5o0omGkCg3-sQIICFhkq6PjtS_SmQJLaMT8dvANMwHQ7xxSfQwqPp3Iq1PIiFvM0zo85As4mwfNg5NbFq54g5evRjUOuZzauDcEfg3YJUy1x1
54.230.111.57200 OK 0 B URL HTTP/2 www.booking.com/js_tracking?pid=503b5f806208003a&lang=en-us&stype=1&sid=6e71e443fa5151ac941fa8e69254c3e3&ver=2&aid=7952588&ref_action=index&ete=&etg=&etcg=&ets=aaTBNZZJRLESPIDNJDPVBC|1,cCHObdRdJSfdQaRNFOSeDCJWMddKNKNKWe|1,cCHObdRdJSfdQaRNFOSeDCJWMddKNKNKWe|3,cCHObdRdJSfdQaRNFOSeDCJWMddKNKNKWe|6&etgwv=&m=UmFuZG9tSVYkc2RlIyh9YZNoP0QSzkbUHNonynuUVSKbHg6vK36I9mThEDQ3ZQisThIgK721L0ZgI1am17zQFUTx8EYmbKnnzf87RvP47JEC-1aVC-I_ooLsdfJXU2Coq1dSrcxnhy0NzWCXFZu4-cnYxgO65O8hBDna_BXV0yRMHlncNj5dq5PzrvGmz-p7EPZnfY0_cI3ldg2po2UQiEcuWjdrv3rEqyrmTbBm5Qa9LiW2vLY5o0omGkCg3-sQIICFhkq6PjtS_SmQJLaMT8dvANMwHQ7xxSfQwqPp3Iq1PIiFvM0zo85As4mwfNg5NbFq54g5evRjUOuZzauDcEfg3YJUy1x1
IP 54.230.111.57:0
GET /js_tracking?pid=503b5f806208003a&lang=en-us&stype=1&sid=6e71e443fa5151ac941fa8e69254c3e3&ver=2&aid=7952588&ref_action=index&ete=&etg=&etcg=&ets=aaTBNZZJRLESPIDNJDPVBC|1,cCHObdRdJSfdQaRNFOSeDCJWMddKNKNKWe|1,cCHObdRdJSfdQaRNFOSeDCJWMddKNKNKWe|3,cCHObdRdJSfdQaRNFOSeDCJWMddKNKNKWe|6&etgwv=&m=UmFuZG9tSVYkc2RlIyh9YZNoP0QSzkbUHNonynuUVSKbHg6vK36I9mThEDQ3ZQisThIgK721L0ZgI1am17zQFUTx8EYmbKnnzf87RvP47JEC-1aVC-I_ooLsdfJXU2Coq1dSrcxnhy0NzWCXFZu4-cnYxgO65O8hBDna_BXV0yRMHlncNj5dq5PzrvGmz-p7EPZnfY0_cI3ldg2po2UQiEcuWjdrv3rEqyrmTbBm5Qa9LiW2vLY5o0omGkCg3-sQIICFhkq6PjtS_SmQJLaMT8dvANMwHQ7xxSfQwqPp3Iq1PIiFvM0zo85As4mwfNg5NbFq54g5evRjUOuZzauDcEfg3YJUy1x1 HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=7952588
X-Booking-AID: 7952588
X-Booking-CSRF: wjAfZAAAAAA=68uFg0YnvTAkbcCYPDATS1zQ_o0Da7S4GogHD-OE2hcF5awH-mLS7e4GuLhdpMVbX15EM1Q5pqT-7LUZe0jIUmzKfikOOAD_FB9KmEG903IuiIg5N4d5Y4rL6PAWhagqn4lbbW5kXZXlmyE4UOuOXYqYpZg0jQoRd7UktgefzjeM8s1_otMB2hHB9PapcNULTF2-pQ8LA8IfVREm
X-Booking-Info: 1670770,1683290,1693900,1694060,1695500,1696800,1698050,1699930,1701060,1703190,1703930,1704180,aaTBNZZJRLESPIDNJDPVBC|1,cCHObECVVDDORMTfFbRZFJGO|1,1696800|1,1693900|2,1694060|1,1693900|1,1703190|2,1703190|1,1703930|4,1699930|2,1694060|7,cCHObECVVDDORMTfFbRZFJGO|2,cCHObECVVDDORMTfFbRZFJGO|4,NAFLeOeJcQEcVOdWNeYZdfdbJae|1,NAFLeOeJaDMNAdGFdICFHUeUdLOLOLMO|1,NAFLeOeJdEdSdGFdICFHUeUdLOLOLMO|1,NAFLeOeJabUZFQbMWKZETTeMcCcCcCC|1,NAFLeOeJVCMcQEcVOdWNeYZaTaTaET|1,NAFLeOeJcLMbFQbMWKZETTeMcCcCcCC|1,NAFLeOeJcLdYZGQDaRNFOSeDdKNKNKWe|1,NAFLeOeJcQEcVOdWNeYZdfdbJae|2,NAFLeOeJaDMNAdGFdICFHUeUdLOLOLMO|2,NAFLeOeJdEdSdGFdICFHUeUdLOLOLMO|2,NAFLeOeJabUZFQbMWKZETTeMcCcCcCC|2,NAFLeOeJVCMcQEcVOdWNeYZaTaTaET|2,NAFLeOeJcLMbFQbMWKZETTeMcCcCcCC|2,NAFLeOeJcLdYZGQDaRNFOSeDdKNKNKWe|2,cCHObTRVEFDEXNBBTZBYSGSYO|5,cCHObdRdJSfdQaRNFOSeDCJWMddKNKNKWe|1,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|1,cCHObMKdFEVYQGXUGScOTVaAFZKXe|1,cCHObMKdFEVYQGXUGScOTVaAFZKXe|3,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|1,cCHObdRdJJXRDVMDTEJWcFRURURHe|1,cCHObdRdJJXRDVMDTEJWcFRURURHe|2,cCHObVZMYCVKKMadMUPORIPBLAUFRURURHe|1,cCHObVZMYCVKKMadMUPORIPBLAUFRURURHe|4,cCHObVZMYCVKKMadMUPORIPBLAUFRURURHe|6,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|1,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|2,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|8,cCHObVZMYCVKKMadMUPORIPBLAUFRURURHe|2,cCHObdRdJSfdQaRNFOSeDCJWMddKNKNKWe|3,cCHObdRdJSfdQaRNFOSeDCJWMddKNKNKWe|6
X-Booking-Client-Info: aaTBNZZJRLESPIDNJDPVBC|1,cCHObdRdJSfdQaRNFOSeDCJWMddKNKNKWe|1,cCHObdRdJSfdQaRNFOSeDCJWMddKNKNKWe|3,cCHObdRdJSfdQaRNFOSeDCJWMddKNKNKWe|6
X-Booking-Label:
X-Booking-Language-Code: en-us
X-Booking-Pageview-Id: 503b5f806208003a
X-Booking-Session-Id: 6e71e443fa5151ac941fa8e69254c3e3
X-Booking-SiteType-Id: 1
X-Partner-Channel-Id: 2
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: _pxhd=QodzLqMoz1oY7FFhtt%2FtH16Tvt-pgLU-vW72PEFBLuelRurNweZK%2FdWK4nFts030Rwu1aFvC%2F4uXMOJLH2Dnnw%3D%3D%3AYHSj9-Gc2WWeQLgfXIISIdbzBORCiVIzvs%2FQo3W3vfaaZHsZ%2FxyxHjnCioG9fv7c7Gz0333SqsmZQDErE85A4BeWFNd8WjRBSNUC0-4VKlo%3D; px_init=80; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPef0jtgHVfzZ2PxJVKLCFZDaDV%2B58n3T6OxQI23c31JGUpEn7hdlecQj5ggNhKzzwi3NsF8SJZw16JqQAqF7HeAzIuTYI3VIxSyzZzBdnsPhNVEHGPkEDyeesh2E3LyJNcL%2FCJs85cVqtCltyxrQ%2BL1F84HTVFa8Kec%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sat+Mar+25+2023+13%3A35%3A13+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=2afcfc4c-ac3a-4de4-917b-ded9bd7817c2&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D7952588&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1679751313821; bkng_sso_session=e30; bkng_sso_ses=e30; bkng_sso_auth=CAIQARpydKuDILS1NlPskBo2drJLuJNOrMTobPrIMuQRiKtJFZFhXWCSS6CY/JzfCBglwTt7s6RHaNz6/kGEW94MV1pfDx8jrDxmSLn7A2CFuRZSJNDReLslEtdHEha2rwD+dpXGCUecNVKyEp0q1tBoLo6Z+puF; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
server: nginx
date: Sat, 25 Mar 2023 13:35:01 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
strict-transport-security: max-age=604800
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=fb875f82871e036e&e=UmFuZG9tSVYkc2RlIyh9Yea92wm0yRUjnCBymoy8ejLwz8PVsBdTmMRQtn6VDh0Jum18XFqi8tc
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ntVMHbDFUKhN7SmpWuQnIC9PYazL-hZGnN9kiF4yW_e0oJXcBIqj2A==
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.22.0/assets/otCommonStyles.css
104.19.188.97200 OK 0 B URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.22.0/assets/otCommonStyles.css
IP 104.19.188.97:0
GET /scripttemplates/6.22.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 13:34:58 GMT
content-type: text/css
content-md5: F/Fs54+x9bQK/ULkNRp4fA==
last-modified: Thu, 19 Aug 2021 02:39:24 GMT
x-ms-request-id: 62ba7e0d-101e-014d-51e1-5a5851000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 33940
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ad788d14e29b509-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/genius_vip_cloudfront_sd/0fa5ce08d822cfb3e8f892ca799997e5f53cf27d.js
54.230.111.91200 OK 0 B URL HTTP/2 cf.bstatic.com/static/js/genius_vip_cloudfront_sd/0fa5ce08d822cfb3e8f892ca799997e5f53cf27d.js
IP 54.230.111.91:0
GET /static/js/genius_vip_cloudfront_sd/0fa5ce08d822cfb3e8f892ca799997e5f53cf27d.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 01 Mar 2023 14:26:13 GMT
last-modified: Mon, 30 Jan 2023 14:21:27 GMT
etag: W/"63d7d267-cc5"
expires: Fri, 31 Mar 2023 14:26:13 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zNlvF-_diDhUIJUCKQqozh35nhSC3w2r_8nrg2-0PW_j87rriVkddA==
age: 2070526
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/665.90a83fd4.chunk.js
54.230.111.91200 OK 0 B URL HTTP/2 cf.bstatic.com/psb/capla/static/js/665.90a83fd4.chunk.js
IP 54.230.111.91:0
GET /psb/capla/static/js/665.90a83fd4.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 24 Mar 2023 14:33:37 GMT
etag: W/"83396f0d1f3dcae8c5b2eff09f501904"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 24 Mar 2023 14:16:39 GMT
x-amz-expiration: expiry-date="Sat, 22 Jul 2023 14:16:39 GMT", rule-id=""
expires: Sun, 23 Apr 2023 14:33:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: FM5qAU9Re-AUW8xFh7U0RFXLjlb6gRkDV5Ty60SZxL0iSB2wI7aoWg==
age: 82882
X-Firefox-Spdy: h2
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
104.18.43.158200 OK 0 B URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP 104.18.43.158:0
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 13:34:58 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7ad788d04e3db515-OSL
content-encoding: gzip
X-Firefox-Spdy: h2