localmovement.com/mtm/direct/.eJxtikEKAjEMRe-S5VgmLnXEs0go0RaatmaiFAbvbnQp7t7_723w0AwLIAQgva2OTspXVlYfyawviKVFKtKeLFxtjk08Sm21SyVhz_55ipG7uTQehsmkBOq95EiWW8XxeXbj95Vyup_38zFMOH3pAK83-ko4BQ:1p1m9A:82HKoBAwffeJph8FvE8ncp2tBI8/2
302 Found 0 B URL HTTP/1.1 localmovement.com/mtm/direct/.eJxtikEKAjEMRe-S5VgmLnXEs0go0RaatmaiFAbvbnQp7t7_723w0AwLIAQgva2OTspXVlYfyawviKVFKtKeLFxtjk08Sm21SyVhz_55ipG7uTQehsmkBOq95EiWW8XxeXbj95Vyup_38zFMOH3pAK83-ko4BQ:1p1m9A:82HKoBAwffeJph8FvE8ncp2tBI8/2
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /mtm/direct/.eJxtikEKAjEMRe-S5VgmLnXEs0go0RaatmaiFAbvbnQp7t7_723w0AwLIAQgva2OTspXVlYfyawviKVFKtKeLFxtjk08Sm21SyVhz_55ipG7uTQehsmkBOq95EiWW8XxeXbj95Vyup_38zFMOH3pAK83-ko4BQ:1p1m9A:82HKoBAwffeJph8FvE8ncp2tBI8/2 HTTP/1.1
Host: localmovement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
server: openresty/1.13.6.1
date: Sun, 04 Dec 2022 10:23:07 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: http://www1.localmovement.com/?tm=1&subid4=1670149387.0161820000&KW1=Best%20Mortgage%20Refinancing%20Rates&KW2=B2B%20Travel%20Booking%20System&KW3=Lowest%20Car%20Insurance%20Rates&KW4=Get%20An%20Online%20Degree&KW5=Dedicated%20Gaming%20Servers&KW6=Best%20Mortgage%20Refinancing%20Rates&KW7=Lowest%20Car%20Insurance%20Rates&KW8=Online%20Career%20Counseling%20Programs&KW9=B2B%20Travel%20Booking%20System&searchbox=0&backfill=0
x-mtm-path: 4
x-mtm-prov: 300:0.00;308:19.01
x-mtm-rd: 0.15
vary: Accept-Language
content-language: en
set-cookie: mtm_delivered=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:1p1m9L:QhDwUlKAPdA0LU_6rw57QJnwoyQ; expires=Sun, 04-Dec-2022 11:23:07 GMT; Max-Age=3600; Path=/
connection: close
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16303
Expires: Sun, 04 Dec 2022 14:54:50 GMT
Date: Sun, 04 Dec 2022 10:23:07 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8724
Expires: Sun, 04 Dec 2022 12:48:31 GMT
Date: Sun, 04 Dec 2022 10:23:07 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 67e9370f1bf3e4946a01f346eeae8966
aaab391d1134302d718de7a0d5edbedf884633e6
27a8654fb14db88d4b2bb3b45c1b197fc498cd94143d4a68687742fa48a41358
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4270
Cache-Control: max-age=91155
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 10:23:07 GMT
Etag: "638b2570-1d7"
Expires: Mon, 05 Dec 2022 11:42:22 GMT
Last-Modified: Sat, 03 Dec 2022 10:31:12 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 1e4L7YqqH46WU/iOXTga9kDqYFbOnWcAPY4/qNQ2eThLdI4x2CCa7WsquyZze9CJ02Xc95eJKbU=
x-amz-request-id: 65MAV623VYWBGGPG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 04 Dec 2022 09:47:30 GMT
age: 2137
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 04 Dec 2022 10:18:24 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 283
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 10:23:07 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 04 Dec 2022 10:08:58 GMT
cache-control: public,max-age=3600
age: 850
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
www1.localmovement.com/?tm=1&subid4=1670149387.0161820000&KW1=Best%20Mortgage%20Refinancing%20Rates&KW2=B2B%20Travel%20Booking%20System&KW3=Lowest%20Car%20Insurance%20Rates&KW4=Get%20An%20Online%20Degree&KW5=Dedicated%20Gaming%20Servers&KW6=Best%20Mortgage%20Refinancing%20Rates&KW7=Lowest%20Car%20Insurance%20Rates&KW8=Online%20Career%20Counseling%20Programs&KW9=B2B%20Travel%20Booking%20System&searchbox=0&backfill=0
200 OK 2.5 kB URL HTTP/1.1 www1.localmovement.com/?tm=1&subid4=1670149387.0161820000&KW1=Best%20Mortgage%20Refinancing%20Rates&KW2=B2B%20Travel%20Booking%20System&KW3=Lowest%20Car%20Insurance%20Rates&KW4=Get%20An%20Online%20Degree&KW5=Dedicated%20Gaming%20Servers&KW6=Best%20Mortgage%20Refinancing%20Rates&KW7=Lowest%20Car%20Insurance%20Rates&KW8=Online%20Career%20Counseling%20Programs&KW9=B2B%20Travel%20Booking%20System&searchbox=0&backfill=0
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2230)
Hash 72e1e083775c813165045850f8c33e70
89be3036723bd8555289d490069b5daab4d180e5
3ba2bb564cda8f4dc099fcb7199784bf0d6b850404c07611cce515ca30790b7a
GET /?tm=1&subid4=1670149387.0161820000&KW1=Best%20Mortgage%20Refinancing%20Rates&KW2=B2B%20Travel%20Booking%20System&KW3=Lowest%20Car%20Insurance%20Rates&KW4=Get%20An%20Online%20Degree&KW5=Dedicated%20Gaming%20Servers&KW6=Best%20Mortgage%20Refinancing%20Rates&KW7=Lowest%20Car%20Insurance%20Rates&KW8=Online%20Career%20Counseling%20Programs&KW9=B2B%20Travel%20Booking%20System&searchbox=0&backfill=0 HTTP/1.1
Host: www1.localmovement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 10:23:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-Redirect: zeropark_zeroclick
X-Template: tpl_CleanPeppermintBlack_twoclick
X-Language: norwegian
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Content-Encoding: gzip
d38psrni17bvxu.cloudfront.net/scripts/js3.js
200 OK 1.1 kB URL HTTP/1.1 d38psrni17bvxu.cloudfront.net/scripts/js3.js
IP
File type ASCII text, with very long lines (506)
Hash 64b79b43df8fbf2c5d082964b9116a68
dc3c763519baf0f4c32bb60bfc429651a491ea01
c57e9feec209e3ea5eb1d75a1ba6fa277242a3df250055be8446052b51e58637
Analyzer Verdict Alert fortinet Malware
GET /scripts/js3.js HTTP/1.1
Host: d38psrni17bvxu.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.localmovement.com/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 1134
Connection: keep-alive
Server: nginx
Date: Sun, 04 Dec 2022 04:54:34 GMT
Last-Modified: Tue, 17 Aug 2021 09:17:22 GMT
Accept-Ranges: bytes
ETag: "611b7ea2-46e"
X-Cache: Hit from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: GEbptFfqdPOhjN9csVHfibvoaZIIH9gXxL9veHhKpH7ZXoJVEV3IkQ==
Age: 19714
ocsp.digicert.com/
200 OK 471 B IP
Hash a151c326c67e1abb747847c1427db76f
80885d30ef8ba867bf33c40b861976958a27493a
de2b573ee1c8af980e593352e0c331b2595f62bd4499300ace30821d20814760
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4258
Cache-Control: max-age=86081
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 10:23:08 GMT
Etag: "638b11ab-1d7"
Expires: Mon, 05 Dec 2022 10:17:49 GMT
Last-Modified: Sat, 03 Dec 2022 09:06:51 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 2dgAeBp5LOVu5A/dkpva7Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: q9pAhX3jpr5Qs5qImqQgPTZGJY8=
www1.localmovement.com/track.php?domain=localmovement.com&toggle=browserjs&uid=MTY3MDE0OTM4Ny43ODk0OmFkMjlkMzI1NjA1N2JmNzhmMTc0YTU2YjM4MzM4N2IwMzk5OWQ0ODRiOWY1ZWQ1ZTc4YmMzNjcxZjEzMDg4YTc6NjM4Yzc1MGJjMGI3MA%3D%3D
200 OK 20 B URL HTTP/1.1 www1.localmovement.com/track.php?domain=localmovement.com&toggle=browserjs&uid=MTY3MDE0OTM4Ny43ODk0OmFkMjlkMzI1NjA1N2JmNzhmMTc0YTU2YjM4MzM4N2IwMzk5OWQ0ODRiOWY1ZWQ1ZTc4YmMzNjcxZjEzMDg4YTc6NjM4Yzc1MGJjMGI3MA%3D%3D
IP
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /track.php?domain=localmovement.com&toggle=browserjs&uid=MTY3MDE0OTM4Ny43ODk0OmFkMjlkMzI1NjA1N2JmNzhmMTc0YTU2YjM4MzM4N2IwMzk5OWQ0ODRiOWY1ZWQ1ZTc4YmMzNjcxZjEzMDg4YTc6NjM4Yzc1MGJjMGI3MA%3D%3D HTTP/1.1
Host: www1.localmovement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.localmovement.com/?tm=1&subid4=1670149387.0161820000&KW1=Best%20Mortgage%20Refinancing%20Rates&KW2=B2B%20Travel%20Booking%20System&KW3=Lowest%20Car%20Insurance%20Rates&KW4=Get%20An%20Online%20Degree&KW5=Dedicated%20Gaming%20Servers&KW6=Best%20Mortgage%20Refinancing%20Rates&KW7=Lowest%20Car%20Insurance%20Rates&KW8=Online%20Career%20Counseling%20Programs&KW9=B2B%20Travel%20Booking%20System&searchbox=0&backfill=0
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 10:23:09 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-Custom-Track: browserjs
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Access-Control-Allow-Origin: *
Content-Encoding: gzip
www1.localmovement.com/ls.php
201 Created 0 B URL HTTP/1.1 www1.localmovement.com/ls.php
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
POST /ls.php HTTP/1.1
Host: www1.localmovement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 2182
Origin: http://www1.localmovement.com
Connection: keep-alive
Referer: http://www1.localmovement.com/?tm=1&subid4=1670149387.0161820000&KW1=Best%20Mortgage%20Refinancing%20Rates&KW2=B2B%20Travel%20Booking%20System&KW3=Lowest%20Car%20Insurance%20Rates&KW4=Get%20An%20Online%20Degree&KW5=Dedicated%20Gaming%20Servers&KW6=Best%20Mortgage%20Refinancing%20Rates&KW7=Lowest%20Car%20Insurance%20Rates&KW8=Online%20Career%20Counseling%20Programs&KW9=B2B%20Travel%20Booking%20System&searchbox=0&backfill=0
HTTP/1.1 201 Created
Date: Sun, 04 Dec 2022 10:23:09 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
X-Log-Success: 638c750dd52ff3487b11f6be
Charset: utf-8
Access-Control-Allow-Origin: http://www1.localmovement.com
Access-Control-Allow-Methods: POST, OPTIONS
Access-Control-Max-Age: 86400
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_LWokUOmxlNF9r/e1Sl5IjKkD0nWkjIrtC0TaEbJuYolsK9mA/fT/o7X3oobB7dnioFvZpuYP1jiCWSDvuYaMDQ==
www1.localmovement.com/favicon.ico
200 OK 0 B URL HTTP/1.1 www1.localmovement.com/favicon.ico
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: www1.localmovement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.localmovement.com/?tm=1&subid4=1670149387.0161820000&KW1=Best%20Mortgage%20Refinancing%20Rates&KW2=B2B%20Travel%20Booking%20System&KW3=Lowest%20Car%20Insurance%20Rates&KW4=Get%20An%20Online%20Degree&KW5=Dedicated%20Gaming%20Servers&KW6=Best%20Mortgage%20Refinancing%20Rates&KW7=Lowest%20Car%20Insurance%20Rates&KW8=Online%20Career%20Counseling%20Programs&KW9=B2B%20Travel%20Booking%20System&searchbox=0&backfill=0
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 10:23:09 GMT
Content-Type: image/x-icon
Content-Length: 0
Connection: keep-alive
Server: nginx
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
ETag: "5ebab1f0-0"
Accept-Ranges: bytes
www1.localmovement.com/track.php?click=8bc5311fea51f5d88ad90580a49f43a22d8f5165&domain=localmovement.com&uid=MTY3MDE0OTM4Ny43ODk0OmFkMjlkMzI1NjA1N2JmNzhmMTc0YTU2YjM4MzM4N2IwMzk5OWQ0ODRiOWY1ZWQ1ZTc4YmMzNjcxZjEzMDg4YTc6NjM4Yzc1MGJjMGI3MA%3D%3D&ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTF8fHx8fHw2MzhjNzUwYmMwYjU0fHx8MTY3MDE0OTM4OC4xNzg1fDIwZDM3N2YyZjVjMDBkYjJlNzQyZDhmYTVlZjkwMDdiNzU1MTg3NjV8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXxiMTdlYjM5MDM4YmM5ODNkNjQ0Zjc2MTFmYTc4YzhlZGU1ODVmN2Y5fDB8ZHAtdGVhbWludGVybmV0MTJfM3BofDB8MA%3D%3D&kw=&search=&pcat=&rxid=&bucket=&clientID=&adtest=off
200 OK 20 B URL HTTP/1.1 www1.localmovement.com/track.php?click=8bc5311fea51f5d88ad90580a49f43a22d8f5165&domain=localmovement.com&uid=MTY3MDE0OTM4Ny43ODk0OmFkMjlkMzI1NjA1N2JmNzhmMTc0YTU2YjM4MzM4N2IwMzk5OWQ0ODRiOWY1ZWQ1ZTc4YmMzNjcxZjEzMDg4YTc6NjM4Yzc1MGJjMGI3MA%3D%3D&ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTF8fHx8fHw2MzhjNzUwYmMwYjU0fHx8MTY3MDE0OTM4OC4xNzg1fDIwZDM3N2YyZjVjMDBkYjJlNzQyZDhmYTVlZjkwMDdiNzU1MTg3NjV8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXxiMTdlYjM5MDM4YmM5ODNkNjQ0Zjc2MTFmYTc4YzhlZGU1ODVmN2Y5fDB8ZHAtdGVhbWludGVybmV0MTJfM3BofDB8MA%3D%3D&kw=&search=&pcat=&rxid=&bucket=&clientID=&adtest=off
IP
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /track.php?click=8bc5311fea51f5d88ad90580a49f43a22d8f5165&domain=localmovement.com&uid=MTY3MDE0OTM4Ny43ODk0OmFkMjlkMzI1NjA1N2JmNzhmMTc0YTU2YjM4MzM4N2IwMzk5OWQ0ODRiOWY1ZWQ1ZTc4YmMzNjcxZjEzMDg4YTc6NjM4Yzc1MGJjMGI3MA%3D%3D&ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTF8fHx8fHw2MzhjNzUwYmMwYjU0fHx8MTY3MDE0OTM4OC4xNzg1fDIwZDM3N2YyZjVjMDBkYjJlNzQyZDhmYTVlZjkwMDdiNzU1MTg3NjV8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXxiMTdlYjM5MDM4YmM5ODNkNjQ0Zjc2MTFmYTc4YzhlZGU1ODVmN2Y5fDB8ZHAtdGVhbWludGVybmV0MTJfM3BofDB8MA%3D%3D&kw=&search=&pcat=&rxid=&bucket=&clientID=&adtest=off HTTP/1.1
Host: www1.localmovement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.localmovement.com/?tm=1&subid4=1670149387.0161820000&KW1=Best%20Mortgage%20Refinancing%20Rates&KW2=B2B%20Travel%20Booking%20System&KW3=Lowest%20Car%20Insurance%20Rates&KW4=Get%20An%20Online%20Degree&KW5=Dedicated%20Gaming%20Servers&KW6=Best%20Mortgage%20Refinancing%20Rates&KW7=Lowest%20Car%20Insurance%20Rates&KW8=Online%20Career%20Counseling%20Programs&KW9=B2B%20Travel%20Booking%20System&searchbox=0&backfill=0
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 10:23:09 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-View-Match: true
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Access-Control-Allow-Origin: *
Content-Encoding: gzip
dipaka-ead.com/zcvisitor/a568b7b6-73bd-11ed-8214-0a30a7b1bbe3/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=69448440-0fb4-11eb-bafe-0afaf647e889
200 1.1 kB URL HTTP/1.1 dipaka-ead.com/zcvisitor/a568b7b6-73bd-11ed-8214-0a30a7b1bbe3/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=69448440-0fb4-11eb-bafe-0afaf647e889
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 4eba6faadfcebdf0f9a036756f01a80a
de8b0f83658cfa502b6f46f260eb7d542581e46c
dbd3219e2fda213a970f8c477700cd11addc6db23e8f7c11bca66f432d44256a
GET /zcvisitor/a568b7b6-73bd-11ed-8214-0a30a7b1bbe3/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=69448440-0fb4-11eb-bafe-0afaf647e889 HTTP/1.1
Host: dipaka-ead.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.localmovement.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Date: Sun, 04 Dec 2022 10:23:09 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Server: BvvRxpog
dipaka-ead.com/zcredirect?visitid=a568b7b6-73bd-11ed-8214-0a30a7b1bbe3&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
200 670 B URL HTTP/1.1 dipaka-ead.com/zcredirect?visitid=a568b7b6-73bd-11ed-8214-0a30a7b1bbe3&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3c98cad142a2a9de293d03931a5bdb5e
fdd70f163779af7f820b669124f714eb5b9e78dd
816daa68bd6bfe49a833485c580106a9303181ecb7aa785bf722ea85594a9c39
GET /zcredirect?visitid=a568b7b6-73bd-11ed-8214-0a30a7b1bbe3&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false HTTP/1.1
Host: dipaka-ead.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dipaka-ead.com/zcvisitor/a568b7b6-73bd-11ed-8214-0a30a7b1bbe3/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=69448440-0fb4-11eb-bafe-0afaf647e889
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Date: Sun, 04 Dec 2022 10:23:09 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
redirected: JS
Server: CoVvFqYH
ocsp.digicert.com/
200 OK 471 B IP
Hash 0fa0fcbee72980e311f77902356246e3
e7dd914c5ba25e42dc0619664c2ba248e79d8939
de46ce9d7c70c78f414421d4d781a4b0404cb5674c4331c5ea560a21cdd2e2a1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3431
Cache-Control: max-age=143606
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 10:23:09 GMT
Etag: "638bf59c-1d7"
Expires: Tue, 06 Dec 2022 02:16:35 GMT
Last-Modified: Sun, 04 Dec 2022 01:19:24 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2589
Expires: Sun, 04 Dec 2022 11:06:18 GMT
Date: Sun, 04 Dec 2022 10:23:09 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2589
Expires: Sun, 04 Dec 2022 11:06:18 GMT
Date: Sun, 04 Dec 2022 10:23:09 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash e23f72542e916b6a84f55b8f7cfa6bd0
0fc06d9311f3ab232b3bc5e0260982462a68f7aa
0176b824dc782c13fac6397ccca45761373ee83a3bf5c5ae927e2329a9b36fe3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4214
Cache-Control: max-age=130328
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 10:23:09 GMT
Etag: "638bbeaf-1d7"
Expires: Mon, 05 Dec 2022 22:35:17 GMT
Last-Modified: Sat, 03 Dec 2022 21:25:03 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2589
Expires: Sun, 04 Dec 2022 11:06:18 GMT
Date: Sun, 04 Dec 2022 10:23:09 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2589
Expires: Sun, 04 Dec 2022 11:06:18 GMT
Date: Sun, 04 Dec 2022 10:23:09 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d571e0e-b14e-436b-8156-2e49aad75d4f.png
200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d571e0e-b14e-436b-8156-2e49aad75d4f.png
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 14dcca2a9c4792d835ee709bcd947402
1d702df3a64258628f4124eafd580695f2d350af
da01dcd8fef7c50bdb6f7a8a6a4955694092f479df3dba72f7fa69d7280d07b2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d571e0e-b14e-436b-8156-2e49aad75d4f.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16143
x-amzn-requestid: dc86fad4-4e53-42c9-9b0a-5e4d2cfcd087
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdGyLGqmoAMFnaA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851a7-0ea324b31e8c6578098b8ab9;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:03 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KHd4ajJWl-8TDH5HGbkuJXI4NL6I83IwSUBKzfq85cxpyRH_LGl6OA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 05:55:20 GMT
age: 16069
etag: "1d702df3a64258628f4124eafd580695f2d350af"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp
200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 43309032a892c486f9985ef520df696e
36f4682ca6a33ff80ee02129c77e6f27e996ede0
24225ff504f30405d9ec3feb2555c738fcca0d6b265f285aa9c73a64c78a496e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5681
x-amzn-requestid: 8f0d66b8-d532-48d9-9a29-74540cd6ab3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cltXnEotIAMFqkA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc296-27349a376ff819ab63b04a81;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:41:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vNP2rQwmWTntetjJyjonO8N_YOBqvQuZUm42BWX7c1GoX7jASOIpCg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:49:42 GMT
age: 45207
etag: "36f4682ca6a33ff80ee02129c77e6f27e996ede0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg
200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c01fe1cccdb3b672bbade6d98217ffe9
a9a529dc9894827f6243a1bf57f81caa4fe88fc2
c43da6212c79a08e22e78e04e99e8f5422e64b4b0a87f30b7907f1b4bc675c71
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4666
x-amzn-requestid: 850d341f-5ccb-453c-8adf-a8194f8fbdad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clr_-GiboAMFwww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc066-766293f2526e637235067aca;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: z5uqgjB-Bsl0U55a8aFi37cpJ65Vnbjm6bJ2GnMpaO7RXsMZsOCbPQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:44:01 GMT
age: 45548
etag: "a9a529dc9894827f6243a1bf57f81caa4fe88fc2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe8e3477-9245-4318-82d9-b30607246872.jpeg
200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe8e3477-9245-4318-82d9-b30607246872.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 89e5fc40e9e626a035abde2964ba0959
e800712e4f8d9589670d8ee3a744ac0aedf7b6e3
64a41309871b71682370e2b2f3735ac70039802fff4e1e46013f5aa1f15b4084
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe8e3477-9245-4318-82d9-b30607246872.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6901
x-amzn-requestid: 5dd4545b-c48a-4fa2-8aa5-c7d0a5efeafe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clsByFqCoAMF4CA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc071-6b96e54876cde366748564d6;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:33 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: sOtbi4sBuEPzvS_l6X_w5S5BeHb1DROkFmpNDTlvo57kUVeYN6ra3A==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:42:39 GMT
age: 45630
etag: "e800712e4f8d9589670d8ee3a744ac0aedf7b6e3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61cc2744-b517-4404-bfa2-25fadadfa3f3.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61cc2744-b517-4404-bfa2-25fadadfa3f3.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2636f91bb8fa4d9bb7bef114c248a9ae
8637105f41058bc0d2b259d462b560881928adb6
3d93fd8fcf1af31d00ccbd453142dbea5f2b91d7f58373095943ed40a31ed1f7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61cc2744-b517-4404-bfa2-25fadadfa3f3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10431
x-amzn-requestid: f79ab5e7-8c1b-4827-a531-aaa19c1d80aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clsCGEwxIAMF34g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc073-6358d2950955884c470c0a89;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PQ7xh995cd1UVi3z42EVZGjQjHLLvtAP5BBC-xLEEGr4mEiXS6fC-w==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:47:06 GMT
age: 45363
etag: "8637105f41058bc0d2b259d462b560881928adb6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19c9bb39-be15-49f9-aad9-2cc511601111.jpeg
200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19c9bb39-be15-49f9-aad9-2cc511601111.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a6e7b32ac999cf3c899a234c621fa91a
fc5d4f3163ebb9faf85968cbb1d194e8e68418be
f12db3aed126006fee00649aba0b3eaae900de200b85b9523866a90b5494f18e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19c9bb39-be15-49f9-aad9-2cc511601111.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8989
x-amzn-requestid: abce0b01-f70c-42ad-b242-5a24735fe4c2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cltl4Gk2oAMFSWQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc2f2-1cccffff5199dffe70264a95;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:43:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PFl7VUrzRkMFNnTiIw_cbGCyrEFn43eUSlZfT0nUhUmjjyXT7JfjMA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:50:01 GMT
age: 45188
etag: "fc5d4f3163ebb9faf85968cbb1d194e8e68418be"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
dipaka-ead.com/favicon.ico
404 653 B URL HTTP/1.1 dipaka-ead.com/favicon.ico
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (649), with no line terminators
Hash ba2732b1b2fa2626ffaa15f62f9e7d66
203d4e7fbb1d80449d6e4e1f3ae7a9bf8625debe
879861cb72fe9fbb476dab246021c4c83b4066327de2529e05ec54d3afb0a1c8
GET /favicon.ico HTTP/1.1
Host: dipaka-ead.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dipaka-ead.com/zcredirect?visitid=a568b7b6-73bd-11ed-8214-0a30a7b1bbe3&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
HTTP/1.1 404
Date: Sun, 04 Dec 2022 10:23:10 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 653
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Content-Language: en
Server: jFeIVydX
bit.ly/2zkHJsK?utm_content=uniform-wis-1ldplw8ze8&utm_keyword=best+mortgage+refinancing+rates%2Cb2b+travel+booking+system%2Clowest+car+insurance+rates%2Cget+an+online+degree%2Cdedicated+gaming+servers%2Conline+career+counseling+programs
301 Moved Permanently 133 B URL HTTP/2 bit.ly/2zkHJsK?utm_content=uniform-wis-1ldplw8ze8&utm_keyword=best+mortgage+refinancing+rates%2Cb2b+travel+booking+system%2Clowest+car+insurance+rates%2Cget+an+online+degree%2Cdedicated+gaming+servers%2Conline+career+counseling+programs
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash fac4f22819054b3bcc5318fbd82717e5
007e7754ba5b50b781cbcd63fc47142b2d7fba58
0a833b8649fca4d9cdc9d9ba7683ec8971f2a6538a64d5b658946331a7d4e931
GET /2zkHJsK?utm_content=uniform-wis-1ldplw8ze8&utm_keyword=best+mortgage+refinancing+rates%2Cb2b+travel+booking+system%2Clowest+car+insurance+rates%2Cget+an+online+degree%2Cdedicated+gaming+servers%2Conline+career+counseling+programs HTTP/1.1
Host: bit.ly
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dipaka-ead.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sun, 04 Dec 2022 10:23:10 GMT
content-type: text/html; charset=utf-8
content-length: 133
cache-control: private, max-age=90
location: https://www.booking.com/index.html?aid=1858279
set-cookie: _bit=mb4ana-68d3812f1fcd891b4b-00F; Domain=bit.ly; Expires=Fri, 02 Jun 2023 10:23:10 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 0fa0fcbee72980e311f77902356246e3
e7dd914c5ba25e42dc0619664c2ba248e79d8939
de46ce9d7c70c78f414421d4d781a4b0404cb5674c4331c5ea560a21cdd2e2a1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3432
Cache-Control: max-age=143606
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 10:23:10 GMT
Etag: "638bf59c-1d7"
Expires: Tue, 06 Dec 2022 02:16:36 GMT
Last-Modified: Sun, 04 Dec 2022 01:19:24 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash e23f72542e916b6a84f55b8f7cfa6bd0
0fc06d9311f3ab232b3bc5e0260982462a68f7aa
0176b824dc782c13fac6397ccca45761373ee83a3bf5c5ae927e2329a9b36fe3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4215
Cache-Control: max-age=130328
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 10:23:10 GMT
Etag: "638bbeaf-1d7"
Expires: Mon, 05 Dec 2022 22:35:18 GMT
Last-Modified: Sat, 03 Dec 2022 21:25:03 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 279 B IP
Hash 97c8535769bcda118e012fc9701f07b8
5a2ff0d75199dd550fe3970ecb84c16ee4f8ac70
b4cfb827f029ad07e1bb0988c5ae1108da93a25429972d67321c0e8bf43588a9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4093
Cache-Control: max-age=162268
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 10:23:10 GMT
Etag: "638c3bed-117"
Expires: Tue, 06 Dec 2022 07:27:38 GMT
Last-Modified: Sun, 04 Dec 2022 06:19:25 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279
cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/OtAutoBlock.js
200 OK 6.7 kB URL HTTP/2 cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/OtAutoBlock.js
IP
File type ASCII text, with very long lines (37276)
Hash 7a162a3385ec2f2fbe0be1fdd55afde3
5a37630a30526266cdaa387a32f50f20bae5ffd3
f6143442002776683e3fe10ee2b1aa2fa3d3fba2e491ea7eb1044591adb8c515
GET /consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/OtAutoBlock.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 10:23:10 GMT
content-type: application/x-javascript
content-length: 6671
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: ehYqM4XsLy++C+H91Vr94w==
last-modified: Tue, 15 Nov 2022 08:52:50 GMT
etag: 0x8DAC6E6C6719C76
x-ms-request-id: e8023ecf-a01e-001f-7acf-f803f6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 5372
expires: Mon, 05 Dec 2022 10:23:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7743d33b39deb4ff-OSL
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/js/crossorigin_check_cft/2454015045ef79168d452ff4e7f30bdadff0aa81.js
200 OK 95 B URL HTTP/2 t-cf.bstatic.com/static/js/crossorigin_check_cft/2454015045ef79168d452ff4e7f30bdadff0aa81.js
IP
File type ASCII text, with no line terminators
Hash 335be8900580e9c3875dba57334294ae
a86597d2ddfa410df13bceca86fdf9a2291fe798
8a882fd19a15567e53a5c3c08d22cdab714fa87734ed92d854c4e8fdf3940b1f
GET /static/js/crossorigin_check_cft/2454015045ef79168d452ff4e7f30bdadff0aa81.js HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 95
server: nginx
date: Sat, 03 Dec 2022 07:39:41 GMT
last-modified: Wed, 10 Apr 2019 11:21:38 GMT
expires: Mon, 02 Jan 2023 07:39:41 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "5cadd1c2-5f"
x-cache: Hit from cloudfront
via: 1.1 05844663035089f465172d861220e698.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: c__JiUtv8-BaA4VnCa76MDQYauKLoEspeApvf5MZpnb0CulLBMdUUQ==
age: 96209
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/otSDKStub.js
200 OK 7.2 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP
File type ASCII text, with very long lines (21747)
Hash 6ca9058d9138dc07d9a378e6f20a8b7b
ff5f65ad24a8e2b3042cbb0136be7edb52215c1a
1561d36bd995a09ea69c243767e196dd2e76a2753b59b78ecbf999161904f86d
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Dec 2022 10:23:10 GMT
content-type: application/javascript
content-length: 7151
content-encoding: gzip
content-md5: bKkFjZE43AfZo3jm8gqLew==
last-modified: Thu, 01 Dec 2022 17:06:29 GMT
etag: 0x8DAD3BE63D96CCA
x-ms-request-id: 62e7f211-c01e-010b-1be2-0586c7000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 30815
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7743d33bfa9fb4ff-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/3ea94870-d4b1-483a-b1d2-faf1d982bb31.json
200 OK 2.0 kB URL HTTP/2 cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/3ea94870-d4b1-483a-b1d2-faf1d982bb31.json
IP
File type JSON data\012- , ASCII text, with very long lines (6106), with no line terminators
Hash 4acf7b6f3db453590fd5bbef69949a64
6a8b9148768a6af49e7a183b47f42a5b33569aa9
1e57187427b702038984f5c48618b51ff94617bd43cc7d340bd7411b5334aa03
GET /consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/3ea94870-d4b1-483a-b1d2-faf1d982bb31.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Dec 2022 10:23:10 GMT
content-type: application/x-javascript
content-length: 1970
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: Ss97bz20U1kP1bvvaZSaZA==
last-modified: Tue, 15 Nov 2022 08:52:49 GMT
etag: 0x8DAC6E6C63E85AD
x-ms-request-id: 2535b6f6-b01e-0000-52cf-f8d8e6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 5376
expires: Mon, 05 Dec 2022 10:23:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7743d33c2ac9b4ff-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 278 B IP
Hash a41bf6b29217a1e1191ca96f2bc75f61
acb6f834ceabced0acc9920627d152b7e07799f9
4b63fd037430b154edb6a86b3eea252844c8f2c6e9d58f0062ed59a53164c095
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3859
Cache-Control: max-age=96146
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 10:23:10 GMT
Etag: "638b3a8d-116"
Expires: Mon, 05 Dec 2022 13:05:36 GMT
Last-Modified: Sat, 03 Dec 2022 12:01:17 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 278
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
200 OK 76 kB URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP
File type JSON data\012- , ASCII text, with very long lines (65383)
Hash 6f7776ece73f2f9cb9a7eba09bee007f
304bd2cd78d2de2979fff9e0990414692337872e
0a54b06a33e899b82f81910bdffa921b09305aab450209d1abcce0541bf35a61
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 10:23:10 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7743d33c8e960b02-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/e1b8f75b-db25-46d6-8a45-749ed6c3e64c/en-us.json
200 OK 18 kB URL HTTP/2 cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/e1b8f75b-db25-46d6-8a45-749ed6c3e64c/en-us.json
IP
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65508), with no line terminators
Hash bbca25f8e0afc65c235d5e701bdf08d9
b8a6c7c2a0081ae9dc7f50d3e6e29994fa1b3bf4
e8a079b3f468ad274075e4ede5b2e541bcad8e1389c0d2c0170af9a431bbed44
GET /consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/e1b8f75b-db25-46d6-8a45-749ed6c3e64c/en-us.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Dec 2022 10:23:10 GMT
content-type: application/x-javascript
content-length: 18041
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: u8ol+OCvxlwjXV5wG98I2Q==
last-modified: Tue, 15 Nov 2022 08:53:09 GMT
etag: 0x8DAC6E6D1C3CDC4
x-ms-request-id: afe69279-601e-008a-73cf-f862c5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 5230
expires: Mon, 05 Dec 2022 10:23:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7743d33d6c05b4ff-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.22.0/assets/otFlat.json
200 OK 3.0 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.22.0/assets/otFlat.json
IP
File type JSON data\012- , ASCII text, with very long lines (10843)
Hash 792fef665863081a7642f10bc7b22b49
f30de5899ad8675a26c5a1688c543e7044bce0ab
af415b02ce1afa491d86bd1fafa2416302d69906ded37715ca425b6778cd7d9c
GET /scripttemplates/6.22.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Dec 2022 10:23:10 GMT
content-type: application/json
content-length: 2950
content-encoding: gzip
content-md5: eS/vZlhjCBp2QvELx7IrSQ==
last-modified: Thu, 19 Aug 2021 02:39:10 GMT
etag: 0x8D962BA867F281F
x-ms-request-id: 1ab7d2f4-a01e-003d-026c-c46dc0000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 30039
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7743d33d9c5db4ff-OSL
X-Firefox-Spdy: h2
t-cf.bstatic.com/psb/capla/static/css/513.75e7f786.chunk.css
200 OK 714 B URL HTTP/2 t-cf.bstatic.com/psb/capla/static/css/513.75e7f786.chunk.css
IP
File type ASCII text, with very long lines (600)
Hash 9646d566d863bf8858bb120001e00df9
2cf81c65fc9e9003213dbd7c67be287419983765
27f6fa9431e1b155845f98ee098a95dab2d94f280259983ca4cb7611ba3f2251
GET /psb/capla/static/css/513.75e7f786.chunk.css HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 714
server: nginx
date: Wed, 23 Nov 2022 10:28:03 GMT
etag: "9646d566d863bf8858bb120001e00df9"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Wed, 23 Nov 2022 10:15:47 GMT
x-amz-expiration: expiry-date="Thu, 23 Mar 2023 10:15:47 GMT", rule-id=""
expires: Fri, 23 Dec 2022 10:28:03 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: DxZvzph2WvIDnEtMZWWf93ZfrGGWOHgE97s5IBqDRQEeW0EeiS47hw==
age: 950108
X-Firefox-Spdy: h2
t-cf.bstatic.com/psb/capla/static/css/736.efc019bd.chunk.css
200 OK 851 B URL HTTP/2 t-cf.bstatic.com/psb/capla/static/css/736.efc019bd.chunk.css
IP
File type ASCII text, with very long lines (737)
Hash 8c5c3443c3df14446e77dee5cad05769
0effbb1c48b73b93121ffa4d63bdf1af2a0bb8c4
daaafa4e355363ce4a9b42257a10160d18d17a22f38f159990e289fe07ace87d
GET /psb/capla/static/css/736.efc019bd.chunk.css HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 851
server: nginx
date: Thu, 17 Nov 2022 11:20:43 GMT
etag: "8c5c3443c3df14446e77dee5cad05769"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Thu, 17 Nov 2022 11:13:07 GMT
x-amz-expiration: expiry-date="Fri, 17 Mar 2023 11:13:07 GMT", rule-id=""
expires: Sat, 17 Dec 2022 11:20:43 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: cWIg3tlwagDWBBtVuXq80s2oF7yLwakavELjbAkwpZGqYNjnEeeZvg==
age: 1465348
X-Firefox-Spdy: h2
t-cf.bstatic.com/psb/capla/static/css/541.60bd0f47.chunk.css
200 OK 349 B URL HTTP/2 t-cf.bstatic.com/psb/capla/static/css/541.60bd0f47.chunk.css
IP
Hash 3463768f1eada6681938129f4ac1f0cd
0e94fd7afdcf474745329e76795462278d22fb79
9ce1783fb0eb2bffa218d02d92cd320087f6bb3132dbf1e20b3443a87306412b
GET /psb/capla/static/css/541.60bd0f47.chunk.css HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 349
server: nginx
date: Sat, 12 Nov 2022 08:35:03 GMT
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Tue, 01 Nov 2022 10:18:55 GMT
x-amz-expiration: expiry-date="Wed, 01 Mar 2023 10:18:55 GMT", rule-id=""
expires: Mon, 12 Dec 2022 08:35:03 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "3463768f1eada6681938129f4ac1f0cd"
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: _zQAlaTXkaYVNHWHDKyI85oEaKEEaiClo4Bxu0CPN6ZM6HGkhGijUg==
age: 1907288
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/new/48-squared/us/fa2b2a0e643c840152ba856a8bb081c7ded40efa.png
200 OK 642 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/new/48-squared/us/fa2b2a0e643c840152ba856a8bb081c7ded40efa.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 41a0e840aa47c87e19d2bfe0b1231c3f
b5f588ca91fc9e67b5ea658c5ff943b0639e57b9
a333d02eedde7a4dd8643d58b0ea7947268a1762f35f517eb6000ec9e7fcfae8
GET /static/img/flags/new/48-squared/us/fa2b2a0e643c840152ba856a8bb081c7ded40efa.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 642
server: nginx
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sat, 05 Nov 2022 05:27:14 GMT
expires: Mon, 05 Dec 2022 05:27:14 GMT
cache-control: max-age=2592000
etag: "5f55f887-282"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: s2mcEO0uA7pP9Z2oAsh9oqNFeULz0tpJGMRBmixfyBtSAvXCpFNjAQ==
age: 2523357
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/new/48-squared/gb/daba79fdd4066d133e8bf59070fd6819b951c403.png
200 OK 522 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/new/48-squared/gb/daba79fdd4066d133e8bf59070fd6819b951c403.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 925ee33071ef712bda608ef3bf50ef13
c7d8844e68d5c9bc0294dc5a69f8550c6d6d39d5
996b0e99fcc7a553eac6f51569be5429b1bf8c071a708289fab808d7660cf74c
GET /static/img/flags/new/48-squared/gb/daba79fdd4066d133e8bf59070fd6819b951c403.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 522
server: nginx
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Fri, 02 Dec 2022 08:31:54 GMT
expires: Sun, 01 Jan 2023 08:31:54 GMT
cache-control: max-age=2592000
etag: "5f55f887-20a"
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 4UrtMMYd0Hcdxi4-nISDem0SW7WmKCpRu38OS83-Sedd-pxU1i0sAA==
age: 179477
X-Firefox-Spdy: h2
t-cf.bstatic.com/psb/capla/static/css/797.6fc81b72.chunk.css
200 OK 573 B URL HTTP/2 t-cf.bstatic.com/psb/capla/static/css/797.6fc81b72.chunk.css
IP
File type ASCII text, with very long lines (1077)
Hash 2cd4218278db56943382c5b78298cd56
df6143792af44a1434962665ab699e422427e0db
a9bdee0dfb9ddf33548ee5ad31d788dbee7974e8d4f86368d22a5545050729ce
GET /psb/capla/static/css/797.6fc81b72.chunk.css HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Wed, 23 Nov 2022 16:44:52 GMT
etag: W/"04e7edf9099ebbde425371a36082e68d"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Wed, 23 Nov 2022 16:34:01 GMT
x-amz-expiration: expiry-date="Thu, 23 Mar 2023 16:34:01 GMT", rule-id=""
expires: Fri, 23 Dec 2022 16:44:52 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: sjHUD3pEIopA_OiuwO-u6RFTqTbaW5Eon_tonum4A7hQfmp0d5kIfw==
age: 927499
X-Firefox-Spdy: h2
t-cf.bstatic.com/psb/capla/static/css/527.0794f606.chunk.css
200 OK 651 B URL HTTP/2 t-cf.bstatic.com/psb/capla/static/css/527.0794f606.chunk.css
IP
File type ASCII text, with very long lines (1100)
Hash bc6b20afb60c84e878d884899d8af9d1
97ef3b3c811f1972dfeb4a78bb35ded847105961
0779ec1994a6e4e98704637b195c81d81d52a4a2b3734066a1e151da83650a84
GET /psb/capla/static/css/527.0794f606.chunk.css HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Mon, 28 Nov 2022 15:35:44 GMT
etag: W/"a82b825171babacfd52fa8a9ec917037"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Mon, 28 Nov 2022 15:21:59 GMT
x-amz-expiration: expiry-date="Tue, 28 Mar 2023 15:21:59 GMT", rule-id=""
expires: Wed, 28 Dec 2022 15:35:44 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: gY2IzW8eCNjWOqMC7ytSuwrj3msJr8cKxjj3QFdsnHVIbQbqYRuXyw==
age: 499647
X-Firefox-Spdy: h2
t-cf.bstatic.com/psb/capla/static/css/579.45580ee8.chunk.css
200 OK 967 B URL HTTP/2 t-cf.bstatic.com/psb/capla/static/css/579.45580ee8.chunk.css
IP
File type ASCII text, with very long lines (2167)
Hash 7a543d622632d0bbde23a2b30a03de90
3d61a5501f588e2158eb029ffb27bd5d9191ecc6
dbd257e2a66f0771359624815f270c0757d79f97d0998e93760b5c44d3502af9
GET /psb/capla/static/css/579.45580ee8.chunk.css HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Wed, 23 Nov 2022 16:44:52 GMT
etag: W/"96fa7b6229a1e4459b6c7faef69398aa"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Wed, 23 Nov 2022 16:34:01 GMT
x-amz-expiration: expiry-date="Thu, 23 Mar 2023 16:34:01 GMT", rule-id=""
expires: Fri, 23 Dec 2022 16:44:52 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: l8iFaqImjtn-boX4bfx2V9COHqMzkIH2Yx2_p9Qo1PnA8nCIU-leXg==
age: 927499
X-Firefox-Spdy: h2
t-cf.bstatic.com/psb/capla/static/css/748.8b20673d.chunk.css
200 OK 1.5 kB URL HTTP/2 t-cf.bstatic.com/psb/capla/static/css/748.8b20673d.chunk.css
IP
File type ASCII text, with very long lines (1553)
Hash ed2a4dacbd371046e08fd1fc36689cf9
e3f76484b32ec437c9e33c20fdd8fd9170add9a3
0d4d7ff1b33c3231ddf8af46140d120d1eec5e53d67d9fda1eb060b75230551f
GET /psb/capla/static/css/748.8b20673d.chunk.css HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Wed, 23 Nov 2022 17:55:02 GMT
etag: W/"105112da0817ea530e4a1591ca27e9a4"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Wed, 23 Nov 2022 16:34:01 GMT
x-amz-expiration: expiry-date="Thu, 23 Mar 2023 16:34:01 GMT", rule-id=""
expires: Fri, 23 Dec 2022 17:55:02 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: J8HPXe5YFgZW4JCU5av715NPuUS2MG74zU2xEfyIMxxJrmFjTevn-Q==
age: 923289
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.22.0/assets/otCommonStyles.css
200 OK 5.0 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.22.0/assets/otCommonStyles.css
IP
Hash d3e1490c3c167f1913549c3e4ead38db
40f7244cef2d7a3b04650aa7bea10b9c147ecd6a
9e0c3831fab561080df94e9e5a9bca563b8ca92d7f7df4deb30a35bdca024620
GET /scripttemplates/6.22.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Dec 2022 10:23:11 GMT
content-type: text/css
content-md5: F/Fs54+x9bQK/ULkNRp4fA==
last-modified: Thu, 19 Aug 2021 02:39:24 GMT
x-ms-request-id: 6bc20948-001e-0159-656c-c49b35000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 30720
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7743d33d9c5fb4ff-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/new/48-squared/mx/f3a3f562a0185d68fb04b2ec01db2062ca6bdb76.png
200 OK 945 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/new/48-squared/mx/f3a3f562a0185d68fb04b2ec01db2062ca6bdb76.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 91f0a044160310ec2a0fdd15a5e9db95
411b206915a7fcbc18ba67bb5013cd4b9c97c5c3
11eb78212272b10379a315971ed01e31ffa796378c12eae4116f47e7bc50bd4f
GET /static/img/flags/new/48-squared/mx/f3a3f562a0185d68fb04b2ec01db2062ca6bdb76.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 945
server: nginx
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Thu, 10 Nov 2022 08:10:19 GMT
expires: Sat, 10 Dec 2022 08:10:19 GMT
cache-control: max-age=2592000
etag: "5f560e08-3b1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: YLcq0tUEBer73L9Bu8tvTVnRgNkY3RdEQVFpGT4feI0zfCcEmYb_bw==
age: 2081572
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/new/48-squared/catalonia/8578246a75d8b9dceaacb174072d0c6acafcc2df.png
200 OK 155 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/new/48-squared/catalonia/8578246a75d8b9dceaacb174072d0c6acafcc2df.png
IP
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 9aa827fa86c5f431d15c5b23a78f0f9d
7a82e7b12cb63ae4afabddd04a83c94c468dc777
c6d8a7fe3c884ebb35313519fb7187cd6609b4c2ede2ddedcafb6ef8a9905310
GET /static/img/flags/new/48-squared/catalonia/8578246a75d8b9dceaacb174072d0c6acafcc2df.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 155
server: nginx
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sat, 05 Nov 2022 05:40:52 GMT
expires: Mon, 05 Dec 2022 05:40:52 GMT
cache-control: max-age=2592000
etag: "5f560e08-9b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: i21RchFET1feyQLHSD7hTr752az8u2KzUuzJRFZWm7Jr-AaTuAG7oQ==
age: 2522539
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/new/48-squared/it/b8db3771480bd0c7971b9f94cad3640c89521882.png
200 OK 153 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/new/48-squared/it/b8db3771480bd0c7971b9f94cad3640c89521882.png
IP
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 4261fd05fa4ff2f6b27961be52f72502
30b359e2111f9509e89b4740af3aa6be24fcc812
861f2142293eb28de2c5f7c6f0035847ae176dc02470bfa7fbb157bf2b89339d
GET /static/img/flags/new/48-squared/it/b8db3771480bd0c7971b9f94cad3640c89521882.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 153
server: nginx
date: Thu, 24 Nov 2022 07:20:22 GMT
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
etag: "5f560e08-99"
expires: Sat, 24 Dec 2022 07:20:22 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: LrZbiqhd52fgK5Hq7FZLcGOKe7SLN_Pw9eDg6VtksuA6ExhO6FzK9g==
age: 874969
X-Firefox-Spdy: h2
t-cf.bstatic.com/psb/capla/static/css/224.9d05c47b.chunk.css
200 OK 1.6 kB URL HTTP/2 t-cf.bstatic.com/psb/capla/static/css/224.9d05c47b.chunk.css
IP
File type ASCII text, with very long lines (1238)
Hash be5f0e6238323b8a1e6a3a7ec5d154b9
177d68baca43281465005a3231741742db655076
67f274502eb13334a946ec6c19026e6ccbd735ad952cc6d5605c64535be56041
GET /psb/capla/static/css/224.9d05c47b.chunk.css HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Wed, 23 Nov 2022 16:44:52 GMT
etag: W/"9bf8ae9a4f76f8e587606aeb9c41efc9"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Wed, 23 Nov 2022 16:34:00 GMT
x-amz-expiration: expiry-date="Thu, 23 Mar 2023 16:34:00 GMT", rule-id=""
expires: Fri, 23 Dec 2022 16:44:52 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: wvMezoaLbUz4sFulYjLr_Dn9NWp7kJw4OubhsYaU1pyNE3obtRb8Nw==
age: 927499
X-Firefox-Spdy: h2
t-cf.bstatic.com/psb/capla/static/css/186.c3c0de4f.chunk.css
200 OK 2.0 kB URL HTTP/2 t-cf.bstatic.com/psb/capla/static/css/186.c3c0de4f.chunk.css
IP
File type ASCII text, with very long lines (4237)
Hash b5412dd4354920c07e2d4d1cc9e6d749
3bee68e662441f753a0c4cb1d2011485c1cc9312
7b97b3025a72f249f3e852a5bc340f93e964d3c892f284f1bf8d0dd7534f4e99
GET /psb/capla/static/css/186.c3c0de4f.chunk.css HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Sun, 27 Nov 2022 07:18:08 GMT
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Wed, 20 Jul 2022 03:28:27 GMT
x-amz-expiration: expiry-date="Thu, 17 Nov 2022 03:28:27 GMT", rule-id=""
expires: Tue, 27 Dec 2022 07:18:08 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: W/"bc1724443d5ead75f4747b3f87e9c9ee"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: cihXdgflrpUQJbw-C8u73-cIMxhGTfetEhdp1UJq-0guAAc3kzFuEQ==
age: 615903
X-Firefox-Spdy: h2
t-cf.bstatic.com/psb/capla/static/css/bui-react.c25a53fb.css
200 OK 18 kB URL HTTP/2 t-cf.bstatic.com/psb/capla/static/css/bui-react.c25a53fb.css
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 8ca901281ef2fb2931cf214f37234816
2019d1e50bcd1a3b1d9ad882295d530c5059e85e
6c3710e54d1024e9b380d1a33c5d3bb55954193874ff7fb210020d07205bbd00
GET /psb/capla/static/css/bui-react.c25a53fb.css HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Tue, 29 Nov 2022 09:00:20 GMT
etag: W/"1091f2a4dc706022189520eca193e220"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Tue, 29 Nov 2022 07:12:17 GMT
x-amz-expiration: expiry-date="Wed, 29 Mar 2023 07:12:17 GMT", rule-id=""
expires: Thu, 29 Dec 2022 09:00:20 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: IOIo5aia-IYxWYFpUsuCnq1So8IJoA-8H8GEgCw6Bisr3Wnq6LseRA==
age: 436971
X-Firefox-Spdy: h2
t-cf.bstatic.com/psb/capla/static/css/348.55412d9f.chunk.css
200 OK 612 B URL HTTP/2 t-cf.bstatic.com/psb/capla/static/css/348.55412d9f.chunk.css
IP
File type ASCII text, with very long lines (1028)
Hash 9803ca8dd93c88b3fd42b4e5226d1e4b
df44edff88e21aa516aa3d3238c8ec79e72fb56f
644acab7c3bf0340e139a3690a6cb598141c45eac613367345a4339568f1d95a
GET /psb/capla/static/css/348.55412d9f.chunk.css HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Wed, 23 Nov 2022 16:44:52 GMT
etag: W/"cd7208456f55af5c5350c6f7e58eae8f"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Wed, 23 Nov 2022 16:34:01 GMT
x-amz-expiration: expiry-date="Thu, 23 Mar 2023 16:34:01 GMT", rule-id=""
expires: Fri, 23 Dec 2022 16:44:52 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: Uh4hG8AWXHcsqVrIBcN3sfEKhUIKLlmpvfpSW3JDEvwqz9CfwuX8wg==
age: 927499
X-Firefox-Spdy: h2
t-cf.bstatic.com/psb/capla/static/css/223.43ba9a7b.chunk.css
200 OK 799 B URL HTTP/2 t-cf.bstatic.com/psb/capla/static/css/223.43ba9a7b.chunk.css
IP
File type ASCII text, with very long lines (1777)
Hash b4f0c2126afc7ff12b8b3caeb5532855
dd3ecfc602320d536fc9f660bcd1e7eb58ad8749
21405e3128bad35aa7db53c6141752714a2789c49190055bfbaa14422881a35f
GET /psb/capla/static/css/223.43ba9a7b.chunk.css HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Mon, 28 Nov 2022 14:31:30 GMT
etag: W/"8998fb91c1b0946809ec9c1ce34ce22c"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Wed, 23 Nov 2022 16:34:00 GMT
x-amz-expiration: expiry-date="Thu, 23 Mar 2023 16:34:00 GMT", rule-id=""
expires: Wed, 28 Dec 2022 14:31:30 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: EGL2699y6HqAWz2Pm8NX_ODMHH9uTVo7Pqq8S4oIzfQyy97q9J-zdw==
age: 503501
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/new/48-squared/dk/744575dd4e87590a543b7c8cbacaef6c3de4e4d2.png
200 OK 175 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/new/48-squared/dk/744575dd4e87590a543b7c8cbacaef6c3de4e4d2.png
IP
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 3275f76ec51c7d87571ef5a5f3e6ddea
995f9025c29c6ab965c3a29af50ae25c9a390ab0
a60eac8ef0e0d0dddef152891451b215d955373071d2bd32db7d4b2053fbaf08
GET /static/img/flags/new/48-squared/dk/744575dd4e87590a543b7c8cbacaef6c3de4e4d2.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 175
server: nginx
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Thu, 10 Nov 2022 08:10:19 GMT
expires: Sat, 10 Dec 2022 08:10:19 GMT
cache-control: max-age=2592000
etag: "5f55f887-af"
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: lxw5t10p3Cfus06dZC30CA9z5NLhFS7G1PxNNfukG_kUIJBn_tW0OQ==
age: 2081572
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/new/48-squared/cz/32002e60fead55ce886ff9827dfcf4af8cf4e277.png
200 OK 342 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/new/48-squared/cz/32002e60fead55ce886ff9827dfcf4af8cf4e277.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 20b632d22c7839d87dd7ab7628839ee7
e9d3232561f2812c02b6fb4e33251aaf620cd40b
ad11693269039a9a7ded88cb46a03eb85ee6f4cf29fa76376ba32c5dd9eb6612
GET /static/img/flags/new/48-squared/cz/32002e60fead55ce886ff9827dfcf4af8cf4e277.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 342
server: nginx
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Fri, 18 Nov 2022 21:21:46 GMT
expires: Sun, 18 Dec 2022 21:21:46 GMT
cache-control: max-age=2592000
etag: "5f55f887-156"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: MKGuNBHjruJ82PTRK_82LAtMEq1TMFP8G0u91rsuzqxap9JyRbwLvQ==
age: 1342885
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/new/48-squared/hu/fc7cb24c5c7cb9de74a74fad271d6838daabc4cb.png
200 OK 133 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/new/48-squared/hu/fc7cb24c5c7cb9de74a74fad271d6838daabc4cb.png
IP
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 9206b6715881ae75735ed659e808e94f
eed3ea9303a65b3b7f64f73d1a8499373aa26c0b
70c5cf7c80ec64caf926271a8832ca79342bd1d9203bae584f8c441aee10ddf0
GET /static/img/flags/new/48-squared/hu/fc7cb24c5c7cb9de74a74fad271d6838daabc4cb.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 133
server: nginx
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Mon, 14 Nov 2022 06:59:38 GMT
expires: Wed, 14 Dec 2022 06:59:38 GMT
cache-control: max-age=2592000
etag: "5f55f887-85"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: YUu_CEynMBA3Iddk5q4IFKOoy_NOvp8aAa4HabnM_b-fwHr9LykSuA==
age: 1740213
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/new/48-squared/ro/2d67b91f7beb87bd9286975da3e6dadc70d9c64b.png
200 OK 153 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/new/48-squared/ro/2d67b91f7beb87bd9286975da3e6dadc70d9c64b.png
IP
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 1b1f1d1d57a2cd65c38748ed1e165aa7
58f0710ccff2655b04eb6ed0a2c86ec64eea5223
881978c2d219d2d9e3f0c5584e489e06e1948d0b4f9c5d7d3104a61ddb2e7372
GET /static/img/flags/new/48-squared/ro/2d67b91f7beb87bd9286975da3e6dadc70d9c64b.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 153
server: nginx
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Wed, 30 Nov 2022 03:10:01 GMT
expires: Fri, 30 Dec 2022 03:10:01 GMT
cache-control: max-age=2592000
etag: "5f560e08-99"
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: E1m00te1v-TxDsjYvjYngufuMwJW9Cj42YsmQUpJgcZjFKVlj-5HWA==
age: 371590
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/new/48-squared/jp/9bf7e50bc6dc66599aeede9189ca16de461c60b6.png
200 OK 333 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/new/48-squared/jp/9bf7e50bc6dc66599aeede9189ca16de461c60b6.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 0430ec4fbfa9c9d0c02e4040873de949
6f5a96e43c5665af451ae5b0448ed5a7113e40d9
ee8b36adb5cbd88a5819e742a813ae397ace8c319861ad8aa4d9caaae90812a0
GET /static/img/flags/new/48-squared/jp/9bf7e50bc6dc66599aeede9189ca16de461c60b6.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 333
server: nginx
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Mon, 14 Nov 2022 06:59:38 GMT
expires: Wed, 14 Dec 2022 06:59:38 GMT
cache-control: max-age=2592000
etag: "5f55f887-14d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 3fmXfOxSNEgN2vKtBy93eFlbXT4MY-yWq2pl7kXyLi0nce8gRjMLkg==
age: 1740213
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/new/48-squared/cn/5a221730f540facc62563bfa6192ce155a9f677e.png
200 OK 332 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/new/48-squared/cn/5a221730f540facc62563bfa6192ce155a9f677e.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash a12df81751d392f648a2785d2de72a05
39156191b034cde7e591faa6677153fae77e6770
3e3cbba48022f930c07d6bdea530464cca93dd1c5473c2e75548cabd56c3d5bc
GET /static/img/flags/new/48-squared/cn/5a221730f540facc62563bfa6192ce155a9f677e.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 332
server: nginx
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Thu, 10 Nov 2022 11:24:56 GMT
expires: Sat, 10 Dec 2022 11:24:56 GMT
cache-control: max-age=2592000
etag: "5f55f887-14c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: p78EzKSoKtlSWIyoEPj8sxjbbZ6I6tGDvDpK0nc530geIOXOdpRt5g==
age: 2069895
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/new/48-squared/z4/ced4751e6ac2cbb9884a5878fff59a4e24c3e386.png
200 OK 547 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/new/48-squared/z4/ced4751e6ac2cbb9884a5878fff59a4e24c3e386.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash b20acca9869722ee22594c1cb79aa80c
8547e31b2cb93793703caa352c4cc7c08daf9f39
b93aa481a175851c5691c27239100c897b7e42e2d06c19df05f9b5de422fde26
GET /static/img/flags/new/48-squared/z4/ced4751e6ac2cbb9884a5878fff59a4e24c3e386.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 547
server: nginx
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Thu, 10 Nov 2022 14:44:43 GMT
expires: Sat, 10 Dec 2022 14:44:43 GMT
cache-control: max-age=2592000
etag: "5f55f887-223"
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: pEe5oD-APm9by4M8LdR7VkOzsxXTtRWqP_7CR_SdGzgrCLGjkSIgTg==
age: 2057908
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/new/48-squared/pl/4d6b6e962b0b049a03924fc618b959395d60ae39.png
200 OK 121 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/new/48-squared/pl/4d6b6e962b0b049a03924fc618b959395d60ae39.png
IP
File type PNG image data, 48 x 48, 2-bit colormap, non-interlaced\012- data
Hash f5426bca09243b610e38d3c14e677064
e2ab7e2d6380dc421aa64648c11ddab3b2233e49
2f404d211c6a0c69dcac5b38ae18a1fc57840c4bd330b1bd64def6bf8b748d64
GET /static/img/flags/new/48-squared/pl/4d6b6e962b0b049a03924fc618b959395d60ae39.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 121
server: nginx
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Mon, 14 Nov 2022 06:59:38 GMT
expires: Wed, 14 Dec 2022 06:59:38 GMT
cache-control: max-age=2592000
etag: "5f560e08-79"
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: -LIkoE-vbvA9thFKel0AK30VDt07Lz_Y3Zc3I4dYAdlhkstszdwdkQ==
age: 1740213
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/new/48-squared/gr/e0e42a97a7b860fc9be71954262902f2a4e94aa6.png
200 OK 215 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/new/48-squared/gr/e0e42a97a7b860fc9be71954262902f2a4e94aa6.png
IP
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 0c3be548c24fe302a6765670af14cb20
b14e18e90b32ec75ee248f748dee5aa6d7609822
84b0beb08ce848e9e03e1e2ef34d5cb421a429661bb837750a1c37cb44b05145
GET /static/img/flags/new/48-squared/gr/e0e42a97a7b860fc9be71954262902f2a4e94aa6.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 215
server: nginx
date: Thu, 10 Nov 2022 08:10:19 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-d7"
expires: Sat, 10 Dec 2022 08:10:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: jus1WAjoz5d_8eyNy3vbvHThnBfQeSel525xx7EnKL9qiixS5hnYlA==
age: 2081572
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/new/48-squared/ru/2277320023a64803843c36ca6aa48ad77523dd0d.png
200 OK 139 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/new/48-squared/ru/2277320023a64803843c36ca6aa48ad77523dd0d.png
IP
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash e788f0359c4ebb5d12da0db2e46b5cae
7ef0e8f52982a8fe7a25e27011fca7716231a52b
6f71c4adcbf4ee888f31ee757fd52cdb61881a9aca9f8a571c00470df055185c
GET /static/img/flags/new/48-squared/ru/2277320023a64803843c36ca6aa48ad77523dd0d.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 139
server: nginx
date: Sat, 12 Nov 2022 03:16:39 GMT
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
etag: "5f560e08-8b"
expires: Mon, 12 Dec 2022 03:16:39 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 9gWrSPjre119UhbnMZN6J-pJMwPQwXTgI9m65ZdQJmVHAl5WedDhSg==
age: 1926392
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/new/48-squared/tr/f7ad0cb74f4ea5e7193cb6029c7f977e9786cfa2.png
200 OK 400 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/new/48-squared/tr/f7ad0cb74f4ea5e7193cb6029c7f977e9786cfa2.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 87321ae6e71b9b09c681058e91a468b5
3fb7872894da2daef6f66e73d8fd2f7b78b3b533
2c1c4611b00fa1da5b4cf45ac2c7d25744c4bf0897fab2e00833ff0aefdf5023
GET /static/img/flags/new/48-squared/tr/f7ad0cb74f4ea5e7193cb6029c7f977e9786cfa2.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 400
server: nginx
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Thu, 10 Nov 2022 08:10:19 GMT
expires: Sat, 10 Dec 2022 08:10:19 GMT
cache-control: max-age=2592000
etag: "5f560e08-190"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: LKsVxqG1LikXcMQY5_E26k_i6q3E6XjJ6B9PRM7-PbPD2yXB55GZGw==
age: 2081572
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/new/48-squared/bg/540f2da5fee31b7385af127619ab5ca4fc3783b5.png
200 OK 99 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/new/48-squared/bg/540f2da5fee31b7385af127619ab5ca4fc3783b5.png
IP
File type PNG image data, 48 x 48, 2-bit colormap, non-interlaced\012- data
Hash 49c081307e8d5ea32a47fb077905f2de
7b0a263172247879fd6255ab19f26aa45695f380
7ea8e075feac7c0c8a0cdecdf923fdab30b1b0d13336af312484b4f73b926dd9
GET /static/img/flags/new/48-squared/bg/540f2da5fee31b7385af127619ab5ca4fc3783b5.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 99
server: nginx
date: Wed, 16 Nov 2022 11:14:02 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-63"
expires: Fri, 16 Dec 2022 11:14:02 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: XimA40-RiU29xFk_EOigyuE6znQBczyzd6BKIYZTIcWIDp4tyWvLdA==
age: 1552149
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/new/48-squared/sa/44ab510f37755d1d9d4c4dfa9b1f25bed9b2a95c.png
200 OK 534 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/new/48-squared/sa/44ab510f37755d1d9d4c4dfa9b1f25bed9b2a95c.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash c5ba34de4a5b15c8e5966ce4ac6dac7d
d87ca11092c06c059948bca64995703ce9646f98
3f32c4cf32cba619d3e8a5737d713c0d2633fd369f668a8fc038c525e6b20512
GET /static/img/flags/new/48-squared/sa/44ab510f37755d1d9d4c4dfa9b1f25bed9b2a95c.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 534
server: nginx
date: Thu, 01 Dec 2022 08:19:08 GMT
last-modified: Mon, 07 Sep 2020 10:40:09 GMT
etag: "5f560e09-216"
expires: Sat, 31 Dec 2022 08:19:08 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: mpJj4yvc6ExQ1mC-SZOokGG-7QdpCeCItHsC0C9SqGx7Co7d3vtnQA==
age: 266643
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/new/48-squared/kr/4cb76b458a73ca4c1de034c7623475278d363ce6.png
200 OK 870 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/new/48-squared/kr/4cb76b458a73ca4c1de034c7623475278d363ce6.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 52c9301117c90f4f0f02957fb952f163
7e947ebefa1352e7282626e90e68442896c606e6
9f31f4ed393b17f37ea3ec9572bdda6ac8c1a3e3ee410743ac2b69f4717b4425
GET /static/img/flags/new/48-squared/kr/4cb76b458a73ca4c1de034c7623475278d363ce6.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 870
server: nginx
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Thu, 10 Nov 2022 08:10:19 GMT
expires: Sat, 10 Dec 2022 08:10:19 GMT
cache-control: max-age=2592000
etag: "5f55f887-366"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: LjyXgt9KOfH9eHBBbw4ncv6w7z22GKC7kMexrj6gXoQEWufLKTFjyw==
age: 2081572
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/new/48-squared/il/fc1907ccd86aa051f7fbe22649d1e31ac6aee016.png
200 OK 325 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/new/48-squared/il/fc1907ccd86aa051f7fbe22649d1e31ac6aee016.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 6fedf345605f454aa06cc4d6cdf07c95
566b06216ad282e7b0a34b23803f9f459cf0fa8c
6ad5ceae28b78a9253cc023db0dc2dc95684e086c9c69672f4d61c64b483adf5
GET /static/img/flags/new/48-squared/il/fc1907ccd86aa051f7fbe22649d1e31ac6aee016.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 325
server: nginx
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Mon, 14 Nov 2022 06:59:34 GMT
expires: Wed, 14 Dec 2022 06:59:34 GMT
cache-control: max-age=2592000
etag: "5f55f887-145"
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 5-8MszVILf6iFWj_vHky6sg_0QpghUP_AnjpHil9a8LVH5mV2IGWCA==
age: 1740217
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/new/48-squared/lv/393103a26c1d5f1fbd7d9674732bbdfc42296399.png
200 OK 142 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/new/48-squared/lv/393103a26c1d5f1fbd7d9674732bbdfc42296399.png
IP
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash ddb2ed817fb9ff1e8fa103e303126d92
db7c6839bb7acec47406626cd0db92f5ae203a7f
90f140a70c71755fed1d533e2f837406fb1a6dde2d18d4318d65fb90bad9332c
GET /static/img/flags/new/48-squared/lv/393103a26c1d5f1fbd7d9674732bbdfc42296399.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 142
server: nginx
date: Sun, 27 Nov 2022 00:45:17 GMT
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
etag: "5f560e08-8e"
expires: Tue, 27 Dec 2022 00:45:17 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: hJlnU5ZRo8G8Na8uH3cfKiPzbDqprz5PFSh0lkSjZKyWxaJXemlzMg==
age: 639474
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/new/48-squared/ua/2ea50f1c1fb480c4557a5578f71657fc3152c3a1.png
200 OK 134 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/new/48-squared/ua/2ea50f1c1fb480c4557a5578f71657fc3152c3a1.png
IP
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash f4db0dc55878fe02bb1efff8fc8dfe00
233ad877840f93216679c862e72be0d38a3c1132
4d5747ee4bfc01093d27ec5833305780e8797e361214269f85ca824274d7b4ed
GET /static/img/flags/new/48-squared/ua/2ea50f1c1fb480c4557a5578f71657fc3152c3a1.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 134
server: nginx
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Thu, 10 Nov 2022 14:44:43 GMT
expires: Sat, 10 Dec 2022 14:44:43 GMT
cache-control: max-age=2592000
etag: "5f55f887-86"
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: tgbLprZMKKfG6jNsrNa7qXbY0mg2f9yRarn3_ML0t4KskdOJ-DiwgQ==
age: 2057908
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/new/48-squared/in/20aa535a5d3c505dd02fea275ed1a36c0fb1fe08.png
200 OK 344 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/new/48-squared/in/20aa535a5d3c505dd02fea275ed1a36c0fb1fe08.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash d393a8574f0e51fce295082d390baad2
bd9f6c20fc33d74ca2b49e828721298c1beaabe7
fe628ee3822daace85b0d6b50b24295b25406735b724d65ac7813d3a23e35bb2
GET /static/img/flags/new/48-squared/in/20aa535a5d3c505dd02fea275ed1a36c0fb1fe08.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 344
server: nginx
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Tue, 22 Nov 2022 16:25:14 GMT
expires: Thu, 22 Dec 2022 16:25:14 GMT
cache-control: max-age=2592000
etag: "5f560e08-158"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: D-y_dlvO0RPtS4OX0U62wH7ZaeDvhblFhD2NZk5S8cJs93JXHJ1dsg==
age: 1015077
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/new/48-squared/id/e7d3d00965d8c994a72807b43b21c648250cf906.png
200 OK 121 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/new/48-squared/id/e7d3d00965d8c994a72807b43b21c648250cf906.png
IP
File type PNG image data, 48 x 48, 2-bit colormap, non-interlaced\012- data
Hash 40b14f52ee0e84a6b7f2395438df4e89
3a1b4751f73b37112ea8abe9d8e1e43fb0b5dcc1
0839f5f4321e755f66f00aebe4ecad12e81de7d87b73600f621f3e4067bec79b
GET /static/img/flags/new/48-squared/id/e7d3d00965d8c994a72807b43b21c648250cf906.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 121
server: nginx
date: Fri, 02 Dec 2022 09:33:21 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-79"
expires: Sun, 01 Jan 2023 09:33:21 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 43Zs9RpDpQObi8JXIEW2JAz_VngGkk6aWxFOXJmR3x9zex2fNHTVEA==
age: 175790
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/new/48-squared/my/6d811cf6127cea0a957ca0243546a03339fa19ac.png
200 OK 499 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/new/48-squared/my/6d811cf6127cea0a957ca0243546a03339fa19ac.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 822b7bd88d4723227ae587567f978918
767884bb4c8904e55bd5c943aec9a867984137b4
e5f05ae53de8b16cc10e8bc868e9c5d9786930973bdce663ee64d206c04388ef
GET /static/img/flags/new/48-squared/my/6d811cf6127cea0a957ca0243546a03339fa19ac.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 499
server: nginx
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Thu, 10 Nov 2022 08:10:19 GMT
expires: Sat, 10 Dec 2022 08:10:19 GMT
cache-control: max-age=2592000
etag: "5f55f887-1f3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: _gsfuaPFOWQAG-hBfCmpFSdoHDbAcJCapi4PtUJUDtL3XMRb3NMsmg==
age: 2081572
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/new/48-squared/th/53a76d6856962953d739d07ac61f04adee50a3d1.png
200 OK 150 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/new/48-squared/th/53a76d6856962953d739d07ac61f04adee50a3d1.png
IP
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash ff949a5fc9c52cbb395e15afd6cbbf53
a63fbcbe8300ee1a16399b46c1fd300f1b9e6b8b
67b2c242d9fb8390f051c11070e23792de15f513d53175ce7730484a7c789ef9
GET /static/img/flags/new/48-squared/th/53a76d6856962953d739d07ac61f04adee50a3d1.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 150
server: nginx
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Thu, 10 Nov 2022 14:44:43 GMT
expires: Sat, 10 Dec 2022 14:44:43 GMT
cache-control: max-age=2592000
etag: "5f560e08-96"
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: LznBrhoac9APrDz46TqM4mvltGPIfhEilugennzKS4aoR6Oj1hKShg==
age: 2057908
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/new/48-squared/ee/509074558f4fe7c71ceed57584dec0382274dd16.png
200 OK 139 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/new/48-squared/ee/509074558f4fe7c71ceed57584dec0382274dd16.png
IP
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 12aaeead084db9341a3afbd71d0b123d
5e048ae4bd509d08cd5a17d99d5430e104da7013
8bc3c2630c36b9713f3d002ed54e49c7671ec960ef0d8b02e32f2fdba2af6cb6
GET /static/img/flags/new/48-squared/ee/509074558f4fe7c71ceed57584dec0382274dd16.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 139
server: nginx
date: Sun, 27 Nov 2022 11:23:58 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-8b"
expires: Tue, 27 Dec 2022 11:23:58 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 3nov1hQ0-tIQtAKCelmEmyhdX8nunXjejdnooP-XUkg2HxAFW28CGg==
age: 601153
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/new/48-squared/hr/e7a46f4dad977aecafa6a3680972e0c137a1bc41.png
200 OK 815 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/new/48-squared/hr/e7a46f4dad977aecafa6a3680972e0c137a1bc41.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 0964eedc0f19b195664c3f75bb22c6ab
22b1a1a6062e7f5fcad6bcb023bb5fd87d22e07d
fff82225f56361a415858aa788a2d640331f82f6d9462ac9dbcf39e9023b5a6f
GET /static/img/flags/new/48-squared/hr/e7a46f4dad977aecafa6a3680972e0c137a1bc41.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 815
server: nginx
date: Fri, 02 Dec 2022 09:33:36 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-32f"
expires: Sun, 01 Jan 2023 09:33:36 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: nPg3XWw9o2_K2QKS78FiEPahNFc8MJc665UzhakYPCK2F4S1JxwmCA==
age: 175775
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/new/48-squared/lt/5bb712a60a82b7e075deba5b102aa36348bbb255.png
200 OK 140 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/new/48-squared/lt/5bb712a60a82b7e075deba5b102aa36348bbb255.png
IP
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 7c4ca938a6f3b20c4b24b24fc16afb3d
8e9569b41f3b36e88ddba9f85627dc6d48764e88
f28938e268eb5573c2e34f320e61a80b20599684a3fc502a01e29ec696701c8e
GET /static/img/flags/new/48-squared/lt/5bb712a60a82b7e075deba5b102aa36348bbb255.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 140
server: nginx
date: Thu, 10 Nov 2022 05:47:54 GMT
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
etag: "5f560e08-8c"
expires: Sat, 10 Dec 2022 05:47:54 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: HXi9nMua4E_JNhkXw3dFFJGCv31pAlWrLmXSecvCQOEyeCcld-Q0FQ==
age: 2090117
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/new/48-squared/sk/29e3667f5aca74c157af9225d5a97a74a41e52ef.png
200 OK 573 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/new/48-squared/sk/29e3667f5aca74c157af9225d5a97a74a41e52ef.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 243c2ae0611333fde9bfb06dd47f6300
2deae15cb1ea681950abf0456e0ddffeb940b158
5acf315305da0ed67d79de0983465c4baf314b34456a0f8df7f0faad0e5dd34b
GET /static/img/flags/new/48-squared/sk/29e3667f5aca74c157af9225d5a97a74a41e52ef.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 573
server: nginx
date: Wed, 30 Nov 2022 03:10:01 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-23d"
expires: Fri, 30 Dec 2022 03:10:01 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: ua_cci79-0CEVwkZuTcmdvPv9Dv28BW0HUURnhzfDfchCWD92yDf1g==
age: 371590
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/new/48-squared/rs/c1bc4fc1d782713cfec17a071dadca6b755a233e.png
200 OK 1.4 kB URL HTTP/2 t-cf.bstatic.com/static/img/flags/new/48-squared/rs/c1bc4fc1d782713cfec17a071dadca6b755a233e.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash b9379a24299e89e8a3a7f67e055583f3
9fcee25113376edc2308bd7e28d30a4a924cbd58
b2d098301fdd75a1c93c85f1f349262d5f7ca3de8a6eaad518095258c19e8a1b
GET /static/img/flags/new/48-squared/rs/c1bc4fc1d782713cfec17a071dadca6b755a233e.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1386
server: nginx
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Mon, 14 Nov 2022 06:59:38 GMT
expires: Wed, 14 Dec 2022 06:59:38 GMT
cache-control: max-age=2592000
etag: "5f55f887-56a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: Whjijakz1oLyUto995s-QJPK0zW5bmMQg7Wx6EYWev_V73mw_kUElg==
age: 1740213
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/new/48-squared/si/f0619cdd45548522566c6d72a660ddc011906184.png
200 OK 442 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/new/48-squared/si/f0619cdd45548522566c6d72a660ddc011906184.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 05cbcc07c185368a084a9309aa914d61
8e11596590eacbb80269c99400b4a87e02e2583b
211e73d3bad99d5286e8f2378547adbf522b0f047e45aeed0d5dea6741488444
GET /static/img/flags/new/48-squared/si/f0619cdd45548522566c6d72a660ddc011906184.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 442
server: nginx
date: Thu, 10 Nov 2022 08:10:19 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-1ba"
expires: Sat, 10 Dec 2022 08:10:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: AHgHVTxJyOzE9VqsESIaRZm2gMSpMJq7qgzRipHDub5aUFae8iXYCw==
age: 2081572
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/new/48-squared/vn/90b17da2aafaebce7b0c34189747e1e10dba8041.png
200 OK 333 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/new/48-squared/vn/90b17da2aafaebce7b0c34189747e1e10dba8041.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 3a0135828216d13780bbd76bc0d6617c
613be32ee6beabb7a18a107f6c9bdd0c5d6dada9
37cb08ba3ee531e1f6b5a8a3fbf4be6013a3a9a0442286b07aeb2c947530cf04
GET /static/img/flags/new/48-squared/vn/90b17da2aafaebce7b0c34189747e1e10dba8041.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 333
server: nginx
date: Sun, 27 Nov 2022 11:23:58 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-14d"
expires: Tue, 27 Dec 2022 11:23:58 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: Pd4t3wwVkAHL6Nbg_HOTrvoqHZBBmt5xJXfEVNicYX3DadetujUoHA==
age: 601153
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/new/48-squared/ph/7048127466891462116ee2774154585fb5607aba.png
200 OK 663 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/new/48-squared/ph/7048127466891462116ee2774154585fb5607aba.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 47f9d3fafada1c4125dd5abbef01d314
5e36976caec0396e0847c76c413a0189ff2cbbf6
a99fa5dc87d4d9a32c930d644a790c6dfba9073d0a11f6cc000ce599b9ba00c7
GET /static/img/flags/new/48-squared/ph/7048127466891462116ee2774154585fb5607aba.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 663
server: nginx
date: Sat, 03 Dec 2022 00:36:31 GMT
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
etag: "5f560e08-297"
expires: Mon, 02 Jan 2023 00:36:31 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 9ckCQOMUn5p5Y21gptZnQrI-Ofl0cfiHRkz1dxU9xgx5x_AAIb1_Gg==
age: 121600
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/new/48-squared/is/7d644655f895f8e346b964dc18cf5b6608a98d52.png
200 OK 298 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/new/48-squared/is/7d644655f895f8e346b964dc18cf5b6608a98d52.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 227c1e1707b8caf0b17266f188b3b099
294b9da49254731a4cb0fe538d9bc8ef44d1dd92
e1e54eb27d785ff86901a728964f40183e845b8301f9196e163e5fe919bcfb5f
GET /static/img/flags/new/48-squared/is/7d644655f895f8e346b964dc18cf5b6608a98d52.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 298
server: nginx
date: Mon, 14 Nov 2022 06:59:38 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
expires: Wed, 14 Dec 2022 06:59:38 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "5f55f887-12a"
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: CVcZ4rPV6qzHX5LeAk79W4sOhB4dhmBgrdejJ6HVRyRAeNH_sGXdWw==
age: 1740213
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/city/square250/644297.webp?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o=
200 OK 15 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/city/square250/644297.webp?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o=
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ce0484a62e175f311523b75f140b4211
eba0d06f0c622ecf224822c856430ad707ebdfc1
edf0c0cf1cb6689a78e3b4cd11ff14de3c5947583b589dfbb87379023a484991
GET /xdata/images/city/square250/644297.webp?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o= HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 14598
server: nginx
date: Sat, 05 Nov 2022 10:21:14 GMT
etag: "28e7cbdab023762d0508afad609ffdf9e02f943c"
expires: Mon, 05 Dec 2022 10:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: WiNjihulihSQX6XvPY2H6eHCDM7WvKU7A70lYCZ29T1et7yHDGElPw==
age: 2505717
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/city/square250/644293.webp?k=24c08396bd44343c9dcc78f0df41e114bf7e6aeda3d339101c37e7ba3aa707db&o=
200 OK 11 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/city/square250/644293.webp?k=24c08396bd44343c9dcc78f0df41e114bf7e6aeda3d339101c37e7ba3aa707db&o=
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e61daadd9f2361db8bea014c640fc26b
8e637a06e40e6d0d780cf55b0982fd82d2dfbacc
941706cdc14e54f8ec6c3bacc8b5bad26dd5553d0bbd34490450e67387acb132
GET /xdata/images/city/square250/644293.webp?k=24c08396bd44343c9dcc78f0df41e114bf7e6aeda3d339101c37e7ba3aa707db&o= HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 10668
server: nginx
date: Mon, 07 Nov 2022 09:19:28 GMT
etag: "e984a8fd673340869b931f90e66a4b897efdf3a4"
expires: Wed, 07 Dec 2022 09:19:28 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: uB1WF7GtCIi-40lzn-Ec6znW6sb2pqKMhcwiwXtXKA-u9e9K2yeYHw==
age: 2336623
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/city/square250/740935.webp?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o=
200 OK 10 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/city/square250/740935.webp?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o=
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f46894a16ebb993b489c7eb4947b2321
a3ebffea1f61cb837f7512345ea899a5908cbf0a
ea3005e0d81b1ad9fded26293f7442ee24413818af379d68bed7d717e8b5f7f2
GET /xdata/images/city/square250/740935.webp?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o= HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 10180
server: nginx
date: Thu, 10 Nov 2022 02:22:08 GMT
etag: "dbd978f6507c1d3c933eec820fee0f3195453b8c"
expires: Sat, 10 Dec 2022 02:22:08 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: W9VTu63jIjuS7miB3C9v1GQdo7VS9wfSRj_yJQW5oLzvAQoB0BXNLQ==
age: 2102463
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/js/error_catcher_bec_cft/282f83b6049fe9bacd964cb6ea8a6d5447528b14.js
200 OK 15 kB URL HTTP/2 t-cf.bstatic.com/static/js/error_catcher_bec_cft/282f83b6049fe9bacd964cb6ea8a6d5447528b14.js
IP
File type ASCII text, with very long lines (6029), with no line terminators
Hash 1d30709decd1daf16cc17473e08e4aac
863b431472d88f928075c81567b046e1c1cb6f35
c8de0aee2048293f46bc6fc7aa8625f4a717d1297b96da2b577dc6c1fe3d4925
GET /static/js/error_catcher_bec_cft/282f83b6049fe9bacd964cb6ea8a6d5447528b14.js HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
last-modified: Mon, 06 Sep 2021 09:06:05 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sat, 05 Nov 2022 02:43:43 GMT
expires: Mon, 05 Dec 2022 02:43:43 GMT
cache-control: max-age=2592000
etag: W/"6135d9fd-178d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 05844663035089f465172d861220e698.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: XPmiUjiA2M9EPB-uVZui221uVELLExVT90IZ5mpF_Hya7MNFqHagnw==
age: 2533167
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/city/square250/671694.webp?k=cd1e3603afe4edd09f829675efb1cdc9a5925bed25a642bfc4d909602c231624&o=
200 OK 14 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/city/square250/671694.webp?k=cd1e3603afe4edd09f829675efb1cdc9a5925bed25a642bfc4d909602c231624&o=
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ae6f21ca1e36bc750e27be252a59c000
c5896a0dba0a94a551569b4cd040897d5bd935da
29c33b1d0971d25f68cee3a5f098598bb0e6246746f62341c066eb3fc53054f9
GET /xdata/images/city/square250/671694.webp?k=cd1e3603afe4edd09f829675efb1cdc9a5925bed25a642bfc4d909602c231624&o= HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 13820
server: nginx
date: Mon, 07 Nov 2022 09:19:29 GMT
etag: "cf950dea43cbc2e84cbf94450df274f733624e2d"
expires: Wed, 07 Dec 2022 09:19:29 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: WcOjaaV7b794zwd0r-JAz1ctqRcRbnuY3yBrhwixmtUrAcN9G-xG2A==
age: 2336622
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/region/square250/48107.webp?k=bc7ff9cf4d26882ff93f92643455885a88b9b0ae37b9ed109687ad0890af2dfd&o=
200 OK 8.2 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/region/square250/48107.webp?k=bc7ff9cf4d26882ff93f92643455885a88b9b0ae37b9ed109687ad0890af2dfd&o=
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 771aeeaab19a95606d95d745b82c71a5
e0ea1f6e9d3213d1c9dc5776630581343c008efe
34ab25e12e5af40fb0361fbc2791c2b95ca19ff49f723c0670d1536e94167899
GET /xdata/images/region/square250/48107.webp?k=bc7ff9cf4d26882ff93f92643455885a88b9b0ae37b9ed109687ad0890af2dfd&o= HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 8182
server: nginx
date: Wed, 30 Nov 2022 01:15:27 GMT
etag: "6d99ecc6af0e84dde4b6593b6495affc93d67fcd"
expires: Fri, 30 Dec 2022 01:15:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: OQlO0ZMnjtw4sV_Nfpg5H2M6k-4QJokcNZv5-Zh8bTVK0gMr_sN-BA==
age: 378464
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/city/square250/954959.webp?k=37410091e9d0e74278ef7710d594a8ef5882decaf47e8f9a7ca30f9e85bbab75&o=
200 OK 5.0 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/city/square250/954959.webp?k=37410091e9d0e74278ef7710d594a8ef5882decaf47e8f9a7ca30f9e85bbab75&o=
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5f34caad9044fb6b97304bf376740090
d919e1aa423bdce0be6d91885666114f7093ee29
3ca928167fc0c1e2ffe56f5910307f715a69c7080d783492cd41ed1ebda75fd6
GET /xdata/images/city/square250/954959.webp?k=37410091e9d0e74278ef7710d594a8ef5882decaf47e8f9a7ca30f9e85bbab75&o= HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 4970
server: nginx
date: Thu, 01 Dec 2022 16:34:57 GMT
etag: "d01d2f7b6c1a58e5ca1d1642dac3763bd18acdf2"
expires: Sat, 31 Dec 2022 16:34:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: _us0cLefQ8VzuUKw9xH-gJ8wsLIduRqpcdta_Fr4UrrpLzZS2CWEjg==
age: 236894
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/city/square250/737551.webp?k=ad4ef19a2b979ef794b56d1901e6937b874b4726a4085d8ddbe795f5c6bfed73&o=
200 OK 12 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/city/square250/737551.webp?k=ad4ef19a2b979ef794b56d1901e6937b874b4726a4085d8ddbe795f5c6bfed73&o=
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 443025206af2bd7174de9105a0d54e56
abed2877367f1a8e2ef8fcf107caee4ee915d095
b3d2c4aaa4adfa189b01e662ba5674f003db543e55b43e5237a78edb74b523b6
GET /xdata/images/city/square250/737551.webp?k=ad4ef19a2b979ef794b56d1901e6937b874b4726a4085d8ddbe795f5c6bfed73&o= HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 11708
server: nginx
date: Sun, 06 Nov 2022 08:04:52 GMT
etag: "0790aacd48db5f0b83aac324e38c6ff05169783c"
expires: Tue, 06 Dec 2022 08:04:52 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: aKOjIR31c5mbvKx9AXPpWiaB4u8td8V-Oyaob8FC7STmO7wQT7gPTA==
age: 2427499
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/city/square250/930853.webp?k=85cc355550cdcf1ca77d1a7a635f4294e09dee696051866597a63fd7edd7af5a&o=
200 OK 12 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/city/square250/930853.webp?k=85cc355550cdcf1ca77d1a7a635f4294e09dee696051866597a63fd7edd7af5a&o=
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0867b4a18dd02f341467ac3cd9c87624
6dfa10bfc60382146a1cbdcdeaa1d2bf94ca8fe6
abac49fbb301fb90860cc5c950d292473ac3db44a6fc2e62398e61bf2bf7655f
GET /xdata/images/city/square250/930853.webp?k=85cc355550cdcf1ca77d1a7a635f4294e09dee696051866597a63fd7edd7af5a&o= HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 12010
server: nginx
date: Fri, 04 Nov 2022 12:53:39 GMT
etag: "ded732e07d4aa6f26e0071c34cc6945199c35d30"
expires: Sun, 04 Dec 2022 12:53:39 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: PLPFCwc9m0xqUHMJ8hb_CXA5Q_CAXeORNddt7GTHPpPP3xPPdLGzkg==
age: 2582972
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/city/square250/967857.webp?k=5733a245dbb186ec0986c0a5c533acc704650d51cdfed7410cf0bcef375e5bc4&o=
200 OK 12 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/city/square250/967857.webp?k=5733a245dbb186ec0986c0a5c533acc704650d51cdfed7410cf0bcef375e5bc4&o=
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 57d087e34bf07df0e6df2f13d870f2e2
47462553409d660454e9bee14f3f442d7e757e13
d504a989b326836c6718ca6acb3806f60ad3e5a2cc48824a7b1c6d41691e8654
GET /xdata/images/city/square250/967857.webp?k=5733a245dbb186ec0986c0a5c533acc704650d51cdfed7410cf0bcef375e5bc4&o= HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 12264
server: nginx
date: Sun, 06 Nov 2022 11:15:47 GMT
etag: "27586967e639a71d2ce539658f0a6fe60eece616"
expires: Tue, 06 Dec 2022 11:15:47 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 0mJntYpxMQBjobJ49I4kll5M7cfv9RPsGp3Ww1BDR-E-4Q2FLxFrgQ==
age: 2416044
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/24/fr/c3dafe717a0b4b97e6ddd0d791e8a018d8f96310.png
200 OK 406 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/24/fr/c3dafe717a0b4b97e6ddd0d791e8a018d8f96310.png
IP
File type PNG image data, 24 x 24, 8-bit colormap, non-interlaced\012- data
Hash 6e35d53899b5a1260f946a00b691e0b7
5afcc2cca4ef34005fe1d22784f90b727fceeb08
2fd19cf58102989e49660b27b21605038d4282cf758add4841285c2c17f2dacd
GET /static/img/flags/24/fr/c3dafe717a0b4b97e6ddd0d791e8a018d8f96310.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 406
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:53 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Wed, 09 Nov 2022 11:04:02 GMT
expires: Fri, 09 Dec 2022 11:04:02 GMT
cache-control: max-age=2592000
etag: "5cadd1d1-196"
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: cS4Xubk-E7KwnKSO7gUNVBS_t5T39fPpd9zBFMKCqNxkSOHG3v-Qqw==
age: 2157549
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/24/no/6193a14e4d59f814f46ee6313cdd6e11811abeb3.png
200 OK 405 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/24/no/6193a14e4d59f814f46ee6313cdd6e11811abeb3.png
IP
File type PNG image data, 24 x 24, 8-bit colormap, non-interlaced\012- data
Hash be6379111ab8866c20c123b85af97d42
819ba2a2c986ed6f4ff309661b5c27ac172228df
fecd6ef10eb5111323f3b1bb9d8e99e37a881abe33ae37f8e74f046c3634b25f
GET /static/img/flags/24/no/6193a14e4d59f814f46ee6313cdd6e11811abeb3.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 405
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:53 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sat, 05 Nov 2022 06:14:13 GMT
expires: Mon, 05 Dec 2022 06:14:13 GMT
cache-control: max-age=2592000
etag: "5cadd1d1-195"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: JSMLg8nYWJtowNQ5ioo70s3l4mrlHdRJg4kxG4-Z0F3bmPtKwdYISw==
age: 2520538
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/24/gb/b2f01d4fd94cb1420fcdbbef62c06ade1026fbbd.png
200 OK 786 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/24/gb/b2f01d4fd94cb1420fcdbbef62c06ade1026fbbd.png
IP
File type PNG image data, 24 x 24, 8-bit colormap, non-interlaced\012- data
Hash b886858d3043782c8760367f40f31187
81bd3c37344c99a7ce8f29f685c770373aa6cc16
c4827c36112be1d0773cbf4eb709f4b01b4ab4bc1a79c90aafc4b196c9445393
GET /static/img/flags/24/gb/b2f01d4fd94cb1420fcdbbef62c06ade1026fbbd.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 786
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:53 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Wed, 09 Nov 2022 11:04:02 GMT
expires: Fri, 09 Dec 2022 11:04:02 GMT
cache-control: max-age=2592000
etag: "5cadd1d1-312"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: m_dKpzhzWgyNU9-6_UdV-tSNi4XXUYoLEBF_olKUKLhY2wh3uC6RgA==
age: 2157549
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/24/es/a14721d7698af5131b08bd34227508c729ab11bc.png
200 OK 490 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/24/es/a14721d7698af5131b08bd34227508c729ab11bc.png
IP
File type PNG image data, 24 x 24, 8-bit colormap, non-interlaced\012- data
Hash d2d4c6110399a8b2c4c1ea09b7f8eded
f846d4aee888c73998150452c3bde5ff71f7a0e7
630bbc6535a3d0cee406f52ee3664265adc2eaa51227fb8a3ff5c70af9e79b3a
GET /static/img/flags/24/es/a14721d7698af5131b08bd34227508c729ab11bc.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 490
server: nginx
date: Mon, 28 Nov 2022 04:24:56 GMT
last-modified: Wed, 10 Apr 2019 11:21:53 GMT
etag: "5cadd1d1-1ea"
expires: Wed, 28 Dec 2022 04:24:56 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: sgKzGsNqffUw8_jBYqppiaAZ23WsnJBGw4H1cHYkviBxttEocfBmVA==
age: 539894
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/flags/24/it/b539a003f197845e447b9d00d91cd74dd57bf3dd.png
200 OK 436 B URL HTTP/2 t-cf.bstatic.com/static/img/flags/24/it/b539a003f197845e447b9d00d91cd74dd57bf3dd.png
IP
File type PNG image data, 24 x 24, 8-bit colormap, non-interlaced\012- data
Hash 1416ab6009ad93f86e9cfc23a54e0c40
0578e45fadd1da2c26a4d5fe814a9239ff5eae97
88bb107350d5324906a2cf2b95847879ecf6bb09502d1186c38daaf15268830f
GET /static/img/flags/24/it/b539a003f197845e447b9d00d91cd74dd57bf3dd.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 436
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:53 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Mon, 28 Nov 2022 11:55:23 GMT
expires: Wed, 28 Dec 2022 11:55:23 GMT
cache-control: max-age=2592000
etag: "5cadd1d1-1b4"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: _CzEL0tSwKdeHtar20Mxwi0zf1FMaeQA-As4WL6tsk1O9CVsJjr-dg==
age: 512868
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/tfl/group_logos/logo_kayak/83ef7122074473a6566094e957ff834badb58ce6.png
200 OK 1.2 kB URL HTTP/2 t-cf.bstatic.com/static/img/tfl/group_logos/logo_kayak/83ef7122074473a6566094e957ff834badb58ce6.png
IP
File type PNG image data, 79 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 6384185cbe9a4f106857a3cb85caea98
0e31a4fe2ce98a8b4fda60687aa71079b4d3a95b
5839f0330821cf08029beddd6d248170da1af16cd7aff253e7bd075d591f5d42
GET /static/img/tfl/group_logos/logo_kayak/83ef7122074473a6566094e957ff834badb58ce6.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1154
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sat, 05 Nov 2022 06:30:44 GMT
expires: Mon, 05 Dec 2022 06:30:41 GMT
cache-control: max-age=2592000
etag: "5cadd1d3-482"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 0U5vA40U-c_5zIQYqAcqSS7AsWpTP5Q5IaXGy6dCaC7et8rd1Kx5Dg==
age: 2519550
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/tfl/group_logos/logo_agoda/1c9191b6a3651bf030e41e99a153b64f449845ed.png
200 OK 2.1 kB URL HTTP/2 t-cf.bstatic.com/static/img/tfl/group_logos/logo_agoda/1c9191b6a3651bf030e41e99a153b64f449845ed.png
IP
File type PNG image data, 70 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 27e71a5124018e16eae0b8897618623d
d0d54d88b04edfc71f338c19eab9994632bc6ced
1d6e86e59ab7235a8343f494c8e8da6cc02c5a98a75d682401340e6d06935f20
GET /static/img/tfl/group_logos/logo_agoda/1c9191b6a3651bf030e41e99a153b64f449845ed.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2146
server: nginx
last-modified: Thu, 12 Mar 2020 10:15:57 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sun, 04 Dec 2022 01:52:15 GMT
expires: Tue, 03 Jan 2023 01:52:15 GMT
cache-control: max-age=2592000
etag: "5e6a0bdd-862"
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: vDT1Q0o4JB3euXamLMbmIitoPlq4E3yn8fYbvGhgKGO1He4-g98L4Q==
age: 30656
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/tfl/group_logos/logo_rentalcars/6bc5ec89d870111592a378bbe7a2086f0b01abc4.png
200 OK 3.2 kB URL HTTP/2 t-cf.bstatic.com/static/img/tfl/group_logos/logo_rentalcars/6bc5ec89d870111592a378bbe7a2086f0b01abc4.png
IP
File type PNG image data, 109 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 38784d782a29a302dab9135d63aef953
04db0e863a35062a355c4b2ea9585ec83c4ffc3e
8561e200a6a57195e480ed9d893b14579ef6acdeabfbb3fe22b5e4ec9b84b455
GET /static/img/tfl/group_logos/logo_rentalcars/6bc5ec89d870111592a378bbe7a2086f0b01abc4.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 3221
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sun, 27 Nov 2022 12:34:23 GMT
expires: Tue, 27 Dec 2022 12:34:23 GMT
cache-control: max-age=2592000
etag: "5cadd1d3-c95"
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: sgaSOmo_dc51qn3kxEgxM7TvbQGmhjlSYjr-OZmYIetZJQS4w2NZow==
age: 596928
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/tfl/group_logos/logo_opentable/a4b50503eda6c15773d6e61c238230eb42fb050d.png
200 OK 2.3 kB URL HTTP/2 t-cf.bstatic.com/static/img/tfl/group_logos/logo_opentable/a4b50503eda6c15773d6e61c238230eb42fb050d.png
IP
File type PNG image data, 95 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash d05a0ab9bf394439a1584a2b0d44db5c
183c28023d3ba3358a7a5df1db887582ae5340ed
b23272a9692c4ec3c020935917e9d096490876c976abec1290bd3cc9aae13974
GET /static/img/tfl/group_logos/logo_opentable/a4b50503eda6c15773d6e61c238230eb42fb050d.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2344
server: nginx
date: Sun, 27 Nov 2022 04:46:03 GMT
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
expires: Tue, 27 Dec 2022 04:46:03 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "5cadd1d3-928"
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: FvzyK0dhECA7rnczPhbAxaWQPsRJpkHTk69_c6Rn687vR9wnLX7yvQ==
age: 625028
X-Firefox-Spdy: h2
t-cf.bstatic.com/psb/capla/static/js/435.829226c8.chunk.js
200 OK 593 B URL HTTP/2 t-cf.bstatic.com/psb/capla/static/js/435.829226c8.chunk.js
IP
File type ASCII text, with very long lines (483)
Hash fa29c83ab2dd0e8c893a53e85a65d93d
cc8ebb4b2f09940e3f2f726055179a6c3b51e563
6bbddbdb65eb60fa9fa38817747b2107ef36667b4c1beeacab6063cb55c51018
GET /psb/capla/static/js/435.829226c8.chunk.js HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 593
server: nginx
date: Thu, 17 Nov 2022 14:15:36 GMT
etag: "fa29c83ab2dd0e8c893a53e85a65d93d"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Thu, 17 Nov 2022 13:55:02 GMT
x-amz-expiration: expiry-date="Fri, 17 Mar 2023 13:55:02 GMT", rule-id=""
expires: Sat, 17 Dec 2022 14:15:36 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 05844663035089f465172d861220e698.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: o9G1yT69p1IYEsifgBhe4EPJ6B3PKgGA7dVmXEnGvhc92gCdzINWug==
age: 1454855
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/nobg_all_blue_iq/b700d9e3067c1186a3364012df4fe1c48ae6da44.png
200 OK 73 B URL HTTP/2 t-cf.bstatic.com/static/img/nobg_all_blue_iq/b700d9e3067c1186a3364012df4fe1c48ae6da44.png
IP
File type PNG image data, 1 x 100, 8-bit/color RGB, non-interlaced\012- data
Hash ff823944bc0bb9e4bf87f0ad14f687d1
4b68ba281b9ab171611569bf78971df6970efbc1
6153929734ec12ec07072f327c1112301828497e4dd356ca261461b0b7ba9621
GET /static/img/nobg_all_blue_iq/b700d9e3067c1186a3364012df4fe1c48ae6da44.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 73
server: nginx
date: Wed, 09 Nov 2022 06:01:42 GMT
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
etag: "5cadd1d3-49"
expires: Fri, 09 Dec 2022 06:01:42 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: FdU6zhIRkerWWCyGlEVsnt3q3paIAZ_QJgIHxocfWRFSaP0wP6TCJg==
age: 2175689
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/500x500/178968129.jpeg?k=52539cb8ac165dd6904836ac7f5474223f043df7ef00a7ad1f5feb35d2384613&o=
200 OK 17 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/500x500/178968129.jpeg?k=52539cb8ac165dd6904836ac7f5474223f043df7ef00a7ad1f5feb35d2384613&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 500x500, components 3\012- data
Hash f5f9461176e1c9b7b133940399ba746b
26e3b1482f81ca74f52808a87b0df143fa98bc10
48975da0bce54b088279321f00f24a16e099707da1d394550818e89ce08ec45d
GET /xdata/images/xphoto/500x500/178968129.jpeg?k=52539cb8ac165dd6904836ac7f5474223f043df7ef00a7ad1f5feb35d2384613&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 16657
server: nginx
date: Thu, 10 Nov 2022 12:53:24 GMT
etag: "5d37727dfef5b52f295348eb69f14ae96d152a40"
expires: Sat, 10 Dec 2022 12:53:24 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tUV-pP4037s0GsAJVznN69AebKq7T6mzg9ecPA0H7Si7k7kk1Ko88Q==
age: 2064587
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/js/genius_vip_cft/f980dbafa6b20d980f25ca835a161e7cece00d9d.js
200 OK 25 kB URL HTTP/2 t-cf.bstatic.com/static/js/genius_vip_cft/f980dbafa6b20d980f25ca835a161e7cece00d9d.js
IP
File type ASCII text, with very long lines (3122), with no line terminators
Hash 0a33f37aae1aeb2dcc7ab2451a2a0bae
cb5fa77be44c022c2e7bd4d1e774432456a98857
713fec2e84e202bed691d116527d878422811bb594ca1dcd084e414262d80d65
GET /static/js/genius_vip_cft/f980dbafa6b20d980f25ca835a161e7cece00d9d.js HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 01 Dec 2022 23:46:23 GMT
last-modified: Thu, 30 Jun 2022 08:09:45 GMT
expires: Sat, 31 Dec 2022 23:46:23 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: W/"62bd5a49-c32"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 05844663035089f465172d861220e698.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: gulGq6pWoKn4xkJfqxID94k7h9oSmXQ7dJmrrsy-w_nArB4wmcwqpA==
age: 211008
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/city/540x270/844103.webp?k=b4ff3d17a962184dfa8823beec573fa3f679306e8b3fa897b901ba0dedb157bd&o=
200 OK 24 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/city/540x270/844103.webp?k=b4ff3d17a962184dfa8823beec573fa3f679306e8b3fa897b901ba0dedb157bd&o=
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 540x270, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8da231dc5119fa2631196021b5b76b79
acc913dd71a600d59d1485aeaf478217e6efb323
0e422d4bd5462f934cf16f7cf8be46278492bc9f35f4765cbb2382ba9233588c
GET /xdata/images/city/540x270/844103.webp?k=b4ff3d17a962184dfa8823beec573fa3f679306e8b3fa897b901ba0dedb157bd&o= HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 24262
server: nginx
date: Fri, 25 Nov 2022 04:34:27 GMT
etag: "1317bd35f75cb8e92782083593522a0d00ea0b35"
expires: Sun, 25 Dec 2022 04:34:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: kGk7rJsQJWcMla--k4Yuc10BKsrd24O0v7-hgViYJ-KsBwLJCH3Fog==
age: 798524
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/js/sp-on-maps_cft/d30eef4dc5202875d4c3301b8a0e8ff09f9a0e28.js
200 OK 21 kB URL HTTP/2 t-cf.bstatic.com/static/js/sp-on-maps_cft/d30eef4dc5202875d4c3301b8a0e8ff09f9a0e28.js
IP
File type ASCII text, with very long lines (9646), with no line terminators
Hash 79aa124a97ab8e855ad74674852861dc
cba8ac7e15cb5148efa9880fdb9c464c39ca686f
889276c41f62b1733239249b9a46207e80f5d9ce478d39e613d8a4dc975b7bc6
GET /static/js/sp-on-maps_cft/d30eef4dc5202875d4c3301b8a0e8ff09f9a0e28.js HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Sun, 04 Dec 2022 01:06:40 GMT
last-modified: Thu, 19 May 2022 11:44:13 GMT
expires: Tue, 03 Jan 2023 01:06:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: W/"62862d8d-25ae"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 05844663035089f465172d861220e698.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: qajpNUVeZqKEjngepMhGegi1pJtFdp00mF9EUVZ28ZDqo0Q2DeLspg==
age: 33391
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/cross_product_index/accommodation/07ca5cacc9d77a7b50ca3c424ecd606114d9be75.svg
200 OK 24 kB URL HTTP/2 t-cf.bstatic.com/static/img/cross_product_index/accommodation/07ca5cacc9d77a7b50ca3c424ecd606114d9be75.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1446)
Hash a15c11aa2b3b67a95a18e40710cb3e2b
c6327f167af336ea99cfcfbc81593f6fca09eecd
b99907c6ee96332157daf78ae6354f8d464bf96d540f6629df91013b3777c540
GET /static/img/cross_product_index/accommodation/07ca5cacc9d77a7b50ca3c424ecd606114d9be75.svg HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t-cf.bstatic.com/static/css/xp-index-sb_cft.iq_ltr/8eb388808f339e272040797666d317d27156dd37.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Fri, 18 Nov 2022 21:21:46 GMT
last-modified: Wed, 10 Apr 2019 11:21:51 GMT
expires: Sun, 18 Dec 2022 21:21:46 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: W/"5cadd1cf-7f2"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: ci_PFWW0u7UTzQFn3OXKC7o2LzJocIVeCwnNFHGMV4ZlHFJQym9B_A==
age: 1342885
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/js/raf_cft/b9e5b0bcf00cff69d910550bedf9b680172d2b89.js
200 OK 53 kB URL HTTP/2 t-cf.bstatic.com/static/js/raf_cft/b9e5b0bcf00cff69d910550bedf9b680172d2b89.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash c2201addc5c3f75614946458684e1ffe
7fd1aeaf1b62bfa162048bca8983b7b734749a90
9fe6282a48bca8512a30a3c67b805a23aa83e7977da60220e66c3be8b58b49b0
GET /static/js/raf_cft/b9e5b0bcf00cff69d910550bedf9b680172d2b89.js HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 30 Nov 2022 05:21:24 GMT
last-modified: Fri, 16 Sep 2022 13:33:46 GMT
expires: Fri, 30 Dec 2022 05:21:24 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: W/"63247b3a-1db04"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 05844663035089f465172d861220e698.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: f-SqzSnvLui9wEfcYwUAc-LdvW7NetyGx2fdXyZ253OUKCsNM5GXzg==
age: 363707
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/cross_product_index/toggle/fb6f63d62231f9fe552d79b5448620b2e63c726e.svg
200 OK 7.9 kB URL HTTP/2 t-cf.bstatic.com/static/img/cross_product_index/toggle/fb6f63d62231f9fe552d79b5448620b2e63c726e.svg
IP
Hash ab362f8ce80cfc4d2dc91a57d165dbb6
ca27b00e7010db707d57b15c2e0b5662fdf92d5e
8aba14abb57e6d658dccda024eab5df7f7dd96a16f2354345b45c1b07f05443e
GET /static/img/cross_product_index/toggle/fb6f63d62231f9fe552d79b5448620b2e63c726e.svg HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t-cf.bstatic.com/static/css/xp-index-sb_cft.iq_ltr/8eb388808f339e272040797666d317d27156dd37.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Sun, 27 Nov 2022 18:56:40 GMT
last-modified: Wed, 10 Apr 2019 11:21:51 GMT
etag: W/"5cadd1cf-5e7"
expires: Tue, 27 Dec 2022 18:56:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: gzip
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: mRLL0dZL5DOoPLPFBPM2ohLneLfbxVWTL45MHDlOsOEEaVhAUsDIbQ==
age: 573991
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/fonts/booking-iconset-original/29bca18dce5a8e111855e31314a9b1d750ea9beb.woff2
200 OK 93 kB URL HTTP/2 t-cf.bstatic.com/static/fonts/booking-iconset-original/29bca18dce5a8e111855e31314a9b1d750ea9beb.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 92724, version 1.0\012- data
Hash f132633e65809ec36c0f01b8a29fa457
e68a5b0de3e08ac85a13426ce3d8c13ad21d38ff
a98c20990fe3e31203fe2db8384af8e05e7b358cdae3c28b034e1f02b47db630
GET /static/fonts/booking-iconset-original/29bca18dce5a8e111855e31314a9b1d750ea9beb.woff2 HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://t-cf.bstatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
content-length: 92724
server: nginx
date: Sat, 12 Nov 2022 03:58:08 GMT
last-modified: Wed, 10 Apr 2019 11:21:49 GMT
expires: Mon, 12 Dec 2022 03:58:08 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "5cadd1cd-16a34"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 05844663035089f465172d861220e698.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: SaplcsI9arLc3MqiQfaEsGB4DZCNG5MeQDXMvRddRzaEJ6HmoSrs5Q==
age: 1923903
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/714x300/173282684.jpeg?k=e31b490d521194e65d41490f43dc704291ca07eaa762b6f36bca714d3211b9a1&o=
200 OK 14 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/714x300/173282684.jpeg?k=e31b490d521194e65d41490f43dc704291ca07eaa762b6f36bca714d3211b9a1&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 714x300, components 3\012- data
Hash b08ebaadd8bdcdaab48146863ee7e2ac
ba8c861c80dfff7c6bb01c815341f7956f59908f
c3b9e0e160fdbdcfef162b2037b54f22235c6ed8186b1212666375215f9e671f
GET /xdata/images/xphoto/714x300/173282684.jpeg?k=e31b490d521194e65d41490f43dc704291ca07eaa762b6f36bca714d3211b9a1&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 14522
server: nginx
date: Thu, 01 Dec 2022 16:27:49 GMT
etag: "7fb9ec00bb0c9f5a5a1d0465de72694a66119e0d"
expires: Sat, 31 Dec 2022 16:27:49 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BSS3s2P8Lj1t-Iw-6Ojc3S-POhHRHb5wzDSXVxOaP-enj8m5dU4lYg==
age: 237323
X-Firefox-Spdy: h2
www.booking.com/c360/v1/track
200 OK 33 B URL HTTP/2 www.booking.com/c360/v1/track
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 42fcc80d879dd35c0bbdd04c1414890b
f1dbf58d1b458f9c50995bb8d84da4a67f2d437b
fb87565b58755d257fcf9af5b4b25e0dcfc682adb630dd2a32bbf56b91d2c325
POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Booking-Pageview-Id: 0ff44907ee1c009d
X-Booking-AID: 1858279
X-Booking-Session-Id: 4e7b3bdee1c9b7ec07c70785bf2891a5
X-Booking-SiteType-Id: 1
X-Partner-Channel-Id: 2
X-Booking-CSRF: Tq2MYwAAAAA=eB4IWDD5PEi38vVyRqNuRUBUzHSX96omAQ2JZiFwIkTsZfLg7WjGbzaAPKc1PL3wkHJt4o4MtK08s8QyHb6KiHBJ2FmXWIGHXkzF0bsyImEPq5wHsSBQvXo-HukJJcXOo8zL55aFv8-yy2aaD2qSu8VajjDW6g5rXlt-gMnvot8TsvIdlJstxPN04ZRzA4NNG5oE5btaLkklaB_y
X-Booking-Language-Code: en-us
X-Booking-Info: 1641760,1639350|3,1590420,1630600,1616480,1638370|1,1638220,1588860,1638370,1618710,1590420|1,1639610,1638440,1600200,1628410,1638430,1639350|1,1633680,1625600,1630360,1634460
X-Requested-With: XMLHttpRequest
Content-Length: 481
Origin: https://www.booking.com
Connection: keep-alive
Cookie: _pxhd=3eUrtKFqx9wQT7V6zytBSwmrdovfYfSljafT7Jcn1IbgoKpvGGK7bcODQgqLqZlrjVDNO1ujonlotJQv1jmEJw%253D%253D%253AYa5ft2aNOsTW04sRO5-SzES0Nel5l35vhiDi9e91W%252Fc1llOD1OLbx4uDUnr6r1xr-2%252FcZwvBXVdcwxXkaBZ3mc7WUH1XQK%252F8CvA59xpwFgw%253D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbXpFeYC4TUhDpugK287893NXS74M9I%2Bp%2BhB4v12MaYmFBmnSZBruuCn1NbrvEjBVBpQVu88h5dRF4in%2FmMhybq3yGDieCcbjFzko8aUQ%2BODbNPH0xut6vnHBdgTwvwp5KziPcJSVnPdT95VvEt1fgbGHCKvyiBgRLUor8q2uPCMY%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sun+Dec+04+2022+10%3A23%3A09+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=32247d32-b9e4-4c87-9ee5-fbd97246b047&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 33
server: nginx
date: Sun, 04 Dec 2022 10:23:12 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng_frontend_sese_exp=1; domain=.booking.com; path=/; expires=Tue, 03-Jan-2023 10:23:12 GMT; secure; HttpOnly
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbwcLxQQ4VaCqf%2F7LNukoZaTVbsbbHLgr5J2sYOGOxgd6mBAsn3rSg7RW%2Fo2Vma0rX554zSo2PcLRD2jpiNW%2FlEo9XIOdVmcaKacwiFjUNqrNX%2F91Nl4X3SyeStkh4e4jK8qwEKvmChCcuNwAwoUlH6W%2Fmz6rkH0mcYcubJN0AVr4%3D; domain=.booking.com; path=/; expires=Fri, 03-Dec-2027 10:23:12 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 828a61ebc3af4e0465a5577a4c08af7a.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: 51Zc-1jlz0JKARGNMP6Rjh1eIRpdhvNHZ317bbef5w2E6uoHvCJ20Q==
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/cross_product_index/guest/b2e5f2aa32b71ca0fc66aa671e4e958bcd69b7d0.svg
200 OK 640 B URL HTTP/2 t-cf.bstatic.com/static/img/cross_product_index/guest/b2e5f2aa32b71ca0fc66aa671e4e958bcd69b7d0.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (392)
Hash 6bd42a9767c4bb26c46434ee6050c7e2
d7ca4b68c0e4941f4f3edfec091a40c7a2573933
4daf318c9a37524f10900bdcd33c1dd9670a5547e1b12c1e9bf313e6a6a05921
GET /static/img/cross_product_index/guest/b2e5f2aa32b71ca0fc66aa671e4e958bcd69b7d0.svg HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t-cf.bstatic.com/static/css/xp-index-sb_cft.iq_ltr/8eb388808f339e272040797666d317d27156dd37.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Mon, 14 Nov 2022 07:00:26 GMT
last-modified: Wed, 10 Apr 2019 11:21:51 GMT
expires: Wed, 14 Dec 2022 07:00:26 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: W/"5cadd1cf-63d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: f_lpwBPj-Jfnc-rbFdDsNuKLLlX3sAnCj3Zthr7FSs-9Zl6DM1Yq2g==
age: 1740165
X-Firefox-Spdy: h2
www.booking.com/c360/v1/track
200 OK 33 B URL HTTP/2 www.booking.com/c360/v1/track
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 2ef0949d72ccdcc083647d001c8ba940
ebe4e2284d3892b010623597d0945b6b5cd64448
fe1a912baa83e36855bb934de3f2cfdffe77b1224a552533a4a7f2e984a51e52
POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
Content-Type: application/json
X-Booking-Platform: undefined
X-Booking-SiteType-Id: undefined
X-Booking-Pageview-Id: 0ff44907ee1c009d
X-Booking-Session-Id: undefined
X-Booking-ET-Seed: undefined
X-Booking-AID: 1858279
X-Booking-Label: undefined
X-Booking-CSRF: undefined
X-Booking-Language-Code: en-us
Origin: https://www.booking.com
Content-Length: 521
Connection: keep-alive
Cookie: _pxhd=3eUrtKFqx9wQT7V6zytBSwmrdovfYfSljafT7Jcn1IbgoKpvGGK7bcODQgqLqZlrjVDNO1ujonlotJQv1jmEJw%253D%253D%253AYa5ft2aNOsTW04sRO5-SzES0Nel5l35vhiDi9e91W%252Fc1llOD1OLbx4uDUnr6r1xr-2%252FcZwvBXVdcwxXkaBZ3mc7WUH1XQK%252F8CvA59xpwFgw%253D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbwcLxQQ4VaCqf%2F7LNukoZaTVbsbbHLgr5J2sYOGOxgd6mBAsn3rSg7RW%2Fo2Vma0rX554zSo2PcLRD2jpiNW%2FlEo9XIOdVmcaKacwiFjUNqrNX%2F91Nl4X3SyeStkh4e4jK8qwEKvmChCcuNwAwoUlH6W%2Fmz6rkH0mcYcubJN0AVr4%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sun+Dec+04+2022+10%3A23%3A09+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=32247d32-b9e4-4c87-9ee5-fbd97246b047&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0; bkng_frontend_sese_exp=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 33
server: nginx
date: Sun, 04 Dec 2022 10:23:12 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbwcLxQQ4VaCqeZAv6s7sWFK0onWP6K2B7S2ZsW7NEqqbqoxMaf70XOUqqlOC0rv%2B3Y1ck4caFcTw%2BcUnYuCeJUNpdDMfIwuCJVLSog2FTTyiaB6vvxV0ApC3vxRdWxRTNXsdYuyT63wM8T5D05nUmgStRzIST9b%2FBaZTUx6hKNRE%3D; domain=.booking.com; path=/; expires=Fri, 03-Dec-2027 10:23:12 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 828a61ebc3af4e0465a5577a4c08af7a.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: NxZoN5rg_0T6pt--x-KAg8N2KF9pAu8z5pXAMDv-ZxONqhiuoghlAQ==
X-Firefox-Spdy: h2
t-cf.bstatic.com/psb/capla/static/js/vendors.6b433fe6.js
200 OK 155 kB URL HTTP/2 t-cf.bstatic.com/psb/capla/static/js/vendors.6b433fe6.js
IP
File type ASCII text, with very long lines (65462)
Size 155 kB (155077 bytes)
Hash b52face780b3977baf81315449862f95
090ef8e7dc72cb532aaf9d79fc4cf3d9580aaa3e
a45b8abaaf9ec91da238b9669bd212775587515d3b983898dab07d1faae67df0
GET /psb/capla/static/js/vendors.6b433fe6.js HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 01 Dec 2022 09:30:17 GMT
etag: W/"5be6a980280d2a3212da1e82a252afd8"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Thu, 01 Dec 2022 09:04:09 GMT
x-amz-expiration: expiry-date="Fri, 31 Mar 2023 09:04:09 GMT", rule-id=""
expires: Sat, 31 Dec 2022 09:30:17 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 05844663035089f465172d861220e698.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: xCu-oB9FhJilYX4PdBh7LRahq_WW_pRIs9YIJbTUijyL5FzIweM17w==
age: 262374
X-Firefox-Spdy: h2
www.booking.com/sendlayoutevents
200 OK 18 B URL HTTP/2 www.booking.com/sendlayoutevents
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 2e05820d6f78d44fc523264488c141ed
15a4675c7eb16f533ded02117788d8f642a062df
baa1fa10e6d9e9034747499cd67e611af00aea7c01264e221182934fcacb10e7
POST /sendlayoutevents HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
Content-Type: application/x-www-form-urlencoded;charset=UTF-8
Origin: https://www.booking.com
Content-Length: 115
Connection: keep-alive
Cookie: _pxhd=3eUrtKFqx9wQT7V6zytBSwmrdovfYfSljafT7Jcn1IbgoKpvGGK7bcODQgqLqZlrjVDNO1ujonlotJQv1jmEJw%253D%253D%253AYa5ft2aNOsTW04sRO5-SzES0Nel5l35vhiDi9e91W%252Fc1llOD1OLbx4uDUnr6r1xr-2%252FcZwvBXVdcwxXkaBZ3mc7WUH1XQK%252F8CvA59xpwFgw%253D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbwcLxQQ4VaCqf%2F7LNukoZaTVbsbbHLgr5J2sYOGOxgd6mBAsn3rSg7RW%2Fo2Vma0rX554zSo2PcLRD2jpiNW%2FlEo9XIOdVmcaKacwiFjUNqrNX%2F91Nl4X3SyeStkh4e4jK8qwEKvmChCcuNwAwoUlH6W%2Fmz6rkH0mcYcubJN0AVr4%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sun+Dec+04+2022+10%3A23%3A09+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=32247d32-b9e4-4c87-9ee5-fbd97246b047&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 18
server: nginx
date: Sun, 04 Dec 2022 10:23:12 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbbmD9q%2B5pe3WYNzl0dPsHAkFxSzUj%2BnMR1BIylAOk2uJAIknmwuu9OH6%2FOF9zVT%2FJqyire03ea8tZDCZDiPqZROqWAUw3GHHw%2FXSqhBfvNtXXw623SQX2FrUOkJVh4Lt6ol574JD%2BalU0aw7L5LhToeGk9zfEcKheIZc6y0%2BtEc4%3D; domain=.booking.com; path=/; expires=Fri, 03-Dec-2027 10:23:12 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=101949086e52003c&e=UmFuZG9tSVYkc2RlIyh9YReXsVhv1rQKB4Zv_9za_vfUd0sU94vScwVMAyTahIKtuhLE7Mwrz74;
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 828a61ebc3af4e0465a5577a4c08af7a.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: iDwWAa8lTMKAIbf5kMGwm-N7TBNmRj4zI3xid8hcQ7uHJ4iF-CCCZw==
X-Firefox-Spdy: h2
t-cf.bstatic.com/psb/capla/static/js/348.855183cd.chunk.js
200 OK 23 kB URL HTTP/2 t-cf.bstatic.com/psb/capla/static/js/348.855183cd.chunk.js
IP
File type ASCII text, with very long lines (55928)
Hash 7ed58ec11818f0c32bee33e343884b40
5854038f130526c3ca1b1d56b17ad9c923be25b9
7d059b0264287ae338664108f70202dbc05de2e8c2e19410f8da657d6e268f7f
GET /psb/capla/static/js/348.855183cd.chunk.js HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 24 Nov 2022 14:30:37 GMT
etag: W/"ae2a8de4c10a6b48fb6634b016807ca8"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Thu, 24 Nov 2022 14:20:21 GMT
x-amz-expiration: expiry-date="Fri, 24 Mar 2023 14:20:21 GMT", rule-id=""
expires: Sat, 24 Dec 2022 14:30:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 05844663035089f465172d861220e698.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: dOTGgEIEA9_Fq1Ew9eSSRTlWDrvoCZ7enzBL_HzhLaR2-KIWqEgDRg==
age: 849154
X-Firefox-Spdy: h2
www.booking.com/js_errors?pid=0ff44907ee1c009d&url=https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js&m=UmFuZG9tSVYkc2RlIyh9YTfByiW35w4SVeygPwBl1b7wCZJhArYv9h8VStxzklmd76q3ka5-bwlPMN2pGXoi2Nb7h__8cyuN4El2hIsA6Y51Dd-YCc5UxU6ULTns_IhzIHwOpEmfM1rTzcT74iAPAR2crLhQegKZ_pRNG0XrfFUZXV_F4eclJcPcu_9r4W3mbAQchuvophtRueSweWJiEI2UBvxQ1BJKXBSRWD-EkYiEtvm-bkEbJCxQ_dAoY6k_OL_Ecro1gP_vM0eCsIKJ3VS7supyR2dDBZwwEN1FhlALTYOaxxktrIUZ0zD0SBCGtbx6ceDAr_Q0-cBmVHNiy_NfAp5DDHV8&aid=1858279&lang=en-us&errc=1&errp=0&stid=1858279&ch=d&ref_action=index&stype=1&error=Error%3A%20Minified%20React%20error%20%23418%3B%20visit%20https%3A%2F%2Freactjs.org%2Fdocs%2Ferror-decoder.html%3Finvariant%3D418%20for%20the%20full%20message%20or%20use%20the%20non-minified%20dev%20environment%20for%20full%20errors%20and%20additional%20helpful%20warnings.&be_running=1&be_message=Error%3A%20Minified%20React%20error%20%23418%3B%20visit%20https%3A%2F%2Freactjs.org%2Fdocs%2Ferror-decoder.html%3Finvariant%3D418%20for%20the%20full%20message%20or%20use%20the%20non-minified%20dev%20environment%20for%20full%20errors%20and%20additional%20helpful%20warnings.&be_file=https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js&be_line=2&be_column=274843&be_stack=li%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A274843%0ABu%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A310540%0Aml%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A335662%0Ayl%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A335543%0Ahl%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A335412%0Adl%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A335273%0Atl%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A330359%0AS%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A372659%0AN%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A373192%0A>t=dLYAeZFVJfNTBBScUJNTBBFfVDLFJNTBdVZXC&cors=1
200 OK 35 B URL HTTP/2 www.booking.com/js_errors?pid=0ff44907ee1c009d&url=https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js&m=UmFuZG9tSVYkc2RlIyh9YTfByiW35w4SVeygPwBl1b7wCZJhArYv9h8VStxzklmd76q3ka5-bwlPMN2pGXoi2Nb7h__8cyuN4El2hIsA6Y51Dd-YCc5UxU6ULTns_IhzIHwOpEmfM1rTzcT74iAPAR2crLhQegKZ_pRNG0XrfFUZXV_F4eclJcPcu_9r4W3mbAQchuvophtRueSweWJiEI2UBvxQ1BJKXBSRWD-EkYiEtvm-bkEbJCxQ_dAoY6k_OL_Ecro1gP_vM0eCsIKJ3VS7supyR2dDBZwwEN1FhlALTYOaxxktrIUZ0zD0SBCGtbx6ceDAr_Q0-cBmVHNiy_NfAp5DDHV8&aid=1858279&lang=en-us&errc=1&errp=0&stid=1858279&ch=d&ref_action=index&stype=1&error=Error%3A%20Minified%20React%20error%20%23418%3B%20visit%20https%3A%2F%2Freactjs.org%2Fdocs%2Ferror-decoder.html%3Finvariant%3D418%20for%20the%20full%20message%20or%20use%20the%20non-minified%20dev%20environment%20for%20full%20errors%20and%20additional%20helpful%20warnings.&be_running=1&be_message=Error%3A%20Minified%20React%20error%20%23418%3B%20visit%20https%3A%2F%2Freactjs.org%2Fdocs%2Ferror-decoder.html%3Finvariant%3D418%20for%20the%20full%20message%20or%20use%20the%20non-minified%20dev%20environment%20for%20full%20errors%20and%20additional%20helpful%20warnings.&be_file=https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js&be_line=2&be_column=274843&be_stack=li%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A274843%0ABu%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A310540%0Aml%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A335662%0Ayl%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A335543%0Ahl%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A335412%0Adl%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A335273%0Atl%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A330359%0AS%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A372659%0AN%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A373192%0A>t=dLYAeZFVJfNTBBScUJNTBBFfVDLFJNTBdVZXC&cors=1
IP
Hash 79a611524d7c43a354c589264cc2376e
2e25649d9a8a208302be0502b47a0e44b07bc7c1
c7a9af81f3467d3c95760df18d0853bda8c191f612fb2e8b2b5c4ed941fbaf1a
GET /js_errors?pid=0ff44907ee1c009d&url=https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js&m=UmFuZG9tSVYkc2RlIyh9YTfByiW35w4SVeygPwBl1b7wCZJhArYv9h8VStxzklmd76q3ka5-bwlPMN2pGXoi2Nb7h__8cyuN4El2hIsA6Y51Dd-YCc5UxU6ULTns_IhzIHwOpEmfM1rTzcT74iAPAR2crLhQegKZ_pRNG0XrfFUZXV_F4eclJcPcu_9r4W3mbAQchuvophtRueSweWJiEI2UBvxQ1BJKXBSRWD-EkYiEtvm-bkEbJCxQ_dAoY6k_OL_Ecro1gP_vM0eCsIKJ3VS7supyR2dDBZwwEN1FhlALTYOaxxktrIUZ0zD0SBCGtbx6ceDAr_Q0-cBmVHNiy_NfAp5DDHV8&aid=1858279&lang=en-us&errc=1&errp=0&stid=1858279&ch=d&ref_action=index&stype=1&error=Error%3A%20Minified%20React%20error%20%23418%3B%20visit%20https%3A%2F%2Freactjs.org%2Fdocs%2Ferror-decoder.html%3Finvariant%3D418%20for%20the%20full%20message%20or%20use%20the%20non-minified%20dev%20environment%20for%20full%20errors%20and%20additional%20helpful%20warnings.&be_running=1&be_message=Error%3A%20Minified%20React%20error%20%23418%3B%20visit%20https%3A%2F%2Freactjs.org%2Fdocs%2Ferror-decoder.html%3Finvariant%3D418%20for%20the%20full%20message%20or%20use%20the%20non-minified%20dev%20environment%20for%20full%20errors%20and%20additional%20helpful%20warnings.&be_file=https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js&be_line=2&be_column=274843&be_stack=li%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A274843%0ABu%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A310540%0Aml%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A335662%0Ayl%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A335543%0Ahl%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A335412%0Adl%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A335273%0Atl%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A330359%0AS%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A372659%0AN%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A373192%0A>t=dLYAeZFVJfNTBBScUJNTBBFfVDLFJNTBdVZXC&cors=1 HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Cookie: _pxhd=3eUrtKFqx9wQT7V6zytBSwmrdovfYfSljafT7Jcn1IbgoKpvGGK7bcODQgqLqZlrjVDNO1ujonlotJQv1jmEJw%253D%253D%253AYa5ft2aNOsTW04sRO5-SzES0Nel5l35vhiDi9e91W%252Fc1llOD1OLbx4uDUnr6r1xr-2%252FcZwvBXVdcwxXkaBZ3mc7WUH1XQK%252F8CvA59xpwFgw%253D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbwcLxQQ4VaCqeZAv6s7sWFK0onWP6K2B7S2ZsW7NEqqbqoxMaf70XOUqqlOC0rv%2B3Y1ck4caFcTw%2BcUnYuCeJUNpdDMfIwuCJVLSog2FTTyiaB6vvxV0ApC3vxRdWxRTNXsdYuyT63wM8T5D05nUmgStRzIST9b%2FBaZTUx6hKNRE%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sun+Dec+04+2022+10%3A23%3A09+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=32247d32-b9e4-4c87-9ee5-fbd97246b047&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1670149390378; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 35
server: nginx
date: Sun, 04 Dec 2022 10:23:12 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
set-cookie: _pxhd=4ZREtRoMVIzLgn9ghLhV-d-Ts9nG6WdtkhXjYZqGuMMAa6MkkPszbVmK7Zf%2FgkgsjIAXRxi-5JKOgWwqJJ3Sww%3D%3D%3AaoE-3OIozra8t6MNHXXVdJHzpjLtxyIY88R0R9G1HR6absCuIovDBqDIeelRIs1u2a5-g9oOl7VhX70scrRlXu-0Oh7Gw3tCwAD-oagNgrE%3D; domain=booking.com; path=/; expires=Mon, 04-Dec-2023 10:23:12 GMT
strict-transport-security: max-age=604800
content-security-policy-report-only: report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=c0284908040101d4&e=UmFuZG9tSVYkc2RlIyh9YV1DLEiaMVQpcm_uXQUus6uya_WMgE_l5Bm6loZ5QDPw; frame-ancestors 'none';
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 828a61ebc3af4e0465a5577a4c08af7a.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: M_kgCj-76SAhatQHaHH2PwzXOYFQ04iFXoDXsLqDNGpUgNfP2BNt0w==
X-Firefox-Spdy: h2
www.booking.com/js_errors?pid=0ff44907ee1c009d&url=https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js&m=UmFuZG9tSVYkc2RlIyh9YTfByiW35w4SVeygPwBl1b7wCZJhArYv9h8VStxzklmd76q3ka5-bwlPMN2pGXoi2Nb7h__8cyuN4El2hIsA6Y51Dd-YCc5UxU6ULTns_IhzIHwOpEmfM1rTzcT74iAPAR2crLhQegKZ_pRNG0XrfFUZXV_F4eclJcPcu_9r4W3mbAQchuvophtRueSweWJiEI2UBvxQ1BJKXBSRWD-EkYiEtvm-bkEbJCxQ_dAoY6k_OL_Ecro1gP_vM0eCsIKJ3VS7supyR2dDBZwwEN1FhlALTYOaxxktrIUZ0zD0SBCGtbx6ceDAr_Q0-cBmVHNiy_NfAp5DDHV8&aid=1858279&lang=en-us&errc=2&errp=1&stid=1858279&ch=d&ref_action=index&stype=1&error=Error%3A%20Minified%20React%20error%20%23423%3B%20visit%20https%3A%2F%2Freactjs.org%2Fdocs%2Ferror-decoder.html%3Finvariant%3D423%20for%20the%20full%20message%20or%20use%20the%20non-minified%20dev%20environment%20for%20full%20errors%20and%20additional%20helpful%20warnings.&be_running=1&be_message=Error%3A%20Minified%20React%20error%20%23423%3B%20visit%20https%3A%2F%2Freactjs.org%2Fdocs%2Ferror-decoder.html%3Finvariant%3D423%20for%20the%20full%20message%20or%20use%20the%20non-minified%20dev%20environment%20for%20full%20errors%20and%20additional%20helpful%20warnings.&be_file=https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js&be_line=2&be_column=347966&be_stack=ws%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A347966%0Ayl%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A335484%0Ahl%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A335412%0Adl%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A335273%0Anl%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A332053%0Atl%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A330586%0AS%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A372659%0AN%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A373192%0A>t=dLYAeZFVJfNTBBScUJNTBBFfVDLFJNTBdVZXC&cors=1
200 OK 35 B URL HTTP/2 www.booking.com/js_errors?pid=0ff44907ee1c009d&url=https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js&m=UmFuZG9tSVYkc2RlIyh9YTfByiW35w4SVeygPwBl1b7wCZJhArYv9h8VStxzklmd76q3ka5-bwlPMN2pGXoi2Nb7h__8cyuN4El2hIsA6Y51Dd-YCc5UxU6ULTns_IhzIHwOpEmfM1rTzcT74iAPAR2crLhQegKZ_pRNG0XrfFUZXV_F4eclJcPcu_9r4W3mbAQchuvophtRueSweWJiEI2UBvxQ1BJKXBSRWD-EkYiEtvm-bkEbJCxQ_dAoY6k_OL_Ecro1gP_vM0eCsIKJ3VS7supyR2dDBZwwEN1FhlALTYOaxxktrIUZ0zD0SBCGtbx6ceDAr_Q0-cBmVHNiy_NfAp5DDHV8&aid=1858279&lang=en-us&errc=2&errp=1&stid=1858279&ch=d&ref_action=index&stype=1&error=Error%3A%20Minified%20React%20error%20%23423%3B%20visit%20https%3A%2F%2Freactjs.org%2Fdocs%2Ferror-decoder.html%3Finvariant%3D423%20for%20the%20full%20message%20or%20use%20the%20non-minified%20dev%20environment%20for%20full%20errors%20and%20additional%20helpful%20warnings.&be_running=1&be_message=Error%3A%20Minified%20React%20error%20%23423%3B%20visit%20https%3A%2F%2Freactjs.org%2Fdocs%2Ferror-decoder.html%3Finvariant%3D423%20for%20the%20full%20message%20or%20use%20the%20non-minified%20dev%20environment%20for%20full%20errors%20and%20additional%20helpful%20warnings.&be_file=https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js&be_line=2&be_column=347966&be_stack=ws%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A347966%0Ayl%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A335484%0Ahl%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A335412%0Adl%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A335273%0Anl%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A332053%0Atl%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A330586%0AS%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A372659%0AN%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A373192%0A>t=dLYAeZFVJfNTBBScUJNTBBFfVDLFJNTBdVZXC&cors=1
IP
Hash 79a611524d7c43a354c589264cc2376e
2e25649d9a8a208302be0502b47a0e44b07bc7c1
c7a9af81f3467d3c95760df18d0853bda8c191f612fb2e8b2b5c4ed941fbaf1a
GET /js_errors?pid=0ff44907ee1c009d&url=https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js&m=UmFuZG9tSVYkc2RlIyh9YTfByiW35w4SVeygPwBl1b7wCZJhArYv9h8VStxzklmd76q3ka5-bwlPMN2pGXoi2Nb7h__8cyuN4El2hIsA6Y51Dd-YCc5UxU6ULTns_IhzIHwOpEmfM1rTzcT74iAPAR2crLhQegKZ_pRNG0XrfFUZXV_F4eclJcPcu_9r4W3mbAQchuvophtRueSweWJiEI2UBvxQ1BJKXBSRWD-EkYiEtvm-bkEbJCxQ_dAoY6k_OL_Ecro1gP_vM0eCsIKJ3VS7supyR2dDBZwwEN1FhlALTYOaxxktrIUZ0zD0SBCGtbx6ceDAr_Q0-cBmVHNiy_NfAp5DDHV8&aid=1858279&lang=en-us&errc=2&errp=1&stid=1858279&ch=d&ref_action=index&stype=1&error=Error%3A%20Minified%20React%20error%20%23423%3B%20visit%20https%3A%2F%2Freactjs.org%2Fdocs%2Ferror-decoder.html%3Finvariant%3D423%20for%20the%20full%20message%20or%20use%20the%20non-minified%20dev%20environment%20for%20full%20errors%20and%20additional%20helpful%20warnings.&be_running=1&be_message=Error%3A%20Minified%20React%20error%20%23423%3B%20visit%20https%3A%2F%2Freactjs.org%2Fdocs%2Ferror-decoder.html%3Finvariant%3D423%20for%20the%20full%20message%20or%20use%20the%20non-minified%20dev%20environment%20for%20full%20errors%20and%20additional%20helpful%20warnings.&be_file=https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js&be_line=2&be_column=347966&be_stack=ws%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A347966%0Ayl%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A335484%0Ahl%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A335412%0Adl%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A335273%0Anl%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A332053%0Atl%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A330586%0AS%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A372659%0AN%40https%3A%2F%2Ft-cf.bstatic.com%2Fpsb%2Fcapla%2Fstatic%2Fjs%2Fvendors.6b433fe6.js%3A2%3A373192%0A>t=dLYAeZFVJfNTBBScUJNTBBFfVDLFJNTBdVZXC&cors=1 HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Cookie: _pxhd=3eUrtKFqx9wQT7V6zytBSwmrdovfYfSljafT7Jcn1IbgoKpvGGK7bcODQgqLqZlrjVDNO1ujonlotJQv1jmEJw%253D%253D%253AYa5ft2aNOsTW04sRO5-SzES0Nel5l35vhiDi9e91W%252Fc1llOD1OLbx4uDUnr6r1xr-2%252FcZwvBXVdcwxXkaBZ3mc7WUH1XQK%252F8CvA59xpwFgw%253D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbwcLxQQ4VaCqeZAv6s7sWFK0onWP6K2B7S2ZsW7NEqqbqoxMaf70XOUqqlOC0rv%2B3Y1ck4caFcTw%2BcUnYuCeJUNpdDMfIwuCJVLSog2FTTyiaB6vvxV0ApC3vxRdWxRTNXsdYuyT63wM8T5D05nUmgStRzIST9b%2FBaZTUx6hKNRE%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sun+Dec+04+2022+10%3A23%3A09+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=32247d32-b9e4-4c87-9ee5-fbd97246b047&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1670149390378; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 35
server: nginx
date: Sun, 04 Dec 2022 10:23:12 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
set-cookie: _pxhd=Y81t%2F4xWc7EiA%2FigwDXnQfP72-VxjEcNkIT5BGdhe0XWGnStT09DWVSoFYDjOVeWAQTLazSwMzVAIHeEkqkqag%3D%3D%3AzhGb1nA%2FG1I6T0ZF65-13H2IIB9FukS%2F4k40kt%2FbcMhiUESvNMsMYGuQn3M5HWfoAW%2FVg7Nd4W74oTpqOeEkuLFPQ0d8uiqdSvxhrfU7u4U%3D; domain=booking.com; path=/; expires=Mon, 04-Dec-2023 10:23:12 GMT
strict-transport-security: max-age=604800
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=5f36490832390009&e=UmFuZG9tSVYkc2RlIyh9YV1DLEiaMVQpJFkkP0dAUP-wMZtTk7fpsSDYbFuuV6lp;
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 828a61ebc3af4e0465a5577a4c08af7a.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: 3BEv7qbfsb47AOXhBRXNvTs4juWUF8bEPUCwMErVnURBXWprrTipEg==
X-Firefox-Spdy: h2
www.booking.com/c360/v1/track
200 OK 33 B URL HTTP/2 www.booking.com/c360/v1/track
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 2ef0949d72ccdcc083647d001c8ba940
ebe4e2284d3892b010623597d0945b6b5cd64448
fe1a912baa83e36855bb934de3f2cfdffe77b1224a552533a4a7f2e984a51e52
POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
Content-Type: application/json
X-Booking-Platform: undefined
X-Booking-SiteType-Id: undefined
X-Booking-Pageview-Id: 0ff44907ee1c009d
X-Booking-Session-Id: undefined
X-Booking-ET-Seed: undefined
X-Booking-AID: 1858279
X-Booking-Label: undefined
X-Booking-CSRF: undefined
X-Booking-Language-Code: en-us
Origin: https://www.booking.com
Content-Length: 539
Connection: keep-alive
Cookie: _pxhd=3eUrtKFqx9wQT7V6zytBSwmrdovfYfSljafT7Jcn1IbgoKpvGGK7bcODQgqLqZlrjVDNO1ujonlotJQv1jmEJw%253D%253D%253AYa5ft2aNOsTW04sRO5-SzES0Nel5l35vhiDi9e91W%252Fc1llOD1OLbx4uDUnr6r1xr-2%252FcZwvBXVdcwxXkaBZ3mc7WUH1XQK%252F8CvA59xpwFgw%253D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbwcLxQQ4VaCqf%2F7LNukoZaTVbsbbHLgr5J2sYOGOxgd6mBAsn3rSg7RW%2Fo2Vma0rX554zSo2PcLRD2jpiNW%2FlEo9XIOdVmcaKacwiFjUNqrNX%2F91Nl4X3SyeStkh4e4jK8qwEKvmChCcuNwAwoUlH6W%2Fmz6rkH0mcYcubJN0AVr4%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sun+Dec+04+2022+10%3A23%3A09+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=32247d32-b9e4-4c87-9ee5-fbd97246b047&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 33
server: nginx
date: Sun, 04 Dec 2022 10:23:12 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbof7CEiNviT%2BKiro%2BD%2Fd%2BbGTiRkUQRCwT0m7DiqCDS%2BdYdgzT5gBXV8AhU%2BWAx8u1pVlqgs%2BykN64lsQqEjQZj9kcXGvbCYUVm1bW90v%2BHTVVZXr5fuSTId0HXeNYUgW0UdbZ0NKHc2LQFgjreJC9oog4Hcma3y1hrUmd0J8g7ZI%3D; domain=.booking.com; path=/; expires=Fri, 03-Dec-2027 10:23:12 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 828a61ebc3af4e0465a5577a4c08af7a.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: L7UrmYcNPw2aPj9sFVcl0bbIAotp4bHfoTPOjweAWyf4pS_n0XyeGQ==
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/js/atlas_cft/0f69ff5fc33872c21cd0d8432dc5949817b22626.js
200 OK 29 kB URL HTTP/2 t-cf.bstatic.com/static/js/atlas_cft/0f69ff5fc33872c21cd0d8432dc5949817b22626.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash dc16f36026e05005e58dca70e574c667
b713a8437d911e2f9ad3ab5b9f5baa7a68d539b0
72e049e96e7633ebbcf8a4b4488dad7d261d51302d81d2c8de43fd9c7ff06aef
GET /static/js/atlas_cft/0f69ff5fc33872c21cd0d8432dc5949817b22626.js HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Tue, 15 Nov 2022 15:40:04 GMT
last-modified: Tue, 15 Nov 2022 15:27:21 GMT
etag: W/"6373afd9-1d128"
expires: Thu, 15 Dec 2022 15:40:04 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: qhz0u-POXJuuHM5kJZF4k7sHeaewKkhTopgL__VP0brbHOGmolkb9A==
age: 1622588
X-Firefox-Spdy: h2
www.booking.com/orca/chunk-metadata?chunk=534&mfe=b-index-lp-web-mfe&lang=en-us
200 OK 814 B URL HTTP/2 www.booking.com/orca/chunk-metadata?chunk=534&mfe=b-index-lp-web-mfe&lang=en-us
IP
File type JSON data\012- , ASCII text, with very long lines (2907), with no line terminators
Hash da7ead524bcb80126ff512166f17fef4
156a7ff059e0f7536edb02326913b4a611515b19
6a1ec264d7793732956b81cc5a039a9c3ceed0cd57391b0d26bbf80bed4610bc
GET /orca/chunk-metadata?chunk=534&mfe=b-index-lp-web-mfe&lang=en-us HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
Connection: keep-alive
Cookie: _pxhd=3eUrtKFqx9wQT7V6zytBSwmrdovfYfSljafT7Jcn1IbgoKpvGGK7bcODQgqLqZlrjVDNO1ujonlotJQv1jmEJw%253D%253D%253AYa5ft2aNOsTW04sRO5-SzES0Nel5l35vhiDi9e91W%252Fc1llOD1OLbx4uDUnr6r1xr-2%252FcZwvBXVdcwxXkaBZ3mc7WUH1XQK%252F8CvA59xpwFgw%253D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbwcLxQQ4VaCqeZAv6s7sWFK0onWP6K2B7S2ZsW7NEqqbqoxMaf70XOUqqlOC0rv%2B3Y1ck4caFcTw%2BcUnYuCeJUNpdDMfIwuCJVLSog2FTTyiaB6vvxV0ApC3vxRdWxRTNXsdYuyT63wM8T5D05nUmgStRzIST9b%2FBaZTUx6hKNRE%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sun+Dec+04+2022+10%3A23%3A09+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=32247d32-b9e4-4c87-9ee5-fbd97246b047&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1670149390378; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 814
server: nginx
date: Sun, 04 Dec 2022 10:23:12 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
set-cookie: _pxhd=6ohPg0ROChxar82JvmoswfXf8hoyspFn2g6zHr9ZpAu56YciMGQ6TDHpslAWYK1uK-zxEMwjuVx4fJd2p3VOcQ%3D%3D%3Au8s%2Foa2tGDlH3VgzMmvLQMrwA4bQOMYB2n%2F2pzzeRgZL0Lk3gmf1Fe09jZyAvVxqtDISkZyvgZakLkWQVtTO2cxnGu549U247Jc1vkoKR8o%3D; domain=booking.com; path=/; expires=Mon, 04-Dec-2023 10:23:12 GMT
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLblgO%2Fz4BDP5vmvo0rKQHdDHoC1cwcQ38eJ9XoTassbRYS3FXZYL58f29qRQ4%2B0CoYRnJO7Rddtvc%2BwFC4liMPi83T%2FUJzj%2B2hFUVgofYNjPwTo6VIsNbJSHmHJUHmk2yp9kCL7TNfB1mv1QNvu6Nd6xANtM073iIBuksucACFfRw%3D; domain=.booking.com; path=/; expires=Fri, 03-Dec-2027 10:23:12 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=e8ae4908ab950255&e=UmFuZG9tSVYkc2RlIyh9YQyOc33qmp8WHR7A8UUx6hbYomDxizXuNVqQvhwrmpel6fUVBYrxQO3X6jX-MpdCG3SkoJhlXCnU;
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 828a61ebc3af4e0465a5577a4c08af7a.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: wf1rWFqnqkSbId0o_nZCi4WZY9aGLKW8c4SDxWuhLz0iqAfwh7QxBQ==
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/img/apple-touch-icon/c9b35bf29a75cac2f430f80a5d4bc7fd961d21a7.png
200 OK 2.9 kB URL HTTP/2 t-cf.bstatic.com/static/img/apple-touch-icon/c9b35bf29a75cac2f430f80a5d4bc7fd961d21a7.png
IP
File type PNG image data, 141 x 141, 8-bit/color RGBA, non-interlaced\012- data
Hash eeda6c96402e2a9ec176f43f0ac79e09
9cd713387ba5b2a468ffae40d40ae3718d2d1c49
08a917ae9e017c4b633b3d5920bb8e073968fa14b9bb7e78192fd2761465d0a4
GET /static/img/apple-touch-icon/c9b35bf29a75cac2f430f80a5d4bc7fd961d21a7.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2915
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:50 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sat, 05 Nov 2022 07:16:22 GMT
expires: Mon, 05 Dec 2022 07:16:22 GMT
cache-control: max-age=2592000
etag: "5cadd1ce-b63"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: p_72lPZs0iJPMa4tITky-cxBugumSbhtqoNZ8fvaNiUVCbTi6pjljw==
age: 2516810
X-Firefox-Spdy: h2
t-cf.bstatic.com/psb/capla/static/js/797.4adeaac3.chunk.js
200 OK 16 kB URL HTTP/2 t-cf.bstatic.com/psb/capla/static/js/797.4adeaac3.chunk.js
IP
File type ASCII text, with very long lines (49972)
Hash 677b4b2eedb24ff21da64d7cc6bda60c
d98bbbe4574a34a67552400c9879bb61c518df5d
4c3096b0759340efebab244483425dc2ab67102ecbc897a0d4d8035e556d5413
GET /psb/capla/static/js/797.4adeaac3.chunk.js HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 24 Nov 2022 14:30:37 GMT
etag: W/"0974176be8659ee07ac1d15197cc30a2"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Thu, 24 Nov 2022 14:20:22 GMT
x-amz-expiration: expiry-date="Fri, 24 Mar 2023 14:20:22 GMT", rule-id=""
expires: Sat, 24 Dec 2022 14:30:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 05844663035089f465172d861220e698.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 2TQtIbhX6cJF_YfJqFEgVdLVYF53FCE3CjUypeosNU6HhipsIK5nNQ==
age: 849154
X-Firefox-Spdy: h2
t-cf.bstatic.com/psb/capla/static/js/664.cdec208d.chunk.js
200 OK 68 kB URL HTTP/2 t-cf.bstatic.com/psb/capla/static/js/664.cdec208d.chunk.js
IP
File type ASCII text, with very long lines (65460)
Hash 2f3262e0df3545ceaba3ed99eecdabbd
3ab049d75d1f6fa3455ed3e4819d4b4fea42ecac
3a59bffb80f042690a96cd8d8471c3df752bc4a501ab860d80c845f9aac40be5
GET /psb/capla/static/js/664.cdec208d.chunk.js HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Tue, 29 Nov 2022 04:12:42 GMT
etag: W/"207287d8d1cf9dd811f83620f57d6523"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Mon, 28 Nov 2022 15:57:30 GMT
x-amz-expiration: expiry-date="Tue, 28 Mar 2023 15:57:30 GMT", rule-id=""
expires: Thu, 29 Dec 2022 04:12:42 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 05844663035089f465172d861220e698.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: r_44y4t0cQkCYt5IHsT1k1f6EGTf1gxQwdYk2RY4SzGmaygW_JcERg==
age: 454229
X-Firefox-Spdy: h2
www.booking.com/js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=0ff44907ee1c009d&ete=&etg=&etcg=cCHObXKeNJAbINFPIWBccCcCcCC|1&ets=cCHObTRVEFDEXNBBTZBYSGSYO|5,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|1,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|1,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|1,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|2,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|7,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|8&etgwv=
200 OK 35 B URL HTTP/2 www.booking.com/js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=0ff44907ee1c009d&ete=&etg=&etcg=cCHObXKeNJAbINFPIWBccCcCcCC|1&ets=cCHObTRVEFDEXNBBTZBYSGSYO|5,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|1,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|1,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|1,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|2,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|7,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|8&etgwv=
IP
Hash 79a611524d7c43a354c589264cc2376e
2e25649d9a8a208302be0502b47a0e44b07bc7c1
c7a9af81f3467d3c95760df18d0853bda8c191f612fb2e8b2b5c4ed941fbaf1a
GET /js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=0ff44907ee1c009d&ete=&etg=&etcg=cCHObXKeNJAbINFPIWBccCcCcCC|1&ets=cCHObTRVEFDEXNBBTZBYSGSYO|5,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|1,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|1,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|1,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|2,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|7,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|8&etgwv= HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
X-Booking-Info:
X-Booking-Client-Info:
X-Booking-Pageview-Id: 0ff44907ee1c009d
X-Booking-SiteType-Id: 1
X-Booking-Language-Code: en-us
X-Booking-AID: 1858279
X-Booking-Session-Id: 3e71dba830bda8d7a840f2a5a7f133c6
X-Booking-ET-Serialized-State: EKcfcuuH4UkrrGtAgIZAEgqGfxsrv2uaVrwjAh82nekRGnGSu9Qf0AdkuwIdcS09m
Connection: keep-alive
Cookie: _pxhd=6ohPg0ROChxar82JvmoswfXf8hoyspFn2g6zHr9ZpAu56YciMGQ6TDHpslAWYK1uK-zxEMwjuVx4fJd2p3VOcQ%3D%3D%3Au8s%2Foa2tGDlH3VgzMmvLQMrwA4bQOMYB2n%2F2pzzeRgZL0Lk3gmf1Fe09jZyAvVxqtDISkZyvgZakLkWQVtTO2cxnGu549U247Jc1vkoKR8o%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLblgO%2Fz4BDP5vmvo0rKQHdDHoC1cwcQ38eJ9XoTassbRYS3FXZYL58f29qRQ4%2B0CoYRnJO7Rddtvc%2BwFC4liMPi83T%2FUJzj%2B2hFUVgofYNjPwTo6VIsNbJSHmHJUHmk2yp9kCL7TNfB1mv1QNvu6Nd6xANtM073iIBuksucACFfRw%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sun+Dec+04+2022+10%3A23%3A09+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=32247d32-b9e4-4c87-9ee5-fbd97246b047&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1670149390378; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 35
server: nginx
date: Sun, 04 Dec 2022 10:23:13 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
strict-transport-security: max-age=604800
content-security-policy-report-only: report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=ad5a49085ca1019e&e=UmFuZG9tSVYkc2RlIyh9Yea92wm0yRUjnCBymoy8ejJUIqd6QhuGbXNdP4FGpdDjjXb_r--X6rs; frame-ancestors 'none';
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 828a61ebc3af4e0465a5577a4c08af7a.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: IiIT6V1a5eJMYN1H2t1uqKXXBOtZ49VBU7uL8ATue7hlwJNj4WLS5g==
X-Firefox-Spdy: h2
account.booking.com/privacy-consents/implicit
200 OK 3.9 kB URL HTTP/2 account.booking.com/privacy-consents/implicit
IP
Hash c9987e82e5b38efae9cf972087f00abc
b7ec2f1029916b38822b9855a97dfdde0ee0b625
0b8d7de331331d3c7644332574c05af8c01f8cb9f7d7a767af64dfe1282b0e61
POST /privacy-consents/implicit HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-type: application/json;charset=UTF-8
Content-Length: 36
Origin: https://www.booking.com
Connection: keep-alive
Cookie: _pxhd=3eUrtKFqx9wQT7V6zytBSwmrdovfYfSljafT7Jcn1IbgoKpvGGK7bcODQgqLqZlrjVDNO1ujonlotJQv1jmEJw%253D%253D%253AYa5ft2aNOsTW04sRO5-SzES0Nel5l35vhiDi9e91W%252Fc1llOD1OLbx4uDUnr6r1xr-2%252FcZwvBXVdcwxXkaBZ3mc7WUH1XQK%252F8CvA59xpwFgw%253D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbXpFeYC4TUhDpugK287893NXS74M9I%2Bp%2BhB4v12MaYmFBmnSZBruuCn1NbrvEjBVBpQVu88h5dRF4in%2FmMhybq3yGDieCcbjFzko8aUQ%2BODbNPH0xut6vnHBdgTwvwp5KziPcJSVnPdT95VvEt1fgbGHCKvyiBgRLUor8q2uPCMY%3D; cors_js=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
server: envoy
date: Sun, 04 Dec 2022 10:23:12 GMT
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-methods: POST
access-control-allow-origin: https://www.booking.com
access-control-max-age: 1728000
set-cookie: bkng_sso_session=e30; domain=.booking.com; path=/; expires=Fri, 03-Dec-2027 10:23:12 GMT; secure; HttpOnly
bkng_sso_ses=e30; domain=.booking.com; path=/; expires=Fri, 03-Dec-2027 10:23:12 GMT; secure; HttpOnly
bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJkYXRhX3N1YmplY3RfaWQiOiIwMDMyNDQ3OC0zZTI0LTRkZDItYjA5OS05MzFhYjM4OTY0MGEiLCJzZXNzaW9ucyI6W119fQ; domain=account.booking.com; path=/; expires=Fri, 03-Dec-2027 10:23:12 GMT; secure; HttpOnly
content-security-policy: frame-ancestors https://*.booking.com 'self'; report-uri https://nellie.booking.com/csp-report-uri?type=block&tag=42&pid=510849086da008b0&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdaPywujlMqYClpEWWnp7GR_-kbA2HXm3PvFWRdnUFAhBYMXFCJXDh48JHUCCGzkjlgOcpV9tqBK3OB6zWiKEixX4iwJLN8Owwv7_RIRBmY9q;
content-security-policy-report-only: script-src saa.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google.com www.google-analytics.com cdn.cookielaw.org geolocation.onetrust.com 'self' 'nonce-MZ1uBx1aJDbmKFy' 'report-sample'; default-src *.bstatic.com bstatic.com 'self'; style-src *.bstatic.com bstatic.com *.static.booking.cn 'self' 'unsafe-inline'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=41&pid=510849086da008b0&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdaPywujlMqYClpEWWnp7GR_-kbA2HXm3PvFWRdnUFAhBYMXFCJXDh48JHUCCGzkjlgOcpV9tqBK3OB6zWiKEixX4iwJLN8Owwv7_RIRBmY9q; img-src 'self' data: www.booking.com graph.facebook.com cdn.cookielaw.org account.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google-analytics.com www.google.com stats.g.doubleclick.net *.px-cloud.net *.perimeterx.net www.gstatic.com; object-src 'none'; frame-src https://www.youtube.com/embed/Vv4w5SmRkss *.bstatic.com https://www.google.com bstatic.com www.booking.com secure.booking.com paymentcomponent.booking.com 'self'; base-uri 'none'; connect-src saa.booking.com secure.booking.com reports.booking.com privacyportal-eu.onetrust.com geolocation.onetrust.com cdn.cookielaw.org www.google-analytics.com *.perimeterx.net *.pxchk.net *.px-cdn.net *.px-client.net *.px-cloud.net 'self' 'report-sample';
strict-transport-security: max-age=17280000
content-encoding: gzip
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 5f054515672e497f7035c066a262245c.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-C2
x-amz-cf-id: uhgWtsHwJj2a9RNvpTddxSui_O0AXzAWziUPLxjhImbzCKTLb6Q83g==
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/57584488.jpeg?k=d8d4706fc72ee789d870eb6b05c0e546fd4ad85d72a3af3e30fb80ca72f0ba57&o=
200 OK 10 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/57584488.jpeg?k=d8d4706fc72ee789d870eb6b05c0e546fd4ad85d72a3af3e30fb80ca72f0ba57&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 3516533c36779b327798248218da8b19
36c0739bb6e85bd406f7e3c853bcde872c3302e3
8aba7cf83e43468f409963df22b718744c34fc9aba143af86d4b73219b3f5910
GET /xdata/images/xphoto/300x240/57584488.jpeg?k=d8d4706fc72ee789d870eb6b05c0e546fd4ad85d72a3af3e30fb80ca72f0ba57&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 10231
server: nginx
date: Fri, 04 Nov 2022 13:39:05 GMT
etag: "cdfea4ecb50365b6c72f2109020f4bf326777935"
expires: Sun, 04 Dec 2022 13:39:05 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TwWk-b1gne6s13yO5lIj45AqsYz_RXcIcxNKnSsqzX7ykNuMe36DNg==
age: 2580248
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450084.jpeg?k=f8c2954e867a1dd4b479909c49528531dcfb676d8fbc0d60f51d7b51bb32d1d9&o=
200 OK 12 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450084.jpeg?k=f8c2954e867a1dd4b479909c49528531dcfb676d8fbc0d60f51d7b51bb32d1d9&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash a36f4027287a0f6a3082dc0f55198730
046cdc6d82e7bd58bea3d7425a38d71bfb9c8914
93a0201d50a63130bc8b38fd47974805b864bf254427c8ea6e628b83f333f34b
GET /xdata/images/xphoto/300x240/45450084.jpeg?k=f8c2954e867a1dd4b479909c49528531dcfb676d8fbc0d60f51d7b51bb32d1d9&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 12527
server: nginx
date: Wed, 30 Nov 2022 14:56:37 GMT
etag: "b69161ae69e84a1bc3adcd6d7cc949f7560c02c3"
expires: Fri, 30 Dec 2022 14:56:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2mTeXgon2F4A9KKyCW6Jg9kgSvDQubUrSE-kG1cDqAKo9kz2OgopAw==
age: 329196
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/hotel/300x240/52979454.jpeg?k=6ac6d0afd28e4ce00a8f817cc3045039e064469a3f9a88059706c0b45adf2e7d&o=
200 OK 11 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/hotel/300x240/52979454.jpeg?k=6ac6d0afd28e4ce00a8f817cc3045039e064469a3f9a88059706c0b45adf2e7d&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash a278b4f84e27ae6e53694c50c6c0db6e
8289a6f74256ebe6ead5ed14c58d6704ec72a7ef
57c23f20cba27810aa9c20deabd2edc8dac96cee6d1ca27f1c659610becee55d
GET /xdata/images/hotel/300x240/52979454.jpeg?k=6ac6d0afd28e4ce00a8f817cc3045039e064469a3f9a88059706c0b45adf2e7d&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 11252
server: nginx
date: Wed, 16 Nov 2022 00:13:42 GMT
etag: "ebaf01b04df2f1b59752439fd8257f86a379334a"
expires: Fri, 16 Dec 2022 00:13:42 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Dey7SFXZZRytS0fBGGM-cxruHUThlVP7vOrYZoNOzM1QDizwgXNycg==
age: 1591771
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450074.jpeg?k=7039b03a94f3b99262c4b3054b0edcbbb91e9dade85b6efc880d45288a06c126&o=
200 OK 20 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450074.jpeg?k=7039b03a94f3b99262c4b3054b0edcbbb91e9dade85b6efc880d45288a06c126&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 2414c022c1585360984508f5c5de208b
7f2fe2e841f4929dcf52c93c7efbe6401ef9fd24
2309e00634f6000b455200aeaae2c868aef28a31a05571aeada61b9c78264135
GET /xdata/images/xphoto/300x240/45450074.jpeg?k=7039b03a94f3b99262c4b3054b0edcbbb91e9dade85b6efc880d45288a06c126&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 20152
server: nginx
date: Wed, 09 Nov 2022 01:35:58 GMT
etag: "000cdbf26a44b29f411fd9bfd39e323fae522fec"
expires: Fri, 09 Dec 2022 01:35:58 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jZReHVqeb5zPcY8SkiQbphaI3F1ruQykRCuLKWTXVlOKrQ4fpMDRdw==
age: 2191635
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450090.jpeg?k=52f6b8190edb5a9c91528f8e0f875752ce55a6beb35dc62873601e57944990e4&o=
200 OK 14 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450090.jpeg?k=52f6b8190edb5a9c91528f8e0f875752ce55a6beb35dc62873601e57944990e4&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 8acccb2d6683be0bca40bb1771e89a50
7b209f7d6f9a0f44f33f2a12b132ea391d5a7811
95e94b8bd3c16405b193fdd709c777fd2b5ea98d994a40232d95c26c04da6f79
GET /xdata/images/xphoto/300x240/45450090.jpeg?k=52f6b8190edb5a9c91528f8e0f875752ce55a6beb35dc62873601e57944990e4&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 14448
server: nginx
date: Mon, 28 Nov 2022 01:07:00 GMT
etag: "ea7ab8579c0fc0a47a999474b1b3f3743df3aac2"
expires: Wed, 28 Dec 2022 01:07:00 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cE8_Ck-Vv-qJKvYpEiiQ2dCGn-gMOransL1cdmk0WGtXfC8O5h4lEA==
age: 551773
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450113.jpeg?k=76b3780a0e4aacb9d02ac3569b05b3c5e85e0fd875287e9ac334e3b569f320c7&o=
200 OK 11 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450113.jpeg?k=76b3780a0e4aacb9d02ac3569b05b3c5e85e0fd875287e9ac334e3b569f320c7&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 36896ed28c3a04b337713e865e468131
b42b54b780ee6652ae6ba59bf57a1f7daaeb6458
6bf196e10de012119d344c3b9c9e1ca4637b5917264327dfb6704ecae22b059d
GET /xdata/images/xphoto/300x240/45450113.jpeg?k=76b3780a0e4aacb9d02ac3569b05b3c5e85e0fd875287e9ac334e3b569f320c7&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 11215
server: nginx
date: Sat, 05 Nov 2022 15:40:24 GMT
etag: "5d6a3240d5889d0dd7d01ef8cfcdf6bf8344cd6c"
expires: Mon, 05 Dec 2022 15:40:24 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -mJ8QMD96OccEH2aYioZIYnosVIJVtQhDK1KC7LJ7ocF5b4lyH2dBg==
age: 2486569
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450073.jpeg?k=795a94c30433de1858ea52375e8190a962b302376be2e68aa08be345d936557d&o=
200 OK 11 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450073.jpeg?k=795a94c30433de1858ea52375e8190a962b302376be2e68aa08be345d936557d&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 5567eb5c3d7f1f8d3c5fa7d43cb32b34
4caeab4dfa4cbdad3bdde14b1f659f8b0b06b46f
84331b7d14d04d74b8b85ef87221f322f8508e5e596b5c8bae2f8197f233aec2
GET /xdata/images/xphoto/300x240/45450073.jpeg?k=795a94c30433de1858ea52375e8190a962b302376be2e68aa08be345d936557d&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 10959
server: nginx
date: Mon, 28 Nov 2022 01:07:00 GMT
etag: "5e01b9cd48f3f6988f0113ff2270c9d06ebb6d38"
expires: Wed, 28 Dec 2022 01:07:00 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ySp7FLv8ocYKk31mXdi4Y06NCsRMau9U_p4ovLjM_pGUKkae_zBpug==
age: 551773
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450082.jpeg?k=beb101b827a729065964523184f4db6cac42900c2415d71d516999af40beb7aa&o=
200 OK 13 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450082.jpeg?k=beb101b827a729065964523184f4db6cac42900c2415d71d516999af40beb7aa&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash cb649ad60fe5750fbc23da44d35206b4
a9c188e226fdd77e73f3fa374b210bf1bb0dfe65
a6f122a9ceb30d1ebc827c40e4e7e40b710da41f9a7ee454d8504128e0ca7aa0
GET /xdata/images/xphoto/300x240/45450082.jpeg?k=beb101b827a729065964523184f4db6cac42900c2415d71d516999af40beb7aa&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 13058
server: nginx
date: Sun, 13 Nov 2022 04:59:03 GMT
etag: "b30a8b4e9a547c21f92a42d6c232362a7578e6e5"
expires: Tue, 13 Dec 2022 04:59:03 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: O_WS8rURLsftE4iZdroOLv1nRhSHzeZAmK4I-4m2KNJO3GaB_eUYkw==
age: 1833850
X-Firefox-Spdy: h2
www.booking.com/index.html?aid=1858279
200 OK 140 kB URL HTTP/2 www.booking.com/index.html?aid=1858279
IP
File type HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8354)
Size 140 kB (139899 bytes)
Hash ec0922e2c1f6a27175489126f2a7bc21
b30e2e9dcad4d9473b278aee9bedb2428c833f3e
e9f416ecf3bea95c68114b8c42004511de854793d918dbc3ff63bea9dbf1956d
GET /index.html?aid=1858279 HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://dipaka-ead.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
server: nginx
date: Sun, 04 Dec 2022 10:23:10 GMT
cache-control: private
vary: Accept-Encoding, User-Agent
content-encoding: br
link: <https://t-cf.bstatic.com/static/css/gprof_icons_cft.iq_ltr/39fba8d2931db968228646f971abe4c11382c91d.css>; rel=preload; as=style, <https://t-cf.bstatic.com/static/css/incentives_cft.iq_ltr/70c3660043e199f2e3a2b9d17b15dc773dca7b8e.css>; rel=preload; as=style, <https://t-cf.bstatic.com/static/css/index_cft.iq_ltr/e08cfc22016b81b291eaec4522fd8c1e008ac87a.css>; rel=preload; as=style, <https://t-cf.bstatic.com/static/css/main_cft.iq_ltr/c451b3de2e91fce97d6a1c9c885b2e1c7699e5ed.css>; rel=preload; as=style, <https://t-cf.bstatic.com/static/css/main_exps_cft.iq_ltr/158b15f6fce6b5a81af0148297c4f73d580ad61a.css>; rel=preload; as=style, <https://t-cf.bstatic.com/static/css/sp_loyalty_cft.iq_ltr/c7c6b342312a9d5364889a78d1971cf24c388e48.css>; rel=preload; as=style, <https://t-cf.bstatic.com/static/css/xp-index-sb_cft.iq_ltr/8eb388808f339e272040797666d317d27156dd37.css>; rel=preload; as=style
nel: {"report_to":"default","max_age":604800}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":604800,"group":"default"}
set-cookie: _pxhd=3eUrtKFqx9wQT7V6zytBSwmrdovfYfSljafT7Jcn1IbgoKpvGGK7bcODQgqLqZlrjVDNO1ujonlotJQv1jmEJw%253D%253D%253AYa5ft2aNOsTW04sRO5-SzES0Nel5l35vhiDi9e91W%252Fc1llOD1OLbx4uDUnr6r1xr-2%252FcZwvBXVdcwxXkaBZ3mc7WUH1XQK%252F8CvA59xpwFgw%253D; domain=booking.com; path=/; expires=Mon, 04-Dec-2023 10:23:10 GMT
px_init=0; domain=booking.com; expires=Sun, 05-Jan-2076 20:46:20 GMT; SameSite=Strict; secure; HttpOnly
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbXpFeYC4TUhDpugK287893NXS74M9I%2Bp%2BhB4v12MaYmFBmnSZBruuCn1NbrvEjBVBpQVu88h5dRF4in%2FmMhybq3yGDieCcbjFzko8aUQ%2BODbNPH0xut6vnHBdgTwvwp5KziPcJSVnPdT95VvEt1fgbGHCKvyiBgRLUor8q2uPCMY%3D; domain=.booking.com; path=/; expires=Fri, 03-Dec-2027 10:23:10 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 828a61ebc3af4e0465a5577a4c08af7a.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: V288kHlJUCkljsWaXzlC2lpgnLWfeddVz-u0j2I3RSMzjGWtohwSJA==
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/css/index_cft.iq_ltr/e08cfc22016b81b291eaec4522fd8c1e008ac87a.css
200 OK 70 kB URL HTTP/2 t-cf.bstatic.com/static/css/index_cft.iq_ltr/e08cfc22016b81b291eaec4522fd8c1e008ac87a.css
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash d263569d239bf1fbb35bcdc153aa6a71
7d6bf09c5913a6134307c47352bb6d8175542852
186aaf6f00d5cd386c0125628faa3eaa81623b8b9d76745e4236099a66abc9ea
GET /static/css/index_cft.iq_ltr/e08cfc22016b81b291eaec4522fd8c1e008ac87a.css HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Fri, 02 Dec 2022 09:31:59 GMT
last-modified: Wed, 30 Nov 2022 12:37:22 GMT
etag: W/"63874e82-5ac6f"
expires: Sun, 01 Jan 2023 09:31:59 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 6gqnB6KgiE7ML8YAB_sZmTCKfaAdqxfa3jtjdWlmzQ4qjozGeqvcuQ==
age: 175871
X-Firefox-Spdy: h2
t-cf.bstatic.com/psb/capla/static/js/186.fb84e19a.chunk.js
200 OK 27 kB URL HTTP/2 t-cf.bstatic.com/psb/capla/static/js/186.fb84e19a.chunk.js
IP
File type ASCII text, with very long lines (65460)
Hash 99f91dc080c62ba202f83dfb22c708a2
eab0612432830f7a91b7666b0a1f6e8e6ee14c4c
ea18c3c456dd666ba7610fea503789c3c3a97c0ee4a1cd252f78a34611e16c52
GET /psb/capla/static/js/186.fb84e19a.chunk.js HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 24 Nov 2022 14:30:37 GMT
etag: W/"b13e4a5b3edc11dfbfaebc362f326852"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Thu, 24 Nov 2022 14:20:21 GMT
x-amz-expiration: expiry-date="Fri, 24 Mar 2023 14:20:21 GMT", rule-id=""
expires: Sat, 24 Dec 2022 14:30:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 05844663035089f465172d861220e698.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: HViVo9YvZPIrg816S98PwLZPN7u2wVKvcuWrBBhlFCxUufteVr2vTA==
age: 849153
X-Firefox-Spdy: h2
www.booking.com/get_handpicked_bh_properties?aid=1858279
200 OK 1.1 kB URL HTTP/2 www.booking.com/get_handpicked_bh_properties?aid=1858279
IP
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (4827), with no line terminators
Hash 4bdd8961900d7d2a33f5342bf8e47cbd
b76f8f1f4744c0293bfaeb9f2c33efd1edbb2cb4
1677c022f5de61d066db252c361bf52586dce861aa7dd0b05afa8b65075e8b62
POST /get_handpicked_bh_properties?aid=1858279 HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Booking-Pageview-Id: 0ff44907ee1c009d
X-Booking-AID: 1858279
X-Booking-Session-Id: 4e7b3bdee1c9b7ec07c70785bf2891a5
X-Booking-SiteType-Id: 1
X-Partner-Channel-Id: 2
X-Booking-CSRF: Tq2MYwAAAAA=eB4IWDD5PEi38vVyRqNuRUBUzHSX96omAQ2JZiFwIkTsZfLg7WjGbzaAPKc1PL3wkHJt4o4MtK08s8QyHb6KiHBJ2FmXWIGHXkzF0bsyImEPq5wHsSBQvXo-HukJJcXOo8zL55aFv8-yy2aaD2qSu8VajjDW6g5rXlt-gMnvot8TsvIdlJstxPN04ZRzA4NNG5oE5btaLkklaB_y
X-Booking-Language-Code: en-us
X-Booking-Client-Info: aaTBNZZJRLESPIDNJDPVBC|1,TDXDPZFRURURYVSGFGZJEHXT|2,TDXDPZFRURURYVSGFGZJEHXT|3,cCHObEfEITNPfbeQMITaSdFaLbFDXFZMIcCcCcCC|6,cCHObOOYKYYaDcOdJeaILYDdKNKNKWe|1,cCHObBJZGWKZETTeMbNXGDJdLOLOLMO|1,cCHObXKeNJAbINFPIWBccCcCcCC|4,cCHObOOYKYYaDcOdJeaILYDdKNKNKWe|3,cCHObBJZGWKZETTeMbNXGDJdLOLOLMO|3
X-Booking-Info: 1588860,1590420,1600200,1616480,1618710,1625600,1628410,1630360,1630600,1633680,1634460,1638220,1638370,1638430,1638440,1639610,1641760,aaTBNZZJRLESPIDNJDPVBC|1,1639350|3,1638370|1,1590420|1,1639350|1,TDXDPZFRURURYVSGFGZJEHXT|2,cCHObTRVEFDEXNBBTZBYSGSYO|5,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|1,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|1,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|1,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|2,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|7,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|8,TDXDPZFRURURYVSGFGZJEHXT|3,cCHObEfEITNPfbeQMITaSdFaLbFDXFZMIcCcCcCC|6,cCHObOOYKYYaDcOdJeaILYDdKNKNKWe|1,cCHObBJZGWKZETTeMbNXGDJdLOLOLMO|1,cCHObXKeNJAbINFPIWBccCcCcCC|4,cCHObOOYKYYaDcOdJeaILYDdKNKNKWe|3,cCHObBJZGWKZETTeMbNXGDJdLOLOLMO|3
X-Requested-With: XMLHttpRequest
Content-Length: 43
Origin: https://www.booking.com
Connection: keep-alive
Cookie: _pxhd=6ohPg0ROChxar82JvmoswfXf8hoyspFn2g6zHr9ZpAu56YciMGQ6TDHpslAWYK1uK-zxEMwjuVx4fJd2p3VOcQ%3D%3D%3Au8s%2Foa2tGDlH3VgzMmvLQMrwA4bQOMYB2n%2F2pzzeRgZL0Lk3gmf1Fe09jZyAvVxqtDISkZyvgZakLkWQVtTO2cxnGu549U247Jc1vkoKR8o%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLblgO%2Fz4BDP5vmvo0rKQHdDHoC1cwcQ38eJ9XoTassbRYS3FXZYL58f29qRQ4%2B0CoYRnJO7Rddtvc%2BwFC4liMPi83T%2FUJzj%2B2hFUVgofYNjPwTo6VIsNbJSHmHJUHmk2yp9kCL7TNfB1mv1QNvu6Nd6xANtM073iIBuksucACFfRw%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sun+Dec+04+2022+10%3A23%3A09+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=32247d32-b9e4-4c87-9ee5-fbd97246b047&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1670149390378; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 1063
server: nginx
date: Sun, 04 Dec 2022 10:23:13 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
set-cookie: _pxhd=6ohPg0ROChxar82JvmoswfXf8hoyspFn2g6zHr9ZpAu56YciMGQ6TDHpslAWYK1uK-zxEMwjuVx4fJd2p3VOcQ%3D%3D%3Au8s%2Foa2tGDlH3VgzMmvLQMrwA4bQOMYB2n%2F2pzzeRgZL0Lk3gmf1Fe09jZyAvVxqtDISkZyvgZakLkWQVtTO2cxnGu549U247Jc1vkoKR8o%3D; domain=booking.com; path=/; expires=Mon, 04-Dec-2023 10:23:13 GMT
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbXpFeYC4TUhDpugK287893LcCqPw9ls4ajGETJcqF3Y2AajH7w1nABhRjNSA8hS04GbilbfkhwR%2FBZU3NFIoBxOkLMK%2F9C6GYRDMdS1NORSjQXltfteYvE%2FybZy8Syojp8u1NTERHRlCnTSSVXhTdyYoDl5IjPFCQIV%2FQkePWRDU%3D; domain=.booking.com; path=/; expires=Fri, 03-Dec-2027 10:23:13 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 828a61ebc3af4e0465a5577a4c08af7a.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: aruzrOAKz-qFl3ONnKbCf1ZsFRKPuf0cKIxE1aYTX6zmnAGP0Dolug==
X-Firefox-Spdy: h2
www.booking.com/js_tracking?sid=4e7b3bdee1c9b7ec07c70785bf2891a5&ver=2&ref_action=index&lang=en-us&pid=0ff44907ee1c009d&aid=1858279&stype=1&ete=&etg=&etcg=&ets=cCHObXKeNJAbINFPIWBccCcCcCC|1,cCHObXKeNJAbINFPIWBccCcCcCC|2,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|2,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|4,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|5,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|8&etgwv=&m=UmFuZG9tSVYkc2RlIyh9YTfByiW35w4SVeygPwBl1b7wCZJhArYv9h8VStxzklmd76q3ka5-bwlPMN2pGXoi2Nb7h__8cyuN4El2hIsA6Y51Dd-YCc5UxU6ULTns_IhzIHwOpEmfM1rTzcT74iAPAR2crLhQegKZ_pRNG0XrfFUZXV_F4eclJcPcu_9r4W3mbAQchuvophtRueSweWJiEI2UBvxQ1BJKXBSRWD-EkYiEtvm-bkEbJCxQ_dAoY6k_OL_Ecro1gP_vM0eCsIKJ3VS7supyR2dDBZwwEN1FhlALTYOaxxktrIUZ0zD0SBCGtbx6ceDAr_Q0-cBmVHNiy_NfAp5DDHV8
200 OK 13 kB URL HTTP/2 www.booking.com/js_tracking?sid=4e7b3bdee1c9b7ec07c70785bf2891a5&ver=2&ref_action=index&lang=en-us&pid=0ff44907ee1c009d&aid=1858279&stype=1&ete=&etg=&etcg=&ets=cCHObXKeNJAbINFPIWBccCcCcCC|1,cCHObXKeNJAbINFPIWBccCcCcCC|2,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|2,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|4,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|5,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|8&etgwv=&m=UmFuZG9tSVYkc2RlIyh9YTfByiW35w4SVeygPwBl1b7wCZJhArYv9h8VStxzklmd76q3ka5-bwlPMN2pGXoi2Nb7h__8cyuN4El2hIsA6Y51Dd-YCc5UxU6ULTns_IhzIHwOpEmfM1rTzcT74iAPAR2crLhQegKZ_pRNG0XrfFUZXV_F4eclJcPcu_9r4W3mbAQchuvophtRueSweWJiEI2UBvxQ1BJKXBSRWD-EkYiEtvm-bkEbJCxQ_dAoY6k_OL_Ecro1gP_vM0eCsIKJ3VS7supyR2dDBZwwEN1FhlALTYOaxxktrIUZ0zD0SBCGtbx6ceDAr_Q0-cBmVHNiy_NfAp5DDHV8
IP
Hash f80f2040b08951ddc9f47d4a58ac3ea1
ea297c6415767f431cd39b55840243bda3e85d9b
e5c3aa2f49e0c90bc4edcf808c2def5dcbbafcec35d6331168ffa5f1baf934a7
GET /js_tracking?sid=4e7b3bdee1c9b7ec07c70785bf2891a5&ver=2&ref_action=index&lang=en-us&pid=0ff44907ee1c009d&aid=1858279&stype=1&ete=&etg=&etcg=&ets=cCHObXKeNJAbINFPIWBccCcCcCC|1,cCHObXKeNJAbINFPIWBccCcCcCC|2,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|2,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|4,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|5,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|8&etgwv=&m=UmFuZG9tSVYkc2RlIyh9YTfByiW35w4SVeygPwBl1b7wCZJhArYv9h8VStxzklmd76q3ka5-bwlPMN2pGXoi2Nb7h__8cyuN4El2hIsA6Y51Dd-YCc5UxU6ULTns_IhzIHwOpEmfM1rTzcT74iAPAR2crLhQegKZ_pRNG0XrfFUZXV_F4eclJcPcu_9r4W3mbAQchuvophtRueSweWJiEI2UBvxQ1BJKXBSRWD-EkYiEtvm-bkEbJCxQ_dAoY6k_OL_Ecro1gP_vM0eCsIKJ3VS7supyR2dDBZwwEN1FhlALTYOaxxktrIUZ0zD0SBCGtbx6ceDAr_Q0-cBmVHNiy_NfAp5DDHV8 HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
X-Booking-AID: 1858279
X-Booking-CSRF: Tq2MYwAAAAA=eB4IWDD5PEi38vVyRqNuRUBUzHSX96omAQ2JZiFwIkTsZfLg7WjGbzaAPKc1PL3wkHJt4o4MtK08s8QyHb6KiHBJ2FmXWIGHXkzF0bsyImEPq5wHsSBQvXo-HukJJcXOo8zL55aFv8-yy2aaD2qSu8VajjDW6g5rXlt-gMnvot8TsvIdlJstxPN04ZRzA4NNG5oE5btaLkklaB_y
X-Booking-Info: 1588860,1590420,1600200,1616480,1618710,1625600,1628410,1630360,1630600,1633680,1634460,1638220,1638370,1638430,1638440,1639610,1641760,aaTBNZZJRLESPIDNJDPVBC|1,1639350|3,1638370|1,1590420|1,1639350|1,TDXDPZFRURURYVSGFGZJEHXT|2,cCHObTRVEFDEXNBBTZBYSGSYO|5,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|1,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|1,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|1,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|2,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|7,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|8,TDXDPZFRURURYVSGFGZJEHXT|3,cCHObEfEITNPfbeQMITaSdFaLbFDXFZMIcCcCcCC|6,cCHObOOYKYYaDcOdJeaILYDdKNKNKWe|1,cCHObBJZGWKZETTeMbNXGDJdLOLOLMO|1,cCHObXKeNJAbINFPIWBccCcCcCC|4,cCHObOOYKYYaDcOdJeaILYDdKNKNKWe|3,cCHObBJZGWKZETTeMbNXGDJdLOLOLMO|3,cCHObXKeNJAbINFPIWBccCcCcCC|1,cCHObXKeNJAbINFPIWBccCcCcCC|2,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|2,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|4,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|5,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|8
X-Booking-Client-Info: aaTBNZZJRLESPIDNJDPVBC|1,TDXDPZFRURURYVSGFGZJEHXT|2,TDXDPZFRURURYVSGFGZJEHXT|3,cCHObEfEITNPfbeQMITaSdFaLbFDXFZMIcCcCcCC|6,cCHObOOYKYYaDcOdJeaILYDdKNKNKWe|1,cCHObBJZGWKZETTeMbNXGDJdLOLOLMO|1,cCHObXKeNJAbINFPIWBccCcCcCC|4,cCHObOOYKYYaDcOdJeaILYDdKNKNKWe|3,cCHObBJZGWKZETTeMbNXGDJdLOLOLMO|3,cCHObXKeNJAbINFPIWBccCcCcCC|1,cCHObXKeNJAbINFPIWBccCcCcCC|2,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|2,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|4,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|5,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|8
X-Booking-Label:
X-Booking-Language-Code: en-us
X-Booking-Pageview-Id: 0ff44907ee1c009d
X-Booking-Session-Id: 4e7b3bdee1c9b7ec07c70785bf2891a5
X-Booking-SiteType-Id: 1
X-Partner-Channel-Id: 2
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: _pxhd=6ohPg0ROChxar82JvmoswfXf8hoyspFn2g6zHr9ZpAu56YciMGQ6TDHpslAWYK1uK-zxEMwjuVx4fJd2p3VOcQ%3D%3D%3Au8s%2Foa2tGDlH3VgzMmvLQMrwA4bQOMYB2n%2F2pzzeRgZL0Lk3gmf1Fe09jZyAvVxqtDISkZyvgZakLkWQVtTO2cxnGu549U247Jc1vkoKR8o%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbnmKTRaewPBsYWbnjxkDHaATpkQAXrNCkBmsZLEBxNFasUhQagRWqRQGRq7gkocKDKoPDXD1Yzjz3JHJJgVXH0ahYn2hqDBArLR2YEZckBkuzsJKlyuj1YPpUTI8gqGh%2B13w8Ah5%2F2Nl7krsvjZHlE57872kgIbKWhOpM7RpRy9Y%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sun+Dec+04+2022+10%3A23%3A09+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=32247d32-b9e4-4c87-9ee5-fbd97246b047&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1670149390378; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
server: nginx
date: Sun, 04 Dec 2022 10:23:13 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
strict-transport-security: max-age=604800
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=79a14908e1090040&e=UmFuZG9tSVYkc2RlIyh9Yea92wm0yRUjnCBymoy8ejIDgQ6hjoUk_B49GdYLGT9F0TLhQWzJQ0I;
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 828a61ebc3af4e0465a5577a4c08af7a.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: OtjJ0xwYVhbKbrmga97DVnSPnerHZYHWcXo8T5oDEphNyqCqtzV0Uw==
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/js/atlas_cst_cft/dd44ef11b205dd6fc953643fbff5398934e2bbc4.js
200 OK 82 kB URL HTTP/2 t-cf.bstatic.com/static/js/atlas_cst_cft/dd44ef11b205dd6fc953643fbff5398934e2bbc4.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 634e5aa88119537bd42f5c2ac8b1a684
2339a7339d1d7555e0693ce9f667e17da503b7c7
d5532232cd4f6bbdb62c604928ce98048692747cbb5a39e238d7bb869ae8f90f
GET /static/js/atlas_cst_cft/dd44ef11b205dd6fc953643fbff5398934e2bbc4.js HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 23 Nov 2022 10:56:47 GMT
last-modified: Wed, 23 Nov 2022 10:54:00 GMT
etag: W/"637dfbc8-8dafd"
expires: Fri, 23 Dec 2022 10:56:47 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: pqXugFNIvAiNqQyMq96nT0E3qmT9yyEOL86Dv2aXBz3CwyZh2TWUPw==
age: 948384
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450058.jpeg?k=2449eb55e8269a66952858c80fd7bdec987f9514cd79d58685651b7d6e9cdfcf&o=
200 OK 12 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450058.jpeg?k=2449eb55e8269a66952858c80fd7bdec987f9514cd79d58685651b7d6e9cdfcf&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash b5b754cfdb4146c7a99d432dd323a23b
901d28c8ad2a1431c560f4fefbd96768cea85823
1718dd5438e00eacc0afd6176fbe286bb20531864915d3c07c4312737d25ce7a
GET /xdata/images/xphoto/300x240/45450058.jpeg?k=2449eb55e8269a66952858c80fd7bdec987f9514cd79d58685651b7d6e9cdfcf&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 12173
server: nginx
date: Fri, 02 Dec 2022 00:51:26 GMT
etag: "df7556382499792b6ba192114dfa9a77d8a7543c"
expires: Sun, 01 Jan 2023 00:51:26 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uu-JabLp1vUQOvNmdPWmP0y1LWXH_pyQmbxXNWcnbm244hxeCjvFcw==
age: 207107
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450093.jpeg?k=aa5cc7703f3866af8ffd6de346c21161804a26c3d0a508d3999c11c337506ae1&o=
200 OK 13 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450093.jpeg?k=aa5cc7703f3866af8ffd6de346c21161804a26c3d0a508d3999c11c337506ae1&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 34cd95647e7bfee64c4854f7146348b9
8017d1d7da4d9079bd0608f985a01630543c7d3a
7f72c1e1d27db3f66b0362c6b6066f384302247b1bc315af8054109102860740
GET /xdata/images/xphoto/300x240/45450093.jpeg?k=aa5cc7703f3866af8ffd6de346c21161804a26c3d0a508d3999c11c337506ae1&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 13027
server: nginx
date: Thu, 01 Dec 2022 02:51:37 GMT
etag: "d81f0a5b096a4362e4eed2ec5a22e43b4cb07cca"
expires: Sat, 31 Dec 2022 02:51:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: UnKoF-rQscga5vttn9S_6ndPd-9LrYehvIDUkbGDTAKjBFTFfqfQWw==
age: 286296
X-Firefox-Spdy: h2
t-cf.bstatic.com/psb/capla/static/js/513.8e32802c.chunk.js
200 OK 105 kB URL HTTP/2 t-cf.bstatic.com/psb/capla/static/js/513.8e32802c.chunk.js
IP
File type ASCII text, with very long lines (6542)
Size 105 kB (104808 bytes)
Hash 10301368ea775d36a96272541ef67af3
524815642a5f8cbf1bf95438454895d2397cb0ae
68477d60661725a885c52b7832d23597864fdfabfe8965203900a7c527779b51
GET /psb/capla/static/js/513.8e32802c.chunk.js HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 21 Nov 2022 10:10:05 GMT
etag: W/"d8ea893fe7d06a8311662cb424b827a2"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 18 Nov 2022 17:51:34 GMT
x-amz-expiration: expiry-date="Sat, 18 Mar 2023 17:51:34 GMT", rule-id=""
expires: Wed, 21 Dec 2022 10:10:05 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 05844663035089f465172d861220e698.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: _q3yXG2iyiKCN5wwQEItVA0NLnH4Yfp_agDrBiBhOzROVdpIeEusOQ==
age: 1123986
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450279.jpeg?k=cb9ab85ffe439f3030e00281f2d52583a398bf076e54f00f746e1d1baf62bf6e&o=
200 OK 23 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450279.jpeg?k=cb9ab85ffe439f3030e00281f2d52583a398bf076e54f00f746e1d1baf62bf6e&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash d2777025d4a89299a415993ffee584ae
882aadd31ddf11f475cc870f291c0cb00909bb41
a358344c77aa72b8ed5c9aeb8989f3e5d01116badd07b0c8fa7a6a3d7b1afb2e
GET /xdata/images/xphoto/300x240/45450279.jpeg?k=cb9ab85ffe439f3030e00281f2d52583a398bf076e54f00f746e1d1baf62bf6e&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 22931
server: nginx
date: Mon, 28 Nov 2022 05:16:33 GMT
etag: "3771ca549b944df44bce21d0d4cdded1835f5df5"
expires: Wed, 28 Dec 2022 05:16:33 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rcLWrbnTdkYjo59cffAPKww48VPbFv65rUF-YyeMUBtF0yh8-cymKA==
age: 536800
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450064.jpeg?k=4d4ea22dc4828fd55a3889e90531c9841ddb2d9abf460c420cdd24f2a9b658d2&o=
200 OK 18 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450064.jpeg?k=4d4ea22dc4828fd55a3889e90531c9841ddb2d9abf460c420cdd24f2a9b658d2&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 3d32707cb3ccfc843ca809ff0ff08c28
950e8aa81a2f546217a0ca433700c4df4550bbfd
10d7e42ad31f48815167a292170eaacedd4e7b0ae8546795a63975c2711ce024
GET /xdata/images/xphoto/300x240/45450064.jpeg?k=4d4ea22dc4828fd55a3889e90531c9841ddb2d9abf460c420cdd24f2a9b658d2&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 18103
server: nginx
date: Wed, 30 Nov 2022 04:29:02 GMT
etag: "7a9385c437c78a289ade2a3a46fb9c8c4ec6de0d"
expires: Fri, 30 Dec 2022 04:29:02 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5VRucmwbpO86rCgpzuev0m6R6sFB1mBU1LZqJaB8__vBIbsLM6Oh2g==
age: 366851
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450068.jpeg?k=41cc7c5449011323aaaaed4e845cb16200b5d540c77a50c1bea90399a1e92d70&o=
200 OK 20 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450068.jpeg?k=41cc7c5449011323aaaaed4e845cb16200b5d540c77a50c1bea90399a1e92d70&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 41bf36733e71ce642c45069444cfcf64
c931c599e9519d6c110ceed2c92432b818780d07
5c330c4cabaf246ebde2e47b2153d3e070423478706634c810980d67173f503a
GET /xdata/images/xphoto/300x240/45450068.jpeg?k=41cc7c5449011323aaaaed4e845cb16200b5d540c77a50c1bea90399a1e92d70&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 19539
server: nginx
date: Mon, 14 Nov 2022 03:30:54 GMT
etag: "6d3648c5ea6f92f14a8801247f8ec09b7c8277a0"
expires: Wed, 14 Dec 2022 03:30:54 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: iFeQnq-AyJn_CbxHXhqx65X1x8zMq8dhDLH_CmDDnmF1kRQrP6OaxQ==
age: 1752739
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450080.jpeg?k=15d9709efa513f2b23b5fa8d5234d87bdee2bf97b3e7552244592da11413db9a&o=
200 OK 13 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450080.jpeg?k=15d9709efa513f2b23b5fa8d5234d87bdee2bf97b3e7552244592da11413db9a&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 04e82ce3fa3ae9bd52cad3056a100c91
93693b20ed0103332bbb4e9f29852a5eaa187f1a
2e50a6fcd67533e10f476f84bbfafd558dd520f5b53ef1c2256e221bdaac9513
GET /xdata/images/xphoto/300x240/45450080.jpeg?k=15d9709efa513f2b23b5fa8d5234d87bdee2bf97b3e7552244592da11413db9a&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 12640
server: nginx
date: Tue, 08 Nov 2022 04:25:59 GMT
etag: "3fee24361cbe69a1d0f1320cd1364e3114ae7344"
expires: Thu, 08 Dec 2022 04:25:59 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tLqGV0nnysxpqZiUqT1lff9BKUJ3pWMbg8M09wJZPM36QRYkOJdztw==
age: 2267834
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450066.jpeg?k=4adfab312f5d26da9f81da48d8c95ca8f108215b2c84085590891a9e0e17b144&o=
200 OK 22 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450066.jpeg?k=4adfab312f5d26da9f81da48d8c95ca8f108215b2c84085590891a9e0e17b144&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash a610b882e99f89c94893c05f18687ec3
16e551d6c5ac3a8db914ec8f5fc15bbe9589a1c8
9814b3eb58d8fb061b8ebe7b1a76f31f1d08e556f1c4b3662e3a6752f121ca07
GET /xdata/images/xphoto/300x240/45450066.jpeg?k=4adfab312f5d26da9f81da48d8c95ca8f108215b2c84085590891a9e0e17b144&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 21509
server: nginx
date: Mon, 07 Nov 2022 11:32:32 GMT
etag: "d039e515042fac48f10b9c9af9ae79ef1601f534"
expires: Wed, 07 Dec 2022 11:32:32 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MWKkgzit6Eq7Iaus4U2i68BdCsDDjxIvYMbtKuzQmiuXVwYFRCAjBg==
age: 2328641
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450283.jpeg?k=44ef0e355cff36883935e4c99b5c01b035eabebad278d22363210b2fe40b2791&o=
200 OK 16 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450283.jpeg?k=44ef0e355cff36883935e4c99b5c01b035eabebad278d22363210b2fe40b2791&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 6eb82e2bccd8b35e46f250238844ef3c
8f9cc26cce3b866559d1994c75147871b3d3bcea
0a96fd07340aee61dede1f72f25f593c9bed353963d8f289890b38fc2b827ba7
GET /xdata/images/xphoto/300x240/45450283.jpeg?k=44ef0e355cff36883935e4c99b5c01b035eabebad278d22363210b2fe40b2791&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 15976
server: nginx
date: Fri, 25 Nov 2022 04:02:44 GMT
etag: "45e74d3d697ddd268be7c4a653732036575e0522"
expires: Sun, 25 Dec 2022 04:02:44 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PYakowuTjOpTldfp7qWitlQE7vzSlSZO9ZvtN_3yblUMVZndlGFo7A==
age: 800429
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450103.jpeg?k=a1fa72362160b1df6e288050afa7ce1aade80871acd368ddd4a4ebf6ad87764e&o=
200 OK 21 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450103.jpeg?k=a1fa72362160b1df6e288050afa7ce1aade80871acd368ddd4a4ebf6ad87764e&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 90383d39034028eafbd253eead13aecf
32035c5bcff0627f4901188d0e7b994aa46e64c8
150590b7a8af048e1a2696985211a78b0fa1800523f338e9fee9b5947cb0e5d7
GET /xdata/images/xphoto/300x240/45450103.jpeg?k=a1fa72362160b1df6e288050afa7ce1aade80871acd368ddd4a4ebf6ad87764e&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 20736
server: nginx
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sat, 03 Dec 2022 01:03:44 GMT
expires: Sun, 01 Jan 2023 06:55:26 GMT
cache-control: max-age=2592000
etag: "6321ccff0cd460c8afd84c79a5f56791f8a32987"
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PFQFo6GDenVUtsAxWauCPSjxbm9af2ecUnpq_S5-Qfziurimov-HXg==
age: 185267
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/js/index_cft/bd68e5b299d11859b1945c5a93a09081c17a381a.js
200 OK 34 kB URL HTTP/2 t-cf.bstatic.com/static/js/index_cft/bd68e5b299d11859b1945c5a93a09081c17a381a.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 0a498e5af6877631aae28c64ceeff2e5
b87e432fae2657c3413183a714347371862eae4e
c645ab1045f9650035370439f9a08ac153530a8a555e0ae560578e7c4239cc53
GET /static/js/index_cft/bd68e5b299d11859b1945c5a93a09081c17a381a.js HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 02 Dec 2022 09:31:59 GMT
last-modified: Wed, 30 Nov 2022 12:37:23 GMT
etag: W/"63874e83-1291c"
expires: Sun, 01 Jan 2023 09:31:59 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 05844663035089f465172d861220e698.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: iSUUGJak26C3iqM76rjml7QUwHbvaSxdHHhN5MPj0_eIKfoXPB5ItA==
age: 175871
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/js/searchbox_cft/5d2edcc8d136dd8e0ef1a28d2d8495a87f39d811.js
200 OK 63 kB URL HTTP/2 t-cf.bstatic.com/static/js/searchbox_cft/5d2edcc8d136dd8e0ef1a28d2d8495a87f39d811.js
IP
File type Unicode text, UTF-8 text, with very long lines (65528), with no line terminators
Hash 128a1b1381a03b4dab43d5b5c3874a7a
806293518628de56d5945cfad7bdf5dc28fe636d
3b5f6878969d3968f6a4c8016483284c2f089e9d939496bffcbcef0d752b9388
GET /static/js/searchbox_cft/5d2edcc8d136dd8e0ef1a28d2d8495a87f39d811.js HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 14 Nov 2022 04:59:18 GMT
last-modified: Mon, 14 Nov 2022 03:58:32 GMT
etag: W/"6371bce8-398a1"
expires: Wed, 14 Dec 2022 04:59:18 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 05844663035089f465172d861220e698.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: svkKmFPjKndpWlvL1arRiUTu4qpuL2gtGsxsQdt8Is8MmoRgNB5pcw==
age: 1747432
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450097.jpeg?k=eac0f917a53dc395bd379fef8c191e7d5e37012b68e60232e4f6bba2a2901b7a&o=
200 OK 15 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450097.jpeg?k=eac0f917a53dc395bd379fef8c191e7d5e37012b68e60232e4f6bba2a2901b7a&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 13d1467c76d772dd6647f49fe4140d08
7ff7e63be06a3e98495eae5c0a1fb26482025d78
50fa8a1dfe8f3251194c1564def0dda195ce6fc96f05a63a83753b7b6bc9463d
GET /xdata/images/xphoto/300x240/45450097.jpeg?k=eac0f917a53dc395bd379fef8c191e7d5e37012b68e60232e4f6bba2a2901b7a&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 15440
server: nginx
date: Thu, 01 Dec 2022 02:52:59 GMT
etag: "fe7fd14038d80f99c112923f33a7e90fb81ff156"
expires: Sat, 31 Dec 2022 02:52:59 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: E6urCxzbfSIeldFLmImcsXGCVPZYINo1AvjEqPGeFaXkBKqXTKZjLg==
age: 286214
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450095.jpeg?k=cd5e46e632dab722d22217813485efde31fbe82f5f26a624166edccdbe8187bc&o=
200 OK 20 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450095.jpeg?k=cd5e46e632dab722d22217813485efde31fbe82f5f26a624166edccdbe8187bc&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash deb177f86bfc7083567ae12e1964f4ad
45c07c5d8cdec20431c81aee3aee189a4d87cd99
1f14eeb3c3ef9eeb1170e99a2fea2fbd034a83305f72be3fdfd7a7711f5fd4ee
GET /xdata/images/xphoto/300x240/45450095.jpeg?k=cd5e46e632dab722d22217813485efde31fbe82f5f26a624166edccdbe8187bc&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 20002
server: nginx
date: Fri, 11 Nov 2022 03:22:04 GMT
etag: "f587572ccbed6d938eb70158d494705ba23b3820"
expires: Sun, 11 Dec 2022 03:22:04 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: eikzpZ4k_HBQosp3I_fmoUDHOFZck0Rbsrj1EQSsP29c1a8dNVYuRg==
age: 2012469
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/hotel/max500/103951224.jpg?k=03736dd4e1e89c1132e4957149e394d01ac6e8f64f4b09e30ade97a6176f0640&o=
200 OK 34 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/hotel/max500/103951224.jpg?k=03736dd4e1e89c1132e4957149e394d01ac6e8f64f4b09e30ade97a6176f0640&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 500x334, components 3\012- data
Hash 230406204e40a132fdf937703e8df84b
e7d97fdef14af3f3f18020687e37aaba2150d087
afc3f433397b200e73def545ecf08c08ab2b85e8b11d948098ba8ebd4b9ec9be
GET /xdata/images/hotel/max500/103951224.jpg?k=03736dd4e1e89c1132e4957149e394d01ac6e8f64f4b09e30ade97a6176f0640&o= HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 33958
server: nginx
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Mon, 21 Nov 2022 09:32:38 GMT
expires: Wed, 21 Dec 2022 09:32:38 GMT
cache-control: max-age=2592000
etag: "ab6569a4eb74a062e108819908dab6b7073ed5ca"
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: CuSoXzxP67Hx5n1sEQU_Ba0tE3vgde8prBzZ7C53fWdPeHVnd8sehA==
age: 1126235
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/hotel/max500/74529578.jpg?k=a7fcefd47d7271daf44f6ce78a215b9505f9f8e5cac3af093b78b9c489fd8461&o=
200 OK 19 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/hotel/max500/74529578.jpg?k=a7fcefd47d7271daf44f6ce78a215b9505f9f8e5cac3af093b78b9c489fd8461&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 500x333, components 3\012- data
Hash 307816f8b37660b5b600532f6f6be261
ff9fe8d81241c97e9d66c0e88bfe688341b4abb9
84b21ed19e0ea41863d9309c1fc5cea5e65d176759c293e1bbdf9487b1c567f5
GET /xdata/images/hotel/max500/74529578.jpg?k=a7fcefd47d7271daf44f6ce78a215b9505f9f8e5cac3af093b78b9c489fd8461&o= HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 18956
server: nginx
date: Tue, 29 Nov 2022 06:29:26 GMT
etag: "a1201fea8704d02864a2729deeefbbc15945a689"
expires: Thu, 29 Dec 2022 06:29:26 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: cIHLsgrbYtdElNscaDH6OiYqn5de1ctyx-izAsSeJdD7HWzE9D1Syg==
age: 446027
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/hotel/max500/39615603.jpg?k=ffa7f14b1c5235c8883662876734f832a596de617cd8380ce1025fb21bc92df9&o=
200 OK 38 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/hotel/max500/39615603.jpg?k=ffa7f14b1c5235c8883662876734f832a596de617cd8380ce1025fb21bc92df9&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 500x333, components 3\012- data
Hash 52202a7391988a4169879f0bfafc7b85
2fe24f2b6f686264aef8cbde2ff67d5b82fa9127
b847c0e2887851da63c33bef96e123a104dd4d7d403c1291569daa5cd954166c
GET /xdata/images/hotel/max500/39615603.jpg?k=ffa7f14b1c5235c8883662876734f832a596de617cd8380ce1025fb21bc92df9&o= HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 38350
server: nginx
date: Sun, 20 Nov 2022 07:40:53 GMT
etag: "c66d9a15e97736fe50acb663ad039d518588ba68"
expires: Tue, 20 Dec 2022 07:40:53 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: bkErzKIYk6OQ5Go2gBEQqlEjdNrMOT7rumcMvstVYYeCI6kyVDCW_w==
age: 1219340
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/hotel/max500/40890517.jpg?k=cd55de5463af8988f78fd675904a43d02f77570debe9977c4c1fe658030b6d29&o=
200 OK 27 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/hotel/max500/40890517.jpg?k=cd55de5463af8988f78fd675904a43d02f77570debe9977c4c1fe658030b6d29&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 500x375, components 3\012- data
Hash 3ff43b5dfa58bd7120e3f37d25c4a715
2d6f220cc6488ad64c52c23dd3b83715b5a8b23f
ed5985882cd76d462dc3864223d1b05a8d5094cd186daf204a07432b4996d1b8
GET /xdata/images/hotel/max500/40890517.jpg?k=cd55de5463af8988f78fd675904a43d02f77570debe9977c4c1fe658030b6d29&o= HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 27025
server: nginx
date: Tue, 29 Nov 2022 06:29:26 GMT
etag: "4b2a3e705a67bb7ecee50f2af376a8b0d3904109"
expires: Thu, 29 Dec 2022 06:29:26 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: AIkQtFV5-ERfoPLFw7N3irlylKEqmhJ7X2w0N1Cnt12zbF_42qcWGA==
age: 446027
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/hotel/max500/74594395.jpg?k=d5a71c0578774c302d2b8854482beaa8785077c616f956aac74766124023a319&o=
200 OK 25 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/hotel/max500/74594395.jpg?k=d5a71c0578774c302d2b8854482beaa8785077c616f956aac74766124023a319&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 500x281, components 3\012- data
Hash 514a975e6c80a82c5ee7bcb638772299
dd0410d8e26d66c8d8b2542ba5cbbc0cf3f36d38
7b19dd3f6c71b2b61887584495fd5d573d5b641768f0cdcb87463b82262e2e0e
GET /xdata/images/hotel/max500/74594395.jpg?k=d5a71c0578774c302d2b8854482beaa8785077c616f956aac74766124023a319&o= HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 24620
server: nginx
date: Sun, 27 Nov 2022 06:26:54 GMT
etag: "c1792097423301953c9ea7fe81ce65447c65a069"
expires: Tue, 27 Dec 2022 06:26:54 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 26Nw85smpcDNiqjzOGxIUAZUaCfOzsQL_XRPZj-RkZvMABid3-OU7Q==
age: 618979
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 472 B IP
Hash 6d55e18723467f8cf7e0f63a38c5bd07
70b0d73d67561651f44f4278ea6faa3398b87011
ea453b27f92e55b649f854725c61c9f4a0a8404121b818393b8654298f77f72b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 10:23:13 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 17:38:13 GMT
Expires: Thu, 08 Dec 2022 17:38:12 GMT
Etag: "70b0d73d67561651f44f4278ea6faa3398b87011"
Cache-Control: max-age=371098,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7743d34c6fd2b4eb-OSL
t-cf.bstatic.com/static/img/join/bh_carousel_more_background/5132764897ca62019efeefc5ad9c296227434ba9.jpg
200 OK 47 kB URL HTTP/2 t-cf.bstatic.com/static/img/join/bh_carousel_more_background/5132764897ca62019efeefc5ad9c296227434ba9.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 353x433, components 3\012- data
Hash 3471913b5eaf34016f7f8fd2b795353a
830765f7fccc5bc5a6e6ac6d57648c1f48e86c72
22d1b410f2a9e346185c14dbd28e358bab1edc3d1929751534c39b93010ee131
GET /static/img/join/bh_carousel_more_background/5132764897ca62019efeefc5ad9c296227434ba9.jpg HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://t-cf.bstatic.com/static/css/index_cft.iq_ltr/e08cfc22016b81b291eaec4522fd8c1e008ac87a.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 47062
server: nginx
last-modified: Mon, 08 Jul 2019 08:01:33 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Mon, 07 Nov 2022 13:02:21 GMT
expires: Wed, 07 Dec 2022 13:02:21 GMT
cache-control: max-age=2592000
etag: "5d22f85d-b7d6"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 2QxBVmQhHoWCN6ADfYlEYlD5JB4bazFknBIA25NJVrzPzN4QrC3l_g==
age: 2323252
X-Firefox-Spdy: h2
www.booking.com/js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=0ff44907ee1c009d&ete=&etg=&etcg=cCGaYSdVZMYCIPPQFFNcFGdcFRURURNLRe|1&ets=&etgwv=
200 OK 35 B URL HTTP/2 www.booking.com/js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=0ff44907ee1c009d&ete=&etg=&etcg=cCGaYSdVZMYCIPPQFFNcFGdcFRURURNLRe|1&ets=&etgwv=
IP
Hash 79a611524d7c43a354c589264cc2376e
2e25649d9a8a208302be0502b47a0e44b07bc7c1
c7a9af81f3467d3c95760df18d0853bda8c191f612fb2e8b2b5c4ed941fbaf1a
GET /js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=0ff44907ee1c009d&ete=&etg=&etcg=cCGaYSdVZMYCIPPQFFNcFGdcFRURURNLRe|1&ets=&etgwv= HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
X-Booking-Info:
X-Booking-Client-Info:
X-Booking-Pageview-Id: 0ff44907ee1c009d
X-Booking-SiteType-Id: 1
X-Booking-Language-Code: en-us
X-Booking-AID: 1858279
X-Booking-Session-Id: 3e71dba830bda8d7a840f2a5a7f133c6
X-Booking-ET-Serialized-State: EKcfcuuH4UkrrGtAgIZAEgqGfxsrv2uaVrwjAh82nekRGnGSu9Qf0AdkuwIdcS09m
Connection: keep-alive
Cookie: _pxhd=6ohPg0ROChxar82JvmoswfXf8hoyspFn2g6zHr9ZpAu56YciMGQ6TDHpslAWYK1uK-zxEMwjuVx4fJd2p3VOcQ%3D%3D%3Au8s%2Foa2tGDlH3VgzMmvLQMrwA4bQOMYB2n%2F2pzzeRgZL0Lk3gmf1Fe09jZyAvVxqtDISkZyvgZakLkWQVtTO2cxnGu549U247Jc1vkoKR8o%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbXpFeYC4TUhDpugK287893LcCqPw9ls4ajGETJcqF3Y2AajH7w1nABhRjNSA8hS04GbilbfkhwR%2FBZU3NFIoBxOkLMK%2F9C6GYRDMdS1NORSjQXltfteYvE%2FybZy8Syojp8u1NTERHRlCnTSSVXhTdyYoDl5IjPFCQIV%2FQkePWRDU%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sun+Dec+04+2022+10%3A23%3A09+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=32247d32-b9e4-4c87-9ee5-fbd97246b047&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1670149390378; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 35
server: nginx
date: Sun, 04 Dec 2022 10:23:13 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
strict-transport-security: max-age=604800
content-security-policy-report-only: report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=0b5049083d180231&e=UmFuZG9tSVYkc2RlIyh9Yea92wm0yRUjnCBymoy8ejLNicwYcAxvG10Y_iMO5jfQqEHhYwT0eAE; frame-ancestors 'none';
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 828a61ebc3af4e0465a5577a4c08af7a.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: BBsvDRV30DZHNxWHUthHX95fCKUIzX672oiWWRJFUlaDbl_005qZ9w==
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/hotel/square600/154512398.webp?k=f34c90d1aae9ef4b8c0eea552e829f669eac79b844bd6e88ced019273f4d3c4b&o=&s=1
200 OK 72 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/hotel/square600/154512398.webp?k=f34c90d1aae9ef4b8c0eea552e829f669eac79b844bd6e88ced019273f4d3c4b&o=&s=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8f65d9111ef2d4aa2b2cb67dc112b64c
0ac0d2a13010ff6a3f65812cd8949393eefaeef2
74b91ae62006cdad22d6e702c8f1f432c2144abd4909cbc997c23d9425b63104
GET /xdata/images/hotel/square600/154512398.webp?k=f34c90d1aae9ef4b8c0eea552e829f669eac79b844bd6e88ced019273f4d3c4b&o=&s=1 HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 71718
server: nginx
date: Wed, 09 Nov 2022 05:35:17 GMT
etag: "2d987a6f73f3d2ced0773fe99110897635e975d1"
expires: Fri, 09 Dec 2022 05:35:17 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: TxE8JLsmzi8NuRm_gn_eRB_hwiN75pxCokQTgwOH8dXAp94EBYi9Ww==
age: 2177276
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/hotel/square600/90166571.webp?k=0b63f507a150b0e5f6e2173786be4374ee7deae468fc1a6443feef111cc01ef5&o=&s=1
200 OK 31 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/hotel/square600/90166571.webp?k=0b63f507a150b0e5f6e2173786be4374ee7deae468fc1a6443feef111cc01ef5&o=&s=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 144ea530c7ce441545e4faf8436567c5
adc26707883764b633c3c56b6fd94eadd1f02658
3b463c2a52c167a2ca60af3010e689f9edb48dcdfab7918a06b9ca83df7f4270
GET /xdata/images/hotel/square600/90166571.webp?k=0b63f507a150b0e5f6e2173786be4374ee7deae468fc1a6443feef111cc01ef5&o=&s=1 HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 30798
server: nginx
date: Mon, 07 Nov 2022 09:01:48 GMT
etag: "494d7241d5d000bee96a18c3fbafb509f867c944"
expires: Wed, 07 Dec 2022 09:01:48 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: UGMqapvcl0ePKtWCxI44o64jDv1PUWV6brVyKe_3XYsHIMlaDlgpKw==
age: 2337685
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/hotel/square600/125840065.webp?k=3443f59e7b7c521c1abdfa94fcbf62b8e5386a2a7b70d815db2714b793d22f96&o=&s=1
200 OK 31 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/hotel/square600/125840065.webp?k=3443f59e7b7c521c1abdfa94fcbf62b8e5386a2a7b70d815db2714b793d22f96&o=&s=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 40c15dcecbbe184be6892d94541acc13
38bfdd7a11f114b478d926355ef9dfbb0d95ae34
e13b70dfc2ab40cc17975653efd4ddb411329be6e1f042511d754129b439db1c
GET /xdata/images/hotel/square600/125840065.webp?k=3443f59e7b7c521c1abdfa94fcbf62b8e5386a2a7b70d815db2714b793d22f96&o=&s=1 HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 31122
server: nginx
date: Sun, 13 Nov 2022 08:51:07 GMT
etag: "8f6fb9cdf7adf47b12b73e11d7d5eb2cd844f036"
expires: Tue, 13 Dec 2022 08:51:07 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: -IqpBtLd8_7QSaYJYYbBmnYuWNe2KAmOtemrkP8PVdQFFg_kUdziYg==
age: 1819926
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/hotel/square600/262247242.webp?k=ac5f696d6e7c82349e66d4e54d6a12bb0d89003eac8e7734489cc3e5d76944b8&o=&s=1
200 OK 128 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/hotel/square600/262247242.webp?k=ac5f696d6e7c82349e66d4e54d6a12bb0d89003eac8e7734489cc3e5d76944b8&o=&s=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 128 kB (128296 bytes)
Hash 72a0c3af78637f10b366a61bb49696bc
4dc6662ac320116b46d35edf4bd07870b6924df2
db14d14f8adfd6cb7b6636aef60e31df2bd660773b870ddbbf05c509720bfad1
GET /xdata/images/hotel/square600/262247242.webp?k=ac5f696d6e7c82349e66d4e54d6a12bb0d89003eac8e7734489cc3e5d76944b8&o=&s=1 HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 128296
server: nginx
date: Wed, 30 Nov 2022 06:27:49 GMT
etag: "18c1e3f8dbe320ca7b30a6aea3ed3d1f1a049666"
expires: Fri, 30 Dec 2022 06:27:49 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: -oW-Kw--vnWtMYXVDGk72n3awKSbBhQLtuj738HkYPFu0Z_tT2JvDg==
age: 359724
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/hotel/square600/236840535.webp?k=ce3c9fd759ec1a8d942b39f8fa1b8f4f388918523b269b9dff75842fec735038&o=&s=1
200 OK 44 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/hotel/square600/236840535.webp?k=ce3c9fd759ec1a8d942b39f8fa1b8f4f388918523b269b9dff75842fec735038&o=&s=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1a4d2393c57cc8f4803d5142fbec0b15
bc63da22a153bbeb61fc53874e2c86fab68392ff
a4c1d356a4ef9d0eff6a71be2d6a8fd03300bf48087346743197f6a096f1628a
GET /xdata/images/hotel/square600/236840535.webp?k=ce3c9fd759ec1a8d942b39f8fa1b8f4f388918523b269b9dff75842fec735038&o=&s=1 HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 44364
server: nginx
date: Sat, 05 Nov 2022 06:43:06 GMT
etag: "8912b27b62c0dd4a66cf1833cbf600a7a5471cd1"
expires: Mon, 05 Dec 2022 06:43:06 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: zPA8prPj1JrfELEQfCDBqOE7bit00c0dOAr05BAIPiDzqLUNOKpVdA==
age: 2518807
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/hotel/square600/109319008.webp?k=b8fc6fbc8d874cffedf49c0080f14933a20995b040dc02aeaee3afad1e79c670&o=&s=1
200 OK 72 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/hotel/square600/109319008.webp?k=b8fc6fbc8d874cffedf49c0080f14933a20995b040dc02aeaee3afad1e79c670&o=&s=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4bc699d1bd67bda2dd2771f1160ebf07
5bd339ae7baa59fb6ea72d9b0adfc22859458596
deb835a811f25db8ab52d0a20100d29baf15fa5b2ec3f2b4f01210c56fb0163f
GET /xdata/images/hotel/square600/109319008.webp?k=b8fc6fbc8d874cffedf49c0080f14933a20995b040dc02aeaee3afad1e79c670&o=&s=1 HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 71756
server: nginx
date: Fri, 11 Nov 2022 11:33:06 GMT
etag: "2c7e00b39a6f43f55dc3ff980609243364d28d7d"
expires: Sun, 11 Dec 2022 11:33:06 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 11FXxF6VX9JsEliXX6QHPV97yZIw9QL1DfmYOpRM3UBOX-7Qt0hoGQ==
age: 1983007
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/hotel/square600/98662660.webp?k=6e981419e8af97778c5b13a8aca3c264a0be73e9ebfd565cb17c0e4134783564&o=&s=1
200 OK 40 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/hotel/square600/98662660.webp?k=6e981419e8af97778c5b13a8aca3c264a0be73e9ebfd565cb17c0e4134783564&o=&s=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ae5abd3325e28c423001f3f540d38b80
aa9535e550f5c89977b4f598eb656de20ec767cc
938a823e490adc84ef5d12c5b763baebb2e0ccc0592b3f0faa785a7e94e88055
GET /xdata/images/hotel/square600/98662660.webp?k=6e981419e8af97778c5b13a8aca3c264a0be73e9ebfd565cb17c0e4134783564&o=&s=1 HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 39584
server: nginx
date: Thu, 24 Nov 2022 10:39:37 GMT
etag: "274c99646aa38d1aa45453fc3e459bbdbc869535"
expires: Sat, 24 Dec 2022 10:39:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: YUE_bmmow_JE0n9A32GecKSZfR5ugBGtUY7PtEqG_Vi8wm1MCuhZtQ==
age: 863016
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/hotel/square600/101174842.webp?k=515b19cd29852207a9e6add777068c1df7931a0dc58ddb80b36af9b605a3a00d&o=&s=1
200 OK 20 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/hotel/square600/101174842.webp?k=515b19cd29852207a9e6add777068c1df7931a0dc58ddb80b36af9b605a3a00d&o=&s=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ce2edbb1483dd2f1a695bb9fe57f7574
5684d3255717041c66037bd6d76f2aa9761578b7
e5c6e93bfa6be2a02b28f5b1e3bd4ff78eaf4b7738710e73f91c3235db6b3c77
GET /xdata/images/hotel/square600/101174842.webp?k=515b19cd29852207a9e6add777068c1df7931a0dc58ddb80b36af9b605a3a00d&o=&s=1 HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 19804
server: nginx
date: Fri, 11 Nov 2022 02:20:07 GMT
etag: "c174105425ea41036d6c6eb2061d1af5d3134b86"
expires: Sun, 11 Dec 2022 02:20:07 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 47R-F0JEiIZli7hS4wUxhUzGNsKNGEGBeejT_iqTk1ecp2gkKanNHg==
age: 2016186
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/hotel/square600/218529186.webp?k=669db47d57f15a20a66212f4d267ecde0a5866a896f3d2a3223441aef8b07f6c&o=&s=1
200 OK 68 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/hotel/square600/218529186.webp?k=669db47d57f15a20a66212f4d267ecde0a5866a896f3d2a3223441aef8b07f6c&o=&s=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1ae4768126a76f4093bcf30833c7a4a0
3b35ab740b2f5860d1c6e0096446247d5b7c406d
9f222b46c7a092237c0e4bc1fe0c972365ba84e64463825f7b5fd31963e94c77
GET /xdata/images/hotel/square600/218529186.webp?k=669db47d57f15a20a66212f4d267ecde0a5866a896f3d2a3223441aef8b07f6c&o=&s=1 HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 68144
server: nginx
date: Thu, 01 Dec 2022 09:17:03 GMT
etag: "f57e5833bf678265caff3d3e5f26b1585d6ef589"
expires: Sat, 31 Dec 2022 09:17:03 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: nmK0AbufgCcHpH7Eeoa4dtBLSda1NfjvI8BreoT8PFaRK7ogthkQ6Q==
age: 263170
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/hotel/square600/286573218.webp?k=05df3eea56c59038cf7fa2ab228ec44c47c66ac49f708bc924c2b24738ea1e61&o=&s=1
200 OK 65 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/hotel/square600/286573218.webp?k=05df3eea56c59038cf7fa2ab228ec44c47c66ac49f708bc924c2b24738ea1e61&o=&s=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 651317e3637bdb07fead8acac91ff1df
677318c0d98efb6b0fed37c7f2594cedd7458f06
89f50060edeff15d0df29057194bcd3e035944bb5f8b14f64471174ff57a3389
GET /xdata/images/hotel/square600/286573218.webp?k=05df3eea56c59038cf7fa2ab228ec44c47c66ac49f708bc924c2b24738ea1e61&o=&s=1 HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 65350
server: nginx
date: Fri, 11 Nov 2022 06:47:10 GMT
etag: "912681737b92e993d6845b8f5976305a0e95c466"
expires: Sun, 11 Dec 2022 06:47:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: w-q-VHJRG21xj-3vr8Gy6SgcUIhQzsi7DLYAofHfC0uQ0s09Mpfl1Q==
age: 2000163
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/hotel/square600/106411975.webp?k=53597242e9727e6e44a618b8edbc222c39b6937ac1bbe76761e24a2d796aed62&o=&s=1
200 OK 47 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/hotel/square600/106411975.webp?k=53597242e9727e6e44a618b8edbc222c39b6937ac1bbe76761e24a2d796aed62&o=&s=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 305465a9638c31999672f217d98701d6
ab6a936d965af5e3b623e803fc46b48dd45e8641
58e195cf5d834d26264ad4f6641d2f8e7ca2e761ec4b8331f5d63e359ef5bbfc
GET /xdata/images/hotel/square600/106411975.webp?k=53597242e9727e6e44a618b8edbc222c39b6937ac1bbe76761e24a2d796aed62&o=&s=1 HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 46882
server: nginx
date: Fri, 11 Nov 2022 11:31:01 GMT
etag: "9436fc6a0c4aad202f2a66c4bf70c9a1f0b12d2a"
expires: Sun, 11 Dec 2022 11:31:01 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: i2PECnc2WCnXPjKgZp_QT8V47Q8IEokNXecADBvnxex5_B2tVrWYcQ==
age: 1983132
X-Firefox-Spdy: h2
www.booking.com/c360/v1/track
200 OK 33 B URL HTTP/2 www.booking.com/c360/v1/track
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 42fcc80d879dd35c0bbdd04c1414890b
f1dbf58d1b458f9c50995bb8d84da4a67f2d437b
fb87565b58755d257fcf9af5b4b25e0dcfc682adb630dd2a32bbf56b91d2c325
POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
Content-Type: application/json
X-Booking-Platform: undefined
X-Booking-SiteType-Id: undefined
X-Booking-Pageview-Id: 0ff44907ee1c009d
X-Booking-Session-Id: undefined
X-Booking-ET-Seed: undefined
X-Booking-AID: 1858279
X-Booking-Label: undefined
X-Booking-CSRF: undefined
X-Booking-Language-Code: en-us
Origin: https://www.booking.com
Content-Length: 650
Connection: keep-alive
Cookie: _pxhd=6ohPg0ROChxar82JvmoswfXf8hoyspFn2g6zHr9ZpAu56YciMGQ6TDHpslAWYK1uK-zxEMwjuVx4fJd2p3VOcQ%3D%3D%3Au8s%2Foa2tGDlH3VgzMmvLQMrwA4bQOMYB2n%2F2pzzeRgZL0Lk3gmf1Fe09jZyAvVxqtDISkZyvgZakLkWQVtTO2cxnGu549U247Jc1vkoKR8o%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbXpFeYC4TUhDpugK287893LcCqPw9ls4ajGETJcqF3Y2AajH7w1nABhRjNSA8hS04GbilbfkhwR%2FBZU3NFIoBxOkLMK%2F9C6GYRDMdS1NORSjQXltfteYvE%2FybZy8Syojp8u1NTERHRlCnTSSVXhTdyYoDl5IjPFCQIV%2FQkePWRDU%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sun+Dec+04+2022+10%3A23%3A09+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=32247d32-b9e4-4c87-9ee5-fbd97246b047&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1670149390378; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 33
server: nginx
date: Sun, 04 Dec 2022 10:23:13 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbnmKTRaewPBsYWbnjxkDHaATpkQAXrNCkBmsZLEBxNFasUhQagRWqRXQKxDeI%2BIZiNFUzncBEBgXqgOuUlOydO9KMcGhzyx6mJUCv6kktwQ4vIR%2FuTgi3RHFXismPd2pqxyDiGZTMI6zD0nOwZkK%2BbICImcyXTApSTjUDdmdWhg0%3D; domain=.booking.com; path=/; expires=Fri, 03-Dec-2027 10:23:13 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 828a61ebc3af4e0465a5577a4c08af7a.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: u-OIxiRLOm7U8KMgFLgOBgkd_S4GsazpPynEh4iOsBuXqSBzjbnhmA==
X-Firefox-Spdy: h2
t-cf.bstatic.com/psb/capla/static/js/970.3c4662af.chunk.js
200 OK 19 kB URL HTTP/2 t-cf.bstatic.com/psb/capla/static/js/970.3c4662af.chunk.js
IP
File type ASCII text, with very long lines (65460)
Hash c201a476409692d488db0ae80ab2a107
1f687155c7680d030634b11b5bea24513d15f16f
66f009ed37bae3268d751f9ce081c09120ff5527172d8e10f40e4edf74979d46
GET /psb/capla/static/js/970.3c4662af.chunk.js HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 28 Nov 2022 16:09:24 GMT
etag: W/"a11c7d93053eb2d75548282c4f7ae943"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Mon, 28 Nov 2022 15:57:30 GMT
x-amz-expiration: expiry-date="Tue, 28 Mar 2023 15:57:30 GMT", rule-id=""
expires: Wed, 28 Dec 2022 16:09:24 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 05844663035089f465172d861220e698.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: lf7Xl4M1C2Zlfn90B2a5WytFK1YxZPC6sVJYtJ428imu8xtZZuWX4g==
age: 497627
X-Firefox-Spdy: h2
www.booking.com/c360/v1/track
200 OK 33 B URL HTTP/2 www.booking.com/c360/v1/track
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 42fcc80d879dd35c0bbdd04c1414890b
f1dbf58d1b458f9c50995bb8d84da4a67f2d437b
fb87565b58755d257fcf9af5b4b25e0dcfc682adb630dd2a32bbf56b91d2c325
POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
Content-Type: application/json
X-Booking-Platform: undefined
X-Booking-SiteType-Id: undefined
X-Booking-Pageview-Id: 0ff44907ee1c009d
X-Booking-Session-Id: undefined
X-Booking-ET-Seed: undefined
X-Booking-AID: 1858279
X-Booking-Label: undefined
X-Booking-CSRF: undefined
X-Booking-Language-Code: en-us
Origin: https://www.booking.com
Content-Length: 650
Connection: keep-alive
Cookie: _pxhd=6ohPg0ROChxar82JvmoswfXf8hoyspFn2g6zHr9ZpAu56YciMGQ6TDHpslAWYK1uK-zxEMwjuVx4fJd2p3VOcQ%3D%3D%3Au8s%2Foa2tGDlH3VgzMmvLQMrwA4bQOMYB2n%2F2pzzeRgZL0Lk3gmf1Fe09jZyAvVxqtDISkZyvgZakLkWQVtTO2cxnGu549U247Jc1vkoKR8o%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbXpFeYC4TUhDpugK287893LcCqPw9ls4ajGETJcqF3Y2AajH7w1nABhRjNSA8hS04GbilbfkhwR%2FBZU3NFIoBxOkLMK%2F9C6GYRDMdS1NORSjQXltfteYvE%2FybZy8Syojp8u1NTERHRlCnTSSVXhTdyYoDl5IjPFCQIV%2FQkePWRDU%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sun+Dec+04+2022+10%3A23%3A09+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=32247d32-b9e4-4c87-9ee5-fbd97246b047&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1670149390378; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 33
server: nginx
date: Sun, 04 Dec 2022 10:23:13 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbof7CEiNviT8mLYtfHNhWu74gUYSCIbtMJYBBzUUWJFKeBk3vsuDujrTF28LBXgSACoMT6%2F9PCyQ8O3HNeYWokTm5Nnpk64rej5C2CnsyYjHMeD4xCeDyzuRsFwwLqI1E%2FlTVKNJ3eFwsAtN0BxPd%2FNGgJzCOlQl5PtliLJySt50%3D; domain=.booking.com; path=/; expires=Fri, 03-Dec-2027 10:23:13 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 828a61ebc3af4e0465a5577a4c08af7a.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: TGtgQEnqLtmJNRtvItQ-c-Cs0o6AtoOfSM-0h23ohjDKNww0T5qbyA==
X-Firefox-Spdy: h2
www.booking.com/c360/v1/track
200 OK 33 B URL HTTP/2 www.booking.com/c360/v1/track
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 2ef0949d72ccdcc083647d001c8ba940
ebe4e2284d3892b010623597d0945b6b5cd64448
fe1a912baa83e36855bb934de3f2cfdffe77b1224a552533a4a7f2e984a51e52
POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
Content-Type: application/json
X-Booking-Platform: undefined
X-Booking-SiteType-Id: undefined
X-Booking-Pageview-Id: 0ff44907ee1c009d
X-Booking-Session-Id: undefined
X-Booking-ET-Seed: undefined
X-Booking-AID: 1858279
X-Booking-Label: undefined
X-Booking-CSRF: undefined
X-Booking-Language-Code: en-us
Origin: https://www.booking.com
Content-Length: 650
Connection: keep-alive
Cookie: _pxhd=6ohPg0ROChxar82JvmoswfXf8hoyspFn2g6zHr9ZpAu56YciMGQ6TDHpslAWYK1uK-zxEMwjuVx4fJd2p3VOcQ%3D%3D%3Au8s%2Foa2tGDlH3VgzMmvLQMrwA4bQOMYB2n%2F2pzzeRgZL0Lk3gmf1Fe09jZyAvVxqtDISkZyvgZakLkWQVtTO2cxnGu549U247Jc1vkoKR8o%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbXpFeYC4TUhDpugK287893LcCqPw9ls4ajGETJcqF3Y2AajH7w1nABhRjNSA8hS04GbilbfkhwR%2FBZU3NFIoBxOkLMK%2F9C6GYRDMdS1NORSjQXltfteYvE%2FybZy8Syojp8u1NTERHRlCnTSSVXhTdyYoDl5IjPFCQIV%2FQkePWRDU%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sun+Dec+04+2022+10%3A23%3A09+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=32247d32-b9e4-4c87-9ee5-fbd97246b047&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1670149390378; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 33
server: nginx
date: Sun, 04 Dec 2022 10:23:13 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPefuAElJ8Fl1XcGw%2F8FBUZ1eYv3WIuEB4vb%2FWN1feuLFQbd1mFGPu9C6E20rio2PnkaelGAiXjhM6amzqjgqkLZSf5JPMUdNmdlXGreUOFgLltxJD1nB9J72gtLA9%2Fx1iujcodETW21xsQZM2dx9ynYc8avdkrYwRbo%3D; domain=.booking.com; path=/; expires=Fri, 03-Dec-2027 10:23:13 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 828a61ebc3af4e0465a5577a4c08af7a.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: 9_l7nhKNlu1U6_r88JX0OgZrGHPTxoVAydSt5KTNUtYYNZHFgkhVxQ==
X-Firefox-Spdy: h2
www.booking.com/c360/v1/track
200 OK 33 B URL HTTP/2 www.booking.com/c360/v1/track
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 2ef0949d72ccdcc083647d001c8ba940
ebe4e2284d3892b010623597d0945b6b5cd64448
fe1a912baa83e36855bb934de3f2cfdffe77b1224a552533a4a7f2e984a51e52
POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
Content-Type: application/json
X-Booking-Platform: undefined
X-Booking-SiteType-Id: undefined
X-Booking-Pageview-Id: 0ff44907ee1c009d
X-Booking-Session-Id: undefined
X-Booking-ET-Seed: undefined
X-Booking-AID: 1858279
X-Booking-Label: undefined
X-Booking-CSRF: undefined
X-Booking-Language-Code: en-us
Origin: https://www.booking.com
Content-Length: 650
Connection: keep-alive
Cookie: _pxhd=6ohPg0ROChxar82JvmoswfXf8hoyspFn2g6zHr9ZpAu56YciMGQ6TDHpslAWYK1uK-zxEMwjuVx4fJd2p3VOcQ%3D%3D%3Au8s%2Foa2tGDlH3VgzMmvLQMrwA4bQOMYB2n%2F2pzzeRgZL0Lk3gmf1Fe09jZyAvVxqtDISkZyvgZakLkWQVtTO2cxnGu549U247Jc1vkoKR8o%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbXpFeYC4TUhDpugK287893LcCqPw9ls4ajGETJcqF3Y2AajH7w1nABhRjNSA8hS04GbilbfkhwR%2FBZU3NFIoBxOkLMK%2F9C6GYRDMdS1NORSjQXltfteYvE%2FybZy8Syojp8u1NTERHRlCnTSSVXhTdyYoDl5IjPFCQIV%2FQkePWRDU%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sun+Dec+04+2022+10%3A23%3A09+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=32247d32-b9e4-4c87-9ee5-fbd97246b047&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1670149390378; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 33
server: nginx
date: Sun, 04 Dec 2022 10:23:13 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbXpFeYC4TUhDV59EAUd9uJDA%2FzpKFLwWHYwS%2FZa1%2FRjNkLboXA7ghj5J9dE4RAcWVZ%2FqL4g7%2F6G9JKcHj7cMDjAkYqV0xc%2BJWJxwRIlJgeghgq6YGj35268MTohmX7I0EisM99ODoZ2Yl4%2BDNqKFofE33XAjWKwJ3LuJKFTN5Wyg%3D; domain=.booking.com; path=/; expires=Fri, 03-Dec-2027 10:23:13 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 828a61ebc3af4e0465a5577a4c08af7a.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: vsDbiTCeQw0EWRWcR684J0UU3wgUlHe9Sf45hA2TcssfynRAnRL2fw==
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/hotel/square600/101174842.webp?k=515b19cd29852207a9e6add777068c1df7931a0dc58ddb80b36af9b605a3a00d&o=&s=1
200 OK 20 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/hotel/square600/101174842.webp?k=515b19cd29852207a9e6add777068c1df7931a0dc58ddb80b36af9b605a3a00d&o=&s=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ce2edbb1483dd2f1a695bb9fe57f7574
5684d3255717041c66037bd6d76f2aa9761578b7
e5c6e93bfa6be2a02b28f5b1e3bd4ff78eaf4b7738710e73f91c3235db6b3c77
GET /xdata/images/hotel/square600/101174842.webp?k=515b19cd29852207a9e6add777068c1df7931a0dc58ddb80b36af9b605a3a00d&o=&s=1 HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 19804
server: nginx
date: Fri, 11 Nov 2022 02:20:07 GMT
etag: "c174105425ea41036d6c6eb2061d1af5d3134b86"
expires: Sun, 11 Dec 2022 02:20:07 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: J45XRXyAywgFgLohXUOnDr9XbEp7tbzP3ZmF836s19-IOsoQDMalJA==
age: 2016186
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/hotel/square600/218529186.webp?k=669db47d57f15a20a66212f4d267ecde0a5866a896f3d2a3223441aef8b07f6c&o=&s=1
200 OK 68 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/hotel/square600/218529186.webp?k=669db47d57f15a20a66212f4d267ecde0a5866a896f3d2a3223441aef8b07f6c&o=&s=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1ae4768126a76f4093bcf30833c7a4a0
3b35ab740b2f5860d1c6e0096446247d5b7c406d
9f222b46c7a092237c0e4bc1fe0c972365ba84e64463825f7b5fd31963e94c77
GET /xdata/images/hotel/square600/218529186.webp?k=669db47d57f15a20a66212f4d267ecde0a5866a896f3d2a3223441aef8b07f6c&o=&s=1 HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 68144
server: nginx
date: Thu, 01 Dec 2022 09:17:03 GMT
etag: "f57e5833bf678265caff3d3e5f26b1585d6ef589"
expires: Sat, 31 Dec 2022 09:17:03 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 3KL8nSGePKKw2AeMYVML0gwB8Pq3puTADgEt6McG7IpZUnPMEgThxQ==
age: 263170
X-Firefox-Spdy: h2
t-cf.bstatic.com/psb/capla/static/js/534.877ced74.chunk.js
200 OK 81 kB URL HTTP/2 t-cf.bstatic.com/psb/capla/static/js/534.877ced74.chunk.js
IP
File type ASCII text, with very long lines (56712)
Hash 505f232e6b4b41315e7b305737391f7c
96291ddb25be1f7a121e09b477e848c873a67361
26f5e76bfe2411981942636ba013e007f834faf09c50bb09b9a77320714d0c71
GET /psb/capla/static/js/534.877ced74.chunk.js HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 24 Nov 2022 14:30:37 GMT
etag: W/"775ce82faa2873b1fb46e825b3121961"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Thu, 24 Nov 2022 14:20:22 GMT
x-amz-expiration: expiry-date="Fri, 24 Mar 2023 14:20:22 GMT", rule-id=""
expires: Sat, 24 Dec 2022 14:30:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: zqKCwphcYSWVgXIAQSa55zQSPrSBAp6F0MporKVQnvnVi-dCOC9aLw==
age: 849155
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/hotel/square600/106411975.webp?k=53597242e9727e6e44a618b8edbc222c39b6937ac1bbe76761e24a2d796aed62&o=&s=1
200 OK 47 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/hotel/square600/106411975.webp?k=53597242e9727e6e44a618b8edbc222c39b6937ac1bbe76761e24a2d796aed62&o=&s=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 305465a9638c31999672f217d98701d6
ab6a936d965af5e3b623e803fc46b48dd45e8641
58e195cf5d834d26264ad4f6641d2f8e7ca2e761ec4b8331f5d63e359ef5bbfc
GET /xdata/images/hotel/square600/106411975.webp?k=53597242e9727e6e44a618b8edbc222c39b6937ac1bbe76761e24a2d796aed62&o=&s=1 HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 46882
server: nginx
date: Fri, 11 Nov 2022 11:31:01 GMT
etag: "9436fc6a0c4aad202f2a66c4bf70c9a1f0b12d2a"
expires: Sun, 11 Dec 2022 11:31:01 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: yEDkHzyKKiYDidUMpKVo9M-6Vkq6HcIOo2dxG6yBbWJuusodMbx1kw==
age: 1983132
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/hotel/square600/236967822.webp?k=1465d052cf64137e1976c658cf1d63c249e8409896cd8f58cc088effbe552af6&o=&s=1
200 OK 124 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/hotel/square600/236967822.webp?k=1465d052cf64137e1976c658cf1d63c249e8409896cd8f58cc088effbe552af6&o=&s=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 124 kB (124272 bytes)
Hash 2867261384ef36b3257b72b797b26bb4
21e4abf06b714b14727e593d7e7cb543cbc1ff9d
ef3d8d9bbb1970944acaa14e0729f4001989221a35d0e91802534a3a8753268a
GET /xdata/images/hotel/square600/236967822.webp?k=1465d052cf64137e1976c658cf1d63c249e8409896cd8f58cc088effbe552af6&o=&s=1 HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 124272
server: nginx
date: Sun, 06 Nov 2022 06:27:42 GMT
etag: "2b0f279b347bc463d3538d552988773c85b83a49"
expires: Tue, 06 Dec 2022 06:27:42 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: PzCX3JhzzLk8y6SZZc5C4wp4sbOpOkCxfulGR1JKrAQaanvoeexILw==
age: 2433331
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/css/fonticons_clean/base64/woff/5d61b8a7156073e5e3e9741f65dda44ae3eef7d2.css
200 OK 201 kB URL HTTP/2 t-cf.bstatic.com/static/css/fonticons_clean/base64/woff/5d61b8a7156073e5e3e9741f65dda44ae3eef7d2.css
IP
File type ASCII text, with very long lines (65487)
Size 201 kB (201421 bytes)
Hash 8120fbdfde45563a95ca8343d061e922
bf66a571faef0bd18f1dcddd3afbd89e073240b5
426238373d47771148d4e3fb897bed130c890cddff031a51d8412b687981e465
GET /static/css/fonticons_clean/base64/woff/5d61b8a7156073e5e3e9741f65dda44ae3eef7d2.css HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Mon, 28 Nov 2022 13:06:24 GMT
last-modified: Wed, 10 Apr 2019 11:21:48 GMT
expires: Wed, 28 Dec 2022 13:06:24 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: W/"5cadd1cc-375af"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: b4iosq-gPIdf4r1RQjSFe3_tK2yw5itG_RWWhWHyTi4pH4sT8kIAhw==
age: 508609
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/hotel/square600/279333721.webp?k=8b632db276149b1ce327e8bfea4ac83e15d7ffc4f2b343a30af4bdd49197813e&o=&s=1
200 OK 52 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/hotel/square600/279333721.webp?k=8b632db276149b1ce327e8bfea4ac83e15d7ffc4f2b343a30af4bdd49197813e&o=&s=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d04eb453f0e7fbbbdbba2a1951a8f290
1a6eb24b80524789134492cff32767adf785b1e9
d05234f5c8999958b2953ba76dc2180eecb1643c24419c009acd808332ba05f9
GET /xdata/images/hotel/square600/279333721.webp?k=8b632db276149b1ce327e8bfea4ac83e15d7ffc4f2b343a30af4bdd49197813e&o=&s=1 HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 51934
server: nginx
date: Sat, 05 Nov 2022 10:36:01 GMT
etag: "c699ac1af5c01445b81e86ab1a7ad782a4437cd4"
expires: Mon, 05 Dec 2022 10:36:01 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: uPBd3CLhYE103Fof2FegiIVNNJVYplxNbIvEJjIh_IsSkjJO76p0vA==
age: 2504832
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/hotel/square600/294401155.webp?k=4c91bd821bcf8a21dfd3cd73dfc8043179b0b35412cd7ce30e14e45092db6be9&o=&s=1
200 OK 36 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/hotel/square600/294401155.webp?k=4c91bd821bcf8a21dfd3cd73dfc8043179b0b35412cd7ce30e14e45092db6be9&o=&s=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash bb64ec57700ec86c850ac9d4f0f5589e
8d02a485746db6f9ec0935b2daf5577491003614
94de30bdfb15c208a49b1320082c994dfdf6b622cead146dbbb7b050578b6509
GET /xdata/images/hotel/square600/294401155.webp?k=4c91bd821bcf8a21dfd3cd73dfc8043179b0b35412cd7ce30e14e45092db6be9&o=&s=1 HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 35794
server: nginx
date: Wed, 09 Nov 2022 07:37:13 GMT
etag: "57ea7ba96b52ae88fe058fc447dcb031498c0d00"
expires: Fri, 09 Dec 2022 07:37:13 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: scUbH5_ZArl797RE9hgvDLPmWu0ZzVtByOpNfuEt_b8LY53nXaWVyQ==
age: 2169960
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash cb439dd80ba82164b879c340b9778147
2bbd26b48daa0b8d2a190f7e8857c716dea279ca
3ab3afbcebe7c744b6446fbb471bda45722313cae36b3020e152e75425a3f760
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 10:23:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f54a71942ab5d7fdc54672cf84aa76db
e03db706ad371c93ddd3cc4a3e4c329777bb5f4b
87453ee6a206085c9b82594123a30bf59f7354733d19f21e388dea70768198c9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 10:23:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
t-cf.bstatic.com/xdata/images/xphoto/300x240/140040861.jpg?k=b3923be5ee58ae482fc655dacb085266ad442072fb5e267b4c425a591d4bd28b&o=
200 OK 21 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/xphoto/300x240/140040861.jpg?k=b3923be5ee58ae482fc655dacb085266ad442072fb5e267b4c425a591d4bd28b&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash d39ccfe2bd19314bee77123a52e0aefd
01f8cede86ab8add86197ed6f8a7e22c24412618
3f1572d10d71118c50b1f2478edf42b5bd0b2a5fb02c5f476cef309d1eb16523
GET /xdata/images/xphoto/300x240/140040861.jpg?k=b3923be5ee58ae482fc655dacb085266ad442072fb5e267b4c425a591d4bd28b&o= HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 21427
server: nginx
date: Thu, 24 Nov 2022 09:59:55 GMT
etag: "0861b85e0261cb5e1c2e0bdf141668a47daa60f9"
expires: Sat, 24 Dec 2022 09:59:55 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: tVGFmxuKXN3vMh2TMmDvD4mLriQb1gI2s_IUzA9as8DF9ZvB6kw21w==
age: 865398
X-Firefox-Spdy: h2
t-cf.bstatic.com/psb/capla/static/js/748.22a8c34d.chunk.js
200 OK 27 kB URL HTTP/2 t-cf.bstatic.com/psb/capla/static/js/748.22a8c34d.chunk.js
IP
File type ASCII text, with very long lines (56031)
Hash 0b4da7df3020044382cc0cc7e1e8543b
d756b8c816ceff756c073d1aa74a8641a919df67
d9b29f18b102b1952217ebe495aa073e2b857802ae5e269bfdd17fb404ba997a
GET /psb/capla/static/js/748.22a8c34d.chunk.js HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 28 Nov 2022 13:53:28 GMT
etag: W/"857d895dd773364bbdbe2ee7547f4039"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Mon, 28 Nov 2022 13:18:40 GMT
x-amz-expiration: expiry-date="Tue, 28 Mar 2023 13:18:40 GMT", rule-id=""
expires: Wed, 28 Dec 2022 13:53:28 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 05844663035089f465172d861220e698.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 4OzkWoM4lfohTX9EHO34A24ECUshNZwQL4qPnjw4iSHrs8WUCELtbQ==
age: 505783
X-Firefox-Spdy: h2
t-cf.bstatic.com/psb/capla/static/js/224.c5929512.chunk.js
200 OK 42 kB URL HTTP/2 t-cf.bstatic.com/psb/capla/static/js/224.c5929512.chunk.js
IP
File type ASCII text, with very long lines (65460)
Hash 2477dd4a43aaf742ec1606d527c7885e
5889385db2dd9b803463d32cd4cfb2f8e4b89d9f
0c4e993a4e1db2d36ee1a692257b6f6045d3e9f52d288cd68bffea31c66e3dec
GET /psb/capla/static/js/224.c5929512.chunk.js HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 30 Nov 2022 12:12:28 GMT
etag: W/"2b1880d0b877c274560ee866b4f218b1"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Wed, 30 Nov 2022 11:53:33 GMT
x-amz-expiration: expiry-date="Thu, 30 Mar 2023 11:53:33 GMT", rule-id=""
expires: Fri, 30 Dec 2022 12:12:28 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 05844663035089f465172d861220e698.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 0Q-h_N4W1V9lvPUSDiPHkTB8Svu3zar4DlWz7nWjAAtXmpujYmyCVw==
age: 339043
X-Firefox-Spdy: h2
t-cf.bstatic.com/psb/capla/static/js/579.edc896d3.chunk.js
200 OK 28 kB URL HTTP/2 t-cf.bstatic.com/psb/capla/static/js/579.edc896d3.chunk.js
IP
File type ASCII text, with very long lines (65460)
Hash 85747c294491ad519db87e4e7c22535f
405f3ab98ae38fa801f0b273ef4acdeeed9f3a40
c118be57b49dc2ab0f7f365308a684399f998cd0824a5302fce0fb83c889a34e
GET /psb/capla/static/js/579.edc896d3.chunk.js HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 28 Nov 2022 16:09:24 GMT
etag: W/"9c29ba6d7d18568f2c79183d5ff2541e"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Mon, 28 Nov 2022 15:57:30 GMT
x-amz-expiration: expiry-date="Tue, 28 Mar 2023 15:57:30 GMT", rule-id=""
expires: Wed, 28 Dec 2022 16:09:24 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 05844663035089f465172d861220e698.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: cd9vYIl9BZHfmUxAmt0MwAFR_s7N2RXa_XZgh6GZ-c9ovHnrNNTxZQ==
age: 497627
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/xphoto/300x240/140040791.jpg?k=bb3322bd62efa3aead56ece07d9f6338c98de541b10f919455973354ddcfdf76&o=
200 OK 8.8 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/xphoto/300x240/140040791.jpg?k=bb3322bd62efa3aead56ece07d9f6338c98de541b10f919455973354ddcfdf76&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 71501aba33491a4430453715c76dc4b2
85fc9f218b6b721bde7014133bb212e61f28b83c
9ff4140b3f0f4a9b6e8259f033efdb7f9819fbfb1069116c53ab588c13d4bf42
GET /xdata/images/xphoto/300x240/140040791.jpg?k=bb3322bd62efa3aead56ece07d9f6338c98de541b10f919455973354ddcfdf76&o= HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 8799
server: nginx
date: Sun, 13 Nov 2022 07:45:58 GMT
etag: "d108a102dc3da8005a93c2d211c7e243e49eead2"
expires: Tue, 13 Dec 2022 07:45:58 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: SuuYF7jwnGFSagz_GyU9nJab-nZTpuEyvfhv8YFLek5hPyBrzpko4A==
age: 1823835
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/xphoto/300x240/140040762.jpg?k=7a9446b459690b60fba2d74ecd856b1c34b896ba3f9e231eff82abbfc8956b15&o=
200 OK 17 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/xphoto/300x240/140040762.jpg?k=7a9446b459690b60fba2d74ecd856b1c34b896ba3f9e231eff82abbfc8956b15&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 65e38b40c58827e57fd0cff25009e4ba
8460e679a4da3541a3e7a17aecde2238da826c1d
df53b855667fd3c922bc4c5a960890b5497a7f890c9fb216adaa94fbaf40ac0c
GET /xdata/images/xphoto/300x240/140040762.jpg?k=7a9446b459690b60fba2d74ecd856b1c34b896ba3f9e231eff82abbfc8956b15&o= HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 16779
server: nginx
date: Mon, 07 Nov 2022 09:49:27 GMT
etag: "668d6c19ada6498f74eb3ec3f5def9250b5bdec4"
expires: Wed, 07 Dec 2022 09:49:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: T7Y90Ah4xux4Ph2n-wcTtZh-djEQo1GdWNOX3_MidAI-_8XFWUWHtQ==
age: 2334826
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/xphoto/300x240/140040791.jpg?k=bb3322bd62efa3aead56ece07d9f6338c98de541b10f919455973354ddcfdf76&o=
200 OK 8.8 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/xphoto/300x240/140040791.jpg?k=bb3322bd62efa3aead56ece07d9f6338c98de541b10f919455973354ddcfdf76&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 71501aba33491a4430453715c76dc4b2
85fc9f218b6b721bde7014133bb212e61f28b83c
9ff4140b3f0f4a9b6e8259f033efdb7f9819fbfb1069116c53ab588c13d4bf42
GET /xdata/images/xphoto/300x240/140040791.jpg?k=bb3322bd62efa3aead56ece07d9f6338c98de541b10f919455973354ddcfdf76&o= HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 8799
server: nginx
date: Sun, 13 Nov 2022 07:45:58 GMT
etag: "d108a102dc3da8005a93c2d211c7e243e49eead2"
expires: Tue, 13 Dec 2022 07:45:58 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: anV8CDvrb0VEN2CBfYFthCcU4y32SB1srnjcUf70Z5OTDU9B8Ajj7Q==
age: 1823835
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/xphoto/300x240/140040762.jpg?k=7a9446b459690b60fba2d74ecd856b1c34b896ba3f9e231eff82abbfc8956b15&o=
200 OK 17 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/xphoto/300x240/140040762.jpg?k=7a9446b459690b60fba2d74ecd856b1c34b896ba3f9e231eff82abbfc8956b15&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 65e38b40c58827e57fd0cff25009e4ba
8460e679a4da3541a3e7a17aecde2238da826c1d
df53b855667fd3c922bc4c5a960890b5497a7f890c9fb216adaa94fbaf40ac0c
GET /xdata/images/xphoto/300x240/140040762.jpg?k=7a9446b459690b60fba2d74ecd856b1c34b896ba3f9e231eff82abbfc8956b15&o= HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 16779
server: nginx
date: Mon, 07 Nov 2022 09:49:27 GMT
etag: "668d6c19ada6498f74eb3ec3f5def9250b5bdec4"
expires: Wed, 07 Dec 2022 09:49:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: etm1gVrxtP4RvygIayk8c7pbJFjJGXLYWktKDUdHbG-JmjAzBlmu5w==
age: 2334826
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/xphoto/300x240/140040491.jpg?k=ad6e6050b93fe65224a29659793533d6562b424ee35882cb392c115d58ea1354&o=
200 OK 7.0 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/xphoto/300x240/140040491.jpg?k=ad6e6050b93fe65224a29659793533d6562b424ee35882cb392c115d58ea1354&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash da527d4ac8f4cb107e6a40c480d70d14
97fc6a9c91bb910fcf92b0e5dc4ec079385a0cc9
d4a7526e92a83ee550c888d6a3677b3c694393b979b442cd4c1f4a9d4def9759
GET /xdata/images/xphoto/300x240/140040491.jpg?k=ad6e6050b93fe65224a29659793533d6562b424ee35882cb392c115d58ea1354&o= HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 6982
server: nginx
date: Sat, 03 Dec 2022 10:50:07 GMT
etag: "2708836cf21d5ff67f89d3dbf8afc25d6bd9e52f"
expires: Mon, 02 Jan 2023 10:50:07 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: JcxmC0Pvuqb7i7Yrgf3gVHUXUCzNqX3poyH9h8hBC_5GKLKTPghe-g==
age: 84786
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/xphoto/300x240/140040870.jpg?k=b3e16242c2f01e3493f03bf8b863b6561f8c52b43fa48569d7446d94874bd080&o=
200 OK 12 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/xphoto/300x240/140040870.jpg?k=b3e16242c2f01e3493f03bf8b863b6561f8c52b43fa48569d7446d94874bd080&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 53edea1fadbd43623cbaf3da9da24419
a034eab2a360a9b2a94b4bbb2ec999bd27524f17
a9593ed4bdec054997e16c6ede0ceb76dc652041fe6378f8320c571ac460c96b
GET /xdata/images/xphoto/300x240/140040870.jpg?k=b3e16242c2f01e3493f03bf8b863b6561f8c52b43fa48569d7446d94874bd080&o= HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 11607
server: nginx
date: Sun, 27 Nov 2022 23:14:05 GMT
etag: "20bbb4622e80c04815ac4e337be3fd7bc4471af7"
expires: Tue, 27 Dec 2022 23:14:05 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 0TRhzhSa6neYhDfTBdCTvIDFHREI8jL_xXeIVnxsQvR83-YyGqK3tQ==
age: 558548
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/xphoto/300x240/140040599.jpg?k=574957ec36a2177a4b46f64993121848e62e61ced3932d1fdb6504f95652b439&o=
200 OK 13 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/xphoto/300x240/140040599.jpg?k=574957ec36a2177a4b46f64993121848e62e61ced3932d1fdb6504f95652b439&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash d3809e03fb1ae8fcef94ef19dca6228d
b97f714288003f6b3834ea9bc2a961ced5b89606
a000cfd08bff2b7ba4397d160bc02de6d5283e18bb06c8b3b018f41460108000
GET /xdata/images/xphoto/300x240/140040599.jpg?k=574957ec36a2177a4b46f64993121848e62e61ced3932d1fdb6504f95652b439&o= HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 12804
server: nginx
date: Fri, 02 Dec 2022 00:38:41 GMT
etag: "1a9b6a02924178466532c6737245794919ed24b6"
expires: Sun, 01 Jan 2023 00:38:41 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 67Fbdkb4K343rvOt3Y4R-8HaNbEzdHveh5Z9wWxTRDZ-pdqgSwRF2g==
age: 207872
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/hotel/square600/236967822.webp?k=1465d052cf64137e1976c658cf1d63c249e8409896cd8f58cc088effbe552af6&o=&s=1
200 OK 83 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/hotel/square600/236967822.webp?k=1465d052cf64137e1976c658cf1d63c249e8409896cd8f58cc088effbe552af6&o=&s=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 39560308d3aea1fea08754a3d7a390ff
6e7bfb79ae08d9f65f69f6689d6407e8b291a9cc
fa34dae36a129bdc2bde2c560bab5f03f461f5573622e069c7ff5dbae2f36b97
GET /xdata/images/hotel/square600/236967822.webp?k=1465d052cf64137e1976c658cf1d63c249e8409896cd8f58cc088effbe552af6&o=&s=1 HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 124272
server: nginx
date: Sun, 06 Nov 2022 06:27:42 GMT
etag: "2b0f279b347bc463d3538d552988773c85b83a49"
expires: Tue, 06 Dec 2022 06:27:42 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: PrMwX_CuP4AhybHQf9VGaN6JdudE8Bta2nukjNE4IMpFPsgT1uM_6w==
age: 2433331
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/xphoto/300x240/140040549.jpg?k=47295571a3c7ad6e86a62047a4aceb3c8c0a19f5b4b86d6eafab42d61abad33e&o=
200 OK 14 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/xphoto/300x240/140040549.jpg?k=47295571a3c7ad6e86a62047a4aceb3c8c0a19f5b4b86d6eafab42d61abad33e&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash f53be5a5dc8a5e0852c37ecef3f57e80
95e46d745e83d3e5767d50c82ddda8b871239225
4f4fd90acbda0f964439cf256b5ad16a879a517226656911b91ed51f96e38171
GET /xdata/images/xphoto/300x240/140040549.jpg?k=47295571a3c7ad6e86a62047a4aceb3c8c0a19f5b4b86d6eafab42d61abad33e&o= HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 13659
server: nginx
date: Wed, 09 Nov 2022 12:03:44 GMT
etag: "b16685775d88da04a38237a9ea6f9e60300fbf94"
expires: Fri, 09 Dec 2022 12:03:44 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: en-O0JTeZbaSWhhuKPOOYpW2LbzxCThJfsukH9_se8kOJES9p_-7cA==
age: 2153969
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/xphoto/300x240/140040807.jpg?k=9cab54a3a43d3b941837c79958b284376005784e9ded8dadcbb83e39e25fcb9e&o=
200 OK 17 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/xphoto/300x240/140040807.jpg?k=9cab54a3a43d3b941837c79958b284376005784e9ded8dadcbb83e39e25fcb9e&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 6b69600400c2e34e52ac22b8280a471e
04b0fa66f7203b41bc5bcb9773afdb035cf68793
1e1547673775158c1b697974f7161f71b87530d3f1e565f18bd975579e67ef57
GET /xdata/images/xphoto/300x240/140040807.jpg?k=9cab54a3a43d3b941837c79958b284376005784e9ded8dadcbb83e39e25fcb9e&o= HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 17072
server: nginx
date: Sun, 06 Nov 2022 07:18:43 GMT
etag: "c74e0121df7dc17e3eab620cc39b0d12f200a119"
expires: Tue, 06 Dec 2022 07:18:43 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: z3Q5KxJDlmpI2uvqN7viY-jwXmgJIkrYzGbAdHXAWzic9gzog12vpA==
age: 2430270
X-Firefox-Spdy: h2
t-cf.bstatic.com/xdata/images/xphoto/300x240/140040444.jpg?k=78183a30bc77a7f4eb2550c457f0645c654b2c70f80b40258ffa926712392726&o=
200 OK 18 kB URL HTTP/2 t-cf.bstatic.com/xdata/images/xphoto/300x240/140040444.jpg?k=78183a30bc77a7f4eb2550c457f0645c654b2c70f80b40258ffa926712392726&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 6f57315028bfce58a9111a97386b32f8
f865cb601c242c7945fceb5cdbd39af8e22ee68d
b51cb67e6a957bf93a45b47510f5b355d3779812dc4d46a3f2653baa3bbd8396
GET /xdata/images/xphoto/300x240/140040444.jpg?k=78183a30bc77a7f4eb2550c457f0645c654b2c70f80b40258ffa926712392726&o= HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 18535
server: nginx
date: Tue, 29 Nov 2022 11:52:51 GMT
etag: "40b54ec5f01322af8c704d6bca0cf8b9d45f4336"
expires: Thu, 29 Dec 2022 11:52:51 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: e2HYh7BgKiXMPr8YjvvQ2Lgxrb2AUGarGPraGXEFvp8sECoK_z0OoA==
age: 426622
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/css/main_cft.iq_ltr/c451b3de2e91fce97d6a1c9c885b2e1c7699e5ed.css
200 OK 72 kB URL HTTP/2 t-cf.bstatic.com/static/css/main_cft.iq_ltr/c451b3de2e91fce97d6a1c9c885b2e1c7699e5ed.css
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 727517e9a18b4d866c48e2555300e203
0714d0bfacf388c364232723ffb6b7ff252dcb8b
2ec2c6b5558d05ac76f72031c8ecdca4537a08e997ea08b6236f5ce0788249c3
GET /static/css/main_cft.iq_ltr/c451b3de2e91fce97d6a1c9c885b2e1c7699e5ed.css HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Wed, 30 Nov 2022 13:36:33 GMT
last-modified: Wed, 30 Nov 2022 12:37:22 GMT
etag: W/"63874e82-87443"
expires: Fri, 30 Dec 2022 13:36:33 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 74TMutgWwNkdBNbmRNi8Cqb6x5eHoZj5ocMQKKPDlAKO1-KI0fVAIw==
age: 333997
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/css/incentives_cft.iq_ltr/70c3660043e199f2e3a2b9d17b15dc773dca7b8e.css
200 OK 13 kB URL HTTP/2 t-cf.bstatic.com/static/css/incentives_cft.iq_ltr/70c3660043e199f2e3a2b9d17b15dc773dca7b8e.css
IP
File type ASCII text, with very long lines (7463), with no line terminators
Hash e809929aec232048b445cd4424265a8e
401e22abd649ac7c79e24c43e39b00eca0ed94be
254bd7df612eeefb3f829a358d33e282abae2c29cda2e44ed63a7fae354c5bcc
GET /static/css/incentives_cft.iq_ltr/70c3660043e199f2e3a2b9d17b15dc773dca7b8e.css HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Fri, 11 Nov 2022 10:13:41 GMT
last-modified: Fri, 11 Nov 2022 01:23:42 GMT
etag: W/"636da41e-1d27"
expires: Sun, 11 Dec 2022 10:13:41 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: XbAtyJ-nteSfT8eqfw576JHo7K_Yr1tZm_cZ02OYbSpM7EdpijbOmw==
age: 1987769
X-Firefox-Spdy: h2
www.booking.com/js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=0ff44907ee1c009d&ete=&etg=&etcg=&ets=&etgwv=js_wcu_trip_type_based_destination_number_of_types|4
200 OK 35 B URL HTTP/2 www.booking.com/js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=0ff44907ee1c009d&ete=&etg=&etcg=&ets=&etgwv=js_wcu_trip_type_based_destination_number_of_types|4
IP
Hash 79a611524d7c43a354c589264cc2376e
2e25649d9a8a208302be0502b47a0e44b07bc7c1
c7a9af81f3467d3c95760df18d0853bda8c191f612fb2e8b2b5c4ed941fbaf1a
GET /js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=0ff44907ee1c009d&ete=&etg=&etcg=&ets=&etgwv=js_wcu_trip_type_based_destination_number_of_types|4 HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=1858279
X-Booking-Info:
X-Booking-Client-Info:
X-Booking-Pageview-Id: 0ff44907ee1c009d
X-Booking-SiteType-Id: 1
X-Booking-Language-Code: en-us
X-Booking-AID: 1858279
X-Booking-Session-Id: 3e71dba830bda8d7a840f2a5a7f133c6
X-Booking-ET-Serialized-State: EKcfcuuH4UkrrGtAgIZAEgqGfxsrv2uaVrwjAh82nekRGnGSu9Qf0AdkuwIdcS09m
Connection: keep-alive
Cookie: _pxhd=6ohPg0ROChxar82JvmoswfXf8hoyspFn2g6zHr9ZpAu56YciMGQ6TDHpslAWYK1uK-zxEMwjuVx4fJd2p3VOcQ%3D%3D%3Au8s%2Foa2tGDlH3VgzMmvLQMrwA4bQOMYB2n%2F2pzzeRgZL0Lk3gmf1Fe09jZyAvVxqtDISkZyvgZakLkWQVtTO2cxnGu549U247Jc1vkoKR8o%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbXpFeYC4TUhDV59EAUd9uJDA%2FzpKFLwWHYwS%2FZa1%2FRjNkLboXA7ghj5J9dE4RAcWVZ%2FqL4g7%2F6G9JKcHj7cMDjAkYqV0xc%2BJWJxwRIlJgeghgq6YGj35268MTohmX7I0EisM99ODoZ2Yl4%2BDNqKFofE33XAjWKwJ3LuJKFTN5Wyg%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Sun+Dec+04+2022+10%3A23%3A09+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=32247d32-b9e4-4c87-9ee5-fbd97246b047&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D1858279&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1670149390378; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30; BJS=-; _px3=88898829693df98a1d35ba8bd7945ba14d7e5503226239be5d7a8ff9b0b8f1e9:1gMd6tEuHEz7TaIOfeeC0b1Jvtx2JVg5UX+KLhTDfTei/4pKijzhRrN+XU5jN21si245oW/ylbCDMkGjgA1MTQ==:1000:gd181Mwp6VFS/b/26MwsB10dPKVlWuM3q3F5BUrci//fsqisxRdl2W3I8SMLdaBCaE72u88V4DrK3ZRCSQyl8SSGG1Y+0lJnKkfC//uu1Msi/vagMh7lAlkp44wH9pewD/5B7rMB1LMwqYP18cJp9Uxi5wlBMWGbW5vapFZ0VqIAuXS9vNneP5SXYF/HlfOcPpkEj4OpKMFGulzEsZYFFA==; pxcts=a8c97709-73bd-11ed-8c4a-506e4c6a7672; _pxvid=a8492dfc-73bd-11ed-8d34-59486d53594b; _pxff_ddtc=1; _pxde=286649e4ce00de76873fdab021cbd5a3106c694329e2be98b617ae9ad2c63f9f:eyJ0aW1lc3RhbXAiOjE2NzAxNDkzOTM2MzcsImZfa2IiOjAsImlwY19pZCI6W119
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 35
server: nginx
date: Sun, 04 Dec 2022 10:23:14 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
strict-transport-security: max-age=604800
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=88464909f6ce0093&e=UmFuZG9tSVYkc2RlIyh9Yea92wm0yRUjnCBymoy8ejLlYGeo3evuWgEKcP9JprgeeLUxsOJR7ho;
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 828a61ebc3af4e0465a5577a4c08af7a.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: cngjUW5dsBvrGGC_UFvyXO_YvNiQXL_4cril5OnnyrebPZX2fPAgNw==
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 472 B IP
Hash 6d55e18723467f8cf7e0f63a38c5bd07
70b0d73d67561651f44f4278ea6faa3398b87011
ea453b27f92e55b649f854725c61c9f4a0a8404121b818393b8654298f77f72b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 10:23:14 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 17:38:13 GMT
Expires: Thu, 08 Dec 2022 17:38:12 GMT
Etag: "70b0d73d67561651f44f4278ea6faa3398b87011"
Cache-Control: max-age=371097,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7743d34ebaa4b4eb-OSL
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 10:23:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 10:23:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/googlesans/v14/4UabrENHsxJlGDuGo1OIlLU94YtzCwM.ttf
200 OK 27 kB URL HTTP/2 fonts.gstatic.com/s/googlesans/v14/4UabrENHsxJlGDuGo1OIlLU94YtzCwM.ttf
IP
File type TrueType Font data, 17 tables, 1st "GDEF", 7 names, Microsoft, language 0x409, Copyright 2015 Google LLC. All Rights Reserved.Google Sans MediumRegularGoogle;GoogleSans-Medium\012- data
Hash 48d399faaa696e710b9d841b934461e2
8b867014ac0ae0a2b81a55f171deede8336a496f
c905a4d23caf1f95d96c244084f15336fba5f65b74de870ec5c2be878410625d
GET /s/googlesans/v14/4UabrENHsxJlGDuGo1OIlLU94YtzCwM.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://accounts.google.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27431
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Dec 2022 17:49:32 GMT
expires: Sat, 02 Dec 2023 17:49:32 GMT
cache-control: public, max-age=31536000
age: 146022
last-modified: Mon, 22 Apr 2019 23:43:31 GMT
content-type: font/ttf
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Owps.ttf
200 OK 27 kB URL HTTP/2 fonts.gstatic.com/s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Owps.ttf
IP
File type TrueType Font data, 17 tables, 1st "GDEF", 7 names, Microsoft, language 0x409, Copyright 2015 Google LLC. All Rights Reserved.Google SansRegularGoogle;GoogleSans-RegularGoogle\012- data
Hash 097c4b560f821fb05c628abb70fab199
4650bf1244b6cba45b222aa269c96ad8ea95ab42
a9bd7cfb72481bd844fa2e3cd4019c8b2ab2a232b50cabe62f8d9483e284f672
GET /s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Owps.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://accounts.google.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27191
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Dec 2022 17:49:31 GMT
expires: Sat, 02 Dec 2023 17:49:31 GMT
cache-control: public, max-age=31536000
age: 146023
last-modified: Mon, 22 Apr 2019 23:42:54 GMT
content-type: font/ttf
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 10:23:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
collector-pxikkul2rm.px-cloud.net/api/v2/collector
200 OK 573 B URL HTTP/2 collector-pxikkul2rm.px-cloud.net/api/v2/collector
IP
File type JSON data\012- , ASCII text, with very long lines (572)
Hash 02cda455b285990c4526e0ae36bfb405
970d52182d43056d1a6bcb949b0a8393abd28429
370c11c4395a59fbb386f2549b78b0b199eecd6d95324ba5e23c38f71d26c397
POST /api/v2/collector HTTP/1.1
Host: collector-pxikkul2rm.px-cloud.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 4406
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Dec 2022 10:23:14 GMT
content-type: application/json; charset=utf-8
content-length: 573
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.booking.com
timing-allow-origin: *
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
account.booking.com/oauth2/authorize/v2?client_id=vO1Kblk7xX9tUn2cpZLS&redirect_uri=https%3A%2F%2Fsecure.booking.com%2Flogin.html%3Fop%3Doauth_return&response_type=anon_session&prompt=none&iframe=1&dt=1670149391811&state=UqwCAGRhjWXkJHIviohmcOYTUOqqoTdBrP_9mnZdt6Z9A8yo36QJPgPoxvcHZWTNRVU2ak9E-3hPHrrUXP3YZxTZw484iUBpy1KgH2SNJZSOtVwA_C11Zul3uYqUAW1sn8Il4qJF85eOPK7Sfq_1_dDHPuyU91a8TSO2MyvjEyBuHikVREPZFg_AuRAzGjDrtWw9BflJ0VAP_WnJJHlxDw3sHN8442AY-mCa4X4iI8KDwp4jlkwMj5haA2hDC6y96oFXDOzrLmCRlCtAW4UAAkQ9uHyTzURzlKPtjwkxLl87hzflss5ZzjdHg5HAL07mn_lov0It2iepiJ3OxuDCPMOnZt_IdqJxdeW55nQHm7vqKNtsLYIKn0FUWW8I3_KpeO-EkCCmLmRGxB2Y9ob0&bkng_referrer=https%3A%2F%2Fwww.booking.com%2Findex.html&bkng_action=index
302 Found 206 B URL HTTP/2 account.booking.com/oauth2/authorize/v2?client_id=vO1Kblk7xX9tUn2cpZLS&redirect_uri=https%3A%2F%2Fsecure.booking.com%2Flogin.html%3Fop%3Doauth_return&response_type=anon_session&prompt=none&iframe=1&dt=1670149391811&state=UqwCAGRhjWXkJHIviohmcOYTUOqqoTdBrP_9mnZdt6Z9A8yo36QJPgPoxvcHZWTNRVU2ak9E-3hPHrrUXP3YZxTZw484iUBpy1KgH2SNJZSOtVwA_C11Zul3uYqUAW1sn8Il4qJF85eOPK7Sfq_1_dDHPuyU91a8TSO2MyvjEyBuHikVREPZFg_AuRAzGjDrtWw9BflJ0VAP_WnJJHlxDw3sHN8442AY-mCa4X4iI8KDwp4jlkwMj5haA2hDC6y96oFXDOzrLmCRlCtAW4UAAkQ9uHyTzURzlKPtjwkxLl87hzflss5ZzjdHg5HAL07mn_lov0It2iepiJ3OxuDCPMOnZt_IdqJxdeW55nQHm7vqKNtsLYIKn0FUWW8I3_KpeO-EkCCmLmRGxB2Y9ob0&bkng_referrer=https%3A%2F%2Fwww.booking.com%2Findex.html&bkng_action=index
IP
Hash 2a9d34af64b34f4715d8b3ce54afdca0
e2e2e56b8c1a71fa7fdc7ccb78fbf06b57b2773f
a594935545537d5e63856801922aea68a498e449bb738a90b7702f6496d3887b
GET /oauth2/authorize/v2?client_id=vO1Kblk7xX9tUn2cpZLS&redirect_uri=https%3A%2F%2Fsecure.booking.com%2Flogin.html%3Fop%3Doauth_return&response_type=anon_session&prompt=none&iframe=1&dt=1670149391811&state=UqwCAGRhjWXkJHIviohmcOYTUOqqoTdBrP_9mnZdt6Z9A8yo36QJPgPoxvcHZWTNRVU2ak9E-3hPHrrUXP3YZxTZw484iUBpy1KgH2SNJZSOtVwA_C11Zul3uYqUAW1sn8Il4qJF85eOPK7Sfq_1_dDHPuyU91a8TSO2MyvjEyBuHikVREPZFg_AuRAzGjDrtWw9BflJ0VAP_WnJJHlxDw3sHN8442AY-mCa4X4iI8KDwp4jlkwMj5haA2hDC6y96oFXDOzrLmCRlCtAW4UAAkQ9uHyTzURzlKPtjwkxLl87hzflss5ZzjdHg5HAL07mn_lov0It2iepiJ3OxuDCPMOnZt_IdqJxdeW55nQHm7vqKNtsLYIKn0FUWW8I3_KpeO-EkCCmLmRGxB2Y9ob0&bkng_referrer=https%3A%2F%2Fwww.booking.com%2Findex.html&bkng_action=index HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Connection: keep-alive
Cookie: _pxhd=6ohPg0ROChxar82JvmoswfXf8hoyspFn2g6zHr9ZpAu56YciMGQ6TDHpslAWYK1uK-zxEMwjuVx4fJd2p3VOcQ%3D%3D%3Au8s%2Foa2tGDlH3VgzMmvLQMrwA4bQOMYB2n%2F2pzzeRgZL0Lk3gmf1Fe09jZyAvVxqtDISkZyvgZakLkWQVtTO2cxnGu549U247Jc1vkoKR8o%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbXpFeYC4TUhDV59EAUd9uJDA%2FzpKFLwWHYwS%2FZa1%2FRjNkLboXA7ghj5J9dE4RAcWVZ%2FqL4g7%2F6G9JKcHj7cMDjAkYqV0xc%2BJWJxwRIlJgeghgq6YGj35268MTohmX7I0EisM99ODoZ2Yl4%2BDNqKFofE33XAjWKwJ3LuJKFTN5Wyg%3D; cors_js=1; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJkYXRhX3N1YmplY3RfaWQiOiIwMDMyNDQ3OC0zZTI0LTRkZDItYjA5OS05MzFhYjM4OTY0MGEiLCJzZXNzaW9ucyI6W119fQ; BJS=-; _px3=88898829693df98a1d35ba8bd7945ba14d7e5503226239be5d7a8ff9b0b8f1e9:1gMd6tEuHEz7TaIOfeeC0b1Jvtx2JVg5UX+KLhTDfTei/4pKijzhRrN+XU5jN21si245oW/ylbCDMkGjgA1MTQ==:1000:gd181Mwp6VFS/b/26MwsB10dPKVlWuM3q3F5BUrci//fsqisxRdl2W3I8SMLdaBCaE72u88V4DrK3ZRCSQyl8SSGG1Y+0lJnKkfC//uu1Msi/vagMh7lAlkp44wH9pewD/5B7rMB1LMwqYP18cJp9Uxi5wlBMWGbW5vapFZ0VqIAuXS9vNneP5SXYF/HlfOcPpkEj4OpKMFGulzEsZYFFA==; pxcts=a8c97709-73bd-11ed-8c4a-506e4c6a7672; _pxvid=a8492dfc-73bd-11ed-8d34-59486d53594b; _pxde=286649e4ce00de76873fdab021cbd5a3106c694329e2be98b617ae9ad2c63f9f:eyJ0aW1lc3RhbXAiOjE2NzAxNDkzOTM2MzcsImZfa2IiOjAsImlwY19pZCI6W119
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 302 Found
location: https://secure.booking.com/login.html?aid=304142&lang=en-us&state=UqwCAGRhjWXkJHIviohmcOYTUOqqoTdBrP_9mnZdt6Z9A8yo36QJPgPoxvcHZWTNRVU2ak9E-3hPHrrUXP3YZxTZw484iUBpy1KgH2SNJZSOtVwA_C11Zul3uYqUAW1sn8Il4qJF85eOPK7Sfq_1_dDHPuyU91a8TSO2MyvjEyBuHikVREPZFg_AuRAzGjDrtWw9BflJ0VAP_WnJJHlxDw3sHN8442AY-mCa4X4iI8KDwp4jlkwMj5haA2hDC6y96oFXDOzrLmCRlCtAW4UAAkQ9uHyTzURzlKPtjwkxLl87hzflss5ZzjdHg5HAL07mn_lov0It2iepiJ3OxuDCPMOnZt_IdqJxdeW55nQHm7vqKNtsLYIKn0FUWW8I3_KpeO-EkCCmLmRGxB2Y9ob0&op=oauth_return&code=b5JP8LYVEKTVPGqY7F78i8IcIzAjo19qj6xQWDarRiokBfCaRzRkeWjxJtGMDHv5ifLjAtOxZfAiMRg5mKquNpWGjFjgphdVSMAoNmMkvnpe1dcets2o22F4RXGnBjllC18j7iMscM27inM0kdoXVB1ChfjC
server: envoy
date: Sun, 04 Dec 2022 10:23:14 GMT
set-cookie: bkng_expired_hint=; domain=.booking.com; path=/; expires=Sat, 03-Dec-2022 10:23:14 GMT; secure; HttpOnly
bkng_sso_ses=eyJib29raW5nX2dsb2JhbCI6W3siaCI6ImQwSnlseUR3aWErZEpaS1I3ZHlqcmp3Q3BvdmRQa1pwVXo5YnVhMG1hWEEiLCJhIjoxfV19; domain=.booking.com; path=/; expires=Fri, 03-Dec-2027 10:23:14 GMT; secure; HttpOnly
bkng_sso_session=e30; domain=.booking.com; path=/; expires=Fri, 03-Dec-2027 10:23:14 GMT; secure; HttpOnly
bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJkYXRhX3N1YmplY3RfaWQiOiIwMDMyNDQ3OC0zZTI0LTRkZDItYjA5OS05MzFhYjM4OTY0MGEiLCJzZXNzaW9ucyI6W3sicmVmcmVzaF90b2tlbiI6IkNBRVNkMUoxWTV4Y3VtdjlTWHhfdUxLeHVBYkpSYzJTMXZFTW9ubGhVVHhLcHBYRmMyTndoWUN0QnE3RTRyYTNSVkJlU2ZBODZleXlLN0M1SVhMZlBNN3pwbWZHenVvd1YzWDJ2cVREUlJLM0psNHhIaXlZQ0ZwZUJRblhFcUxXOVMzak1LcWs5bU85b0NERkd3eWR1bHhnZWhxMVlBQnpaLW0wIiwic2Vzc2lvbl9yZWZlcmVuY2UiOiI3NDJkN2IzNS00NmI3LTQ0NTktOTk4MS00ZTc4MWU2NGFmZjIifV19fQ; domain=account.booking.com; path=/; expires=Fri, 03-Dec-2027 10:23:14 GMT; secure; HttpOnly
content-security-policy: report-uri https://nellie.booking.com/csp-report-uri?type=block&tag=42&pid=3174490929fe00f0&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdVGoUAc7XLxp8Xc7XQuWfM7nSTkT3Y1TELxA3w-qXihaSBP_o-RCyiBNhPkI-YW4ZMxE62-nHmSlNrtJcIQbMB1tlpGWyef0YA; frame-ancestors https://*.booking.com 'self';
content-security-policy-report-only: default-src *.bstatic.com bstatic.com 'self'; object-src 'none'; frame-src https://www.youtube.com/embed/Vv4w5SmRkss *.bstatic.com https://www.google.com bstatic.com www.booking.com secure.booking.com paymentcomponent.booking.com 'self'; img-src 'self' data: www.booking.com graph.facebook.com cdn.cookielaw.org account.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google-analytics.com www.google.com stats.g.doubleclick.net *.px-cloud.net *.perimeterx.net www.gstatic.com; base-uri 'none'; script-src saa.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google.com www.google-analytics.com cdn.cookielaw.org geolocation.onetrust.com 'self' 'nonce-hgoocMiNkmGZmZ3' 'report-sample'; connect-src saa.booking.com secure.booking.com reports.booking.com privacyportal-eu.onetrust.com geolocation.onetrust.com cdn.cookielaw.org www.google-analytics.com *.perimeterx.net *.pxchk.net *.px-cdn.net *.px-client.net *.px-cloud.net 'self' 'report-sample'; style-src *.bstatic.com bstatic.com *.static.booking.cn 'self' 'unsafe-inline'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=41&pid=3174490929fe00f0&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdVGoUAc7XLxp8Xc7XQuWfM7nSTkT3Y1TELxA3w-qXihaSBP_o-RCyiBNhPkI-YW4ZMxE62-nHmSlNrtJcIQbMB1tlpGWyef0YA;
strict-transport-security: max-age=17280000
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 5f054515672e497f7035c066a262245c.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-C2
x-amz-cf-id: qgOWV30605Z2tM-NOMSFMPhIFY_5iH29hcTO70iHeVPOHo4dbeTLRA==
X-Firefox-Spdy: h2
account.booking.com/collector/anon_session_init
204 No Content 0 B URL HTTP/2 account.booking.com/collector/anon_session_init
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /collector/anon_session_init HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.booking.com/
Origin: https://www.booking.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
server: envoy
date: Sun, 04 Dec 2022 10:23:15 GMT
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: POST
access-control-allow-origin: https://www.booking.com
access-control-max-age: 1728000
set-cookie: bkng_sso_ses=e30; domain=.booking.com; path=/; expires=Fri, 03-Dec-2027 10:23:15 GMT; secure; HttpOnly
bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJkYXRhX3N1YmplY3RfaWQiOiI3MWQyOWRhZC04ZTlkLTRhYjQtYTczMS0xY2VhNzdmZjI0YjEiLCJzZXNzaW9ucyI6W119fQ; domain=account.booking.com; path=/; expires=Fri, 03-Dec-2027 10:23:15 GMT; secure; HttpOnly
bkng_sso_session=e30; domain=.booking.com; path=/; expires=Fri, 03-Dec-2027 10:23:15 GMT; secure; HttpOnly
content-security-policy: frame-ancestors https://*.booking.com 'self'; report-uri https://nellie.booking.com/csp-report-uri?type=block&tag=42&pid=e3004909393d005f&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdfdvBlyk9NlKcLEfSqFdAHuJUmoS1jnI5l8Ckpav_Buh2I8NJLAkmT_v2XtH3z--EgVIurJw_ypTSa9gyMlwTzRGfiryjVo9Y2x_4W1VdTrX;
content-security-policy-report-only: img-src 'self' data: www.booking.com graph.facebook.com cdn.cookielaw.org account.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google-analytics.com www.google.com stats.g.doubleclick.net *.px-cloud.net *.perimeterx.net www.gstatic.com; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=41&pid=e3004909393d005f&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdfdvBlyk9NlKcLEfSqFdAHuJUmoS1jnI5l8Ckpav_Buh2I8NJLAkmT_v2XtH3z--EgVIurJw_ypTSa9gyMlwTzRGfiryjVo9Y2x_4W1VdTrX; default-src *.bstatic.com bstatic.com 'self'; object-src 'none'; base-uri 'none'; frame-src https://www.youtube.com/embed/Vv4w5SmRkss *.bstatic.com https://www.google.com bstatic.com www.booking.com secure.booking.com paymentcomponent.booking.com 'self'; connect-src saa.booking.com secure.booking.com reports.booking.com privacyportal-eu.onetrust.com geolocation.onetrust.com cdn.cookielaw.org www.google-analytics.com *.perimeterx.net *.pxchk.net *.px-cdn.net *.px-client.net *.px-cloud.net 'self' 'report-sample'; style-src *.bstatic.com bstatic.com *.static.booking.cn 'self' 'unsafe-inline'; script-src saa.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google.com www.google-analytics.com cdn.cookielaw.org geolocation.onetrust.com 'self' 'nonce-AKmR6ovikrR3ZEL' 'report-sample';
strict-transport-security: max-age=17280000
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 3a0643865c07d17146c6a80ac438f2c4.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-C2
x-amz-cf-id: uKtFSdIU3rY5JiYNkCseR3iNViWm-aC8-KBCVXZF4IT2DAPdf9C4Yg==
X-Firefox-Spdy: h2
account.booking.com/collector/anon_session_init
204 No Content 0 B URL HTTP/2 account.booking.com/collector/anon_session_init
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collector/anon_session_init HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-Type: application/json
Content-Length: 144
Origin: https://www.booking.com
Connection: keep-alive
Cookie: _pxhd=6ohPg0ROChxar82JvmoswfXf8hoyspFn2g6zHr9ZpAu56YciMGQ6TDHpslAWYK1uK-zxEMwjuVx4fJd2p3VOcQ%3D%3D%3Au8s%2Foa2tGDlH3VgzMmvLQMrwA4bQOMYB2n%2F2pzzeRgZL0Lk3gmf1Fe09jZyAvVxqtDISkZyvgZakLkWQVtTO2cxnGu549U247Jc1vkoKR8o%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbwcLxQQ4VaCqf%2F7LNukoZafOl31JEjoi%2BDgebjC9LuYBfw7OrBIdMm9z2Z0xcqyaSGfgYCpY9fqALI4Nt%2F6EyONcLL6NxptLmv8cnO2yPNxI0oAQj69FnOV1QD%2BM6BO9d3zMikdQxicpTsHDbNygqJm8luGUjyOYg2ezYsP9X3jI%3D; cors_js=1; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=eyJib29raW5nX2dsb2JhbCI6W3siaCI6ImQwSnlseUR3aWErZEpaS1I3ZHlqcmp3Q3BvdmRQa1pwVXo5YnVhMG1hWEEiLCJhIjoxfV19; bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJkYXRhX3N1YmplY3RfaWQiOiIwMDMyNDQ3OC0zZTI0LTRkZDItYjA5OS05MzFhYjM4OTY0MGEiLCJzZXNzaW9ucyI6W3sicmVmcmVzaF90b2tlbiI6IkNBRVNkMUoxWTV4Y3VtdjlTWHhfdUxLeHVBYkpSYzJTMXZFTW9ubGhVVHhLcHBYRmMyTndoWUN0QnE3RTRyYTNSVkJlU2ZBODZleXlLN0M1SVhMZlBNN3pwbWZHenVvd1YzWDJ2cVREUlJLM0psNHhIaXlZQ0ZwZUJRblhFcUxXOVMzak1LcWs5bU85b0NERkd3eWR1bHhnZWhxMVlBQnpaLW0wIiwic2Vzc2lvbl9yZWZlcmVuY2UiOiI3NDJkN2IzNS00NmI3LTQ0NTktOTk4MS00ZTc4MWU2NGFmZjIifV19fQ; BJS=-; _px3=b3f5e3d7e17889a04a81401b0a016fbbed8c995743d161ea8a28e0a715f6284f:NqTTmQIjLYPyMQ6fStRzuVKKXl+f4rdIOrx3FXsaSYoQCusEI8+BE0UrPbrMARSYBSdOwdBjU5/b0yGAqPpB8g==:1000:d+0CUqu7+DVhzXKLugmw6ajlNYnWMW3IR/dFufIYiHBtgf9FQQD9X0x08/hS6/8ruw1uajPU688eC7s6Y/h8RfLRoruAdjuVIPVe3tdWrHycVn91VMDOU7hRQhIvecjo8gYOxxOrZ6cLGs1OIBfApo0EPQBvLO3SgrxE3Lx/K8qywRkW7haz+ZaWVMhN/o7HsD/GnUDrD2gyGRkyzUUKYw==; pxcts=a8c97709-73bd-11ed-8c4a-506e4c6a7672; _pxvid=a8492dfc-73bd-11ed-8d34-59486d53594b; _pxde=cc0cf97503eb67758aceaff2293161b0345808f9273ee59feb99368a62ee28c3:eyJ0aW1lc3RhbXAiOjE2NzAxNDkzOTQ0ODAsImZfa2IiOjAsImlwY19pZCI6W119; lastSeen=1670149392024
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
server: envoy
date: Sun, 04 Dec 2022 10:23:15 GMT
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-methods: POST
access-control-allow-origin: https://www.booking.com
access-control-max-age: 1728000
set-cookie: bkng_sso_session=e30; domain=.booking.com; path=/; expires=Fri, 03-Dec-2027 10:23:15 GMT; secure; HttpOnly
bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJkYXRhX3N1YmplY3RfaWQiOiIwMDMyNDQ3OC0zZTI0LTRkZDItYjA5OS05MzFhYjM4OTY0MGEiLCJzZXNzaW9ucyI6W3sicmVmcmVzaF90b2tlbiI6IkNBRVNkMUoxWTV4Y3VtdjlTWHhfdUxLeHVBYkpSYzJTMXZFTW9ubGhVVHhLcHBYRmMyTndoWUN0QnE3RTRyYTNSVkJlU2ZBODZleXlLN0M1SVhMZlBNN3pwbWZHenVvd1YzWDJ2cVREUlJLM0psNHhIaXlZQ0ZwZUJRblhFcUxXOVMzak1LcWs5bU85b0NERkd3eWR1bHhnZWhxMVlBQnpaLW0wIiwic2Vzc2lvbl9yZWZlcmVuY2UiOiI3NDJkN2IzNS00NmI3LTQ0NTktOTk4MS00ZTc4MWU2NGFmZjIifV19fQ; domain=account.booking.com; path=/; expires=Fri, 03-Dec-2027 10:23:15 GMT; secure; HttpOnly
bkng_sso_ses=eyJib29raW5nX2dsb2JhbCI6W3siYSI6MSwiaCI6ImQwSnlseUR3aWErZEpaS1I3ZHlqcmp3Q3BvdmRQa1pwVXo5YnVhMG1hWEEifV19; domain=.booking.com; path=/; expires=Fri, 03-Dec-2027 10:23:15 GMT; secure; HttpOnly
content-security-policy: report-uri https://nellie.booking.com/csp-report-uri?type=block&tag=42&pid=e259490908ed0899&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdfdvBlyk9NlKcLEfSqFdAHv1CmYlbsbmyirNXm6MJ_S6d1wWGe6fE6L4Udx8pl8sAiO6tO4MukVc_zT6HMIDdkid8YWJV0SHZQ; frame-ancestors https://*.booking.com 'self';
content-security-policy-report-only: frame-src https://www.youtube.com/embed/Vv4w5SmRkss *.bstatic.com https://www.google.com bstatic.com www.booking.com secure.booking.com paymentcomponent.booking.com 'self'; style-src *.bstatic.com bstatic.com *.static.booking.cn 'self' 'unsafe-inline'; base-uri 'none'; default-src *.bstatic.com bstatic.com 'self'; connect-src saa.booking.com secure.booking.com reports.booking.com privacyportal-eu.onetrust.com geolocation.onetrust.com cdn.cookielaw.org www.google-analytics.com *.perimeterx.net *.pxchk.net *.px-cdn.net *.px-client.net *.px-cloud.net 'self' 'report-sample'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=41&pid=e259490908ed0899&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdfdvBlyk9NlKcLEfSqFdAHv1CmYlbsbmyirNXm6MJ_S6d1wWGe6fE6L4Udx8pl8sAiO6tO4MukVc_zT6HMIDdkid8YWJV0SHZQ; img-src 'self' data: www.booking.com graph.facebook.com cdn.cookielaw.org account.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google-analytics.com www.google.com stats.g.doubleclick.net *.px-cloud.net *.perimeterx.net www.gstatic.com; object-src 'none'; script-src saa.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google.com www.google-analytics.com cdn.cookielaw.org geolocation.onetrust.com 'self' 'nonce-BtL0Ufad3EilHt5' 'report-sample';
strict-transport-security: max-age=17280000
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 5f054515672e497f7035c066a262245c.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-C2
x-amz-cf-id: 7aHudToYFp-Dse3BhH5qSpJrpyOPi9CAV7YbNUjxic8gShodAnA_eg==
X-Firefox-Spdy: h2
privacyportal-eu.onetrust.com/request/v1/consentreceipts
201 Created 0 B URL HTTP/2 privacyportal-eu.onetrust.com/request/v1/consentreceipts
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /request/v1/consentreceipts HTTP/1.1
Host: privacyportal-eu.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 7858
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 201 Created
date: Sun, 04 Dec 2022 10:23:16 GMT
content-length: 0
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: *
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7743d35f6b0cb506-OSL
X-Firefox-Spdy: h2
account.booking.com/static/booking-sso.v1.js
200 OK 0 B URL HTTP/2 account.booking.com/static/booking-sso.v1.js
IP
GET /static/booking-sso.v1.js HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Connection: keep-alive
Cookie: _pxhd=6ohPg0ROChxar82JvmoswfXf8hoyspFn2g6zHr9ZpAu56YciMGQ6TDHpslAWYK1uK-zxEMwjuVx4fJd2p3VOcQ%3D%3D%3Au8s%2Foa2tGDlH3VgzMmvLQMrwA4bQOMYB2n%2F2pzzeRgZL0Lk3gmf1Fe09jZyAvVxqtDISkZyvgZakLkWQVtTO2cxnGu549U247Jc1vkoKR8o%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbXpFeYC4TUhDV59EAUd9uJDA%2FzpKFLwWHYwS%2FZa1%2FRjNkLboXA7ghj5J9dE4RAcWVZ%2FqL4g7%2F6G9JKcHj7cMDjAkYqV0xc%2BJWJxwRIlJgeghgq6YGj35268MTohmX7I0EisM99ODoZ2Yl4%2BDNqKFofE33XAjWKwJ3LuJKFTN5Wyg%3D; cors_js=1; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJkYXRhX3N1YmplY3RfaWQiOiIwMDMyNDQ3OC0zZTI0LTRkZDItYjA5OS05MzFhYjM4OTY0MGEiLCJzZXNzaW9ucyI6W119fQ; BJS=-; _px3=88898829693df98a1d35ba8bd7945ba14d7e5503226239be5d7a8ff9b0b8f1e9:1gMd6tEuHEz7TaIOfeeC0b1Jvtx2JVg5UX+KLhTDfTei/4pKijzhRrN+XU5jN21si245oW/ylbCDMkGjgA1MTQ==:1000:gd181Mwp6VFS/b/26MwsB10dPKVlWuM3q3F5BUrci//fsqisxRdl2W3I8SMLdaBCaE72u88V4DrK3ZRCSQyl8SSGG1Y+0lJnKkfC//uu1Msi/vagMh7lAlkp44wH9pewD/5B7rMB1LMwqYP18cJp9Uxi5wlBMWGbW5vapFZ0VqIAuXS9vNneP5SXYF/HlfOcPpkEj4OpKMFGulzEsZYFFA==; pxcts=a8c97709-73bd-11ed-8c4a-506e4c6a7672; _pxvid=a8492dfc-73bd-11ed-8d34-59486d53594b; _pxde=286649e4ce00de76873fdab021cbd5a3106c694329e2be98b617ae9ad2c63f9f:eyJ0aW1lc3RhbXAiOjE2NzAxNDkzOTM2MzcsImZfa2IiOjAsImlwY19pZCI6W119
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: envoy
date: Sun, 04 Dec 2022 10:23:14 GMT
last-modified: Tue, 29 Nov 2022 21:42:14 GMT
vary: Accept-Encoding
etag: W/"63867cb6-de7"
strict-transport-security: max-age=17280000
content-encoding: gzip
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 5f054515672e497f7035c066a262245c.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-C2
x-amz-cf-id: uJ7i9aIpM_ZHP_ccbpmLtEnpHLGqd2weUsSZiPqHt5MucRjMbscxoQ==
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/css/gprof_icons_cft.iq_ltr/39fba8d2931db968228646f971abe4c11382c91d.css
200 OK 0 B URL HTTP/2 t-cf.bstatic.com/static/css/gprof_icons_cft.iq_ltr/39fba8d2931db968228646f971abe4c11382c91d.css
IP
GET /static/css/gprof_icons_cft.iq_ltr/39fba8d2931db968228646f971abe4c11382c91d.css HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Mon, 14 Nov 2022 04:59:18 GMT
last-modified: Mon, 14 Nov 2022 03:58:31 GMT
etag: W/"6371bce7-29852"
expires: Wed, 14 Dec 2022 04:59:18 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: YtAiPOYcm5dhdMSLYhTQgVd8S116K5wC5eIuWHiyVBaeXgQyUVXw0A==
age: 1747432
X-Firefox-Spdy: h2
accounts.google.com/gsi/client
200 OK 0 B URL HTTP/2 accounts.google.com/gsi/client
IP
GET /gsi/client HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
expires: Sun, 04 Dec 2022 10:23:13 GMT
date: Sun, 04 Dec 2022 10:23:13 GMT
cache-control: private, max-age=1800
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
content-security-policy: require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, script-src 'nonce-dFYcakHruJpMQ1ScEzPGjQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
t-cf.bstatic.com/psb/capla/static/js/736.71cd5248.chunk.js
200 OK 0 B URL HTTP/2 t-cf.bstatic.com/psb/capla/static/js/736.71cd5248.chunk.js
IP
GET /psb/capla/static/js/736.71cd5248.chunk.js HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 17 Nov 2022 14:15:37 GMT
etag: W/"f3f7fa5bad133f7d70b363db5699d755"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Thu, 17 Nov 2022 13:55:02 GMT
x-amz-expiration: expiry-date="Fri, 17 Mar 2023 13:55:02 GMT", rule-id=""
expires: Sat, 17 Dec 2022 14:15:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 05844663035089f465172d861220e698.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: e6C0ekn-qqRXKZOvhVvssae9BvPLyR7P4jrtk8vC0_TTuzeNOH_Jlw==
age: 1454854
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/js/core-deps-inlinedet_cft/6da0bf621035bb8a2f9c756d6a89dda03b2f7864.js
200 OK 0 B URL HTTP/2 t-cf.bstatic.com/static/js/core-deps-inlinedet_cft/6da0bf621035bb8a2f9c756d6a89dda03b2f7864.js
IP
GET /static/js/core-deps-inlinedet_cft/6da0bf621035bb8a2f9c756d6a89dda03b2f7864.js HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Sun, 13 Nov 2022 04:38:44 GMT
last-modified: Wed, 22 Jun 2022 10:40:45 GMT
etag: W/"62b2f1ad-949e"
expires: Tue, 13 Dec 2022 04:38:44 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 05844663035089f465172d861220e698.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: _xTOGwPmJtGna5eJwbI236EzQ7wUuqcs7y9zJxJwKNRIUs4iOhh5CA==
age: 1835066
X-Firefox-Spdy: h2
t-cf.bstatic.com/psb/capla/static/js/527.5ca86b79.chunk.js
200 OK 0 B URL HTTP/2 t-cf.bstatic.com/psb/capla/static/js/527.5ca86b79.chunk.js
IP
GET /psb/capla/static/js/527.5ca86b79.chunk.js HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 28 Nov 2022 15:35:44 GMT
etag: W/"8b4056a300ba7c0d32d804c3eea32dad"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Mon, 28 Nov 2022 15:22:00 GMT
x-amz-expiration: expiry-date="Tue, 28 Mar 2023 15:22:00 GMT", rule-id=""
expires: Wed, 28 Dec 2022 15:35:44 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 05844663035089f465172d861220e698.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: EZYksh03zt76btQ9YruiZ2FOuNIeRcpCZecF3uVroK1s98ZG2xdJdA==
age: 499647
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/js/lazy_load_images_cft/77204d4da4aa41b08b1a4062c8e66e4629550994.js
200 OK 0 B URL HTTP/2 t-cf.bstatic.com/static/js/lazy_load_images_cft/77204d4da4aa41b08b1a4062c8e66e4629550994.js
IP
GET /static/js/lazy_load_images_cft/77204d4da4aa41b08b1a4062c8e66e4629550994.js HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Tue, 29 Nov 2022 23:37:24 GMT
last-modified: Tue, 04 Feb 2020 10:19:57 GMT
expires: Thu, 29 Dec 2022 23:37:24 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: W/"5e39454d-15f3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 05844663035089f465172d861220e698.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: Q7wmFhSPLTS2m_NiAhzS9ByBjGQVS4Qq8TeW3fj0pVxb4YhqCyHkQg==
age: 384346
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/css/xp-index-sb_cft.iq_ltr/8eb388808f339e272040797666d317d27156dd37.css
200 OK 0 B URL HTTP/2 t-cf.bstatic.com/static/css/xp-index-sb_cft.iq_ltr/8eb388808f339e272040797666d317d27156dd37.css
IP
GET /static/css/xp-index-sb_cft.iq_ltr/8eb388808f339e272040797666d317d27156dd37.css HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Fri, 02 Dec 2022 09:31:59 GMT
last-modified: Wed, 30 Nov 2022 12:37:23 GMT
etag: W/"63874e83-12b83"
expires: Sun, 01 Jan 2023 09:31:59 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: NCkJMVFR_EA1rPBkirHiSPc8LCDdmCcWhH61aeIWP4NHy9hhBXMkHA==
age: 175871
X-Firefox-Spdy: h2
t-cf.bstatic.com/psb/capla/static/js/bui-react.51e4f1ce.js
200 OK 0 B URL HTTP/2 t-cf.bstatic.com/psb/capla/static/js/bui-react.51e4f1ce.js
IP
GET /psb/capla/static/js/bui-react.51e4f1ce.js HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Tue, 29 Nov 2022 09:00:20 GMT
etag: W/"051ff2624473091902c5868210760db3"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Tue, 29 Nov 2022 07:12:18 GMT
x-amz-expiration: expiry-date="Wed, 29 Mar 2023 07:12:18 GMT", rule-id=""
expires: Thu, 29 Dec 2022 09:00:20 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 05844663035089f465172d861220e698.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 9iBf1TxNS7Va-VY6MJ4XGLx8myZMEp0k4g5DobG-wj9ezQF9K-9V0w==
age: 436970
X-Firefox-Spdy: h2
t-cf.bstatic.com/psb/capla/static/js/541.4c859f95.chunk.js
200 OK 0 B URL HTTP/2 t-cf.bstatic.com/psb/capla/static/js/541.4c859f95.chunk.js
IP
GET /psb/capla/static/js/541.4c859f95.chunk.js HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 30 Nov 2022 21:08:16 GMT
etag: W/"9dede4f11ca4f7d26440c485170486d6"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Wed, 30 Nov 2022 18:58:21 GMT
x-amz-expiration: expiry-date="Thu, 30 Mar 2023 18:58:21 GMT", rule-id=""
expires: Fri, 30 Dec 2022 21:08:16 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 05844663035089f465172d861220e698.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: gaxF9gHHKuvE2I74sk5c3rAGOn2LNhq5CrVHqglNpgk8JTEUxWkVcQ==
age: 306895
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/css/sp_loyalty_cft.iq_ltr/c7c6b342312a9d5364889a78d1971cf24c388e48.css
200 OK 0 B URL HTTP/2 t-cf.bstatic.com/static/css/sp_loyalty_cft.iq_ltr/c7c6b342312a9d5364889a78d1971cf24c388e48.css
IP
GET /static/css/sp_loyalty_cft.iq_ltr/c7c6b342312a9d5364889a78d1971cf24c388e48.css HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Fri, 11 Nov 2022 10:56:17 GMT
last-modified: Fri, 11 Nov 2022 01:23:43 GMT
etag: W/"636da41f-37f2"
expires: Sun, 11 Dec 2022 10:56:17 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 8WAkN5lrml3ScvC2Lg4JDR7ieEs-vUObC9t1Edf4lv6tfzfztr5NeQ==
age: 1985213
X-Firefox-Spdy: h2
t-cf.bstatic.com/psb/capla/static/js/223.07dd89fe.chunk.js
200 OK 0 B URL HTTP/2 t-cf.bstatic.com/psb/capla/static/js/223.07dd89fe.chunk.js
IP
GET /psb/capla/static/js/223.07dd89fe.chunk.js HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 28 Nov 2022 14:31:30 GMT
etag: W/"75c5c3ebf193e78cc1e9e5ba3d8bbe63"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Thu, 24 Nov 2022 14:20:21 GMT
x-amz-expiration: expiry-date="Fri, 24 Mar 2023 14:20:21 GMT", rule-id=""
expires: Wed, 28 Dec 2022 14:31:30 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 05844663035089f465172d861220e698.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: a9zmEeTStUIKt_GG-I2PH5bnFEFH0FqsqEsDdZV4pXK3fTT9oKhHBw==
age: 503501
X-Firefox-Spdy: h2
t-cf.bstatic.com/libs/privacy-consent/releases/2.1.32/customer/cookie-banner.min.js
200 OK 0 B URL HTTP/2 t-cf.bstatic.com/libs/privacy-consent/releases/2.1.32/customer/cookie-banner.min.js
IP
GET /libs/privacy-consent/releases/2.1.32/customer/cookie-banner.min.js HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 02 Dec 2022 08:55:00 GMT
last-modified: Tue, 15 Nov 2022 18:13:34 GMT
etag: W/"6373d6ce-21be"
expires: Sun, 01 Jan 2023 08:55:00 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: gemPI7HTjc_gAZqUz9bC_91q_7-167pWtYGgSlYnpT5BYyC5WCE3PQ==
age: 178090
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/js/main_cft/733051e9b21c22cd15a72cb8825ddc730629e4c3.js
200 OK 0 B URL HTTP/2 t-cf.bstatic.com/static/js/main_cft/733051e9b21c22cd15a72cb8825ddc730629e4c3.js
IP
GET /static/js/main_cft/733051e9b21c22cd15a72cb8825ddc730629e4c3.js HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 30 Nov 2022 13:36:27 GMT
last-modified: Wed, 30 Nov 2022 12:37:23 GMT
etag: W/"63874e83-86834"
expires: Fri, 30 Dec 2022 13:36:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 05844663035089f465172d861220e698.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: xScfArVG_henSU47ZDqtXz551yIeVKVufzYRqHcWaL4OjnRl-d2oRA==
age: 334002
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/js/jquery_cft/e1e8c0e862309cb4caf3c0d5fbea48bfb8eaad42.js
200 OK 0 B URL HTTP/2 t-cf.bstatic.com/static/js/jquery_cft/e1e8c0e862309cb4caf3c0d5fbea48bfb8eaad42.js
IP
GET /static/js/jquery_cft/e1e8c0e862309cb4caf3c0d5fbea48bfb8eaad42.js HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 11 Nov 2022 06:23:20 GMT
last-modified: Tue, 28 Jun 2022 15:19:38 GMT
etag: W/"62bb1c0a-19a42"
expires: Sun, 11 Dec 2022 06:23:20 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 05844663035089f465172d861220e698.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: A6uzpdQ5pIB87lmkz1vDF3UJ_JR9C6785MjLJLjv7lleak-GtYa7jQ==
age: 2001590
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/js/calendar2_cft/06071dd1c4e89fbe99e5ad6e21584a6bf9585e84.js
200 OK 0 B URL HTTP/2 t-cf.bstatic.com/static/js/calendar2_cft/06071dd1c4e89fbe99e5ad6e21584a6bf9585e84.js
IP
GET /static/js/calendar2_cft/06071dd1c4e89fbe99e5ad6e21584a6bf9585e84.js HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 30 Nov 2022 04:02:43 GMT
last-modified: Tue, 12 Jan 2021 10:06:38 GMT
expires: Fri, 30 Dec 2022 04:02:43 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: W/"5ffd74ae-cbbc"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: E50j7JvwHrn_Kk0kpiSLutpF_TG5nxtwCZiMWBnI8ryWz3greru7NQ==
age: 368429
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/js/landingpage_cft/dcac18c95a90fa4da6bd3ebf05dd4f9c4f7ca440.js
200 OK 0 B URL HTTP/2 t-cf.bstatic.com/static/js/landingpage_cft/dcac18c95a90fa4da6bd3ebf05dd4f9c4f7ca440.js
IP
GET /static/js/landingpage_cft/dcac18c95a90fa4da6bd3ebf05dd4f9c4f7ca440.js HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Tue, 15 Nov 2022 15:31:55 GMT
last-modified: Tue, 15 Nov 2022 15:27:21 GMT
etag: W/"6373afd9-67f05"
expires: Thu, 15 Dec 2022 15:31:55 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 05844663035089f465172d861220e698.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: -SBLpQ-PuXZKeNt5kPfBARNa-Zs1UNCtQSZQo1Y7hSsWIxTcWlMoZA==
age: 1623075
X-Firefox-Spdy: h2
t-cf.bstatic.com/psb/capla/static/js/client.e595d585.js
200 OK 0 B URL HTTP/2 t-cf.bstatic.com/psb/capla/static/js/client.e595d585.js
IP
GET /psb/capla/static/js/client.e595d585.js HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 01 Dec 2022 09:30:17 GMT
etag: W/"4ed400e37c8abd10a540f2b95cacaf42"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Thu, 01 Dec 2022 09:04:09 GMT
x-amz-expiration: expiry-date="Fri, 31 Mar 2023 09:04:09 GMT", rule-id=""
expires: Sat, 31 Dec 2022 09:30:17 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 05844663035089f465172d861220e698.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: i7s6AWcRWC8mfiNPRZs55t5nyiOwllSphY4I3YQFksVg2xwnuW08Lg==
age: 262374
X-Firefox-Spdy: h2
t-cf.bstatic.com/static/css/main_exps_cft.iq_ltr/158b15f6fce6b5a81af0148297c4f73d580ad61a.css
200 OK 0 B URL HTTP/2 t-cf.bstatic.com/static/css/main_exps_cft.iq_ltr/158b15f6fce6b5a81af0148297c4f73d580ad61a.css
IP
GET /static/css/main_exps_cft.iq_ltr/158b15f6fce6b5a81af0148297c4f73d580ad61a.css HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Wed, 30 Nov 2022 13:36:33 GMT
last-modified: Wed, 30 Nov 2022 12:37:22 GMT
etag: W/"63874e82-20bc1"
expires: Fri, 30 Dec 2022 13:36:33 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9b9a19a17f71baf11790ad734100cb88.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: -Bka8yUb7WQm3ex95WxbthR_cbAC2FGxLCOTfjVqdVlZcSLjK4wvrA==
age: 333997
X-Firefox-Spdy: h2
45.33.30.197
104.18.26.85
93.184.220.29
23.36.77.32