Report - cj.dotomi.com/10107r098R/07C/QRSVUPUV/QPQTVSRQP/P/P/P?k=w0ql=ii8Em8CFCHEjClAHj8HiBmHFH-EA9A9B<<p11x0://444.rlwywk6.kwu/ktqks-989CEBA98-9ABED8DE<<O<p11x://444.rlwywk6.kwu<<9<9<8<8<

Report Overview

Visited public
2025-07-18 03:09:50
Tags
Submit Tags
URL
cj.dotomi.com/10107r098R/07C/QRSVUPUV/QPQTVSRQP/P/P/P?k=w0ql=ii8Em8CFCHEjClAHj8HiBmHFH-EA9A9B<<p11x0://444.rlwywk6.kwu/ktqks-989CEBA98-9ABED8DE<<O<p11x://444.rlwywk6.kwu<<9<9<8<8<
Finishing URL
www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
IP / ASN
89.207.16.75
#41041 Conversant LLC
Title
Booking.com | Official site | The best hotels, flights, car rentals & accommodations

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
accounts.google.com	81	1997-09-15	2012-05-23	2025-07-16	2.4 kB	513 kB	142.250.147.84
account.booking.com	22920	1998-04-17	2018-07-12	2025-07-13	2.1 kB	6.0 kB	3.167.2.91
q-xx.bstatic.com	17256	2009-04-24	2018-03-07	2025-07-14	17 kB	300 kB	3.167.2.62
play.google.com	34	1997-09-15	2013-05-30	2025-07-16	1.1 kB	2.0 kB	142.250.74.142
d8c14d4960ca.edge.sdk.awswaf.com	unknown	2015-10-05	2023-07-25	2025-07-16	6.0 kB	1.1 MB	3.167.2.48
accommodations.booking.com	228032	1998-04-17	2019-04-09	2025-07-13	2.0 kB	4.1 kB	54.240.174.23
www.emjcd.com	13026	2004-04-06	2012-05-22	2025-07-11	821 B	720 kB	89.207.16.75
geolocation.onetrust.com	802	2004-01-12	2018-02-07	2025-07-16	496 B	461 B	172.64.155.119
cf.bstatic.com	19256	2009-04-24	2020-10-08	2025-07-15	104 kB	20 MB	3.167.2.62
www.booking.com	10220	1998-04-17	2013-09-01	2025-07-14	55 kB	1.6 MB	54.240.174.43
cdn.cookielaw.org	502	2011-06-20	2013-12-28	2025-07-16	3.4 kB	727 kB	104.18.87.42
t-cf.bstatic.com	20707	2009-04-24	2022-12-04	2025-07-13	4.7 kB	201 kB	3.167.2.99
r-xx.bstatic.com	56174	2009-04-24	2018-03-08	2025-07-16	15 kB	288 kB	3.167.2.62
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-07-16	1.1 kB	106 kB	142.250.74.35
booking.com	3556	1998-04-17	2012-06-26	2025-07-13	1.3 kB	3.5 kB	54.240.174.43

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

Scan Date	Severity	Indicator	Alert
2025-07-18	medium	d8c14d4960ca.edge.sdk.awswaf.com/d8c14d4960ca/a18a4859af9c/challenge.js	Unique code from Jetriz, Swid & Jeniva of the Tetris framework
2025-07-18	medium	javascript.script.md5:7906f78b2546fee510d1cdd61949df36	Unique code from Jetriz, Swid & Jeniva of the Tetris framework

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (59)

	URL	From	Size	First Seen	Last Seen
	cf.bstatic.com/static/js/genius_vip_cloudfront_sd/aae975495cc56436f4f59463b9ea4e594bdb102a.js	ScriptElement	3.4 kB	2023-11-06	2025-07-18
Pretty URL cf.bstatic.com/static/js/genius_vip_cloudfront_sd/aae975495cc56436f4f59463b9ea4e594bdb102a.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-06 06:25 Last Seen2025-07-18 03:10 Times Seen476 Hash 09a80a4a23bdc1dba67f37fca7af6e1b f37cd1b7b407485887c87717098a0fda8fc268c6 eb8a863847bbe73aed0fdff596dd87c9cf66e85e4ce3526869d99fa9bdf01acf Loading...

	www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056	ScriptElement	481 B	2025-06-27	2025-07-18
Pretty URL www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056 IP 54.240.174.35 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2025-06-27 02:18 Last Seen2025-07-18 03:10 Times Seen88 Hash 221238aeff768b6d44ba37d268890def 03d5cfea8e5af38541f181160b673b057d48a683 aefb773658ffe549ae1db68613298817e4350a5fd4fad9cbef88d7b816e3d514 Loading...

	d8c14d4960ca.edge.sdk.awswaf.com/d8c14d4960ca/a18a4859af9c/challenge.js	ScriptElement	1.1 MB	2025-07-18	2025-07-18
Pretty URL d8c14d4960ca.edge.sdk.awswaf.com/d8c14d4960ca/a18a4859af9c/challenge.js IP 3.167.2.48 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-18 03:10 Last Seen2025-07-18 03:10 Times Seen1 Hash 7906f78b2546fee510d1cdd61949df36 ad45377527b7dba73a8b695cc6ac74c52404673a efc9928b0d2fa926614b7816a3b3d52c94440b36933e4e36bef860276a9d1ea9 Loading...

	www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056	ScriptElement	47 B	2025-07-13	2025-07-18
Pretty URL www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056 IP 54.240.174.35 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2025-07-13 14:09 Last Seen2025-07-18 03:10 Times Seen18 Hash 321426abbd9f2eca57ba708fe26be9f3 757c49443101e6322a38ce99dcd604f62b9d6998 a04528a302d7c61d21e3c667f460b9a1a8f9081369ed0c04472139cb68c924a2 Loading...

	cdn.cookielaw.org/scripttemplates/otSDKStub.js	ScriptElement	1.0 kB	2025-06-24	2025-07-18
Pretty URL cdn.cookielaw.org/scripttemplates/otSDKStub.js IP 104.18.87.42 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-24 06:43 Last Seen2025-07-18 07:14 Times Seen397 Hash 67c9663756e6aaeb2fcbcfb780e822b0 7723517b4f8d8a5dc3b6958a8bae320e390995a0 1bb650ee2af830d79ded57ead7a91120815a5cbe6301574f6b6df23ea17f1644 Loading...

	accounts.google.com/_/gsi/_/js/k=gsi.gsi.no.GxaOMu3kjfU.O/am=AAAokLk0Kw/d=1/rs=AF0KOtUxyL_wL-7J9TsUZPsS9zfUaSk0LQ/m=credential_server_library	ScriptElement	201 kB	2025-07-17	2025-07-18
Pretty URL accounts.google.com/_/gsi/_/js/k=gsi.gsi.no.GxaOMu3kjfU.O/am=AAAokLk0Kw/d=1/rs=AF0KOtUxyL_wL-7J9TsUZPsS9zfUaSk0LQ/m=credential_server_library IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-17 23:47 Last Seen2025-07-18 05:42 Times Seen4 Hash acb4149e37b898262d9d0f5146929328 3be956d1a2a815a1f73eab1bcbc416ad4eb9b043 f262216b2105e6adbd80c19ecdf9c7155a077b51359ef10c87d6dd8be61b37a7 Loading...

	www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056	ScriptElement	100 B	2023-03-07	2025-07-18
Pretty URL www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056 IP 54.240.174.35 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:02 Last Seen2025-07-18 03:10 Times Seen311 Hash 3b807ccd84f8816ee5b44fdebb683b30 76c4156b8a71f37b08b6d382aaf8758bf13ab416 d183ba9cdc395cc0a40e1ce44b828e436b70cd349a992245fc067b8774ea7fcd Loading...

	cf.bstatic.com/psb/capla/static/js/5638344d.1d8946c7.chunk.js	ScriptElement	153 kB	2025-07-17	2025-07-18
Pretty URL cf.bstatic.com/psb/capla/static/js/5638344d.1d8946c7.chunk.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-17 22:44 Last Seen2025-07-18 03:10 Times Seen11 Hash d32f44b9664839f9d66a5355b47048e2 dcd4574df09a697e6ba9da4c2f4081b9191f7073 0eead5ba8c69c05f0af4fd96682ca34afc3716b108f2aac6c61d87050a87124d Loading...

	cf.bstatic.com/psb/capla/static/js/7943e0ea.af3663d9.chunk.js	ScriptElement	200 kB	2025-07-17	2025-07-18
Pretty URL cf.bstatic.com/psb/capla/static/js/7943e0ea.af3663d9.chunk.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-17 22:44 Last Seen2025-07-18 03:10 Times Seen11 Hash ba977c0c96b99c12b2dabe4adc554c3b 2907243b436854ba5fdfad4e7aecff5e941672df 15fbb05d753a98b5ede983d1155ff03d1874bf088a0288d72b010e2bb0090c46 Loading...

	cf.bstatic.com/static/js/landingpage_cloudfront_sd/52022cbcf28f76b867eb292ea5c707c205994fdd.js	ScriptElement	347 kB	2025-03-14	2025-07-18
Pretty URL cf.bstatic.com/static/js/landingpage_cloudfront_sd/52022cbcf28f76b867eb292ea5c707c205994fdd.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-14 22:11 Last Seen2025-07-18 03:10 Times Seen190 Hash cf640f0033fd05079684d0e716af1f01 af51181dac443c75f691b3fa624f968064cef555 72d96a2affde2d0f303cc6792734483391a3fdecc2b63e6fd55bb33c9480619e Loading...

	www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056	ScriptElement	387 B	2023-03-07	2025-07-18
Pretty URL www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056 IP 54.240.174.35 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:29 Last Seen2025-07-18 03:10 Times Seen490 Hash ffe3c1dc0c9a87672bba94d924f46cc6 33b6b334d83b40cbb839ea8efec5b82d2817599c 196b1c0b2d9e70b76d099a995e1afcb7b52c02c1aa5a8528c1a31aa5a1b74f71 Loading...

	cf.bstatic.com/static/js/searchbox_cloudfront_sd/b3c5d3f7069cc96a4a9015a241a291577359e7af.js	ScriptElement	1.0 kB	2025-04-11	2025-07-18
Pretty URL cf.bstatic.com/static/js/searchbox_cloudfront_sd/b3c5d3f7069cc96a4a9015a241a291577359e7af.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-11 21:36 Last Seen2025-07-18 03:10 Times Seen66 Hash f85935296b45bf08f4740f1d3ff5ec76 79ec29956ce6d8d8e0d83d98a7ac9ddd67c76404 5b80c6afda1055d0162b7bed1094627159ee48273f1c25a13ada33e017dedce3 Loading...

	cf.bstatic.com/psb/capla/static/js/9214bfa8.b2b1988a.chunk.js	ScriptElement	1.5 kB	2025-07-17	2025-07-18
Pretty URL cf.bstatic.com/psb/capla/static/js/9214bfa8.b2b1988a.chunk.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-17 22:44 Last Seen2025-07-18 03:10 Times Seen11 Hash 7c690e629e083037cc13cc9e03d63546 b883e4c3beaded4edf59a4f41fef7dd9238967c8 5da78ac11b0fd474aee7113db28cd90aeb230f08c1a7e2e79b4d2cbe9c409c6f Loading...

	www.booking.com/cookiebanner.html	ScriptElement	2.3 kB	2025-03-07	2025-07-18
Pretty URL www.booking.com/cookiebanner.html IP 54.240.174.43 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-07 19:52 Last Seen2025-07-18 03:10 Times Seen56 Hash ad99cd6c221409d3ac2554e4a3ff167e 2b73b9c1cf65fe3b91e5567b045261ece7121ef1 4fc2cfb4dee17ed64b9d6243b3c930fbfe25e8b24ac58f55feddf317ae9dc808 Loading...

	www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056	ScriptElement	175 B	2023-03-07	2025-07-18
Pretty URL www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056 IP 54.240.174.35 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:29 Last Seen2025-07-18 03:10 Times Seen497 Hash 1fe6a7a5b8e7273ac9bbcb045546e36e 521c84b6d8111b26ad0d30a866320f8306df56e0 e189c604ef635d80d54f752f597dad99d7381a9807a28c4fe8843a23046681dd Loading...

	cf.bstatic.com/psb/capla/static/js/remoteEntry.81a78d03.client.js	ScriptElement	23 kB	2025-07-01	2025-07-18
Pretty URL cf.bstatic.com/psb/capla/static/js/remoteEntry.81a78d03.client.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-01 01:04 Last Seen2025-07-18 03:10 Times Seen89 Hash 2f63eeb88e6b4169d89f4af21d4ab6f5 c3313c38ae53221c7e7473d8131af37bca861b8e 861db7a794450d58d34a844d8398301b1d50b41a914e6e275ab3c90e931e32df Loading...

	cf.bstatic.com/psb/capla/static/js/0d919837.20915694.chunk.js	ScriptElement	1.0 kB	2025-07-16	2025-07-18
Pretty URL cf.bstatic.com/psb/capla/static/js/0d919837.20915694.chunk.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-16 10:33 Last Seen2025-07-18 03:10 Times Seen4 Hash 35b8b9079b17810722c8b33eda8e1c33 55d9c65f4f16dcaa71ebc9269352854e41cb374f 349a5392bbee5bd7914b04b39a1296fcd606f18d9ecf1ee9485a6054cea12044 Loading...

	www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056	ScriptElement	149 B	2023-03-07	2025-07-18
Pretty URL www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056 IP 54.240.174.35 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:29 Last Seen2025-07-18 03:10 Times Seen499 Hash fc13ade3e0da9651b757b37df36dbd90 ad08d49633701f7197826befdde348634b1b29d4 b22912e47ea429dda35eee8ec803c60ac8ba34a7da69225b18fd4035089ba173 Loading...

	cf.bstatic.com/psb/capla/static/js/ace575b5.f78e2c6e.chunk.js	ScriptElement	229 kB	2025-07-17	2025-07-18
Pretty URL cf.bstatic.com/psb/capla/static/js/ace575b5.f78e2c6e.chunk.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-17 22:44 Last Seen2025-07-18 03:10 Times Seen11 Hash 4d07e09f104d7c02e0f30df34a35332b 959e224e1ec6bd53e9f530e17cc575be5b7454cb 5b2234e1bf75afe060b308a7cb1d2509348d5653264231a8ffcea2e95b161652 Loading...

	cf.bstatic.com/psb/capla/static/js/f982442d.18b3cb46.chunk.js	ScriptElement	168 kB	2025-07-17	2025-07-18
Pretty URL cf.bstatic.com/psb/capla/static/js/f982442d.18b3cb46.chunk.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-17 22:44 Last Seen2025-07-18 03:10 Times Seen11 Hash c6e2ba1678786eaa365df5f182283ac3 6b9b84c154aea2bd4e8e84d30a2c251b1ba725bf e8343068a8ce6caf3c64dedb3fad54f4b891844089ebe9f5b6605eaacd772369 Loading...

	cf.bstatic.com/static/js/sp-on-maps_cloudfront_sd/04f61ab808c709eae82ca98f22b27d6633817fbd.js	ScriptElement	9.8 kB	2025-05-03	2025-07-18
Pretty URL cf.bstatic.com/static/js/sp-on-maps_cloudfront_sd/04f61ab808c709eae82ca98f22b27d6633817fbd.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-03 11:39 Last Seen2025-07-18 03:10 Times Seen170 Hash eca004825f47651c28f2370de5625e78 e40162d02fd7294863a9736c0e5e4c5e9a098e7a b381e4e0c386679f52ced10d0b74601fd97a1ff9c92e9a84ffe5d95ffe5a988d Loading...

	www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056	ScriptElement	115 B	2023-03-07	2025-07-18
Pretty URL www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056 IP 54.240.174.35 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:29 Last Seen2025-07-18 03:10 Times Seen496 Hash 429d99a5cdbb08061c7aff9c682d56d1 f90a1b6aa0db6604e5a27694597ce5b42bf9fe2a df1cdc7a610750aaa33456d294bd11ff1a6690ca32d70223fc6afa845c1e8755 Loading...

	accounts.google.com/gsi/iframe/select?client_id=901905703382-m88jn1h9ll89odkt6t5muc6h7ep83rlh.apps.googleusercontent.com&auto_select=false&ux_mode=popup&ui_mode=card&context=signin&nonce=6615974505406946&as=2N5lVsStsvHkI26Qfu6v5VtZB_SK-Tl393C9uo-SBS4&is_itp=true&channel_id=a111a2893d72e0dc740011fa52eba806f3160f286a0144ca5f44bcff00a666d5&origin=https%3A%2F%2Fwww.booking.com&oauth2_auth_url=https%3A%2F%2Faccounts.google.com%2Fo%2Foauth2%2Fv2%2Fauth	ScriptElement	201 kB	2025-07-17	2025-07-18
Pretty URL accounts.google.com/gsi/iframe/select?client_id=901905703382-m88jn1h9ll89odkt6t5muc6h7ep83rlh.apps.googleusercontent.com&auto_select=false&ux_mode=popup&ui_mode=card&context=signin&nonce=6615974505406946&as=2N5lVsStsvHkI26Qfu6v5VtZB_SK-Tl393C9uo-SBS4&is_itp=true&channel_id=a111a2893d72e0dc740011fa52eba806f3160f286a0144ca5f44bcff00a666d5&origin=https%3A%2F%2Fwww.booking.com&oauth2_auth_url=https%3A%2F%2Faccounts.google.com%2Fo%2Foauth2%2Fv2%2Fauth IP 142.250.147.84 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2025-07-17 23:47 Last Seen2025-07-18 05:42 Times Seen4 Hash d3962ac71f079827e1c9bf3cd678b53d 44460dd4d89bfd98f93fd1cedc36398c4e0e240a 4bd6cc366d936a546aa1fdc7f078348204bee1d40db375a0227730ace84d4391 Loading...

	cf.bstatic.com/static/js/crossorigin_check_cloudfront_sd/2454015045ef79168d452ff4e7f30bdadff0aa81.js	ScriptElement	95 B	2023-03-07	2025-07-18
Pretty URL cf.bstatic.com/static/js/crossorigin_check_cloudfront_sd/2454015045ef79168d452ff4e7f30bdadff0aa81.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:29 Last Seen2025-07-18 03:10 Times Seen533 Hash 335be8900580e9c3875dba57334294ae a86597d2ddfa410df13bceca86fdf9a2291fe798 8a882fd19a15567e53a5c3c08d22cdab714fa87734ed92d854c4e8fdf3940b1f Loading...

	www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056	ScriptElement	40 kB	2025-07-18	2025-07-18
Pretty URL www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056 IP 54.240.174.35 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2025-07-18 03:10 Last Seen2025-07-18 03:10 Times Seen1 Hash c133971302aa844bcea3e0e5b295e4e6 481088472a20ee6149adbb5faf83309143b6b4d2 ae79d53005b707d64108c89ded2853b7f0755bc40bbcf6a4de632995a765dc24 Loading...

	cf.bstatic.com/psb/capla/static/js/5aeeadf2.14097820.chunk.js	ScriptElement	172 kB	2025-07-16	2025-07-18
Pretty URL cf.bstatic.com/psb/capla/static/js/5aeeadf2.14097820.chunk.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-16 10:33 Last Seen2025-07-18 03:10 Times Seen21 Hash 40ac6664a57b054dacf7299a1639a8dc 0dc1c756f9725f1f43b00ee657e13a0db1bf331c 95a212c62019cd6c82322b54094af79eb294abcf5e973212934f1976e3b5cf51 Loading...

	cf.bstatic.com/psb/capla/static/js/5f127cf4.29374ed1.chunk.js	ScriptElement	1.2 MB	2025-07-17	2025-07-18
Pretty URL cf.bstatic.com/psb/capla/static/js/5f127cf4.29374ed1.chunk.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-17 21:39 Last Seen2025-07-18 03:10 Times Seen12 Hash 7044c05efc474f1ebd02b7f018c9f136 1e86f7bbfdd842d79b173826bbe3c2f0c1f4d427 5a3e41d424e6de75209c6ff843f64f21921553271ba25b5035418b1e81676e90 Loading...

	cf.bstatic.com/psb/capla/static/js/97da0127.455ce97e.chunk.js	ScriptElement	1.0 kB	2025-06-29	2025-07-18
Pretty URL cf.bstatic.com/psb/capla/static/js/97da0127.455ce97e.chunk.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-29 21:25 Last Seen2025-07-18 03:10 Times Seen88 Hash 61b63f204260820aaf26424cb2879548 a29b8e79e69b9bbeffa69d771e8bdf0a65d9d361 ceb3cadfde71eec6b8f23aeb3636c8dae5e3295e9c50fab921160f34cf894b50 Loading...

	cf.bstatic.com/psb/capla/static/js/0a098284.dca56cf2.chunk.js	ScriptElement	44 kB	2025-07-17	2025-07-18
Pretty URL cf.bstatic.com/psb/capla/static/js/0a098284.dca56cf2.chunk.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-17 21:39 Last Seen2025-07-18 03:10 Times Seen12 Hash 6e18027fac18d970c2ee72e272d97a8f 356dfaaf64abadbcf4b787b13623b915bec7a37d 7ebabc9f3b3a23c367e2dfec8576a7937b0b4d0e388c25ab4c90c0cacb089127 Loading...

	www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056	ScriptElement	22 B	2023-03-07	2025-07-18
Pretty URL www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056 IP 54.240.174.35 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:29 Last Seen2025-07-18 03:10 Times Seen548 Hash ccdb2571d2b93d7ba8fde60c10c18d60 5100679991b6a213d69c0372a78906b561cef281 9c0130128c7c780485532218e47bba99bab78baca8e716065a17aed3d42868f1 Loading...

	cf.bstatic.com/psb/capla/static/js/662d9b70.6fd36e7f.chunk.js	ScriptElement	222 kB	2025-07-02	2025-07-18
Pretty URL cf.bstatic.com/psb/capla/static/js/662d9b70.6fd36e7f.chunk.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-02 16:11 Last Seen2025-07-18 03:10 Times Seen85 Hash 3609e5304b69530a83925f01f4fd7296 68a8cc7fe73a9107c4b2b36f0c7010366430a329 ab380d14dbb837c1796ba470fe988808feef1243d3e9e6056a9e157f5fa4952f Loading...

	cf.bstatic.com/psb/capla/static/js/remoteEntry.fbe241f1.client.js	ScriptElement	18 kB	2025-07-08	2025-07-18
Pretty URL cf.bstatic.com/psb/capla/static/js/remoteEntry.fbe241f1.client.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-08 16:24 Last Seen2025-07-18 03:10 Times Seen78 Hash 60caccedee6307dd150c7cc6fec1f5c5 52e74ee9408d4bd948921b6b882fb9818a224595 8b417c9c9164435f77cd934719a90a8319f37c87d54b62d6ee1e650b0f3cfb3e Loading...

	cf.bstatic.com/psb/capla/static/js/5b1239aa.1fb160bb.chunk.js	ScriptElement	61 kB	2025-07-17	2025-07-18
Pretty URL cf.bstatic.com/psb/capla/static/js/5b1239aa.1fb160bb.chunk.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-17 22:44 Last Seen2025-07-18 03:10 Times Seen11 Hash 275ff863f41bddf7f9a84a59fff82bb9 dfe9a3162fa3a220f8f6912f935303dbd239edaa a05c125744bb727e5d4a23d26ba31a1c44db8acdb6906c6695dfd2f8e62f80d9 Loading...

	cf.bstatic.com/psb/capla/static/js/3c056f17.b1a64a5f.chunk.js	ScriptElement	1.2 kB	2025-07-17	2025-07-18
Pretty URL cf.bstatic.com/psb/capla/static/js/3c056f17.b1a64a5f.chunk.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-17 21:39 Last Seen2025-07-18 03:10 Times Seen12 Hash cfa356f8c96ebcc74a0ea7032fbf477f 5517d94cd69353314558248c9d9c480c38be5443 54d57d0385fb025ecbc2eda5cb80a1c93eafc63e39ed5c8b08e249ce1507c638 Loading...

	cf.bstatic.com/psb/capla/static/js/remoteEntry.16082731.client.js	ScriptElement	15 kB	2025-07-09	2025-07-18
Pretty URL cf.bstatic.com/psb/capla/static/js/remoteEntry.16082731.client.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-09 17:12 Last Seen2025-07-18 03:10 Times Seen75 Hash 7c4d2177e759bccb7f677f65edf7f809 bf3751ff50d572cb79d7eefc01cfd076b65ebf46 86643595af8f8b8db9c53f60c91d15e7d405b903587cca3a3fcb22652fa430d9 Loading...

	www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056	ScriptElement	123 kB	2025-07-18	2025-07-18
Pretty URL www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056 IP 54.240.174.35 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2025-07-18 03:10 Last Seen2025-07-18 03:10 Times Seen1 Hash a48b95057bc2cffe22e833947bd5beba 6c658d71c88dcb0dd47bd55d2c377e11728a0184 8b9e59a7cc4c6d824696a61e5603de92ac709a4289206611b5650b59ce78f0d4 Loading...

	cf.bstatic.com/psb/capla/static/js/18cad957.dd2c2166.chunk.js	ScriptElement	1.0 kB	2025-07-08	2025-07-18
Pretty URL cf.bstatic.com/psb/capla/static/js/18cad957.dd2c2166.chunk.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-08 16:24 Last Seen2025-07-18 03:10 Times Seen30 Hash 13742dcc52e33b6dbd06b7c90f80c7eb 65a4aee9eac34d20a4b8fb2d3f58cfaef7a6c4ef d00c8079c2098b23dce2ff2ecbc781050141a5f4f99b8fea00cd6e391c4577f9 Loading...

	cf.bstatic.com/psb/capla/static/js/782ad794.f45b5996.chunk.js	ScriptElement	893 kB	2025-07-17	2025-07-18
Pretty URL cf.bstatic.com/psb/capla/static/js/782ad794.f45b5996.chunk.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-17 21:39 Last Seen2025-07-18 03:10 Times Seen12 Hash 8fc4575a1fe8af2a82192d64b1ef5065 7b680a2d36a8c617bb3f5c69a5f0e614ed2ecffc 488bfcd47601b1ba54f213176c66280731d0190abec143bc5b0f77d32aadf2bb Loading...

	cf.bstatic.com/psb/capla/static/js/81da5f32.147d7177.chunk.js	ScriptElement	310 kB	2025-07-15	2025-07-18
Pretty URL cf.bstatic.com/psb/capla/static/js/81da5f32.147d7177.chunk.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-15 14:42 Last Seen2025-07-18 03:10 Times Seen33 Hash ba4ea31b928b9e7204da467821e54bd8 5bb355bbe873b09edecc241023d6747938c6bbfd 824b729335d9ee38bf7bbed1e96712ece150f6733d41585a2f27e5511d47e23b Loading...

	cf.bstatic.com/psb/capla/static/js/c62ef267.8212baa3.chunk.js	ScriptElement	236 kB	2025-07-17	2025-07-18
Pretty URL cf.bstatic.com/psb/capla/static/js/c62ef267.8212baa3.chunk.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-17 22:44 Last Seen2025-07-18 03:10 Times Seen11 Hash 9a2eb2fe29a1c5f6476572ac1b1f72b0 ddd16234de0524436d754c4261f93e1aa4a83aa7 29206a990d01a75d462db9f748726d3ed3505cadb1db88e0edf1adc8d620d7c6 Loading...

	cf.bstatic.com/static/js/plugable-access-form_cloudfront_sd/24b54ab3fd7377cb8b4a614b18f0e894bbfb5b41.js	ScriptElement	7.1 kB	2025-06-24	2025-07-18
Pretty URL cf.bstatic.com/static/js/plugable-access-form_cloudfront_sd/24b54ab3fd7377cb8b4a614b18f0e894bbfb5b41.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-24 07:56 Last Seen2025-07-18 03:10 Times Seen108 Hash 3f28df78a6b06ea2f3b9587fcf89ecf5 c2c2f6245cf200e9d2621799e58a99d023f0a7e4 832d30d57bdf77b737dcafee7b8cdca30ba95c20a321ca68fbfe02f8487302a3 Loading...

	accounts.google.com/gsi/client	ScriptElement	242 kB	2025-07-16	2025-07-18
Pretty URL accounts.google.com/gsi/client IP 142.250.147.84 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-16 14:53 Last Seen2025-07-18 07:22 Times Seen18 Hash 9fa589037efbceca117bc4ec1d726160 73d319f1faf7bdbec51c5352a2e11558e79bc65f 969de3f5929e33b9ac21d1512c45950efbcfae5e9a1ed33b1f2f15c4eab5a791 Loading...

	cf.bstatic.com/static/js/error_catcher_bec_cloudfront_sd/c40c55637440286271899bb4294fd743b387ac07.js	ScriptElement	6.2 kB	2024-10-31	2025-07-18
Pretty URL cf.bstatic.com/static/js/error_catcher_bec_cloudfront_sd/c40c55637440286271899bb4294fd743b387ac07.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-31 13:52 Last Seen2025-07-18 03:10 Times Seen312 Hash 15742a9f0247380ecf0b5328a854159d 093ce59594bb6b10eb54f1a9ab93e62bfabaa616 4352beeb6d75e0b1e6bfcfd2b156c5404176e62b6459c09a9cad2c3ef43069f4 Loading...

	cf.bstatic.com/psb/capla/static/js/cf78851e.a268abf5.chunk.js	ScriptElement	914 B	2025-02-27	2025-07-18
Pretty URL cf.bstatic.com/psb/capla/static/js/cf78851e.a268abf5.chunk.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-27 13:23 Last Seen2025-07-18 03:10 Times Seen183 Hash ea4f6140595f490697f03bfaf23418b1 a35d8cb8cdc0eb9e02b7bfe90c58f4036713a108 afb6ce38b24de5bae92a4cd4a0a72c8d71917a40a11ddb257b443a0c09719323 Loading...

	cf.bstatic.com/psb/capla/static/js/client.7368b6f9.js	ScriptElement	1.0 kB	2025-07-17	2025-07-18
Pretty URL cf.bstatic.com/psb/capla/static/js/client.7368b6f9.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-17 21:39 Last Seen2025-07-18 03:10 Times Seen3 Hash 57c2b4ec6c72af5d556938bba6cd2667 3cb0be4128552d4c69ee62cba241c6729bedd97f daadecff9320c5cd77fa4642846b7c6f32e2171960f686a50ada0deb3a1a472d Loading...

	cf.bstatic.com/psb/capla/static/js/412698ad.901a0478.chunk.js	ScriptElement	4.5 kB	2025-05-09	2025-07-18
Pretty URL cf.bstatic.com/psb/capla/static/js/412698ad.901a0478.chunk.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-09 11:11 Last Seen2025-07-18 03:10 Times Seen131 Hash 469a8dc2d5e4b34eb7787b92d831c718 5ffd2c4629507759986556f43207476957e0ff46 dff3beda196d15fc853bbce8ef208d90bff5cf49cff71832c9cee0d22075a92a Loading...

	cf.bstatic.com/static/js/raf_cloudfront_sd/3aa797c9467ab4f264a93a2592ff861d6cbc58e4.js	ScriptElement	1.0 kB	2025-05-03	2025-07-18
Pretty URL cf.bstatic.com/static/js/raf_cloudfront_sd/3aa797c9467ab4f264a93a2592ff861d6cbc58e4.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-03 11:39 Last Seen2025-07-18 03:10 Times Seen69 Hash 2740bcb80a22a0294cd232c2e1428822 8f7d56cd9b732be1d003a38c24ef63fcfe997c1b f2c05278fa2b7a99549048e6b306f64a7caede47f5e8915b22b3263d5ae975a2 Loading...

	cf.bstatic.com/static/js/index_cloudfront_sd/5f57b7b9748cbb3c3b4df95d89bb375cc24ceb66.js	ScriptElement	1.0 kB	2025-07-17	2025-07-18
Pretty URL cf.bstatic.com/static/js/index_cloudfront_sd/5f57b7b9748cbb3c3b4df95d89bb375cc24ceb66.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-17 22:44 Last Seen2025-07-18 03:10 Times Seen4 Hash ea92c767cb3b67ecbbd636bb1b64377e 41ef6bf722705b0d20613eab1a9022a54e00f395 408a483572551b70c0f63c911d7497879f5bf58f73ee8e65d15ab7410e90d013 Loading...

	www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056	ScriptElement	718 B	2025-07-18	2025-07-18
Pretty URL www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056 IP 54.240.174.35 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2025-07-18 03:10 Last Seen2025-07-18 03:10 Times Seen1 Hash 996f7fdd0f5e7cbbb3720f1a26f635f6 459b835447adcccef4bd18deb50179df269c543e 8290e7366695b5198c045b5f9d1163c561298d6dc2463beb08b2961709f23ca3 Loading...

	cf.bstatic.com/psb/capla/static/js/remoteEntry.e9e81e2c.client.js	ScriptElement	25 kB	2025-07-16	2025-07-18
Pretty URL cf.bstatic.com/psb/capla/static/js/remoteEntry.e9e81e2c.client.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-16 10:33 Last Seen2025-07-18 03:10 Times Seen24 Hash 823db92c5d6b22206129ca5f32adac57 4b6eac91d2dc27d00defe21a1635f9471f821844 447b7266cb2d390b6b4f9909013c6b39d76dcdec26a165536c8f506225ab0cec Loading...

	cf.bstatic.com/psb/capla/static/js/4a89d2db.5c048106.chunk.js	ScriptElement	467 B	2025-05-09	2025-07-18
Pretty URL cf.bstatic.com/psb/capla/static/js/4a89d2db.5c048106.chunk.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-09 11:11 Last Seen2025-07-18 03:10 Times Seen141 Hash 5c651d84eb655cccfcfa90af2de4487a a8db8049b2df9b57e9e1b58663b2703b32907031 36ac19ccc058f02117dedbfbc939a37905c39f548be2a5b269ef097071869dc9 Loading...

	www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056	ScriptElement	4.9 kB	2025-07-18	2025-07-18
Pretty URL www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056 IP 54.240.174.35 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2025-07-18 03:10 Last Seen2025-07-18 03:10 Times Seen1 Hash cc226f64e14393daca106092c3355a88 68762baaea15fd2731a0461a3f518bede68b1727 7630d73001d5f91e02388069ca4f52fab14f9cb7065a0025b6ad09ecd5db0684 Loading...

	cf.bstatic.com/static/js/jquery_cloudfront_sd/e1e8c0e862309cb4caf3c0d5fbea48bfb8eaad42.js	ScriptElement	105 kB	2023-03-07	2025-07-18
Pretty URL cf.bstatic.com/static/js/jquery_cloudfront_sd/e1e8c0e862309cb4caf3c0d5fbea48bfb8eaad42.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:29 Last Seen2025-07-18 03:10 Times Seen575 Hash 1a16f971ed98c047c8fa288987383922 04200a6f3b25cdfa04551f635d025fc64743b4ff 5ad7526d50b7586ddfaee62b3fc95e71207136dc08f6a2b7ffd671ded73fab83 Loading...

	cf.bstatic.com/static/js/core-deps-inlinedet_cloudfront_sd/f62025e692b596dd53ecd1bd082dfd3197944c50.js	ScriptElement	50 kB	2024-08-08	2025-07-18
Pretty URL cf.bstatic.com/static/js/core-deps-inlinedet_cloudfront_sd/f62025e692b596dd53ecd1bd082dfd3197944c50.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-08 15:15 Last Seen2025-07-18 03:10 Times Seen283 Hash b9b92709702a024ef42b3b28a93044de 9d36a09c1092e98016c9a6f99451cd5deadec15f 06a39f92929bd2d5accc4810a0c60d61ca3af941382090deefbffcb6a5f1b5d7 Loading...

	cf.bstatic.com/psb/capla/static/js/31e40d2f.dd75dfd5.chunk.js	ScriptElement	24 kB	2025-07-01	2025-07-18
Pretty URL cf.bstatic.com/psb/capla/static/js/31e40d2f.dd75dfd5.chunk.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-01 01:04 Last Seen2025-07-18 03:10 Times Seen86 Hash a807e00048114fc32d69184fc88a168c d5c31ba4ba3b14476a9b8ba33c8310704027be0c 2e8508d9661724faf6a6ae97f841f31f0bc26d37a8180793e13a0bc1f08c8141 Loading...

	cf.bstatic.com/psb/capla/static/js/f41dcaf5.4397d013.chunk.js	ScriptElement	1.7 kB	2025-07-17	2025-07-18
Pretty URL cf.bstatic.com/psb/capla/static/js/f41dcaf5.4397d013.chunk.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-17 22:44 Last Seen2025-07-18 03:10 Times Seen11 Hash efe0439747f913c9ea130b38a8fa1e69 c2165c07923995da42c760b74b88ffad2d7fc8d9 3a3f2f2ac1ed0df1f9c9e01313a03bcc6ee129a676603f6038aa0ae8fd54ac66 Loading...

	cf.bstatic.com/static/js/main_cloudfront_sd/37b0035f1b7ece069e7b9aa8f0a27b2fe25486cb.js	ScriptElement	1.0 kB	2025-04-14	2025-07-18
Pretty URL cf.bstatic.com/static/js/main_cloudfront_sd/37b0035f1b7ece069e7b9aa8f0a27b2fe25486cb.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-14 01:11 Last Seen2025-07-18 03:10 Times Seen59 Hash 115acf138e45676298eef77e21cda97c 98a118fa2158eb4347c7b2b6704bd75d6a4f2882 e94185acb72516e758a4c82033b521513175ee1a934ebe3d81bd6df2d59f4871 Loading...

	www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056	ScriptElement	779 B	2023-08-16	2025-07-18
Pretty URL www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056 IP 54.240.174.35 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-16 15:36 Last Seen2025-07-18 03:10 Times Seen434 Hash 4b8dbde331c64e81893943799e8ac5a8 2efbb44241a2728115429c7b1fb851b077671541 c1f5387d8f8cf23ad2bb62ca02fb1bbbbac5d530bcf8977cf1d7af051df7994b Loading...

	cf.bstatic.com/psb/capla/static/js/remoteEntry.1c54f543.client.js	ScriptElement	19 kB	2025-07-16	2025-07-18
Pretty URL cf.bstatic.com/psb/capla/static/js/remoteEntry.1c54f543.client.js IP 3.167.2.62 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-16 10:33 Last Seen2025-07-18 03:10 Times Seen24 Hash 3be8845ac7c1af5d942dd2f496af74bb 1d669791483879d6947fffd11cc183f19a716fbf cee78b75d24657c60c6ff8c291ae90623fa55f1ab01bb084886d7a52c421ec0e Loading...

HTTP Transactions (328)

URL IP Response Size

GET cf.bstatic.com/psb/capla/static/js/09fb2abd.b823bd4a.chunk.js

3.167.2.62

200 OK

38 kB

URL GET
cf.bstatic.com/psb/capla/static/js/09fb2abd.b823bd4a.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (37650)
Size
38 kB (37843 bytes)
Hash
e2c61f23d4638c12c4002206d1316fe2
14aa56c905098161f03298051a7a8ca9004689a6
b2da4d6298d571934ce54b8192ea9b40863ff571785613270e61f2c6a242fdf6

HTTP Headers

GET /psb/capla/static/js/09fb2abd.b823bd4a.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Fri, 04 Jul 2025 08:13:49 GMT
last-modified: Wed, 02 Jul 2025 07:23:31 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: e6fa63b709c411ffe7fc0bb8d5d385f9a8219597
x-amz-version-id: D8lFKPEEvSP9HzYjdTE4XJwr2esuc35v
server: AmazonS3
etag: W/"e2c61f23d4638c12c4002206d1316fe2"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: QyccboLycV4iC1cCbKS76rZ53CIsWBejZCJGD7yfIpTS5Ck9ptHqTQ==
age: 1191316
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/remoteEntry.59196bbe.client.js

3.167.2.62

200 OK

22 kB

URL GET
cf.bstatic.com/psb/capla/static/js/remoteEntry.59196bbe.client.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (21556)
Size
22 kB (21672 bytes)
Hash
f6987ced2c0f1cc0433928d61c40c894
54f74833166f78578f9faa5a79d0e0854d576cb8
1e5eae3c8e3bd7a341500da4dfea0a3f380d3d603b20829389285d6c85977998

HTTP Headers

GET /psb/capla/static/js/remoteEntry.59196bbe.client.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Fri, 04 Jul 2025 08:13:49 GMT
last-modified: Fri, 04 Jul 2025 08:03:26 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 890252a7e12f1e069abe371f061f59583608ebff
x-amz-version-id: m8VmoZPWtsdfLeFP_ylf71_bLV8hldOU
server: AmazonS3
etag: W/"f6987ced2c0f1cc0433928d61c40c894"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: IaKZWzZGWBFBqTPE4PyJyf6qiA35fPLTfne1Ms8oxhhK8N7geqhWuQ==
age: 1191316
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

POST www.booking.com/c360/v1/track

54.240.174.43

200 OK

61 B

URL POST
www.booking.com/c360/v1/track
IP
54.240.174.43:443
ASN
#16509 AMAZON-02

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.booking.com
Fingerprint40:C8:C7:99:E8:DF:B4:B7:80:45:6C:57:15:2A:09:28:16:A7:2B:BB
ValidityFri, 07 Mar 2025 00:00:00 GMT - Sat, 17 Jan 2026 23:59:59 GMT

File type
JSON text data
Size
61 B (61 bytes)
Hash
f6451349b31c7fc0ccc3666873368e0e
0c61c5086bde00308609f06935426faf3c3990e0
c22942829c1c8d00b50f4ef833a064ccddaf3952990790b59b81c76191fc1fe2

HTTP Headers

POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-Type: application/json
X-Booking-Platform: www
X-Booking-SiteType-Id: 1
X-Booking-Pageview-Id: c9c216276d7902f0
X-Booking-Session-Id: undefined
X-Booking-ET-Seed: undefined
X-Booking-AID: 818288
X-Booking-Label: undefined
X-Booking-CSRF: undefined
X-Booking-Language-Code: en-us
Content-Length: 1528
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBK6LEtX6%2Blc%2Ban7PyPDfWLhOYG59nPKJ5sRvc6jbe983fZcH3%2FORP31B8mGbj9FoEKzvHvxOKBNJ5I94HLp6whafkm4qwzGb%2BaO8x%2BsTFxIBq4g4d3bDTnZg4kCPcH5kuRjN69HM10x8OzlpSlkMipY39hijNbPue0%3D; pcm_personalization_disabled=0; bkng_sso_auth=CAIQ0+WGHxpmrqlfCI/7cj7WenmOuL5QxSn4u0pk06cV4xlrrrhmJKAb1FesYuKumLV4pSqW60W2NnCfEB+Pr3GDZ3i/aG465ACIGtpwXlBI9XDqnlhOkhTT7xUttessFF0wXrOKUtvFXd/bRD8o; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3De1046c70-f5fb-4ace-8c3b-1dcf67343057%26consentedAt%3D2025-07-18T03%3A09%3A02.576Z%26expiresAt%3D2026-01-14T03%3A09%3A02.576Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; cors_js=1; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 46
server: nginx
date: Fri, 18 Jul 2025 03:09:10 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
content-security-policy: default-src 'self'; frame-ancestors https://*.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbKE7bjkbYWzkd%2BwJK4Aig3FuCpVeMqbjSoEQaplBM6HbQQRFpHYwd7Gl0rnNKxgd14XO3m%2FZf%2Fyy8Is%2Fd%2FpH3ZtaFgeYuYqHi21fbeuZBRhfwgLsM3uPVxJfE4WWK76WWK08mWVZIluqJxPYsNqq8BBd4MPZ%2FB6FfctGCTB%2Br574%3D; domain=.booking.com; path=/; expires=Wed, 17-Jul-2030 03:09:10 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tV0FRkZFpIquokMu0X7UNkF96tntjZK5eIyYpPgs-gbn9fLcM0t0lg==
server-timing: cdn-upstream-layer;desc="REC",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=76,cdn-cache-miss,cdn-pop;desc="OSL50-P1",cdn-rid;desc="tV0FRkZFpIquokMu0X7UNkF96tntjZK5eIyYpPgs-gbn9fLcM0t0lg==",cdn-downstream-fbl;dur=113
X-Firefox-Spdy: h2

GET cf.bstatic.com/static/js/core-deps-inlinedet_cloudfront_sd/f62025e692b596dd53ecd1bd082dfd3197944c50.js

3.167.2.62

200 OK

50 kB

URL GET
cf.bstatic.com/static/js/core-deps-inlinedet_cloudfront_sd/f62025e692b596dd53ecd1bd082dfd3197944c50.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (50056)
Size
50 kB (50390 bytes)
Hash
b9b92709702a024ef42b3b28a93044de
9d36a09c1092e98016c9a6f99451cd5deadec15f
06a39f92929bd2d5accc4810a0c60d61ca3af941382090deefbffcb6a5f1b5d7

HTTP Headers

GET /static/js/core-deps-inlinedet_cloudfront_sd/f62025e692b596dd53ecd1bd082dfd3197944c50.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 14 Apr 2025 14:51:20 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
x-amz-version-id: yBru3FJ8KO8wEvhu7TmMO_w756MasIS4
server: AmazonS3
date: Fri, 18 Jul 2025 00:06:44 GMT
cache-control: public,max-age=604800
etag: W/"b9b92709702a024ef42b3b28a93044de"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 73LJSrajXDpxYhbJ-q7IdQoc8_1HAtrsFGZk__X2qIml_BSVShDJPw==
age: 10939
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cdn.cookielaw.org/scripttemplates/202501.2.0/otBannerSdk.js

104.18.87.42

200 OK

486 kB

URL GET
cdn.cookielaw.org/scripttemplates/202501.2.0/otBannerSdk.js
IP
104.18.87.42:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerGoogle Trust Services
Subjectcookielaw.org
FingerprintB4:92:0F:A3:FA:B1:B1:FE:2F:D7:62:60:14:C4:53:0B:E2:32:32:BA
ValidityWed, 04 Jun 2025 20:29:38 GMT - Tue, 02 Sep 2025 21:29:37 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
486 kB (485480 bytes)
Hash
8725a61a19f7da5377475744d6944dbf
069a09dff103370e91aaf975d88d784a51e3df80
1d27ccd19f622cbbdd6f0e31090b42ce30380ebf71f1f3dbbf36edf1749dd199

HTTP Headers

GET /scripttemplates/202501.2.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 18 Jul 2025 03:09:09 GMT
content-type: application/javascript
content-length: 116896
content-encoding: gzip
content-md5: 7ohBvyTFldZp6mryYih1pQ==
last-modified: Fri, 04 Apr 2025 09:20:34 GMT
etag: 0x8DD7359F49B3FFF
x-ms-request-id: 0c69896a-c01e-0055-5747-a578fd000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 79390
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: cloudflare
cf-ray: 960ec7549ddf0b49-OSL
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/css/5aeeadf2.4ed10ba6.chunk.css

3.167.2.62

200 OK

27 kB

URL GET
cf.bstatic.com/psb/capla/static/css/5aeeadf2.4ed10ba6.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (24470)
Size
27 kB (27095 bytes)
Hash
cb7ff0ce5e4d95bca2690f18355fdd3b
0f1c9221246e4423c8207b7d86590ab43124882f
8f7349ee168e97b0597ba7aebdb5857ecc2746765324eda0d6e5cc324dbe5ab2

HTTP Headers

GET /psb/capla/static/css/5aeeadf2.4ed10ba6.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Thu, 10 Jul 2025 12:15:19 GMT
last-modified: Wed, 02 Jul 2025 11:34:39 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: d274d0cd7081a0b7e78d06c47fb8ec8250154aab
x-amz-version-id: BSZDRm8Qn1lu_hyryj5mmrpYSqMvaRy8
server: AmazonS3
etag: W/"cb7ff0ce5e4d95bca2690f18355fdd3b"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: qrQpFStGntZ03HeQfvpRy7z03v3023zMwGMvgnq5J0fKrTXRpuJjjw==
age: 658432
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/438349362.webp?k=f67f0e7e54be1c0678f18cf9ae1271c4220a487901ae0bf906fed8ba0265e38d&o=

3.167.2.62

200 OK

48 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/438349362.webp?k=f67f0e7e54be1c0678f18cf9ae1271c4220a487901ae0bf906fed8ba0265e38d&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
48 kB (47648 bytes)
Hash
898fc96fa998fe265b9972c981cd78d0
50dff138df5fd61ef4dd82d2c38000215ecbb60f
7b5c29e16357049b21eb119c0af63c82f140fa88c3eaa5cd51892b84682cb732

HTTP Headers

GET /xdata/images/hotel/square600/438349362.webp?k=f67f0e7e54be1c0678f18cf9ae1271c4220a487901ae0bf906fed8ba0265e38d&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Wed, 09 Jul 2025 02:19:57 GMT
etag: "edb4586ffb67709845cf88b62baca6f7d5fe8ae6"
content-language: 47648
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: P4SmcZfzncflUHVhwpoz7Db7r_Lle77YpCEh97RgXAr7sfDldnrZLQ==
age: 780553
X-Firefox-Spdy: h2

GET cf.bstatic.com/static/css/gprof_icons_cloudfront_sd.iq_ltr/308436ca26aacf6a7553e4c0cf298d0f780727a2.css

3.167.2.62

200 OK

168 kB

URL GET
cf.bstatic.com/static/css/gprof_icons_cloudfront_sd.iq_ltr/308436ca26aacf6a7553e4c0cf298d0f780727a2.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
168 kB (167686 bytes)
Hash
92e47a8df838d6b56fa90a15fc819f01
1d18b91ba08b9c1b087e90bd75ed0c9be06e933c
7f118335cba8708a501c52368f885f1aef90e820ced4db29214b5a8ace6ad0ad

HTTP Headers

GET /static/css/gprof_icons_cloudfront_sd.iq_ltr/308436ca26aacf6a7553e4c0cf298d0f780727a2.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
last-modified: Mon, 14 Apr 2025 13:30:26 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
x-amz-version-id: 3TBmEZAk06N2MW_cCghh1Z.jmyhl5Ynr
server: AmazonS3
date: Thu, 17 Jul 2025 15:48:15 GMT
cache-control: public,max-age=604800
etag: W/"92e47a8df838d6b56fa90a15fc819f01"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 4I3OK-_9XFbwiVmN0JAnpwbqTqy5uoa6jzU3UXaNv32S8xyUGJTNXg==
age: 40849
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/98662660.webp?k=9706bb80a5303821587f70302a4ab357c4c82742bc3caa091d98fd6e5ea8df0f&o=

3.167.2.62

200 OK

42 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/98662660.webp?k=9706bb80a5303821587f70302a4ab357c4c82742bc3caa091d98fd6e5ea8df0f&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
42 kB (42264 bytes)
Hash
14ebe89fdcf2ecdd3e12eee0632a9790
01102c19d7ec6997dae7ca69a48434728d852aa4
f1133b06c00193cfb54ccf60f3a0e6ad2caad04db30e486f2a79ca128cd62ac4

HTTP Headers

GET /xdata/images/hotel/square600/98662660.webp?k=9706bb80a5303821587f70302a4ab357c4c82742bc3caa091d98fd6e5ea8df0f&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Sun, 13 Jul 2025 15:06:57 GMT
content-language: 42264
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "832591927922379091fba6ffe8d678ee775d3fce"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 6YUCcJPrqOBiJ-PwJ8sVGvVCI3Cw_oq9OYmEfKP5sHmhYePZZJ_trA==
age: 388933
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square240/563363608.jpg?k=695432bb13b3ec7b42fa6fff6234109d05780c87ba3d0c9d9dae86c8eebe42cf&o=

3.167.2.62

200 OK

13 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square240/563363608.jpg?k=695432bb13b3ec7b42fa6fff6234109d05780c87ba3d0c9d9dae86c8eebe42cf&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x240, components 3
Size
13 kB (12979 bytes)
Hash
0b40e5950690d836255054fd9fdbc2cb
ef9096b4d1e94438d294b9fc050aa66f7e9db47a
21829b4de31c1b6851a6b25cb8f100c5669e419834d138d0854f4bd5dbd25821

HTTP Headers

GET /xdata/images/hotel/square240/563363608.jpg?k=695432bb13b3ec7b42fa6fff6234109d05780c87ba3d0c9d9dae86c8eebe42cf&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Tue, 15 Jul 2025 07:13:17 GMT
content-language: 12979
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "320e06d45348333d595a952c1f95c960fe0ec47f"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: MPhPcXDxyVPbFW5_c2iYCiINcSTkABPfsMvtytxXIf3GgyCevywXHw==
age: 244553
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/css/5f127cf4.fa7f0425.chunk.css

3.167.2.62

200 OK

9.8 kB

URL GET
cf.bstatic.com/psb/capla/static/css/5f127cf4.fa7f0425.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (2480)
Size
9.8 kB (9824 bytes)
Hash
aa821e102ea55b2d96f15ce774456f4a
b67bee5d635073125259d8f19c5bb27489de88d9
88698896c440dda70a1e6c7a217ed4cde6253a04348ffed1e81a422a47c254ea

HTTP Headers

GET /psb/capla/static/css/5f127cf4.fa7f0425.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Fri, 04 Jul 2025 09:12:42 GMT
last-modified: Tue, 01 Jul 2025 14:11:14 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 8a3bc3823b834abf6fe2786815217da417ee5ba5
x-amz-version-id: rmVyeFTeUZYSFEE7YNSgFI.RBmgH8BwW
server: AmazonS3
etag: W/"aa821e102ea55b2d96f15ce774456f4a"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: JIVUduMMGVAUlnUyG2H_0n2xYJ-A-ydHXfxiZBxop8Oug7rwknqbpg==
age: 1187783
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET t-cf.bstatic.com/design-assets/assets/v3.160.0/illustrations-traveller/FreeCancellation.png

3.167.2.99

200 OK

10 kB

URL GET
t-cf.bstatic.com/design-assets/assets/v3.160.0/illustrations-traveller/FreeCancellation.png
IP
3.167.2.99:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
PNG image data, 179 x 120, 8-bit colormap, non-interlaced
Size
10 kB (10545 bytes)
Hash
c1098d1358c558cb2d9f8e97d071776c
bf0daafd925751bf3104437ba2176cdd2a77a53c
6792d6c297dab6456616c7763d98a6184d9580363ebefedefd0774b1840137e7

HTTP Headers

GET /design-assets/assets/v3.160.0/illustrations-traveller/FreeCancellation.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 10545
last-modified: Mon, 14 Jul 2025 09:13:31 GMT
x-amz-server-side-encryption: aws:kms
x-amz-server-side-encryption-aws-kms-key-id: arn:aws:kms:eu-west-2:339712873537:key/a7c9de2e-1f60-4f87-bbf7-dc4071c8d126
x-amz-version-id: Ny2GRHbFV51LbTDGfq6dBv6IkrW2KQsz
accept-ranges: bytes
server: AmazonS3
date: Thu, 17 Jul 2025 08:54:01 GMT
etag: "d69dc94471cab1d8b7c8780958e3a609"
x-cache: Hit from cloudfront
via: 1.1 50c588fd3255d023d9b9021263f5fa0a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: SGLwYBt6260n_kxHbb0rb_fXdRTVmJl9B3dzPJS2-0pWM3MkL7NdFw==
age: 65771
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET cdn.cookielaw.org/scripttemplates/otSDKStub.js

104.18.87.42

200 OK

26 kB

URL GET
cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP
104.18.87.42:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerGoogle Trust Services
Subjectcookielaw.org
FingerprintB4:92:0F:A3:FA:B1:B1:FE:2F:D7:62:60:14:C4:53:0B:E2:32:32:BA
ValidityWed, 04 Jun 2025 20:29:38 GMT - Tue, 02 Sep 2025 21:29:37 GMT

File type
JavaScript source, ASCII text, with very long lines (25883)
Size
26 kB (25884 bytes)
Hash
35a4393d72afbf6d792d3b0e46f465b6
eaac6f3ae34069fef360870e153cea826a04aa49
4215e325f4027a721673a4133b1e6574405e2fa0d136d78697bdb6579b21fca9

HTTP Headers

GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 18 Jul 2025 03:09:05 GMT
content-type: application/javascript
content-length: 8534
content-encoding: gzip
content-md5: OJN37q+midtuw5oVrOeX/g==
last-modified: Wed, 16 Jul 2025 15:49:09 GMT
etag: 0x8DDC4804DAD47D5
x-ms-request-id: cf5dd28f-201e-00fe-5c98-f6afef000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 76948
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: cloudflare
cf-ray: 960ec73fd84d0b49-OSL
X-Firefox-Spdy: h2

GET q-xx.bstatic.com/xdata/images/city/170x136/940208.jpg?k=2c5fdb9689e4e740419f8e4d03d89c64728655c4a85a0e61a35b0c5727825951&o=

3.167.2.62

0 B

URL GET
q-xx.bstatic.com/xdata/images/city/170x136/940208.jpg?k=2c5fdb9689e4e740419f8e4d03d89c64728655c4a85a0e61a35b0c5727825951&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /xdata/images/city/170x136/940208.jpg?k=2c5fdb9689e4e740419f8e4d03d89c64728655c4a85a0e61a35b0c5727825951&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

GET cf.bstatic.com/xdata/images/hotel/square240/438281707.jpg?k=67ebeb4d8ed20e701ecd729e4f91b71872afcb27211240a0b8af34640b22458e&o=

3.167.2.62

200 OK

7.9 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square240/438281707.jpg?k=67ebeb4d8ed20e701ecd729e4f91b71872afcb27211240a0b8af34640b22458e&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x240, components 3
Size
7.9 kB (7923 bytes)
Hash
0f7f22a0b18c90bfefa4acfccb507d7e
0f18babdfdcfaafa34636e2bdae1c698adc19e57
bbc86ce2d63eb48b8154337f9291e6bd8c9225c9dab4e829f2c8a6414a51c499

HTTP Headers

GET /xdata/images/hotel/square240/438281707.jpg?k=67ebeb4d8ed20e701ecd729e4f91b71872afcb27211240a0b8af34640b22458e&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
content-length: 7923
server: nginx
date: Thu, 17 Jul 2025 15:45:48 GMT
content-language: 7923
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "57b2d559b2e48fd829dfd4120f92b3524d001334"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: xJts5t1lzJGxZrCtwA6z_FzGNRgrT-Voa8ls60yPl1iGdFYbLl1jsQ==
age: 41002
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/css/31e40d2f.89fb3e8e.chunk.css

3.167.2.62

200 OK

627 B

URL GET
cf.bstatic.com/psb/capla/static/css/31e40d2f.89fb3e8e.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text
Size
627 B (627 bytes)
Hash
eee4f6ab52c26ffd569c5bdd31dcf805
32d3089425790e6dac8607202b6300897b380732
504c9913f9b5519b10d93c2a555e2f268a930294f61b8906427d26e34af8e6cc

HTTP Headers

GET /psb/capla/static/css/31e40d2f.89fb3e8e.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
content-length: 627
date: Tue, 20 May 2025 12:12:51 GMT
last-modified: Tue, 20 May 2025 11:59:12 GMT
etag: "eee4f6ab52c26ffd569c5bdd31dcf805"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: fd53e8c4d9ec79647faef3f520f03c3cfe725f40
x-amz-version-id: Dy3_vMRqnidLMMnR7ckapFplqvKzw78U
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: Y_XoFjBOpabzf60OKYuGdJh6fwGOinhcx4a-xnz3GeHfojbgA3Diug==
age: 5064974
timing-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/18cad957.dd2c2166.chunk.js

3.167.2.62

200 OK

84 kB

URL GET
cf.bstatic.com/psb/capla/static/js/18cad957.dd2c2166.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65455)
Size
84 kB (83972 bytes)
Hash
237d45f2f73961254cf6aa4808524956
694964b825128112ba2a9c41ef5b8500f62d2daa
7f9c0fa96de8c0f3c140383d26073fe678ba359a0ae8c152b858cc58b83b0a80

HTTP Headers

GET /psb/capla/static/js/18cad957.dd2c2166.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Mon, 07 Jul 2025 17:19:35 GMT
last-modified: Mon, 07 Jul 2025 13:05:12 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: add3b00aa711891475f6213c75cfaad888f19d1d
x-amz-version-id: nfL_b4xb7zngx3wFDGVlXPLk2NY66ABo
server: AmazonS3
etag: W/"237d45f2f73961254cf6aa4808524956"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: U1_rrOuIyPR89Kx-0mTAoISoNIn4TE-9_JZrPz5WuCzekzdWgNuQ0w==
age: 899370
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/d0625f39.2c8349c9.chunk.js

3.167.2.62

200 OK

305 kB

URL GET
cf.bstatic.com/psb/capla/static/js/d0625f39.2c8349c9.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65455)
Size
305 kB (304934 bytes)
Hash
3d894ae051408c938d532475e29d6c7d
5edd51e40b6063a66bff7308bef303ba9e7a16ec
ea16be14431976a9617369360b04546d1b2089610f25dbd0cac8a4ee08c9d5a6

HTTP Headers

GET /psb/capla/static/js/d0625f39.2c8349c9.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Thu, 17 Jul 2025 14:12:04 GMT
last-modified: Thu, 17 Jul 2025 13:37:58 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: e829eaea6cb5b2d54f4c2f4114f48aed7ed0efe0
x-amz-version-id: jSTpFEhI4uu0pTZZewUCxhgdoJtCx4xr
server: AmazonS3
etag: W/"3d894ae051408c938d532475e29d6c7d"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: LIE2cWP-RXKdfm0qAKm0bSD9fB4V4uPC3a_wfrB0b3FlntaSTn7Zeg==
age: 46621
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET t-cf.bstatic.com/design-assets/assets/v3.109.6/fonts-brand/BookingRegular.woff

3.167.2.99

200 OK

40 kB

URL GET
t-cf.bstatic.com/design-assets/assets/v3.109.6/fonts-brand/BookingRegular.woff
IP
3.167.2.99:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
Web Open Font Format, TrueType, length 40120, version 2.0
Size
40 kB (40120 bytes)
Hash
f2953af89807609f49b87237180bb450
bcef01e9e586a9a6c567602272c1a7955b77b0ca
b02a3f6dfeb4ebf05d30eaecc8473664f1720190639cbfe43b2a7f9a00246e56

HTTP Headers

GET /design-assets/assets/v3.109.6/fonts-brand/BookingRegular.woff HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://cf.bstatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: font/woff
content-length: 40120
last-modified: Thu, 20 Jun 2024 10:27:23 GMT
x-amz-server-side-encryption: aws:kms
x-amz-server-side-encryption-aws-kms-key-id: arn:aws:kms:eu-west-2:339712873537:key/a7c9de2e-1f60-4f87-bbf7-dc4071c8d126
x-amz-version-id: CC7pwYm6ow0KnTc177cwhT3Fc45l2mqR
accept-ranges: bytes
server: AmazonS3
date: Fri, 18 Jul 2025 01:20:24 GMT
etag: "7a0540705b2c49171b9f9feb6d3cfded"
x-cache: Hit from cloudfront
via: 1.1 50c588fd3255d023d9b9021263f5fa0a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: SWs_yZZOzpfYaV1WEymlZVHnAznlV9jRCtCkHndR1frf-7L_3GiRxQ==
age: 6522
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET r-xx.bstatic.com/xdata/images/hotel/263x210/595549239.jpeg?k=ad5273675c516cc1efc6cba2039877297b7ad2b5b3f54002c55ea6ebfb8bf949&o=

3.167.2.62

200 OK

13 kB

URL GET
r-xx.bstatic.com/xdata/images/hotel/263x210/595549239.jpeg?k=ad5273675c516cc1efc6cba2039877297b7ad2b5b3f54002c55ea6ebfb8bf949&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3
Size
13 kB (13185 bytes)
Hash
b74923a6a5fbb135a8d5406906ce355d
a9404b16b93b7bd2dca39eb1788526fa8fd2eb6d
50d86f2ab7121a780368030f1b20d1f397490a0776bb2255818056882da436cb

HTTP Headers

GET /xdata/images/hotel/263x210/595549239.jpeg?k=ad5273675c516cc1efc6cba2039877297b7ad2b5b3f54002c55ea6ebfb8bf949&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Fri, 04 Jul 2025 13:16:55 GMT
content-language: 13185
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "ab2d63721c5a160ac8568aeabb6a9517fd414f59"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 9xsXcA1eWqdKDO3LC31sSWFeufag6tvtPwvhAGmp_AJloO9xZBde8g==
age: 1173134
X-Firefox-Spdy: h2

GET cf.bstatic.com/static/css/incentives_cloudfront_sd.iq_ltr/f1558a6e9832a4eb8cfe1d3d14db176bd3564335.css

3.167.2.62

200 OK

7.1 kB

URL GET
cf.bstatic.com/static/css/incentives_cloudfront_sd.iq_ltr/f1558a6e9832a4eb8cfe1d3d14db176bd3564335.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (7107), with no line terminators
Size
7.1 kB (7107 bytes)
Hash
f841b7b83eae48fbf4574d3c0d53f4c3
e104126e57648ff6d51bf6ade1357bc03cb500c5
0a5447d9be398da3541fe01668f81b332fd26812c2842aa53deb5c7883d58f73

HTTP Headers

GET /static/css/incentives_cloudfront_sd.iq_ltr/f1558a6e9832a4eb8cfe1d3d14db176bd3564335.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
last-modified: Mon, 14 Apr 2025 13:30:40 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
x-amz-version-id: .v8ommVywLygAXrKONIx0ZrJc7XEa6Nx
server: AmazonS3
date: Thu, 17 Jul 2025 19:10:24 GMT
cache-control: public,max-age=604800
etag: W/"f841b7b83eae48fbf4574d3c0d53f4c3"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: deldwzyQV-ux68QmTL62yEoFxbwSQit2vAww2bfkXhq3Gaw2K0XWpQ==
age: 28720
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/css/27bbaa9c.006df240.chunk.css

3.167.2.62

200 OK

1.1 kB

URL GET
cf.bstatic.com/psb/capla/static/css/27bbaa9c.006df240.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (894)
Size
1.1 kB (1134 bytes)
Hash
56d240a03e052247e24747047d4b7496
a8db029c86e0f5068976203165b73024e9a4c626
68ce9426b2a692a731e06ce6d4a21de25b52bff5aa71b452b1dfca2cf30d8531

HTTP Headers

GET /psb/capla/static/css/27bbaa9c.006df240.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Mon, 30 Jun 2025 13:39:58 GMT
last-modified: Thu, 12 Jun 2025 15:26:54 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: e58e8446f21bfbee8a6a1e4a8a3dad398870fcb7
x-amz-version-id: ilzbdPv2AbI3KDPawbgTqJ0EJS7kYnSk
server: AmazonS3
etag: W/"56d240a03e052247e24747047d4b7496"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: dXySHJkAm2ohj323EeM-qCWSW-jgseehRUPlCFojtDwz2TqWjZHKhQ==
age: 1517347
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square240/657396070.jpg?k=c4696a30c3145971b99f2a13e041f2726fa502ad499f5468e567cfcb9bfe7efa&o=

3.167.2.62

200 OK

13 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square240/657396070.jpg?k=c4696a30c3145971b99f2a13e041f2726fa502ad499f5468e567cfcb9bfe7efa&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x240, components 3
Size
13 kB (12927 bytes)
Hash
a26a5bf97772518ce5d0e40f94bc3b40
5d3c5a292b5dd9901e3a0a34a3037843817c8a07
290948d61a146716b33b1cf2090b43c6efcfd5a654beba8ee72bd18e6774f1e2

HTTP Headers

GET /xdata/images/hotel/square240/657396070.jpg?k=c4696a30c3145971b99f2a13e041f2726fa502ad499f5468e567cfcb9bfe7efa&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Sun, 13 Jul 2025 11:40:16 GMT
content-language: 12927
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "5b423596a87be8ba60f9e8b8308bf96e5d40ce5f"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: XbjHC5Kb0jeGg_wV5xVzEo29AxZADRKkq8bEfB6l3nSK6mlZZJ0DxQ==
age: 401334
X-Firefox-Spdy: h2

GET cf.bstatic.com/static/css/fonticons_clean/base64/woff/5d61b8a7156073e5e3e9741f65dda44ae3eef7d2.css

3.167.2.62

200 OK

227 kB

URL GET
cf.bstatic.com/static/css/fonticons_clean/base64/woff/5d61b8a7156073e5e3e9741f65dda44ae3eef7d2.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (65487)
Size
227 kB (226735 bytes)
Hash
cad5fe4c499f7568e14e7ab6ff9b3361
7cf66966b26c499b535efd53c77f65df7da14338
83f4228d1d92171186e8b8ccce6e69b32ad6b322db4af7e4b6f54ce50e299587

HTTP Headers

GET /static/css/fonticons_clean/base64/woff/5d61b8a7156073e5e3e9741f65dda44ae3eef7d2.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
last-modified: Mon, 14 Apr 2025 13:30:19 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
x-amz-version-id: A._gVlRv8DVNh8ZowfQAeMa53IqmbCtR
server: AmazonS3
date: Thu, 17 Jul 2025 18:17:03 GMT
cache-control: public,max-age=604800
etag: W/"cad5fe4c499f7568e14e7ab6ff9b3361"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: eynCdRrqDV3AL0zdDihgWoJBh6Yyspkvc7dsaaT8Ar5_udROpxGIJg==
age: 31927
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/109319008.webp?k=5170e41a9f38e078ccee474236146034f69df6c0ddb91f1484cb733a5ab0e028&o=

3.167.2.62

200 OK

75 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/109319008.webp?k=5170e41a9f38e078ccee474236146034f69df6c0ddb91f1484cb733a5ab0e028&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
75 kB (74886 bytes)
Hash
a8488a4106475acd76fbd82af223872b
e6f8cfaaf9c7089050fcf2323a9eb3b34262dd0b
43397e2355065f1f88396347127662a334933ef16ac4353dae7705663ab024a2

HTTP Headers

GET /xdata/images/hotel/square600/109319008.webp?k=5170e41a9f38e078ccee474236146034f69df6c0ddb91f1484cb733a5ab0e028&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Wed, 09 Jul 2025 12:40:35 GMT
content-language: 74886
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "d0edceef4e6a18cdaa5ae0d8144e1bacaa2c4187"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 1ioCGd91KUsCRDuAFdOan-IBirHO8fwTnVu4rM9elkGho9R2WIU2eA==
age: 743315
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/css/97a643cd.b862afad.chunk.css

3.167.2.62

200 OK

3.1 kB

URL GET
cf.bstatic.com/psb/capla/static/css/97a643cd.b862afad.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (2993)
Size
3.1 kB (3110 bytes)
Hash
99e9c01d2a6f68484b4997ecb027c471
2b85a12a36ba0886bafd6722870956162ac84cf8
997158a429dee73a962d61dfd525bfa60d5504a3bf64d37c0bd0b1ac956ad6a7

HTTP Headers

GET /psb/capla/static/css/97a643cd.b862afad.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Wed, 21 May 2025 11:53:53 GMT
last-modified: Wed, 21 May 2025 11:47:11 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: f72699b40fce97f23a35ec4c11f955c7c3274330
x-amz-version-id: shAkpuZqng4rQVS_.4qPMSQFZai8NZAi
server: AmazonS3
etag: W/"99e9c01d2a6f68484b4997ecb027c471"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: lBAFD7P8P1MEInhvC6A-RfuJnvBfPG31RpqBLJH4wNn9AWpOCB9lTA==
age: 4979712
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/css/c62ef267.c81062c1.chunk.css

3.167.2.62

200 OK

5.9 kB

URL GET
cf.bstatic.com/psb/capla/static/css/c62ef267.c81062c1.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (1227)
Size
5.9 kB (5905 bytes)
Hash
b741e9954940d83e0bc1402d4a2bd1b6
aabe514880efb2445ee7bd4a2eabec35036a425e
6eb9a134d0aa8a334b246ffc6272aa10e515f9755877761c48ac405f46314ce7

HTTP Headers

GET /psb/capla/static/css/c62ef267.c81062c1.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Mon, 14 Jul 2025 13:27:43 GMT
last-modified: Mon, 14 Jul 2025 08:43:18 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 105c281e5639f5ad04cebbaacef2e8b0ba285a26
x-amz-version-id: aL6bQVk15QWZu1_zQKUBDq1d.iPXKrK2
server: AmazonS3
etag: W/"b741e9954940d83e0bc1402d4a2bd1b6"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: I4LQsiF-WDbQ0hsp81WLj1o0fgeqTTwSvhX6UiH5V7onvCgtFSa_og==
age: 308482
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/css/18cad957.23138e79.chunk.css

3.167.2.62

200 OK

354 B

URL GET
cf.bstatic.com/psb/capla/static/css/18cad957.23138e79.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text
Size
354 B (354 bytes)
Hash
7adc8f2f75960ded79ab1b07b009e263
1be198a55587b11c277f15e3dba2db17a6803b88
955f652902c1fcedf539aa87ec36497bd847a371d3266e16214cd4880f858cc8

HTTP Headers

GET /psb/capla/static/css/18cad957.23138e79.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
content-length: 354
date: Thu, 01 May 2025 10:02:23 GMT
last-modified: Thu, 01 May 2025 09:24:57 GMT
etag: "7adc8f2f75960ded79ab1b07b009e263"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 7bad2575a1c34f067c2a74962a306190fcc8a799
x-amz-version-id: LVAuZCfqKD1PJL7pfnthxY1Bu.s8JGXU
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: u7rzeJw_cXG4TXS36acevb8DaLUhUqmOKqRzOAiPb-xHfoLzv3R25A==
age: 6714402
timing-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/remoteEntry.24fc1e0a.client.js

3.167.2.62

200 OK

24 kB

URL GET
cf.bstatic.com/psb/capla/static/js/remoteEntry.24fc1e0a.client.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (23795)
Size
24 kB (23911 bytes)
Hash
5c8179ca4ab9b9d5c2e2983e74025d98
c807b5b5f616eba476196b092c2db510ef8a6bf8
59d30af078d75d614a9842bc7d936c08746229e5ce7808f07d13040e422798ec

HTTP Headers

GET /psb/capla/static/js/remoteEntry.24fc1e0a.client.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Mon, 14 Jul 2025 12:11:45 GMT
last-modified: Mon, 14 Jul 2025 11:50:02 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 2cf6ccf59eb2cfa41cebd299e1c1b2f27ceb4d01
x-amz-version-id: BbdzTBulhxP.Mld.zT8yvXIMtyc_1ks3
server: AmazonS3
etag: W/"5c8179ca4ab9b9d5c2e2983e74025d98"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: ep0TQCMP8Zl6borkSgabkxu4_wG69GxOwU1htrLpkJufYEec2vjrJg==
age: 313040
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/node_modules_bookingcom_bui-react_components_Tab_Tab_context_js-_1b311.c5846fae.js

3.167.2.62

200 OK

786 B

URL GET
cf.bstatic.com/psb/capla/static/js/node_modules_bookingcom_bui-react_components_Tab_Tab_context_js-_1b311.c5846fae.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (618)
Size
786 B (786 bytes)
Hash
b6d6013418424f5f05d48fa41d808e03
e1e59831e5b077a60608a4f218e4f82271bb807e
02267d2c9c4df0668bd79bbfbdda5ad6592f8ca96e6418fcbb9650ef53b7063d

HTTP Headers

GET /psb/capla/static/js/node_modules_bookingcom_bui-react_components_Tab_Tab_context_js-_1b311.c5846fae.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
content-length: 786
date: Tue, 15 Jul 2025 13:28:21 GMT
last-modified: Tue, 15 Jul 2025 07:45:34 GMT
etag: "b6d6013418424f5f05d48fa41d808e03"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: dc007423c1c3d334ee9579a86344a07d02da168b
x-amz-version-id: vkb9GgBxHOY3gReG3pK_JLWrFyclPk_J
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: yS09JNYLuFLD7w9HR7HaI2mK-3KhjJS_8qqdUAE9FTEMwJ_L9BCdtQ==
age: 222046
timing-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/95058977.webp?k=ab4cc65897bb205dbcefd7a656cb3a811ce2b5b3135ca61c38860db146d96243&o=

3.167.2.62

200 OK

51 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/95058977.webp?k=ab4cc65897bb205dbcefd7a656cb3a811ce2b5b3135ca61c38860db146d96243&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
51 kB (50806 bytes)
Hash
de5522ee3c863c8dec3acd8864dc4dac
2b5674ba0b9a89f78c2eaa9af6e622d69e308d3a
e95fa23aa76c901d70c37d171032377e91c376c83d64b23625aef9242aa355ea

HTTP Headers

GET /xdata/images/hotel/square600/95058977.webp?k=ab4cc65897bb205dbcefd7a656cb3a811ce2b5b3135ca61c38860db146d96243&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Sat, 12 Jul 2025 15:51:21 GMT
etag: "02abbb2f1194ceff388b105754f908b46eed776e"
content-language: 50806
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: sTSjDMyQXABzXFEZsNZxLaWt82KdU-nim5BJL7WfeOWlo7hTAazW_w==
age: 472669
X-Firefox-Spdy: h2

GET cf.bstatic.com/static/js/crossorigin_check_cloudfront_sd/2454015045ef79168d452ff4e7f30bdadff0aa81.js

3.167.2.62

200 OK

95 B

URL GET
cf.bstatic.com/static/js/crossorigin_check_cloudfront_sd/2454015045ef79168d452ff4e7f30bdadff0aa81.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
95 B (95 bytes)
Hash
335be8900580e9c3875dba57334294ae
a86597d2ddfa410df13bceca86fdf9a2291fe798
8a882fd19a15567e53a5c3c08d22cdab714fa87734ed92d854c4e8fdf3940b1f

HTTP Headers

GET /static/js/crossorigin_check_cloudfront_sd/2454015045ef79168d452ff4e7f30bdadff0aa81.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
content-length: 95
last-modified: Mon, 14 Apr 2025 14:51:20 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: hWJCg0YpdwzuQMzYVd.lSLn6uUmdSDmp
accept-ranges: bytes
server: AmazonS3
date: Thu, 17 Jul 2025 15:08:43 GMT
cache-control: public,max-age=604800
etag: "335be8900580e9c3875dba57334294ae"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: kWn9LbUclag4NlHwymAY4K3hsIn_vat_PftcEE5vbeIJu3P747aa6g==
age: 43221
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/static/js/landingpage_cloudfront_sd/52022cbcf28f76b867eb292ea5c707c205994fdd.js

3.167.2.62

200 OK

347 kB

URL GET
cf.bstatic.com/static/js/landingpage_cloudfront_sd/52022cbcf28f76b867eb292ea5c707c205994fdd.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (51645)
Size
347 kB (346972 bytes)
Hash
cf640f0033fd05079684d0e716af1f01
af51181dac443c75f691b3fa624f968064cef555
72d96a2affde2d0f303cc6792734483391a3fdecc2b63e6fd55bb33c9480619e

HTTP Headers

GET /static/js/landingpage_cloudfront_sd/52022cbcf28f76b867eb292ea5c707c205994fdd.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 14 Apr 2025 14:51:31 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
x-amz-version-id: 5i1gXQ2YG4lCnj.Dm.an5J11H4.IezcR
server: AmazonS3
date: Fri, 11 Jul 2025 17:13:13 GMT
cache-control: public,max-age=604800
etag: W/"cf640f0033fd05079684d0e716af1f01"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 9zHCehmIyuoThA-MnjkAEoidRFhV58MoPLO2wN9QIe7I-bX3x8jwZA==
age: 554151
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/5b1239aa.1fb160bb.chunk.js

3.167.2.62

200 OK

61 kB

URL GET
cf.bstatic.com/psb/capla/static/js/5b1239aa.1fb160bb.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (61134)
Size
61 kB (61327 bytes)
Hash
275ff863f41bddf7f9a84a59fff82bb9
dfe9a3162fa3a220f8f6912f935303dbd239edaa
a05c125744bb727e5d4a23d26ba31a1c44db8acdb6906c6695dfd2f8e62f80d9

HTTP Headers

GET /psb/capla/static/js/5b1239aa.1fb160bb.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Thu, 17 Jul 2025 14:12:04 GMT
last-modified: Thu, 17 Jul 2025 13:37:57 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: e829eaea6cb5b2d54f4c2f4114f48aed7ed0efe0
x-amz-version-id: nQUNFwh3LXxbBzQIUWZ9_BsFEEcYChnI
server: AmazonS3
etag: W/"275ff863f41bddf7f9a84a59fff82bb9"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: DBb4ZUZMiZ4ZQqgvCheZ2JYHwap-Bkrk83YGa8VsXE3sZTVCEkJctQ==
age: 46621
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/static/img/favicon/4a3b40c4059be39cbf1ebaa5f97dbb7d150926b9.png

3.167.2.62

200 OK

3.3 kB

URL GET
cf.bstatic.com/static/img/favicon/4a3b40c4059be39cbf1ebaa5f97dbb7d150926b9.png
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
Size
3.3 kB (3323 bytes)
Hash
799af703ff428e33a7db434613c9c030
75648638d71e25179744da725db599612e6d983e
6d71962600b1166ed95cf3f5af9298da2d3cd134466350b41202eb1dd17447c8

HTTP Headers

GET /static/img/favicon/4a3b40c4059be39cbf1ebaa5f97dbb7d150926b9.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 3323
last-modified: Mon, 14 Apr 2025 14:47:42 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: LJm2Gegt6OfCaFcUW0NuKAACTqTRGcp2
accept-ranges: bytes
server: AmazonS3
date: Mon, 14 Jul 2025 17:20:37 GMT
cache-control: public,max-age=604800
etag: "799af703ff428e33a7db434613c9c030"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: QdYlS_C4CotagR_x0Vy4eR93xQ9ynCgEFxc-s86blu_gLvQh7QRlSQ==
age: 294509
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET q-xx.bstatic.com/xdata/images/city/170x136/967864.jpg?k=a98989bf56eeff2512cea0b0f4ec6aae0906b781cfb154d0cc574e906b8da18b&o=

3.167.2.62

200 OK

4.1 kB

URL GET
q-xx.bstatic.com/xdata/images/city/170x136/967864.jpg?k=a98989bf56eeff2512cea0b0f4ec6aae0906b781cfb154d0cc574e906b8da18b&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3
Size
4.1 kB (4062 bytes)
Hash
24ee7c3511b2915ebf7cfd1ea1ec453f
36ab0e8a9940439ade7531eed218115c9048a3e2
e1d15a3f6846e2f65104101dfa58c50a94a2584e1a0a789b23748cabd7fcf622

HTTP Headers

GET /xdata/images/city/170x136/967864.jpg?k=a98989bf56eeff2512cea0b0f4ec6aae0906b781cfb154d0cc574e906b8da18b&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
content-length: 4062
server: nginx
date: Fri, 27 Jun 2025 08:40:35 GMT
content-language: 4062
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "2a2dfed680c3e471aff1f9c53b18abd67c3291cc"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: QKmY-fHtLRBITFtjIP8_Us9OBTDYW-81Y0W6Jo7kk0ZvXZPVQU8q6g==
age: 1794515
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/286573218.webp?k=b4287a4f02fc1d676009d16ebf5243df76493eeacebff3e12561b51d4a2fc675&o=

3.167.2.62

200 OK

68 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/286573218.webp?k=b4287a4f02fc1d676009d16ebf5243df76493eeacebff3e12561b51d4a2fc675&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
68 kB (67956 bytes)
Hash
e2b858be6b241298e492ff3284fd6683
63ba81ec4c118b5858c04aceee9090ef8c15ce36
aa13f5b7107803e252d6741bc3a65df152897f32190e6876a63b82791fe414ab

HTTP Headers

GET /xdata/images/hotel/square600/286573218.webp?k=b4287a4f02fc1d676009d16ebf5243df76493eeacebff3e12561b51d4a2fc675&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Tue, 15 Jul 2025 08:33:45 GMT
content-language: 67956
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "02fd526087bb82246f3218c13dc8d70cc7758f9a"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: pkeFmD4qSIfznZgumCKCWCdzR5T2WS71kXAkqth91cuF2MF73NOrxA==
age: 239725
X-Firefox-Spdy: h2

GET t-cf.bstatic.com/design-assets/assets/v3.109.6/fonts-brand/BookingBold.woff

3.167.2.99

200 OK

42 kB

URL GET
t-cf.bstatic.com/design-assets/assets/v3.109.6/fonts-brand/BookingBold.woff
IP
3.167.2.99:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
Web Open Font Format, TrueType, length 41976, version 2.0
Size
42 kB (41976 bytes)
Hash
b2ca1822b16a92e0a0111c994cfe4b8a
ad3bf01829f003d1e837fdae30b97e4911528c0f
12269c2adb9da8c73e2d8e5628566e4662720bdff4687c3bd6190571ff8c3b05

HTTP Headers

GET /design-assets/assets/v3.109.6/fonts-brand/BookingBold.woff HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://cf.bstatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: font/woff
content-length: 41976
last-modified: Thu, 20 Jun 2024 10:27:23 GMT
x-amz-server-side-encryption: aws:kms
x-amz-server-side-encryption-aws-kms-key-id: arn:aws:kms:eu-west-2:339712873537:key/a7c9de2e-1f60-4f87-bbf7-dc4071c8d126
x-amz-version-id: CZqD4TH6fmCMGcr7fUn6buhDkXSc1F9D
accept-ranges: bytes
server: AmazonS3
date: Fri, 18 Jul 2025 00:18:21 GMT
etag: "7fa64c476ec2933afc05cef1b0cb16bd"
x-cache: Hit from cloudfront
via: 1.1 50c588fd3255d023d9b9021263f5fa0a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: FHy0ZMwOj8lPaSH17OSYdA2VOtqO_XK3WljoVlapE6V3gzslVjGlmg==
age: 10245
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

POST www.booking.com/dml/graphql?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056&lang=en-us

54.240.174.43

200 OK

14 kB

URL POST
www.booking.com/dml/graphql?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056&lang=en-us
IP
54.240.174.43:443
ASN
#16509 AMAZON-02

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.booking.com
Fingerprint40:C8:C7:99:E8:DF:B4:B7:80:45:6C:57:15:2A:09:28:16:A7:2B:BB
ValidityFri, 07 Mar 2025 00:00:00 GMT - Sat, 17 Jan 2026 23:59:59 GMT

File type
JSON text data
Size
14 kB (14231 bytes)
Hash
9b356e42338f7076240099e084bdea04
bc5647c6db3c5c647962589d0e69bbf092fcd594
54b92e33585abd5134059b50b408b12e9d746694db0a6eba36069ba79582f374

HTTP Headers

POST /dml/graphql?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056&lang=en-us HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
apollographql-client-name: b-index-lp-web-mfe_rust
apollographql-client-version: dRdeWbLD
content-type: application/json
x-booking-context-action: index
x-booking-context-action-name: index
x-booking-context-aid: 818288
x-booking-csrf-token: eyJhbGciOiJIUzUxMiJ9.eyJpc3MiOiJjb250ZXh0LWVucmljaG1lbnQtYXBpIiwic3ViIjoiY3NyZi10b2tlbiIsImlhdCI6MTc1MjgwODE0MiwiZXhwIjoxNzUyODk0NTQyfQ.xS11JNvmqKBXkVmuhkXG3t17-GUe1mh5o3pg4gYiiDXvogmseaA4OTwTBg1UmcoAOXOrKtOmXrztH07Zg8LiMg
x-booking-dml-cluster: rust
x-booking-et-serialized-state: EZC0me3pHIwv-yYtQGQUdHMaUQ3rRxsio5-cDr4cc3Ohkp_KG_12HWFDp-raNqwOx
x-booking-pageview-id: c9c216276d7902f0
x-booking-site-type-id: 1
x-booking-timeout-budget-ms: 1500
x-booking-timeout-ms: 1500
x-booking-topic: capla_browser_b-index-lp-web-mfe
x-envoy-expected-rq-timeout-ms: 1500
Content-Length: 2505
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbbmD9q%2B5pe3Wdm0%2ByPGMsC1KujF5qCxhD8YztvAVkXTtTK0o2BJL7F%2Bm3G%2B0LUoeb7oHjlToVOeSl2nusn8juTZHyyu6%2FR9iuocOLfIsseh%2FgKV8BAd3zXuypAMgTO3s9O7%2BJaalVmnaHvhjhgEMcSuloTu1oNh%2FT; pcm_personalization_disabled=0; bkng_sso_auth=CAIQ0+WGHxpmrqlfCI/7cj7WenmOuL5QxSn4u0pk06cV4xlrrrhmJKAb1FesYuKumLV4pSqW60W2NnCfEB+Pr3GDZ3i/aG465ACIGtpwXlBI9XDqnlhOkhTT7xUttessFF0wXrOKUtvFXd/bRD8o; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3De1046c70-f5fb-4ace-8c3b-1dcf67343057%26consentedAt%3D2025-07-18T03%3A09%3A02.576Z%26expiresAt%3D2026-01-14T03%3A09%3A02.576Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; cors_js=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 3280
server: nginx
date: Fri, 18 Jul 2025 03:09:09 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbof7CEiNviT%2FmHzmabJf1QRO3uAgXsNtQkWimMFHFQuatEB3LB2RjykckdLZP6n83rQjqLGB%2BpcJVt5sAvZmDLfGb2BSPcs5S9shHp9XSfoxdGWmVioqfqNKgbXTOEnfKr3eSrhmvsT%2Bhh0OiQ2uzTN%2BkwN8YECJ6IFwyb1CB2OQ%3D; domain=.booking.com; path=/; expires=Wed, 17-Jul-2030 03:09:09 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0cKDyc_NCKTtg9kKG35aJivAumPo60qUIErq6VDgLLC59rYZFFJ5Dw==
server-timing: cdn-upstream-layer;desc="REC",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=164,cdn-cache-miss,cdn-pop;desc="OSL50-P1",cdn-rid;desc="0cKDyc_NCKTtg9kKG35aJivAumPo60qUIErq6VDgLLC59rYZFFJ5Dw==",cdn-downstream-fbl;dur=214
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/671392417.webp?k=57e013e0d2dde6f920bedddebc9aae93f8c43119639c0b5b7c597c215a959aa8&o=

3.167.2.62

200 OK

131 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/671392417.webp?k=57e013e0d2dde6f920bedddebc9aae93f8c43119639c0b5b7c597c215a959aa8&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
131 kB (131108 bytes)
Hash
151f6fffc3d3a6d08fd8800dac9fd2d2
50971b2a52d71d60d4145192f1af8283e1574177
e322e7de09eab6cb2a26e1ac8f99cd78c1de137c92f3c33a13b7984744ed1151

HTTP Headers

GET /xdata/images/hotel/square600/671392417.webp?k=57e013e0d2dde6f920bedddebc9aae93f8c43119639c0b5b7c597c215a959aa8&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Mon, 07 Jul 2025 07:16:14 GMT
etag: "03cd2bcedff2aae4913f151c90038d2445cfdaea"
content-language: 131108
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: XQsk1IT9jz4Z6J0HAe5Aef_d2D5cm1i6_maQhc563uRLSAJtJvZljQ==
age: 935576
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/598830f4.20b587a2.chunk.js

3.167.2.62

200 OK

1.2 MB

URL GET
cf.bstatic.com/psb/capla/static/js/598830f4.20b587a2.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
1.2 MB (1203131 bytes)
Hash
764bef344fb50882f30a1779b34dfeaf
b15880679520426bbb275bd27ab69f18ac758aed
6c96ef98833061ffa4efb3d1441e49f6961be16e4a446b3c71f7815c9ea577f1

HTTP Headers

GET /psb/capla/static/js/598830f4.20b587a2.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Thu, 17 Jul 2025 14:13:06 GMT
last-modified: Thu, 17 Jul 2025 10:48:14 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 61781097949b6c11d1eb2e43cbbc724d1c024b46
x-amz-version-id: 7B8UnsIcv45rKqUCGn078NxyCq1kKmXl
server: AmazonS3
etag: W/"764bef344fb50882f30a1779b34dfeaf"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: t9eQpgPtJ5AtalVzpNF0-WPWiA4L7rLjnT3z_OJxVMHfqYN8TxReeQ==
age: 46559
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/city/600x600/644297.jpg?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o=

3.167.2.62

200 OK

74 kB

URL GET
cf.bstatic.com/xdata/images/city/600x600/644297.jpg?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 600x600, components 3
Size
74 kB (74421 bytes)
Hash
60b8665aff1e28f230d4fd9e1a479a31
4352c75c225caabb5d3848296dea9732f8e8af67
b41a7c475c3ff89bccf20787bd207218bc85a2eb3318a79300f29a5b6d09bea7

HTTP Headers

GET /xdata/images/city/600x600/644297.jpg?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Sun, 22 Jun 2025 13:44:04 GMT
etag: "f1eb698e0ca9fa1026cedd38aa4a946666a07db1"
content-language: 74421
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: ZCkANSj-_y5q31eAGmpcQESGmF9YyybXqOtFJ4QPwMxMIlvERYCMoA==
age: 2208301
X-Firefox-Spdy: h2

54.240.174.43

200 OK

12 B

URL GET
www.booking.com/js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=c9c216276d7902f0&ete=&etg=web_shell_ux_header_view,web_shell_ux_header_view_www_non_logged_in,www_stays_recently_viewed_properties_view&etcg=dLYHMRFeRLeMXFPNZFZeaPQHHaNVTSEFUfbIUFZZZMXC|1,GaWXCFafdRERJBcCcCcCFQfGZQNPcUeccLdYPZEAHeVGRCeAANIO|1,OAYRKHMdReLDEZREdcAKWSTVeQMMbaTaTaET|1&ets=dDfPWPHDDZSOBJbKYfNIfPTDWe|1,dLYHMRFeRLeMXFPNZFZeaPQHHaNVTSEFUfbIUFZZZMXC|1,dLYHMRFeRLeMXFPNZFZeaPQHHaNVTSEFUfbIUFZZZMXC|3,GaYHKLOWWKRFefVEdaWCaceNBOSCJWMEO|1,HWAJLGbbeQHUYbcJTGZZOeUPEHVKYXdABdUIDPBFO|3,HWAJLGbbeQHUYbcJTGZZOeUPEHVKYXdABdUIDPBFO|4,YTTHbXeeVJZMHGYTLRQJRfRXe|1,YTTHbXeeVJZMHGYTLRQJRfRXe|2,NAFLeOeJcQEcVOdWNeYZdfdbJae|1,cCHObKdBdUHINPSXeHDALOLOLMO|1,cCHObKdBdUHINPSXeHDALOLOLMO|5,cCeIVOMPWAEeIcFARSYSbZDQSXbaTaTaET|3,cCeIVOOLfOECVVDFRURURHe|1,cCeIVOOLfOECVVDFRURURHe|2,cCeIVOAPEbSccEZVACdKNKNKWe|1,YTBbNXGJaWePDSSFePXIGaWXCFafdcUYNdHXT|1,YTBbNXGJaWePDSSFePXIGaWXCFafdcUYNdHXT|2,YTBbNXGJaWePDSSFePXIGaWXCFafdcUYNdHXT|6,GaWXCFafdRERJBcCcCcCFQfGZQNPcUeccLdYPZEAHeVGRCeAANIO|1,GaWXCFafdRERJBcCcCcCFQfGZQNPcUeccLdYPZEAHeVGRCeAANIO|3,cCcCcCWKcOMHINPSXeHDAcUYNTTNAVaRKZVVLT|1,cCcCcCWKcOMHINPSXeHDAcUYNTTNAVaRKZVVLT|3,cCcCcCWKcOMHINPSXeHDAcUYNTTNAVaRKZVVLT|7,EIZEHfdSDSZZDDUZGSRLGKVIFAdKC|1,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|1,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|1,cCHObdRdJJVdfUSCEcdNHMddKNKNKWe|1,cCHObdRdJJVdfUJGFDSeBcZFLMFRURURHe|1,cCHObdRdJJVdfUJGFDSeBcZFLMFRURURHe|3,cCeIVOTeJUNSMTfIMLebaTaTaET|1,cCeIVOTeJUNSMTaSdNdKNKNKWe|1,cCHOGAQHSMSXUDeLcffIVXBPKAFRURURHe|1,cCHOGAQHSMSXUDeLcffIVXBPKAFRURURHe|5,cCeIVOdJEVOAeZTbQNPcZRALOLOLMO|1,cCeIVOIYcYCcTUDQZaTaTaET|1,ZXZAVacDNBMPLZQNPcUecUYCMDORMTfLT|1,ZXZAVacDNBMPLZQNPcUecUYCMDORMTfLT|3,fGcBeNZbBcRcAPQHVLWIXOERJPXafJCfSFNTTNdKNKNKWe|1,fGcBeNZbBcRcAPQHVLWIXOERJPXafJCfSFNTTNdKNKNKWe|3,OABBaJePebeKSERLPWYNZRIIGLae|1,cCHOGAQHXSHDHFKWLIEFccSTbaTaTaET|1,cCHOGAQHXSHDHFKWLIEFccSTbaTaTaET|4,NAFLeOeJcQEcVOdWNeYZdfdbJae|2,NAFLeOeJcQEcVOdWNeYZdfdbJae|4,cCHObKdPHMfFdHMEKBOcaGPaAHFHDQIC|9,cCeIVOOLfOECVVDFRURURHe|3,cCcCcCWKcOMHINPSXeHDAcUYNTTNAVaRKZVVLT|2,GaWXCFafdRERJBcCcCcCFQfGZQNPcUeccLdYPZEAHeVGRCeAANIO|2,EIZEHfdSDSZZDDUZGSRLGKVIFAdKC|2,OABBaJePefeeFbMKXTMHTcaWQOccCcCcCC|3,OABBaJePefeeFbMKXTMHTcaWQOccCcCcCC|4,OABBaJePefeeFbMKXTMHTcaWQOccCcCcCC|9,OABBaJTeNJPRaCPFCUJVdfUWBZccCcCcCC|1,OABBaJTeNJPRaCPFCUJVdfUWBZccCcCcCC|2,OABBaJTeNJPRaCPFCUJVdfUWBZccCcCcCC|7,OABBaJePebeKSERLPWYNZRIIGLae|2,cCHOGAQHXSHDHFKWLIEFccSTbaTaTaET|2,cCHOGAQHXSHDHFKWLIEFccSTbaTaTaET|6&etgwv=js_attraction_index|3
IP
54.240.174.43:443
ASN
#16509 AMAZON-02

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.booking.com
Fingerprint40:C8:C7:99:E8:DF:B4:B7:80:45:6C:57:15:2A:09:28:16:A7:2B:BB
ValidityFri, 07 Mar 2025 00:00:00 GMT - Sat, 17 Jan 2026 23:59:59 GMT

File type
GIF image data, version 89a, 1 x 1
Size
12 B (12 bytes)
Hash
45e0d10a08ad25f44cb9c2b6e732858c
8e47bb27521f644194d8d6ed92c22513a68715d9
4c55d6d27f3d4503e15ce98f4e4cccc15a49ecc0445a3a0996578437f7ab701f

HTTP Headers

GET /js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=c9c216276d7902f0&ete=&etg=web_shell_ux_header_view,web_shell_ux_header_view_www_non_logged_in,www_stays_recently_viewed_properties_view&etcg=dLYHMRFeRLeMXFPNZFZeaPQHHaNVTSEFUfbIUFZZZMXC|1,GaWXCFafdRERJBcCcCcCFQfGZQNPcUeccLdYPZEAHeVGRCeAANIO|1,OAYRKHMdReLDEZREdcAKWSTVeQMMbaTaTaET|1&ets=dDfPWPHDDZSOBJbKYfNIfPTDWe|1,dLYHMRFeRLeMXFPNZFZeaPQHHaNVTSEFUfbIUFZZZMXC|1,dLYHMRFeRLeMXFPNZFZeaPQHHaNVTSEFUfbIUFZZZMXC|3,GaYHKLOWWKRFefVEdaWCaceNBOSCJWMEO|1,HWAJLGbbeQHUYbcJTGZZOeUPEHVKYXdABdUIDPBFO|3,HWAJLGbbeQHUYbcJTGZZOeUPEHVKYXdABdUIDPBFO|4,YTTHbXeeVJZMHGYTLRQJRfRXe|1,YTTHbXeeVJZMHGYTLRQJRfRXe|2,NAFLeOeJcQEcVOdWNeYZdfdbJae|1,cCHObKdBdUHINPSXeHDALOLOLMO|1,cCHObKdBdUHINPSXeHDALOLOLMO|5,cCeIVOMPWAEeIcFARSYSbZDQSXbaTaTaET|3,cCeIVOOLfOECVVDFRURURHe|1,cCeIVOOLfOECVVDFRURURHe|2,cCeIVOAPEbSccEZVACdKNKNKWe|1,YTBbNXGJaWePDSSFePXIGaWXCFafdcUYNdHXT|1,YTBbNXGJaWePDSSFePXIGaWXCFafdcUYNdHXT|2,YTBbNXGJaWePDSSFePXIGaWXCFafdcUYNdHXT|6,GaWXCFafdRERJBcCcCcCFQfGZQNPcUeccLdYPZEAHeVGRCeAANIO|1,GaWXCFafdRERJBcCcCcCFQfGZQNPcUeccLdYPZEAHeVGRCeAANIO|3,cCcCcCWKcOMHINPSXeHDAcUYNTTNAVaRKZVVLT|1,cCcCcCWKcOMHINPSXeHDAcUYNTTNAVaRKZVVLT|3,cCcCcCWKcOMHINPSXeHDAcUYNTTNAVaRKZVVLT|7,EIZEHfdSDSZZDDUZGSRLGKVIFAdKC|1,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|1,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|1,cCHObdRdJJVdfUSCEcdNHMddKNKNKWe|1,cCHObdRdJJVdfUJGFDSeBcZFLMFRURURHe|1,cCHObdRdJJVdfUJGFDSeBcZFLMFRURURHe|3,cCeIVOTeJUNSMTfIMLebaTaTaET|1,cCeIVOTeJUNSMTaSdNdKNKNKWe|1,cCHOGAQHSMSXUDeLcffIVXBPKAFRURURHe|1,cCHOGAQHSMSXUDeLcffIVXBPKAFRURURHe|5,cCeIVOdJEVOAeZTbQNPcZRALOLOLMO|1,cCeIVOIYcYCcTUDQZaTaTaET|1,ZXZAVacDNBMPLZQNPcUecUYCMDORMTfLT|1,ZXZAVacDNBMPLZQNPcUecUYCMDORMTfLT|3,fGcBeNZbBcRcAPQHVLWIXOERJPXafJCfSFNTTNdKNKNKWe|1,fGcBeNZbBcRcAPQHVLWIXOERJPXafJCfSFNTTNdKNKNKWe|3,OABBaJePebeKSERLPWYNZRIIGLae|1,cCHOGAQHXSHDHFKWLIEFccSTbaTaTaET|1,cCHOGAQHXSHDHFKWLIEFccSTbaTaTaET|4,NAFLeOeJcQEcVOdWNeYZdfdbJae|2,NAFLeOeJcQEcVOdWNeYZdfdbJae|4,cCHObKdPHMfFdHMEKBOcaGPaAHFHDQIC|9,cCeIVOOLfOECVVDFRURURHe|3,cCcCcCWKcOMHINPSXeHDAcUYNTTNAVaRKZVVLT|2,GaWXCFafdRERJBcCcCcCFQfGZQNPcUeccLdYPZEAHeVGRCeAANIO|2,EIZEHfdSDSZZDDUZGSRLGKVIFAdKC|2,OABBaJePefeeFbMKXTMHTcaWQOccCcCcCC|3,OABBaJePefeeFbMKXTMHTcaWQOccCcCcCC|4,OABBaJePefeeFbMKXTMHTcaWQOccCcCcCC|9,OABBaJTeNJPRaCPFCUJVdfUWBZccCcCcCC|1,OABBaJTeNJPRaCPFCUJVdfUWBZccCcCcCC|2,OABBaJTeNJPRaCPFCUJVdfUWBZccCcCcCC|7,OABBaJePebeKSERLPWYNZRIIGLae|2,cCHOGAQHXSHDHFKWLIEFccSTbaTaTaET|2,cCHOGAQHXSHDHFKWLIEFccSTbaTaTaET|6&etgwv=js_attraction_index|3 HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
X-Booking-Info: 
X-Booking-Client-Info: 
X-Booking-Pageview-Id: c9c216276d7902f0
X-Booking-SiteType-Id: 1
X-Booking-Language-Code: en-us
X-Booking-AID: 818288
X-Booking-Session-Id: aeed92b9ea705988ecd6d3925c162904
X-Booking-ET-Serialized-State: EZC0me3pHIwv-yYtQGQUdHMaUQ3rRxsio5-cDr4cc3Ohkp_KG_12HWFDp-raNqwOx
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbKE7bjkbYWzknertGXiQbmRvlSBPNxxlOnqr4yuBzu0swZ%2Fxm93n2JOMaSEKUYZ92Hc6P4tnVKE3bXmItaT4stRsDC53Rt8w1pCvCgOMPowMSZVoEESGOAlG3G2D3OKbogWKk%2FnEGID0mgJEaARKUkey4BDoBWYXfkwTp7weanUY%3D; pcm_personalization_disabled=0; bkng_sso_auth=CAIQ0+WGHxpmrqlfCI/7cj7WenmOuL5QxSn4u0pk06cV4xlrrrhmJKAb1FesYuKumLV4pSqW60W2NnCfEB+Pr3GDZ3i/aG465ACIGtpwXlBI9XDqnlhOkhTT7xUttessFF0wXrOKUtvFXd/bRD8o; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3De1046c70-f5fb-4ace-8c3b-1dcf67343057%26consentedAt%3D2025-07-18T03%3A09%3A02.576Z%26expiresAt%3D2026-01-14T03%3A09%3A02.576Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; cors_js=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/gif
content-length: 35
server: nginx
date: Fri, 18 Jul 2025 03:09:09 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=accc162acc6701c3&e=UmFuZG9tSVYkc2RlIyh9Yea92wm0yRUjnCBymoy8ejJNgImeq2qjX11E0q5w68kTFtpf-XzyAQA
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6Eoro4cVv72qCGC31ZzgIlFjSYP38tc0Pdu07X9LGap5HwEW7cdmwA==
server-timing: cdn-upstream-layer;desc="REC",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=26,cdn-cache-miss,cdn-pop;desc="OSL50-P1",cdn-rid;desc="6Eoro4cVv72qCGC31ZzgIlFjSYP38tc0Pdu07X9LGap5HwEW7cdmwA==",cdn-downstream-fbl;dur=70
X-Firefox-Spdy: h2

GET q-xx.bstatic.com/xdata/images/city/170x136/644297.jpg?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o=

3.167.2.62

200 OK

7.1 kB

URL GET
q-xx.bstatic.com/xdata/images/city/170x136/644297.jpg?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3
Size
7.1 kB (7131 bytes)
Hash
bcabc853805644c852b5e28ceb4da21f
85e9e9be45cd209187f883151d869f07dce4a016
0e9deb49e94a0a7b46e1300d00ff66abc515bf83f77c53d322457e1cce9d3d5c

HTTP Headers

GET /xdata/images/city/170x136/644297.jpg?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
content-length: 7131
server: nginx
date: Fri, 20 Jun 2025 08:17:26 GMT
content-language: 7131
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "60f73638035955e1146cb48ccdf11c7523940a2c"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: I57hRtUgG1kj8SPGhoiEpSeg1ZbfyJnRbNOM0p1gcaveq6Qz7Cjhjw==
age: 2400704
X-Firefox-Spdy: h2

GET cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/c56180a92478e4508d340cf2fdbe5dfbc98c99aa.css

3.167.2.62

200 OK

77 kB

URL GET
cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/c56180a92478e4508d340cf2fdbe5dfbc98c99aa.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
77 kB (76790 bytes)
Hash
86b802e5d28e6bc268e4abbc8d2c7802
6ba0b6a33d9397ffdb24071efcfdf09cdc6e9413
cacb8aad630c44e01a8845dca3c0818ea7561b53fdd1ff75cd83a1d5433ef47e

HTTP Headers

GET /static/css/xp-index-sb_cloudfront_sd.iq_ltr/c56180a92478e4508d340cf2fdbe5dfbc98c99aa.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
last-modified: Wed, 18 Jun 2025 13:14:19 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
x-amz-version-id: Mh8.WsaRbC5eFQh8M7qAHOMU9oLePy_R
server: AmazonS3
date: Wed, 16 Jul 2025 19:25:43 GMT
cache-control: public,max-age=604800
etag: W/"86b802e5d28e6bc268e4abbc8d2c7802"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: o5Z2XyLwiQmh9jwJt2er3_JY0n7btdJceWjNoTRUvEto9sIitBBgjA==
age: 114201
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/css/cf2b0303.a900cbf6.chunk.css

3.167.2.62

200 OK

514 B

URL GET
cf.bstatic.com/psb/capla/static/css/cf2b0303.a900cbf6.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (341)
Size
514 B (514 bytes)
Hash
7662397c77f287405211f8faf7e7eb68
1a2b55b069237521019c0b8e0ec395328a4c276d
aa3df3f84b200fbf4a427b005358b970ed51ae183890d6d6582db5a54a57731d

HTTP Headers

GET /psb/capla/static/css/cf2b0303.a900cbf6.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
content-length: 514
date: Thu, 01 May 2025 10:02:23 GMT
last-modified: Thu, 01 May 2025 09:35:03 GMT
etag: "7662397c77f287405211f8faf7e7eb68"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: cd674337320a76dcf27b749f06a9bbe54e27021e
x-amz-version-id: lNaXXkxPHPBvX.xtslApVBJaiYWQ.Co4
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: tQV8z_WGJJzLjxrlidgGFn_9yOgEy6GrqDnU6M7IpHJmIrT9rLVIfw==
age: 6714402
timing-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2

GET www.booking.com/js_tracking?ref_action=index&ver=2&sid=158014cf79b6a1df56562bf0568880d0&aid=818288&stype=1&pid=c9c216276d7902f0&lang=en-us&ete=&etg=&etcg=&ets=OABBaJePefeeFbMKXTMHTcaWQOccCcCcCC|2&etgwv=&m=UmFuZG9tSVYkc2RlIyh9Ya0AWyEi0pmdjgWlor7XhxnVnjXdSK9WS4q3TM2MXhmcmQG06kuNo74UntjDKhHkXq0AUNKIjhWsl6RkvSSDQ28M_FecNUjuwu0r45tkmRFfDI9_-ebDInj6EpLSEPe-DfCwf1DBu5nHERpr4xwSK2lMuM9OzHyExbnzBMct-Mne0Xk-RGdIxrXBHvBpbY8mllE0Tpdde54f1UXxereM9ZZwRCdpzWAFWe5vWkWdGDJfFriYWCbIYwsYC3NopT3VjvXu7-Y7WH85wUuF4sS5Btc

54.240.174.43

200 OK

0 B

URL GET
www.booking.com/js_tracking?ref_action=index&ver=2&sid=158014cf79b6a1df56562bf0568880d0&aid=818288&stype=1&pid=c9c216276d7902f0&lang=en-us&ete=&etg=&etcg=&ets=OABBaJePefeeFbMKXTMHTcaWQOccCcCcCC|2&etgwv=&m=UmFuZG9tSVYkc2RlIyh9Ya0AWyEi0pmdjgWlor7XhxnVnjXdSK9WS4q3TM2MXhmcmQG06kuNo74UntjDKhHkXq0AUNKIjhWsl6RkvSSDQ28M_FecNUjuwu0r45tkmRFfDI9_-ebDInj6EpLSEPe-DfCwf1DBu5nHERpr4xwSK2lMuM9OzHyExbnzBMct-Mne0Xk-RGdIxrXBHvBpbY8mllE0Tpdde54f1UXxereM9ZZwRCdpzWAFWe5vWkWdGDJfFriYWCbIYwsYC3NopT3VjvXu7-Y7WH85wUuF4sS5Btc
IP
54.240.174.43:443
ASN
#16509 AMAZON-02

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.booking.com
Fingerprint40:C8:C7:99:E8:DF:B4:B7:80:45:6C:57:15:2A:09:28:16:A7:2B:BB
ValidityFri, 07 Mar 2025 00:00:00 GMT - Sat, 17 Jan 2026 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /js_tracking?ref_action=index&ver=2&sid=158014cf79b6a1df56562bf0568880d0&aid=818288&stype=1&pid=c9c216276d7902f0&lang=en-us&ete=&etg=&etcg=&ets=OABBaJePefeeFbMKXTMHTcaWQOccCcCcCC|2&etgwv=&m=UmFuZG9tSVYkc2RlIyh9Ya0AWyEi0pmdjgWlor7XhxnVnjXdSK9WS4q3TM2MXhmcmQG06kuNo74UntjDKhHkXq0AUNKIjhWsl6RkvSSDQ28M_FecNUjuwu0r45tkmRFfDI9_-ebDInj6EpLSEPe-DfCwf1DBu5nHERpr4xwSK2lMuM9OzHyExbnzBMct-Mne0Xk-RGdIxrXBHvBpbY8mllE0Tpdde54f1UXxereM9ZZwRCdpzWAFWe5vWkWdGDJfFriYWCbIYwsYC3NopT3VjvXu7-Y7WH85wUuF4sS5Btc HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
X-Booking-AID: 818288
X-Booking-CSRF: DvN5aAAAAAA=iSMssxyRGf92-H2hEfsgRf2UeyNuUXTaYAksbHlvH9RRN7qeei4-6dock6Sbnlm1JnJ6FZwe_L7YsAxhTlDqGz5w_UkMeIUM-Kwkmj8EVd34Aipoh7ucGi1mYSkEV2d_0XVtGxbv-YcCJalrO3PgNwiHdGW2jzJn7Sw0LJrGB7ubSOXRs85g4NNY5ENNizJJnNgNte65Gcl4wS57
X-Booking-Info: 2301430,2302580,2307640,2307650,2308610,2311730,2317630,2318530,2320050,2322630,2322760,dDfPWPHDDZSOBJbKYfNIfPTDWe|1,2307650|1,2320050|1,2301430|1,2322630|1,2292000|3,2307640|1,dLYHMRFeRLeMXFPNZFZeaPQHHaNVTSEFUfbIUFZZZMXC|1,dLYHMRFeRLeMXFPNZFZeaPQHHaNVTSEFUfbIUFZZZMXC|3,GaYHKLOWWKRFefVEdaWCaceNBOSCJWMEO|1,HWAJLGbbeQHUYbcJTGZZOeUPEHVKYXdABdUIDPBFO|3,HWAJLGbbeQHUYbcJTGZZOeUPEHVKYXdABdUIDPBFO|4,YTTHbXeeVJZMHGYTLRQJRfRXe|1,YTTHbXeeVJZMHGYTLRQJRfRXe|2,NAFLeOeJcQEcVOdWNeYZdfdbJae|1,cCHObKdBdUHINPSXeHDALOLOLMO|1,cCHObKdBdUHINPSXeHDALOLOLMO|5,cCeIVOMPWAEeIcFARSYSbZDQSXbaTaTaET|3,cCeIVOOLfOECVVDFRURURHe|1,cCeIVOOLfOECVVDFRURURHe|2,cCeIVOAPEbSccEZVACdKNKNKWe|1,YTBbNXGJaWePDSSFePXIGaWXCFafdcUYNdHXT|1,YTBbNXGJaWePDSSFePXIGaWXCFafdcUYNdHXT|2,YTBbNXGJaWePDSSFePXIGaWXCFafdcUYNdHXT|6,GaWXCFafdRERJBcCcCcCFQfGZQNPcUeccLdYPZEAHeVGRCeAANIO|1,GaWXCFafdRERJBcCcCcCFQfGZQNPcUeccLdYPZEAHeVGRCeAANIO|3,cCcCcCWKcOMHINPSXeHDAcUYNTTNAVaRKZVVLT|1,cCcCcCWKcOMHINPSXeHDAcUYNTTNAVaRKZVVLT|3,cCcCcCWKcOMHINPSXeHDAcUYNTTNAVaRKZVVLT|7,EIZEHfdSDSZZDDUZGSRLGKVIFAdKC|1,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|1,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|1,cCHObdRdJJVdfUSCEcdNHMddKNKNKWe|1,cCHObdRdJJVdfUJGFDSeBcZFLMFRURURHe|1,cCHObdRdJJVdfUJGFDSeBcZFLMFRURURHe|3,cCeIVOTeJUNSMTfIMLebaTaTaET|1,cCeIVOTeJUNSMTaSdNdKNKNKWe|1,cCHOGAQHSMSXUDeLcffIVXBPKAFRURURHe|1,cCHOGAQHSMSXUDeLcffIVXBPKAFRURURHe|5,cCeIVOdJEVOAeZTbQNPcZRALOLOLMO|1,cCeIVOIYcYCcTUDQZaTaTaET|1,ZXZAVacDNBMPLZQNPcUecUYCMDORMTfLT|1,ZXZAVacDNBMPLZQNPcUecUYCMDORMTfLT|3,fGcBeNZbBcRcAPQHVLWIXOERJPXafJCfSFNTTNdKNKNKWe|1,fGcBeNZbBcRcAPQHVLWIXOERJPXafJCfSFNTTNdKNKNKWe|3,OABBaJePebeKSERLPWYNZRIIGLae|1,cCHOGAQHXSHDHFKWLIEFccSTbaTaTaET|1,cCHOGAQHXSHDHFKWLIEFccSTbaTaTaET|4,NAFLeOeJcQEcVOdWNeYZdfdbJae|2,NAFLeOeJcQEcVOdWNeYZdfdbJae|4,cCHObKdPHMfFdHMEKBOcaGPaAHFHDQIC|9,cCeIVOOLfOECVVDFRURURHe|3,cCcCcCWKcOMHINPSXeHDAcUYNTTNAVaRKZVVLT|2,GaWXCFafdRERJBcCcCcCFQfGZQNPcUeccLdYPZEAHeVGRCeAANIO|2,EIZEHfdSDSZZDDUZGSRLGKVIFAdKC|2,OABBaJePefeeFbMKXTMHTcaWQOccCcCcCC|3,OABBaJePefeeFbMKXTMHTcaWQOccCcCcCC|4,OABBaJePefeeFbMKXTMHTcaWQOccCcCcCC|9,OABBaJTeNJPRaCPFCUJVdfUWBZccCcCcCC|1,OABBaJTeNJPRaCPFCUJVdfUWBZccCcCcCC|2,OABBaJTeNJPRaCPFCUJVdfUWBZccCcCcCC|7,OABBaJePebeKSERLPWYNZRIIGLae|2,cCHOGAQHXSHDHFKWLIEFccSTbaTaTaET|2,cCHOGAQHXSHDHFKWLIEFccSTbaTaTaET|6
X-Booking-Client-Info: OABBaJePefeeFbMKXTMHTcaWQOccCcCcCC|2
X-Booking-Label: affnetcj-12365056_pub-5108952_site-101463210_pname-Go%20Travel%20Un%20Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74
X-Booking-Language-Code: en-us
X-Booking-Pageview-Id: c9c216276d7902f0
X-Booking-Session-Id: 158014cf79b6a1df56562bf0568880d0
X-Booking-SiteType-Id: 1
X-Partner-Channel-Id: 2
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbbmD9q%2B5pe3Wdm0%2ByPGMsC1KujF5qCxhD8YztvAVkXTtTK0o2BJL7F%2Bm3G%2B0LUoeb7oHjlToVOeSl2nusn8juTZHyyu6%2FR9iuocOLfIsseh%2FgKV8BAd3zXuypAMgTO3s9O7%2BJaalVmnaHvhjhgEMcSuloTu1oNh%2FT; pcm_personalization_disabled=0; bkng_sso_auth=CAIQ0+WGHxpmrqlfCI/7cj7WenmOuL5QxSn4u0pk06cV4xlrrrhmJKAb1FesYuKumLV4pSqW60W2NnCfEB+Pr3GDZ3i/aG465ACIGtpwXlBI9XDqnlhOkhTT7xUttessFF0wXrOKUtvFXd/bRD8o; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3De1046c70-f5fb-4ace-8c3b-1dcf67343057%26consentedAt%3D2025-07-18T03%3A09%3A02.576Z%26expiresAt%3D2026-01-14T03%3A09%3A02.576Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; cors_js=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
server: nginx
date: Fri, 18 Jul 2025 03:09:09 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=1c07162a3bc8011e&e=UmFuZG9tSVYkc2RlIyh9Yea92wm0yRUjnCBymoy8ejJ1iEcO832RCqiHlvKMTI8558B4eoWKapc
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ruJ4x-wEDqTWjX000dE4RGT3C_tYTagGWpREQ9d6YPFW2dMN4qpjjA==
server-timing: cdn-upstream-layer;desc="REC",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=30,cdn-cache-miss,cdn-pop;desc="OSL50-P1",cdn-rid;desc="ruJ4x-wEDqTWjX000dE4RGT3C_tYTagGWpREQ9d6YPFW2dMN4qpjjA==",cdn-downstream-fbl;dur=114
X-Firefox-Spdy: h2

GET q-xx.bstatic.com/xdata/images/hotel/263x210/595550229.jpeg?k=2ae1f5975fa1f846ac707d3334eb604a7e8f817f640cbd790185b2691532476b&o=

3.167.2.62

200 OK

16 kB

URL GET
q-xx.bstatic.com/xdata/images/hotel/263x210/595550229.jpeg?k=2ae1f5975fa1f846ac707d3334eb604a7e8f817f640cbd790185b2691532476b&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3
Size
16 kB (15472 bytes)
Hash
22256005dd4b5b5c621ac674566514fb
8bb6c21c8732e9db6d1002bb94d5f74d153547f4
2eefa091b5988723b92ff21a2fe2d36eec9f5d136bdf3080eb10168e2da10b74

HTTP Headers

GET /xdata/images/hotel/263x210/595550229.jpeg?k=2ae1f5975fa1f846ac707d3334eb604a7e8f817f640cbd790185b2691532476b&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Sun, 06 Jul 2025 11:34:55 GMT
content-language: 15472
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "5d11673f19ad4e7a00059057316cf379a1a6574d"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: y5ZHuAzmWGPI995Wpm9YffofZbhAWLM7NbL7EYpovixRfS2PHGMaJg==
age: 1006454
X-Firefox-Spdy: h2

GET cf.bstatic.com/static/js/error_catcher_bec_cloudfront_sd/c40c55637440286271899bb4294fd743b387ac07.js

3.167.2.62

200 OK

6.2 kB

URL GET
cf.bstatic.com/static/js/error_catcher_bec_cloudfront_sd/c40c55637440286271899bb4294fd743b387ac07.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (6218), with no line terminators
Size
6.2 kB (6218 bytes)
Hash
15742a9f0247380ecf0b5328a854159d
093ce59594bb6b10eb54f1a9ab93e62bfabaa616
4352beeb6d75e0b1e6bfcfd2b156c5404176e62b6459c09a9cad2c3ef43069f4

HTTP Headers

GET /static/js/error_catcher_bec_cloudfront_sd/c40c55637440286271899bb4294fd743b387ac07.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 14 Apr 2025 14:51:24 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
x-amz-version-id: eY1pjW7xErBTBdwwXip8qkytWlDBzCXI
server: AmazonS3
date: Thu, 17 Jul 2025 17:38:06 GMT
cache-control: public,max-age=604800
etag: W/"15742a9f0247380ecf0b5328a854159d"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: mHzxcTX6DmhNXk2-UvQZD6iqn6mlUKWcZQd3PDMr976MgZM9z0eHGA==
age: 34258
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/css/85d4a1a2.767c4bdf.chunk.css

3.167.2.62

200 OK

1.8 kB

URL GET
cf.bstatic.com/psb/capla/static/css/85d4a1a2.767c4bdf.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (747)
Size
1.8 kB (1775 bytes)
Hash
b5be8444f7a8977e7ffdbbbee6385885
0ebd3cc6eb085371a040f42b720dbe74eccb05a1
18288d9b965c9921e85cbdc0692db9584d9f22a01bd48bce29002aff8e9c7fd5

HTTP Headers

GET /psb/capla/static/css/85d4a1a2.767c4bdf.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Mon, 14 Jul 2025 13:27:43 GMT
last-modified: Mon, 14 Jul 2025 08:43:18 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 105c281e5639f5ad04cebbaacef2e8b0ba285a26
x-amz-version-id: NBBd.jcCfYLJDEmybFvW23KqckdRqKdK
server: AmazonS3
etag: W/"b5be8444f7a8977e7ffdbbbee6385885"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: FXBxKDswVv7VLkdKB_l2vf2AiUz6eGJBSGrsxwfWQLT-AD9CK6aXHg==
age: 308482
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/remoteEntry.251293cb.client.js

3.167.2.62

200 OK

24 kB

URL GET
cf.bstatic.com/psb/capla/static/js/remoteEntry.251293cb.client.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (23828)
Size
24 kB (23944 bytes)
Hash
888fc79194b66cdcb1827eb6b16ebc34
f07e0646a5b3ad2886ea6fd19ef6e11c9a64ad54
80367f152cfd527eecef92a5bf51eba45e501253880ddeb89471adb23610892b

HTTP Headers

GET /psb/capla/static/js/remoteEntry.251293cb.client.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Mon, 07 Jul 2025 17:19:25 GMT
last-modified: Mon, 07 Jul 2025 09:08:04 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 159ce7fa29c15cf92cfa00c360a64f139f379af6
x-amz-version-id: ccny4DCllRzVPiYPx62PJbkZCMTzT5gu
server: AmazonS3
etag: W/"888fc79194b66cdcb1827eb6b16ebc34"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: OMQ6trW0ty5u8UvAtpX3CppYiH9b_mGkHBe1E6esDQr0o5kO1VppyQ==
age: 899380
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/node_modules_bookingcom_bui-react_hooks_useOnClickOutside_js-_bc681.03931368.js

3.167.2.62

200 OK

916 B

URL GET
cf.bstatic.com/psb/capla/static/js/node_modules_bookingcom_bui-react_hooks_useOnClickOutside_js-_bc681.03931368.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (751)
Size
916 B (916 bytes)
Hash
d41a8349a890ea70e451deb8327f3176
12c6b74b4c51088495c55c0436d6022815697ade
78a6ae51a8f3efb3f54538597a25bed92cc8085aba3cbd686e432661956555d4

HTTP Headers

GET /psb/capla/static/js/node_modules_bookingcom_bui-react_hooks_useOnClickOutside_js-_bc681.03931368.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
content-length: 916
date: Wed, 16 Jul 2025 08:55:15 GMT
last-modified: Tue, 15 Jul 2025 07:40:21 GMT
etag: "d41a8349a890ea70e451deb8327f3176"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: dc007423c1c3d334ee9579a86344a07d02da168b
x-amz-version-id: 8YqF1nF1IWNTrgiXui.NCLa0BRQsYF0e
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 6S-quC_Xt09v3obr0cyfIY0FScbQB9prONk29_t03k9YoHUWpNEU2w==
age: 152032
timing-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2

54.240.174.43

200 OK

71 kB

URL POST
www.booking.com/dml/graphql?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056&lang=en-us
IP
54.240.174.43:443
ASN
#16509 AMAZON-02

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.booking.com
Fingerprint40:C8:C7:99:E8:DF:B4:B7:80:45:6C:57:15:2A:09:28:16:A7:2B:BB
ValidityFri, 07 Mar 2025 00:00:00 GMT - Sat, 17 Jan 2026 23:59:59 GMT

File type
JSON text data
Size
71 kB (70562 bytes)
Hash
51b9e7fe4d673102342c6650c88306ff
d7c5da8fee83c88503bee3387ea31b9343a9911e
066201ae010f5c19a8a1898f1b214ac2588b4b2361c58a2bb6e27be0744e6cb6

HTTP Headers

POST /dml/graphql?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056&lang=en-us HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
apollographql-client-name: b-index-lp-web-mfe_rust
apollographql-client-version: dRdeWbLD
content-type: application/json
x-booking-context-action: index
x-booking-context-action-name: index
x-booking-context-aid: 818288
x-booking-csrf-token: eyJhbGciOiJIUzUxMiJ9.eyJpc3MiOiJjb250ZXh0LWVucmljaG1lbnQtYXBpIiwic3ViIjoiY3NyZi10b2tlbiIsImlhdCI6MTc1MjgwODE0MiwiZXhwIjoxNzUyODk0NTQyfQ.xS11JNvmqKBXkVmuhkXG3t17-GUe1mh5o3pg4gYiiDXvogmseaA4OTwTBg1UmcoAOXOrKtOmXrztH07Zg8LiMg
x-booking-dml-cluster: rust
x-booking-et-serialized-state: EZC0me3pHIwv-yYtQGQUdHMaUQ3rRxsio5-cDr4cc3Ohkp_KG_12HWFDp-raNqwOx
x-booking-pageview-id: c9c216276d7902f0
x-booking-site-type-id: 1
x-booking-timeout-budget-ms: 1500
x-booking-timeout-ms: 1500
x-booking-topic: capla_browser_b-index-lp-web-mfe
x-envoy-expected-rq-timeout-ms: 1500
Content-Length: 8990
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbbmD9q%2B5pe3Wdm0%2ByPGMsC1KujF5qCxhD8YztvAVkXTtTK0o2BJL7F%2Bm3G%2B0LUoeb7oHjlToVOeSl2nusn8juTZHyyu6%2FR9iuocOLfIsseh%2FgKV8BAd3zXuypAMgTO3s9O7%2BJaalVmnaHvhjhgEMcSuloTu1oNh%2FT; pcm_personalization_disabled=0; bkng_sso_auth=CAIQ0+WGHxpmrqlfCI/7cj7WenmOuL5QxSn4u0pk06cV4xlrrrhmJKAb1FesYuKumLV4pSqW60W2NnCfEB+Pr3GDZ3i/aG465ACIGtpwXlBI9XDqnlhOkhTT7xUttessFF0wXrOKUtvFXd/bRD8o; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3De1046c70-f5fb-4ace-8c3b-1dcf67343057%26consentedAt%3D2025-07-18T03%3A09%3A02.576Z%26expiresAt%3D2026-01-14T03%3A09%3A02.576Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; cors_js=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 6497
server: nginx
date: Fri, 18 Jul 2025 03:09:09 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbwcLxQQ4VaCpDK3BSi8W%2FmnThc6jTDm0cDycsuK1Jt4QJ0b3oNE5VJraSdVPiGM%2BAxGEmXL%2BeLBnYjjk0pyssHMlwzL0dRZWtR%2B26t8lMZLITpDdrhgx0l3Mf65bqwtSb%2B%2FQtrpIooopAadMcK7sF9ds9XPQm7vJlShvafoRof6s%3D; domain=.booking.com; path=/; expires=Wed, 17-Jul-2030 03:09:09 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tEGwy-CZp8Zb8PQVmxNhFwE6yweZuKNX6kuqNLOyQCK69caoE60jtw==
server-timing: cdn-upstream-layer;desc="REC",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=151,cdn-cache-miss,cdn-pop;desc="OSL50-P1",cdn-rid;desc="tEGwy-CZp8Zb8PQVmxNhFwE6yweZuKNX6kuqNLOyQCK69caoE60jtw==",cdn-downstream-fbl;dur=192
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/cf78851e.a268abf5.chunk.js

3.167.2.62

200 OK

914 B

URL GET
cf.bstatic.com/psb/capla/static/js/cf78851e.a268abf5.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (802)
Size
914 B (914 bytes)
Hash
ea4f6140595f490697f03bfaf23418b1
a35d8cb8cdc0eb9e02b7bfe90c58f4036713a108
afb6ce38b24de5bae92a4cd4a0a72c8d71917a40a11ddb257b443a0c09719323

HTTP Headers

GET /psb/capla/static/js/cf78851e.a268abf5.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
content-length: 914
date: Sat, 19 Apr 2025 03:37:20 GMT
last-modified: Fri, 18 Apr 2025 13:50:47 GMT
etag: "ea4f6140595f490697f03bfaf23418b1"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 35ecd8fcef48023e9641a49b067004e65498a8da
x-amz-version-id: .R54l2cLC2HJqA.2B_ekhOE38xNJFiFe
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: XJ7YAJNP5Hlb3fijvfAe0lJfl46tRYzvJdTxH8qlZyj0BL3V7-vwAw==
age: 7774305
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/static/img/cross_product_index/toggle/fb6f63d62231f9fe552d79b5448620b2e63c726e.svg

3.167.2.62

200 OK

1.5 kB

URL GET
cf.bstatic.com/static/img/cross_product_index/toggle/fb6f63d62231f9fe552d79b5448620b2e63c726e.svg
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
1.5 kB (1511 bytes)
Hash
da48776b2aeead2e8a0475158224ce76
684df652917f45f0bf5985b0e33a55ed60593865
dbc5c6cc8dc52fe293be4d79d32c85f9e8d9baa9867653927dda0c1b905a3505

HTTP Headers

GET /static/img/cross_product_index/toggle/fb6f63d62231f9fe552d79b5448620b2e63c726e.svg HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/c56180a92478e4508d340cf2fdbe5dfbc98c99aa.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Mon, 14 Apr 2025 13:35:19 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
x-amz-version-id: LPxD7fDqNTmzzQqWTNIycLUmsnOnFG_4
server: AmazonS3
date: Mon, 14 Jul 2025 18:50:47 GMT
cache-control: public,max-age=604800
etag: W/"da48776b2aeead2e8a0475158224ce76"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: UJRulOzgEgaxjZkbWbuQ0TjivKLAW3aPt72j62WNb7ochnym2g88Cg==
age: 289099
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET q-xx.bstatic.com/xdata/images/xphoto/248x248/468828542.jpeg?k=b51cb74f05db0ebc1a1cbcca384fa2ee8c4d6c0b5fd089a15b1fd14a107ccab4&o=

3.167.2.62

200 OK

15 kB

URL GET
q-xx.bstatic.com/xdata/images/xphoto/248x248/468828542.jpeg?k=b51cb74f05db0ebc1a1cbcca384fa2ee8c4d6c0b5fd089a15b1fd14a107ccab4&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 248x248, components 3
Size
15 kB (14701 bytes)
Hash
8030c438c90ab2533afe2f169a5f3340
a9802cc5ca58deb3ccb7002ce699d75b2f039654
6ded372adc942921c7227b8106ec300295b30c2ad9e268a507ed72f47a75b4c0

HTTP Headers

GET /xdata/images/xphoto/248x248/468828542.jpeg?k=b51cb74f05db0ebc1a1cbcca384fa2ee8c4d6c0b5fd089a15b1fd14a107ccab4&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Tue, 15 Jul 2025 10:52:42 GMT
content-language: 14701
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "6f35c5f01dbbcc6060f5a648f1b253b5ea8f4f88"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: wcD0T59Cl3j1O5p4GP_uVJugKmJQt86yFjcftBPa2cU26P6PH_iWzg==
age: 231383
X-Firefox-Spdy: h2

GET q-xx.bstatic.com/xdata/images/hotel/263x210/620168315.jpeg?k=300d8d8059c8c5426ea81f65a30a7f93af09d377d4d8570bda1bd1f0c8f0767f&o=

3.167.2.62

200 OK

18 kB

URL GET
q-xx.bstatic.com/xdata/images/hotel/263x210/620168315.jpeg?k=300d8d8059c8c5426ea81f65a30a7f93af09d377d4d8570bda1bd1f0c8f0767f&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3
Size
18 kB (17964 bytes)
Hash
9ef381183f29b1080daa14af20c9dec6
a8424659e5d4891ac0a21a5d3fd08f81ca0b6679
cd283df0177d54889668f9d7576479f0c77b966f33301b13ff88187ede8d8a55

HTTP Headers

GET /xdata/images/hotel/263x210/620168315.jpeg?k=300d8d8059c8c5426ea81f65a30a7f93af09d377d4d8570bda1bd1f0c8f0767f&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Sat, 21 Jun 2025 11:43:56 GMT
etag: "6b5cecef69e6057cd01238fff4a86ebf742949bd"
content-language: 17964
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 8jes8oaeH8NxfP-DJHkewgGKY_ocRu0dszxt8g-CDXtPtVtxGdOGEQ==
age: 2301913
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/285825586.webp?k=acd6fa84499149459629d3c7ebc4008d3fe4f675a67c0202be2622dac900b7f1&o=

3.167.2.62

200 OK

24 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/285825586.webp?k=acd6fa84499149459629d3c7ebc4008d3fe4f675a67c0202be2622dac900b7f1&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
24 kB (23870 bytes)
Hash
e2f36b5948436355bc705d0ba2e38703
fddddaa812d7372696c9c92786f7662d6034c001
ba87dbc42ef15e3b06bb147c9cef8a743db21cd426a47be0762e69c56a9a14e6

HTTP Headers

GET /xdata/images/hotel/square600/285825586.webp?k=acd6fa84499149459629d3c7ebc4008d3fe4f675a67c0202be2622dac900b7f1&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Thu, 03 Jul 2025 02:03:20 GMT
content-language: 23870
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "35df625899c50e72b9d816d4ed20ea6ecc95bf58"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: hurdH1kIm983tmo2nsl-m1LLOL2glbaipIdR1DoOPhFfzjJTZbw3Sg==
age: 1299950
X-Firefox-Spdy: h2

POST d8c14d4960ca.edge.sdk.awswaf.com/d8c14d4960ca/a18a4859af9c/telemetry

3.167.2.48

200 OK

1.2 kB

URL POST
d8c14d4960ca.edge.sdk.awswaf.com/d8c14d4960ca/a18a4859af9c/telemetry
IP
3.167.2.48:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerAmazon
Subject*.edge.sdk.awswaf.com
Fingerprint17:81:C6:3C:64:8D:61:C0:C4:F8:67:F7:82:B9:6C:45:E6:6C:DF:9A
ValidityFri, 29 Nov 2024 00:00:00 GMT - Mon, 29 Dec 2025 23:59:59 GMT

File type
JSON text data
Size
1.2 kB (1217 bytes)
Hash
1472a0189b7a8d78899488283ca39029
4985181023f84f2a735fca8599196b59835e6809
bbf137e432f8168d3550f1fd675600963c5a813258477e7dd8476ca5413f0cd3

HTTP Headers

POST /d8c14d4960ca/a18a4859af9c/telemetry HTTP/1.1
Host: d8c14d4960ca.edge.sdk.awswaf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 2528
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json
date: Fri, 18 Jul 2025 03:09:14 GMT
expires: 0
x-amzn-waf-challenge-id: Root=1-6879bada-5d628e0c78e00bb70c932a4d
access-control-max-age: 86400
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,GET,POST
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
content-encoding: gzip
vary: accept-encoding
x-cache: Miss from cloudfront
via: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: qYcBpw43q7fhb70lUe9ZHz7UPxdvrbyn7tjWMzA3Ia_qikWfVv-k8w==
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square240/440951742.jpg?k=c54a3318d1f973da26aa1be94d4f37274a738e1af33d604d4d57cf32b55a1320&o=

3.167.2.62

200 OK

17 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square240/440951742.jpg?k=c54a3318d1f973da26aa1be94d4f37274a738e1af33d604d4d57cf32b55a1320&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x240, components 3
Size
17 kB (17296 bytes)
Hash
8e95dda1f2762bd2f6ad3f34f68a792f
86ce61d94c080e4ba96bd12b93b2d19f2887a2c4
fa9e54db9676092091308f913664239b41b0d5b0f0871667507e60b61742b138

HTTP Headers

GET /xdata/images/hotel/square240/440951742.jpg?k=c54a3318d1f973da26aa1be94d4f37274a738e1af33d604d4d57cf32b55a1320&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Sat, 21 Jun 2025 14:39:46 GMT
content-language: 17296
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "b8f28030e952ddabcda9a7075639bb708084bf41"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 8k36vnXSydVdQuIyL4k1e1Rr7ozqMsahkNiX-3jQVXExaw0AeZKdGw==
age: 2291364
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/css/a74f71eb.9618c196.chunk.css

3.167.2.62

200 OK

168 B

URL GET
cf.bstatic.com/psb/capla/static/css/a74f71eb.9618c196.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text
Size
168 B (168 bytes)
Hash
9478cf8e88fd10591135517fa98cb926
8a7a0681e51f980adaae0f72e79fbc5fac73bbd4
994a95ad74b2b27fbfe6f71f00d45322201f9a1a76fca8f74186ba296ab04a7a

HTTP Headers

GET /psb/capla/static/css/a74f71eb.9618c196.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
content-length: 168
date: Mon, 14 Jul 2025 13:31:02 GMT
last-modified: Mon, 14 Jul 2025 08:43:18 GMT
etag: "9478cf8e88fd10591135517fa98cb926"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 105c281e5639f5ad04cebbaacef2e8b0ba285a26
x-amz-version-id: 8hInKGytcrprzDsAzyLn2yCe_n4LsSjw
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: FjKhIlMgWoHHJj_LYwIAfbu0YH3AFmecclNxGMHjED41nRENZv4aTA==
age: 308283
timing-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/ebf8c3e3.86034d79.chunk.js

3.167.2.62

200 OK

23 kB

URL GET
cf.bstatic.com/psb/capla/static/js/ebf8c3e3.86034d79.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (22947)
Size
23 kB (23140 bytes)
Hash
e472bf4cc378f6bcf63f1fbf7063c7dd
4c5c901d8e3da43aa59be764f2162ae6e6a9e227
1553c6a27a05d204b143ed68a66de7c8aac1309910e8cc0d1bc51b0a8a30cf5a

HTTP Headers

GET /psb/capla/static/js/ebf8c3e3.86034d79.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Mon, 14 Jul 2025 12:12:09 GMT
last-modified: Thu, 10 Jul 2025 08:36:41 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 5e05080700f909e51f5d38d053ad5927ae891059
x-amz-version-id: dLZ1s7m3DIrHVrw3XmvgdhAbX8lIgP_o
server: AmazonS3
etag: W/"e472bf4cc378f6bcf63f1fbf7063c7dd"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: jHYZTrHcwjWARgHB4ZH5j_4bfqFlc6fcbPJ9oMNnFO9GA9cf4VCDAg==
age: 313016
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET r-xx.bstatic.com/xdata/images/hotel/263x210/595550975.jpeg?k=6d2c22368ec017e1f99a4811c8abb1cb2d7fd829c9ddd12a82ff1aa77ab7da19&o=

3.167.2.62

200 OK

9.9 kB

URL GET
r-xx.bstatic.com/xdata/images/hotel/263x210/595550975.jpeg?k=6d2c22368ec017e1f99a4811c8abb1cb2d7fd829c9ddd12a82ff1aa77ab7da19&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3
Size
9.9 kB (9924 bytes)
Hash
38c59f25d535c807c64dcfabcad3fb0c
783dc83286f5202b49a1f19ae1f9da40ff6e59f0
f9749a2c41ca238ba6d020161cd913c094a3decfd90af9c899436a403be7e3e7

HTTP Headers

GET /xdata/images/hotel/263x210/595550975.jpeg?k=6d2c22368ec017e1f99a4811c8abb1cb2d7fd829c9ddd12a82ff1aa77ab7da19&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Tue, 15 Jul 2025 14:21:21 GMT
content-language: 9924
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "b25585a7bad34a4dbeffd0a4eb76b90cc7e127b9"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: dmWr-Vs1Dhe4ETNxpIS50MO89Z0QAf3b6o3DkHkXx4aG8oYpN46-wg==
age: 218868
X-Firefox-Spdy: h2

GET q-xx.bstatic.com/xdata/images/hotel/263x210/595550059.jpeg?k=323042e47ead9072a6ca4cd3386519f9c59faff1b74043d17b486dbd5f0d5d67&o=

3.167.2.62

200 OK

18 kB

URL GET
q-xx.bstatic.com/xdata/images/hotel/263x210/595550059.jpeg?k=323042e47ead9072a6ca4cd3386519f9c59faff1b74043d17b486dbd5f0d5d67&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3
Size
18 kB (18042 bytes)
Hash
69029b791720bc96f7bb515ed7aad720
de4d7d5b8f0cae62b59b73cb39de1326e4adad89
47c1d82d312879e55cde632962ad348b2b506b1c13fbb2604ac3dca5e03389e6

HTTP Headers

GET /xdata/images/hotel/263x210/595550059.jpeg?k=323042e47ead9072a6ca4cd3386519f9c59faff1b74043d17b486dbd5f0d5d67&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Tue, 15 Jul 2025 14:21:21 GMT
content-language: 18042
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "e14b9e13afdb4fb0a25c0f58feca02e1b8829143"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: GglwzmGCukI16Cb1iF-sPWa0T9_zUzz-JUbvcYRJTk05Pmo4LtkBHg==
age: 218868
X-Firefox-Spdy: h2

POST d8c14d4960ca.edge.sdk.awswaf.com/d8c14d4960ca/a18a4859af9c/telemetry

3.167.2.48

200 OK

1.4 kB

URL POST
d8c14d4960ca.edge.sdk.awswaf.com/d8c14d4960ca/a18a4859af9c/telemetry
IP
3.167.2.48:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerAmazon
Subject*.edge.sdk.awswaf.com
Fingerprint17:81:C6:3C:64:8D:61:C0:C4:F8:67:F7:82:B9:6C:45:E6:6C:DF:9A
ValidityFri, 29 Nov 2024 00:00:00 GMT - Mon, 29 Dec 2025 23:59:59 GMT

File type
JSON text data
Size
1.4 kB (1393 bytes)
Hash
027f18b2da60f69de84f7b2bc0733d16
a8e8fee19270894069b4ea233935c4c0b8596048
8ebdb1c6e50368644828deb5f37fe100a7aa59a5622f877a76946c6f06fb2aa9

HTTP Headers

POST /d8c14d4960ca/a18a4859af9c/telemetry HTTP/1.1
Host: d8c14d4960ca.edge.sdk.awswaf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 2705
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json
date: Fri, 18 Jul 2025 03:09:19 GMT
expires: 0
x-amzn-waf-challenge-id: Root=1-6879badf-0324ed531e1bdd445523d856
access-control-max-age: 86400
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,GET,POST
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
content-encoding: gzip
vary: accept-encoding
x-cache: Miss from cloudfront
via: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 32AjCtMdT9vYarzHrXRci8yL1XIBYKjd3nwKwK3-FNus_JSa1HgKAw==
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/f982442d.18b3cb46.chunk.js

3.167.2.62

200 OK

168 kB

URL GET
cf.bstatic.com/psb/capla/static/js/f982442d.18b3cb46.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65455)
Size
168 kB (167714 bytes)
Hash
c6e2ba1678786eaa365df5f182283ac3
6b9b84c154aea2bd4e8e84d30a2c251b1ba725bf
e8343068a8ce6caf3c64dedb3fad54f4b891844089ebe9f5b6605eaacd772369

HTTP Headers

GET /psb/capla/static/js/f982442d.18b3cb46.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Thu, 17 Jul 2025 14:13:06 GMT
last-modified: Wed, 16 Jul 2025 16:00:57 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 75f2989e4c756494607504d519d0d265808c5e29
x-amz-version-id: LOFkBm_tcdIYf6Hxp9CMSj7jbVEcUWNL
server: AmazonS3
etag: W/"c6e2ba1678786eaa365df5f182283ac3"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 9-rXWY5QAc1xf7CDSKO1QYmedoUvuQDnm-t1OjhsZWSp3vM3GsB4Aw==
age: 46559
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/782ad794.f45b5996.chunk.js

3.167.2.62

200 OK

893 kB

URL GET
cf.bstatic.com/psb/capla/static/js/782ad794.f45b5996.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
893 kB (892623 bytes)
Hash
8fc4575a1fe8af2a82192d64b1ef5065
7b680a2d36a8c617bb3f5c69a5f0e614ed2ecffc
488bfcd47601b1ba54f213176c66280731d0190abec143bc5b0f77d32aadf2bb

HTTP Headers

GET /psb/capla/static/js/782ad794.f45b5996.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Thu, 17 Jul 2025 14:12:04 GMT
last-modified: Tue, 15 Jul 2025 07:45:49 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: dc007423c1c3d334ee9579a86344a07d02da168b
x-amz-version-id: LJecs6fRaGCKTWkFFEbA3y5JKKzeNoUM
server: AmazonS3
etag: W/"8fc4575a1fe8af2a82192d64b1ef5065"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: IohEk8n8gEdCxVdjzqniBw0PRUxL175zkvy06_kwQCi4Hy38wSejtg==
age: 46621
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET r-xx.bstatic.com/xdata/images/hotel/263x210/595548591.jpeg?k=01741bc3aef1a5233dd33794dda397083092c0215b153915f27ea489468e57a2&o=

3.167.2.62

200 OK

11 kB

URL GET
r-xx.bstatic.com/xdata/images/hotel/263x210/595548591.jpeg?k=01741bc3aef1a5233dd33794dda397083092c0215b153915f27ea489468e57a2&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3
Size
11 kB (11139 bytes)
Hash
8e3dc149558f8cd7e2efeae395eca306
27dc769599460016a493183a5fcaf261d2ba3e10
dc6246f817e8e3bd6a8e03bf8f3c80650864ec16c75c09f22520694b3b98c53e

HTTP Headers

GET /xdata/images/hotel/263x210/595548591.jpeg?k=01741bc3aef1a5233dd33794dda397083092c0215b153915f27ea489468e57a2&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Sat, 12 Jul 2025 06:43:46 GMT
content-language: 11139
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "11c5805c3e5d5b62517e1a8bb341c3ad76675bf2"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: dWVmac-7ETxRhXivGFjPHHYXo6fsIvDTbmTvBw2QcUbo9pBx_xiYXg==
age: 505523
X-Firefox-Spdy: h2

GET q-xx.bstatic.com/xdata/images/city/170x136/967864.jpg?k=a98989bf56eeff2512cea0b0f4ec6aae0906b781cfb154d0cc574e906b8da18b&o=

3.167.2.62

0 B

URL GET
q-xx.bstatic.com/xdata/images/city/170x136/967864.jpg?k=a98989bf56eeff2512cea0b0f4ec6aae0906b781cfb154d0cc574e906b8da18b&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /xdata/images/city/170x136/967864.jpg?k=a98989bf56eeff2512cea0b0f4ec6aae0906b781cfb154d0cc574e906b8da18b&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

POST d8c14d4960ca.edge.sdk.awswaf.com/d8c14d4960ca/a18a4859af9c/telemetry

3.167.2.48

200 OK

1.0 kB

URL POST
d8c14d4960ca.edge.sdk.awswaf.com/d8c14d4960ca/a18a4859af9c/telemetry
IP
3.167.2.48:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerAmazon
Subject*.edge.sdk.awswaf.com
Fingerprint17:81:C6:3C:64:8D:61:C0:C4:F8:67:F7:82:B9:6C:45:E6:6C:DF:9A
ValidityFri, 29 Nov 2024 00:00:00 GMT - Mon, 29 Dec 2025 23:59:59 GMT

File type
JSON text data
Size
1.0 kB (1040 bytes)
Hash
d64b8c1739d2f41316cdc105963c965e
4f9bf47db5ab05e2247cf9cfae9401cdaee12b5b
101dbe1a49f960d5b1252cc8c948745fae5436c1d22b9a6cbde4a96a0e4ebc16

HTTP Headers

POST /d8c14d4960ca/a18a4859af9c/telemetry HTTP/1.1
Host: d8c14d4960ca.edge.sdk.awswaf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 2350
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json
date: Fri, 18 Jul 2025 03:09:12 GMT
expires: 0
x-amzn-waf-challenge-id: Root=1-6879bad8-5d6ef2e060bd2fd43e46e2a1
access-control-max-age: 86400
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,GET,POST
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
content-encoding: gzip
vary: accept-encoding
x-cache: Miss from cloudfront
via: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: kYfHeYqU1u1KE5g7wouX95ls5NXbf7pyruBDd7hjbmEL2kTqJcymOg==
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/da3d7717.e4e96b0e.chunk.js

3.167.2.62

200 OK

32 kB

URL GET
cf.bstatic.com/psb/capla/static/js/da3d7717.e4e96b0e.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (31709)
Size
32 kB (31902 bytes)
Hash
20fe087642b87c2935374f44f9c46414
cba4dc8e693fc27cb13f9417601ffa179a2de378
949d8d06cc9a81d3e8a67d6010d45ef228453fed8f4bace47f4d9a4415c145c6

HTTP Headers

GET /psb/capla/static/js/da3d7717.e4e96b0e.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Mon, 14 Jul 2025 12:12:09 GMT
last-modified: Wed, 09 Jul 2025 15:25:19 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 1d3cbc19e34e58da2b1eaead04bb4ce6eb56fa7f
x-amz-version-id: f0vTtHkhjutxEGQBVuSbRjz2jtXB81lC
server: AmazonS3
etag: W/"20fe087642b87c2935374f44f9c46414"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: U_mhNneo_tyBKVenDCavA8zAWh0-PX9k2FYz9PyxXm4AJBOBdnvE4A==
age: 313016
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/node_modules_bookingcom_bui-react_components_BUIProvider_BUIProvider_context_js-_1b4e1.72aa641c.js

3.167.2.62

200 OK

735 B

URL GET
cf.bstatic.com/psb/capla/static/js/node_modules_bookingcom_bui-react_components_BUIProvider_BUIProvider_context_js-_1b4e1.72aa641c.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (551)
Size
735 B (735 bytes)
Hash
d014c3d2d820d6ed93aef93dcafc7605
87f5a11dae853d964eb2810adc9a83bdb380df02
899c7551ae393cd0921cb7cb0c8a7ebe8196e27539d9bd41ef91162f4c72d7eb

HTTP Headers

GET /psb/capla/static/js/node_modules_bookingcom_bui-react_components_BUIProvider_BUIProvider_context_js-_1b4e1.72aa641c.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
content-length: 735
date: Mon, 30 Jun 2025 08:27:21 GMT
last-modified: Thu, 26 Jun 2025 12:34:34 GMT
etag: "d014c3d2d820d6ed93aef93dcafc7605"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 3d084c2f53f1d8e9deb7ecadb5d0b5adea6e9e28
x-amz-version-id: UYmWzSrZHmvgWhw.yaD19ZqlJdzr8L0V
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 1s8jQl4thnOXpgShjj3LoTsBvB96Z0ZtFRNaRSzVg5TXnqz2j8g-Xw==
age: 1536106
timing-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2

GET r-xx.bstatic.com/xdata/images/hotel/263x210/595551044.jpeg?k=262826efe8e21a0868105c01bf7113ed94de28492ee370f4225f00d1de0c6c44&o=

3.167.2.62

200 OK

13 kB

URL GET
r-xx.bstatic.com/xdata/images/hotel/263x210/595551044.jpeg?k=262826efe8e21a0868105c01bf7113ed94de28492ee370f4225f00d1de0c6c44&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3
Size
13 kB (13250 bytes)
Hash
2f104da05a376565370e857b445f7f72
bb248cd39f72c4ae37d9e43e5cb952d3e18c2506
59baacb1df18322e8dcf285191aa600784d223573728fc22ed1c29484105f45e

HTTP Headers

GET /xdata/images/hotel/263x210/595551044.jpeg?k=262826efe8e21a0868105c01bf7113ed94de28492ee370f4225f00d1de0c6c44&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Sat, 12 Jul 2025 06:43:46 GMT
content-language: 13250
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "c04c345dd5eebdaaa859602af056fa031a10f84d"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: bA8u3l1jXOWJGiQwvRwOgRmvsWOVS-nw27dybbOL1ysGHKf6INEMvg==
age: 505523
X-Firefox-Spdy: h2

POST www.booking.com/c360/v1/track

54.240.174.43

200 OK

75 B

URL POST
www.booking.com/c360/v1/track
IP
54.240.174.43:443
ASN
#16509 AMAZON-02

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.booking.com
Fingerprint40:C8:C7:99:E8:DF:B4:B7:80:45:6C:57:15:2A:09:28:16:A7:2B:BB
ValidityFri, 07 Mar 2025 00:00:00 GMT - Sat, 17 Jan 2026 23:59:59 GMT

File type
JSON text data
Size
75 B (75 bytes)
Hash
8e0cb395902c1d286f4c7f714d92059f
1575bd2f67402f484139e1846faa3698ef384d24
b45d0ba3f2b4e41009265e8c80ced8fa8d28a91f8d415ab9bbefd63d9dd1619f

HTTP Headers

POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-Type: application/json
X-Booking-Platform: www
X-Booking-SiteType-Id: 1
X-Booking-Pageview-Id: c9c216276d7902f0
X-Booking-Session-Id: undefined
X-Booking-ET-Seed: undefined
X-Booking-AID: 818288
X-Booking-Label: undefined
X-Booking-CSRF: undefined
X-Booking-Language-Code: en-us
Content-Length: 2780
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbKE7bjkbYWzkssVfMmPBJG5sR9oMGYqz2d6iZkeX%2Bd5nQpRIS%2FDh2dNFnDGRVmVOi800kUmuzkhMMeaSPIp%2Bf%2FWNg9BC8iIp74wDTfIDWf8QNyjX9Alj2El96fpdqPE%2F5qZsmr0qZOMniSpGyFkXO1wfW8GVvtgtsbg89GhlMGXY%3D; pcm_personalization_disabled=0; bkng_sso_auth=CAIQ0+WGHxpmrqlfCI/7cj7WenmOuL5QxSn4u0pk06cV4xlrrrhmJKAb1FesYuKumLV4pSqW60W2NnCfEB+Pr3GDZ3i/aG465ACIGtpwXlBI9XDqnlhOkhTT7xUttessFF0wXrOKUtvFXd/bRD8o; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3De1046c70-f5fb-4ace-8c3b-1dcf67343057%26consentedAt%3D2025-07-18T03%3A09%3A02.576Z%26expiresAt%3D2026-01-14T03%3A09%3A02.576Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; cors_js=1; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 54
server: nginx
date: Fri, 18 Jul 2025 03:09:09 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
content-security-policy: default-src 'self'; frame-ancestors https://*.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBK6LEtX6%2Blc%2Ban7PyPDfWLhOYG59nPKJ5sRvc6jbe983fZcH3%2FORP31B8mGbj9FoEKzvHvxOKBNJ5I94HLp6whafkm4qwzGb%2BaO8x%2BsTFxIBq4g4d3bDTnZg4kCPcH5kuRjN69HM10x8OzlpSlkMipY39hijNbPue0%3D; domain=.booking.com; path=/; expires=Wed, 17-Jul-2030 03:09:09 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lv3iGDNBhmoSLnahEg8F2xIXne0wzIdIH9OVtA4OF7nAyDoMLncoUQ==
server-timing: cdn-upstream-layer;desc="REC",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=1,cdn-upstream-fbl;dur=59,cdn-cache-miss,cdn-pop;desc="OSL50-P1",cdn-rid;desc="lv3iGDNBhmoSLnahEg8F2xIXne0wzIdIH9OVtA4OF7nAyDoMLncoUQ==",cdn-downstream-fbl;dur=100
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/css/5b1239aa.767c4bdf.chunk.css

3.167.2.62

200 OK

1.8 kB

URL GET
cf.bstatic.com/psb/capla/static/css/5b1239aa.767c4bdf.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (747)
Size
1.8 kB (1775 bytes)
Hash
b25c375fd52a8ab1d156c02c6f02f86d
6d92790f00fc4e11126fddf91b3a9b1b8ebbe530
ada01bef8d7d00371de0e6f7fe1b4e69e27620b62ab25baf09853ae613458a6a

HTTP Headers

GET /psb/capla/static/css/5b1239aa.767c4bdf.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Mon, 14 Jul 2025 13:26:27 GMT
last-modified: Mon, 14 Jul 2025 08:43:18 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 105c281e5639f5ad04cebbaacef2e8b0ba285a26
x-amz-version-id: UxDmZ8nUkGkoZSLpxMlNUSu7LHENikj8
server: AmazonS3
etag: W/"b25c375fd52a8ab1d156c02c6f02f86d"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: u5ZsloxqUoqIWBIt8B9OhTH2HZB81Eyi-6MB1Y0uy22e4KSUWknMKg==
age: 308558
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/ddf740c7.2d5b434a.chunk.js

3.167.2.62

200 OK

373 kB

URL GET
cf.bstatic.com/psb/capla/static/js/ddf740c7.2d5b434a.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65455)
Size
373 kB (373318 bytes)
Hash
aad12ea057ae0fe5beb3372f3e286c06
7b0dd3c89ad3822767263325416e5d3289f6ae90
5dca312a334290a80d81db978ef38e3e2fd592f2fcdab0d3cbaf75d9506af305

HTTP Headers

GET /psb/capla/static/js/ddf740c7.2d5b434a.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Thu, 10 Jul 2025 09:20:58 GMT
last-modified: Wed, 09 Jul 2025 15:28:07 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 1d3cbc19e34e58da2b1eaead04bb4ce6eb56fa7f
x-amz-version-id: 4ousDH4uXIv_c0kZzzWbDSXPjBB3UUM5
server: AmazonS3
etag: W/"aad12ea057ae0fe5beb3372f3e286c06"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 7IoGhp_YJRaUn3QkB-_iLj4mZJtv-TQ-yFKki8zNrYS2axioEQSJXA==
age: 668887
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET q-xx.bstatic.com/xdata/images/hotel/263x210/595550862.jpeg?k=3514aa4abb76a6d19df104cb307b78b841ac0676967f24f4b860d289d55d3964&o=

3.167.2.62

0 B

URL GET
q-xx.bstatic.com/xdata/images/hotel/263x210/595550862.jpeg?k=3514aa4abb76a6d19df104cb307b78b841ac0676967f24f4b860d289d55d3964&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /xdata/images/hotel/263x210/595550862.jpeg?k=3514aa4abb76a6d19df104cb307b78b841ac0676967f24f4b860d289d55d3964&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

GET cf.bstatic.com/xdata/images/hotel/square600/420377357.webp?k=29a0e9879ac8361539c3dae41f047d383e6fa6917f8f47cb50dad001ada0eae6&o=

3.167.2.62

200 OK

46 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/420377357.webp?k=29a0e9879ac8361539c3dae41f047d383e6fa6917f8f47cb50dad001ada0eae6&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
46 kB (46360 bytes)
Hash
54d08790bdacf9b7ced1a06a690eb4e9
37206dc2736cc7be8bb0fa9939acda3ad0932120
7f59aa8f893072e340d23cb445129d669f096783711eaa8be83972d41c08e41d

HTTP Headers

GET /xdata/images/hotel/square600/420377357.webp?k=29a0e9879ac8361539c3dae41f047d383e6fa6917f8f47cb50dad001ada0eae6&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Mon, 30 Jun 2025 05:00:43 GMT
etag: "212fa7bf7fcc086a8902ddf83107bbf360e90a38"
content-language: 46360
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: G7bGoorVADzg7XqFfa-wsFeoXKunn8CnWqKfxMLlJUklfHojwutP6A==
age: 1548507
X-Firefox-Spdy: h2

GET accounts.google.com/gsi/status?client_id=901905703382-m88jn1h9ll89odkt6t5muc6h7ep83rlh.apps.googleusercontent.com&cas=cATBGonmlxHX45xIHPQMYgeKVgKPIU4Cj%2B4tAkogziM&has_opted_out_fedcm=false

142.250.147.84

200 OK

72 B

URL GET
accounts.google.com/gsi/status?client_id=901905703382-m88jn1h9ll89odkt6t5muc6h7ep83rlh.apps.googleusercontent.com&cas=cATBGonmlxHX45xIHPQMYgeKVgKPIU4Cj%2B4tAkogziM&has_opted_out_fedcm=false
IP
142.250.147.84:443
ASN
#15169 GOOGLE

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerGoogle Trust Services
Subject*.google.com
FingerprintB9:AB:CF:25:07:76:A5:52:8A:C6:4E:00:9A:A3:2B:D3:B6:32:A6:32
ValidityMon, 23 Jun 2025 08:40:16 GMT - Mon, 15 Sep 2025 08:40:15 GMT

File type
ASCII text
Size
72 B (72 bytes)
Hash
199de94a981d496b2eef770d82d6766a
312bae18d55e3903e0e0380b0678e022b7eefff7
a41cb1aae1f29515ba3335239793830647c0fc6c0770ebc172ace3d45d936263

HTTP Headers

GET /gsi/status?client_id=901905703382-m88jn1h9ll89odkt6t5muc6h7ep83rlh.apps.googleusercontent.com&cas=cATBGonmlxHX45xIHPQMYgeKVgKPIU4Cj%2B4tAkogziM&has_opted_out_fedcm=false HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/json; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
x-content-type-options: nosniff
access-control-allow-origin: https://www.booking.com
access-control-allow-credentials: true
access-control-allow-methods: GET
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 18 Jul 2025 03:09:11 GMT
content-disposition: attachment; filename="json.txt"; filename*=UTF-8''json.txt
content-security-policy: require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, script-src 'nonce-UOik7ii8njSNLu83yx46ow' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET cf.bstatic.com/xdata/images/hotel/square240/588993822.jpg?k=2c08581b050de4f15af00d5a2817737f2810819fd212dcc0dd57d0563c88db35&o=

3.167.2.62

200 OK

11 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square240/588993822.jpg?k=2c08581b050de4f15af00d5a2817737f2810819fd212dcc0dd57d0563c88db35&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x240, components 3
Size
11 kB (10830 bytes)
Hash
473231474032dd2593337fc1ea2b6fe9
ed67802571df4c6013de4bb94f725eb3ed1b298e
8612deeefd76b1a90f868a3ca64f6f156ca5970d747aea2189ad5e3928aa4c30

HTTP Headers

GET /xdata/images/hotel/square240/588993822.jpg?k=2c08581b050de4f15af00d5a2817737f2810819fd212dcc0dd57d0563c88db35&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Thu, 26 Jun 2025 18:34:03 GMT
etag: "d7e260503bac3b3706e7ed98db32d0c5cbb6ba11"
content-language: 10830
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: c098E6dqBm4wlf0E6bDcKubJDqwUOEs-GCQ9-AU55-ymVam02qlsqA==
age: 1845307
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/client.7368b6f9.js

3.167.2.62

200 OK

1.2 MB

URL GET
cf.bstatic.com/psb/capla/static/js/client.7368b6f9.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65463)
Size
1.2 MB (1192160 bytes)
Hash
50a657a08e9884680ef91a838e2427e5
640b70aeeac68c1f3f136945183c9f6878b6e125
7c1a12008e9d4b8c06de83baf59f6bf77f65b542eac584fe0c0d52f10ee328bf

HTTP Headers

GET /psb/capla/static/js/client.7368b6f9.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Thu, 17 Jul 2025 14:12:04 GMT
last-modified: Thu, 17 Jul 2025 13:42:54 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: cf113847069d0c9b9cfc8f783a2ccf0cb111e3b0
x-amz-version-id: Q3P6FKef2Mumgb86LiEuBf4Mup9fm3zk
server: AmazonS3
etag: W/"50a657a08e9884680ef91a838e2427e5"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 4LYXVFWSqscPcLSy3IxfJ4nXn9g9N5OcWJNTJ45txFgl-IA2GjVxNg==
age: 46621
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/4a89d2db.5c048106.chunk.js

3.167.2.62

200 OK

467 B

URL GET
cf.bstatic.com/psb/capla/static/js/4a89d2db.5c048106.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (355)
Size
467 B (467 bytes)
Hash
5c651d84eb655cccfcfa90af2de4487a
a8db8049b2df9b57e9e1b58663b2703b32907031
36ac19ccc058f02117dedbfbc939a37905c39f548be2a5b269ef097071869dc9

HTTP Headers

GET /psb/capla/static/js/4a89d2db.5c048106.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
content-length: 467
date: Tue, 06 May 2025 11:41:17 GMT
last-modified: Tue, 06 May 2025 09:57:55 GMT
etag: "5c651d84eb655cccfcfa90af2de4487a"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 7fe15ce3e9a69012a65be125503a48edc08a1a5f
x-amz-version-id: z_CD99MhvTSNaqWFvYpSTx0J_xTGVU9.
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: HN6dGc8gpqxV9RNAEjjRX_IbSIEhZ3F8pqEf3L9G4V90-Kmj-eBl2w==
age: 6276468
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/85d4a1a2.17bc27c8.chunk.js

3.167.2.62

200 OK

29 kB

URL GET
cf.bstatic.com/psb/capla/static/js/85d4a1a2.17bc27c8.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (28701)
Size
29 kB (28813 bytes)
Hash
2e285c69dc46f3b251e6fd521428432c
dd5d5218a4e5ac0a5857f3114dcf81e35330120c
8edeb589590102d270ae516f9c1e6036a6778108313eebacd6e3e831ac065257

HTTP Headers

GET /psb/capla/static/js/85d4a1a2.17bc27c8.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Thu, 17 Jul 2025 14:13:06 GMT
last-modified: Thu, 17 Jul 2025 10:48:15 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 61781097949b6c11d1eb2e43cbbc724d1c024b46
x-amz-version-id: 9Md0CW8XabXi0.WRfh8tjGYoum8u.7rT
server: AmazonS3
etag: W/"2e285c69dc46f3b251e6fd521428432c"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: jOlFocO5SoZqG5LaLgsJtcJx5Z-mOKBmG6vlgdeKwBKFF9sWvn0uXQ==
age: 46559
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/city/600x600/644293.jpg?k=24c08396bd44343c9dcc78f0df41e114bf7e6aeda3d339101c37e7ba3aa707db&o=

3.167.2.62

200 OK

58 kB

URL GET
cf.bstatic.com/xdata/images/city/600x600/644293.jpg?k=24c08396bd44343c9dcc78f0df41e114bf7e6aeda3d339101c37e7ba3aa707db&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 600x600, components 3
Size
58 kB (57860 bytes)
Hash
5df7a16eaf126a61fc720bc0fe9a4950
aaea273239d0ca07a03c21cc2ebfe8b1e2d2d554
b70d2a3a7b2fa6d8af81bccda306bf170e6b22a3b000fbbe1751b7786ce6c65b

HTTP Headers

GET /xdata/images/city/600x600/644293.jpg?k=24c08396bd44343c9dcc78f0df41e114bf7e6aeda3d339101c37e7ba3aa707db&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Fri, 20 Jun 2025 17:27:52 GMT
etag: "9ef8ef8b3d685f8929e0a569f314cb7f2d7c7fbb"
content-language: 57860
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: c758e9fjaWnWxNQOjEZKJWYYvMyG_Gq-m0q_Ffw-VGUZe7TmesV-Og==
age: 2367673
X-Firefox-Spdy: h2

GET cf.bstatic.com/static/css/searchresults_cloudfront_sd.iq_ltr/ac82cc870e61f490c7f2cdf2d06fe1c570352f84.css

3.167.2.62

200 OK

352 kB

URL GET
cf.bstatic.com/static/css/searchresults_cloudfront_sd.iq_ltr/ac82cc870e61f490c7f2cdf2d06fe1c570352f84.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
352 kB (352154 bytes)
Hash
12eb5659edf03156dab9a9a7b850d416
6d6a0b07603fa6916cd0fb1b633fae6705d35d2a
b683391713dcb9171dfdc82907037960fa70bbc8553a0437540ceaea9c81239b

HTTP Headers

GET /static/css/searchresults_cloudfront_sd.iq_ltr/ac82cc870e61f490c7f2cdf2d06fe1c570352f84.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 27 May 2025 13:00:03 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
x-amz-version-id: aY9Jg8Td15Vfxb1t7PjAaBT.yOdoZFVD
server: AmazonS3
date: Fri, 11 Jul 2025 06:41:30 GMT
cache-control: public,max-age=604800
etag: W/"12eb5659edf03156dab9a9a7b850d416"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: cbvyzLm0i86MHUIbs4e1xMYCPppIR8i0y3G-ecbo4c6qIL-4n_rM6A==
age: 592059
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET accommodations.booking.com/orca/chunk-metadata?chunk=5aeeadf2&mfe=b-index-lp-web-mfe&lang=en-us&namespace=ZWJLAYQA

54.240.174.23

200 OK

2.7 kB

URL GET
accommodations.booking.com/orca/chunk-metadata?chunk=5aeeadf2&mfe=b-index-lp-web-mfe&lang=en-us&namespace=ZWJLAYQA
IP
54.240.174.23:443
ASN
#16509 AMAZON-02

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.booking.com
Fingerprint40:C8:C7:99:E8:DF:B4:B7:80:45:6C:57:15:2A:09:28:16:A7:2B:BB
ValidityFri, 07 Mar 2025 00:00:00 GMT - Sat, 17 Jan 2026 23:59:59 GMT

File type
JSON text data
Size
2.7 kB (2708 bytes)
Hash
08aee3f41f1a0e8987d34705c43bd2fe
87d5c9dfc933204ecc1ea71f893e506a05039a17
c09917e98f36d93d04c9658095473ce34a0fbf8cd9a6a10425601c6221a57c61

HTTP Headers

GET /orca/chunk-metadata?chunk=5aeeadf2&mfe=b-index-lp-web-mfe&lang=en-us&namespace=ZWJLAYQA HTTP/1.1
Host: accommodations.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
x-booking-et-serialized-state: EZC0me3pHIwv-yYtQGQUdHMaUQ3rRxsio5-cDr4cc3Ohkp_KG_12HWFDp-raNqwOx
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBK6LEtX6%2Blc%2Ban7PyPDfWLhOYG59nPKJ5sRvc6jbe983fZcH3%2FORP31B8mGbj9FoEKzvHvxOKBNJ5I94HLp6whafkm4qwzGb%2BaO8x%2BsTFxIBq4g4d3bDTnZg4kCPcH5kuRjN69HM10x8OzlpSlkMipY39hijNbPue0%3D; pcm_personalization_disabled=0; bkng_sso_auth=CAIQ0+WGHxpmrqlfCI/7cj7WenmOuL5QxSn4u0pk06cV4xlrrrhmJKAb1FesYuKumLV4pSqW60W2NnCfEB+Pr3GDZ3i/aG465ACIGtpwXlBI9XDqnlhOkhTT7xUttessFF0wXrOKUtvFXd/bRD8o; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3De1046c70-f5fb-4ace-8c3b-1dcf67343057%26consentedAt%3D2025-07-18T03%3A09%3A02.576Z%26expiresAt%3D2026-01-14T03%3A09%3A02.576Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; cors_js=1; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json
server: envoy
date: Fri, 18 Jul 2025 03:09:10 GMT
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
access-control-allow-origin: https://www.booking.com
access-control-allow-credentials: true
referrer-policy: no-referrer
content-encoding: gzip
x-envoy-upstream-service-time: 19
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: iuqtTsH_hulw4_ozyNniluVlGjorxCt8qIgfIBSBqAcCXObC2Bx02w==
X-Firefox-Spdy: h2

GET r-xx.bstatic.com/xdata/images/hotel/263x210/595549020.jpeg?k=f5df2d3dc0000073bef517b0cab9593036f3f1aafa2421df31a6538a8c56b834&o=

3.167.2.62

200 OK

13 kB

URL GET
r-xx.bstatic.com/xdata/images/hotel/263x210/595549020.jpeg?k=f5df2d3dc0000073bef517b0cab9593036f3f1aafa2421df31a6538a8c56b834&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3
Size
13 kB (13389 bytes)
Hash
a88959fe6e892e9dd187cf2f50069bc2
93a4110565b8414b425caa3a520fab22867c0307
eb050f08edeea08c1e5ff811739094a0493663c7c996c00a7a57e487dbf0fbfa

HTTP Headers

GET /xdata/images/hotel/263x210/595549020.jpeg?k=f5df2d3dc0000073bef517b0cab9593036f3f1aafa2421df31a6538a8c56b834&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Fri, 04 Jul 2025 08:55:58 GMT
content-language: 13389
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "ffffe6fd9ab953efbd3846a9790400a57132ae0a"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: jROVhzYD5hdovD6KK7nhTV2KGiR4U9SvHtaxcy9uqu2DtXjbFzCqMw==
age: 1188791
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/13125860.webp?k=35b70a7e8a17a71896996cd55d84f742cd15724c3aebaed0d9b5ba19c53c430b&o=

3.167.2.62

0 B

URL GET
cf.bstatic.com/xdata/images/hotel/square600/13125860.webp?k=35b70a7e8a17a71896996cd55d84f742cd15724c3aebaed0d9b5ba19c53c430b&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /xdata/images/hotel/square600/13125860.webp?k=35b70a7e8a17a71896996cd55d84f742cd15724c3aebaed0d9b5ba19c53c430b&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

GET cf.bstatic.com/static/css/main_cloudfront_sd.iq_ltr/9198b87e4070e31551f78ef40e49eaffcfc04612.css

3.167.2.62

200 OK

509 kB

URL GET
cf.bstatic.com/static/css/main_cloudfront_sd.iq_ltr/9198b87e4070e31551f78ef40e49eaffcfc04612.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
509 kB (509193 bytes)
Hash
8467d42d938d64a983814977a7d75417
b72637a8d07e1d277f51d72214e4ec6f4172cc27
4817163e0e189349967e66f95a97f8ed101feff42a355a0f06e147e1de2129d2

HTTP Headers

GET /static/css/main_cloudfront_sd.iq_ltr/9198b87e4070e31551f78ef40e49eaffcfc04612.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
last-modified: Wed, 28 May 2025 10:37:52 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
x-amz-version-id: LS8Alojlu4s0MXzzfIrvQzQNUE5IDnBA
server: AmazonS3
date: Fri, 11 Jul 2025 12:54:03 GMT
cache-control: public,max-age=604800
etag: W/"8467d42d938d64a983814977a7d75417"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: vKt9U-m4fL2d0-YI1fWJDMyh_Yk9Ygv5ctLlfhemBmuoNJNA3EUJCA==
age: 569701
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/5f127cf4.29374ed1.chunk.js

3.167.2.62

200 OK

1.2 MB

URL GET
cf.bstatic.com/psb/capla/static/js/5f127cf4.29374ed1.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65455)
Size
1.2 MB (1223693 bytes)
Hash
7044c05efc474f1ebd02b7f018c9f136
1e86f7bbfdd842d79b173826bbe3c2f0c1f4d427
5a3e41d424e6de75209c6ff843f64f21921553271ba25b5035418b1e81676e90

HTTP Headers

GET /psb/capla/static/js/5f127cf4.29374ed1.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Thu, 17 Jul 2025 14:13:06 GMT
last-modified: Thu, 17 Jul 2025 13:37:57 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: e829eaea6cb5b2d54f4c2f4114f48aed7ed0efe0
x-amz-version-id: iktzhYZJ28Zoi7_1bSTMWmw6DZAaDPzY
server: AmazonS3
etag: W/"7044c05efc474f1ebd02b7f018c9f136"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 88nPD2h3Ua9089fespWwrRlHtPrjhT3VLLoEcttlVQd4fRJbUnWcgw==
age: 46559
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET r-xx.bstatic.com/xdata/images/hotel/263x210/595548591.jpeg?k=01741bc3aef1a5233dd33794dda397083092c0215b153915f27ea489468e57a2&o=

3.167.2.62

200 OK

11 kB

URL GET
r-xx.bstatic.com/xdata/images/hotel/263x210/595548591.jpeg?k=01741bc3aef1a5233dd33794dda397083092c0215b153915f27ea489468e57a2&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3
Size
11 kB (11139 bytes)
Hash
8e3dc149558f8cd7e2efeae395eca306
27dc769599460016a493183a5fcaf261d2ba3e10
dc6246f817e8e3bd6a8e03bf8f3c80650864ec16c75c09f22520694b3b98c53e

HTTP Headers

GET /xdata/images/hotel/263x210/595548591.jpeg?k=01741bc3aef1a5233dd33794dda397083092c0215b153915f27ea489468e57a2&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Sat, 12 Jul 2025 06:43:46 GMT
content-language: 11139
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "11c5805c3e5d5b62517e1a8bb341c3ad76675bf2"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: sf8bz9er9ZCtub2v3rMyPw_hqCyx8LXxC-LIZnGrzqmOBP5RkTJ-1Q==
age: 505523
X-Firefox-Spdy: h2

GET r-xx.bstatic.com/xdata/images/hotel/263x210/595549239.jpeg?k=ad5273675c516cc1efc6cba2039877297b7ad2b5b3f54002c55ea6ebfb8bf949&o=

3.167.2.62

200 OK

13 kB

URL GET
r-xx.bstatic.com/xdata/images/hotel/263x210/595549239.jpeg?k=ad5273675c516cc1efc6cba2039877297b7ad2b5b3f54002c55ea6ebfb8bf949&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3
Size
13 kB (13185 bytes)
Hash
b74923a6a5fbb135a8d5406906ce355d
a9404b16b93b7bd2dca39eb1788526fa8fd2eb6d
50d86f2ab7121a780368030f1b20d1f397490a0776bb2255818056882da436cb

HTTP Headers

GET /xdata/images/hotel/263x210/595549239.jpeg?k=ad5273675c516cc1efc6cba2039877297b7ad2b5b3f54002c55ea6ebfb8bf949&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Fri, 04 Jul 2025 13:16:55 GMT
content-language: 13185
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "ab2d63721c5a160ac8568aeabb6a9517fd414f59"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: OZnX5ZENXMdyWOdYxAuN0RRYynDq2NNfIUGQekkNlL6P2TLO05CbOg==
age: 1173134
X-Firefox-Spdy: h2

GET q-xx.bstatic.com/xdata/images/hotel/263x210/595550862.jpeg?k=3514aa4abb76a6d19df104cb307b78b841ac0676967f24f4b860d289d55d3964&o=

3.167.2.62

200 OK

9.9 kB

URL GET
q-xx.bstatic.com/xdata/images/hotel/263x210/595550862.jpeg?k=3514aa4abb76a6d19df104cb307b78b841ac0676967f24f4b860d289d55d3964&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3
Size
9.9 kB (9916 bytes)
Hash
b5ec3733540f196f9c852727bb199e38
d5923ed7fbbe62b540c65f7965b1dad225b5c0c6
8e7b7afafccb40790644f48d5a5736d8dedc44402988d65d2cd35a3bdc6af4b6

HTTP Headers

GET /xdata/images/hotel/263x210/595550862.jpeg?k=3514aa4abb76a6d19df104cb307b78b841ac0676967f24f4b860d289d55d3964&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Sat, 12 Jul 2025 06:43:46 GMT
content-language: 9916
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "b61d41298cd8a3d9af1324ab8204a1272aa3c0e2"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: eREfMu3XeWALOkthUq_wvxYIQ9vSCLnGpHe_z2ZM2VRMKCxUX29hBw==
age: 505523
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/googlesans/v58/4UaRrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iq2vgCIhMl07v0x.woff2

142.250.74.35

200 OK

52 kB

URL GET
fonts.gstatic.com/s/googlesans/v58/4UaRrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iq2vgCIhMl07v0x.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://accounts.google.com/gsi/iframe/select?client_id=901905703382-m88jn1h9ll89odkt6t5muc6h7ep83rlh.apps.googleusercontent.com&auto_select=false&ux_mode=popup&ui_mode=card&context=signin&nonce=6615974505406946&as=2N5lVsStsvHkI26Qfu6v5VtZB_SK-Tl393C9uo-SBS4&is_itp=true&channel_id=a111a2893d72e0dc740011fa52eba806f3160f286a0144ca5f44bcff00a666d5&origin=https%3A%2F%2Fwww.booking.com&oauth2_auth_url=https%3A%2F%2Faccounts.google.com%2Fo%2Foauth2%2Fv2%2Fauth
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint9A:5E:6D:44:D8:FB:03:E5:9A:13:6D:FF:53:DA:1C:8C:EA:3A:A7:AA
ValidityMon, 23 Jun 2025 08:41:27 GMT - Mon, 15 Sep 2025 08:41:26 GMT

File type
Web Open Font Format (Version 2), TrueType, length 52212, version 1.0
Size
52 kB (52212 bytes)
Hash
bbf2ef715b5ac4aa6f847006052e38af
047a89aa049c69af81be14668316f11026c5feba
b342a0861eda53a8b25cea5573516c6ba50a9f3b32257bf160c8a425a307896d

HTTP Headers

GET /s/googlesans/v58/4UaRrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iq2vgCIhMl07v0x.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://accounts.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 52212
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Jul 2025 10:21:51 GMT
expires: Fri, 17 Jul 2026 10:21:51 GMT
cache-control: public, max-age=31536000
age: 60441
last-modified: Tue, 23 May 2023 16:35:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET r-xx.bstatic.com/xdata/images/hotel/263x210/595550098.jpeg?k=d1b5a6f6faa0c76496d57dd0d263a88c07ad220b3873e14fcd71c9d8a81c5c25&o=

3.167.2.62

200 OK

14 kB

URL GET
r-xx.bstatic.com/xdata/images/hotel/263x210/595550098.jpeg?k=d1b5a6f6faa0c76496d57dd0d263a88c07ad220b3873e14fcd71c9d8a81c5c25&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3
Size
14 kB (13929 bytes)
Hash
dfcdea6095be4dd00b3170a9e29251b2
608bde7c0aa82c477c1c8464a37463e080a1ae33
13afa75b720603941d2e756131fedf073798a865354b8a8228c18f93292ad316

HTTP Headers

GET /xdata/images/hotel/263x210/595550098.jpeg?k=d1b5a6f6faa0c76496d57dd0d263a88c07ad220b3873e14fcd71c9d8a81c5c25&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Wed, 25 Jun 2025 09:42:28 GMT
content-language: 13929
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "4c1299bdfbf89a571de79f7b3547a14f9cc45bdb"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: yRTQeq5HAVCx65-MepQXPgPzbTx5fVIm_zVI3XMDU71hVO4QelZ-uA==
age: 1963601
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/css/5638344d.8eb442db.chunk.css

3.167.2.62

200 OK

8.8 kB

URL GET
cf.bstatic.com/psb/capla/static/css/5638344d.8eb442db.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (2480)
Size
8.8 kB (8806 bytes)
Hash
76e1c92d850e437255a52897f29372b9
166cb1e7158c4b44545744c9935a7406adcb1849
83cbb1438cc8188827fced3573612639b502a1a32e0765399e3c5a7fcca24b14

HTTP Headers

GET /psb/capla/static/css/5638344d.8eb442db.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Fri, 04 Jul 2025 09:12:42 GMT
last-modified: Tue, 01 Jul 2025 14:11:14 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 8a3bc3823b834abf6fe2786815217da417ee5ba5
x-amz-version-id: sAI0wm_3gflQTi3wuza40dpqZQgorZ73
server: AmazonS3
etag: W/"76e1c92d850e437255a52897f29372b9"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: He3XhugkahVO4ASEfiVjPFNYqYpPaq9v2DWsCjb9cSZo3oyziPWzWQ==
age: 1187783
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/city/600x600/685812.jpg?k=cc7f332cf1196cae2f36d233ec6601f1e69423a7dd79f9d0e7c9634d70986ff9&o=

3.167.2.62

200 OK

57 kB

URL GET
cf.bstatic.com/xdata/images/city/600x600/685812.jpg?k=cc7f332cf1196cae2f36d233ec6601f1e69423a7dd79f9d0e7c9634d70986ff9&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 600x600, components 3
Size
57 kB (56554 bytes)
Hash
5109ba38ca58f45eef70f5050c98b9fb
2e04a266d7acf714d45144ae0faf4d5bfc34e269
27ff69b1e5fbc209a9f5c598d706a76e58bd3b152292ed495c276a93c83de129

HTTP Headers

GET /xdata/images/city/600x600/685812.jpg?k=cc7f332cf1196cae2f36d233ec6601f1e69423a7dd79f9d0e7c9634d70986ff9&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Sun, 22 Jun 2025 13:44:04 GMT
content-language: 56554
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "ad2029ea480525cc496376f0445f6f2a43629b01"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 0q3GY_W0_HBJ1KmqacfarqGu0R8AjSf58wg7XjZQ9Gi8Nl8r2fVW9Q==
age: 2208301
X-Firefox-Spdy: h2

GET cf.bstatic.com/static/css/print/0cc4ce4b7108d42a9f293fc9b654f749d84ba4eb.css

3.167.2.62

200 OK

5.0 kB

URL GET
cf.bstatic.com/static/css/print/0cc4ce4b7108d42a9f293fc9b654f749d84ba4eb.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (5036), with no line terminators
Size
5.0 kB (5036 bytes)
Hash
9478d8d20743c0422a70fddf04deb7fa
4d9b919969bcff2e4e39e7d008a7a0c3f39abda1
f9824e5f4727f34dd4b3f268cc3a51970a763e2e54fbe9934c44b7ffc1159e8b

HTTP Headers

GET /static/css/print/0cc4ce4b7108d42a9f293fc9b654f749d84ba4eb.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
last-modified: Mon, 14 Apr 2025 13:31:13 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
x-amz-version-id: yuqCa2OZvn.F1fCXi3marcQioncscLxP
server: AmazonS3
date: Thu, 17 Jul 2025 18:17:03 GMT
cache-control: public,max-age=604800
etag: W/"9478d8d20743c0422a70fddf04deb7fa"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 65lYLPIVDohEzrLqho2wlu4S73p12ElJelctf2uA1qtwHHyELifhbA==
age: 31926
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/static/js/searchresults_slick_cloudfront_sd/528359eb9f21194adf8c26f81e07c6eb21a2cc89.js

3.167.2.62

200 OK

37 kB

URL GET
cf.bstatic.com/static/js/searchresults_slick_cloudfront_sd/528359eb9f21194adf8c26f81e07c6eb21a2cc89.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (36716), with no line terminators
Size
37 kB (36716 bytes)
Hash
83450205fdae53d35568c0b20ebd7823
b767e5626f5c78a36e8267adce0eb4770cc7af54
0916f90ffe5b1eb07948b9f85568c812d3ccbb8a05d3b39d10f4d59fcc9e168d

HTTP Headers

GET /static/js/searchresults_slick_cloudfront_sd/528359eb9f21194adf8c26f81e07c6eb21a2cc89.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 14 Apr 2025 14:51:43 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
x-amz-version-id: HsEqxRRWLIKReXVCGdcqcuODLqu6p36U
server: AmazonS3
date: Thu, 17 Jul 2025 18:17:05 GMT
cache-control: public,max-age=604800
etag: W/"83450205fdae53d35568c0b20ebd7823"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 9TL_QsIbLJ700xub6QwyIJKTR2qjXfnMtiQ6QRJnawoCjptbvrfnRA==
age: 31923
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

54.240.174.43

200 OK

13 kB

URL POST
www.booking.com/dml/graphql?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056&lang=en-us
IP
54.240.174.43:443
ASN
#16509 AMAZON-02

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.booking.com
Fingerprint40:C8:C7:99:E8:DF:B4:B7:80:45:6C:57:15:2A:09:28:16:A7:2B:BB
ValidityFri, 07 Mar 2025 00:00:00 GMT - Sat, 17 Jan 2026 23:59:59 GMT

File type
JSON text data
Size
13 kB (12718 bytes)
Hash
12335c2fbfb69d357c63f896f131bfbc
a6cb07ed2ba291b3a3113d562f392c14864c1346
6507d9b635095fcc1a11425a7727bb5784acf48264a88efed442042aae043ed0

HTTP Headers

POST /dml/graphql?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056&lang=en-us HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
apollographql-client-name: b-index-lp-web-mfe_rust
apollographql-client-version: dRdeWbLD
content-type: application/json
x-booking-context-action: index
x-booking-context-action-name: index
x-booking-context-aid: 818288
x-booking-csrf-token: eyJhbGciOiJIUzUxMiJ9.eyJpc3MiOiJjb250ZXh0LWVucmljaG1lbnQtYXBpIiwic3ViIjoiY3NyZi10b2tlbiIsImlhdCI6MTc1MjgwODE0MiwiZXhwIjoxNzUyODk0NTQyfQ.xS11JNvmqKBXkVmuhkXG3t17-GUe1mh5o3pg4gYiiDXvogmseaA4OTwTBg1UmcoAOXOrKtOmXrztH07Zg8LiMg
x-booking-dml-cluster: rust
x-booking-et-serialized-state: EZC0me3pHIwv-yYtQGQUdHMaUQ3rRxsio5-cDr4cc3Ohkp_KG_12HWFDp-raNqwOx
x-booking-pageview-id: c9c216276d7902f0
x-booking-site-type-id: 1
x-booking-topic: capla_browser_b-index-lp-web-mfe
Content-Length: 1114
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbbmD9q%2B5pe3Wdm0%2ByPGMsC1KujF5qCxhD8YztvAVkXTtTK0o2BJL7F%2Bm3G%2B0LUoeb7oHjlToVOeSl2nusn8juTZHyyu6%2FR9iuocOLfIsseh%2FgKV8BAd3zXuypAMgTO3s9O7%2BJaalVmnaHvhjhgEMcSuloTu1oNh%2FT; pcm_personalization_disabled=0; bkng_sso_auth=CAIQ0+WGHxpmrqlfCI/7cj7WenmOuL5QxSn4u0pk06cV4xlrrrhmJKAb1FesYuKumLV4pSqW60W2NnCfEB+Pr3GDZ3i/aG465ACIGtpwXlBI9XDqnlhOkhTT7xUttessFF0wXrOKUtvFXd/bRD8o; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3De1046c70-f5fb-4ace-8c3b-1dcf67343057%26consentedAt%3D2025-07-18T03%3A09%3A02.576Z%26expiresAt%3D2026-01-14T03%3A09%3A02.576Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; cors_js=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 2399
server: nginx
date: Fri, 18 Jul 2025 03:09:09 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPecywWkR6dnyiYprRe%2FudshEyKcg2fRW9HWKENkQEE9kRbE%2BnYHGLO%2FPUr03Q5P8RaYUKMU8V6M6pK2Dbcpsw5zR2MTNLtqXzOl3%2FthiaM28oUzsEAI0RuA4FOUpRP6InB23MOiMdDa8yfO9KqsnGDLOmrIhfQQcYuc%3D; domain=.booking.com; path=/; expires=Wed, 17-Jul-2030 03:09:09 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xMOssPth5zJxd--exiGZicqQ7sWM9RfyqMTBxKUr1lRFR6maUWj_uw==
server-timing: cdn-upstream-layer;desc="REC",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=324,cdn-cache-miss,cdn-pop;desc="OSL50-P1",cdn-rid;desc="xMOssPth5zJxd--exiGZicqQ7sWM9RfyqMTBxKUr1lRFR6maUWj_uw==",cdn-downstream-fbl;dur=362
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/412698ad.901a0478.chunk.js

3.167.2.62

200 OK

4.5 kB

URL GET
cf.bstatic.com/psb/capla/static/js/412698ad.901a0478.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (4433)
Size
4.5 kB (4545 bytes)
Hash
469a8dc2d5e4b34eb7787b92d831c718
5ffd2c4629507759986556f43207476957e0ff46
dff3beda196d15fc853bbce8ef208d90bff5cf49cff71832c9cee0d22075a92a

HTTP Headers

GET /psb/capla/static/js/412698ad.901a0478.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 06 May 2025 11:41:17 GMT
last-modified: Tue, 06 May 2025 09:57:55 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 7fe15ce3e9a69012a65be125503a48edc08a1a5f
x-amz-version-id: LAjORnOa0j0sfChKyVKU7O9QPwkG5my6
server: AmazonS3
etag: W/"469a8dc2d5e4b34eb7787b92d831c718"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 4yolw1ivq-1ykDHza4yKrgk_gcmDxxlcGY8X6Q6ceBT3xaTJD3MbBg==
age: 6276468
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET r-xx.bstatic.com/xdata/images/xphoto/248x248/468828542.jpeg?k=b51cb74f05db0ebc1a1cbcca384fa2ee8c4d6c0b5fd089a15b1fd14a107ccab4&o=

3.167.2.62

200 OK

15 kB

URL GET
r-xx.bstatic.com/xdata/images/xphoto/248x248/468828542.jpeg?k=b51cb74f05db0ebc1a1cbcca384fa2ee8c4d6c0b5fd089a15b1fd14a107ccab4&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 248x248, components 3
Size
15 kB (14701 bytes)
Hash
8030c438c90ab2533afe2f169a5f3340
a9802cc5ca58deb3ccb7002ce699d75b2f039654
6ded372adc942921c7227b8106ec300295b30c2ad9e268a507ed72f47a75b4c0

HTTP Headers

GET /xdata/images/xphoto/248x248/468828542.jpeg?k=b51cb74f05db0ebc1a1cbcca384fa2ee8c4d6c0b5fd089a15b1fd14a107ccab4&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Tue, 15 Jul 2025 10:52:42 GMT
content-language: 14701
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "6f35c5f01dbbcc6060f5a648f1b253b5ea8f4f88"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: LftIVumvFmyzACGozgzp2EuIIKEF-Q9LO09MJO8_w2yuFd1biWBiaw==
age: 231385
X-Firefox-Spdy: h2

54.240.174.43

200 OK

14 kB

URL POST
www.booking.com/dml/graphql?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056&lang=en-us
IP
54.240.174.43:443
ASN
#16509 AMAZON-02

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.booking.com
Fingerprint40:C8:C7:99:E8:DF:B4:B7:80:45:6C:57:15:2A:09:28:16:A7:2B:BB
ValidityFri, 07 Mar 2025 00:00:00 GMT - Sat, 17 Jan 2026 23:59:59 GMT

File type
JSON text data
Size
14 kB (13453 bytes)
Hash
f94ced26a33e8513bf1a438e41f7144b
262fb31cad6bb5ecb401960232589bca501affa9
5193be72892d2ea26e7dda9bd0cf68fa6d4e1892d156eb0ad35267ef272e489f

HTTP Headers

POST /dml/graphql?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056&lang=en-us HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
apollographql-client-name: b-index-lp-web-mfe_rust
apollographql-client-version: dRdeWbLD
content-type: application/json
x-booking-context-action: index
x-booking-context-action-name: index
x-booking-context-aid: 818288
x-booking-csrf-token: eyJhbGciOiJIUzUxMiJ9.eyJpc3MiOiJjb250ZXh0LWVucmljaG1lbnQtYXBpIiwic3ViIjoiY3NyZi10b2tlbiIsImlhdCI6MTc1MjgwODE0MiwiZXhwIjoxNzUyODk0NTQyfQ.xS11JNvmqKBXkVmuhkXG3t17-GUe1mh5o3pg4gYiiDXvogmseaA4OTwTBg1UmcoAOXOrKtOmXrztH07Zg8LiMg
x-booking-dml-cluster: rust
x-booking-et-serialized-state: EZC0me3pHIwv-yYtQGQUdHMaUQ3rRxsio5-cDr4cc3Ohkp_KG_12HWFDp-raNqwOx
x-booking-pageview-id: c9c216276d7902f0
x-booking-site-type-id: 1
x-booking-timeout-budget-ms: 1500
x-booking-timeout-ms: 1500
x-booking-topic: capla_browser_b-index-lp-web-mfe
x-envoy-expected-rq-timeout-ms: 1500
Content-Length: 2562
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbbmD9q%2B5pe3Wdm0%2ByPGMsC1KujF5qCxhD8YztvAVkXTtTK0o2BJL7F%2Bm3G%2B0LUoeb7oHjlToVOeSl2nusn8juTZHyyu6%2FR9iuocOLfIsseh%2FgKV8BAd3zXuypAMgTO3s9O7%2BJaalVmnaHvhjhgEMcSuloTu1oNh%2FT; pcm_personalization_disabled=0; bkng_sso_auth=CAIQ0+WGHxpmrqlfCI/7cj7WenmOuL5QxSn4u0pk06cV4xlrrrhmJKAb1FesYuKumLV4pSqW60W2NnCfEB+Pr3GDZ3i/aG465ACIGtpwXlBI9XDqnlhOkhTT7xUttessFF0wXrOKUtvFXd/bRD8o; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3De1046c70-f5fb-4ace-8c3b-1dcf67343057%26consentedAt%3D2025-07-18T03%3A09%3A02.576Z%26expiresAt%3D2026-01-14T03%3A09%3A02.576Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; cors_js=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 2856
server: nginx
date: Fri, 18 Jul 2025 03:09:09 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbKE7bjkbYWzkssVfMmPBJG5sR9oMGYqz2d6iZkeX%2Bd5nQpRIS%2FDh2dNFnDGRVmVOi800kUmuzkhMMeaSPIp%2Bf%2FWNg9BC8iIp74wDTfIDWf8QNyjX9Alj2El96fpdqPE%2F5qZsmr0qZOMniSpGyFkXO1wfW8GVvtgtsbg89GhlMGXY%3D; domain=.booking.com; path=/; expires=Wed, 17-Jul-2030 03:09:09 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: klMjIg9Bmu0dBgDVnjoX5TtInAaMp073j20x_uK5gRWdYfhCQC7mCg==
server-timing: cdn-upstream-layer;desc="REC",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=193,cdn-cache-miss,cdn-pop;desc="OSL50-P1",cdn-rid;desc="klMjIg9Bmu0dBgDVnjoX5TtInAaMp073j20x_uK5gRWdYfhCQC7mCg==",cdn-downstream-fbl;dur=239
X-Firefox-Spdy: h2

GET www.booking.com/js_tracking?ref_action=index&ver=2&sid=158014cf79b6a1df56562bf0568880d0&aid=818288&stype=1&pid=c9c216276d7902f0&lang=en-us&ete=NAFQOPeYWbKdPSKYaFBddQSBLdaRO&etg=&etcg=&ets=cCHObKdPHMfFdHMEKBOcaGPaAHFHDQIC|8,OABBaJePebeKSERLPWYNZRIIGLae|4&etgwv=&m=UmFuZG9tSVYkc2RlIyh9Ya0AWyEi0pmdjgWlor7XhxnVnjXdSK9WS4q3TM2MXhmcmQG06kuNo74UntjDKhHkXq0AUNKIjhWsl6RkvSSDQ28M_FecNUjuwu0r45tkmRFfDI9_-ebDInj6EpLSEPe-DfCwf1DBu5nHERpr4xwSK2lMuM9OzHyExbnzBMct-Mne0Xk-RGdIxrXBHvBpbY8mllE0Tpdde54f1UXxereM9ZZwRCdpzWAFWe5vWkWdGDJfFriYWCbIYwsYC3NopT3VjvXu7-Y7WH85wUuF4sS5Btc

54.240.174.43

200 OK

0 B

URL GET
www.booking.com/js_tracking?ref_action=index&ver=2&sid=158014cf79b6a1df56562bf0568880d0&aid=818288&stype=1&pid=c9c216276d7902f0&lang=en-us&ete=NAFQOPeYWbKdPSKYaFBddQSBLdaRO&etg=&etcg=&ets=cCHObKdPHMfFdHMEKBOcaGPaAHFHDQIC|8,OABBaJePebeKSERLPWYNZRIIGLae|4&etgwv=&m=UmFuZG9tSVYkc2RlIyh9Ya0AWyEi0pmdjgWlor7XhxnVnjXdSK9WS4q3TM2MXhmcmQG06kuNo74UntjDKhHkXq0AUNKIjhWsl6RkvSSDQ28M_FecNUjuwu0r45tkmRFfDI9_-ebDInj6EpLSEPe-DfCwf1DBu5nHERpr4xwSK2lMuM9OzHyExbnzBMct-Mne0Xk-RGdIxrXBHvBpbY8mllE0Tpdde54f1UXxereM9ZZwRCdpzWAFWe5vWkWdGDJfFriYWCbIYwsYC3NopT3VjvXu7-Y7WH85wUuF4sS5Btc
IP
54.240.174.43:443
ASN
#16509 AMAZON-02

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.booking.com
Fingerprint40:C8:C7:99:E8:DF:B4:B7:80:45:6C:57:15:2A:09:28:16:A7:2B:BB
ValidityFri, 07 Mar 2025 00:00:00 GMT - Sat, 17 Jan 2026 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /js_tracking?ref_action=index&ver=2&sid=158014cf79b6a1df56562bf0568880d0&aid=818288&stype=1&pid=c9c216276d7902f0&lang=en-us&ete=NAFQOPeYWbKdPSKYaFBddQSBLdaRO&etg=&etcg=&ets=cCHObKdPHMfFdHMEKBOcaGPaAHFHDQIC|8,OABBaJePebeKSERLPWYNZRIIGLae|4&etgwv=&m=UmFuZG9tSVYkc2RlIyh9Ya0AWyEi0pmdjgWlor7XhxnVnjXdSK9WS4q3TM2MXhmcmQG06kuNo74UntjDKhHkXq0AUNKIjhWsl6RkvSSDQ28M_FecNUjuwu0r45tkmRFfDI9_-ebDInj6EpLSEPe-DfCwf1DBu5nHERpr4xwSK2lMuM9OzHyExbnzBMct-Mne0Xk-RGdIxrXBHvBpbY8mllE0Tpdde54f1UXxereM9ZZwRCdpzWAFWe5vWkWdGDJfFriYWCbIYwsYC3NopT3VjvXu7-Y7WH85wUuF4sS5Btc HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
X-Booking-AID: 818288
X-Booking-CSRF: DvN5aAAAAAA=iSMssxyRGf92-H2hEfsgRf2UeyNuUXTaYAksbHlvH9RRN7qeei4-6dock6Sbnlm1JnJ6FZwe_L7YsAxhTlDqGz5w_UkMeIUM-Kwkmj8EVd34Aipoh7ucGi1mYSkEV2d_0XVtGxbv-YcCJalrO3PgNwiHdGW2jzJn7Sw0LJrGB7ubSOXRs85g4NNY5ENNizJJnNgNte65Gcl4wS57
X-Booking-Info: 2301430,2302580,2307640,2307650,2308610,2311730,2317630,2318530,2320050,2322630,2322760,OABBaJePefeeFbMKXTMHTcaWQOccCcCcCC|2,NAFQOPeYWbKdPSKYaFBddQSBLdaRO,dDfPWPHDDZSOBJbKYfNIfPTDWe|1,2307650|1,2320050|1,2301430|1,2322630|1,2292000|3,2307640|1,dLYHMRFeRLeMXFPNZFZeaPQHHaNVTSEFUfbIUFZZZMXC|1,dLYHMRFeRLeMXFPNZFZeaPQHHaNVTSEFUfbIUFZZZMXC|3,GaYHKLOWWKRFefVEdaWCaceNBOSCJWMEO|1,HWAJLGbbeQHUYbcJTGZZOeUPEHVKYXdABdUIDPBFO|3,HWAJLGbbeQHUYbcJTGZZOeUPEHVKYXdABdUIDPBFO|4,YTTHbXeeVJZMHGYTLRQJRfRXe|1,YTTHbXeeVJZMHGYTLRQJRfRXe|2,NAFLeOeJcQEcVOdWNeYZdfdbJae|1,cCHObKdBdUHINPSXeHDALOLOLMO|1,cCHObKdBdUHINPSXeHDALOLOLMO|5,cCeIVOMPWAEeIcFARSYSbZDQSXbaTaTaET|3,cCeIVOOLfOECVVDFRURURHe|1,cCeIVOOLfOECVVDFRURURHe|2,cCeIVOAPEbSccEZVACdKNKNKWe|1,YTBbNXGJaWePDSSFePXIGaWXCFafdcUYNdHXT|1,YTBbNXGJaWePDSSFePXIGaWXCFafdcUYNdHXT|2,YTBbNXGJaWePDSSFePXIGaWXCFafdcUYNdHXT|6,GaWXCFafdRERJBcCcCcCFQfGZQNPcUeccLdYPZEAHeVGRCeAANIO|1,GaWXCFafdRERJBcCcCcCFQfGZQNPcUeccLdYPZEAHeVGRCeAANIO|3,cCcCcCWKcOMHINPSXeHDAcUYNTTNAVaRKZVVLT|1,cCcCcCWKcOMHINPSXeHDAcUYNTTNAVaRKZVVLT|3,cCcCcCWKcOMHINPSXeHDAcUYNTTNAVaRKZVVLT|7,EIZEHfdSDSZZDDUZGSRLGKVIFAdKC|1,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|1,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|1,cCHObdRdJJVdfUSCEcdNHMddKNKNKWe|1,cCHObdRdJJVdfUJGFDSeBcZFLMFRURURHe|1,cCHObdRdJJVdfUJGFDSeBcZFLMFRURURHe|3,cCeIVOTeJUNSMTfIMLebaTaTaET|1,cCeIVOTeJUNSMTaSdNdKNKNKWe|1,cCHOGAQHSMSXUDeLcffIVXBPKAFRURURHe|1,cCHOGAQHSMSXUDeLcffIVXBPKAFRURURHe|5,cCeIVOdJEVOAeZTbQNPcZRALOLOLMO|1,cCeIVOIYcYCcTUDQZaTaTaET|1,ZXZAVacDNBMPLZQNPcUecUYCMDORMTfLT|1,ZXZAVacDNBMPLZQNPcUecUYCMDORMTfLT|3,fGcBeNZbBcRcAPQHVLWIXOERJPXafJCfSFNTTNdKNKNKWe|1,fGcBeNZbBcRcAPQHVLWIXOERJPXafJCfSFNTTNdKNKNKWe|3,OABBaJePebeKSERLPWYNZRIIGLae|1,cCHOGAQHXSHDHFKWLIEFccSTbaTaTaET|1,cCHOGAQHXSHDHFKWLIEFccSTbaTaTaET|4,NAFLeOeJcQEcVOdWNeYZdfdbJae|2,NAFLeOeJcQEcVOdWNeYZdfdbJae|4,cCHObKdPHMfFdHMEKBOcaGPaAHFHDQIC|9,cCeIVOOLfOECVVDFRURURHe|3,cCcCcCWKcOMHINPSXeHDAcUYNTTNAVaRKZVVLT|2,GaWXCFafdRERJBcCcCcCFQfGZQNPcUeccLdYPZEAHeVGRCeAANIO|2,EIZEHfdSDSZZDDUZGSRLGKVIFAdKC|2,OABBaJePefeeFbMKXTMHTcaWQOccCcCcCC|3,OABBaJePefeeFbMKXTMHTcaWQOccCcCcCC|4,OABBaJePefeeFbMKXTMHTcaWQOccCcCcCC|9,OABBaJTeNJPRaCPFCUJVdfUWBZccCcCcCC|1,OABBaJTeNJPRaCPFCUJVdfUWBZccCcCcCC|2,OABBaJTeNJPRaCPFCUJVdfUWBZccCcCcCC|7,OABBaJePebeKSERLPWYNZRIIGLae|2,cCHOGAQHXSHDHFKWLIEFccSTbaTaTaET|2,cCHOGAQHXSHDHFKWLIEFccSTbaTaTaET|6,cCHObKdPHMfFdHMEKBOcaGPaAHFHDQIC|8,OABBaJePebeKSERLPWYNZRIIGLae|4
X-Booking-Client-Info: OABBaJePefeeFbMKXTMHTcaWQOccCcCcCC|2,NAFQOPeYWbKdPSKYaFBddQSBLdaRO,cCHObKdPHMfFdHMEKBOcaGPaAHFHDQIC|8,OABBaJePebeKSERLPWYNZRIIGLae|4
X-Booking-Label: affnetcj-12365056_pub-5108952_site-101463210_pname-Go%20Travel%20Un%20Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74
X-Booking-Language-Code: en-us
X-Booking-Pageview-Id: c9c216276d7902f0
X-Booking-Session-Id: 158014cf79b6a1df56562bf0568880d0
X-Booking-SiteType-Id: 1
X-Partner-Channel-Id: 2
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbKE7bjkbYWzkssVfMmPBJG5sR9oMGYqz2d6iZkeX%2Bd5nQpRIS%2FDh2dNFnDGRVmVOi800kUmuzkhMMeaSPIp%2Bf%2FWNg9BC8iIp74wDTfIDWf8QNyjX9Alj2El96fpdqPE%2F5qZsmr0qZOMniSpGyFkXO1wfW8GVvtgtsbg89GhlMGXY%3D; pcm_personalization_disabled=0; bkng_sso_auth=CAIQ0+WGHxpmrqlfCI/7cj7WenmOuL5QxSn4u0pk06cV4xlrrrhmJKAb1FesYuKumLV4pSqW60W2NnCfEB+Pr3GDZ3i/aG465ACIGtpwXlBI9XDqnlhOkhTT7xUttessFF0wXrOKUtvFXd/bRD8o; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3De1046c70-f5fb-4ace-8c3b-1dcf67343057%26consentedAt%3D2025-07-18T03%3A09%3A02.576Z%26expiresAt%3D2026-01-14T03%3A09%3A02.576Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; cors_js=1; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
server: nginx
date: Fri, 18 Jul 2025 03:09:09 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=42a3162a7eeb036b&e=UmFuZG9tSVYkc2RlIyh9Yea92wm0yRUjnCBymoy8ejKLxvxIiyU4TnUWIVzwzhBkHc6dDzXEtTo
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jfv_vQhji_8bUGvYlOmHwSxwAC0ArTOFNJwd49z8Fi1evHlqzvo1Vw==
server-timing: cdn-upstream-layer;desc="REC",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=19,cdn-cache-miss,cdn-pop;desc="OSL50-P1",cdn-rid;desc="jfv_vQhji_8bUGvYlOmHwSxwAC0ArTOFNJwd49z8Fi1evHlqzvo1Vw==",cdn-downstream-fbl;dur=58
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/90166571.webp?k=2af43a45e1366401fa98c2d7484f8e99e7378e4e04192f843d98e2d8863b3347&o=

3.167.2.62

200 OK

34 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/90166571.webp?k=2af43a45e1366401fa98c2d7484f8e99e7378e4e04192f843d98e2d8863b3347&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
34 kB (34084 bytes)
Hash
f50fe13d3fc89bdfae846ad221534667
b2bfbe1568fb119da16a29199e5ff26c129c09cc
82faf1a80f4f041c16f4bb89dc23fdd4d00d53cb2625fd48fcd2bb65aa42757c

HTTP Headers

GET /xdata/images/hotel/square600/90166571.webp?k=2af43a45e1366401fa98c2d7484f8e99e7378e4e04192f843d98e2d8863b3347&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Mon, 07 Jul 2025 08:34:27 GMT
content-language: 34084
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "5e09c55ca9177820729c14a7506f3f97e0ccf286"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: M6oH0JLqSfhy7xYru9n7A8RAnVD_FNCOwpcgCqbDYlAI3ASWT9dbqg==
age: 930883
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/694950327.webp?k=f2289c369c9576a7bfb0c9c742763de0faeecbcb9721eec07095164818e98eb9&o=

3.167.2.62

200 OK

43 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/694950327.webp?k=f2289c369c9576a7bfb0c9c742763de0faeecbcb9721eec07095164818e98eb9&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
43 kB (43186 bytes)
Hash
427444d140292ec8d5c227c94fbea51c
75c670e7e7db456c3ff8734439d4cda9ed91bd92
d5d14442c32c782e1d0a04b948c1c61bad6aab8559c4d218461bc8a264f5c002

HTTP Headers

GET /xdata/images/hotel/square600/694950327.webp?k=f2289c369c9576a7bfb0c9c742763de0faeecbcb9721eec07095164818e98eb9&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Sun, 29 Jun 2025 14:07:43 GMT
etag: "b1f602c17181f07ff696574bab2ef273f3031a13"
content-language: 43186
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: JY27VLlbvIrq7EnLn3xgsRI252ix7Ot4P7DOYOvwUO_EfJlJBnjnWA==
age: 1602087
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/109319008.webp?k=5170e41a9f38e078ccee474236146034f69df6c0ddb91f1484cb733a5ab0e028&o=

3.167.2.62

200 OK

75 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/109319008.webp?k=5170e41a9f38e078ccee474236146034f69df6c0ddb91f1484cb733a5ab0e028&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
75 kB (74886 bytes)
Hash
a8488a4106475acd76fbd82af223872b
e6f8cfaaf9c7089050fcf2323a9eb3b34262dd0b
43397e2355065f1f88396347127662a334933ef16ac4353dae7705663ab024a2

HTTP Headers

GET /xdata/images/hotel/square600/109319008.webp?k=5170e41a9f38e078ccee474236146034f69df6c0ddb91f1484cb733a5ab0e028&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Wed, 09 Jul 2025 12:40:35 GMT
content-language: 74886
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "d0edceef4e6a18cdaa5ae0d8144e1bacaa2c4187"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: XTthgZX0jY_Az2qYswDZkNIkquJcI0QLkY40G_ixQbWFmL3W4RE5HA==
age: 743315
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/236840535.webp?k=bf4b6a261b5f401ca2218952b2f3aa009b22da5b315c8e22d6b69954a960c938&o=

3.167.2.62

200 OK

48 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/236840535.webp?k=bf4b6a261b5f401ca2218952b2f3aa009b22da5b315c8e22d6b69954a960c938&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
48 kB (47568 bytes)
Hash
087e4e57629ba6ff0fcd25d489325afe
ac969e0ba85a27b702e390dfcb3793e79ce18769
b7cb9d6687db9899d87cabd637ff09bd584e8fe6ace312db97ecad71a4797b0a

HTTP Headers

GET /xdata/images/hotel/square600/236840535.webp?k=bf4b6a261b5f401ca2218952b2f3aa009b22da5b315c8e22d6b69954a960c938&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Tue, 15 Jul 2025 10:31:42 GMT
content-language: 47568
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "a5daadb32f74855a26ee43e544cdbb96658a7a3e"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: tkuIPUoiTI3LJwq0vot14U8U4xE1aXlipN0UWoj7327ca-pV5D0Nwg==
age: 232648
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/dc32f6b7.1dfb1290.chunk.js

3.167.2.62

200 OK

428 kB

URL GET
cf.bstatic.com/psb/capla/static/js/dc32f6b7.1dfb1290.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65455)
Size
428 kB (428544 bytes)
Hash
d7378834970fb650573ec2ba28ab3ef3
ed68c84fe449adbed1460a54074aac0bb791ad00
cdc8f224fa249828bb2eea0d9d1d588697c21d1c141ee227e919d3000a159086

HTTP Headers

GET /psb/capla/static/js/dc32f6b7.1dfb1290.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Tue, 15 Jul 2025 13:28:20 GMT
last-modified: Tue, 15 Jul 2025 07:45:34 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: dc007423c1c3d334ee9579a86344a07d02da168b
x-amz-version-id: 7RWNwFqmYSXXBdpiIMlcAJzqx_7PJOga
server: AmazonS3
etag: W/"d7378834970fb650573ec2ba28ab3ef3"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: D3pvHDCBs_gc61iTbZ3ArwO5DYbV1EKwnxip8YVAjbKVSkxM3rN19A==
age: 222045
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/d8454389.5993bbbd.chunk.js

3.167.2.62

200 OK

1.2 MB

URL GET
cf.bstatic.com/psb/capla/static/js/d8454389.5993bbbd.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65455)
Size
1.2 MB (1223691 bytes)
Hash
a5256cbb64fdf3246ea9130dd8f867a1
1bb8a5f638129ce8a58753a9d12a55987327aac3
f0dc60a64820cd723934249bf6c5975615cc9bea16b2ae7682fa4b830a56fe22

HTTP Headers

GET /psb/capla/static/js/d8454389.5993bbbd.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Thu, 17 Jul 2025 14:13:06 GMT
last-modified: Thu, 17 Jul 2025 13:37:58 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: e829eaea6cb5b2d54f4c2f4114f48aed7ed0efe0
x-amz-version-id: r1HpKqyGFm8zvg9yb7hf5YZ_MUF1ZKkQ
server: AmazonS3
etag: W/"a5256cbb64fdf3246ea9130dd8f867a1"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: pdTfW2yASdDIwljnzCzk5s-zvNhSCHWr576Yx2pQGq5ntVXXqU4Q8A==
age: 46559
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/static/img/cross_product_index/guest-dark/74a68d52bf7ac18ba572cf1fccc62d0b61d8f311.svg

3.167.2.62

200 OK

1.6 kB

URL GET
cf.bstatic.com/static/img/cross_product_index/guest-dark/74a68d52bf7ac18ba572cf1fccc62d0b61d8f311.svg
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
1.6 kB (1598 bytes)
Hash
9b6a46600d38beca719434ab2c31667c
2e882e538b08f3298e45e97be0ad286c2b724717
125c9d918ad46a8cbb92f235f34fcfcda22caab7617835279501afcbd0df4fc1

HTTP Headers

GET /static/img/cross_product_index/guest-dark/74a68d52bf7ac18ba572cf1fccc62d0b61d8f311.svg HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/c56180a92478e4508d340cf2fdbe5dfbc98c99aa.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/svg+xml
date: Fri, 11 Jul 2025 08:23:27 GMT
last-modified: Tue, 20 May 2025 09:48:49 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
cache-control: public,max-age=604800
x-amz-version-id: 02OJ0ux91IBYe.5lMC5xxX_qz2iYeYBO
server: AmazonS3
etag: W/"9b6a46600d38beca719434ab2c31667c"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: x51W-p_ZbKTW7SaeZIVhImXKCNDcmLcKd_EC9sfzb3ByX6XoDaku5w==
age: 585939
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET t-cf.bstatic.com/design-assets/assets/v3.160.0/illustrations-traveller/GeniusGenericGiftBox.png

3.167.2.99

200 OK

19 kB

URL GET
t-cf.bstatic.com/design-assets/assets/v3.160.0/illustrations-traveller/GeniusGenericGiftBox.png
IP
3.167.2.99:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
PNG image data, 223 x 260, 8-bit colormap, non-interlaced
Size
19 kB (18837 bytes)
Hash
1b9ad561aa5d91ad4448afa122438ca7
5163ea169b915ac55ed031f6898dd1cff53a7345
6d4f3204952d251df7943f925ff3a27c7e1fe9ab501bd622c7b0b2d2131d05ee

HTTP Headers

GET /design-assets/assets/v3.160.0/illustrations-traveller/GeniusGenericGiftBox.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 18837
last-modified: Mon, 14 Jul 2025 09:13:34 GMT
x-amz-server-side-encryption: aws:kms
x-amz-server-side-encryption-aws-kms-key-id: arn:aws:kms:eu-west-2:339712873537:key/a7c9de2e-1f60-4f87-bbf7-dc4071c8d126
x-amz-version-id: 9dE5_0WjMehCkhiuIwwGJh24clpujmit
accept-ranges: bytes
server: AmazonS3
date: Thu, 17 Jul 2025 08:58:18 GMT
etag: "729b822a4847e2a0f772c209834b8cbf"
x-cache: Hit from cloudfront
via: 1.1 50c588fd3255d023d9b9021263f5fa0a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: WPeJzTcn_iNqrIWSAFeeMkiFzx_xoVMjpRj4FfZGjJECTBisq9JnZg==
age: 65456
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET r-xx.bstatic.com/xdata/images/hotel/263x210/595550306.jpeg?k=00c1d9a10179cc21b1e7e2ad1429ac21a5e779f258cf4cf66ddce30d618c05c9&o=

3.167.2.62

200 OK

10 kB

URL GET
r-xx.bstatic.com/xdata/images/hotel/263x210/595550306.jpeg?k=00c1d9a10179cc21b1e7e2ad1429ac21a5e779f258cf4cf66ddce30d618c05c9&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3
Size
10 kB (10149 bytes)
Hash
a8d0aedcdfef2b8dc1eecf8bb6614e9e
9da8b858adf0b37a89b844c2bf00a96f2666487d
11c18d94492472ff024895aa5b9bec2c3e0bc485a56c7541a6db1339c736eccd

HTTP Headers

GET /xdata/images/hotel/263x210/595550306.jpeg?k=00c1d9a10179cc21b1e7e2ad1429ac21a5e779f258cf4cf66ddce30d618c05c9&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Fri, 20 Jun 2025 04:44:40 GMT
content-language: 10149
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "840f62420cae71b516c49a1410f7db8613d62e91"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: yZZTNkUN3mbpN5c2ZiP9WWi7z8KWo7M__-w-AlVhfn3paEhWJNqRPQ==
age: 2413469
X-Firefox-Spdy: h2

GET r-xx.bstatic.com/xdata/images/city/170x136/644310.jpg?k=472fefd4c3c0aef36deb16adb91c965923d8b1078ab29056802f95aead0586bf&o=

3.167.2.62

0 B

URL GET
r-xx.bstatic.com/xdata/images/city/170x136/644310.jpg?k=472fefd4c3c0aef36deb16adb91c965923d8b1078ab29056802f95aead0586bf&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /xdata/images/city/170x136/644310.jpg?k=472fefd4c3c0aef36deb16adb91c965923d8b1078ab29056802f95aead0586bf&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

GET q-xx.bstatic.com/xdata/images/hotel/263x210/595551195.jpeg?k=fe19403cca087623a33bf24c4154a636cd26d04c2aa948634fb05afa971e7767&o=

3.167.2.62

0 B

URL GET
q-xx.bstatic.com/xdata/images/hotel/263x210/595551195.jpeg?k=fe19403cca087623a33bf24c4154a636cd26d04c2aa948634fb05afa971e7767&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /xdata/images/hotel/263x210/595551195.jpeg?k=fe19403cca087623a33bf24c4154a636cd26d04c2aa948634fb05afa971e7767&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

GET cf.bstatic.com/psb/capla/static/css/client.f6c3ad61.css

3.167.2.62

200 OK

311 kB

URL GET
cf.bstatic.com/psb/capla/static/css/client.f6c3ad61.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (24470)
Size
311 kB (311133 bytes)
Hash
d7801a194d51bada91f771a070f6a60f
c2dad166222709759a847c0fb86beeff7a18733b
342195d0592b5ae86cca2fadc9c94a736d20cadb8b506116478cc6c3f4815e9e

HTTP Headers

GET /psb/capla/static/css/client.f6c3ad61.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Mon, 14 Jul 2025 13:26:27 GMT
last-modified: Mon, 14 Jul 2025 11:27:17 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 0788d36bcecec19bc22c5d9f973c19ada3505bed
x-amz-version-id: rbqcStJBIjjFpf1oAhNI1WNgJI9hc3WL
server: AmazonS3
etag: W/"d7801a194d51bada91f771a070f6a60f"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: DzZBH2y7MvcuEIVZ0aXGv_tiQ4LsAhxxQ2QO7CURM5AWlOLGKI4ctg==
age: 308558
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/css/dc32f6b7.8cf6f0d0.chunk.css

3.167.2.62

200 OK

12 kB

URL GET
cf.bstatic.com/psb/capla/static/css/dc32f6b7.8cf6f0d0.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (10382)
Size
12 kB (11993 bytes)
Hash
8fc66a65c673eab149e4fdaa91164d7d
b3d1ac0202cb821572acccab69a6452384310283
514607e5a4209862d4409f12d4c15e2f4aaed7d8fd818ef8a6d795d6aac65cb3

HTTP Headers

GET /psb/capla/static/css/dc32f6b7.8cf6f0d0.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Fri, 11 Jul 2025 08:23:26 GMT
last-modified: Mon, 07 Jul 2025 13:01:31 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 88166292528e1ba0f479141e8033eb8c158a61db
x-amz-version-id: FxHNjKobplN9rPrxpDtYNxsaQyl3CeSw
server: AmazonS3
etag: W/"8fc66a65c673eab149e4fdaa91164d7d"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: we6lxP6eVdbI3jSuCKQ5LuVWMI1-LvBXrRzi4TQBAqfVcwbHjuWFXA==
age: 585939
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET q-xx.bstatic.com/xdata/images/xphoto/1440x434/542727891.jpeg?k=810b06fcc63291613f14652011d48f8fc7d226db1e6b8b85ce71306fe185c43b&o=

3.167.2.62

200 OK

97 kB

URL GET
q-xx.bstatic.com/xdata/images/xphoto/1440x434/542727891.jpeg?k=810b06fcc63291613f14652011d48f8fc7d226db1e6b8b85ce71306fe185c43b&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1440x434, components 3
Size
97 kB (96887 bytes)
Hash
83e3488d711a30b54d859f800c8aa0e8
d91619e5a72aeb7cbaa348dcb2902b7fd2b4af4a
b0642a514ca33361347fe9c579739e52c0f7fa030e67f0ec7755d13f7ad9a529

HTTP Headers

GET /xdata/images/xphoto/1440x434/542727891.jpeg?k=810b06fcc63291613f14652011d48f8fc7d226db1e6b8b85ce71306fe185c43b&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Thu, 17 Jul 2025 09:49:57 GMT
etag: "73dda5dea0e70d0b5cc8df945b811c72d4706a4d"
content-language: 96887
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: WrrLUFhaQ2iTHWwmVqlDjYcYxmCTPkP8b0_AilJydZzzlGG3HHO2lw==
age: 62347
X-Firefox-Spdy: h2

GET cf.bstatic.com/static/img/cross_product_index/accommodation-dark/6912548c54c0f3172581c31a4a24a371396dc67f.svg

3.167.2.62

200 OK

2.0 kB

URL GET
cf.bstatic.com/static/img/cross_product_index/accommodation-dark/6912548c54c0f3172581c31a4a24a371396dc67f.svg
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
2.0 kB (2035 bytes)
Hash
c77e59be511a929314ca90621f673349
be7787fefbda259d561a0dd776e676277b26ca52
ad884d70819fb469a4e2e0ab52ef2e001f474a207d96812694ee28d8e48ed322

HTTP Headers

GET /static/img/cross_product_index/accommodation-dark/6912548c54c0f3172581c31a4a24a371396dc67f.svg HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/c56180a92478e4508d340cf2fdbe5dfbc98c99aa.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/svg+xml
date: Fri, 11 Jul 2025 07:18:25 GMT
last-modified: Tue, 20 May 2025 09:48:49 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
cache-control: public,max-age=604800
x-amz-version-id: xUMih7eh.9cy_GTQre3m5oWAO9I1gnmw
server: AmazonS3
etag: W/"c77e59be511a929314ca90621f673349"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: jqTgYKPZpDb3int7br5mpNuzqEKA0aZwmoN9EKEW-4NRLPW8MV-h8Q==
age: 589841
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET t-cf.bstatic.com/design-assets/assets/v3.160.0/illustrations-traveller/TripsGlobe.png

3.167.2.99

200 OK

19 kB

URL GET
t-cf.bstatic.com/design-assets/assets/v3.160.0/illustrations-traveller/TripsGlobe.png
IP
3.167.2.99:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
PNG image data, 214 x 260, 8-bit colormap, non-interlaced
Size
19 kB (18683 bytes)
Hash
30dded815b5070659a3132792398432b
1270e29a7e30e1ef6401d87a12b6649055bdc454
a2c629300f70dad174f8230ed7d70866c43d8bad53fcf7b36ceb24d44cca7be0

HTTP Headers

GET /design-assets/assets/v3.160.0/illustrations-traveller/TripsGlobe.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 18683
date: Thu, 17 Jul 2025 14:12:03 GMT
last-modified: Mon, 14 Jul 2025 09:13:43 GMT
etag: "2e81fd9dda86b6c69ad5ec0f42e96cee"
x-amz-server-side-encryption: aws:kms
x-amz-server-side-encryption-aws-kms-key-id: arn:aws:kms:eu-west-2:339712873537:key/a7c9de2e-1f60-4f87-bbf7-dc4071c8d126
x-amz-version-id: M5FDbAkaFpi7nrOlqQyaQSH3HpjR87Yp
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 50c588fd3255d023d9b9021263f5fa0a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: jx23MLkHa9KGknCbOygASahxZOGycz9GHOwbm6SEozSPhoo8xHKehQ==
age: 46623
timing-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/7b68889a.3055914e.chunk.js

3.167.2.62

200 OK

176 kB

URL GET
cf.bstatic.com/psb/capla/static/js/7b68889a.3055914e.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
176 kB (175942 bytes)
Hash
ffbdb6493da8bf47a245b02eb4829912
ed53fdf868a68cf018d7d468922aeb9a295e33df
697948762fabebf3c23a129f594b975efcdf9931ba194fd4f1cfefa193ea5980

HTTP Headers

GET /psb/capla/static/js/7b68889a.3055914e.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Tue, 15 Jul 2025 13:28:21 GMT
last-modified: Tue, 15 Jul 2025 07:45:33 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: dc007423c1c3d334ee9579a86344a07d02da168b
x-amz-version-id: t0hE6JRVDkIla0nf0iHGdpVsZJ0AEhr2
server: AmazonS3
etag: W/"ffbdb6493da8bf47a245b02eb4829912"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: ZrpgL6BAi9BjxHHOWK2-MCP2DajpIXdUavFg-Dbj0lNQMS6ISZsTIQ==
age: 222046
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET r-xx.bstatic.com/xdata/images/hotel/263x210/595550178.jpeg?k=1db9bffadd03a0f2a9f0a06ba6c7751b16465f2dd251738f229d7a57dca799ef&o=

3.167.2.62

0 B

URL GET
r-xx.bstatic.com/xdata/images/hotel/263x210/595550178.jpeg?k=1db9bffadd03a0f2a9f0a06ba6c7751b16465f2dd251738f229d7a57dca799ef&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /xdata/images/hotel/263x210/595550178.jpeg?k=1db9bffadd03a0f2a9f0a06ba6c7751b16465f2dd251738f229d7a57dca799ef&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

GET cf.bstatic.com/xdata/images/hotel/square600/315744989.webp?k=37badff3959da24cbe900d0f8409b0a945943afe4e28bdfdaa3264bde915fae2&o=

3.167.2.62

200 OK

25 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/315744989.webp?k=37badff3959da24cbe900d0f8409b0a945943afe4e28bdfdaa3264bde915fae2&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
25 kB (24676 bytes)
Hash
40f88e3768e093e854cdb33fed7c27f1
55d63d997f97c55096c35a42560c0d901a832e4e
9a85839c089c7076e20291f0912f39e0e9c43ec1ec492093c989258311d9c2a7

HTTP Headers

GET /xdata/images/hotel/square600/315744989.webp?k=37badff3959da24cbe900d0f8409b0a945943afe4e28bdfdaa3264bde915fae2&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Tue, 08 Jul 2025 18:12:37 GMT
content-language: 24676
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "c87377af2909f94cbecb2a85da7b520055c877db"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: a2BgVPGM9Bh6mVHTtj9u392SVUv4R4wUC5nDR5T6WAzfosaVtd1WEg==
age: 809793
X-Firefox-Spdy: h2

OPTIONS account.booking.com/privacy-consents/implicit

3.167.2.91

204 No Content

0 B

URL OPTIONS
account.booking.com/privacy-consents/implicit
IP
3.167.2.91:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.booking.com
Fingerprint40:C8:C7:99:E8:DF:B4:B7:80:45:6C:57:15:2A:09:28:16:A7:2B:BB
ValidityFri, 07 Mar 2025 00:00:00 GMT - Sat, 17 Jan 2026 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /privacy-consents/implicit HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
server: envoy
date: Fri, 18 Jul 2025 03:09:12 GMT
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: POST
access-control-allow-origin: https://www.booking.com
access-control-max-age: 1728000
set-cookie: bkng_sso_session=e30; domain=.booking.com; path=/; expires=Wed, 17-Jul-2030 03:09:12 GMT; secure; HttpOnly
bkng_sso_ses=e30; domain=.booking.com; path=/; expires=Wed, 17-Jul-2030 03:09:12 GMT; secure; HttpOnly
bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJkYXRhX3N1YmplY3RfaWQiOiJiNzAyMzI0MS00N2RjLTRiNDYtYjYyYS0xYzU2NjY5YTkzYWYiLCJzZXNzaW9ucyI6W119fQ; domain=account.booking.com; path=/; expires=Wed, 17-Jul-2030 03:09:12 GMT; SameSite=Lax; secure; HttpOnly
content-security-policy: frame-ancestors https://*.booking.com 'self'; report-uri https://nellie.booking.com/csp-report-uri?type=block&tag=212&pid=8ee6162c44330560&e=UmFuZG9tSVYkc2RlIyh9YSWKtKO5TxgOpTwVTPfHZKNW3Hcrm1RLgTDT2V-m21UMJ4KxJTAfD3k6vpGGyphNZUfy-f31chCZb8612iO9R_UYhDOKZTX9f9H49t8PnK2N6xuOIDHFf7YVeF6LUX15hJZSB_2DKkYri_2egGn-0js
content-security-policy-report-only: base-uri 'none'; connect-src saa.booking.com secure.booking.com reports.booking.com privacyportal-eu.onetrust.com geolocation.onetrust.com cdn.cookielaw.org www.google-analytics.com *.perimeterx.net *.pxchk.net *.px-cdn.net *.px-client.net *.px-cloud.net 'self' 'report-sample'; default-src *.bstatic.com bstatic.com 'self'; frame-src https://www.youtube.com/embed/Vv4w5SmRkss *.bstatic.com https://www.google.com bstatic.com www.booking.com secure.booking.com paymentcomponent.booking.com 'self'; img-src 'self' data: www.booking.com graph.facebook.com cdn.cookielaw.org account.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google-analytics.com www.google.com stats.g.doubleclick.net *.px-cloud.net *.perimeterx.net www.gstatic.com; object-src 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=213&pid=8ee6162c44330560&e=UmFuZG9tSVYkc2RlIyh9YSWKtKO5TxgOpTwVTPfHZKNW3Hcrm1RLgTDT2V-m21UMJ4KxJTAfD3k6vpGGyphNZUfy-f31chCZb8612iO9R_UYhDOKZTX9f9H49t8PnK2N6xuOIDHFf7YVeF6LUX15hJZSB_2DKkYri_2egGn-0js; script-src saa.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google.com www.google-analytics.com cdn.cookielaw.org geolocation.onetrust.com 'self' 'nonce-zXwzO3GZINWD31c' 'report-sample'; style-src *.bstatic.com bstatic.com *.static.booking.cn 'self' 'unsafe-inline'
x-xss-protection: 1; mode=block
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-cache: Miss from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: SWNyM0RjGiG0eEZCmuVEZWp4fzSLUNgwYUQRaQjnB26IKutaknfc5g==
X-Firefox-Spdy: h2

GET cf.bstatic.com/static/js/plugable-access-form_cloudfront_sd/24b54ab3fd7377cb8b4a614b18f0e894bbfb5b41.js

3.167.2.62

200 OK

7.1 kB

URL GET
cf.bstatic.com/static/js/plugable-access-form_cloudfront_sd/24b54ab3fd7377cb8b4a614b18f0e894bbfb5b41.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (7076), with no line terminators
Size
7.1 kB (7076 bytes)
Hash
3f28df78a6b06ea2f3b9587fcf89ecf5
c2c2f6245cf200e9d2621799e58a99d023f0a7e4
832d30d57bdf77b737dcafee7b8cdca30ba95c20a321ca68fbfe02f8487302a3

HTTP Headers

GET /static/js/plugable-access-form_cloudfront_sd/24b54ab3fd7377cb8b4a614b18f0e894bbfb5b41.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 20 Jun 2025 08:57:58 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
x-amz-version-id: cUWqyiHw_ktyVBJi4IRbVNjQbw2DZufd
server: AmazonS3
date: Fri, 11 Jul 2025 15:16:03 GMT
cache-control: public,max-age=604800
etag: W/"3f28df78a6b06ea2f3b9587fcf89ecf5"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: zoXc0s3BjSUzKCUGjK3gPuB-Y1wDGivRt_zkbv0rmUyAOz202Lwh-w==
age: 561182
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/76f450ac.29a49090.chunk.js

3.167.2.62

200 OK

8.5 kB

URL GET
cf.bstatic.com/psb/capla/static/js/76f450ac.29a49090.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (8304)
Size
8.5 kB (8497 bytes)
Hash
f7553981999916619539b17a530770ab
24a72c7a8d6dc9aacb1da23b41f386548cd282b2
3e004f0292e56991b98177630fbbd5247e71b16c8e4a7dd6cd0e5929b847f525

HTTP Headers

GET /psb/capla/static/js/76f450ac.29a49090.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Fri, 04 Jul 2025 09:15:57 GMT
last-modified: Tue, 01 Jul 2025 14:11:15 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 8a3bc3823b834abf6fe2786815217da417ee5ba5
x-amz-version-id: iGGwP4Mz90Tm4EWzJpCqIqifiHKUdZjU
server: AmazonS3
etag: W/"f7553981999916619539b17a530770ab"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: D214bh0fDLvxepl0s0Koig7AVOGzHMWMTEOLYSvp65Dpm7aefqrlrA==
age: 1187588
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/7943e0ea.af3663d9.chunk.js

3.167.2.62

200 OK

200 kB

URL GET
cf.bstatic.com/psb/capla/static/js/7943e0ea.af3663d9.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65455)
Size
200 kB (200458 bytes)
Hash
ba977c0c96b99c12b2dabe4adc554c3b
2907243b436854ba5fdfad4e7aecff5e941672df
15fbb05d753a98b5ede983d1155ff03d1874bf088a0288d72b010e2bb0090c46

HTTP Headers

GET /psb/capla/static/js/7943e0ea.af3663d9.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Thu, 17 Jul 2025 14:13:06 GMT
last-modified: Thu, 17 Jul 2025 13:37:57 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: e829eaea6cb5b2d54f4c2f4114f48aed7ed0efe0
x-amz-version-id: gdkBuprYmD_2GX6sSp6h67Gswa4cZf5D
server: AmazonS3
etag: W/"ba977c0c96b99c12b2dabe4adc554c3b"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: IyKU-OaBBZnt5vZkbLuG7bGphCSoahZ2BCkIZK5dw_uH9ygR8lQ8cg==
age: 46559
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET q-xx.bstatic.com/xdata/images/xphoto/814x138/535341132.jpeg?k=9adf4d98ff2d48c5745b37654d2d77e09169647b979dfda9c6baa54198b9fc6c&o=

3.167.2.62

200 OK

19 kB

URL GET
q-xx.bstatic.com/xdata/images/xphoto/814x138/535341132.jpeg?k=9adf4d98ff2d48c5745b37654d2d77e09169647b979dfda9c6baa54198b9fc6c&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 814x138, components 3
Size
19 kB (19156 bytes)
Hash
6a87e7676a1298fa4f48012e1c678976
d62b764f14ae2cf6bd29c7fa22696ebfebd9e00f
5f97b0b01189f58c07431403615d085235a370a186de22254d89734ccb46eca7

HTTP Headers

GET /xdata/images/xphoto/814x138/535341132.jpeg?k=9adf4d98ff2d48c5745b37654d2d77e09169647b979dfda9c6baa54198b9fc6c&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Mon, 30 Jun 2025 09:10:43 GMT
etag: "28946d3710ba03209075fb88af5d3c6175693500"
content-language: 19156
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: sAYJSBHhUUiMjo9ZY2KGcGmOxvQDF_RTqF_3kSPJy_BO6BK05aAJAg==
age: 1533502
X-Firefox-Spdy: h2

GET q-xx.bstatic.com/xdata/images/city/170x136/969647.jpg?k=5f38d4d7db6e4825f12a89f9ea69d975569d2bba87231d6446daee0d98b85e8e&o=

3.167.2.62

200 OK

4.9 kB

URL GET
q-xx.bstatic.com/xdata/images/city/170x136/969647.jpg?k=5f38d4d7db6e4825f12a89f9ea69d975569d2bba87231d6446daee0d98b85e8e&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3
Size
4.9 kB (4857 bytes)
Hash
593d9c8de3a5f7012a5bc411ea4c6940
739ab868df456382c5e38f0c411462c54ea86136
314e2772fd7e518e1646fb4e840990c74365ef9e6098a9595cd03130ef960ee2

HTTP Headers

GET /xdata/images/city/170x136/969647.jpg?k=5f38d4d7db6e4825f12a89f9ea69d975569d2bba87231d6446daee0d98b85e8e&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
content-length: 4857
server: nginx
date: Fri, 11 Jul 2025 12:54:09 GMT
content-language: 4857
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "a3dcd1feaec8822a1edad20c843d640c618e1639"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: ZtpOfQ6dVqzFxg1w2oBNxC0CFKdTZ0xfsitDUpegYXyRGPNxIrMDdA==
age: 569701
X-Firefox-Spdy: h2

GET cf.bstatic.com/static/css/index_cloudfront_sd.iq_ltr/019cff5858f85161567ce028a49b879cbb903c53.css

3.167.2.62

200 OK

324 kB

URL GET
cf.bstatic.com/static/css/index_cloudfront_sd.iq_ltr/019cff5858f85161567ce028a49b879cbb903c53.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
324 kB (323671 bytes)
Hash
265469d04a6a398c5897d80182c7f51a
0f5cdeb27fe0c3777778f4a99f66bdadd0cdbd11
532d080950462584d87fcb8008b56d5ae338fd7cafb6b094803b0878af4265d2

HTTP Headers

GET /static/css/index_cloudfront_sd.iq_ltr/019cff5858f85161567ce028a49b879cbb903c53.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 03 Jul 2025 14:56:03 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
x-amz-version-id: AXCIAIrC6NJWhV0VRX_BdqMGzKxmDhMm
server: AmazonS3
date: Fri, 11 Jul 2025 09:26:29 GMT
cache-control: public,max-age=604800
etag: W/"265469d04a6a398c5897d80182c7f51a"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: gluY_aNdoaoasA4iBDS_oVTLw-9MlkfOBxRrOE9Wg77HV220Knb8yg==
age: 582155
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/css/f41dcaf5.59820d20.chunk.css

3.167.2.62

200 OK

268 B

URL GET
cf.bstatic.com/psb/capla/static/css/f41dcaf5.59820d20.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text
Size
268 B (268 bytes)
Hash
a29d6c3e9fe2aa13799b67496b23a876
7ebe8ab004b582ae281ce71b28195fdb48001b8e
02ce3af51300a68bd15a4439b976d286405a1f14c6ac5d8d4fab208b217408f1

HTTP Headers

GET /psb/capla/static/css/f41dcaf5.59820d20.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
content-length: 268
date: Wed, 30 Apr 2025 12:20:00 GMT
last-modified: Wed, 30 Apr 2025 12:14:55 GMT
etag: "a29d6c3e9fe2aa13799b67496b23a876"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 7f82c7a237c55d015134d9b3a37ef950da4f5a39
x-amz-version-id: jmF1di_1Eo0pFz55JHF8Ie7qtgOHfYN6
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: K7Kh7HbDjaeoZXV5k8KTcjXrxuQh0fYjnYwGb2jvNelGKuLaBnjaMg==
age: 6792545
timing-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2

GET q-xx.bstatic.com/xdata/images/hotel/263x210/595550415.jpeg?k=8967853a074040381dfa25a568e6c780e309b529e0c144995c5bbc9644721eca&o=

0.0.0.0

0 B

URL GET
q-xx.bstatic.com/xdata/images/hotel/263x210/595550415.jpeg?k=8967853a074040381dfa25a568e6c780e309b529e0c144995c5bbc9644721eca&o=
IP
0.0.0.0:0
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /xdata/images/hotel/263x210/595550415.jpeg?k=8967853a074040381dfa25a568e6c780e309b529e0c144995c5bbc9644721eca&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

GET cf.bstatic.com/psb/capla/static/css/7943e0ea.ad9ce77f.chunk.css

3.167.2.62

200 OK

3.3 kB

URL GET
cf.bstatic.com/psb/capla/static/css/7943e0ea.ad9ce77f.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (653)
Size
3.3 kB (3343 bytes)
Hash
9f90e201294903c038dc31bad9b50d88
a8e1a8a20b25c95c5f3186f13e950faa75a49159
859db2e7e0ff673c02f3d119c55e817f425f330a5e407ebc7b7db373dbc33194

HTTP Headers

GET /psb/capla/static/css/7943e0ea.ad9ce77f.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Mon, 14 Jul 2025 13:27:43 GMT
last-modified: Mon, 14 Jul 2025 08:43:18 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 105c281e5639f5ad04cebbaacef2e8b0ba285a26
x-amz-version-id: lfyI7AEucbi4KcESWrIINiBQRgZjzYF7
server: AmazonS3
etag: W/"9f90e201294903c038dc31bad9b50d88"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: uR9mJYD-9DzDWpNJ6fZg-4LtWXAVbMiIMKlfBJAMZgAI9ipq4GhYvw==
age: 308482
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/8e69b76c.0e4ce4d3.chunk.js

3.167.2.62

200 OK

8.6 kB

URL GET
cf.bstatic.com/psb/capla/static/js/8e69b76c.0e4ce4d3.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (8460)
Size
8.6 kB (8572 bytes)
Hash
297c68b0f24f227924fa85870225d450
4e6649687db8177d8777b04945ec37ecf7eee301
0a812ef44eae19c593ab8a84729695a2395071ed57c2ceb034732cb8a74f19ab

HTTP Headers

GET /psb/capla/static/js/8e69b76c.0e4ce4d3.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Thu, 17 Jul 2025 14:12:04 GMT
last-modified: Wed, 16 Jul 2025 16:00:57 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 75f2989e4c756494607504d519d0d265808c5e29
x-amz-version-id: jteYIjcsMLJ9Qjj1S4QYboEgezcbnuOf
server: AmazonS3
etag: W/"297c68b0f24f227924fa85870225d450"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: S2O0Ut6Rpnv0Tz57tT6XMvv5R54-9WKTfIx914K-5RVkZKB7oY_b6g==
age: 46621
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/static/js/calendar2_cloudfront_sd/0df4b7c6244916ae03ac49041820801723f67e42.js

3.167.2.62

200 OK

51 kB

URL GET
cf.bstatic.com/static/js/calendar2_cloudfront_sd/0df4b7c6244916ae03ac49041820801723f67e42.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (51360), with no line terminators
Size
51 kB (51361 bytes)
Hash
deb4ea043bba4efeb2abcca08715dcaf
85d120c0d827629d34f5c80489bfc5811cae2ce4
67bc5b57cf45cbc480f3e0a02cc5f99878af0ed6d094dfa93b65e108fbdb6f1a

HTTP Headers

GET /static/js/calendar2_cloudfront_sd/0df4b7c6244916ae03ac49041820801723f67e42.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 14 Apr 2025 14:51:15 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
x-amz-version-id: 1m.d_C5LoKBzxJCj1tfNnAk6rU9Y.piF
server: AmazonS3
date: Thu, 17 Jul 2025 21:13:36 GMT
cache-control: public,max-age=604800
etag: W/"deb4ea043bba4efeb2abcca08715dcaf"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: XLdN6Pfx6brwh9YAx0nNWx58vLZOaE7WiwL85rz-asq61nabJXsXvA==
age: 21333
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET q-xx.bstatic.com/xdata/images/city/170x136/894152.jpg?k=44f3e1ca20bd0a7e0f455316f2f93b49945239d70f60ce7fdec592db83b30e85&o=

3.167.2.62

200 OK

6.8 kB

URL GET
q-xx.bstatic.com/xdata/images/city/170x136/894152.jpg?k=44f3e1ca20bd0a7e0f455316f2f93b49945239d70f60ce7fdec592db83b30e85&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3
Size
6.8 kB (6769 bytes)
Hash
e9ce51fea2b870caff3d45de6718531d
6709c1ec362192f81fcc2cb4c94556068f264c61
66c7fa8d4bc7732e0735e8ff6da0fdc64114ac910b0c7e4e8272c3680ce9017f

HTTP Headers

GET /xdata/images/city/170x136/894152.jpg?k=44f3e1ca20bd0a7e0f455316f2f93b49945239d70f60ce7fdec592db83b30e85&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
content-length: 6769
server: nginx
date: Fri, 04 Jul 2025 16:03:57 GMT
content-language: 6769
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "e2d97c1db18f9ecdc79671dd9276a3852b843649"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: KUBetVy4L1JjmdH9Fib1-RlwVELJBkK9qyn33KnpXlHo-cyuDxt2xA==
age: 1163113
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/98662660.webp?k=9706bb80a5303821587f70302a4ab357c4c82742bc3caa091d98fd6e5ea8df0f&o=

3.167.2.62

200 OK

42 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/98662660.webp?k=9706bb80a5303821587f70302a4ab357c4c82742bc3caa091d98fd6e5ea8df0f&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
42 kB (42264 bytes)
Hash
14ebe89fdcf2ecdd3e12eee0632a9790
01102c19d7ec6997dae7ca69a48434728d852aa4
f1133b06c00193cfb54ccf60f3a0e6ad2caad04db30e486f2a79ca128cd62ac4

HTTP Headers

GET /xdata/images/hotel/square600/98662660.webp?k=9706bb80a5303821587f70302a4ab357c4c82742bc3caa091d98fd6e5ea8df0f&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Sun, 13 Jul 2025 15:06:57 GMT
content-language: 42264
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "832591927922379091fba6ffe8d678ee775d3fce"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: F9a4XJZVP8TdpEzh2a09jkNU2yOeKXpa_IviQAVqqicrqkLq9znQqQ==
age: 388933
X-Firefox-Spdy: h2

GET d8c14d4960ca.edge.sdk.awswaf.com/d8c14d4960ca/a18a4859af9c/challenge.js

3.167.2.48

200 OK

1.1 MB

URL GET
d8c14d4960ca.edge.sdk.awswaf.com/d8c14d4960ca/a18a4859af9c/challenge.js
IP
3.167.2.48:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerAmazon
Subject*.edge.sdk.awswaf.com
Fingerprint17:81:C6:3C:64:8D:61:C0:C4:F8:67:F7:82:B9:6C:45:E6:6C:DF:9A
ValidityFri, 29 Nov 2024 00:00:00 GMT - Mon, 29 Dec 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
1.1 MB (1099377 bytes)
Hash
7906f78b2546fee510d1cdd61949df36
ad45377527b7dba73a8b695cc6ac74c52404673a
efc9928b0d2fa926614b7816a3b3d52c94440b36933e4e36bef860276a9d1ea9

Detections

Analyzer	Verdict	Alert
Public Nextron YARA rules	malware	Unique code from Jetriz, Swid & Jeniva of the Tetris framework

HTTP Headers

GET /d8c14d4960ca/a18a4859af9c/challenge.js HTTP/1.1
Host: d8c14d4960ca.edge.sdk.awswaf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Fri, 18 Jul 2025 03:09:10 GMT
expires: 0
x-amzn-waf-challenge-id: Root=1-6879bad6-166748537a4b46df29b9f18f
cache-control: private, max-age=86400, stale-while-revalidate=604800
last-modified: Fri, 18 Jul 2025 03:09:10 +0000
pragma: no-cache
content-encoding: gzip
vary: accept-encoding
x-cache: Miss from cloudfront
via: 1.1 edea1d4f37b8855878682c02540138fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: eOe4lyB13uwm13jLaaTV3R3AwUbQoYrSwFxqO3aiUMoalm5IYRwz1w==
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/css/b9a82cb8.03e50e91.chunk.css

3.167.2.62

200 OK

10 kB

URL GET
cf.bstatic.com/psb/capla/static/css/b9a82cb8.03e50e91.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (10382)
Size
10 kB (10499 bytes)
Hash
655dc5646c0548789e9cfe13d9ee7258
6cea8b80ddbe74d3aad6432d7e80f3b3cec9b20a
51ab6001c13bf9d36174ec280d1e9c022b508f0bf667e0eaa941b6fa54dec9b7

HTTP Headers

GET /psb/capla/static/css/b9a82cb8.03e50e91.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Thu, 19 Jun 2025 12:42:23 GMT
last-modified: Thu, 12 Jun 2025 10:51:46 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 4d5e03906766fc53ea9465258fbfb6daea24fce4
x-amz-version-id: bd68FZ6lKiwfz0osHu6zlkQVE866WrPN
server: AmazonS3
etag: W/"655dc5646c0548789e9cfe13d9ee7258"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: Sy0gtzozPvMzU181u5tWGyv_qTcXkcMm-y-60PkfaQLNUfADMCpuaQ==
age: 2471202
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/279333721.webp?k=55905f2b46817050a4838f5dbc34741c7dded636d9642a0c75f37ebd11ccab5c&o=

3.167.2.62

200 OK

55 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/279333721.webp?k=55905f2b46817050a4838f5dbc34741c7dded636d9642a0c75f37ebd11ccab5c&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
55 kB (54878 bytes)
Hash
c54e9379a3be33e13c8263c1cdbda53b
473670461806883e9f321ac6e8db9a86b9c3ff4e
837d4054ffdd6bbde4960c5ba7b98246ec5894342e3f021aefb5f2eeb448fbaf

HTTP Headers

GET /xdata/images/hotel/square600/279333721.webp?k=55905f2b46817050a4838f5dbc34741c7dded636d9642a0c75f37ebd11ccab5c&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Tue, 15 Jul 2025 08:33:46 GMT
content-language: 54878
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "1105d25063f13ec3386a2ed7bb37769d00eb0544"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 5I86APQPCuDozFaLprltvey16ElM8yNLvnhcf64aUVeCMOKcjkIUPA==
age: 239724
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/css/d8454389.2f1a677b.chunk.css

3.167.2.62

200 OK

9.8 kB

URL GET
cf.bstatic.com/psb/capla/static/css/d8454389.2f1a677b.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (2480)
Size
9.8 kB (9824 bytes)
Hash
a9a7ac082d4e4b42129da2194b9b594c
09647d5ca252d32d158140bd55a41b8050a092e4
c0cb3d753f3a53b2727d974f7cf75c538a4bca4567e719864adef0299079199a

HTTP Headers

GET /psb/capla/static/css/d8454389.2f1a677b.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Mon, 14 Jul 2025 13:27:43 GMT
last-modified: Mon, 14 Jul 2025 08:43:18 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 105c281e5639f5ad04cebbaacef2e8b0ba285a26
x-amz-version-id: YQAedq6flwKtGppCrF_2lRCu7ohL39Ms
server: AmazonS3
etag: W/"a9a7ac082d4e4b42129da2194b9b594c"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: Q50nXpqk4JorWmE3wRhCaGCTCs2wQ17eMGo4jbKWWcWZBYNQekp7qg==
age: 308482
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET r-xx.bstatic.com/xdata/images/xphoto/248x248/468828542.jpeg?k=b51cb74f05db0ebc1a1cbcca384fa2ee8c4d6c0b5fd089a15b1fd14a107ccab4&o=

3.167.2.62

200 OK

15 kB

URL GET
r-xx.bstatic.com/xdata/images/xphoto/248x248/468828542.jpeg?k=b51cb74f05db0ebc1a1cbcca384fa2ee8c4d6c0b5fd089a15b1fd14a107ccab4&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 248x248, components 3
Size
15 kB (14701 bytes)
Hash
8030c438c90ab2533afe2f169a5f3340
a9802cc5ca58deb3ccb7002ce699d75b2f039654
6ded372adc942921c7227b8106ec300295b30c2ad9e268a507ed72f47a75b4c0

HTTP Headers

GET /xdata/images/xphoto/248x248/468828542.jpeg?k=b51cb74f05db0ebc1a1cbcca384fa2ee8c4d6c0b5fd089a15b1fd14a107ccab4&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Tue, 15 Jul 2025 10:52:42 GMT
content-language: 14701
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "6f35c5f01dbbcc6060f5a648f1b253b5ea8f4f88"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: XpZAu-hv94WmdTS3eRCBV7Acey4462Xt4TnRVsXrivEma_M6OhI82g==
age: 231386
X-Firefox-Spdy: h2

GET www.booking.com/cookiebanner.html

54.240.174.43

200 OK

2.4 kB

URL GET
www.booking.com/cookiebanner.html
IP
54.240.174.43:443
ASN
#16509 AMAZON-02

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.booking.com
Fingerprint40:C8:C7:99:E8:DF:B4:B7:80:45:6C:57:15:2A:09:28:16:A7:2B:BB
ValidityFri, 07 Mar 2025 00:00:00 GMT - Sat, 17 Jan 2026 23:59:59 GMT

File type
HTML document, ASCII text
Size
2.4 kB (2415 bytes)
Hash
bcc2625c75330fc40ff42931582880cf
37e7f764e40602c5b28cd962aff2fbdb35656a68
a8f7f4bb9ed451823fcfa3ae1c94308f902d2ae3cb00550b0e6efde59f90a2e0

HTTP Headers

GET /cookiebanner.html HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbKE7bjkbYWzkd%2BwJK4Aig3FuCpVeMqbjSoEQaplBM6HbQQRFpHYwd7Gl0rnNKxgd14XO3m%2FZf%2Fyy8Is%2Fd%2FpH3ZtaFgeYuYqHi21fbeuZBRhfwgLsM3uPVxJfE4WWK76WWK08mWVZIluqJxPYsNqq8BBd4MPZ%2FB6FfctGCTB%2Br574%3D; pcm_personalization_disabled=0; bkng_sso_auth=CAIQ0+WGHxpmrqlfCI/7cj7WenmOuL5QxSn4u0pk06cV4xlrrrhmJKAb1FesYuKumLV4pSqW60W2NnCfEB+Pr3GDZ3i/aG465ACIGtpwXlBI9XDqnlhOkhTT7xUttessFF0wXrOKUtvFXd/bRD8o; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3De1046c70-f5fb-4ace-8c3b-1dcf67343057%26consentedAt%3D2025-07-18T03%3A09%3A02.576Z%26expiresAt%3D2026-01-14T03%3A09%3A02.576Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; cors_js=1; BJS=-; OptanonConsent=isGpcEnabled=0&datestamp=Fri+Jul+18+2025+03%3A09%3A10+GMT%2B0000+(GMT)&version=202501.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=09256104-0f5f-4a6a-ac93-609487ab974a&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D818288%26label%3Daffnetcj-12365056_pub-5108952_site-101463210_pname-Go%2BTravel%2BUn%2BLimited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74%26utm_source%3Daffnetcj%26utm_medium%3Dbannerindex%26utm_campaign%3Dxx%26utm_term%3Dindex-12365056
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 840
server: nginx
date: Fri, 18 Jul 2025 03:09:11 GMT
cache-control: private
vary: User-Agent, Accept-Encoding
content-encoding: br
nel: {"report_to":"default","failure_fraction":0.1,"max_age":604800}
report-to: {"group":"default","endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":604800}
set-cookie: _implmdnbl=2__1__0; path=/; expires=Sun, 19-Jul-2020 03:09:11 GMT; HttpOnly
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbXpFeYC4TUhC2Bxpad7rBkr%2BBrpJH1iHk8hNi2mMcmzXF8jUW%2BVxThsdq6wInopZjuV27xCTneFk6OCFM3nVGzmdMgxhdOwgJHsEG9nA9HLOqiL3KT2uYPI%2B9bcLdcZ9QWYldSuSfFW9JqZd13MmC8q5smnfwFrzCgwDtRO%2By6V4%3D; domain=.booking.com; path=/; expires=Wed, 17-Jul-2030 03:09:11 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-recruiting: Like HTTP headers? Come write ours: https://careers.booking.com
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: oMzxlA5T-6JBOV73onuA9m2Dw1jovTzXX11bBgOTKQw81TD-S2YSRw==
server-timing: cdn-upstream-layer;desc="REC",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=1,cdn-upstream-fbl;dur=76,cdn-cache-miss,cdn-pop;desc="OSL50-P1",cdn-rid;desc="oMzxlA5T-6JBOV73onuA9m2Dw1jovTzXX11bBgOTKQw81TD-S2YSRw==",cdn-downstream-fbl;dur=118
X-Firefox-Spdy: h2

GET cf.bstatic.com/static/css/main_exps_cloudfront_sd.iq_ltr/b08056dddfe104d80d02a68b00266d52e048dd7b.css

3.167.2.62

200 OK

132 kB

URL GET
cf.bstatic.com/static/css/main_exps_cloudfront_sd.iq_ltr/b08056dddfe104d80d02a68b00266d52e048dd7b.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
132 kB (132243 bytes)
Hash
acc2a5625b9a37533c763376873f8177
124a3e33ddaa02f60318d17c20bdea1abf413929
9640657d80df7fee86223bbe102b7bf14cc88c8cb9b0fb1b642637b60b76b2ea

HTTP Headers

GET /static/css/main_exps_cloudfront_sd.iq_ltr/b08056dddfe104d80d02a68b00266d52e048dd7b.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
last-modified: Wed, 25 Jun 2025 14:03:36 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
x-amz-version-id: gPd_gt28zRPEYH4fEiQO8J5p15R5mZ9Q
server: AmazonS3
date: Wed, 16 Jul 2025 20:32:26 GMT
cache-control: public,max-age=604800
etag: W/"acc2a5625b9a37533c763376873f8177"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: nV7YbNYnREV5_TOA9qlHh9T-DzumN2oqurf4NPgYX62sKDq3UU1YpA==
age: 110198
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET r-xx.bstatic.com/xdata/images/city/170x136/644310.jpg?k=472fefd4c3c0aef36deb16adb91c965923d8b1078ab29056802f95aead0586bf&o=

3.167.2.62

200 OK

6.5 kB

URL GET
r-xx.bstatic.com/xdata/images/city/170x136/644310.jpg?k=472fefd4c3c0aef36deb16adb91c965923d8b1078ab29056802f95aead0586bf&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3
Size
6.5 kB (6544 bytes)
Hash
d8fc03a58b76828aa4d541100bd52964
ec876001abc6b7de78aada1dc0460f898269aa1e
08d047a4f12afcccef76d06b51501b8cbec55e66f828a08bedb06434b7249502

HTTP Headers

GET /xdata/images/city/170x136/644310.jpg?k=472fefd4c3c0aef36deb16adb91c965923d8b1078ab29056802f95aead0586bf&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
content-length: 6544
server: nginx
date: Sun, 13 Jul 2025 06:30:34 GMT
content-language: 6544
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "dc256fcd9293261238443518cc03ae92aad2431e"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: HBg1PQgwa5FLVEQsSWkRIhtppxgieo4ZYPR9K3XRFH4lUZTsuHT1ZQ==
age: 419916
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/201854883.webp?k=9dce3bffacd4877f0b7401e98f02edeecf74ceaa910e89b09a9b924fd1e23e00&o=

3.167.2.62

200 OK

56 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/201854883.webp?k=9dce3bffacd4877f0b7401e98f02edeecf74ceaa910e89b09a9b924fd1e23e00&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
56 kB (55632 bytes)
Hash
2d37d447e00ed51e2dd48914bfc40a23
a861fe62631efd3580b5553974e9bff5a75d3788
b8ca13d2d8be9b92fe9f7d1514d444a14b2f304c230ac78007515835ede5404c

HTTP Headers

GET /xdata/images/hotel/square600/201854883.webp?k=9dce3bffacd4877f0b7401e98f02edeecf74ceaa910e89b09a9b924fd1e23e00&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Tue, 08 Jul 2025 11:03:40 GMT
content-language: 55632
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "8b0505ee8e70155aaa6f92717b3b1fb58d7d40c9"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: S-ZL3bfMccMgGuFanFCNG_HR_2T_KNT4GRCmllthauTVKlsluyhetg==
age: 835530
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/632610483.webp?k=216b94b19f587f6c132246faa536336175ed5a5d9fb96aa2639c9c2dc74c4690&o=

3.167.2.62

200 OK

35 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/632610483.webp?k=216b94b19f587f6c132246faa536336175ed5a5d9fb96aa2639c9c2dc74c4690&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
35 kB (34800 bytes)
Hash
a82a0bdc5e95dafa702bd97c46be84e3
d6d4364a0571788c8255f7f809b15c990e230d2f
dfda4e1f16b6037d851242b786def42ff291bbef0e5fb523709839ebcfd86872

HTTP Headers

GET /xdata/images/hotel/square600/632610483.webp?k=216b94b19f587f6c132246faa536336175ed5a5d9fb96aa2639c9c2dc74c4690&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Tue, 24 Jun 2025 15:19:41 GMT
content-language: 34800
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "482f5e7ad4b86676758b1c923969c208217f2fbd"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 49gFs99U5N8arvFnk4nn0-Eod0vP_gOIfpALUSKIX35xT5simekiwA==
age: 2029769
X-Firefox-Spdy: h2

GET www.emjcd.com/6b81p-87S/-6B/PQRUTOTU/POPSURQPO/O/SOOXOURRTVXQOTXTWR:nrhBOdqCbLg7/W1UOOQ2yURWSPP2OWOyyOOP0OyPWzyVS?w=j8yt%3DqqGMuGKNKPMrKtIPrGPqJuPNP-MIHIHJ%3c%3Esz4!C9yw-91B12rE0-K-91B12rE0%3cx9958%3A%2F%2FCCC.zt464sE.s42%2Fs1ys0-HGHKMJIHG-HIJMLGLM%3c%3cW%3cx995%3A%2F%2FCCC.zt464sE.s42%3cGsNuILvG-qPLN-KPOv-qGIr-PtvrtqKrrvKK%3cH%3cH%3cG%3cG%3c

89.207.16.75

302 Found

719 kB

URL User Request GET
www.emjcd.com/6b81p-87S/-6B/PQRUTOTU/POPSURQPO/O/SOOXOURRTVXQOTXTWR:nrhBOdqCbLg7/W1UOOQ2yURWSPP2OWOyyOOP0OyPWzyVS?w=j8yt%3DqqGMuGKNKPMrKtIPrGPqJuPNP-MIHIHJ%3c%3Esz4!C9yw-91B12rE0-K-91B12rE0%3cx9958%3A%2F%2FCCC.zt464sE.s42%2Fs1ys0-HGHKMJIHG-HIJMLGLM%3c%3cW%3cx995%3A%2F%2FCCC.zt464sE.s42%3cGsNuILvG-qPLN-KPOv-qGIr-PtvrtqKrrvKK%3cH%3cH%3cG%3cG%3c
IP
89.207.16.75:443
ASN
#41041 Conversant LLC

Certificate
IssuerGlobalSign nv-sa
Subjectwww.qksrv.net
FingerprintF0:E3:EC:FE:C0:09:E3:45:BF:4C:19:88:5C:9D:DA:0D:F8:B9:FD:7C
ValidityMon, 14 Oct 2024 15:51:38 GMT - Sat, 15 Nov 2025 15:51:37 GMT

File type

Size
719 kB (718953 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /6b81p-87S/-6B/PQRUTOTU/POPSURQPO/O/SOOXOURRTVXQOTXTWR:nrhBOdqCbLg7/W1UOOQ2yURWSPP2OWOyyOOP0OyPWzyVS?w=j8yt%3DqqGMuGKNKPMrKtIPrGPqJuPNP-MIHIHJ%3c%3Esz4!C9yw-91B12rE0-K-91B12rE0%3cx9958%3A%2F%2FCCC.zt464sE.s42%2Fs1ys0-HGHKMJIHG-HIJMLGLM%3c%3cW%3cx995%3A%2F%2FCCC.zt464sE.s42%3cGsNuILvG-qPLN-KPOv-qGIr-PtvrtqKrrvKK%3cH%3cH%3cG%3cG%3c HTTP/1.1
Host: www.emjcd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Server: Resin/4.0.66
Set-Cookie: S=400906335792059583:PTJo0FSpDyIk; Max-Age=34041593; Domain=.emjcd.com; Path=/; Secure; SameSite=None
SESS=cjo!wtig-tlvlmbyk-4-tlvlmbyk; Domain=.emjcd.com; Path=/; Secure; SameSite=None
CJSession=0c7e25f0-a957-498f-a02b-9dfbda4bbf44; Domain=.emjcd.com; Path=/; Secure; SameSite=None
S=400906335792059583:PTJo0FSpDyIk; Max-Age=34041593; Domain=.emjcd.com; Path=/; Secure; SameSite=None
P3P: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT"
Cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Expires: Fri, 18 Jul 2025 03:09:02 GMT
Location: http://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Content-Type: text/html; charset=UTF-8
Content-Length: 729
Date: Fri, 18 Jul 2025 03:09:02 GMT
X-VC-HTTPS: On

GET cf.bstatic.com/psb/capla/static/css/ace575b5.52e1bd16.chunk.css

3.167.2.62

200 OK

2.5 kB

URL GET
cf.bstatic.com/psb/capla/static/css/ace575b5.52e1bd16.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (2373)
Size
2.5 kB (2490 bytes)
Hash
58137d3ebdb677d6ec8a6d2ea8b9f410
9e3deb8a3a885b86e9728d4d348974d7abec4dbf
c289cae6faf55c0ae99e55ee9208224e54ade004b749aab4be816ce9023a5db3

HTTP Headers

GET /psb/capla/static/css/ace575b5.52e1bd16.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Tue, 06 May 2025 11:41:17 GMT
last-modified: Tue, 06 May 2025 09:57:53 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 7fe15ce3e9a69012a65be125503a48edc08a1a5f
x-amz-version-id: W3VijWyMNgkLDbYQFHnDa89LtTLx9dCf
server: AmazonS3
etag: W/"58137d3ebdb677d6ec8a6d2ea8b9f410"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: KFtwxRAXYUUjugutSEbPT-G54JMRrjgOXzjWG121YQyF2YNbMpwF_A==
age: 6276468
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/css/ce4afa91.6eb04667.chunk.css

3.167.2.62

200 OK

808 B

URL GET
cf.bstatic.com/psb/capla/static/css/ce4afa91.6eb04667.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (527)
Size
808 B (808 bytes)
Hash
4d86af22a6235d016b2dacbbfb116d0a
7ce7c12255d9549b02b4ff1be1318abdb3a87b3c
09c435dba35a0c5d994737bf6db979ecd045978414c8f4114a7c7473333f7420

HTTP Headers

GET /psb/capla/static/css/ce4afa91.6eb04667.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
content-length: 808
date: Mon, 14 Jul 2025 13:31:02 GMT
last-modified: Mon, 14 Jul 2025 08:43:18 GMT
etag: "4d86af22a6235d016b2dacbbfb116d0a"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 105c281e5639f5ad04cebbaacef2e8b0ba285a26
x-amz-version-id: pbl1rwPG7OCG_F_boowVltY4avEgpOPw
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: txePIOQdV32IYNdlDTa4MpuK6MnLuuX2WOEixuykXQbgahg-8vF0bA==
age: 308283
timing-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/0a098284.dca56cf2.chunk.js

3.167.2.62

200 OK

44 kB

URL GET
cf.bstatic.com/psb/capla/static/js/0a098284.dca56cf2.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (43800)
Size
44 kB (43912 bytes)
Hash
6e18027fac18d970c2ee72e272d97a8f
356dfaaf64abadbcf4b787b13623b915bec7a37d
7ebabc9f3b3a23c367e2dfec8576a7937b0b4d0e388c25ab4c90c0cacb089127

HTTP Headers

GET /psb/capla/static/js/0a098284.dca56cf2.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Thu, 17 Jul 2025 14:12:04 GMT
last-modified: Wed, 16 Jul 2025 16:00:56 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 75f2989e4c756494607504d519d0d265808c5e29
x-amz-version-id: ukzITHPFpoKdN3gXKzg3w3e_guirTYsm
server: AmazonS3
etag: W/"6e18027fac18d970c2ee72e272d97a8f"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: F5R0SXGXJnpjKOLpQAAoYJTfMKpH_mJNZ7PHwqkf6_No93gzb3shBw==
age: 46621
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/css/3c29a897.f76d844f.chunk.css

3.167.2.62

200 OK

339 B

URL GET
cf.bstatic.com/psb/capla/static/css/3c29a897.f76d844f.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text
Size
339 B (339 bytes)
Hash
744a6854dda301a7d17ca353fd944991
66eddc4780609722f0b6152274043e59f500f4ec
686e52444a7fb68e49d6c191ff05e4288321b55fad2a8821fa8292ffc2fcce9e

HTTP Headers

GET /psb/capla/static/css/3c29a897.f76d844f.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
content-length: 339
date: Thu, 01 May 2025 14:17:20 GMT
last-modified: Thu, 01 May 2025 12:37:24 GMT
etag: "744a6854dda301a7d17ca353fd944991"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: f4ceb261bc870b3ffa8a13f4a291ce6960529cd2
x-amz-version-id: 6q12a8zaxyLSg0UhJVtvEAPm57g8jbdH
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: PSwfFo9-7JkPuoYv4d1I1HdXlPpFCDm88GXhDJOqwoNDR5DesbW6AA==
age: 6699105
timing-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/remoteEntry.072d4e52.client.js

3.167.2.62

200 OK

20 kB

URL GET
cf.bstatic.com/psb/capla/static/js/remoteEntry.072d4e52.client.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (19738)
Size
20 kB (19854 bytes)
Hash
ff9f3137d4878ec094b34fa372548c7a
d7dd6bb0d092786aaf53618fb188fa990d9881e2
004fa7dc0a879469f1a65214528c1d9441ffcf7baf931bb3bf1905cc68a50f74

HTTP Headers

GET /psb/capla/static/js/remoteEntry.072d4e52.client.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Thu, 10 Jul 2025 09:20:57 GMT
last-modified: Thu, 10 Jul 2025 09:07:13 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 4be8b0339f05c0541e4469f6a19d53ac5cf8f8ae
x-amz-version-id: 7m5Qo1pPo3q.drou1OExQnVtrbNReh27
server: AmazonS3
etag: W/"ff9f3137d4878ec094b34fa372548c7a"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: rfPy4UerRn7NgGMzgzAiD_Rf3ycV0i-t7XPyXWXH2S8L806PKRPX2g==
age: 668888
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/city/600x600/740935.jpg?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o=

3.167.2.62

200 OK

57 kB

URL GET
cf.bstatic.com/xdata/images/city/600x600/740935.jpg?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 600x600, components 3
Size
57 kB (57347 bytes)
Hash
a3c19e8e336a73bc6ccf10b5750903e7
cafc5470a580f4a01b02d991187079efbf888987
9e76043e1541f197c4af1a9dd15ed9e1a594f7823bfc01b9b639fa7d67e272d6

HTTP Headers

GET /xdata/images/city/600x600/740935.jpg?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Mon, 23 Jun 2025 16:27:47 GMT
content-language: 57347
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "68f1a2cb27ba71e46bd94e0d537615275224763d"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: Wiv5aMGJy1XqqU4eVHcPtYX_cUQLUQAMGPEfODLprqjaggB8ym2Tgw==
age: 2112078
X-Firefox-Spdy: h2

GET r-xx.bstatic.com/xdata/images/hotel/263x210/595550925.jpeg?k=c0db68290ad93f4dea18b95395397a874a8801159fb4d6308bd6164ebcd28a11&o=

3.167.2.62

200 OK

11 kB

URL GET
r-xx.bstatic.com/xdata/images/hotel/263x210/595550925.jpeg?k=c0db68290ad93f4dea18b95395397a874a8801159fb4d6308bd6164ebcd28a11&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3
Size
11 kB (11333 bytes)
Hash
8d4df8b5771a6ba98340b11517771437
d457db7e314b258f4c7776b04f27047ceac7aecb
cfe03fd094e4951ffa38b4ae9673fde2540107c5e9e9809e94522de4106b0a51

HTTP Headers

GET /xdata/images/hotel/263x210/595550925.jpeg?k=c0db68290ad93f4dea18b95395397a874a8801159fb4d6308bd6164ebcd28a11&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Sat, 21 Jun 2025 07:27:35 GMT
content-language: 11333
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "72eaf6729fae33fd70b28d56e6e93a32dd6e12af"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: zH-WV_YjtxQn5i4xIelgAzFtXsxmhc2LQbI7fh9fLXmvj2ty5EOJhg==
age: 2317294
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/579099936.webp?k=e04cc7f7fe864ce09b7d7d978dbb7db3e558038a2151eb7c4c11e895bafbd8c0&o=

3.167.2.62

0 B

URL GET
cf.bstatic.com/xdata/images/hotel/square600/579099936.webp?k=e04cc7f7fe864ce09b7d7d978dbb7db3e558038a2151eb7c4c11e895bafbd8c0&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /xdata/images/hotel/square600/579099936.webp?k=e04cc7f7fe864ce09b7d7d978dbb7db3e558038a2151eb7c4c11e895bafbd8c0&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

GET r-xx.bstatic.com/xdata/images/xphoto/263x210/45450090.jpeg?k=52f6b8190edb5a9c91528f8e0f875752ce55a6beb35dc62873601e57944990e4&o=

3.167.2.62

200 OK

12 kB

URL GET
r-xx.bstatic.com/xdata/images/xphoto/263x210/45450090.jpeg?k=52f6b8190edb5a9c91528f8e0f875752ce55a6beb35dc62873601e57944990e4&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3
Size
12 kB (11795 bytes)
Hash
2a361664cb305310a4358bcfd299217b
319d5dbe2e9a02af52292e2c94467fbd4bd954ef
772bb85697eb54a5a021864874190a475188ce98c1a8840bb1fe72515dbbcdd8

HTTP Headers

GET /xdata/images/xphoto/263x210/45450090.jpeg?k=52f6b8190edb5a9c91528f8e0f875752ce55a6beb35dc62873601e57944990e4&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Sun, 13 Jul 2025 11:41:46 GMT
content-language: 11795
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "78c06c289b99410d719289fe5882090079338c7f"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: X1bWRFRTMxt173ORFnNtkQ-fNRdwHhfmuB0OuoXfFTFE3MyvhU_dYA==
age: 401243
X-Firefox-Spdy: h2

GET r-xx.bstatic.com/xdata/images/hotel/263x210/595549146.jpeg?k=ac87efa3e3faf75d3d5e24376940d48f3a0c46d73dee59fce17907166502552e&o=

3.167.2.62

200 OK

13 kB

URL GET
r-xx.bstatic.com/xdata/images/hotel/263x210/595549146.jpeg?k=ac87efa3e3faf75d3d5e24376940d48f3a0c46d73dee59fce17907166502552e&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3
Size
13 kB (13266 bytes)
Hash
5d52028e13bd0c671baec3e47dfe2e7c
0ca66380549c1fe3e4db02a63a941c895c3b7190
71e0b2d88e5fb9e0b6f1a167c6188e0d3a62cdc851851f87963b71bdaeb32106

HTTP Headers

GET /xdata/images/hotel/263x210/595549146.jpeg?k=ac87efa3e3faf75d3d5e24376940d48f3a0c46d73dee59fce17907166502552e&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Sun, 22 Jun 2025 07:38:04 GMT
content-language: 13266
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "9f6b609e5bc6ce7cdec73e999f019855d9db879f"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: F6beYzqMZyihLY8MJ7a8Ud5RP6D9pjq6CGng8d3bIpMt5b5q5mf5CA==
age: 2230265
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/css/15e0ade9.f992d890.chunk.css

3.167.2.62

200 OK

10 kB

URL GET
cf.bstatic.com/psb/capla/static/css/15e0ade9.f992d890.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (2480)
Size
10 kB (10319 bytes)
Hash
ff10e05683b33aa1fd0b96d6c25c8ca5
8ed392533324ef3234ee6c99c967ce5177981699
e62151df8a0ca5eeb012bb8f64d52bd731879bb35f0dc2840dffce708052b27c

HTTP Headers

GET /psb/capla/static/css/15e0ade9.f992d890.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Fri, 04 Jul 2025 09:12:42 GMT
last-modified: Tue, 01 Jul 2025 14:11:14 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 8a3bc3823b834abf6fe2786815217da417ee5ba5
x-amz-version-id: JBIUYkyYn2LL_F_VEqeawVif2a19VlMK
server: AmazonS3
etag: W/"ff10e05683b33aa1fd0b96d6c25c8ca5"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: u6LqxZNRaMI8T1LqrMuA3Agy4f2RmSYYgd5c2x8201pYtcsbWJD_Fg==
age: 1187783
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/662d9b70.6fd36e7f.chunk.js

3.167.2.62

200 OK

222 kB

URL GET
cf.bstatic.com/psb/capla/static/js/662d9b70.6fd36e7f.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65455)
Size
222 kB (222102 bytes)
Hash
3609e5304b69530a83925f01f4fd7296
68a8cc7fe73a9107c4b2b36f0c7010366430a329
ab380d14dbb837c1796ba470fe988808feef1243d3e9e6056a9e157f5fa4952f

HTTP Headers

GET /psb/capla/static/js/662d9b70.6fd36e7f.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Tue, 01 Jul 2025 06:18:13 GMT
last-modified: Thu, 26 Jun 2025 12:34:33 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 3d084c2f53f1d8e9deb7ecadb5d0b5adea6e9e28
x-amz-version-id: IzP6FEFbO6MG9QizsLLWxjtbf9mqrO70
server: AmazonS3
etag: W/"3609e5304b69530a83925f01f4fd7296"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: m9_swmUXedt908EzWcDbX2ukT-RhceFI2oTKExRy7yZ5xxdVuCSqWg==
age: 1457452
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/97a643cd.ff412676.chunk.js

3.167.2.62

200 OK

23 kB

URL GET
cf.bstatic.com/psb/capla/static/js/97a643cd.ff412676.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (22642)
Size
23 kB (22835 bytes)
Hash
b1e07e78d3157d3b0af975612a735789
abe0198cd25f2745e80f5c2a37846d0f606eb266
cd30ba3307603835ea81a4646984e52696e436396bdfeae2757cfaceff598f15

HTTP Headers

GET /psb/capla/static/js/97a643cd.ff412676.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Thu, 17 Jul 2025 14:12:04 GMT
last-modified: Wed, 16 Jul 2025 16:00:57 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 75f2989e4c756494607504d519d0d265808c5e29
x-amz-version-id: QTTbZmV2knl85Q1mHCWjsP3VmG5O72U1
server: AmazonS3
etag: W/"b1e07e78d3157d3b0af975612a735789"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: GqjrLKmyLXUSRZX62Tgv04kNrHvoMGdgSWTkAqvj3o-_I4TVszzyNg==
age: 46621
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/36086793.6e3c05cb.chunk.js

3.167.2.62

200 OK

6.9 kB

URL GET
cf.bstatic.com/psb/capla/static/js/36086793.6e3c05cb.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (6770)
Size
6.9 kB (6882 bytes)
Hash
a9a132d0e34051415a09b4a68639fe38
4f48704e3bf45ef23a13edb5f002344f2fe38580
95329c849cf669932d47f4a6b87d06eab9699a57f10ff8b518924f1cdb9ac07a

HTTP Headers

GET /psb/capla/static/js/36086793.6e3c05cb.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Tue, 17 Jun 2025 12:07:42 GMT
last-modified: Thu, 12 Jun 2025 10:55:37 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 4d5e03906766fc53ea9465258fbfb6daea24fce4
x-amz-version-id: GosQ3Sclw0of36G9mQx27zdoFC0hFVVN
server: AmazonS3
etag: W/"a9a132d0e34051415a09b4a68639fe38"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: SHlhPBqjrylMm8dypto2L48G_Kkh1UwiUA75PPUYTk0L4C7KzwHXuw==
age: 2646085
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET geolocation.onetrust.com/cookieconsentpub/v1/geo/location

172.64.155.119

200 OK

65 B

URL GET
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP
172.64.155.119:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerGoogle Trust Services
Subjectgeolocation.onetrust.com
Fingerprint80:BD:64:3E:C3:EF:BD:EF:8C:AB:19:29:2F:AD:68:64:DE:E6:DE:CC
ValidityWed, 04 Jun 2025 19:58:12 GMT - Tue, 02 Sep 2025 20:58:11 GMT

File type
JSON text data
Size
65 B (65 bytes)
Hash
8d896eded71ee5fc863cf1ec1485da75
b36c99cd02aa88e94a55b028381d9c5cb61cbbef
3dddf5b1f3c0e76d359e7fe585b61f721980981a612e17d7ebfedfc3e6fc3b3d

HTTP Headers

GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 18 Jul 2025 03:09:09 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 960ec7533bd55685-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

GET r-xx.bstatic.com/xdata/images/xphoto/263x210/45450090.jpeg?k=52f6b8190edb5a9c91528f8e0f875752ce55a6beb35dc62873601e57944990e4&o=

3.167.2.62

0 B

URL GET
r-xx.bstatic.com/xdata/images/xphoto/263x210/45450090.jpeg?k=52f6b8190edb5a9c91528f8e0f875752ce55a6beb35dc62873601e57944990e4&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /xdata/images/xphoto/263x210/45450090.jpeg?k=52f6b8190edb5a9c91528f8e0f875752ce55a6beb35dc62873601e57944990e4&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

GET q-xx.bstatic.com/xdata/images/city/170x136/644293.jpg?k=24c08396bd44343c9dcc78f0df41e114bf7e6aeda3d339101c37e7ba3aa707db&o=

3.167.2.62

200 OK

5.4 kB

URL GET
q-xx.bstatic.com/xdata/images/city/170x136/644293.jpg?k=24c08396bd44343c9dcc78f0df41e114bf7e6aeda3d339101c37e7ba3aa707db&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3
Size
5.4 kB (5421 bytes)
Hash
2500c3ceb70ede8cd27aa8104b6ba08d
171e77bfa910c602acd969ad5a2d6240764a01e2
85d4039adc55e4225f4f70866622be1d30a8978738539db37085264adff1c3d2

HTTP Headers

GET /xdata/images/city/170x136/644293.jpg?k=24c08396bd44343c9dcc78f0df41e114bf7e6aeda3d339101c37e7ba3aa707db&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
content-length: 5421
server: nginx
date: Tue, 01 Jul 2025 14:34:43 GMT
content-language: 5421
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "0cc34fa50815c534b0e6a4a3db51d7118e56da40"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: HOD-8rnaKUKdH5-AVsdYwpNwZLsNjjbHkMHAd4mpGumrZ8zaTq5f4Q==
age: 1427667
X-Firefox-Spdy: h2

POST play.google.com/log?format=json&hasfast=true&authuser=0

142.250.74.142

200 OK

131 B

URL POST
play.google.com/log?format=json&hasfast=true&authuser=0
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://accounts.google.com/gsi/iframe/select?client_id=901905703382-m88jn1h9ll89odkt6t5muc6h7ep83rlh.apps.googleusercontent.com&auto_select=false&ux_mode=popup&ui_mode=card&context=signin&nonce=6615974505406946&as=2N5lVsStsvHkI26Qfu6v5VtZB_SK-Tl393C9uo-SBS4&is_itp=true&channel_id=a111a2893d72e0dc740011fa52eba806f3160f286a0144ca5f44bcff00a666d5&origin=https%3A%2F%2Fwww.booking.com&oauth2_auth_url=https%3A%2F%2Faccounts.google.com%2Fo%2Foauth2%2Fv2%2Fauth
Certificate
IssuerGoogle Trust Services
Subject*.google.com
FingerprintB9:AB:CF:25:07:76:A5:52:8A:C6:4E:00:9A:A3:2B:D3:B6:32:A6:32
ValidityMon, 23 Jun 2025 08:40:16 GMT - Mon, 15 Sep 2025 08:40:15 GMT

File type
JSON text data
Size
131 B (131 bytes)
Hash
ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358

HTTP Headers

POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-AuthUser: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 431
Origin: https://accounts.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cross-origin-opener-policy-report-only: same-origin; report-to=coop_reporting
report-to: {"group":"clearcut-frontend-http-prod-hiqos","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/httpsserver2/clearcut-frontend-http-prod-hiqos"}]}
content-security-policy-report-only: script-src 'none';form-action 'none';frame-src 'none'; report-uri https://csp.withgoogle.com/csp/httpsserver2/clearcut-frontend-http-prod-hiqos
access-control-allow-origin: https://accounts.google.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Fri, 18 Jul 2025 03:09:22 GMT
server: Playlog
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/a74f71eb.23c05c44.chunk.js

3.167.2.62

200 OK

39 kB

URL GET
cf.bstatic.com/psb/capla/static/js/a74f71eb.23c05c44.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (38653)
Size
39 kB (38765 bytes)
Hash
2bbf87f48917c5b1995b5961358dc7f8
cc16a48bfb2ba85c2ee5513014a7fb66c1cd55bd
ce56375281af9315c55470b94b78135b7948f1efb2834a1b06b0d96044f732ab

HTTP Headers

GET /psb/capla/static/js/a74f71eb.23c05c44.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Thu, 17 Jul 2025 14:13:06 GMT
last-modified: Thu, 17 Jul 2025 13:37:57 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: e829eaea6cb5b2d54f4c2f4114f48aed7ed0efe0
x-amz-version-id: zW.pGGqd.hBPxLTs5i.dToJyiC0DJ2nb
server: AmazonS3
etag: W/"2bbf87f48917c5b1995b5961358dc7f8"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: aVkf8aexi5RGEK7p-y3DBPsh2r-Ynih5XnzGA2YnqCfJO_ggMbTUKw==
age: 46559
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/node_modules_bookingcom_bui-react_hooks_useId_js-_9b2d1.c93e513b.js

3.167.2.62

200 OK

576 B

URL GET
cf.bstatic.com/psb/capla/static/js/node_modules_bookingcom_bui-react_hooks_useId_js-_9b2d1.c93e513b.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (423)
Size
576 B (576 bytes)
Hash
071a1f38ae1e69a7772548cad0c797ec
d924f7044822f79355a19279e60e86012c7e9e00
cd08224f81b3d4cafbc5385cd3bea596591921849caa207b581342eb374c6ce6

HTTP Headers

GET /psb/capla/static/js/node_modules_bookingcom_bui-react_hooks_useId_js-_9b2d1.c93e513b.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
content-length: 576
date: Wed, 16 Jul 2025 08:55:18 GMT
last-modified: Tue, 15 Jul 2025 07:40:21 GMT
etag: "071a1f38ae1e69a7772548cad0c797ec"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: dc007423c1c3d334ee9579a86344a07d02da168b
x-amz-version-id: ULmPGhTgfcX8slR2ayFXRu3j0js6O52_
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: lWgCaaoU278KXBVPJVLVMRAAjUuyVf_CuVYlxQHNln_mV3EypXnC3A==
age: 152029
timing-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2

GET q-xx.bstatic.com/xdata/images/hotel/263x210/595551127.jpeg?k=3ce17a8b06333670edd53b58e47ab30acebb737f3bd21ebc7ea2ea849be7dc3e&o=

3.167.2.62

200 OK

17 kB

URL GET
q-xx.bstatic.com/xdata/images/hotel/263x210/595551127.jpeg?k=3ce17a8b06333670edd53b58e47ab30acebb737f3bd21ebc7ea2ea849be7dc3e&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3
Size
17 kB (17240 bytes)
Hash
8d6b0af569a7e1d7dd96d44919011d0b
85b44007aa25638fdadb0e046db99b60ce5bfddd
04baf3f66b0b787f48b992028d3735bc0bcf83d2e011b3b29fdd3e56df31ab4c

HTTP Headers

GET /xdata/images/hotel/263x210/595551127.jpeg?k=3ce17a8b06333670edd53b58e47ab30acebb737f3bd21ebc7ea2ea849be7dc3e&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Fri, 04 Jul 2025 13:16:55 GMT
content-language: 17240
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "2494a3c8b573abad47bf51115ac0a1c68aebdbb7"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: _mS0o6Y3g1nF2rnfqdwrUUspeEhxnYfbjkX7ieaKPT4GBJTiGGkrpg==
age: 1173134
X-Firefox-Spdy: h2

GET q-xx.bstatic.com/xdata/images/city/170x136/940208.jpg?k=2c5fdb9689e4e740419f8e4d03d89c64728655c4a85a0e61a35b0c5727825951&o=

3.167.2.62

200 OK

4.8 kB

URL GET
q-xx.bstatic.com/xdata/images/city/170x136/940208.jpg?k=2c5fdb9689e4e740419f8e4d03d89c64728655c4a85a0e61a35b0c5727825951&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3
Size
4.8 kB (4844 bytes)
Hash
0bf8a2517359afe5f5c94fa8f5e39525
6dd49439c473f2a0eeeee127928e2bd820ce9cfb
ea59e9087a0b5a3ce58278979df49f3d23ea3748fb74a6b379e11ca10f5b2a6d

HTTP Headers

GET /xdata/images/city/170x136/940208.jpg?k=2c5fdb9689e4e740419f8e4d03d89c64728655c4a85a0e61a35b0c5727825951&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
content-length: 4844
server: nginx
date: Mon, 14 Jul 2025 11:16:45 GMT
content-language: 4844
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "18cf8f6a71648e49e551f439f9b89a44e7ad4f9d"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: CFgBSUht__lvPjV-V18EAklbEw6egzfpC3jAKADSR7SVgg1RV23wTA==
age: 316345
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/201854883.webp?k=9dce3bffacd4877f0b7401e98f02edeecf74ceaa910e89b09a9b924fd1e23e00&o=

3.167.2.62

200 OK

56 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/201854883.webp?k=9dce3bffacd4877f0b7401e98f02edeecf74ceaa910e89b09a9b924fd1e23e00&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
56 kB (55632 bytes)
Hash
2d37d447e00ed51e2dd48914bfc40a23
a861fe62631efd3580b5553974e9bff5a75d3788
b8ca13d2d8be9b92fe9f7d1514d444a14b2f304c230ac78007515835ede5404c

HTTP Headers

GET /xdata/images/hotel/square600/201854883.webp?k=9dce3bffacd4877f0b7401e98f02edeecf74ceaa910e89b09a9b924fd1e23e00&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Tue, 08 Jul 2025 11:03:40 GMT
content-language: 55632
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "8b0505ee8e70155aaa6f92717b3b1fb58d7d40c9"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: Ruo55vAyAbTVvnABlYrINz3dpB9nLyoah8lDchWKAI7cbSebtAYKuA==
age: 835530
X-Firefox-Spdy: h2

GET booking.com/cookiebanner.html

54.240.174.43

301 Moved Permanently

2.4 kB

URL GET
booking.com/cookiebanner.html
IP
54.240.174.43:443
ASN
#16509 AMAZON-02

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.booking.com
Fingerprint40:C8:C7:99:E8:DF:B4:B7:80:45:6C:57:15:2A:09:28:16:A7:2B:BB
ValidityFri, 07 Mar 2025 00:00:00 GMT - Sat, 17 Jan 2026 23:59:59 GMT

File type

Size
2.4 kB (2415 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cookiebanner.html HTTP/1.1
Host: booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbKE7bjkbYWzkd%2BwJK4Aig3FuCpVeMqbjSoEQaplBM6HbQQRFpHYwd7Gl0rnNKxgd14XO3m%2FZf%2Fyy8Is%2Fd%2FpH3ZtaFgeYuYqHi21fbeuZBRhfwgLsM3uPVxJfE4WWK76WWK08mWVZIluqJxPYsNqq8BBd4MPZ%2FB6FfctGCTB%2Br574%3D; pcm_personalization_disabled=0; bkng_sso_auth=CAIQ0+WGHxpmrqlfCI/7cj7WenmOuL5QxSn4u0pk06cV4xlrrrhmJKAb1FesYuKumLV4pSqW60W2NnCfEB+Pr3GDZ3i/aG465ACIGtpwXlBI9XDqnlhOkhTT7xUttessFF0wXrOKUtvFXd/bRD8o; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3De1046c70-f5fb-4ace-8c3b-1dcf67343057%26consentedAt%3D2025-07-18T03%3A09%3A02.576Z%26expiresAt%3D2026-01-14T03%3A09%3A02.576Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; cors_js=1; BJS=-
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
location: https://www.booking.com/cookiebanner.html
server: nginx
date: Fri, 18 Jul 2025 03:09:11 GMT
nel: {"max_age":604800,"failure_fraction":0.1,"report_to":"default"}
report-to: {"group":"default","endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":604800}
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=35c9162b209c0261&e=UmFuZG9tSVYkc2RlIyh9YdPFJGDFjZSqK4Z-4dNTMVvIgxiJwJMlnfdk8U50eQrjjQ7AygmkAlk
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: A67RisXYZN4hHM2LZIvXKfJgK9SYPFrGBHxzeFfLEXgZQZ7D-VQQ4g==
server-timing: cdn-upstream-layer;desc="REC",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=1,cdn-upstream-fbl;dur=27,cdn-cache-miss,cdn-pop;desc="OSL50-P1",cdn-rid;desc="A67RisXYZN4hHM2LZIvXKfJgK9SYPFrGBHxzeFfLEXgZQZ7D-VQQ4g==",cdn-downstream-fbl;dur=64
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/css/f982442d.ad9ce77f.chunk.css

3.167.2.62

200 OK

3.3 kB

URL GET
cf.bstatic.com/psb/capla/static/css/f982442d.ad9ce77f.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (653)
Size
3.3 kB (3343 bytes)
Hash
c7ad3d6c94133491575d6a91355733cd
f71be297f6c6a0ff64a1a89909a0388afce6e2c1
29d1284646b31d7eef2863660b5a7bf96aaee5165881315dbf2f5d7b8844d613

HTTP Headers

GET /psb/capla/static/css/f982442d.ad9ce77f.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Mon, 14 Jul 2025 13:27:36 GMT
last-modified: Mon, 14 Jul 2025 08:43:18 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 105c281e5639f5ad04cebbaacef2e8b0ba285a26
x-amz-version-id: kQXeKr3HY37UREQoIUEGhbhBZDFH8xDO
server: AmazonS3
etag: W/"c7ad3d6c94133491575d6a91355733cd"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: sLb27-tynKPKNp6HiPUhtX3Q25UaKqu0trclg_V5c6lC0grDMHRo-g==
age: 308489
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

POST www.booking.com/c360/v1/track

54.240.174.43

200 OK

53 B

URL POST
www.booking.com/c360/v1/track
IP
54.240.174.43:443
ASN
#16509 AMAZON-02

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.booking.com
Fingerprint40:C8:C7:99:E8:DF:B4:B7:80:45:6C:57:15:2A:09:28:16:A7:2B:BB
ValidityFri, 07 Mar 2025 00:00:00 GMT - Sat, 17 Jan 2026 23:59:59 GMT

File type
JSON text data
Size
53 B (53 bytes)
Hash
4fe06fbe7f18ee1d9bfabc997ac2a2e2
a55d5c03a47bc163f348b504b9992c1d3a80d87c
4c6aa69c976d0ba6b65ca32730c5055a797edc0d52c10543ec0065ddef730089

HTTP Headers

POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Booking-Pageview-Id: c9c216276d7902f0
X-Booking-AID: 818288
X-Booking-Session-Id: 158014cf79b6a1df56562bf0568880d0
X-Booking-SiteType-Id: 1
X-Partner-Channel-Id: 2
X-Booking-Label: affnetcj-12365056_pub-5108952_site-101463210_pname-Go%20Travel%20Un%20Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74
X-Booking-CSRF: DvN5aAAAAAA=iSMssxyRGf92-H2hEfsgRf2UeyNuUXTaYAksbHlvH9RRN7qeei4-6dock6Sbnlm1JnJ6FZwe_L7YsAxhTlDqGz5w_UkMeIUM-Kwkmj8EVd34Aipoh7ucGi1mYSkEV2d_0XVtGxbv-YcCJalrO3PgNwiHdGW2jzJn7Sw0LJrGB7ubSOXRs85g4NNY5ENNizJJnNgNte65Gcl4wS57
X-Booking-Language-Code: en-us
X-Booking-Client-Info: OABBaJePefeeFbMKXTMHTcaWQOccCcCcCC|2,NAFQOPeYWbKdPSKYaFBddQSBLdaRO
X-Booking-Info: 2301430,2302580,2307640,2307650,2308610,2311730,2317630,2318530,2320050,2322630,2322760,OABBaJePefeeFbMKXTMHTcaWQOccCcCcCC|2,NAFQOPeYWbKdPSKYaFBddQSBLdaRO,dDfPWPHDDZSOBJbKYfNIfPTDWe|1,2307650|1,2320050|1,2301430|1,2322630|1,2292000|3,2307640|1,dLYHMRFeRLeMXFPNZFZeaPQHHaNVTSEFUfbIUFZZZMXC|1,dLYHMRFeRLeMXFPNZFZeaPQHHaNVTSEFUfbIUFZZZMXC|3,GaYHKLOWWKRFefVEdaWCaceNBOSCJWMEO|1,HWAJLGbbeQHUYbcJTGZZOeUPEHVKYXdABdUIDPBFO|3,HWAJLGbbeQHUYbcJTGZZOeUPEHVKYXdABdUIDPBFO|4,YTTHbXeeVJZMHGYTLRQJRfRXe|1,YTTHbXeeVJZMHGYTLRQJRfRXe|2,NAFLeOeJcQEcVOdWNeYZdfdbJae|1,cCHObKdBdUHINPSXeHDALOLOLMO|1,cCHObKdBdUHINPSXeHDALOLOLMO|5,cCeIVOMPWAEeIcFARSYSbZDQSXbaTaTaET|3,cCeIVOOLfOECVVDFRURURHe|1,cCeIVOOLfOECVVDFRURURHe|2,cCeIVOAPEbSccEZVACdKNKNKWe|1,YTBbNXGJaWePDSSFePXIGaWXCFafdcUYNdHXT|1,YTBbNXGJaWePDSSFePXIGaWXCFafdcUYNdHXT|2,YTBbNXGJaWePDSSFePXIGaWXCFafdcUYNdHXT|6,GaWXCFafdRERJBcCcCcCFQfGZQNPcUeccLdYPZEAHeVGRCeAANIO|1,GaWXCFafdRERJBcCcCcCFQfGZQNPcUeccLdYPZEAHeVGRCeAANIO|3,cCcCcCWKcOMHINPSXeHDAcUYNTTNAVaRKZVVLT|1,cCcCcCWKcOMHINPSXeHDAcUYNTTNAVaRKZVVLT|3,cCcCcCWKcOMHINPSXeHDAcUYNTTNAVaRKZVVLT|7,EIZEHfdSDSZZDDUZGSRLGKVIFAdKC|1,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|1,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|1,cCHObdRdJJVdfUSCEcdNHMddKNKNKWe|1,cCHObdRdJJVdfUJGFDSeBcZFLMFRURURHe|1,cCHObdRdJJVdfUJGFDSeBcZFLMFRURURHe|3,cCeIVOTeJUNSMTfIMLebaTaTaET|1,cCeIVOTeJUNSMTaSdNdKNKNKWe|1,cCHOGAQHSMSXUDeLcffIVXBPKAFRURURHe|1,cCHOGAQHSMSXUDeLcffIVXBPKAFRURURHe|5,cCeIVOdJEVOAeZTbQNPcZRALOLOLMO|1,cCeIVOIYcYCcTUDQZaTaTaET|1,ZXZAVacDNBMPLZQNPcUecUYCMDORMTfLT|1,ZXZAVacDNBMPLZQNPcUecUYCMDORMTfLT|3,fGcBeNZbBcRcAPQHVLWIXOERJPXafJCfSFNTTNdKNKNKWe|1,fGcBeNZbBcRcAPQHVLWIXOERJPXafJCfSFNTTNdKNKNKWe|3,OABBaJePebeKSERLPWYNZRIIGLae|1,cCHOGAQHXSHDHFKWLIEFccSTbaTaTaET|1,cCHOGAQHXSHDHFKWLIEFccSTbaTaTaET|4,NAFLeOeJcQEcVOdWNeYZdfdbJae|2,NAFLeOeJcQEcVOdWNeYZdfdbJae|4,cCHObKdPHMfFdHMEKBOcaGPaAHFHDQIC|9,cCeIVOOLfOECVVDFRURURHe|3,cCcCcCWKcOMHINPSXeHDAcUYNTTNAVaRKZVVLT|2,GaWXCFafdRERJBcCcCcCFQfGZQNPcUeccLdYPZEAHeVGRCeAANIO|2,EIZEHfdSDSZZDDUZGSRLGKVIFAdKC|2,OABBaJePefeeFbMKXTMHTcaWQOccCcCcCC|3,OABBaJePefeeFbMKXTMHTcaWQOccCcCcCC|4,OABBaJePefeeFbMKXTMHTcaWQOccCcCcCC|9,OABBaJTeNJPRaCPFCUJVdfUWBZccCcCcCC|1,OABBaJTeNJPRaCPFCUJVdfUWBZccCcCcCC|2,OABBaJTeNJPRaCPFCUJVdfUWBZccCcCcCC|7,OABBaJePebeKSERLPWYNZRIIGLae|2,cCHOGAQHXSHDHFKWLIEFccSTbaTaTaET|2,cCHOGAQHXSHDHFKWLIEFccSTbaTaTaET|6
X-Requested-With: XMLHttpRequest
Content-Length: 1589
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbbmD9q%2B5pe3Wdm0%2ByPGMsC1KujF5qCxhD8YztvAVkXTtTK0o2BJL7F%2Bm3G%2B0LUoeb7oHjlToVOeSl2nusn8juTZHyyu6%2FR9iuocOLfIsseh%2FgKV8BAd3zXuypAMgTO3s9O7%2BJaalVmnaHvhjhgEMcSuloTu1oNh%2FT; pcm_personalization_disabled=0; bkng_sso_auth=CAIQ0+WGHxpmrqlfCI/7cj7WenmOuL5QxSn4u0pk06cV4xlrrrhmJKAb1FesYuKumLV4pSqW60W2NnCfEB+Pr3GDZ3i/aG465ACIGtpwXlBI9XDqnlhOkhTT7xUttessFF0wXrOKUtvFXd/bRD8o; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3De1046c70-f5fb-4ace-8c3b-1dcf67343057%26consentedAt%3D2025-07-18T03%3A09%3A02.576Z%26expiresAt%3D2026-01-14T03%3A09%3A02.576Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; cors_js=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 56
server: nginx
date: Fri, 18 Jul 2025 03:09:09 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
content-security-policy: default-src 'self'; frame-ancestors https://*.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBK6LEtX6%2Blc%2BQVpyDWJ7uFtUgre%2BysOI3rQF8cW2yxPah85gBwynVj9lBMeQ9FzSenneQJD1qOVPKadX%2FrkkB%2FwobHSYNPciJy0rWysRaMlgXI%2BcqfHQ1O%2Ff8qOuEXIAiiHroEhrQJbLhVSn0Sr5oniDkRlGeE0Ex8%3D; domain=.booking.com; path=/; expires=Wed, 17-Jul-2030 03:09:09 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rwaJo9wpjvY_8TemszjsIqfyG20ih2EBWyU2dDNrAe9hbNZAMHcdeg==
server-timing: cdn-upstream-layer;desc="REC",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=1,cdn-upstream-fbl;dur=82,cdn-cache-miss,cdn-pop;desc="OSL50-P1",cdn-rid;desc="rwaJo9wpjvY_8TemszjsIqfyG20ih2EBWyU2dDNrAe9hbNZAMHcdeg==",cdn-downstream-fbl;dur=119
X-Firefox-Spdy: h2

GET r-xx.bstatic.com/xdata/images/hotel/263x210/595550000.jpeg?k=71eeb3e0996d7f734e57a6fa426c718749a36df768ca5d2fb1dc65fcd7483c1d&o=

3.167.2.62

200 OK

13 kB

URL GET
r-xx.bstatic.com/xdata/images/hotel/263x210/595550000.jpeg?k=71eeb3e0996d7f734e57a6fa426c718749a36df768ca5d2fb1dc65fcd7483c1d&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3
Size
13 kB (13260 bytes)
Hash
294cce8a5ba0bae240466a3d138ac847
716e09fa47289e620cda045fc1776026d4962226
85a961143f14c18c3952e94fa04d58f708941b613d20c07ace75970a482ee627

HTTP Headers

GET /xdata/images/hotel/263x210/595550000.jpeg?k=71eeb3e0996d7f734e57a6fa426c718749a36df768ca5d2fb1dc65fcd7483c1d&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Mon, 30 Jun 2025 17:06:18 GMT
content-language: 13260
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "ba87e951bf6787239d8058ad5ab25895ae29eda7"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: TodIEaWa06wAYDKvL-wZ7L76CIBw5kXbg4K-BW90HF8gizb5oU0ciw==
age: 1504971
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/154512398.webp?k=aad8b4bfdccafe08f89489bc51e5517e5cedae1b2c393f23ab1e262bbbb52d0b&o=

3.167.2.62

200 OK

75 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/154512398.webp?k=aad8b4bfdccafe08f89489bc51e5517e5cedae1b2c393f23ab1e262bbbb52d0b&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
75 kB (74776 bytes)
Hash
8e5babaefbf54dcadfe66e6a1807084c
240e90fde47abca4bf4070f0b66c4e4f55cb5042
74ccc1927bc3bb0e9f06420d96dc72eb1561aa1065d2a4b578e6846d64b69dfc

HTTP Headers

GET /xdata/images/hotel/square600/154512398.webp?k=aad8b4bfdccafe08f89489bc51e5517e5cedae1b2c393f23ab1e262bbbb52d0b&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Mon, 14 Jul 2025 11:14:28 GMT
content-language: 74776
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "3b9f0eba38c4500c062ed78e14224ee0eeec4f0f"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: JS8jFTj7IDu2rOhaZ57eE-X4gxzZsNLS8aiWBh5U-PJjKf0rxLTq9w==
age: 316482
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/467167582.webp?k=8190946ffdd138b82898fb5381f6bfd638f5897fa1ce24307eb2051338bc66e5&o=

3.167.2.62

200 OK

53 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/467167582.webp?k=8190946ffdd138b82898fb5381f6bfd638f5897fa1ce24307eb2051338bc66e5&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
53 kB (53362 bytes)
Hash
8bfe15f5529789baa643943635ea92f6
9708adef63de0787d7a574937b7fc825eb7ee1e0
812e906630a8a88cac0746ec08c6adfe9bfe8e4771300e3def801f1af6bc1342

HTTP Headers

GET /xdata/images/hotel/square600/467167582.webp?k=8190946ffdd138b82898fb5381f6bfd638f5897fa1ce24307eb2051338bc66e5&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Wed, 18 Jun 2025 08:58:07 GMT
etag: "b394b5da7c02a7484a883425b687034d0cc77048"
content-language: 53362
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: rV5gm1_477TFWiMSgmtCS-dz95ZcOukDu-IzqgD1ME5e1IH0webFXA==
age: 2571063
X-Firefox-Spdy: h2

GET cf.bstatic.com/static/js/sp-on-maps_cloudfront_sd/04f61ab808c709eae82ca98f22b27d6633817fbd.js

3.167.2.62

200 OK

9.8 kB

URL GET
cf.bstatic.com/static/js/sp-on-maps_cloudfront_sd/04f61ab808c709eae82ca98f22b27d6633817fbd.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (9820), with no line terminators
Size
9.8 kB (9820 bytes)
Hash
eca004825f47651c28f2370de5625e78
e40162d02fd7294863a9736c0e5e4c5e9a098e7a
b381e4e0c386679f52ced10d0b74601fd97a1ff9c92e9a84ffe5d95ffe5a988d

HTTP Headers

GET /static/js/sp-on-maps_cloudfront_sd/04f61ab808c709eae82ca98f22b27d6633817fbd.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 28 Apr 2025 10:48:03 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
x-amz-version-id: iZvXnpzEhhQ154LCzJ5XO.3HM7Wi6za4
server: AmazonS3
date: Fri, 18 Jul 2025 00:07:09 GMT
cache-control: public,max-age=604800
etag: W/"eca004825f47651c28f2370de5625e78"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: LWmps7k3eTViLzY9wHrwiQ8a27qa2xNkH4oA6dlg9sl1-vT2LNKV1Q==
age: 10916
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/156985326.webp?k=18d929c8953691ff27bbcabffd3e1874ec113a8d6c68467df830bead5ec4ef0d&o=

3.167.2.62

200 OK

96 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/156985326.webp?k=18d929c8953691ff27bbcabffd3e1874ec113a8d6c68467df830bead5ec4ef0d&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
96 kB (96304 bytes)
Hash
f0f0bb0d739d17a027eb06af7652e5d0
19d04f06638dc023c9374ca7936eb4aa0d3a69dc
67a6ff84f1c8be8776d772c9e71b414e58e23f877a28d3e259faf784a10beb2e

HTTP Headers

GET /xdata/images/hotel/square600/156985326.webp?k=18d929c8953691ff27bbcabffd3e1874ec113a8d6c68467df830bead5ec4ef0d&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Tue, 15 Jul 2025 08:33:46 GMT
content-language: 96304
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "a2d2831b7238f1933cf03d3cdcdd1a528f6c5e6e"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: fCapBq8iFIhwO6XTEtIbcM0FLXywh9eA-XyRnYL8CcS8M98nqHcakw==
age: 239724
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/css/8067d7e4.23138e79.chunk.css

3.167.2.62

200 OK

354 B

URL GET
cf.bstatic.com/psb/capla/static/css/8067d7e4.23138e79.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text
Size
354 B (354 bytes)
Hash
24fad55b89b29af252f483ccee486274
a755d6a03527addbb401d917d0f6aa1826f74efd
ca63df52c6abae26723302b5b27ab0315fd36e1871ac37ee837cab19a5475102

HTTP Headers

GET /psb/capla/static/css/8067d7e4.23138e79.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
content-length: 354
date: Thu, 01 May 2025 10:02:23 GMT
last-modified: Thu, 01 May 2025 09:24:57 GMT
etag: "24fad55b89b29af252f483ccee486274"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 7bad2575a1c34f067c2a74962a306190fcc8a799
x-amz-version-id: h5sgXF0Hx_RkV0.8YB2UGuy492K5zj0A
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: l7VgzskBKcyfiR7qycI-uWRMCegPpGyqZ2OnI861Cop1D4I9TmbRog==
age: 6714402
timing-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2

GET q-xx.bstatic.com/xdata/images/hotel/263x210/595550415.jpeg?k=8967853a074040381dfa25a568e6c780e309b529e0c144995c5bbc9644721eca&o=

3.167.2.62

200 OK

9.2 kB

URL GET
q-xx.bstatic.com/xdata/images/hotel/263x210/595550415.jpeg?k=8967853a074040381dfa25a568e6c780e309b529e0c144995c5bbc9644721eca&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3
Size
9.2 kB (9240 bytes)
Hash
5fe455d9e233ec0980ce95c724c3c547
332d01f53380d1b631bb9eb734aa1581a6ef417b
3e5006687e74f976b18003641c7b05c5fdbafd46faf52a5a1e43ad5497745dd2

HTTP Headers

GET /xdata/images/hotel/263x210/595550415.jpeg?k=8967853a074040381dfa25a568e6c780e309b529e0c144995c5bbc9644721eca&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Tue, 15 Jul 2025 14:21:21 GMT
content-language: 9240
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "eb8ed1d8a49123f3458c2aa2fb6bd66775d1ef04"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: J5U7hY2gL1_SW22shyipEuDe76DVmZFn3STOeO9R6u87oV2a9IiQTA==
age: 218868
X-Firefox-Spdy: h2

POST www.booking.com/sendlayoutevents

54.240.174.43

200 OK

14 B

URL POST
www.booking.com/sendlayoutevents
IP
54.240.174.43:443
ASN
#16509 AMAZON-02

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.booking.com
Fingerprint40:C8:C7:99:E8:DF:B4:B7:80:45:6C:57:15:2A:09:28:16:A7:2B:BB
ValidityFri, 07 Mar 2025 00:00:00 GMT - Sat, 17 Jan 2026 23:59:59 GMT

File type
JSON text data
Size
14 B (14 bytes)
Hash
81a3741954559ea5a2af17ab488aa906
83d235a4128e9828371fad4e5e22d55f168a3d6e
2e7f2cc2c0508d98633eb152c7625085e0cad3a9ca467575ae2b7056e49822dc

HTTP Headers

POST /sendlayoutevents HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Booking-Pageview-Id: c9c216276d7902f0
X-Booking-AID: 818288
X-Booking-Session-Id: 158014cf79b6a1df56562bf0568880d0
X-Booking-SiteType-Id: 1
X-Partner-Channel-Id: 2
X-Booking-Label: affnetcj-12365056_pub-5108952_site-101463210_pname-Go%20Travel%20Un%20Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74
X-Booking-CSRF: DvN5aAAAAAA=iSMssxyRGf92-H2hEfsgRf2UeyNuUXTaYAksbHlvH9RRN7qeei4-6dock6Sbnlm1JnJ6FZwe_L7YsAxhTlDqGz5w_UkMeIUM-Kwkmj8EVd34Aipoh7ucGi1mYSkEV2d_0XVtGxbv-YcCJalrO3PgNwiHdGW2jzJn7Sw0LJrGB7ubSOXRs85g4NNY5ENNizJJnNgNte65Gcl4wS57
X-Booking-Language-Code: en-us
X-Booking-Client-Info: OABBaJePefeeFbMKXTMHTcaWQOccCcCcCC|2,NAFQOPeYWbKdPSKYaFBddQSBLdaRO,cCHObKdPHMfFdHMEKBOcaGPaAHFHDQIC|8,OABBaJePebeKSERLPWYNZRIIGLae|4
X-Booking-Info: 2301430,2302580,2307640,2307650,2308610,2311730,2317630,2318530,2320050,2322630,2322760,dDfPWPHDDZSOBJbKYfNIfPTDWe|1,2307650|1,2320050|1,2301430|1,2322630|1,2292000|3,2307640|1,dLYHMRFeRLeMXFPNZFZeaPQHHaNVTSEFUfbIUFZZZMXC|1,dLYHMRFeRLeMXFPNZFZeaPQHHaNVTSEFUfbIUFZZZMXC|3,GaYHKLOWWKRFefVEdaWCaceNBOSCJWMEO|1,HWAJLGbbeQHUYbcJTGZZOeUPEHVKYXdABdUIDPBFO|3,HWAJLGbbeQHUYbcJTGZZOeUPEHVKYXdABdUIDPBFO|4,YTTHbXeeVJZMHGYTLRQJRfRXe|1,YTTHbXeeVJZMHGYTLRQJRfRXe|2,NAFLeOeJcQEcVOdWNeYZdfdbJae|1,cCHObKdBdUHINPSXeHDALOLOLMO|1,cCHObKdBdUHINPSXeHDALOLOLMO|5,cCeIVOMPWAEeIcFARSYSbZDQSXbaTaTaET|3,cCeIVOOLfOECVVDFRURURHe|1,cCeIVOOLfOECVVDFRURURHe|2,cCeIVOAPEbSccEZVACdKNKNKWe|1,YTBbNXGJaWePDSSFePXIGaWXCFafdcUYNdHXT|1,YTBbNXGJaWePDSSFePXIGaWXCFafdcUYNdHXT|2,YTBbNXGJaWePDSSFePXIGaWXCFafdcUYNdHXT|6,GaWXCFafdRERJBcCcCcCFQfGZQNPcUeccLdYPZEAHeVGRCeAANIO|1,GaWXCFafdRERJBcCcCcCFQfGZQNPcUeccLdYPZEAHeVGRCeAANIO|3,cCcCcCWKcOMHINPSXeHDAcUYNTTNAVaRKZVVLT|1,cCcCcCWKcOMHINPSXeHDAcUYNTTNAVaRKZVVLT|3,cCcCcCWKcOMHINPSXeHDAcUYNTTNAVaRKZVVLT|7,EIZEHfdSDSZZDDUZGSRLGKVIFAdKC|1,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|1,dLYdCeYBFVedKNKNKPMPSXPUEKdDXFZMIbdYeNYT|1,cCHObdRdJJVdfUSCEcdNHMddKNKNKWe|1,cCHObdRdJJVdfUJGFDSeBcZFLMFRURURHe|1,cCHObdRdJJVdfUJGFDSeBcZFLMFRURURHe|3,cCeIVOTeJUNSMTfIMLebaTaTaET|1,cCeIVOTeJUNSMTaSdNdKNKNKWe|1,cCHOGAQHSMSXUDeLcffIVXBPKAFRURURHe|1,cCHOGAQHSMSXUDeLcffIVXBPKAFRURURHe|5,cCeIVOdJEVOAeZTbQNPcZRALOLOLMO|1,cCeIVOIYcYCcTUDQZaTaTaET|1,ZXZAVacDNBMPLZQNPcUecUYCMDORMTfLT|1,ZXZAVacDNBMPLZQNPcUecUYCMDORMTfLT|3,fGcBeNZbBcRcAPQHVLWIXOERJPXafJCfSFNTTNdKNKNKWe|1,fGcBeNZbBcRcAPQHVLWIXOERJPXafJCfSFNTTNdKNKNKWe|3,OABBaJePebeKSERLPWYNZRIIGLae|1,cCHOGAQHXSHDHFKWLIEFccSTbaTaTaET|1,cCHOGAQHXSHDHFKWLIEFccSTbaTaTaET|4,NAFLeOeJcQEcVOdWNeYZdfdbJae|2,NAFLeOeJcQEcVOdWNeYZdfdbJae|4,cCHObKdPHMfFdHMEKBOcaGPaAHFHDQIC|9,cCeIVOOLfOECVVDFRURURHe|3,cCcCcCWKcOMHINPSXeHDAcUYNTTNAVaRKZVVLT|2,GaWXCFafdRERJBcCcCcCFQfGZQNPcUeccLdYPZEAHeVGRCeAANIO|2,EIZEHfdSDSZZDDUZGSRLGKVIFAdKC|2,OABBaJePefeeFbMKXTMHTcaWQOccCcCcCC|3,OABBaJePefeeFbMKXTMHTcaWQOccCcCcCC|4,OABBaJePefeeFbMKXTMHTcaWQOccCcCcCC|9,OABBaJTeNJPRaCPFCUJVdfUWBZccCcCcCC|1,OABBaJTeNJPRaCPFCUJVdfUWBZccCcCcCC|2,OABBaJTeNJPRaCPFCUJVdfUWBZccCcCcCC|7,OABBaJePebeKSERLPWYNZRIIGLae|2,cCHOGAQHXSHDHFKWLIEFccSTbaTaTaET|2,cCHOGAQHXSHDHFKWLIEFccSTbaTaTaET|6,cCeIVOdJEVOAeZTbQNPcZRALOLOLMO|2,OABBaJePefeeFbMKXTMHTcaWQOccCcCcCC|2,NAFQOPeYWbKdPSKYaFBddQSBLdaRO,cCHObKdPHMfFdHMEKBOcaGPaAHFHDQIC|8,OABBaJePebeKSERLPWYNZRIIGLae|4,cCeIVOTeJUNSMTfIMLebaTaTaET|2,cCeIVOTeJUNSMTaSdNdKNKNKWe|2,ZXZAVacDNBMPLZQNPcUecUYCMDORMTfLT|2,fGcBeNZbBcRcAPQHVLWIXOERJPXafJCfSFNTTNdKNKNKWe|2,OAYRKHMdReLDEZRERXSBSLKMBdLOLOLMO|8,OAYRKHMdReLDEZRERXSBSLKMBdLOLOLMO|9
X-Requested-With: XMLHttpRequest
Content-Length: 142
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBJosCsR3hFNf85KfpAeWiDR2QeM7MGnpcHs5sFDxAvka99XqVS9Q2w%2BAIN%2FmAlQ%2BZDLp97av9mEeJQ2CpJ3Kb0a%2BRDgsQ%2FKddgnSzyMEOWuFhZLnmVIQ8FcUl8CqDDlhADmpvl87wO5Tmly1L1hhUmKfy%2FZ9xmpqzo%3D; pcm_personalization_disabled=0; bkng_sso_auth=CAIQ0+WGHxpmrqlfCI/7cj7WenmOuL5QxSn4u0pk06cV4xlrrrhmJKAb1FesYuKumLV4pSqW60W2NnCfEB+Pr3GDZ3i/aG465ACIGtpwXlBI9XDqnlhOkhTT7xUttessFF0wXrOKUtvFXd/bRD8o; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3De1046c70-f5fb-4ace-8c3b-1dcf67343057%26consentedAt%3D2025-07-18T03%3A09%3A02.576Z%26expiresAt%3D2026-01-14T03%3A09%3A02.576Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; cors_js=1; BJS=-; OptanonConsent=isGpcEnabled=0&datestamp=Fri+Jul+18+2025+03%3A09%3A10+GMT%2B0000+(GMT)&version=202501.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=09256104-0f5f-4a6a-ac93-609487ab974a&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D818288%26label%3Daffnetcj-12365056_pub-5108952_site-101463210_pname-Go%2BTravel%2BUn%2BLimited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74%26utm_source%3Daffnetcj%26utm_medium%3Dbannerindex%26utm_campaign%3Dxx%26utm_term%3Dindex-12365056&implicitConsentCountry=GDPR&implicitConsentDate=1752808152406; bkng_sso_ses=e30; bkng_sso_session=e30; OptanonConsent=isGpcEnabled=0&datestamp=Fri+Jul+18+2025+03%3A09%3A10+GMT%2B0000+(GMT)&version=202501.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=09256104-0f5f-4a6a-ac93-609487ab974a&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D818288%26label%3Daffnetcj-12365056_pub-5108952_site-101463210_pname-Go%2BTravel%2BUn%2BLimited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74%26utm_source%3Daffnetcj%26utm_medium%3Dbannerindex%26utm_campaign%3Dxx%26utm_term%3Dindex-12365056&implicitConsentCountry=GDPR&implicitConsentDate=1752808152406; aws-waf-token=67c9cdaa-4624-4917-9c2a-833fc93c9b91:DQoAvRYWGooAAAAA:yLxt2qufr1b9sV3Dn7GgtRMXCscqlLoblwWZFyA8qiJxNjlybJAMigePYi3FwbLXElDLhgkG8M3HF9eYt8aGCWSLTIfxui6lhIM0AqQDm6WFWhxyQelw92xvE3F1fQSjii/480iTFZ6zN+ax7QIVvXTpRKkVLwsaXPkcdlQGQsouAzaqaNxodOUgA7xjOBXP9I+1wd+qTNpAze+v5l8M+ja7VCwWXxRVKN0IewsoPWZJdBcltCDCG/Wtpm3bj/UrF5ZQwYPV8Q==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 18
server: nginx
date: Fri, 18 Jul 2025 03:09:14 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPeevCg4K9A6HcoS%2FF5SMUto1m8gfRa%2Btex3MZjdg99G0gdiiSETEMIhFMbyI0K6dRdva4%2BZme5Q8sMPlqt3ZEPcJJxdMjH49cqxBjJSUkzgwiiWrSi4iLUr0elzZqAtMR1upCTOT%2B0N16ZbyEiwaXLhV2cp4fq%2F%2F5n0%3D; domain=.booking.com; path=/; expires=Wed, 17-Jul-2030 03:09:14 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: o6VBzp9U5Pa2L4VcHcqysDJPgmxmHQRR-_AglJUUigXRv4-8VNnu4g==
server-timing: cdn-upstream-layer;desc="REC",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=1,cdn-upstream-fbl;dur=47,cdn-cache-miss,cdn-pop;desc="OSL50-P1",cdn-rid;desc="o6VBzp9U5Pa2L4VcHcqysDJPgmxmHQRR-_AglJUUigXRv4-8VNnu4g==",cdn-downstream-fbl;dur=84
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/106411975.webp?k=35d701f4788b80f8c2ec0d49530942a1673c326c491e0194d1cba9ea77479057&o=

3.167.2.62

200 OK

50 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/106411975.webp?k=35d701f4788b80f8c2ec0d49530942a1673c326c491e0194d1cba9ea77479057&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
50 kB (49812 bytes)
Hash
0f07ab7b69f9d2199d11e00a86e06f28
82dc04779d9721820a318b4f9143a1a57a6fd8ec
b5434b23609160c808c895a91f10273fcd026e77b1fe0126f4b1c3edfc21ef23

HTTP Headers

GET /xdata/images/hotel/square600/106411975.webp?k=35d701f4788b80f8c2ec0d49530942a1673c326c491e0194d1cba9ea77479057&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Tue, 24 Jun 2025 12:37:32 GMT
etag: "951b4c26b1dc318ac2317c3a96fa527ba3f271f4"
content-language: 49812
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: aw4Hihj4XaFqMTqvSvECBbZJmS2T2B_HkXYovqgQtSrZLZXIl6gm7A==
age: 2039498
X-Firefox-Spdy: h2

OPTIONS accommodations.booking.com/orca/chunk-metadata?chunk=5aeeadf2&mfe=b-index-lp-web-mfe&lang=en-us&namespace=ZWJLAYQA

54.240.174.23

200 OK

0 B

URL OPTIONS
accommodations.booking.com/orca/chunk-metadata?chunk=5aeeadf2&mfe=b-index-lp-web-mfe&lang=en-us&namespace=ZWJLAYQA
IP
54.240.174.23:443
ASN
#16509 AMAZON-02

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.booking.com
Fingerprint40:C8:C7:99:E8:DF:B4:B7:80:45:6C:57:15:2A:09:28:16:A7:2B:BB
ValidityFri, 07 Mar 2025 00:00:00 GMT - Sat, 17 Jan 2026 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /orca/chunk-metadata?chunk=5aeeadf2&mfe=b-index-lp-web-mfe&lang=en-us&namespace=ZWJLAYQA HTTP/1.1
Host: accommodations.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-booking-et-serialized-state
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-length: 0
server: envoy
date: Fri, 18 Jul 2025 03:09:10 GMT
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-methods: HEAD,OPTIONS,GET,POST
access-control-allow-headers: x-booking-et-serialized-state
vary: Origin
access-control-allow-origin: https://www.booking.com
access-control-allow-credentials: true
x-envoy-upstream-service-time: 0
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: riA0iSWqdPv938axj0TXmMWrAl89a2E4ONT4zg2cQHO9ghDhjlAv2A==
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/c3922a16.9138496d.chunk.js

3.167.2.62

200 OK

47 kB

URL GET
cf.bstatic.com/psb/capla/static/js/c3922a16.9138496d.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (46875)
Size
47 kB (46987 bytes)
Hash
30954fcac66ac4f185414bc7026a668c
cb5f2c79f5643d52d43abf163c4c18789bffee16
e461d6df86917d0e8752b2d9c88a5468afb67018803ecfdc5fbfacc157db6d07

HTTP Headers

GET /psb/capla/static/js/c3922a16.9138496d.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Thu, 17 Jul 2025 14:12:04 GMT
last-modified: Thu, 17 Jul 2025 13:37:58 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: e829eaea6cb5b2d54f4c2f4114f48aed7ed0efe0
x-amz-version-id: GontLX5Mhee9F8jvfvsWWw8OCsdhUXTN
server: AmazonS3
etag: W/"30954fcac66ac4f185414bc7026a668c"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 9n8UL7IHwMwjZ0a4TBa_FPccKpikwmtgCgKmqIySFJKNLNCAz1kHrQ==
age: 46621
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/c8637181.f26ca1de.chunk.js

3.167.2.62

200 OK

307 kB

URL GET
cf.bstatic.com/psb/capla/static/js/c8637181.f26ca1de.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65455)
Size
307 kB (306730 bytes)
Hash
765f42ec2280173ddc5658e27f174a72
18cdadc7d99d6c5a20652a4a55f21d7caec0f66f
6db02f36b3ccee83fbd2e85d010dd48cb9a59c2c77cad5cc96db9363dd8b6029

HTTP Headers

GET /psb/capla/static/js/c8637181.f26ca1de.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Thu, 17 Jul 2025 14:12:04 GMT
last-modified: Thu, 17 Jul 2025 13:37:58 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: e829eaea6cb5b2d54f4c2f4114f48aed7ed0efe0
x-amz-version-id: QIILs_k2DdN.ey0JCSLVrt8XrpkQPInS
server: AmazonS3
etag: W/"765f42ec2280173ddc5658e27f174a72"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: tBOmkN53XGC8vG1i2xFs0QDsYEcEVGOxYNaIeY91LepPTO0E5FE5Jw==
age: 46621
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/ce4afa91.badfcb25.chunk.js

3.167.2.62

200 OK

56 kB

URL GET
cf.bstatic.com/psb/capla/static/js/ce4afa91.badfcb25.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (55674)
Size
56 kB (55867 bytes)
Hash
44bcddb30b1814833d07f0547eb91056
11c23133e66115963477cdf53c32a2e9fa7b9ad0
5b9f72af8d39ed0dfed41116aa3a5708b37c941390765b40605408b61ed477cf

HTTP Headers

GET /psb/capla/static/js/ce4afa91.badfcb25.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Thu, 17 Jul 2025 14:12:04 GMT
last-modified: Thu, 17 Jul 2025 13:37:58 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: e829eaea6cb5b2d54f4c2f4114f48aed7ed0efe0
x-amz-version-id: IP6MvZIWD_A__VAtV3zENkNOzeLvwlw.
server: AmazonS3
etag: W/"44bcddb30b1814833d07f0547eb91056"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: _VzY9dcit_s15r9ix8SGDXD6NDnqfAZ3sztio4q2PaPTYrJZrtzhlw==
age: 46621
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/static/img/nobg_all_blue_iq/b700d9e3067c1186a3364012df4fe1c48ae6da44.png

3.167.2.62

200 OK

73 B

URL GET
cf.bstatic.com/static/img/nobg_all_blue_iq/b700d9e3067c1186a3364012df4fe1c48ae6da44.png
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
PNG image data, 1 x 100, 8-bit/color RGB, non-interlaced
Size
73 B (73 bytes)
Hash
ff823944bc0bb9e4bf87f0ad14f687d1
4b68ba281b9ab171611569bf78971df6970efbc1
6153929734ec12ec07072f327c1112301828497e4dd356ca261461b0b7ba9621

HTTP Headers

GET /static/img/nobg_all_blue_iq/b700d9e3067c1186a3364012df4fe1c48ae6da44.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 73
last-modified: Mon, 14 Apr 2025 14:49:42 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: mb40oLEqjZ1O34HfrNTi5yAZNAdkyibz
accept-ranges: bytes
server: AmazonS3
date: Mon, 14 Jul 2025 19:18:43 GMT
cache-control: public,max-age=604800
etag: "ff823944bc0bb9e4bf87f0ad14f687d1"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: oNHJAShnBSWMfsWep5AtpwEGesKfMv6bznwwWM075zKcQuYNXiN_yg==
age: 287423
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/218529186.webp?k=497b590292b9828d1e4ad797cfe30a51d40a193bca4a28efe88ee8a9d6809dd3&o=

3.167.2.62

200 OK

71 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/218529186.webp?k=497b590292b9828d1e4ad797cfe30a51d40a193bca4a28efe88ee8a9d6809dd3&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
71 kB (70734 bytes)
Hash
423c1ae5912dc11bb4d9c96743fa1e10
04891540608cd3318a942fb6cac260e22d0d5d8f
d22dbf72f75f4c2e125f30cc648c8e668e04a76571dcd823ca10dff7305e6013

HTTP Headers

GET /xdata/images/hotel/square600/218529186.webp?k=497b590292b9828d1e4ad797cfe30a51d40a193bca4a28efe88ee8a9d6809dd3&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Tue, 15 Jul 2025 07:48:17 GMT
content-language: 70734
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "a6b4e409506a19e1d7b3c7798e42f6d4050df96f"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: Z8o_5PhDT-aVNv8kCot8y3ptm5z7T_LlcvA3fukh_XoYT8ZsDQGRTg==
age: 242453
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/279333721.webp?k=55905f2b46817050a4838f5dbc34741c7dded636d9642a0c75f37ebd11ccab5c&o=

3.167.2.62

0 B

URL GET
cf.bstatic.com/xdata/images/hotel/square600/279333721.webp?k=55905f2b46817050a4838f5dbc34741c7dded636d9642a0c75f37ebd11ccab5c&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /xdata/images/hotel/square600/279333721.webp?k=55905f2b46817050a4838f5dbc34741c7dded636d9642a0c75f37ebd11ccab5c&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

GET accounts.google.com/gsi/iframe/select?client_id=901905703382-m88jn1h9ll89odkt6t5muc6h7ep83rlh.apps.googleusercontent.com&auto_select=false&ux_mode=popup&ui_mode=card&context=signin&nonce=6615974505406946&as=2N5lVsStsvHkI26Qfu6v5VtZB_SK-Tl393C9uo-SBS4&is_itp=true&channel_id=a111a2893d72e0dc740011fa52eba806f3160f286a0144ca5f44bcff00a666d5&origin=https%3A%2F%2Fwww.booking.com&oauth2_auth_url=https%3A%2F%2Faccounts.google.com%2Fo%2Foauth2%2Fv2%2Fauth

142.250.147.84

200 OK

266 kB

URL GET
accounts.google.com/gsi/iframe/select?client_id=901905703382-m88jn1h9ll89odkt6t5muc6h7ep83rlh.apps.googleusercontent.com&auto_select=false&ux_mode=popup&ui_mode=card&context=signin&nonce=6615974505406946&as=2N5lVsStsvHkI26Qfu6v5VtZB_SK-Tl393C9uo-SBS4&is_itp=true&channel_id=a111a2893d72e0dc740011fa52eba806f3160f286a0144ca5f44bcff00a666d5&origin=https%3A%2F%2Fwww.booking.com&oauth2_auth_url=https%3A%2F%2Faccounts.google.com%2Fo%2Foauth2%2Fv2%2Fauth
IP
142.250.147.84:443
ASN
#15169 GOOGLE

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerGoogle Trust Services
Subject*.google.com
FingerprintB9:AB:CF:25:07:76:A5:52:8A:C6:4E:00:9A:A3:2B:D3:B6:32:A6:32
ValidityMon, 23 Jun 2025 08:40:16 GMT - Mon, 15 Sep 2025 08:40:15 GMT

File type
HTML document, ASCII text, with very long lines (63769)
Size
266 kB (265737 bytes)
Hash
fa0305e760e5f6cc4aa79eb4d01f2720
df13459e6099d15a4aff647b7c1b36e466990778
25125e65a64c166e2151ebebeb198d7d9236c74d1df6cc44b7e640e2aafef70e

HTTP Headers

GET /gsi/iframe/select?client_id=901905703382-m88jn1h9ll89odkt6t5muc6h7ep83rlh.apps.googleusercontent.com&auto_select=false&ux_mode=popup&ui_mode=card&context=signin&nonce=6615974505406946&as=2N5lVsStsvHkI26Qfu6v5VtZB_SK-Tl393C9uo-SBS4&is_itp=true&channel_id=a111a2893d72e0dc740011fa52eba806f3160f286a0144ca5f44bcff00a666d5&origin=https%3A%2F%2Fwww.booking.com&oauth2_auth_url=https%3A%2F%2Faccounts.google.com%2Fo%2Foauth2%2Fv2%2Fauth HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 18 Jul 2025 03:09:11 GMT
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
content-security-policy: script-src 'nonce-OgdZB3WKoei78DLj1iz8Pg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET fonts.gstatic.com/s/googlesans/v58/4UaRrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iq2vgCIhMl07v0x.woff2

142.250.74.35

200 OK

52 kB

URL GET
fonts.gstatic.com/s/googlesans/v58/4UaRrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iq2vgCIhMl07v0x.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://accounts.google.com/gsi/iframe/select?client_id=901905703382-m88jn1h9ll89odkt6t5muc6h7ep83rlh.apps.googleusercontent.com&auto_select=false&ux_mode=popup&ui_mode=card&context=signin&nonce=6615974505406946&as=2N5lVsStsvHkI26Qfu6v5VtZB_SK-Tl393C9uo-SBS4&is_itp=true&channel_id=a111a2893d72e0dc740011fa52eba806f3160f286a0144ca5f44bcff00a666d5&origin=https%3A%2F%2Fwww.booking.com&oauth2_auth_url=https%3A%2F%2Faccounts.google.com%2Fo%2Foauth2%2Fv2%2Fauth
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint9A:5E:6D:44:D8:FB:03:E5:9A:13:6D:FF:53:DA:1C:8C:EA:3A:A7:AA
ValidityMon, 23 Jun 2025 08:41:27 GMT - Mon, 15 Sep 2025 08:41:26 GMT

File type
Web Open Font Format (Version 2), TrueType, length 52212, version 1.0
Size
52 kB (52212 bytes)
Hash
bbf2ef715b5ac4aa6f847006052e38af
047a89aa049c69af81be14668316f11026c5feba
b342a0861eda53a8b25cea5573516c6ba50a9f3b32257bf160c8a425a307896d

HTTP Headers

GET /s/googlesans/v58/4UaRrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iq2vgCIhMl07v0x.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://accounts.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 52212
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Jul 2025 10:21:51 GMT
expires: Fri, 17 Jul 2026 10:21:51 GMT
cache-control: public, max-age=31536000
age: 60441
last-modified: Tue, 23 May 2023 16:35:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/27bbaa9c.91837801.chunk.js

3.167.2.62

200 OK

56 kB

URL GET
cf.bstatic.com/psb/capla/static/js/27bbaa9c.91837801.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (55388)
Size
56 kB (55581 bytes)
Hash
c64f585d10ec28884df5fa34493aa22b
8ad0dd9776cfbd93a0de753fc8f3ee8948f61df1
487d4a124a50136844a7f43291e3992267274554f120c276b274e61ff97ba6ed

HTTP Headers

GET /psb/capla/static/js/27bbaa9c.91837801.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Mon, 07 Jul 2025 17:19:35 GMT
last-modified: Wed, 02 Jul 2025 07:21:41 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: e6fa63b709c411ffe7fc0bb8d5d385f9a8219597
x-amz-version-id: 7DIzmwrnMxwOP0zFVPw9QPIwnBkOYkof
server: AmazonS3
etag: W/"c64f585d10ec28884df5fa34493aa22b"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: GCETWmY-cO-A7BSL1yfdKX3J-HYJc8reRB0ZUP1jRB0hO68aLtoFmg==
age: 899370
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET r-xx.bstatic.com/xdata/images/hotel/263x210/595550178.jpeg?k=1db9bffadd03a0f2a9f0a06ba6c7751b16465f2dd251738f229d7a57dca799ef&o=

3.167.2.62

200 OK

11 kB

URL GET
r-xx.bstatic.com/xdata/images/hotel/263x210/595550178.jpeg?k=1db9bffadd03a0f2a9f0a06ba6c7751b16465f2dd251738f229d7a57dca799ef&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3
Size
11 kB (11117 bytes)
Hash
a521f01bfaf466fb3ee794bbb9bccd07
a307b6657301daa9e6acddcf47dea981c4dfb573
df66d288950b3aa5ff43ddc14ef23c8a78e71eacf72cfd04cfb0a3584c40d95f

HTTP Headers

GET /xdata/images/hotel/263x210/595550178.jpeg?k=1db9bffadd03a0f2a9f0a06ba6c7751b16465f2dd251738f229d7a57dca799ef&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Wed, 02 Jul 2025 12:31:50 GMT
content-language: 11117
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "1c092b4477401def6acd8cf44ce209ee22a4b534"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: l_BToysLy0HDKu1TNWfjcJspy4qmi8c6Bor9XFN1PYFvnWN_O-iL4A==
age: 1348639
X-Firefox-Spdy: h2

POST d8c14d4960ca.edge.sdk.awswaf.com/d8c14d4960ca/a18a4859af9c/telemetry

3.167.2.48

200 OK

952 B

URL POST
d8c14d4960ca.edge.sdk.awswaf.com/d8c14d4960ca/a18a4859af9c/telemetry
IP
3.167.2.48:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerAmazon
Subject*.edge.sdk.awswaf.com
Fingerprint17:81:C6:3C:64:8D:61:C0:C4:F8:67:F7:82:B9:6C:45:E6:6C:DF:9A
ValidityFri, 29 Nov 2024 00:00:00 GMT - Mon, 29 Dec 2025 23:59:59 GMT

File type
JSON text data
Size
952 B (952 bytes)
Hash
95a67e010891eea1ba19b220745402da
489f6881d69fe2948054b30cd109638eaeb61a71
c4449e1d9079feaa36bbce0fb1422d7272c702a88771f9fe9e6adb44a9d60c73

HTTP Headers

POST /d8c14d4960ca/a18a4859af9c/telemetry HTTP/1.1
Host: d8c14d4960ca.edge.sdk.awswaf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 2262
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json
content-length: 952
date: Fri, 18 Jul 2025 03:09:12 GMT
x-amzn-waf-challenge-id: Root=1-6879bad8-7511a852360e260e07bb0a53
access-control-max-age: 86400
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,GET,POST
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
x-cache: Miss from cloudfront
via: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: omWO66P1ZOedmy4XuqxXQ15RtzEzeH8_9PSMiO16awOpfsV52piZ5A==
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/css/0d919837.47dfbed9.chunk.css

3.167.2.62

200 OK

16 kB

URL GET
cf.bstatic.com/psb/capla/static/css/0d919837.47dfbed9.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (1801)
Size
16 kB (15784 bytes)
Hash
08dc1101e56aec8b833099230db2872c
21a91ad2133d4eef67bc6e497a0a3b24f5422082
8f6eb8b1c6df18660a19dab88fee2d6fcf20aa7cd9a46e3e1bee1b37f0aa5e8e

HTTP Headers

GET /psb/capla/static/css/0d919837.47dfbed9.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Fri, 11 Jul 2025 11:43:47 GMT
last-modified: Wed, 09 Jul 2025 08:09:43 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 46066709292912a0e4c0b305609850123c0d93bf
x-amz-version-id: CSjgBZwUK5HIwXLEy1x205ZJlL1sihOM
server: AmazonS3
etag: W/"08dc1101e56aec8b833099230db2872c"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: PBH1E9cHpXCY77QQVV2h3cPlOeG-zIfdccwH4myZjAcIAtKW3JdCzg==
age: 573918
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/90166571.webp?k=2af43a45e1366401fa98c2d7484f8e99e7378e4e04192f843d98e2d8863b3347&o=

3.167.2.62

200 OK

34 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/90166571.webp?k=2af43a45e1366401fa98c2d7484f8e99e7378e4e04192f843d98e2d8863b3347&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
34 kB (34084 bytes)
Hash
f50fe13d3fc89bdfae846ad221534667
b2bfbe1568fb119da16a29199e5ff26c129c09cc
82faf1a80f4f041c16f4bb89dc23fdd4d00d53cb2625fd48fcd2bb65aa42757c

HTTP Headers

GET /xdata/images/hotel/square600/90166571.webp?k=2af43a45e1366401fa98c2d7484f8e99e7378e4e04192f843d98e2d8863b3347&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Mon, 07 Jul 2025 08:34:27 GMT
content-language: 34084
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "5e09c55ca9177820729c14a7506f3f97e0ccf286"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: SFobqv-jTifnfgRbG8rF-UE09htuIWDfCenmWX4KSSpQWlHWkMftBQ==
age: 930883
X-Firefox-Spdy: h2

GET r-xx.bstatic.com/xdata/images/xphoto/263x210/45450075.jpeg?k=d23cf8443780ac09f46f59e40393d75dbe64b06029b4959c60b81b7fdefc9be0&o=

3.167.2.62

200 OK

10 kB

URL GET
r-xx.bstatic.com/xdata/images/xphoto/263x210/45450075.jpeg?k=d23cf8443780ac09f46f59e40393d75dbe64b06029b4959c60b81b7fdefc9be0&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3
Size
10 kB (10192 bytes)
Hash
e70f1d1992db27cada3baaf01be89329
379e6db7407215eec854ae8523b0a88f6134b293
2c67010b9f685164bd1cf6b5fab39fd9f7b3a165357b15a6ca3de2cef7c796e1

HTTP Headers

GET /xdata/images/xphoto/263x210/45450075.jpeg?k=d23cf8443780ac09f46f59e40393d75dbe64b06029b4959c60b81b7fdefc9be0&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Thu, 10 Jul 2025 15:10:27 GMT
content-language: 10192
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "f6c79f7236f1e41145c4686341201c716b203f84"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: TkxwhL_iN0JtAA8Kp54NPrsDjpuxoZSPcKMb4PGCL7nmORAYjI5f1Q==
age: 647922
X-Firefox-Spdy: h2

GET q-xx.bstatic.com/xdata/images/city/170x136/644297.jpg?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o=

3.167.2.62

0 B

URL GET
q-xx.bstatic.com/xdata/images/city/170x136/644297.jpg?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /xdata/images/city/170x136/644297.jpg?k=1ec66dc12696bc2551f325c7318ab5d1cfec23c955b375a30e5d466cf23f6d87&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

GET cf.bstatic.com/psb/capla/static/css/598830f4.966be58d.chunk.css

3.167.2.62

200 OK

11 kB

URL GET
cf.bstatic.com/psb/capla/static/css/598830f4.966be58d.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (2480)
Size
11 kB (10598 bytes)
Hash
d6d3883f9d7e755c5ff42f685c9cda9d
b4781bbdacaa7f817ff98622858b95ed27296ec8
3a9cf50c433d343cb76f805c9306762f68ebff97e967ecb037e4f7cddced2d5c

HTTP Headers

GET /psb/capla/static/css/598830f4.966be58d.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Mon, 14 Jul 2025 13:27:43 GMT
last-modified: Mon, 14 Jul 2025 08:43:18 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 105c281e5639f5ad04cebbaacef2e8b0ba285a26
x-amz-version-id: uweORBI_zXGIqP.e00uVnJfMu7k_SDml
server: AmazonS3
etag: W/"d6d3883f9d7e755c5ff42f685c9cda9d"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: LWYBvngu4yuloSausmJ2Dhl3TRf5hHwVKLgzmNApfu2W8SKy7cO4vA==
age: 308482
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/css/ebf8c3e3.f102ab54.chunk.css

3.167.2.62

200 OK

589 B

URL GET
cf.bstatic.com/psb/capla/static/css/ebf8c3e3.f102ab54.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (472)
Size
589 B (589 bytes)
Hash
487e0133206a7f21407b99b6a52c9d77
728f62142c77d2148ff3b66e5c77e16b2c7485e6
55c5f0fd90bb66336cf50812785b4efdc91070f38bd74bcb7924704d32e71b16

HTTP Headers

GET /psb/capla/static/css/ebf8c3e3.f102ab54.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
content-length: 589
date: Fri, 09 May 2025 09:30:19 GMT
last-modified: Fri, 09 May 2025 09:19:51 GMT
etag: "487e0133206a7f21407b99b6a52c9d77"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 69fd1e173a3cb26da8db5060e06a761353c548fa
x-amz-version-id: fo6nic.e.aYcuuk6a3EPXzqB3MH8S3tZ
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: IX_qwGm-6PHBxi05uxXSK7lkFQvWbX_BDx3YP9F3NfOrZThnKq9u3g==
age: 6025126
timing-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/3c056f17.b1a64a5f.chunk.js

3.167.2.62

200 OK

1.2 kB

URL GET
cf.bstatic.com/psb/capla/static/js/3c056f17.b1a64a5f.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (1052)
Size
1.2 kB (1164 bytes)
Hash
cfa356f8c96ebcc74a0ea7032fbf477f
5517d94cd69353314558248c9d9c480c38be5443
54d57d0385fb025ecbc2eda5cb80a1c93eafc63e39ed5c8b08e249ce1507c638

HTTP Headers

GET /psb/capla/static/js/3c056f17.b1a64a5f.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Thu, 17 Jul 2025 14:12:04 GMT
last-modified: Wed, 16 Jul 2025 16:00:56 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 75f2989e4c756494607504d519d0d265808c5e29
x-amz-version-id: f_GjjQeZ8OzEQjFMtLQcpdrB0sggnlL5
server: AmazonS3
etag: W/"cfa356f8c96ebcc74a0ea7032fbf477f"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: hb2RhnNfHzOlaQka__uiGDA9Io7w2aQJNlpQJgwrIwd2-QUbLQHX0Q==
age: 46621
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/f41dcaf5.4397d013.chunk.js

3.167.2.62

200 OK

1.7 kB

URL GET
cf.bstatic.com/psb/capla/static/js/f41dcaf5.4397d013.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (1588)
Size
1.7 kB (1700 bytes)
Hash
efe0439747f913c9ea130b38a8fa1e69
c2165c07923995da42c760b74b88ffad2d7fc8d9
3a3f2f2ac1ed0df1f9c9e01313a03bcc6ee129a676603f6038aa0ae8fd54ac66

HTTP Headers

GET /psb/capla/static/js/f41dcaf5.4397d013.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Thu, 17 Jul 2025 14:12:04 GMT
last-modified: Wed, 16 Jul 2025 16:00:57 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 75f2989e4c756494607504d519d0d265808c5e29
x-amz-version-id: jEqzLBW3NvZem7NRc1aLZbm.oDae5vLK
server: AmazonS3
etag: W/"efe0439747f913c9ea130b38a8fa1e69"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: chsoUEd4UBNZN36gqVTTqutUrX1WFi-zA2dfLpe7vkgZLCoMuk9w6w==
age: 46621
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/static/js/atlas_cst_cloudfront_sd/948f5f606f8289e71e6693d0e6f1cb31b2c449b7.js

3.167.2.62

200 OK

637 kB

URL GET
cf.bstatic.com/static/js/atlas_cst_cloudfront_sd/948f5f606f8289e71e6693d0e6f1cb31b2c449b7.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
637 kB (637399 bytes)
Hash
77614074ff9eb69315af95db5eb42076
ef60895aa195a0c6f4a82b99715ece7e8b89f446
bede704327e16859c5b5836ea68594df45bedf13d775904841df043b4cd7ebcb

HTTP Headers

GET /static/js/atlas_cst_cloudfront_sd/948f5f606f8289e71e6693d0e6f1cb31b2c449b7.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 22 May 2025 12:22:37 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
x-amz-version-id: bk3PKFAXloiS10sIimIF1dDA_WFb676H
server: AmazonS3
date: Fri, 11 Jul 2025 17:24:15 GMT
cache-control: public,max-age=604800
etag: W/"77614074ff9eb69315af95db5eb42076"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: C44iOEJwkcQPnXP8yF-jaCwFcdrd6RVdaFFr8yZeYgq4f1lp16wkeQ==
age: 553494
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/218529186.webp?k=497b590292b9828d1e4ad797cfe30a51d40a193bca4a28efe88ee8a9d6809dd3&o=

3.167.2.62

200 OK

71 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/218529186.webp?k=497b590292b9828d1e4ad797cfe30a51d40a193bca4a28efe88ee8a9d6809dd3&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
71 kB (70734 bytes)
Hash
423c1ae5912dc11bb4d9c96743fa1e10
04891540608cd3318a942fb6cac260e22d0d5d8f
d22dbf72f75f4c2e125f30cc648c8e668e04a76571dcd823ca10dff7305e6013

HTTP Headers

GET /xdata/images/hotel/square600/218529186.webp?k=497b590292b9828d1e4ad797cfe30a51d40a193bca4a28efe88ee8a9d6809dd3&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Tue, 15 Jul 2025 07:48:17 GMT
content-language: 70734
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "a6b4e409506a19e1d7b3c7798e42f6d4050df96f"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: wObhu3lJ3U0BfLFgJmb0zf5YKYwiSym9m4HTWtL-zjkaA3lrmeR-Ww==
age: 242453
X-Firefox-Spdy: h2

POST account.booking.com/privacy-consents/implicit

3.167.2.91

200 OK

64 B

URL POST
account.booking.com/privacy-consents/implicit
IP
3.167.2.91:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.booking.com
Fingerprint40:C8:C7:99:E8:DF:B4:B7:80:45:6C:57:15:2A:09:28:16:A7:2B:BB
ValidityFri, 07 Mar 2025 00:00:00 GMT - Sat, 17 Jan 2026 23:59:59 GMT

File type
JSON text data
Size
64 B (64 bytes)
Hash
79a8fa925f74a761c7dd833589a14a99
2babf3455a4c1a75bbce1b0d06bad88c67ec6c50
d6eed92d1e03901e6154f28808bbd48bf308684248e4d654074d26b0ebadddba

HTTP Headers

POST /privacy-consents/implicit HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-type: application/json;charset=UTF-8
Content-Length: 56
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBJosCsR3hFNf85KfpAeWiDR2QeM7MGnpcHs5sFDxAvka99XqVS9Q2w%2BAIN%2FmAlQ%2BZDLp97av9mEeJQ2CpJ3Kb0a%2BRDgsQ%2FKddgnSzyMEOWuFhZLnmVIQ8FcUl8CqDDlhADmpvl87wO5Tmly1L1hhUmKfy%2FZ9xmpqzo%3D; pcm_personalization_disabled=0; bkng_sso_auth=CAIQ0+WGHxpmrqlfCI/7cj7WenmOuL5QxSn4u0pk06cV4xlrrrhmJKAb1FesYuKumLV4pSqW60W2NnCfEB+Pr3GDZ3i/aG465ACIGtpwXlBI9XDqnlhOkhTT7xUttessFF0wXrOKUtvFXd/bRD8o; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3De1046c70-f5fb-4ace-8c3b-1dcf67343057%26consentedAt%3D2025-07-18T03%3A09%3A02.576Z%26expiresAt%3D2026-01-14T03%3A09%3A02.576Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; cors_js=1; BJS=-; aws-waf-token=67c9cdaa-4624-4917-9c2a-833fc93c9b91:DQoAeJwWDMkAAAAA:DWMtRJsB3Nh+p2uN47NWBvemC3PxtqMqdsU+iqL+JI5RVqyQKxaQRa6n4sS8HZxtd6vGgTDq2KU8poWpY3XZAAYzQ5bOxBQxlCITjVAkpaK7OCYAfFNE3cl0HuJnBTpAPI1NeLJ8VsPUCGG0fDW+W29hHjFtzmpAfCbeyFSgLmu3cDTSNP143iKmVeF/TVIqwO4ci9LzxpPP9/kl3aX2+vo=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json; charset=UTF-8
server: envoy
date: Fri, 18 Jul 2025 03:09:12 GMT
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-methods: POST
access-control-allow-origin: https://www.booking.com
access-control-max-age: 1728000
content-security-policy: base-uri 'none'; frame-ancestors https://*.booking.com https://*.booking.cn; object-src 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=block&e=UmFuZG9tSVYkc2RlIyh9YSWKtKO5TxgOpTwVTPfHZKNW3Hcrm1RLgTDT2V-m21UMJ4KxJTAfD3k6vpGGyphNZUfy-f31chCZHPTonodp_KimHZLP-kkm31nZp_X7YOBYWt1U6tx6H7mQ5bJJiI3lzfuYZBJk4k_ARYu7STkXtBo; script-src 'report-sample' 'nonce-aWQ9D7FYScQz6VK' 'strict-dynamic' 'unsafe-eval' 'unsafe-hashes' 'sha256-kDPclFJFa/cNUGjyb73Olq+78jkIsu1rN4zPFoE3YaY=' 'sha256-tgo/x/FZ7h93dD78jEbhg4dXrRyROp1eZvekoHdStrw=' 'self' 'unsafe-inline' *.bstatic.com *.static.booking.cn bstatic.com cdn.cookielaw.org geolocation.onetrust.com saa.booking.com www.google-analytics.com *.awswaf.com
content-security-policy-report-only: connect-src 'self' *.token.awswaf.com cdn.cookielaw.org geolocation.onetrust.com privacyportal-eu.onetrust.com saa.booking.com secure.booking.com www.google-analytics.com; default-src 'self' *.bstatic.com bstatic.com; frame-src *.booking.com *.bstatic.com bstatic.com paymentcomponent.booking.com secure.booking.com www.booking.com; img-src 'self' data: *.bstatic.com *.static.booking.cn account.booking.com bstatic.com cdn.cookielaw.org graph.facebook.com stats.g.doubleclick.net www.booking.com www.google-analytics.com www.google.com www.gstatic.com; report-uri https://nellie.booking.com/csp-report-uri?type=report&e=UmFuZG9tSVYkc2RlIyh9YSWKtKO5TxgOpTwVTPfHZKNW3Hcrm1RLgTDT2V-m21UMJ4KxJTAfD3k6vpGGyphNZUfy-f31chCZHPTonodp_KimHZLP-kkm31nZp_X7YOBYWt1U6tx6H7mQ5bJJiI3lzfuYZBJk4k_ARYu7STkXtBo; script-src 'report-sample' 'nonce-aWQ9D7FYScQz6VK' 'strict-dynamic' 'unsafe-eval' 'unsafe-hashes' 'sha256-kDPclFJFa/cNUGjyb73Olq+78jkIsu1rN4zPFoE3YaY=' 'sha256-tgo/x/FZ7h93dD78jEbhg4dXrRyROp1eZvekoHdStrw=' 'self' 'unsafe-inline' *.bstatic.com *.static.booking.cn bstatic.com cdn.cookielaw.org geolocation.onetrust.com saa.booking.com www.google-analytics.com *.awswaf.com; style-src 'self' 'unsafe-inline' *.bstatic.com *.static.booking.cn bstatic.com
set-cookie: bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJkYXRhX3N1YmplY3RfaWQiOiI5MzQ3Mzk4Ny1hYWRlLTQ1YTMtOWUzYS0xN2JlMWMzMzQ4MzIiLCJzZXNzaW9ucyI6W119fQ; domain=account.booking.com; path=/; expires=Wed, 17-Jul-2030 03:09:12 GMT; SameSite=Lax; secure; HttpOnly
bkng_sso_ses=e30; domain=.booking.com; path=/; expires=Wed, 17-Jul-2030 03:09:12 GMT; secure; HttpOnly
bkng_sso_session=e30; domain=.booking.com; path=/; expires=Wed, 17-Jul-2030 03:09:12 GMT; secure; HttpOnly
x-xss-protection: 1; mode=block
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-cache: Miss from cloudfront
via: 1.1 7bc180ff569f641823300f4c342cb63a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: GL5hWEwCSFEM6JLcuTA8jGHo3j-qo5l1Kcmy0yExiC5GJVvSgTdIhg==
X-Firefox-Spdy: h2

GET cf.bstatic.com/static/js/genius_vip_cloudfront_sd/aae975495cc56436f4f59463b9ea4e594bdb102a.js

3.167.2.62

200 OK

3.4 kB

URL GET
cf.bstatic.com/static/js/genius_vip_cloudfront_sd/aae975495cc56436f4f59463b9ea4e594bdb102a.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (3448), with no line terminators
Size
3.4 kB (3448 bytes)
Hash
09a80a4a23bdc1dba67f37fca7af6e1b
f37cd1b7b407485887c87717098a0fda8fc268c6
eb8a863847bbe73aed0fdff596dd87c9cf66e85e4ce3526869d99fa9bdf01acf

HTTP Headers

GET /static/js/genius_vip_cloudfront_sd/aae975495cc56436f4f59463b9ea4e594bdb102a.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 14 Apr 2025 14:51:25 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
x-amz-version-id: spDjrHZ1xfkJch6f_EBR_D5x_GQvwNmX
server: AmazonS3
date: Thu, 17 Jul 2025 12:23:02 GMT
cache-control: public,max-age=604800
etag: W/"09a80a4a23bdc1dba67f37fca7af6e1b"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: ij0ydyBRZCIGFiAn42_9Wt0cxvVBA29IAzJqHboKiVN6PqkJCGl_-g==
age: 53163
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET t-cf.bstatic.com/design-assets/assets/v3.109.6/fonts-brand/BookingExtraBold.woff

3.167.2.99

200 OK

41 kB

URL GET
t-cf.bstatic.com/design-assets/assets/v3.109.6/fonts-brand/BookingExtraBold.woff
IP
3.167.2.99:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
Web Open Font Format, TrueType, length 40640, version 2.0
Size
41 kB (40640 bytes)
Hash
44bb644882b70aa9444e491e812d4a4b
65f9d0215301cecc36b1433e562b131f7d26ad24
96962b05c04ea77d8261a870a4cda2784fa137ec63350587eb46b75f40d126c2

HTTP Headers

GET /design-assets/assets/v3.109.6/fonts-brand/BookingExtraBold.woff HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://cf.bstatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: font/woff
content-length: 40640
last-modified: Thu, 20 Jun 2024 10:27:23 GMT
x-amz-server-side-encryption: aws:kms
x-amz-server-side-encryption-aws-kms-key-id: arn:aws:kms:eu-west-2:339712873537:key/a7c9de2e-1f60-4f87-bbf7-dc4071c8d126
x-amz-version-id: nlxmP12GYa1vZjF5VqVGAkvulGsPZFEi
accept-ranges: bytes
server: AmazonS3
date: Thu, 17 Jul 2025 04:36:08 GMT
etag: "ae8523f78cf2c8b8c3dc1c7d45974d4f"
x-cache: Hit from cloudfront
via: 1.1 50c588fd3255d023d9b9021263f5fa0a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: qBUKD5grVTtNtVaAGt3OP4l9NO3qK0qbDAPLBMPvATpzWCzfA38O_g==
age: 84332
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/static/fonts/booking-iconset-original/29bca18dce5a8e111855e31314a9b1d750ea9beb.woff2

3.167.2.62

200 OK

93 kB

URL GET
cf.bstatic.com/static/fonts/booking-iconset-original/29bca18dce5a8e111855e31314a9b1d750ea9beb.woff2
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 92724, version 1.0
Size
93 kB (92724 bytes)
Hash
f132633e65809ec36c0f01b8a29fa457
e68a5b0de3e08ac85a13426ce3d8c13ad21d38ff
a98c20990fe3e31203fe2db8384af8e05e7b358cdae3c28b034e1f02b47db630

HTTP Headers

GET /static/fonts/booking-iconset-original/29bca18dce5a8e111855e31314a9b1d750ea9beb.woff2 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Referer: https://cf.bstatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: font/woff2
content-length: 92724
last-modified: Mon, 14 Apr 2025 13:32:03 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: G28QA_RUh3CqwetvpWSSY.zHH1nVjRtE
accept-ranges: bytes
server: AmazonS3
date: Thu, 17 Jul 2025 15:49:04 GMT
cache-control: public,max-age=604800
etag: "f132633e65809ec36c0f01b8a29fa457"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: l1JmMZU5UxC1UEmnJ73R51Z1Q4bxClNYKxLudLgkmuOyWZ_RzN-yaw==
age: 40802
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

54.240.174.43

200 OK

200 B

URL POST
www.booking.com/dml/graphql?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056&lang=en-us
IP
54.240.174.43:443
ASN
#16509 AMAZON-02

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.booking.com
Fingerprint40:C8:C7:99:E8:DF:B4:B7:80:45:6C:57:15:2A:09:28:16:A7:2B:BB
ValidityFri, 07 Mar 2025 00:00:00 GMT - Sat, 17 Jan 2026 23:59:59 GMT

File type
JSON text data
Size
200 B (200 bytes)
Hash
b654ecdd6fad32b9efdd3add42d8f4bf
ac5ca4723ff6119be52dfae540fe2466ecfc47c0
c2e3c323a833add74aa275a8c3bb74d335dadcc003bb7deb7c57432f3eb8128f

HTTP Headers

POST /dml/graphql?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056&lang=en-us HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
apollographql-client-name: b-index-lp-web-mfe_rust
apollographql-client-version: dRdeWbLD
content-type: application/json
x-booking-context-action: index
x-booking-context-action-name: index
x-booking-context-aid: 818288
x-booking-csrf-token: eyJhbGciOiJIUzUxMiJ9.eyJpc3MiOiJjb250ZXh0LWVucmljaG1lbnQtYXBpIiwic3ViIjoiY3NyZi10b2tlbiIsImlhdCI6MTc1MjgwODE0MiwiZXhwIjoxNzUyODk0NTQyfQ.xS11JNvmqKBXkVmuhkXG3t17-GUe1mh5o3pg4gYiiDXvogmseaA4OTwTBg1UmcoAOXOrKtOmXrztH07Zg8LiMg
x-booking-dml-cluster: rust
x-booking-et-serialized-state: EZC0me3pHIwv-yYtQGQUdHMaUQ3rRxsio5-cDr4cc3Ohkp_KG_12HWFDp-raNqwOx
x-booking-pageview-id: c9c216276d7902f0
x-booking-site-type-id: 1
x-booking-topic: capla_browser_b-index-lp-web-mfe
Content-Length: 2944
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbbmD9q%2B5pe3Wdm0%2ByPGMsC1KujF5qCxhD8YztvAVkXTtTK0o2BJL7F%2Bm3G%2B0LUoeb7oHjlToVOeSl2nusn8juTZHyyu6%2FR9iuocOLfIsseh%2FgKV8BAd3zXuypAMgTO3s9O7%2BJaalVmnaHvhjhgEMcSuloTu1oNh%2FT; pcm_personalization_disabled=0; bkng_sso_auth=CAIQ0+WGHxpmrqlfCI/7cj7WenmOuL5QxSn4u0pk06cV4xlrrrhmJKAb1FesYuKumLV4pSqW60W2NnCfEB+Pr3GDZ3i/aG465ACIGtpwXlBI9XDqnlhOkhTT7xUttessFF0wXrOKUtvFXd/bRD8o; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3De1046c70-f5fb-4ace-8c3b-1dcf67343057%26consentedAt%3D2025-07-18T03%3A09%3A02.576Z%26expiresAt%3D2026-01-14T03%3A09%3A02.576Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; cors_js=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 108
server: nginx
date: Fri, 18 Jul 2025 03:09:09 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbKE7bjkbYWzknertGXiQbmRvlSBPNxxlOnqr4yuBzu0swZ%2Fxm93n2JOMaSEKUYZ92Hc6P4tnVKE3bXmItaT4stRsDC53Rt8w1pCvCgOMPowMSZVoEESGOAlG3G2D3OKbogWKk%2FnEGID0mgJEaARKUkey4BDoBWYXfkwTp7weanUY%3D; domain=.booking.com; path=/; expires=Wed, 17-Jul-2030 03:09:09 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MAanLfgSLEpAw6GMKIlsrxE98bkd-0vbnnjyD20vhqEZHgyGl0VLYA==
server-timing: cdn-upstream-layer;desc="REC",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=1,cdn-upstream-fbl;dur=71,cdn-cache-miss,cdn-pop;desc="OSL50-P1",cdn-rid;desc="MAanLfgSLEpAw6GMKIlsrxE98bkd-0vbnnjyD20vhqEZHgyGl0VLYA==",cdn-downstream-fbl;dur=108
X-Firefox-Spdy: h2

GET r-xx.bstatic.com/xdata/images/hotel/263x210/595550377.jpeg?k=ef93cbc1a3af0d6db84e27b6da280a4ef24dbcfeb065fcfeae4fe9c43dddd2da&o=

3.167.2.62

200 OK

11 kB

URL GET
r-xx.bstatic.com/xdata/images/hotel/263x210/595550377.jpeg?k=ef93cbc1a3af0d6db84e27b6da280a4ef24dbcfeb065fcfeae4fe9c43dddd2da&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3
Size
11 kB (10654 bytes)
Hash
3e0621a5c9dbb177e5bf39c7f2ffef82
febf8c1fbaa3d0b9f086eadef3fe8b6819b268c4
8fd15b62b9eb373ed5bde21e6df90bcb6d9023ab536b693c0a541b1ce750b449

HTTP Headers

GET /xdata/images/hotel/263x210/595550377.jpeg?k=ef93cbc1a3af0d6db84e27b6da280a4ef24dbcfeb065fcfeae4fe9c43dddd2da&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Wed, 25 Jun 2025 09:42:28 GMT
content-language: 10654
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "e7e18d410fc97b0727fc2d29a10b06cb98fcf870"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: UFkWBKzgGxBC15R_eNiyIeBZkZ12SPaTttn08E307Ri-XfQvnBHDPw==
age: 1963601
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/671392417.webp?k=57e013e0d2dde6f920bedddebc9aae93f8c43119639c0b5b7c597c215a959aa8&o=

3.167.2.62

200 OK

131 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/671392417.webp?k=57e013e0d2dde6f920bedddebc9aae93f8c43119639c0b5b7c597c215a959aa8&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
131 kB (131108 bytes)
Hash
151f6fffc3d3a6d08fd8800dac9fd2d2
50971b2a52d71d60d4145192f1af8283e1574177
e322e7de09eab6cb2a26e1ac8f99cd78c1de137c92f3c33a13b7984744ed1151

HTTP Headers

GET /xdata/images/hotel/square600/671392417.webp?k=57e013e0d2dde6f920bedddebc9aae93f8c43119639c0b5b7c597c215a959aa8&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Mon, 07 Jul 2025 07:16:14 GMT
etag: "03cd2bcedff2aae4913f151c90038d2445cfdaea"
content-language: 131108
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: ArTQWhHF80vherxlBl_mK4f02Sq6cYuyThXS2WOIB38fkmdVpCS0nQ==
age: 935576
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/d9560671.c471615b.chunk.js

3.167.2.62

200 OK

1.6 kB

URL GET
cf.bstatic.com/psb/capla/static/js/d9560671.c471615b.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (1518)
Size
1.6 kB (1630 bytes)
Hash
30b1a6efb118ce2277c09d7a9ff41fe0
f4a16cd119956c548ecb34cd8ca0c92dd56f0730
a88cdd1d9275eecbcd6bb9114fade41061d9209c15ba4f0fb134953e658f7918

HTTP Headers

GET /psb/capla/static/js/d9560671.c471615b.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
date: Fri, 09 May 2025 12:35:37 GMT
last-modified: Fri, 09 May 2025 11:54:39 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: e216b88f89cf70a185bd64eea225c92a4dfbc7d4
x-amz-version-id: 8gNu28UTOj9HY4KL8o.FvtQNqgyLqJdx
server: AmazonS3
etag: W/"30b1a6efb118ce2277c09d7a9ff41fe0"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 16KG67skq0ib2ip1xwYxWfMB90cs2R2fE7PyaD1pRGx7XxcbMOzp9Q==
age: 6014008
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET r-xx.bstatic.com/xdata/images/hotel/263x210/595551044.jpeg?k=262826efe8e21a0868105c01bf7113ed94de28492ee370f4225f00d1de0c6c44&o=

3.167.2.62

0 B

URL GET
r-xx.bstatic.com/xdata/images/hotel/263x210/595551044.jpeg?k=262826efe8e21a0868105c01bf7113ed94de28492ee370f4225f00d1de0c6c44&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /xdata/images/hotel/263x210/595551044.jpeg?k=262826efe8e21a0868105c01bf7113ed94de28492ee370f4225f00d1de0c6c44&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

GET cf.bstatic.com/xdata/images/hotel/square600/262247242.webp?k=bbfb11d6ac0fdb03a1aaa1e993bf05320777bf5e999d0531a3ada9afbf28dc7a&o=

3.167.2.62

200 OK

130 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/262247242.webp?k=bbfb11d6ac0fdb03a1aaa1e993bf05320777bf5e999d0531a3ada9afbf28dc7a&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
130 kB (129882 bytes)
Hash
4307165330c926ee501017439d6fd4ed
9467e6f6308c66ca44b1efb53e287eb698faf796
4668c066878deb7733b98bf57a0ba5bde47646214e4568746697adc24a1ad39a

HTTP Headers

GET /xdata/images/hotel/square600/262247242.webp?k=bbfb11d6ac0fdb03a1aaa1e993bf05320777bf5e999d0531a3ada9afbf28dc7a&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Wed, 02 Jul 2025 10:25:47 GMT
content-language: 129882
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "e0803850a71219c24699f57db52a6c2566e27cd4"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 14eWBGKWrabPFC-pgvTIFvUIdySjZY1Ibrzj1E6JyGyBIAFyov1SNQ==
age: 1356203
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/547233345.webp?k=28837d4d06d6fff027d44308a9abb7e7071d41ed4cf3ace0945f4c16e416c5bf&o=

3.167.2.62

200 OK

21 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/547233345.webp?k=28837d4d06d6fff027d44308a9abb7e7071d41ed4cf3ace0945f4c16e416c5bf&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
21 kB (21050 bytes)
Hash
e9b0c64238aa72c2d9adf8313bd79f16
0ecd0ecdeb304821206b17ccbff2c82c0bdb5622
862ec622d407e0157cbfb2fc782b74011f9a9af6c6623701160a6b68ed8e38a7

HTTP Headers

GET /xdata/images/hotel/square600/547233345.webp?k=28837d4d06d6fff027d44308a9abb7e7071d41ed4cf3ace0945f4c16e416c5bf&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Fri, 04 Jul 2025 13:16:57 GMT
content-language: 21050
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "cfcc5967487314d852582ae7ac07c12419b1f294"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 1wb9iO_J4Oh3eqEfgp5GKu7SvncTaLzoJb28CH3LgLTGmXnwOfY0Fg==
age: 1173133
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/remoteEntry.338a3a05.client.js

3.167.2.62

200 OK

33 kB

URL GET
cf.bstatic.com/psb/capla/static/js/remoteEntry.338a3a05.client.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (33286)
Size
33 kB (33402 bytes)
Hash
42d50de0cbb414306f0a579ede96de22
8343fff911adeb4021d96ff2d8be3bd24c1d7be5
953c3fcd0314eaa73f134687a3b12eb3a5d4ef73d02943db9126d2e6a2d7c0e0

HTTP Headers

GET /psb/capla/static/js/remoteEntry.338a3a05.client.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Wed, 16 Jul 2025 14:32:20 GMT
last-modified: Wed, 16 Jul 2025 14:19:35 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 41397c7742fe90fc1ee86e8c910285696257c24a
x-amz-version-id: DfEsisu2AxQWCp7h1_yfPpG1j8xIQlsb
server: AmazonS3
etag: W/"42d50de0cbb414306f0a579ede96de22"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 8apelvmiM0XcwjFP0dJOyh0WEYagmTTPqFPutr3e7WiEM3GqW1Eodw==
age: 131805
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/9214bfa8.b2b1988a.chunk.js

3.167.2.62

200 OK

1.5 kB

URL GET
cf.bstatic.com/psb/capla/static/js/9214bfa8.b2b1988a.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (1434)
Size
1.5 kB (1546 bytes)
Hash
7c690e629e083037cc13cc9e03d63546
b883e4c3beaded4edf59a4f41fef7dd9238967c8
5da78ac11b0fd474aee7113db28cd90aeb230f08c1a7e2e79b4d2cbe9c409c6f

HTTP Headers

GET /psb/capla/static/js/9214bfa8.b2b1988a.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Thu, 17 Jul 2025 14:13:06 GMT
last-modified: Wed, 16 Jul 2025 16:00:57 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 75f2989e4c756494607504d519d0d265808c5e29
x-amz-version-id: jmiAeWuhWndtm4e8INdTF0lEFcJ.tH1a
server: AmazonS3
etag: W/"7c690e629e083037cc13cc9e03d63546"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: IFkL9LxXAY02F9wG-sVVbtBJ4iX7-NmxQBHvGsKFZpLxtZI_cvf9pA==
age: 46559
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET t-cf.bstatic.com/design-assets/assets/v3.160.0/images-flags/Us@3x.png

3.167.2.99

200 OK

950 B

URL GET
t-cf.bstatic.com/design-assets/assets/v3.160.0/images-flags/Us@3x.png
IP
3.167.2.99:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
PNG image data, 72 x 72, 8-bit colormap, non-interlaced
Size
950 B (950 bytes)
Hash
025b409525836b9e0913038b2556d2cf
187b28fad3a710b3712b56e53be8fc4e142d9abc
bf146c2fcd8c33fdea4570acc5f92bc73b337b1efbbb2c318089f7bea5396672

HTTP Headers

GET /design-assets/assets/v3.160.0/images-flags/Us@3x.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 950
last-modified: Mon, 14 Jul 2025 09:13:57 GMT
x-amz-server-side-encryption: aws:kms
x-amz-server-side-encryption-aws-kms-key-id: arn:aws:kms:eu-west-2:339712873537:key/a7c9de2e-1f60-4f87-bbf7-dc4071c8d126
x-amz-version-id: bPA2lj0kMWT48wiUyDENtGXmbhalBQ.s
accept-ranges: bytes
server: AmazonS3
date: Thu, 17 Jul 2025 11:55:13 GMT
etag: "00bcd0186881aed3da7547610cc20b64"
x-cache: Hit from cloudfront
via: 1.1 50c588fd3255d023d9b9021263f5fa0a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: gt2EADW0k-sjLzuKSciU_EZXuOYeaI5whzusAqubmUyWwZMaXdUVsQ==
age: 61579
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/18cad957.dd2c2166.chunk.js

3.167.2.62

200 OK

84 kB

URL GET
cf.bstatic.com/psb/capla/static/js/18cad957.dd2c2166.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65455)
Size
84 kB (83972 bytes)
Hash
237d45f2f73961254cf6aa4808524956
694964b825128112ba2a9c41ef5b8500f62d2daa
7f9c0fa96de8c0f3c140383d26073fe678ba359a0ae8c152b858cc58b83b0a80

HTTP Headers

GET /psb/capla/static/js/18cad957.dd2c2166.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Mon, 07 Jul 2025 17:19:35 GMT
last-modified: Mon, 07 Jul 2025 13:05:12 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: add3b00aa711891475f6213c75cfaad888f19d1d
x-amz-version-id: nfL_b4xb7zngx3wFDGVlXPLk2NY66ABo
server: AmazonS3
etag: W/"237d45f2f73961254cf6aa4808524956"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: wGJB8pM_JPDeW-ChTaiEns3ZEHoN0y7ZGk-emdJypcRG1XIv5FkgPw==
age: 899371
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET q-xx.bstatic.com/xdata/images/city/170x136/671694.jpg?k=cd1e3603afe4edd09f829675efb1cdc9a5925bed25a642bfc4d909602c231624&o=

3.167.2.62

0 B

URL GET
q-xx.bstatic.com/xdata/images/city/170x136/671694.jpg?k=cd1e3603afe4edd09f829675efb1cdc9a5925bed25a642bfc4d909602c231624&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /xdata/images/city/170x136/671694.jpg?k=cd1e3603afe4edd09f829675efb1cdc9a5925bed25a642bfc4d909602c231624&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

GET cf.bstatic.com/static/img/favicon/9ca83ba2a5a3293ff07452cb24949a5843af4592.svg

3.167.2.62

200 OK

1.2 kB

URL GET
cf.bstatic.com/static/img/favicon/9ca83ba2a5a3293ff07452cb24949a5843af4592.svg
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
1.2 kB (1197 bytes)
Hash
e8209d74ad093f151954a3820c12e5d8
12fbf39039f0182026abaf8b0a22e75c9bb316f7
c80b9838465a2c5aa19e06c25631cd22d81dd8c76563875ebfb4d35304dfba47

HTTP Headers

GET /static/img/favicon/9ca83ba2a5a3293ff07452cb24949a5843af4592.svg HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Mon, 14 Apr 2025 14:47:42 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
x-amz-version-id: K.RUmcLgTg4Yzp_3WN0bDmyYrMHCVsdX
server: AmazonS3
date: Fri, 11 Jul 2025 17:13:07 GMT
cache-control: public,max-age=604800
etag: W/"e8209d74ad093f151954a3820c12e5d8"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: InypZTRb4f2pTCAXDvIzYCmEtb63V6e-kikqO2oqZjWYPjIKx_CywQ==
age: 554159
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/media/bh_aw_cpg_main_image.b4347622.png

3.167.2.62

200 OK

62 kB

URL GET
cf.bstatic.com/psb/capla/static/media/bh_aw_cpg_main_image.b4347622.png
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
PNG image data, 714 x 471, 8-bit/color RGBA, non-interlaced
Size
62 kB (62401 bytes)
Hash
d8c78bb4aa47ab6ae3df9d9e2fd9501e
8c959e1da33c4eee451ef13e2cd0f8b2327b7f76
34643ff9ca4b3ea1209f72b31dfcf85c0d23a9d389766bd908eff7a8dfd51f8a

HTTP Headers

GET /psb/capla/static/media/bh_aw_cpg_main_image.b4347622.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 62401
date: Sat, 19 Apr 2025 03:37:20 GMT
last-modified: Fri, 18 Apr 2025 13:50:48 GMT
etag: "d8c78bb4aa47ab6ae3df9d9e2fd9501e"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 35ecd8fcef48023e9641a49b067004e65498a8da
x-amz-version-id: s7vJLINjWD3ZzX6FaKaJEzK4UGaq5kD9
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: ySOyylL39bvnPAh3O_Ne6I1F_wwrmE7nwwtR3OS2VCNewRICxHY-sg==
age: 7774309
timing-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2

POST d8c14d4960ca.edge.sdk.awswaf.com/d8c14d4960ca/a18a4859af9c/telemetry

3.167.2.48

200 OK

1.1 kB

URL POST
d8c14d4960ca.edge.sdk.awswaf.com/d8c14d4960ca/a18a4859af9c/telemetry
IP
3.167.2.48:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerAmazon
Subject*.edge.sdk.awswaf.com
Fingerprint17:81:C6:3C:64:8D:61:C0:C4:F8:67:F7:82:B9:6C:45:E6:6C:DF:9A
ValidityFri, 29 Nov 2024 00:00:00 GMT - Mon, 29 Dec 2025 23:59:59 GMT

File type
JSON text data
Size
1.1 kB (1128 bytes)
Hash
d7b262ab3b363ccc7fa0e19dc0e0dbdc
f6c94424b7f705e66c5048bfa87eebfff12be7e7
b036f454290956e86dfb005c01e1e7d39a6bc277a55393314ded22e025e50d01

HTTP Headers

POST /d8c14d4960ca/a18a4859af9c/telemetry HTTP/1.1
Host: d8c14d4960ca.edge.sdk.awswaf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 2439
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json
date: Fri, 18 Jul 2025 03:09:13 GMT
expires: 0
x-amzn-waf-challenge-id: Root=1-6879bad9-21d995a8496f7dc16a57792f
access-control-max-age: 86400
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,GET,POST
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
content-encoding: gzip
vary: accept-encoding
x-cache: Miss from cloudfront
via: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: SmzESEuioZo2xndlhpcY3SMFZpKnC8oO-AgjhpCSSe6ftQ_8Ci44tg==
X-Firefox-Spdy: h2

GET cdn.cookielaw.org/scripttemplates/202501.2.0/assets/otCommonStyles.css

104.18.87.42

200 OK

25 kB

URL GET
cdn.cookielaw.org/scripttemplates/202501.2.0/assets/otCommonStyles.css
IP
104.18.87.42:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerGoogle Trust Services
Subjectcookielaw.org
FingerprintB4:92:0F:A3:FA:B1:B1:FE:2F:D7:62:60:14:C4:53:0B:E2:32:32:BA
ValidityWed, 04 Jun 2025 20:29:38 GMT - Tue, 02 Sep 2025 21:29:37 GMT

File type
ASCII text, with very long lines (24896), with no line terminators
Size
25 kB (24896 bytes)
Hash
f25335178a1192c37497a975774be72c
a336bd661f9cd19f04e069aae09da210b2e54328
e73bdaa36c3fa939fcdac64a675cdfd91e81888a547fed25cfcd756fa843f799

HTTP Headers

GET /scripttemplates/202501.2.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 18 Jul 2025 03:09:11 GMT
content-type: text/css
content-md5: 8lM1F4oRksN0l6l1d0vnLA==
last-modified: Fri, 04 Apr 2025 09:20:38 GMT
x-ms-request-id: 7097a739-801e-0052-24eb-a58e78000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 3722
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: cloudflare
cf-ray: 960ec76028a10b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/b9a82cb8.01b67c0f.chunk.js

3.167.2.62

200 OK

125 kB

URL GET
cf.bstatic.com/psb/capla/static/js/b9a82cb8.01b67c0f.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
125 kB (124614 bytes)
Hash
b1995aab4026f4aa690b6f03d1775f65
510308117079b30028c4510f31da6de38e489fb0
8cd11bb2bfedcfc76b41a5e155e2c8dfcd8f878f80932a7e01e620837889851a

HTTP Headers

GET /psb/capla/static/js/b9a82cb8.01b67c0f.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Tue, 15 Jul 2025 13:28:21 GMT
last-modified: Tue, 15 Jul 2025 07:45:34 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: dc007423c1c3d334ee9579a86344a07d02da168b
x-amz-version-id: l_FzRTY42f64Kbtl8BHPeOsu4_5ZPzgl
server: AmazonS3
etag: W/"b1995aab4026f4aa690b6f03d1775f65"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: NwJxdnBo9YmCDe_BZbKsiOZ1vaiEoaxQN1sf58Zz-WGGApXKnsU0Ww==
age: 222044
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET t-cf.bstatic.com/design-assets/assets/v3.160.0/illustrations-traveller/CustomerSupport.png

3.167.2.99

200 OK

3.5 kB

URL GET
t-cf.bstatic.com/design-assets/assets/v3.160.0/illustrations-traveller/CustomerSupport.png
IP
3.167.2.99:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
PNG image data, 95 x 120, 8-bit colormap, non-interlaced
Size
3.5 kB (3513 bytes)
Hash
99a14ecbcbeab4a88164f386db03f128
c1cf7b3eb43993abd34f4fff15f5af17ed6dba66
46665455e15537c50d7fee7fef092118f17a66f90547ebee47e2f22f40d08a2b

HTTP Headers

GET /design-assets/assets/v3.160.0/illustrations-traveller/CustomerSupport.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 3513
date: Thu, 17 Jul 2025 14:12:03 GMT
last-modified: Mon, 14 Jul 2025 09:13:28 GMT
etag: "642b23bd84cd2d68f096ba3f522403d1"
x-amz-server-side-encryption: aws:kms
x-amz-server-side-encryption-aws-kms-key-id: arn:aws:kms:eu-west-2:339712873537:key/a7c9de2e-1f60-4f87-bbf7-dc4071c8d126
x-amz-version-id: wwAzCBq9JoX6bKerqZ5NTa7QvztkwN.7
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 50c588fd3255d023d9b9021263f5fa0a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: e3QYSwEtp16n9esyQU0ISXj3o6CdUhmtGILCZUcmh75yGlTAw7JFaw==
age: 46623
timing-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2

GET q-xx.bstatic.com/xdata/images/hotel/263x210/620168315.jpeg?k=300d8d8059c8c5426ea81f65a30a7f93af09d377d4d8570bda1bd1f0c8f0767f&o=

3.167.2.62

0 B

URL GET
q-xx.bstatic.com/xdata/images/hotel/263x210/620168315.jpeg?k=300d8d8059c8c5426ea81f65a30a7f93af09d377d4d8570bda1bd1f0c8f0767f&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /xdata/images/hotel/263x210/620168315.jpeg?k=300d8d8059c8c5426ea81f65a30a7f93af09d377d4d8570bda1bd1f0c8f0767f&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

GET q-xx.bstatic.com/xdata/images/hotel/263x210/595550229.jpeg?k=2ae1f5975fa1f846ac707d3334eb604a7e8f817f640cbd790185b2691532476b&o=

3.167.2.62

0 B

URL GET
q-xx.bstatic.com/xdata/images/hotel/263x210/595550229.jpeg?k=2ae1f5975fa1f846ac707d3334eb604a7e8f817f640cbd790185b2691532476b&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /xdata/images/hotel/263x210/595550229.jpeg?k=2ae1f5975fa1f846ac707d3334eb604a7e8f817f640cbd790185b2691532476b&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

GET cf.bstatic.com/xdata/images/hotel/square600/106411975.webp?k=35d701f4788b80f8c2ec0d49530942a1673c326c491e0194d1cba9ea77479057&o=

3.167.2.62

200 OK

50 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/106411975.webp?k=35d701f4788b80f8c2ec0d49530942a1673c326c491e0194d1cba9ea77479057&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
50 kB (49812 bytes)
Hash
0f07ab7b69f9d2199d11e00a86e06f28
82dc04779d9721820a318b4f9143a1a57a6fd8ec
b5434b23609160c808c895a91f10273fcd026e77b1fe0126f4b1c3edfc21ef23

HTTP Headers

GET /xdata/images/hotel/square600/106411975.webp?k=35d701f4788b80f8c2ec0d49530942a1673c326c491e0194d1cba9ea77479057&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Tue, 24 Jun 2025 12:37:32 GMT
etag: "951b4c26b1dc318ac2317c3a96fa527ba3f271f4"
content-language: 49812
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: kqnQkUAfdHvpdC5Z5v1D_u8U57bZmp-jokS5qvk71Tcb8aoXj50cVw==
age: 2039498
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square240/577414844.jpg?k=e0ff5eb20bfef7343aae3041f0186d616987bdc0a667bc92c06e70f68382ee7c&o=

3.167.2.62

200 OK

18 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square240/577414844.jpg?k=e0ff5eb20bfef7343aae3041f0186d616987bdc0a667bc92c06e70f68382ee7c&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x240, components 3
Size
18 kB (17607 bytes)
Hash
8c28c55195b6eb2c6d431cd441a65c7f
bcb51f9ba4d60df1e86af99149a2a3908ce3b974
b893fe2e9035dfe397ab961495542b393eb77e5dd5b0b2dac9bc68f0f0fc51f4

HTTP Headers

GET /xdata/images/hotel/square240/577414844.jpg?k=e0ff5eb20bfef7343aae3041f0186d616987bdc0a667bc92c06e70f68382ee7c&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Thu, 17 Jul 2025 18:57:06 GMT
content-language: 17607
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "0dd21a308574dfebc0b151aa011aab9568540513"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: tq0PF5ok6F37KiAhZyfB6Ex7nakZEUU_of9gBXmyGvL2YUNKFqjTkw==
age: 29524
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square240/439439449.jpg?k=69f2a7c7617ea2b82847f9bfc66925dbc1426f3662cadc7b22532213df98752b&o=

3.167.2.62

200 OK

12 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square240/439439449.jpg?k=69f2a7c7617ea2b82847f9bfc66925dbc1426f3662cadc7b22532213df98752b&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x240, components 3
Size
12 kB (12303 bytes)
Hash
88693baf5000efb89ac073e7e47a80f1
9cd223ffd7689c3dea7254becce8c4e38256f487
17f92d5788f790944f5ce12bed11f72f8768aa908db1beb29d749af191e3eca6

HTTP Headers

GET /xdata/images/hotel/square240/439439449.jpg?k=69f2a7c7617ea2b82847f9bfc66925dbc1426f3662cadc7b22532213df98752b&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Fri, 27 Jun 2025 07:51:14 GMT
content-language: 12303
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "723073847b8ff1473189b1a7499722f5d09c972c"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: ilGll1yuNVeEPIj_1ikstS1YIk6baMeyXiQCMmvFpECmpdmplP95nA==
age: 1797476
X-Firefox-Spdy: h2

GET cf.bstatic.com/static/js/jquery_cloudfront_sd/e1e8c0e862309cb4caf3c0d5fbea48bfb8eaad42.js

3.167.2.62

200 OK

105 kB

URL GET
cf.bstatic.com/static/js/jquery_cloudfront_sd/e1e8c0e862309cb4caf3c0d5fbea48bfb8eaad42.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (60582)
Size
105 kB (105026 bytes)
Hash
1a16f971ed98c047c8fa288987383922
04200a6f3b25cdfa04551f635d025fc64743b4ff
5ad7526d50b7586ddfaee62b3fc95e71207136dc08f6a2b7ffd671ded73fab83

HTTP Headers

GET /static/js/jquery_cloudfront_sd/e1e8c0e862309cb4caf3c0d5fbea48bfb8eaad42.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 14 Apr 2025 14:51:30 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
x-amz-version-id: BNiGoTa0DTYrFZqx22kMzQcs7VMSvfKY
server: AmazonS3
date: Thu, 17 Jul 2025 13:37:40 GMT
cache-control: public,max-age=604800
etag: W/"1a16f971ed98c047c8fa288987383922"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: bwPX416zBHcPYkTytXC1GRMyyLO5N_2LoGStqjegn8O9EvN5_qlHbw==
age: 48683
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/css/c8637181.9d8a69b4.chunk.css

3.167.2.62

200 OK

9.5 kB

URL GET
cf.bstatic.com/psb/capla/static/css/c8637181.9d8a69b4.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (2480)
Size
9.5 kB (9506 bytes)
Hash
a2442bf8a0b2ab3aa502965b2b7914c2
ab178d47a0a646d710c75b434b318cf2dff68275
4997dde629bafcc7f7d6d784a01e762ed68fcae6e267a5413c4fd81bc13cd15a

HTTP Headers

GET /psb/capla/static/css/c8637181.9d8a69b4.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Mon, 14 Jul 2025 13:26:28 GMT
last-modified: Mon, 14 Jul 2025 08:43:18 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 105c281e5639f5ad04cebbaacef2e8b0ba285a26
x-amz-version-id: Lxx_QNndSU84m00jr78XVp2UiFmJ645e
server: AmazonS3
etag: W/"a2442bf8a0b2ab3aa502965b2b7914c2"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: fj5I6p8HK32z1Fxjgh7O2DVGKmkltmh_fjyh0eobbGrZJTJ07CqRjQ==
age: 308557
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/city/600x600/977262.jpg?k=2b852648c76ccaff8be05333057712eda873343dfaa79cd23e55534a1a55aecc&o=

3.167.2.62

200 OK

104 kB

URL GET
cf.bstatic.com/xdata/images/city/600x600/977262.jpg?k=2b852648c76ccaff8be05333057712eda873343dfaa79cd23e55534a1a55aecc&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 600x600, components 3
Size
104 kB (104054 bytes)
Hash
9e76748d372f43f3c70913db8fb4b4b6
8576bee89b25b0cf56805bd6d2e82cc5b11d5eae
4188b77ce80f546eebdb6c1d3dd95160b3d36b1e0fad8722c7e8c4591de87390

HTTP Headers

GET /xdata/images/city/600x600/977262.jpg?k=2b852648c76ccaff8be05333057712eda873343dfaa79cd23e55534a1a55aecc&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Tue, 15 Jul 2025 07:14:17 GMT
content-language: 104054
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "2082d51dfb19f44bdc31100a407237918470362f"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: QFB-bStsTVXV455G8D0tM11xN9EFKjDHyjZlo7Gy2ir568A0jBGuEQ==
age: 244488
X-Firefox-Spdy: h2

GET r-xx.bstatic.com/xdata/images/hotel/263x210/595550000.jpeg?k=71eeb3e0996d7f734e57a6fa426c718749a36df768ca5d2fb1dc65fcd7483c1d&o=

3.167.2.62

200 OK

13 kB

URL GET
r-xx.bstatic.com/xdata/images/hotel/263x210/595550000.jpeg?k=71eeb3e0996d7f734e57a6fa426c718749a36df768ca5d2fb1dc65fcd7483c1d&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3
Size
13 kB (13260 bytes)
Hash
294cce8a5ba0bae240466a3d138ac847
716e09fa47289e620cda045fc1776026d4962226
85a961143f14c18c3952e94fa04d58f708941b613d20c07ace75970a482ee627

HTTP Headers

GET /xdata/images/hotel/263x210/595550000.jpeg?k=71eeb3e0996d7f734e57a6fa426c718749a36df768ca5d2fb1dc65fcd7483c1d&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Mon, 30 Jun 2025 17:06:18 GMT
content-language: 13260
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "ba87e951bf6787239d8058ad5ab25895ae29eda7"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: ebDboG3KvCKcn-TCYBqSUP5WOzydUXfIXhwsZcWTBUtt-QxsC8XQ7Q==
age: 1504971
X-Firefox-Spdy: h2

GET q-xx.bstatic.com/xdata/images/hotel/263x210/595551145.jpeg?k=52a1d8bd9bc1f2199bf8d95f5399377c521d3a6291013e3a36f4dbeecd337bd7&o=

3.167.2.62

200 OK

14 kB

URL GET
q-xx.bstatic.com/xdata/images/hotel/263x210/595551145.jpeg?k=52a1d8bd9bc1f2199bf8d95f5399377c521d3a6291013e3a36f4dbeecd337bd7&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3
Size
14 kB (14429 bytes)
Hash
eae84244b33e9ecf732e3d6a76ae6d21
5624620b013857f81a0906e83612f0cc8e9cc217
c545536ef404c9e09e2531ebe7d999646cca4c821969ba1c4ced7d6209153fc8

HTTP Headers

GET /xdata/images/hotel/263x210/595551145.jpeg?k=52a1d8bd9bc1f2199bf8d95f5399377c521d3a6291013e3a36f4dbeecd337bd7&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Fri, 04 Jul 2025 08:55:59 GMT
content-language: 14429
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "075ac04d94e30491936b9422a2fd9ca8deacec73"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: e8Yngd7N27gnrKxs0_dC7J100FeR_uWoX01r9VYKDeBlgVLvHTELcA==
age: 1188790
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/467167582.webp?k=8190946ffdd138b82898fb5381f6bfd638f5897fa1ce24307eb2051338bc66e5&o=

3.167.2.62

200 OK

53 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/467167582.webp?k=8190946ffdd138b82898fb5381f6bfd638f5897fa1ce24307eb2051338bc66e5&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
53 kB (53362 bytes)
Hash
8bfe15f5529789baa643943635ea92f6
9708adef63de0787d7a574937b7fc825eb7ee1e0
812e906630a8a88cac0746ec08c6adfe9bfe8e4771300e3def801f1af6bc1342

HTTP Headers

GET /xdata/images/hotel/square600/467167582.webp?k=8190946ffdd138b82898fb5381f6bfd638f5897fa1ce24307eb2051338bc66e5&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Wed, 18 Jun 2025 08:58:07 GMT
etag: "b394b5da7c02a7484a883425b687034d0cc77048"
content-language: 53362
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: toKjUlljce3qa1fPl62-SjuSBaOytyo9UjwirzjQ_6BI6yFzeIRVhA==
age: 2571063
X-Firefox-Spdy: h2

GET q-xx.bstatic.com/xdata/images/hotel/263x210/595551195.jpeg?k=fe19403cca087623a33bf24c4154a636cd26d04c2aa948634fb05afa971e7767&o=

3.167.2.62

200 OK

11 kB

URL GET
q-xx.bstatic.com/xdata/images/hotel/263x210/595551195.jpeg?k=fe19403cca087623a33bf24c4154a636cd26d04c2aa948634fb05afa971e7767&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3
Size
11 kB (11282 bytes)
Hash
fba3a024af0945c2a85cc46d1d6f5ffe
13bdb46f861c798770773e9711611b42a119d1ef
a4fe034b99a9e5a21dd7c63fbb6867a31d14d21d94a1c27fdcecfd20b4d9901d

HTTP Headers

GET /xdata/images/hotel/263x210/595551195.jpeg?k=fe19403cca087623a33bf24c4154a636cd26d04c2aa948634fb05afa971e7767&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Mon, 30 Jun 2025 17:06:18 GMT
content-language: 11282
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "ca520ceeeb044e5c8d70057ff58a53229b231374"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 9satNRHMuaZtUkzIVkjfncujCtlCvmOXuDDjl2S_cNNVp8pA8IBnew==
age: 1504971
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/579099936.webp?k=e04cc7f7fe864ce09b7d7d978dbb7db3e558038a2151eb7c4c11e895bafbd8c0&o=

3.167.2.62

200 OK

62 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/579099936.webp?k=e04cc7f7fe864ce09b7d7d978dbb7db3e558038a2151eb7c4c11e895bafbd8c0&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
62 kB (62444 bytes)
Hash
4d141d7348ebed5b00ed3a4926412de5
0e32b18fba59b8264702fa40a70ab12b12c1f6df
ed74ec17c7ef4d2f2a4123b53e0744ba36c80e3773425d4aaae107acb31f08f9

HTTP Headers

GET /xdata/images/hotel/square600/579099936.webp?k=e04cc7f7fe864ce09b7d7d978dbb7db3e558038a2151eb7c4c11e895bafbd8c0&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Tue, 15 Jul 2025 10:52:44 GMT
content-language: 62444
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "13674956e2370a23b24b878b80bad72ceb03e84d"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: zzD4vtsra6zf4VQtPq5fGtvUb-b2_6ioKHghKKDAwS6Kbvc5u2XX9Q==
age: 231386
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/css/da3d7717.b6b0f1e2.chunk.css

3.167.2.62

200 OK

991 B

URL GET
cf.bstatic.com/psb/capla/static/css/da3d7717.b6b0f1e2.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (633)
Size
991 B (991 bytes)
Hash
d684d51597394501bee67c86843e96b8
4ce4d839945da076f6bd60ba70a647a018ee1561
5b86f275f52782febbad2d3cea9ae6e2c408d3bb429363778eff3ea96193b48e

HTTP Headers

GET /psb/capla/static/css/da3d7717.b6b0f1e2.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
content-length: 991
date: Tue, 27 May 2025 11:48:37 GMT
last-modified: Tue, 27 May 2025 11:27:53 GMT
etag: "d684d51597394501bee67c86843e96b8"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 6a0812033d7e2c65448a82d254538f08a2235e54
x-amz-version-id: mZn6gfL4lj1bUUM9JXA_61SbCMFw1GZE
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: Wz7RU29lYfMayozZ7EjEcqQ6m8fqKo0uEa3EgK-8IQ4KXmeS1LqeVA==
age: 4461628
timing-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/remoteEntry.e9e81e2c.client.js

3.167.2.62

200 OK

25 kB

URL GET
cf.bstatic.com/psb/capla/static/js/remoteEntry.e9e81e2c.client.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (24476)
Size
25 kB (24592 bytes)
Hash
823db92c5d6b22206129ca5f32adac57
4b6eac91d2dc27d00defe21a1635f9471f821844
447b7266cb2d390b6b4f9909013c6b39d76dcdec26a165536c8f506225ab0cec

HTTP Headers

GET /psb/capla/static/js/remoteEntry.e9e81e2c.client.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Wed, 16 Jul 2025 08:41:04 GMT
last-modified: Wed, 16 Jul 2025 08:29:40 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 3b0f091ce4a2bfca5f5e957d857203df26343996
x-amz-version-id: 0CfHcIjHaSORvlzXkVFwF81C9bLVZwl2
server: AmazonS3
etag: W/"823db92c5d6b22206129ca5f32adac57"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: ah_5eyCIyolHsxhHyihSmIKKTFHFeyJ0ukN0RItbnaVLISoT_zYGLQ==
age: 152881
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/remoteEntry.fbe241f1.client.js

3.167.2.62

200 OK

18 kB

URL GET
cf.bstatic.com/psb/capla/static/js/remoteEntry.fbe241f1.client.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (17518)
Size
18 kB (17634 bytes)
Hash
60caccedee6307dd150c7cc6fec1f5c5
52e74ee9408d4bd948921b6b882fb9818a224595
8b417c9c9164435f77cd934719a90a8319f37c87d54b62d6ee1e650b0f3cfb3e

HTTP Headers

GET /psb/capla/static/js/remoteEntry.fbe241f1.client.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Mon, 07 Jul 2025 17:19:26 GMT
last-modified: Mon, 07 Jul 2025 11:36:25 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 504d64f8ca4aeda969bb23d6170f46ce47df47f8
x-amz-version-id: vH1rc7JHSXKWEm79J_9QuX3mpLyZ.hz_
server: AmazonS3
etag: W/"60caccedee6307dd150c7cc6fec1f5c5"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: vQIqR7YNIEFWuQ5zhpU7txZD57pmOOVCYQFF4oq0lWz0sIKO_uofSQ==
age: 899379
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET q-xx.bstatic.com/xdata/images/city/170x136/969647.jpg?k=5f38d4d7db6e4825f12a89f9ea69d975569d2bba87231d6446daee0d98b85e8e&o=

3.167.2.62

0 B

URL GET
q-xx.bstatic.com/xdata/images/city/170x136/969647.jpg?k=5f38d4d7db6e4825f12a89f9ea69d975569d2bba87231d6446daee0d98b85e8e&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /xdata/images/city/170x136/969647.jpg?k=5f38d4d7db6e4825f12a89f9ea69d975569d2bba87231d6446daee0d98b85e8e&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

GET cf.bstatic.com/xdata/images/hotel/square240/702487364.jpg?k=46cb662a433fffa6d6b18fd61759142a7c662db70e96d4804cddb600a7ac3d88&o=

3.167.2.62

200 OK

13 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square240/702487364.jpg?k=46cb662a433fffa6d6b18fd61759142a7c662db70e96d4804cddb600a7ac3d88&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x240, components 3
Size
13 kB (13054 bytes)
Hash
e31eb5c3f4c94767f843880b742f7a17
db9b8b43d0d083b088580aa6504f9535c64accca
00baf89ecc943bc67653bc0ced889194f93c65302a5429c72c7e9a727dc1513b

HTTP Headers

GET /xdata/images/hotel/square240/702487364.jpg?k=46cb662a433fffa6d6b18fd61759142a7c662db70e96d4804cddb600a7ac3d88&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Tue, 24 Jun 2025 13:31:17 GMT
etag: "45b3e8776d98902a9e9b370817941b308c9e203f"
content-language: 13054
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 4ESm18Pov8uCQb0DiPRkIZmrz7jVce0oL6cGqXZlJkvRKFw03o2YjQ==
age: 2036273
X-Firefox-Spdy: h2

54.240.174.43

200 OK

17 kB

URL POST
www.booking.com/dml/graphql?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056&lang=en-us
IP
54.240.174.43:443
ASN
#16509 AMAZON-02

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.booking.com
Fingerprint40:C8:C7:99:E8:DF:B4:B7:80:45:6C:57:15:2A:09:28:16:A7:2B:BB
ValidityFri, 07 Mar 2025 00:00:00 GMT - Sat, 17 Jan 2026 23:59:59 GMT

File type
JSON text data
Size
17 kB (17383 bytes)
Hash
8c9ba810dbab96718a32b1501a7d1378
df94ef8b9744b9c7dd3168002e9b18562f714064
26bfa75adecccbab04c6bbc1e72a64451736f50b93b040be2238e0f628c3694c

HTTP Headers

POST /dml/graphql?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056&lang=en-us HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
apollographql-client-name: b-index-lp-web-mfe_rust
apollographql-client-version: dRdeWbLD
content-type: application/json
x-booking-context-action: index
x-booking-context-action-name: index
x-booking-context-aid: 818288
x-booking-csrf-token: eyJhbGciOiJIUzUxMiJ9.eyJpc3MiOiJjb250ZXh0LWVucmljaG1lbnQtYXBpIiwic3ViIjoiY3NyZi10b2tlbiIsImlhdCI6MTc1MjgwODE0MiwiZXhwIjoxNzUyODk0NTQyfQ.xS11JNvmqKBXkVmuhkXG3t17-GUe1mh5o3pg4gYiiDXvogmseaA4OTwTBg1UmcoAOXOrKtOmXrztH07Zg8LiMg
x-booking-dml-cluster: rust
x-booking-et-serialized-state: EZC0me3pHIwv-yYtQGQUdHMaUQ3rRxsio5-cDr4cc3Ohkp_KG_12HWFDp-raNqwOx
x-booking-pageview-id: c9c216276d7902f0
x-booking-site-type-id: 1
x-booking-timeout-budget-ms: 1500
x-booking-timeout-ms: 1500
x-booking-topic: capla_browser_b-index-lp-web-mfe
x-envoy-expected-rq-timeout-ms: 1500
Content-Length: 8990
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbbmD9q%2B5pe3Wdm0%2ByPGMsC1KujF5qCxhD8YztvAVkXTtTK0o2BJL7F%2Bm3G%2B0LUoeb7oHjlToVOeSl2nusn8juTZHyyu6%2FR9iuocOLfIsseh%2FgKV8BAd3zXuypAMgTO3s9O7%2BJaalVmnaHvhjhgEMcSuloTu1oNh%2FT; pcm_personalization_disabled=0; bkng_sso_auth=CAIQ0+WGHxpmrqlfCI/7cj7WenmOuL5QxSn4u0pk06cV4xlrrrhmJKAb1FesYuKumLV4pSqW60W2NnCfEB+Pr3GDZ3i/aG465ACIGtpwXlBI9XDqnlhOkhTT7xUttessFF0wXrOKUtvFXd/bRD8o; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3De1046c70-f5fb-4ace-8c3b-1dcf67343057%26consentedAt%3D2025-07-18T03%3A09%3A02.576Z%26expiresAt%3D2026-01-14T03%3A09%3A02.576Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; cors_js=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 3185
server: nginx
date: Fri, 18 Jul 2025 03:09:09 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbnmKTRaewPBtMDCLElwlwUECeTPMtsYQ8q86HRGRqxCNXibBl5S5KhSAVjMaj423t3ELM6K59xhM1BuXmVhEYidAom%2BkUkrzeXPKPScgIs4ZSxpAJNwRp7rTNQTQVHnFx1cEHTjoTsyE9Xe7aHhflLR4BmcOh54Rges8wXk6Hudo%3D; domain=.booking.com; path=/; expires=Wed, 17-Jul-2030 03:09:09 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: gc0o2cRqnIgXHtTW4aIk_gHOvXjHVOZrPlzRK-ffGgWZ5qrQ2fBN8Q==
server-timing: cdn-upstream-layer;desc="REC",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=1,cdn-upstream-fbl;dur=83,cdn-cache-miss,cdn-pop;desc="OSL50-P1",cdn-rid;desc="gc0o2cRqnIgXHtTW4aIk_gHOvXjHVOZrPlzRK-ffGgWZ5qrQ2fBN8Q==",cdn-downstream-fbl;dur=123
X-Firefox-Spdy: h2

GET q-xx.bstatic.com/xdata/images/city/170x136/671694.jpg?k=cd1e3603afe4edd09f829675efb1cdc9a5925bed25a642bfc4d909602c231624&o=

3.167.2.62

200 OK

6.3 kB

URL GET
q-xx.bstatic.com/xdata/images/city/170x136/671694.jpg?k=cd1e3603afe4edd09f829675efb1cdc9a5925bed25a642bfc4d909602c231624&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3
Size
6.3 kB (6341 bytes)
Hash
566ef663c31a7da2e19277c795aab0fa
bcbc6af34645cb84bec41718185ab14768d36a31
207cf1ee36b9118a68d6b33bbef91c4eb9bd28edcabae628828b20a375f409c9

HTTP Headers

GET /xdata/images/city/170x136/671694.jpg?k=cd1e3603afe4edd09f829675efb1cdc9a5925bed25a642bfc4d909602c231624&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
content-length: 6341
server: nginx
date: Sun, 13 Jul 2025 09:31:36 GMT
content-language: 6341
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "498d6d5b65e81aa8199ff4e9ae444d1081d082a3"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 8ZWqb8yaM6ubrWEuvywTPJhhkiyVmjIrLzmiF8eMMKtZHeC8X-Xf_g==
age: 409054
X-Firefox-Spdy: h2

POST d8c14d4960ca.edge.sdk.awswaf.com/d8c14d4960ca/a18a4859af9c/telemetry

3.167.2.48

200 OK

1.5 kB

URL POST
d8c14d4960ca.edge.sdk.awswaf.com/d8c14d4960ca/a18a4859af9c/telemetry
IP
3.167.2.48:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerAmazon
Subject*.edge.sdk.awswaf.com
Fingerprint17:81:C6:3C:64:8D:61:C0:C4:F8:67:F7:82:B9:6C:45:E6:6C:DF:9A
ValidityFri, 29 Nov 2024 00:00:00 GMT - Mon, 29 Dec 2025 23:59:59 GMT

File type
JSON text data
Size
1.5 kB (1482 bytes)
Hash
7f8b8c8c9015868fe15dca200861bb58
1e5f2507101841655a8a52b243ea5250c222876c
71665e7c671a9fc301247735c15968ee598196ae096bbcad4becc12dfa91eeaa

HTTP Headers

POST /d8c14d4960ca/a18a4859af9c/telemetry HTTP/1.1
Host: d8c14d4960ca.edge.sdk.awswaf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 2793
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json
date: Fri, 18 Jul 2025 03:09:25 GMT
expires: 0
x-amzn-waf-challenge-id: Root=1-6879bae5-44514ea92a81f660582775ee
access-control-max-age: 86400
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,GET,POST
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
content-encoding: gzip
vary: accept-encoding
x-cache: Miss from cloudfront
via: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: iu--9XLdbN1gaS8m8lWBmELtofQnGWKrGv9iBrHMslQDKxxoX6CcbQ==
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/css/7b68889a.154e6fa2.chunk.css

3.167.2.62

200 OK

1.3 kB

URL GET
cf.bstatic.com/psb/capla/static/css/7b68889a.154e6fa2.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (1227)
Size
1.3 kB (1344 bytes)
Hash
fefa1329a50744fd9ce73fc6f57da0b1
c9615b3104f56b46ef1f988ec3a9e3b66d88c021
0dd2e1faa09c1a0bf7d9783f7c09137e4cc011c1243988875c52ea3cd9ef2962

HTTP Headers

GET /psb/capla/static/css/7b68889a.154e6fa2.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Tue, 15 Jul 2025 13:28:21 GMT
last-modified: Tue, 15 Jul 2025 07:45:31 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: dc007423c1c3d334ee9579a86344a07d02da168b
x-amz-version-id: VUKU6RMg93byvMav00yzmWuB7g3crn.X
server: AmazonS3
etag: W/"fefa1329a50744fd9ce73fc6f57da0b1"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: w51Wo529UOyZT0p2ms9XJciA65Z4Cx1uNvSmzudDrg728QuxtuuXYQ==
age: 222046
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/156985326.webp?k=18d929c8953691ff27bbcabffd3e1874ec113a8d6c68467df830bead5ec4ef0d&o=

3.167.2.62

0 B

URL GET
cf.bstatic.com/xdata/images/hotel/square600/156985326.webp?k=18d929c8953691ff27bbcabffd3e1874ec113a8d6c68467df830bead5ec4ef0d&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /xdata/images/hotel/square600/156985326.webp?k=18d929c8953691ff27bbcabffd3e1874ec113a8d6c68467df830bead5ec4ef0d&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

GET cf.bstatic.com/xdata/images/hotel/square600/13125860.webp?k=35b70a7e8a17a71896996cd55d84f742cd15724c3aebaed0d9b5ba19c53c430b&o=

3.167.2.62

200 OK

63 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/13125860.webp?k=35b70a7e8a17a71896996cd55d84f742cd15724c3aebaed0d9b5ba19c53c430b&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
63 kB (63344 bytes)
Hash
e965ab8e189b47c2552636ab3e7f7cb2
a558424ed2187f317d0bb28cf7e5924bff250bd7
28e8056b22b0dd18679873e59d4d0ddf9233236584922bfbc0346cb4864b5e33

HTTP Headers

GET /xdata/images/hotel/square600/13125860.webp?k=35b70a7e8a17a71896996cd55d84f742cd15724c3aebaed0d9b5ba19c53c430b&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Wed, 09 Jul 2025 15:51:12 GMT
content-language: 63344
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "ab8b7d74b7a68414c25e711fee70e7eba3ef2ff8"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 8ATrJ4smdv6xXDOkcOadsbNH7IbkpmQ3sEhXBNoxLeTnoDygONegKw==
age: 731878
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square240/542703632.jpg?k=25d389167e717a30ce8b2132c9a05bc7fcf11d50e90d9b915e1739db89673cd1&o=

3.167.2.62

200 OK

11 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square240/542703632.jpg?k=25d389167e717a30ce8b2132c9a05bc7fcf11d50e90d9b915e1739db89673cd1&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x240, components 3
Size
11 kB (11144 bytes)
Hash
1de5d177eec8539b8f1192ac9d651ebb
11cdea515cf03b0db7d567b368a4d0aa6959ce01
031ebe8b2f8671e51147794d138bd4ae37f291ffbe14c3d868ef6d9967675140

HTTP Headers

GET /xdata/images/hotel/square240/542703632.jpg?k=25d389167e717a30ce8b2132c9a05bc7fcf11d50e90d9b915e1739db89673cd1&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Wed, 02 Jul 2025 07:09:30 GMT
content-language: 11144
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "105895557e29234c2a1468fbc4bfa93383d865b5"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: gPWa1wfGzUmPHH1JO0hxG4cAGKsgw6loYKIW6ff-hnMEdm7Cpj8dGQ==
age: 1367980
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/262247242.webp?k=bbfb11d6ac0fdb03a1aaa1e993bf05320777bf5e999d0531a3ada9afbf28dc7a&o=

3.167.2.62

200 OK

130 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/262247242.webp?k=bbfb11d6ac0fdb03a1aaa1e993bf05320777bf5e999d0531a3ada9afbf28dc7a&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
130 kB (129882 bytes)
Hash
4307165330c926ee501017439d6fd4ed
9467e6f6308c66ca44b1efb53e287eb698faf796
4668c066878deb7733b98bf57a0ba5bde47646214e4568746697adc24a1ad39a

HTTP Headers

GET /xdata/images/hotel/square600/262247242.webp?k=bbfb11d6ac0fdb03a1aaa1e993bf05320777bf5e999d0531a3ada9afbf28dc7a&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Wed, 02 Jul 2025 10:25:47 GMT
content-language: 129882
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "e0803850a71219c24699f57db52a6c2566e27cd4"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: L7Qos2bU71N6FI1Qjz4elxnqQe3V69UvyOZ2XD3goTlmmo-EerK6cQ==
age: 1356203
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square240/679972234.jpg?k=34231cdb9567b24b89bb9f189d177a205c14b3e374b3eb4f53de9ff6fd851ecf&o=

3.167.2.62

200 OK

7.1 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square240/679972234.jpg?k=34231cdb9567b24b89bb9f189d177a205c14b3e374b3eb4f53de9ff6fd851ecf&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x240, components 3
Size
7.1 kB (7115 bytes)
Hash
92e0b8690497c0d5d5e7afccbde2de84
ad968f4eb31b1079946672d295fc1c4c857b63ff
12067bf5639f4ae832322ed6e82a580b1cf9f87a737d9f8e723a2051acabb738

HTTP Headers

GET /xdata/images/hotel/square240/679972234.jpg?k=34231cdb9567b24b89bb9f189d177a205c14b3e374b3eb4f53de9ff6fd851ecf&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
content-length: 7115
server: nginx
date: Sun, 13 Jul 2025 12:21:05 GMT
content-language: 7115
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "b64c4efa5c6de2150e4b273355ad0c95f76e9097"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: l8m98eo-3IAFOOZt0FgDXB7f3H6ljAJI3dIRtT5qfUYCbnihxmvpGg==
age: 398885
X-Firefox-Spdy: h2

GET cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/3ea94870-d4b1-483a-b1d2-faf1d982bb31.json

104.18.87.42

200 OK

6.8 kB

URL GET
cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/3ea94870-d4b1-483a-b1d2-faf1d982bb31.json
IP
104.18.87.42:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerGoogle Trust Services
Subjectcookielaw.org
FingerprintB4:92:0F:A3:FA:B1:B1:FE:2F:D7:62:60:14:C4:53:0B:E2:32:32:BA
ValidityWed, 04 Jun 2025 20:29:38 GMT - Tue, 02 Sep 2025 21:29:37 GMT

File type
JSON text data
Size
6.8 kB (6817 bytes)
Hash
daa3d7c7b08052e007587ce9cd3afd58
dad9b859fc302b08ff4a6aec8f67c1db413232f2
da15429dc4d4db8aef4b29ac9e10b51cb2cc9ae9b1755a7b52ed5840805b500b

HTTP Headers

GET /consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/3ea94870-d4b1-483a-b1d2-faf1d982bb31.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 18 Jul 2025 03:09:06 GMT
content-type: application/json
cf-ray: 960ec74509bf0b49-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 59867
cache-control: public, max-age=86400
content-encoding: gzip
etag: 0x8DDC0660B8233E5
expires: Sat, 19 Jul 2025 03:09:06 GMT
last-modified: Fri, 11 Jul 2025 10:31:06 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding, X-OneTrust-IsBot
content-md5: UYs/ug+OzYcrfL5p94efXg==
x-content-type-options: nosniff
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 25c9e178-601e-00bd-474e-f28506000000
x-ms-version: 2009-09-19
x-onetrust-isbot: false
cross-origin-resource-policy: cross-origin, cross-origin
server: cloudflare
X-Firefox-Spdy: h2

GET cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/OtAutoBlock.js

104.18.87.42

200 OK

12 kB

URL GET
cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/OtAutoBlock.js
IP
104.18.87.42:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerGoogle Trust Services
Subjectcookielaw.org
FingerprintB4:92:0F:A3:FA:B1:B1:FE:2F:D7:62:60:14:C4:53:0B:E2:32:32:BA
ValidityWed, 04 Jun 2025 20:29:38 GMT - Tue, 02 Sep 2025 21:29:37 GMT

File type
JavaScript source, ASCII text, with very long lines (6987)
Size
12 kB (11453 bytes)
Hash
61feb7be99f562dd0beb331f5204b099
737e49833ef55753c955350de3738482ea52a940
f0b53092e0c84a869b37e4722eb6b04ee307d72feb1cd86c63f72af1d04ed4b4

HTTP Headers

GET /consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/OtAutoBlock.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 18 Jul 2025 03:09:03 GMT
content-type: application/javascript
cf-ray: 960ec7310ce90b49-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 59863
cache-control: public, max-age=86400
content-encoding: gzip
etag: 0x8DDC0660B74FC55
expires: Sat, 19 Jul 2025 03:09:03 GMT
last-modified: Fri, 11 Jul 2025 10:31:06 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding, X-OneTrust-IsBot
content-md5: 3ineauI3fHW8bG13zOy6NA==
x-content-type-options: nosniff
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 01c7e4c1-a01e-0028-204e-f2e435000000
x-ms-version: 2009-09-19
x-onetrust-isbot: true
cross-origin-resource-policy: cross-origin, cross-origin
server: cloudflare
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/css/81da5f32.e54f350f.chunk.css

3.167.2.62

200 OK

12 kB

URL GET
cf.bstatic.com/psb/capla/static/css/81da5f32.e54f350f.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (10382)
Size
12 kB (11603 bytes)
Hash
d71a65cbbda9d0428654a20a89d5b5b4
9712d38ac11cf0ed94151b82582cf5ef9919bff0
9dcb0e1d6920310aea1a19a46396b2f13796ab31d7bc8bcb184fd4b2309980e0

HTTP Headers

GET /psb/capla/static/css/81da5f32.e54f350f.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Wed, 25 Jun 2025 08:24:45 GMT
last-modified: Tue, 24 Jun 2025 15:09:00 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: c154fc921ca132ac6d99f19e73cc913e9c216a2f
x-amz-version-id: kP9_iUSpVgraf8X9CP_G8x.ZeUVPACc7
server: AmazonS3
etag: W/"d71a65cbbda9d0428654a20a89d5b5b4"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: ifnRHfSgHTyjQoWK8mOZhSNAC6-E9MSpbJyMJnu7eO6G2Mat6V6Spg==
age: 1968260
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/81da5f32.147d7177.chunk.js

3.167.2.62

200 OK

310 kB

URL GET
cf.bstatic.com/psb/capla/static/js/81da5f32.147d7177.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65455)
Size
310 kB (309885 bytes)
Hash
ba4ea31b928b9e7204da467821e54bd8
5bb355bbe873b09edecc241023d6747938c6bbfd
824b729335d9ee38bf7bbed1e96712ece150f6733d41585a2f27e5511d47e23b

HTTP Headers

GET /psb/capla/static/js/81da5f32.147d7177.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Tue, 15 Jul 2025 13:28:20 GMT
last-modified: Tue, 15 Jul 2025 07:45:33 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: dc007423c1c3d334ee9579a86344a07d02da168b
x-amz-version-id: U55vsdy86CENVYiLmYbcIqnPZTqolTVJ
server: AmazonS3
etag: W/"ba4ea31b928b9e7204da467821e54bd8"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: rS1PraTCa42Etb5wRw1xqlKxk5kPJU1ZsP6u9z8Y8bCiitKsjiVUhg==
age: 222045
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/remoteEntry.39d5cac2.client.js

3.167.2.62

200 OK

18 kB

URL GET
cf.bstatic.com/psb/capla/static/js/remoteEntry.39d5cac2.client.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (17665)
Size
18 kB (17781 bytes)
Hash
bcad2d5048829161d7e504e54cf80afe
0641d15fc09c2a159e27c167c299764d3f2f2397
c99cbff3a51154df7565c8c95e1da27a0770a164e832fac25644f59168dcad2d

HTTP Headers

GET /psb/capla/static/js/remoteEntry.39d5cac2.client.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Wed, 09 Jul 2025 07:45:35 GMT
last-modified: Wed, 09 Jul 2025 07:31:22 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 3875d6b1d11ad4dcd767652e87613bedf4621883
x-amz-version-id: DEjqlq7E_Pa1.B719R_QHjS8rYC5wff7
server: AmazonS3
etag: W/"bcad2d5048829161d7e504e54cf80afe"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: N7FQEO6GhQygk0YqV_5b932wx0bdK9oTQaYOO-KGx029zur4tDr97A==
age: 761010
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/e041cab1.80efe70b.chunk.js

3.167.2.62

200 OK

58 kB

URL GET
cf.bstatic.com/psb/capla/static/js/e041cab1.80efe70b.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (57970)
Size
58 kB (58163 bytes)
Hash
2a809d65b4a46ece1baf3d69908cafe4
01ef47a6f029d031e9bc497bb2237422fd8dc7b9
b9ba09c80321378b52eb7d85da6a9a1e0ba034a2b63f750014c157ae8689cc20

HTTP Headers

GET /psb/capla/static/js/e041cab1.80efe70b.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Thu, 17 Jul 2025 14:13:06 GMT
last-modified: Thu, 17 Jul 2025 13:37:58 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: e829eaea6cb5b2d54f4c2f4114f48aed7ed0efe0
x-amz-version-id: 3nqJ5KQVvAYZAoNax7p7bLdNUkxLotyc
server: AmazonS3
etag: W/"2a809d65b4a46ece1baf3d69908cafe4"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 3mK8MtczvdGSU94z5cPniX4zER61A4_YhDeaFjtPVMRaBsR0k2VVMw==
age: 46559
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/5638344d.1d8946c7.chunk.js

3.167.2.62

200 OK

153 kB

URL GET
cf.bstatic.com/psb/capla/static/js/5638344d.1d8946c7.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65455)
Size
153 kB (153084 bytes)
Hash
d32f44b9664839f9d66a5355b47048e2
dcd4574df09a697e6ba9da4c2f4081b9191f7073
0eead5ba8c69c05f0af4fd96682ca34afc3716b108f2aac6c61d87050a87124d

HTTP Headers

GET /psb/capla/static/js/5638344d.1d8946c7.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Thu, 17 Jul 2025 14:12:04 GMT
last-modified: Thu, 17 Jul 2025 08:43:19 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 6a06f45a2dc6276a3d4a4597f20b8d3a7eb1a4c0
x-amz-version-id: MD5EWfhXiORWbPcZTbvFPMVDaUqRpAh.
server: AmazonS3
etag: W/"d32f44b9664839f9d66a5355b47048e2"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: _uhSH_dJVc9dhaPPmJ3zoyZ84sdmMeg-4GlaYxQlQEdHd4ba0W4N8w==
age: 46621
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/01971113-143c-7c40-9e9f-bf2ae3ec4d3f/en-us.json

104.18.87.42

200 OK

152 kB

URL GET
cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/01971113-143c-7c40-9e9f-bf2ae3ec4d3f/en-us.json
IP
104.18.87.42:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerGoogle Trust Services
Subjectcookielaw.org
FingerprintB4:92:0F:A3:FA:B1:B1:FE:2F:D7:62:60:14:C4:53:0B:E2:32:32:BA
ValidityWed, 04 Jun 2025 20:29:38 GMT - Tue, 02 Sep 2025 21:29:37 GMT

File type
JSON text data
Size
152 kB (152525 bytes)
Hash
41fce3535c9d994c04b7213a0bbdc91c
ab17980e817f0cd9ff25a4eb4232bb521894cb89
ec75e445a908e30f4d936227b5452062f025d75be2c23b63cb0d934ad19aedd9

HTTP Headers

GET /consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/01971113-143c-7c40-9e9f-bf2ae3ec4d3f/en-us.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 18 Jul 2025 03:09:09 GMT
content-type: application/json
cf-ray: 960ec757fea40b49-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 59850
cache-control: public, max-age=86400
content-encoding: gzip
etag: 0x8DDC0660E924548
expires: Sat, 19 Jul 2025 03:09:09 GMT
last-modified: Fri, 11 Jul 2025 10:31:12 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding, X-OneTrust-IsBot
content-md5: kkxgZQV+yzVu/RdWdvr4Mw==
x-content-type-options: nosniff
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 971d962a-001e-00a6-6f4e-f2ab94000000
x-ms-version: 2009-09-19
x-onetrust-isbot: false
cross-origin-resource-policy: cross-origin, cross-origin
server: cloudflare
X-Firefox-Spdy: h2

GET www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056

54.240.174.35

301 Moved Permanently

719 kB

URL User Request GET
www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
IP
54.240.174.35:80
ASN
#16509 AMAZON-02

File type

Size
719 kB (718953 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056 HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Fri, 18 Jul 2025 03:09:02 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
X-Cache: Redirect from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 4RecwMdc1xeXpSUAu0ohhoNc9D0l1nVKE-cImMCQbhzEGHrX9FmqKA==

GET cf.bstatic.com/psb/capla/static/css/7e8161ba.951340d8.chunk.css

3.167.2.62

200 OK

997 B

URL GET
cf.bstatic.com/psb/capla/static/css/7e8161ba.951340d8.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (639)
Size
997 B (997 bytes)
Hash
c1f3efbb6d5c8c77c1717e15d3fe8af4
4154ff0c53a46f898744ea20a26b5ea32ccbbf09
533592943a4062e913c967a80aa6ae3907e8b27c31bfdb3f0c2e69fa25f12743

HTTP Headers

GET /psb/capla/static/css/7e8161ba.951340d8.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
content-length: 997
date: Tue, 17 Jun 2025 19:05:02 GMT
last-modified: Wed, 04 Jun 2025 10:06:17 GMT
etag: "c1f3efbb6d5c8c77c1717e15d3fe8af4"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: a37cceafce9d3c1054284be4e232ef4237a02078
x-amz-version-id: 07EsOuCrxrHcVk_M1YktA60DubUEh59y
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: qPvJnxjt4tekrVlG3r0p3SIExp5gA6obnrkUP-SwNRsZEm193YjRng==
age: 2621043
timing-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/97da0127.455ce97e.chunk.js

3.167.2.62

200 OK

1.0 kB

URL GET
cf.bstatic.com/psb/capla/static/js/97da0127.455ce97e.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (927)
Size
1.0 kB (1039 bytes)
Hash
61b63f204260820aaf26424cb2879548
a29b8e79e69b9bbeffa69d771e8bdf0a65d9d361
ceb3cadfde71eec6b8f23aeb3636c8dae5e3295e9c50fab921160f34cf894b50

HTTP Headers

GET /psb/capla/static/js/97da0127.455ce97e.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Fri, 27 Jun 2025 11:04:18 GMT
last-modified: Fri, 27 Jun 2025 07:47:41 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 85b76c7d9089b78ee7179ddad950d6e9c93a7129
x-amz-version-id: Qaf1sEQysuLAS35ljRyiKFnlenrZqeq4
server: AmazonS3
etag: W/"61b63f204260820aaf26424cb2879548"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: dO3BC0iBosujbPf9yQTC2zhrsOKk50IdHvpNnnzCx513IYc-oNaHBQ==
age: 1785887
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/64768746.webp?k=0c33d15be1f0c9ebd0ede9b85565c3233ef836884a40d785dd6b36f9f0f50c04&o=

3.167.2.62

200 OK

38 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/64768746.webp?k=0c33d15be1f0c9ebd0ede9b85565c3233ef836884a40d785dd6b36f9f0f50c04&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
38 kB (38138 bytes)
Hash
74d9ca68e4eb5c9610521e678adae662
e236f53ee588a09a1d33e4b493cba606c4edf270
c6cec7eadab66e64972babc93970b25a251c2b2a8b26a7da51fe86538c67f23a

HTTP Headers

GET /xdata/images/hotel/square600/64768746.webp?k=0c33d15be1f0c9ebd0ede9b85565c3233ef836884a40d785dd6b36f9f0f50c04&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Mon, 30 Jun 2025 17:07:30 GMT
content-language: 38138
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "761333a206a4ee59fbe49551fc473c1ab0f5b68b"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: sIK4a9CkISefN0vrHwYozAUcZFTfRuDpDGFCsq43O6iPLU7ll3QMZA==
age: 1504900
X-Firefox-Spdy: h2

POST d8c14d4960ca.edge.sdk.awswaf.com/d8c14d4960ca/a18a4859af9c/telemetry

3.167.2.48

200 OK

1.3 kB

URL POST
d8c14d4960ca.edge.sdk.awswaf.com/d8c14d4960ca/a18a4859af9c/telemetry
IP
3.167.2.48:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerAmazon
Subject*.edge.sdk.awswaf.com
Fingerprint17:81:C6:3C:64:8D:61:C0:C4:F8:67:F7:82:B9:6C:45:E6:6C:DF:9A
ValidityFri, 29 Nov 2024 00:00:00 GMT - Mon, 29 Dec 2025 23:59:59 GMT

File type
JSON text data
Size
1.3 kB (1305 bytes)
Hash
295d0e8b3f4dc498ad6a0103244459b0
d32046c04797d9701e8162f3d71bc76987c46748
85ce6725be83ba36319b0f61289cd441b6962ccd13c27da0629b23cde5bbde50

HTTP Headers

POST /d8c14d4960ca/a18a4859af9c/telemetry HTTP/1.1
Host: d8c14d4960ca.edge.sdk.awswaf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 2618
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json
date: Fri, 18 Jul 2025 03:09:15 GMT
expires: 0
x-amzn-waf-challenge-id: Root=1-6879badb-3d367f58339b07c6560b5664
access-control-max-age: 86400
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,GET,POST
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
content-encoding: gzip
vary: accept-encoding
x-cache: Miss from cloudfront
via: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: BkIctH62LioBKc4MfVcwfzF_ghIMYNX32VxWK4gJCYlFwXZ3NXiHlA==
X-Firefox-Spdy: h2

OPTIONS play.google.com/log?format=json&hasfast=true&authuser=0

142.250.74.142

200 OK

0 B

URL OPTIONS
play.google.com/log?format=json&hasfast=true&authuser=0
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://accounts.google.com/gsi/iframe/select?client_id=901905703382-m88jn1h9ll89odkt6t5muc6h7ep83rlh.apps.googleusercontent.com&auto_select=false&ux_mode=popup&ui_mode=card&context=signin&nonce=6615974505406946&as=2N5lVsStsvHkI26Qfu6v5VtZB_SK-Tl393C9uo-SBS4&is_itp=true&channel_id=a111a2893d72e0dc740011fa52eba806f3160f286a0144ca5f44bcff00a666d5&origin=https%3A%2F%2Fwww.booking.com&oauth2_auth_url=https%3A%2F%2Faccounts.google.com%2Fo%2Foauth2%2Fv2%2Fauth
Certificate
IssuerGoogle Trust Services
Subject*.google.com
FingerprintB9:AB:CF:25:07:76:A5:52:8A:C6:4E:00:9A:A3:2B:D3:B6:32:A6:32
ValidityMon, 23 Jun 2025 08:40:16 GMT - Mon, 15 Sep 2025 08:40:15 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Origin: https://accounts.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cross-origin-opener-policy-report-only: same-origin; report-to=coop_reporting
report-to: {"group":"clearcut-frontend-http-prod-hiqos","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/httpsserver2/clearcut-frontend-http-prod-hiqos"}]}
content-security-policy-report-only: script-src 'none';form-action 'none';frame-src 'none'; report-uri https://csp.withgoogle.com/csp/httpsserver2/clearcut-frontend-http-prod-hiqos
access-control-allow-origin: https://accounts.google.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Fri, 18 Jul 2025 03:09:22 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/7e8161ba.6fd9295f.chunk.js

3.167.2.62

200 OK

108 kB

URL GET
cf.bstatic.com/psb/capla/static/js/7e8161ba.6fd9295f.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65455)
Size
108 kB (107821 bytes)
Hash
9f22d460ebcb5ae7111f32a1c93dd22c
487844d96034d3ff2ea57b3159dd3287fbe98fc4
25fd9e902dda64197fb935a6d65a789cc331adcde5e24e9a480368a796d13706

HTTP Headers

GET /psb/capla/static/js/7e8161ba.6fd9295f.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Wed, 09 Jul 2025 07:45:35 GMT
last-modified: Tue, 08 Jul 2025 11:52:05 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: ee7a2818f40935a73325c6f121ac48cbff1d0976
x-amz-version-id: r8jbCNUXT11TYwGcFT.n1.lNP6YTtNOL
server: AmazonS3
etag: W/"9f22d460ebcb5ae7111f32a1c93dd22c"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: uDZ7AF2pyXDs52qQzfmCCwExAoa1dZG37J1ukF7U0ubbDcAJmf1pzw==
age: 761010
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/remoteEntry.1c54f543.client.js

3.167.2.62

200 OK

19 kB

URL GET
cf.bstatic.com/psb/capla/static/js/remoteEntry.1c54f543.client.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (19083)
Size
19 kB (19199 bytes)
Hash
3be8845ac7c1af5d942dd2f496af74bb
1d669791483879d6947fffd11cc183f19a716fbf
cee78b75d24657c60c6ff8c291ae90623fa55f1ab01bb084886d7a52c421ec0e

HTTP Headers

GET /psb/capla/static/js/remoteEntry.1c54f543.client.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Wed, 16 Jul 2025 08:09:40 GMT
last-modified: Wed, 16 Jul 2025 07:45:26 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: ae98d30ad443c47b93c9585236b47e24ecdcf1e7
x-amz-version-id: p42xw1ad8b7D0F_el_nMTstBITSPmjfx
server: AmazonS3
etag: W/"3be8845ac7c1af5d942dd2f496af74bb"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: V59iJ3bmyi4lzLUOv48xypCjU58v8X7RekREOjpCMvXMsx1UGy88VQ==
age: 154765
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET q-xx.bstatic.com/xdata/images/city/170x136/644293.jpg?k=24c08396bd44343c9dcc78f0df41e114bf7e6aeda3d339101c37e7ba3aa707db&o=

3.167.2.62

0 B

URL GET
q-xx.bstatic.com/xdata/images/city/170x136/644293.jpg?k=24c08396bd44343c9dcc78f0df41e114bf7e6aeda3d339101c37e7ba3aa707db&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /xdata/images/city/170x136/644293.jpg?k=24c08396bd44343c9dcc78f0df41e114bf7e6aeda3d339101c37e7ba3aa707db&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

GET r-xx.bstatic.com/xdata/images/city/170x136/740935.jpg?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o=

3.167.2.62

200 OK

5.5 kB

URL GET
r-xx.bstatic.com/xdata/images/city/170x136/740935.jpg?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3
Size
5.5 kB (5506 bytes)
Hash
afd71fd06632ac473b4c251dffc12f63
e9d7fc8cf381fa446a6c32178db4de8c5eaf7262
c9a8fd71cb76919e8b749e4b4055810bb6f6ab84f1171d06bdd70b02893c95cb

HTTP Headers

GET /xdata/images/city/170x136/740935.jpg?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
content-length: 5506
server: nginx
date: Mon, 23 Jun 2025 06:59:06 GMT
content-language: 5506
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "f5b49c8fdf8a6456146164dfee48119609520783"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: ATJrhwCzQYxO19K0lpDDvGZYzKyyUwUDxiTYNwKrNlWhP78x5aTnMA==
age: 2146204
X-Firefox-Spdy: h2

POST d8c14d4960ca.edge.sdk.awswaf.com/d8c14d4960ca/a18a4859af9c/telemetry

3.167.2.48

200 OK

864 B

URL POST
d8c14d4960ca.edge.sdk.awswaf.com/d8c14d4960ca/a18a4859af9c/telemetry
IP
3.167.2.48:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerAmazon
Subject*.edge.sdk.awswaf.com
Fingerprint17:81:C6:3C:64:8D:61:C0:C4:F8:67:F7:82:B9:6C:45:E6:6C:DF:9A
ValidityFri, 29 Nov 2024 00:00:00 GMT - Mon, 29 Dec 2025 23:59:59 GMT

File type
JSON text data
Size
864 B (864 bytes)
Hash
620be8c7fb92ee167ce01f6cc3fff5ce
49ebd68dbd386a5659557aee792b4ac9e93adc05
bf1b88f9519f6a59746121bc4184451cd079cd69c5df765fb1814887aaa7c463

HTTP Headers

POST /d8c14d4960ca/a18a4859af9c/telemetry HTTP/1.1
Host: d8c14d4960ca.edge.sdk.awswaf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 1730
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json
content-length: 864
date: Fri, 18 Jul 2025 03:09:12 GMT
x-amzn-waf-challenge-id: Root=1-6879bad8-14006f3078a3961a7cd16429
access-control-max-age: 86400
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,GET,POST
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
x-cache: Miss from cloudfront
via: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 3BdbGZQgtjEnmTkgz6UU9hyikadf5bGu4o5atP4NC0pA1HdyVjIvmQ==
X-Firefox-Spdy: h2

54.240.174.43

200 OK

719 kB

URL User Request GET
www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
IP
54.240.174.43:443
ASN
#16509 AMAZON-02

Certificate
IssuerDigiCert Inc
Subject*.booking.com
Fingerprint40:C8:C7:99:E8:DF:B4:B7:80:45:6C:57:15:2A:09:28:16:A7:2B:BB
ValidityFri, 07 Mar 2025 00:00:00 GMT - Sat, 17 Jan 2026 23:59:59 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (12921)
Size
719 kB (718953 bytes)
Hash
9c857e5787de459a7ea8131684e6a780
f8aaa4dc17b146113289c7484b7e7815abda59b6
e1b233431ffd3bcb8eb6ef55abefa0f6ee5b83eddca2a8ff1b25e4ca3c1ca6ad

HTTP Headers

GET /index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056 HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
server: nginx
date: Fri, 18 Jul 2025 03:09:02 GMT
cache-control: private
vary: User-Agent, Accept-Encoding
content-encoding: br
link: <https://cf.bstatic.com/static/css/gprof_icons_cloudfront_sd.iq_ltr/308436ca26aacf6a7553e4c0cf298d0f780727a2.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/incentives_cloudfront_sd.iq_ltr/f1558a6e9832a4eb8cfe1d3d14db176bd3564335.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/index_cloudfront_sd.iq_ltr/019cff5858f85161567ce028a49b879cbb903c53.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/main_cloudfront_sd.iq_ltr/9198b87e4070e31551f78ef40e49eaffcfc04612.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/main_exps_cloudfront_sd.iq_ltr/b08056dddfe104d80d02a68b00266d52e048dd7b.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/sp_loyalty_cloudfront_sd.iq_ltr/dd928f5fca252ea917692255abd0593059d424ce.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/c56180a92478e4508d340cf2fdbe5dfbc98c99aa.css>; rel=preload; as=style
nel: {"max_age":604800,"report_to":"default","failure_fraction":0.1}
report-to: {"max_age":604800,"group":"default","endpoints":[{"url":"https://nellie.booking.com/report"}]}
set-cookie: _implmdnbl=2__1__0; path=/; expires=Sun, 19-Jul-2020 03:09:02 GMT; HttpOnly
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbbmD9q%2B5pe3Wdm0%2ByPGMsC1KujF5qCxhD8YztvAVkXTtTK0o2BJL7F%2Bm3G%2B0LUoeb7oHjlToVOeSl2nusn8juTZHyyu6%2FR9iuocOLfIsseh%2FgKV8BAd3zXuypAMgTO3s9O7%2BJaalVmnaHvhjhgEMcSuloTu1oNh%2FT; domain=.booking.com; path=/; expires=Wed, 17-Jul-2030 03:09:02 GMT; Secure; HTTPOnly; SameSite=None
pcm_personalization_disabled=0; domain=booking.com; path=/; expires=Wed, 14-Jan-2026 03:09:02 GMT; Secure; HTTPOnly
bkng_sso_auth=CAIQ0+WGHxpmrqlfCI/7cj7WenmOuL5QxSn4u0pk06cV4xlrrrhmJKAb1FesYuKumLV4pSqW60W2NnCfEB+Pr3GDZ3i/aG465ACIGtpwXlBI9XDqnlhOkhTT7xUttessFF0wXrOKUtvFXd/bRD8o; Domain=.booking.com; Path=/; Expires=Sun, 18 Jul 2027 03:09:02 GMT; HttpOnly; Secure; SameSite=Lax
pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3De1046c70-f5fb-4ace-8c3b-1dcf67343057%26consentedAt%3D2025-07-18T03%3A09%3A02.576Z%26expiresAt%3D2026-01-14T03%3A09%3A02.576Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; Domain=.booking.com; Path=/; Expires=Sat, 18 Jul 2026 03:09:02 GMT; HttpOnly; Secure; SameSite=Lax
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PA3JBbbumfBBxyzcngG4Mh3P8CcsjRK2jkbuno21mvfc7FbOXaqJIA==
server-timing: cdn-upstream-layer;desc="REC",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=1,cdn-upstream-fbl;dur=210,cdn-cache-miss,cdn-pop;desc="OSL50-P1",cdn-rid;desc="PA3JBbbumfBBxyzcngG4Mh3P8CcsjRK2jkbuno21mvfc7FbOXaqJIA==",cdn-downstream-fbl;dur=249
X-Firefox-Spdy: h2

GET cf.bstatic.com/static/js/raf_cloudfront_sd/3aa797c9467ab4f264a93a2592ff861d6cbc58e4.js

3.167.2.62

200 OK

129 kB

URL GET
cf.bstatic.com/static/js/raf_cloudfront_sd/3aa797c9467ab4f264a93a2592ff861d6cbc58e4.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
129 kB (129190 bytes)
Hash
1be58ec9a7bc59a5168b069bed63a239
03f3132c9be7d89d1b64e47ba50f3972507572d5
174573278669a4d766df05df4ef0529e94677b3a36be8664b9683701056c0f94

HTTP Headers

GET /static/js/raf_cloudfront_sd/3aa797c9467ab4f264a93a2592ff861d6cbc58e4.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
date: Fri, 18 Jul 2025 00:08:34 GMT
last-modified: Mon, 14 Apr 2025 14:51:39 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=604800
x-amz-version-id: nU_YVPkBoc0R7o90W9cU5ocAmFSYMbGQ
server: AmazonS3
etag: W/"1be58ec9a7bc59a5168b069bed63a239"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: TKBssXGqtJdyZ5y5W18xWv2cqvzv1P6EkOaoTcSGqJdVxXpaHG51gw==
age: 10831
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/31e40d2f.dd75dfd5.chunk.js

3.167.2.62

200 OK

24 kB

URL GET
cf.bstatic.com/psb/capla/static/js/31e40d2f.dd75dfd5.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (23665)
Size
24 kB (23858 bytes)
Hash
a807e00048114fc32d69184fc88a168c
d5c31ba4ba3b14476a9b8ba33c8310704027be0c
2e8508d9661724faf6a6ae97f841f31f0bc26d37a8180793e13a0bc1f08c8141

HTTP Headers

GET /psb/capla/static/js/31e40d2f.dd75dfd5.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Mon, 30 Jun 2025 08:25:49 GMT
last-modified: Thu, 26 Jun 2025 12:34:33 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 3d084c2f53f1d8e9deb7ecadb5d0b5adea6e9e28
x-amz-version-id: SopbYy8Icrkio4Qm7dxzaWf5aNsgxdiy
server: AmazonS3
etag: W/"a807e00048114fc32d69184fc88a168c"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: gN1yPaAz9hMZKWnWE_Y-0bhxA-fgTJklgZaKijNiHI5qJtn0vWnR0g==
age: 1536196
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

POST www.booking.com/c360/v1/track

54.240.174.43

200 OK

53 B

URL POST
www.booking.com/c360/v1/track
IP
54.240.174.43:443
ASN
#16509 AMAZON-02

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.booking.com
Fingerprint40:C8:C7:99:E8:DF:B4:B7:80:45:6C:57:15:2A:09:28:16:A7:2B:BB
ValidityFri, 07 Mar 2025 00:00:00 GMT - Sat, 17 Jan 2026 23:59:59 GMT

File type
JSON text data
Size
53 B (53 bytes)
Hash
7c9d390a8ad9692afba1d983a5736741
59e10719a3fbd9b0e998501c1260dfa4811c8dee
768a6373d9873fd076c5fe442db114796706ed2c3c00ecaf085f883bc619fd74

HTTP Headers

POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-Type: application/json
X-Booking-Platform: www
X-Booking-SiteType-Id: 1
X-Booking-Pageview-Id: c9c216276d7902f0
X-Booking-Session-Id: undefined
X-Booking-ET-Seed: undefined
X-Booking-AID: 818288
X-Booking-Label: undefined
X-Booking-CSRF: undefined
X-Booking-Language-Code: en-us
Content-Length: 2284
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbof7CEiNviT8zZA8jwhxupeKx44DWt6P1pgEGl2ZJhlZ2Dsfgp6sNP0qRTJ0opibPH%2FnfbOWCxjAsVER%2F1TnNzcRnWL2wxy2yFTJBwgil8AC5aD5FhVN87PHSEFad8U%2Bnf0IzZvBOD%2BrSbLjqit7sZQCe%2FL5WOs3q23Lo5nNZMuE%3D; pcm_personalization_disabled=0; bkng_sso_auth=CAIQ0+WGHxpmrqlfCI/7cj7WenmOuL5QxSn4u0pk06cV4xlrrrhmJKAb1FesYuKumLV4pSqW60W2NnCfEB+Pr3GDZ3i/aG465ACIGtpwXlBI9XDqnlhOkhTT7xUttessFF0wXrOKUtvFXd/bRD8o; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3De1046c70-f5fb-4ace-8c3b-1dcf67343057%26consentedAt%3D2025-07-18T03%3A09%3A02.576Z%26expiresAt%3D2026-01-14T03%3A09%3A02.576Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; cors_js=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 47
server: nginx
date: Fri, 18 Jul 2025 03:09:09 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
content-security-policy: default-src 'self'; frame-ancestors https://*.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPeeLHyfVKoNNZKVjtpTbeMmYVj066RceP0Ajb7deEMk%2FCrDT43VhmJgl%2B8%2FHIisMZ5L6hqOOsrKx2jkPuSRNgYj2jQm3x69xgrX0hJax55nvVJ01Vu3SdCST85gbcNH6RVOMLKWj%2B%2F44uq29gc5HIi49S%2Bkwv%2F5rY20%3D; domain=.booking.com; path=/; expires=Wed, 17-Jul-2030 03:09:09 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: FlyPccO9e3WbIlUqrpQQC0JsQQ3SForvAF6eoi2USj5tPnaZYzVwhQ==
server-timing: cdn-upstream-layer;desc="REC",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=61,cdn-cache-miss,cdn-pop;desc="OSL50-P1",cdn-rid;desc="FlyPccO9e3WbIlUqrpQQC0JsQQ3SForvAF6eoi2USj5tPnaZYzVwhQ==",cdn-downstream-fbl;dur=102
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/236840535.webp?k=bf4b6a261b5f401ca2218952b2f3aa009b22da5b315c8e22d6b69954a960c938&o=

3.167.2.62

200 OK

48 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/236840535.webp?k=bf4b6a261b5f401ca2218952b2f3aa009b22da5b315c8e22d6b69954a960c938&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
48 kB (47568 bytes)
Hash
087e4e57629ba6ff0fcd25d489325afe
ac969e0ba85a27b702e390dfcb3793e79ce18769
b7cb9d6687db9899d87cabd637ff09bd584e8fe6ace312db97ecad71a4797b0a

HTTP Headers

GET /xdata/images/hotel/square600/236840535.webp?k=bf4b6a261b5f401ca2218952b2f3aa009b22da5b315c8e22d6b69954a960c938&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Tue, 15 Jul 2025 10:31:42 GMT
content-language: 47568
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "a5daadb32f74855a26ee43e544cdbb96658a7a3e"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: zOA8DSeBrMj0jTQx903ZJpZpvEjx0QujtHPHA9JT9M6Lf7bUkjQMAA==
age: 232648
X-Firefox-Spdy: h2

GET accounts.google.com/gsi/style

142.250.147.84

200 OK

719 B

URL GET
accounts.google.com/gsi/style
IP
142.250.147.84:443
ASN
#15169 GOOGLE

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerGoogle Trust Services
Subject*.google.com
FingerprintB9:AB:CF:25:07:76:A5:52:8A:C6:4E:00:9A:A3:2B:D3:B6:32:A6:32
ValidityMon, 23 Jun 2025 08:40:16 GMT - Mon, 15 Sep 2025 08:40:15 GMT

File type
ASCII text, with very long lines (719), with no line terminators
Size
719 B (719 bytes)
Hash
fa096f673da30f4376837855ae5571e0
fefa42a00b477dfd1c53e15c0629d4425d2a5c88
0e0cd6f15de1d56e6ec8035f3d8b613e4d439e9960db744ddff94a308b77eada

HTTP Headers

GET /gsi/style HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/css; charset=utf-8
expires: Fri, 18 Jul 2025 03:09:11 GMT
date: Fri, 18 Jul 2025 03:09:11 GMT
cache-control: private, max-age=86400
content-security-policy: script-src 'nonce-qAsDRcE_g-quCfaRj10nuA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
cross-origin-resource-policy: cross-origin
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET cf.bstatic.com/xdata/images/hotel/square600/547233345.webp?k=28837d4d06d6fff027d44308a9abb7e7071d41ed4cf3ace0945f4c16e416c5bf&o=

3.167.2.62

200 OK

21 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/547233345.webp?k=28837d4d06d6fff027d44308a9abb7e7071d41ed4cf3ace0945f4c16e416c5bf&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
21 kB (21050 bytes)
Hash
e9b0c64238aa72c2d9adf8313bd79f16
0ecd0ecdeb304821206b17ccbff2c82c0bdb5622
862ec622d407e0157cbfb2fc782b74011f9a9af6c6623701160a6b68ed8e38a7

HTTP Headers

GET /xdata/images/hotel/square600/547233345.webp?k=28837d4d06d6fff027d44308a9abb7e7071d41ed4cf3ace0945f4c16e416c5bf&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Fri, 04 Jul 2025 13:16:57 GMT
content-language: 21050
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "cfcc5967487314d852582ae7ac07c12419b1f294"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: x89EmAfQvZ0XryI4oQ-dnzifOl_ImyyH0hjTdY1imkoT3mPc60hrRg==
age: 1173133
X-Firefox-Spdy: h2

GET cdn.cookielaw.org/scripttemplates/202501.2.0/assets/otFlat.json

104.18.87.42

200 OK

14 kB

URL GET
cdn.cookielaw.org/scripttemplates/202501.2.0/assets/otFlat.json
IP
104.18.87.42:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerGoogle Trust Services
Subjectcookielaw.org
FingerprintB4:92:0F:A3:FA:B1:B1:FE:2F:D7:62:60:14:C4:53:0B:E2:32:32:BA
ValidityWed, 04 Jun 2025 20:29:38 GMT - Tue, 02 Sep 2025 21:29:37 GMT

File type
JSON text data
Size
14 kB (13554 bytes)
Hash
22105a4437bd05d90126f77308004605
51000b4b4d7e748747b68aeb7aeacfb9c725b4dd
4ef5c9f729507280bfdfb7c902d2be505e3667d93698c68f4b983ca8debb3090

HTTP Headers

GET /scripttemplates/202501.2.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 18 Jul 2025 03:09:11 GMT
content-type: application/json
content-length: 3001
content-encoding: gzip
content-md5: FrAMR0IEUuZ/ogUm20L6lQ==
last-modified: Fri, 04 Apr 2025 09:20:27 GMT
etag: 0x8DD7359F013061F
x-ms-request-id: fdaf599b-301e-00ae-6b0a-e2b0e7000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 73725
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: cloudflare
cf-ray: 960ec760189d0b49-OSL
X-Firefox-Spdy: h2

GET cf.bstatic.com/static/js/index_cloudfront_sd/5f57b7b9748cbb3c3b4df95d89bb375cc24ceb66.js

3.167.2.62

200 OK

25 kB

URL GET
cf.bstatic.com/static/js/index_cloudfront_sd/5f57b7b9748cbb3c3b4df95d89bb375cc24ceb66.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (25124), with no line terminators
Size
25 kB (25124 bytes)
Hash
8f03a17617eb3a330d5f375d0fe804bc
5db95e0788330f1f09bb4a74fa6fa7013a90acfb
bd46b8bfa62e7004de41fb36a5331eb8130b764e712e70846c5723122b6a1b88

HTTP Headers

GET /static/js/index_cloudfront_sd/5f57b7b9748cbb3c3b4df95d89bb375cc24ceb66.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
date: Thu, 17 Jul 2025 12:56:16 GMT
last-modified: Wed, 16 Jul 2025 08:37:10 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=604800
x-amz-version-id: IfaaGHbHnHemlR7YZojZ4EWWEPKBkoZF
server: AmazonS3
etag: W/"8f03a17617eb3a330d5f375d0fe804bc"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: k-yJdfjR0OISNWUVjIdzcmnDF8sTN_osFUzBbVdJ-Fm1z-9AEXj7pQ==
age: 51168
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/cf2b0303.8d9f24f5.chunk.js

3.167.2.62

200 OK

37 kB

URL GET
cf.bstatic.com/psb/capla/static/js/cf2b0303.8d9f24f5.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (36707)
Size
37 kB (36819 bytes)
Hash
0bf70e624c4404cc9e89dbd01d2c5521
2d2569b22d7521d7d1e3ecb27d920bd64becdd8c
3c210221e38613f9b028aacf8f2299c2f472b6d4aaabb65ac2338141d4b0c9f1

HTTP Headers

GET /psb/capla/static/js/cf2b0303.8d9f24f5.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Tue, 15 Jul 2025 13:28:57 GMT
last-modified: Tue, 15 Jul 2025 07:45:34 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: dc007423c1c3d334ee9579a86344a07d02da168b
x-amz-version-id: zKe7EMnd4OvHeaNOHxLV5Rtal.i7KmCD
server: AmazonS3
etag: W/"0bf70e624c4404cc9e89dbd01d2c5521"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: S-QHPf1HPb9kPgsqwS6TT8rFcYqpK0URlTm4wKXSGZ1d5W3ltUTIEw==
age: 222008
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/remoteEntry.d6929028.client.js

3.167.2.62

200 OK

20 kB

URL GET
cf.bstatic.com/psb/capla/static/js/remoteEntry.d6929028.client.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (20193)
Size
20 kB (20309 bytes)
Hash
f00403bf2f7cb5327e73f11376b43d2e
aeb0e3a6111c7e0ecae5841a6732ce88de37d6c7
b06c502d588c3ebe6dd001d93662c1d6c9947f9a5d2a16437f7b73a20aac5556

HTTP Headers

GET /psb/capla/static/js/remoteEntry.d6929028.client.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Mon, 07 Jul 2025 17:19:25 GMT
last-modified: Mon, 07 Jul 2025 13:09:11 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 064c1660b0f23beb7b9d603a2eb1d9f5859e510f
x-amz-version-id: lxlc3mm1dnIOGe0w8upI7I4VmGX8Tp65
server: AmazonS3
etag: W/"f00403bf2f7cb5327e73f11376b43d2e"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: ezIcFj7susy90_Px5LRjbp7mnQqmWxYRDYx0axh1BJjPIw6cdSz2Fw==
age: 899380
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/8067d7e4.215ec6e0.chunk.js

3.167.2.62

200 OK

84 kB

URL GET
cf.bstatic.com/psb/capla/static/js/8067d7e4.215ec6e0.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65455)
Size
84 kB (83976 bytes)
Hash
d93f078bf914942677f936d13e832b52
e641cb2b5693813a2767aeda1c662f0171104419
6f5492c13db75a294aee1ff28e55e4bb211e2c6504abaf37eb45b86f52eb60dd

HTTP Headers

GET /psb/capla/static/js/8067d7e4.215ec6e0.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Mon, 07 Jul 2025 17:19:35 GMT
last-modified: Mon, 07 Jul 2025 13:05:12 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: add3b00aa711891475f6213c75cfaad888f19d1d
x-amz-version-id: ZvMM41ksVLsRxb5fQ9hh_oTZjzOg22Yr
server: AmazonS3
etag: W/"d93f078bf914942677f936d13e832b52"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: Y20lAYVvLHuN4yKFWv2XWtr2S0rbvtc_WFwkVy9ctrgSeWeAL046mA==
age: 899370
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET q-xx.bstatic.com/xdata/images/city/170x136/737551.jpg?k=ad4ef19a2b979ef794b56d1901e6937b874b4726a4085d8ddbe795f5c6bfed73&o=

3.167.2.62

200 OK

6.2 kB

URL GET
q-xx.bstatic.com/xdata/images/city/170x136/737551.jpg?k=ad4ef19a2b979ef794b56d1901e6937b874b4726a4085d8ddbe795f5c6bfed73&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x136, components 3
Size
6.2 kB (6204 bytes)
Hash
033e02e916d5f3791fb0edcde629ef86
d5cc83fc9698814ff92bf752ac0cbb004439f614
1815ead7ea4f562bb51ec2e39ee38db0e120120d1f8b98096dc60583c493e4d4

HTTP Headers

GET /xdata/images/city/170x136/737551.jpg?k=ad4ef19a2b979ef794b56d1901e6937b874b4726a4085d8ddbe795f5c6bfed73&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
content-length: 6204
server: nginx
date: Wed, 18 Jun 2025 19:27:29 GMT
content-language: 6204
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "695c818f24fef509fad771a67c8002e1622b09f9"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: KTCxh61Y6_Yhlm9AgeP9B8G0xqEkywQ9L5MYJXK7SH7B8gJwLUxvgA==
age: 2533301
X-Firefox-Spdy: h2

GET accounts.google.com/gsi/client

142.250.147.84

200 OK

242 kB

URL GET
accounts.google.com/gsi/client
IP
142.250.147.84:443
ASN
#15169 GOOGLE

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerGoogle Trust Services
Subjectaccounts.google.com
Fingerprint15:3C:A5:EB:88:20:49:7C:8B:43:37:D0:94:67:48:E3:A9:C4:CB:41
ValidityMon, 23 Jun 2025 08:42:16 GMT - Mon, 15 Sep 2025 08:42:15 GMT

File type
JavaScript source, ASCII text, with very long lines (2261)
Size
242 kB (241552 bytes)
Hash
9fa589037efbceca117bc4ec1d726160
73d319f1faf7bdbec51c5352a2e11558e79bc65f
969de3f5929e33b9ac21d1512c45950efbcfae5e9a1ed33b1f2f15c4eab5a791

HTTP Headers

GET /gsi/client HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
expires: Fri, 18 Jul 2025 03:09:10 GMT
date: Fri, 18 Jul 2025 03:09:10 GMT
cache-control: private, max-age=1800
cross-origin-resource-policy: cross-origin
content-security-policy: script-src 'nonce-eWw3XSkN38Dty3DIWr3jvw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

POST d8c14d4960ca.edge.sdk.awswaf.com/d8c14d4960ca/a18a4859af9c/verify

3.167.2.48

200 OK

296 B

URL POST
d8c14d4960ca.edge.sdk.awswaf.com/d8c14d4960ca/a18a4859af9c/verify
IP
3.167.2.48:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerAmazon
Subject*.edge.sdk.awswaf.com
Fingerprint17:81:C6:3C:64:8D:61:C0:C4:F8:67:F7:82:B9:6C:45:E6:6C:DF:9A
ValidityFri, 29 Nov 2024 00:00:00 GMT - Mon, 29 Dec 2025 23:59:59 GMT

File type
JSON text data
Size
296 B (296 bytes)
Hash
8a824ce8530af141e11f56cd03d92f0e
70b08c8ab3b08739a87324f2f62a933a33fb15e6
2e8750a263aeed7b6c87691856717775bf268e6e69aa7bff1b39a5849756ad51

HTTP Headers

POST /d8c14d4960ca/a18a4859af9c/verify HTTP/1.1
Host: d8c14d4960ca.edge.sdk.awswaf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 8643
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json
content-length: 296
date: Fri, 18 Jul 2025 03:09:11 GMT
x-amzn-waf-challenge-id: Root=1-6879bad7-7052bac86433011a179cd0db
access-control-max-age: 86400
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,GET,POST
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
x-cache: Miss from cloudfront
via: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: fPvhtfUpRWpeD46e8bpdrLbOSaMM13Jc_DLNhzkU8-20Vep3Ctn3fA==
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/15e0ade9.52853ac5.chunk.js

3.167.2.62

200 OK

1.2 MB

URL GET
cf.bstatic.com/psb/capla/static/js/15e0ade9.52853ac5.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65455)
Size
1.2 MB (1225193 bytes)
Hash
d963a0796b933b7f363ba3077c0b56a1
5b1c80eee7cac5a95e021d05163dd1bdedfcd913
9031ccc7ddea29ea46704f08e7486b928ada83eb914124f99813e88794fb13a6

HTTP Headers

GET /psb/capla/static/js/15e0ade9.52853ac5.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Thu, 17 Jul 2025 14:12:04 GMT
last-modified: Thu, 17 Jul 2025 13:37:56 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: e829eaea6cb5b2d54f4c2f4114f48aed7ed0efe0
x-amz-version-id: TWevZbduEEzMd6HNbJT.KjXIAl5TOabX
server: AmazonS3
etag: W/"d963a0796b933b7f363ba3077c0b56a1"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: mU7AWC2qEI5qMhVwqLSff_ndsdYN0DBpMMtu-AbkNyvyZ8j2F4eENQ==
age: 46621
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/static/js/atlas_cloudfront_sd/ed3c4c1b930b70d5167fcfbf6e3aaa28a793fe5e.js

3.167.2.62

200 OK

121 kB

URL GET
cf.bstatic.com/static/js/atlas_cloudfront_sd/ed3c4c1b930b70d5167fcfbf6e3aaa28a793fe5e.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
121 kB (120552 bytes)
Hash
1cad740e9521418323f22ccc90cc1443
6f37f59a15038d5edd81495a8834d720030ddb2d
043e3baf9520777ded9746e6102ca28364f076d637a6ecc813d1614c7f4b7458

HTTP Headers

GET /static/js/atlas_cloudfront_sd/ed3c4c1b930b70d5167fcfbf6e3aaa28a793fe5e.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 14 Apr 2025 14:51:08 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
x-amz-version-id: Cy287O_XE9UVYPPgQuahgwe2SuennXMe
server: AmazonS3
date: Thu, 17 Jul 2025 21:13:36 GMT
cache-control: public,max-age=604800
etag: W/"1cad740e9521418323f22ccc90cc1443"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: CdDLtUe536eIfTlMoNUKX6LAc7u1N25Lhhbs1DMJyiWbHK123Gd2Yg==
age: 21333
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET www.booking.com/logo?ver=1&sid=158014cf79b6a1df56562bf0568880d0&t=17528081421

54.240.174.43

200 OK

12 B

URL GET
www.booking.com/logo?ver=1&sid=158014cf79b6a1df56562bf0568880d0&t=17528081421
IP
54.240.174.43:443
ASN
#16509 AMAZON-02

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.booking.com
Fingerprint40:C8:C7:99:E8:DF:B4:B7:80:45:6C:57:15:2A:09:28:16:A7:2B:BB
ValidityFri, 07 Mar 2025 00:00:00 GMT - Sat, 17 Jan 2026 23:59:59 GMT

File type
GIF image data, version 89a, 1 x 1
Size
12 B (12 bytes)
Hash
45e0d10a08ad25f44cb9c2b6e732858c
8e47bb27521f644194d8d6ed92c22513a68715d9
4c55d6d27f3d4503e15ce98f4e4cccc15a49ecc0445a3a0996578437f7ab701f

HTTP Headers

GET /logo?ver=1&sid=158014cf79b6a1df56562bf0568880d0&t=17528081421 HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbbmD9q%2B5pe3Wdm0%2ByPGMsC1KujF5qCxhD8YztvAVkXTtTK0o2BJL7F%2Bm3G%2B0LUoeb7oHjlToVOeSl2nusn8juTZHyyu6%2FR9iuocOLfIsseh%2FgKV8BAd3zXuypAMgTO3s9O7%2BJaalVmnaHvhjhgEMcSuloTu1oNh%2FT; pcm_personalization_disabled=0; bkng_sso_auth=CAIQ0+WGHxpmrqlfCI/7cj7WenmOuL5QxSn4u0pk06cV4xlrrrhmJKAb1FesYuKumLV4pSqW60W2NnCfEB+Pr3GDZ3i/aG465ACIGtpwXlBI9XDqnlhOkhTT7xUttessFF0wXrOKUtvFXd/bRD8o; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3De1046c70-f5fb-4ace-8c3b-1dcf67343057%26consentedAt%3D2025-07-18T03%3A09%3A02.576Z%26expiresAt%3D2026-01-14T03%3A09%3A02.576Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; cors_js=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/gif
content-length: 35
server: nginx
date: Fri, 18 Jul 2025 03:09:09 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
set-cookie: BJS=-; domain=booking.com; expires=Sat, 19-Jul-2025 03:09:09 GMT; Secure; HTTPOnly
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=6a7f162a3bdf012d&e=UmFuZG9tSVYkc2RlIyh9YbpBYTW1tHKzrFOeNnd0KINWXXBoZqkwIz55wMIuuyS5
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2B5wPNfGOobIpuP6nB8uGFylVzr_hvaED-qtGYo-eQiDQd2Z0op28g==
server-timing: cdn-upstream-layer;desc="REC",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=13,cdn-cache-miss,cdn-pop;desc="OSL50-P1",cdn-rid;desc="2B5wPNfGOobIpuP6nB8uGFylVzr_hvaED-qtGYo-eQiDQd2Z0op28g==",cdn-downstream-fbl;dur=90
X-Firefox-Spdy: h2

GET r-xx.bstatic.com/xdata/images/xphoto/263x210/57175023.jpeg?k=dc0319d4d64ded9ee4b0ddb162a2e80db7899300b7bf21b34506888895d74c79&o=

3.167.2.62

200 OK

14 kB

URL GET
r-xx.bstatic.com/xdata/images/xphoto/263x210/57175023.jpeg?k=dc0319d4d64ded9ee4b0ddb162a2e80db7899300b7bf21b34506888895d74c79&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3
Size
14 kB (13480 bytes)
Hash
838fddff0171ed1414657c25c01ecbbe
d5141d047b54962f9572d8647909b23bf971cb3b
b2d4d41198dc45e52894033452988cdfbec766e6d9c04089070db89033acc4bf

HTTP Headers

GET /xdata/images/xphoto/263x210/57175023.jpeg?k=dc0319d4d64ded9ee4b0ddb162a2e80db7899300b7bf21b34506888895d74c79&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Thu, 26 Jun 2025 14:27:11 GMT
content-language: 13480
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "e9c81ccefec3df0c3ad1dfa69d4de520dfc7eb38"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: Chb0HhHhPa-rWGdQ_zQyLOD9dhuJ2YnkcvW4GKCSSaUdu9Yi82oSig==
age: 1860118
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/154512398.webp?k=aad8b4bfdccafe08f89489bc51e5517e5cedae1b2c393f23ab1e262bbbb52d0b&o=

3.167.2.62

200 OK

75 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/154512398.webp?k=aad8b4bfdccafe08f89489bc51e5517e5cedae1b2c393f23ab1e262bbbb52d0b&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
75 kB (74776 bytes)
Hash
8e5babaefbf54dcadfe66e6a1807084c
240e90fde47abca4bf4070f0b66c4e4f55cb5042
74ccc1927bc3bb0e9f06420d96dc72eb1561aa1065d2a4b578e6846d64b69dfc

HTTP Headers

GET /xdata/images/hotel/square600/154512398.webp?k=aad8b4bfdccafe08f89489bc51e5517e5cedae1b2c393f23ab1e262bbbb52d0b&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Mon, 14 Jul 2025 11:14:28 GMT
content-language: 74776
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "3b9f0eba38c4500c062ed78e14224ee0eeec4f0f"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: zCj3o8fPkArMVKu0a8CkMYoZWOagjz81lcQNazsTRa9GoltNPW6Btw==
age: 316482
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square240/339637235.jpg?k=195015ccce06d4aa52759ecba6ce83df2fd1f948ba041e1a46212c3ad65cad98&o=

3.167.2.62

200 OK

15 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square240/339637235.jpg?k=195015ccce06d4aa52759ecba6ce83df2fd1f948ba041e1a46212c3ad65cad98&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x240, components 3
Size
15 kB (14848 bytes)
Hash
283d7696e0c712b52d7228d7d28eab37
fa2b8592230f26f50edbf1078462ac130a6762ee
be11ef15fe4386200c10c913d0cf6003e206de2b0f2122fd7d70e29409d44caa

HTTP Headers

GET /xdata/images/hotel/square240/339637235.jpg?k=195015ccce06d4aa52759ecba6ce83df2fd1f948ba041e1a46212c3ad65cad98&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Mon, 07 Jul 2025 12:22:37 GMT
content-language: 14848
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "12c3d5fc6124339adb587f7c6b902542333e5b13"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 8q0bw4d_VjJMvH13JWQLocbDO4tiyqcPZRPU0KMNTh90Yq3HCOKKgg==
age: 917193
X-Firefox-Spdy: h2

POST d8c14d4960ca.edge.sdk.awswaf.com/d8c14d4960ca/a18a4859af9c/telemetry

3.167.2.48

200 OK

1.6 kB

URL POST
d8c14d4960ca.edge.sdk.awswaf.com/d8c14d4960ca/a18a4859af9c/telemetry
IP
3.167.2.48:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerAmazon
Subject*.edge.sdk.awswaf.com
Fingerprint17:81:C6:3C:64:8D:61:C0:C4:F8:67:F7:82:B9:6C:45:E6:6C:DF:9A
ValidityFri, 29 Nov 2024 00:00:00 GMT - Mon, 29 Dec 2025 23:59:59 GMT

File type
JSON text data
Size
1.6 kB (1570 bytes)
Hash
9664befe2f4e2d0d45a89061dcda9524
6237fe9d0f0dd61d4ad8503a70c0e7d7e7eebf19
5e80784597f6664d58f06ccffd6c472e7e985c47dc719cfad24efca63a2f6bf2

HTTP Headers

POST /d8c14d4960ca/a18a4859af9c/telemetry HTTP/1.1
Host: d8c14d4960ca.edge.sdk.awswaf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 2882
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json
date: Fri, 18 Jul 2025 03:09:35 GMT
expires: 0
x-amzn-waf-challenge-id: Root=1-6879baef-4e39613d47cbfa2650bdab7f
access-control-max-age: 86400
access-control-allow-origin: *
access-control-allow-methods: OPTIONS,GET,POST
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
content-encoding: gzip
vary: accept-encoding
x-cache: Miss from cloudfront
via: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: J8LosWbdiuhgdDvSPNenBF_bqPbv8TwJW1dgV03SSY7HZCx38y2DEw==
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/3c29a897.0864e8af.chunk.js

3.167.2.62

200 OK

42 kB

URL GET
cf.bstatic.com/psb/capla/static/js/3c29a897.0864e8af.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (42054)
Size
42 kB (42247 bytes)
Hash
f2ebc0ea7600bf9a68d79fba2646a30c
4b964f6180f17acb86cc3671ee90252d317f92d1
46f9378671f596a2a1e7048fac2d8c1fcf70373b2cee5caffd2457b515bdc692

HTTP Headers

GET /psb/capla/static/js/3c29a897.0864e8af.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Mon, 14 Jul 2025 12:12:09 GMT
last-modified: Thu, 10 Jul 2025 08:36:41 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 5e05080700f909e51f5d38d053ad5927ae891059
x-amz-version-id: r__4Q90jHov9_K_fSIOF1xS6U2f5jVyP
server: AmazonS3
etag: W/"f2ebc0ea7600bf9a68d79fba2646a30c"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: -SIdW5eHIjfac0SAmNMUF7s1-GVhzzuYugz-vtmnwjWDofxIzuS7-A==
age: 313016
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/0d919837.20915694.chunk.js

3.167.2.62

200 OK

596 kB

URL GET
cf.bstatic.com/psb/capla/static/js/0d919837.20915694.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65455)
Size
596 kB (596423 bytes)
Hash
2c00104870ee708a9ce4bc88262cd08d
d3c5c86cd9356e132ce227affe72ebc76beaf539
d52d991e2952485c1212dcb58ab1d4e859ea9bacb72b17feb9cb1b4fb17cda99

HTTP Headers

GET /psb/capla/static/js/0d919837.20915694.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Wed, 16 Jul 2025 08:55:33 GMT
last-modified: Wed, 16 Jul 2025 08:47:48 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 5f2f87128fac05d3b6e7504b4c0dd37dbc6a663b
x-amz-version-id: GxTstnXvLEn0DJKLbvGu9uo4W8RKpo.4
server: AmazonS3
etag: W/"2c00104870ee708a9ce4bc88262cd08d"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: OUv0Q2Tg2z1WuesXVagYkELy9b6jPiq5QYgGn3US3PzRk7EEhfssCw==
age: 152012
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/remoteEntry.81a78d03.client.js

3.167.2.62

200 OK

23 kB

URL GET
cf.bstatic.com/psb/capla/static/js/remoteEntry.81a78d03.client.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (22480)
Size
23 kB (22596 bytes)
Hash
2f63eeb88e6b4169d89f4af21d4ab6f5
c3313c38ae53221c7e7473d8131af37bca861b8e
861db7a794450d58d34a844d8398301b1d50b41a914e6e275ab3c90e931e32df

HTTP Headers

GET /psb/capla/static/js/remoteEntry.81a78d03.client.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Mon, 30 Jun 2025 08:25:22 GMT
last-modified: Thu, 26 Jun 2025 13:24:11 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: a49862a8f705a46c903fedee00d08a04ac3af32d
x-amz-version-id: PVYrNVpeGJx8yxCEtD2ROdQdipjw4bDL
server: AmazonS3
etag: W/"2f63eeb88e6b4169d89f4af21d4ab6f5"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: zHyeHeQOPAHANfqW-4cAIQxUREzj1VE6ymUcXr0Gfg4VV3do8thcLg==
age: 1536223
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/c62ef267.8212baa3.chunk.js

3.167.2.62

200 OK

236 kB

URL GET
cf.bstatic.com/psb/capla/static/js/c62ef267.8212baa3.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65455)
Size
236 kB (235608 bytes)
Hash
9a2eb2fe29a1c5f6476572ac1b1f72b0
ddd16234de0524436d754c4261f93e1aa4a83aa7
29206a990d01a75d462db9f748726d3ed3505cadb1db88e0edf1adc8d620d7c6

HTTP Headers

GET /psb/capla/static/js/c62ef267.8212baa3.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Thu, 17 Jul 2025 14:13:06 GMT
last-modified: Thu, 17 Jul 2025 13:37:58 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: e829eaea6cb5b2d54f4c2f4114f48aed7ed0efe0
x-amz-version-id: 037LAu1crlejFu7q8lWqXrloWLu6FMx2
server: AmazonS3
etag: W/"9a2eb2fe29a1c5f6476572ac1b1f72b0"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: giRnyUoFhbOjscdaBvZ8JVR22aI16-2pnkkdjoexb_6uE7oSqMChtQ==
age: 46559
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/static/js/searchresults_cloudfront_sd/da33031be69c43f7262abc7ce56afeca15c08eb1.js

3.167.2.62

200 OK

200 kB

URL GET
cf.bstatic.com/static/js/searchresults_cloudfront_sd/da33031be69c43f7262abc7ce56afeca15c08eb1.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
Size
200 kB (199729 bytes)
Hash
26b5a9a7ee04b6c679dcd7ca542f20b1
e0d78154395962006dfb6f36b1909d49f1c7660f
dc528e658b7ac81206bb6a9dc68489639b87e50882ab3e0da4cd99db6756f461

HTTP Headers

GET /static/js/searchresults_cloudfront_sd/da33031be69c43f7262abc7ce56afeca15c08eb1.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
date: Thu, 17 Jul 2025 12:54:58 GMT
last-modified: Wed, 16 Jul 2025 08:37:13 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=604800
x-amz-version-id: Dn5Ps22VosiFPElt.5R0kn4EfakCxuXt
server: AmazonS3
etag: W/"26b5a9a7ee04b6c679dcd7ca542f20b1"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: iQ8xo6TER9RN2-f5eaWYtbLUy1WTKz9Md-GNepSYLi-ApVjGqgXfAQ==
age: 51251
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

54.240.174.43

200 OK

205 B

URL POST
www.booking.com/dml/graphql?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056&lang=en-us
IP
54.240.174.43:443
ASN
#16509 AMAZON-02

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.booking.com
Fingerprint40:C8:C7:99:E8:DF:B4:B7:80:45:6C:57:15:2A:09:28:16:A7:2B:BB
ValidityFri, 07 Mar 2025 00:00:00 GMT - Sat, 17 Jan 2026 23:59:59 GMT

File type
JSON text data
Size
205 B (205 bytes)
Hash
d7f1e09d82eeac2717898d8f5f3885f9
a79aa55a2821896b0df0081c7df24717c0cc6471
ffe792ccaeca7cb30fdd77416faf791f3c2c754da19378a7d6daddc9c188cfee

HTTP Headers

POST /dml/graphql?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056&lang=en-us HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
apollographql-client-name: b-index-lp-web-mfe_rust
apollographql-client-version: dRdeWbLD
content-type: application/json
x-booking-context-action: index
x-booking-context-action-name: index
x-booking-context-aid: 818288
x-booking-csrf-token: eyJhbGciOiJIUzUxMiJ9.eyJpc3MiOiJjb250ZXh0LWVucmljaG1lbnQtYXBpIiwic3ViIjoiY3NyZi10b2tlbiIsImlhdCI6MTc1MjgwODE0MiwiZXhwIjoxNzUyODk0NTQyfQ.xS11JNvmqKBXkVmuhkXG3t17-GUe1mh5o3pg4gYiiDXvogmseaA4OTwTBg1UmcoAOXOrKtOmXrztH07Zg8LiMg
x-booking-dml-cluster: rust
x-booking-et-serialized-state: EZC0me3pHIwv-yYtQGQUdHMaUQ3rRxsio5-cDr4cc3Ohkp_KG_12HWFDp-raNqwOx
x-booking-pageview-id: c9c216276d7902f0
x-booking-site-type-id: 1
x-booking-timeout-budget-ms: 1500
x-booking-timeout-ms: 1500
x-booking-topic: capla_browser_b-index-lp-web-mfe
x-envoy-expected-rq-timeout-ms: 1500
Content-Length: 2505
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbbmD9q%2B5pe3Wdm0%2ByPGMsC1KujF5qCxhD8YztvAVkXTtTK0o2BJL7F%2Bm3G%2B0LUoeb7oHjlToVOeSl2nusn8juTZHyyu6%2FR9iuocOLfIsseh%2FgKV8BAd3zXuypAMgTO3s9O7%2BJaalVmnaHvhjhgEMcSuloTu1oNh%2FT; pcm_personalization_disabled=0; bkng_sso_auth=CAIQ0+WGHxpmrqlfCI/7cj7WenmOuL5QxSn4u0pk06cV4xlrrrhmJKAb1FesYuKumLV4pSqW60W2NnCfEB+Pr3GDZ3i/aG465ACIGtpwXlBI9XDqnlhOkhTT7xUttessFF0wXrOKUtvFXd/bRD8o; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3De1046c70-f5fb-4ace-8c3b-1dcf67343057%26consentedAt%3D2025-07-18T03%3A09%3A02.576Z%26expiresAt%3D2026-01-14T03%3A09%3A02.576Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; cors_js=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 118
server: nginx
date: Fri, 18 Jul 2025 03:09:09 GMT
vary: User-Agent, Accept-Encoding
content-encoding: br
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbof7CEiNviT8zZA8jwhxupeKx44DWt6P1pgEGl2ZJhlZ2Dsfgp6sNP0qRTJ0opibPH%2FnfbOWCxjAsVER%2F1TnNzcRnWL2wxy2yFTJBwgil8AC5aD5FhVN87PHSEFad8U%2Bnf0IzZvBOD%2BrSbLjqit7sZQCe%2FL5WOs3q23Lo5nNZMuE%3D; domain=.booking.com; path=/; expires=Wed, 17-Jul-2030 03:09:09 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: g32ybptFxM-_Ujaj07U57JqixItNX_wwUB47OdMuZmCXIM-i_GvpoQ==
server-timing: cdn-upstream-layer;desc="REC",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=96,cdn-cache-miss,cdn-pop;desc="OSL50-P1",cdn-rid;desc="g32ybptFxM-_Ujaj07U57JqixItNX_wwUB47OdMuZmCXIM-i_GvpoQ==",cdn-downstream-fbl;dur=136
X-Firefox-Spdy: h2

GET www.booking.com/js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=c9c216276d7902f0&ete=&etg=&etcg=OAYRKHMdReLDEZRERXSBSLKMBdLOLOLMO|1&ets=OAYRKHMdReLDEZRERXSBSLKMBdLOLOLMO|9&etgwv=

54.240.174.43

200 OK

12 B

URL GET
www.booking.com/js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=c9c216276d7902f0&ete=&etg=&etcg=OAYRKHMdReLDEZRERXSBSLKMBdLOLOLMO|1&ets=OAYRKHMdReLDEZRERXSBSLKMBdLOLOLMO|9&etgwv=
IP
54.240.174.43:443
ASN
#16509 AMAZON-02

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.booking.com
Fingerprint40:C8:C7:99:E8:DF:B4:B7:80:45:6C:57:15:2A:09:28:16:A7:2B:BB
ValidityFri, 07 Mar 2025 00:00:00 GMT - Sat, 17 Jan 2026 23:59:59 GMT

File type
GIF image data, version 89a, 1 x 1
Size
12 B (12 bytes)
Hash
45e0d10a08ad25f44cb9c2b6e732858c
8e47bb27521f644194d8d6ed92c22513a68715d9
4c55d6d27f3d4503e15ce98f4e4cccc15a49ecc0445a3a0996578437f7ab701f

HTTP Headers

GET /js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=c9c216276d7902f0&ete=&etg=&etcg=OAYRKHMdReLDEZRERXSBSLKMBdLOLOLMO|1&ets=OAYRKHMdReLDEZRERXSBSLKMBdLOLOLMO|9&etgwv= HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
X-Booking-Info: 
X-Booking-Client-Info: 
X-Booking-Pageview-Id: c9c216276d7902f0
X-Booking-SiteType-Id: 1
X-Booking-Language-Code: en-us
X-Booking-AID: 818288
X-Booking-Session-Id: aeed92b9ea705988ecd6d3925c162904
X-Booking-ET-Serialized-State: EZC0me3pHIwv-yYtQGQUdHMaUQ3rRxsio5-cDr4cc3Ohkp_KG_12HWFDp-raNqwOx
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBK6LEtX6%2Blc%2Ban7PyPDfWLhOYG59nPKJ5sRvc6jbe983fZcH3%2FORP31B8mGbj9FoEKzvHvxOKBNJ5I94HLp6whafkm4qwzGb%2BaO8x%2BsTFxIBq4g4d3bDTnZg4kCPcH5kuRjN69HM10x8OzlpSlkMipY39hijNbPue0%3D; pcm_personalization_disabled=0; bkng_sso_auth=CAIQ0+WGHxpmrqlfCI/7cj7WenmOuL5QxSn4u0pk06cV4xlrrrhmJKAb1FesYuKumLV4pSqW60W2NnCfEB+Pr3GDZ3i/aG465ACIGtpwXlBI9XDqnlhOkhTT7xUttessFF0wXrOKUtvFXd/bRD8o; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3De1046c70-f5fb-4ace-8c3b-1dcf67343057%26consentedAt%3D2025-07-18T03%3A09%3A02.576Z%26expiresAt%3D2026-01-14T03%3A09%3A02.576Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; cors_js=1; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/gif
content-length: 35
server: nginx
date: Fri, 18 Jul 2025 03:09:10 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=c62b162b111404be&e=UmFuZG9tSVYkc2RlIyh9Yea92wm0yRUjnCBymoy8ejI4PErqgVd5OZgxPkniwLH47Tbtpv5Q2KQ
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nIb8Nnt2B4sTm3n_XRVXkjPaXLR1iHTFmgJjqW4znXywCEN9W6kT_Q==
server-timing: cdn-upstream-layer;desc="REC",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=1,cdn-upstream-fbl;dur=30,cdn-cache-miss,cdn-pop;desc="OSL50-P1",cdn-rid;desc="nIb8Nnt2B4sTm3n_XRVXkjPaXLR1iHTFmgJjqW4znXywCEN9W6kT_Q==",cdn-downstream-fbl;dur=76
X-Firefox-Spdy: h2

GET cf.bstatic.com/static/js/searchbox_cloudfront_sd/b3c5d3f7069cc96a4a9015a241a291577359e7af.js

3.167.2.62

200 OK

242 kB

URL GET
cf.bstatic.com/static/js/searchbox_cloudfront_sd/b3c5d3f7069cc96a4a9015a241a291577359e7af.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65528), with no line terminators
Size
242 kB (242348 bytes)
Hash
f7c48fab486521bdecbf5b8459b22945
8471fd891f031ebce95aa7b776065ff08cde2283
c0597cd41e0af56119efcde0cd61fb9ce9ceaa4a0f10bc3a0221732f9e41746c

HTTP Headers

GET /static/js/searchbox_cloudfront_sd/b3c5d3f7069cc96a4a9015a241a291577359e7af.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 14 Apr 2025 14:51:42 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
x-amz-version-id: HHr1jJXRI1hZejX3TkQZasoX6e2pEV9f
server: AmazonS3
date: Wed, 16 Jul 2025 14:21:21 GMT
cache-control: public,max-age=604800
etag: W/"f7c48fab486521bdecbf5b8459b22945"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 08QV_FAEBYY8gOHkGvkf4NKUsCGvrz7_dESfq40D9ha5vy6NXd7Ndg==
age: 132463
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/css/782ad794.a8aea0a6.chunk.css

3.167.2.62

200 OK

2.0 kB

URL GET
cf.bstatic.com/psb/capla/static/css/782ad794.a8aea0a6.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (806)
Size
2.0 kB (1977 bytes)
Hash
a1d860ead6228fb953cced57c4676dd2
428b6a2be080ea34f3dce65d12ed6449256be8ee
7ed783799eca92f9fcbc60164697b5c514e10172ef05ccc452c4fad879daf02b

HTTP Headers

GET /psb/capla/static/css/782ad794.a8aea0a6.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Wed, 25 Jun 2025 12:11:09 GMT
last-modified: Wed, 25 Jun 2025 09:25:17 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 57b817b0aefb688b29c175f8de15e5fbde3a8ba6
x-amz-version-id: llFbpZKo1YXWlONdkuWqcRK2Ll_ozpDb
server: AmazonS3
etag: W/"a1d860ead6228fb953cced57c4676dd2"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: CCY-w7xPHUZL6CaRAS5yHkrBJncla2nHbDaEJWrgkNhtSLbEFtHpWw==
age: 1954676
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/remoteEntry.16082731.client.js

3.167.2.62

200 OK

15 kB

URL GET
cf.bstatic.com/psb/capla/static/js/remoteEntry.16082731.client.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (15168)
Size
15 kB (15284 bytes)
Hash
7c4d2177e759bccb7f677f65edf7f809
bf3751ff50d572cb79d7eefc01cfd076b65ebf46
86643595af8f8b8db9c53f60c91d15e7d405b903587cca3a3fcb22652fa430d9

HTTP Headers

GET /psb/capla/static/js/remoteEntry.16082731.client.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Wed, 09 Jul 2025 09:27:39 GMT
last-modified: Wed, 09 Jul 2025 09:12:38 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 112df671bf4d12f203793f6711555c9421ff07bf
x-amz-version-id: EP6W..oQn46wB5G_UomdROQdHZHZ0k5V
server: AmazonS3
etag: W/"7c4d2177e759bccb7f677f65edf7f809"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: lJB7HSEjxwxPhPtj8vNOuxiJRBPh_ucGnuzr6adNZnJe9GZGBhp-mA==
age: 754886
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/0554763f.da01c661.chunk.js

3.167.2.62

200 OK

2.5 kB

URL GET
cf.bstatic.com/psb/capla/static/js/0554763f.da01c661.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (2427)
Size
2.5 kB (2539 bytes)
Hash
3900d355dee08b20c2c38d2dae0b57c1
43ab0dab65e474e85f428aeb7e063c0e3f3d8902
7386cb75edc380893a65de3a676128ca158bb27afe14e91b7f7d422404b4434b

HTTP Headers

GET /psb/capla/static/js/0554763f.da01c661.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Thu, 17 Jul 2025 14:12:04 GMT
last-modified: Wed, 16 Jul 2025 16:00:56 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 75f2989e4c756494607504d519d0d265808c5e29
x-amz-version-id: 6thZoFMx5clQsd.Zi_YTfZdyKOS2g_D7
server: AmazonS3
etag: W/"3900d355dee08b20c2c38d2dae0b57c1"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: h_5CFash-hWfAIJ9KVK_tnnjpjbXA4szGetmiqbqCE6kAGbvce-nUw==
age: 46621
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/media/bh_aw_cpg_main_image.b4347622.png

3.167.2.62

200 OK

62 kB

URL GET
cf.bstatic.com/psb/capla/static/media/bh_aw_cpg_main_image.b4347622.png
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
PNG image data, 714 x 471, 8-bit/color RGBA, non-interlaced
Size
62 kB (62401 bytes)
Hash
d8c78bb4aa47ab6ae3df9d9e2fd9501e
8c959e1da33c4eee451ef13e2cd0f8b2327b7f76
34643ff9ca4b3ea1209f72b31dfcf85c0d23a9d389766bd908eff7a8dfd51f8a

HTTP Headers

GET /psb/capla/static/media/bh_aw_cpg_main_image.b4347622.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 62401
date: Sat, 19 Apr 2025 03:37:20 GMT
last-modified: Fri, 18 Apr 2025 13:50:48 GMT
etag: "d8c78bb4aa47ab6ae3df9d9e2fd9501e"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 35ecd8fcef48023e9641a49b067004e65498a8da
x-amz-version-id: s7vJLINjWD3ZzX6FaKaJEzK4UGaq5kD9
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: k6dhPYY1AJtV8529tO4yuKXtj6yVyOO0W9HiMvt3xkTw8p_EsBZ1Mw==
age: 7774309
timing-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square240/480880968.jpg?k=5059a2b3b111494b799263d5de78e0e04cf40120a115704eb792f09daa4bfb25&o=

3.167.2.62

200 OK

9.5 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square240/480880968.jpg?k=5059a2b3b111494b799263d5de78e0e04cf40120a115704eb792f09daa4bfb25&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x240, components 3
Size
9.5 kB (9533 bytes)
Hash
009c090c229ac5fc8de5cd878a0fe384
618f3e183f8e70da398d5c2e629f2bf33051db8b
2c355c99fb01a47b58d740418f63487e301432047c8e2aef7144d6a78220935d

HTTP Headers

GET /xdata/images/hotel/square240/480880968.jpg?k=5059a2b3b111494b799263d5de78e0e04cf40120a115704eb792f09daa4bfb25&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Mon, 30 Jun 2025 10:05:22 GMT
etag: "e0d1d361bf11033690756c061fe7157fea370923"
content-language: 9533
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: ADcSsOguwkMygLREOUudyNwyOStdKlweggZqTyCL-DJJoDt9rdLDCA==
age: 1530228
X-Firefox-Spdy: h2

GET cf.bstatic.com/static/css/sp_loyalty_cloudfront_sd.iq_ltr/dd928f5fca252ea917692255abd0593059d424ce.css

3.167.2.62

200 OK

12 kB

URL GET
cf.bstatic.com/static/css/sp_loyalty_cloudfront_sd.iq_ltr/dd928f5fca252ea917692255abd0593059d424ce.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (11566), with no line terminators
Size
12 kB (11566 bytes)
Hash
a09d32f8b5ab5d3e042efc492a1188b7
356e987f22303abda784d2b3167cb26e8636fcf5
3fa412372c665a9f9ebe118a07b0aea284c13dc56d08911bb79ffb1c42b77eff

HTTP Headers

GET /static/css/sp_loyalty_cloudfront_sd.iq_ltr/dd928f5fca252ea917692255abd0593059d424ce.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 10 Jun 2025 13:16:57 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
x-amz-version-id: WqwosC2ltohIYrKEGrMPJoaklPraIiDp
server: AmazonS3
date: Tue, 15 Jul 2025 19:46:00 GMT
cache-control: public,max-age=604800
etag: W/"a09d32f8b5ab5d3e042efc492a1188b7"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: EU24swUOw9p391V35xe50ph0Xe895EbUbhGnJqjv13IEex-0DTI0tg==
age: 199384
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/css/76f450ac.e507a6a3.chunk.css

3.167.2.62

200 OK

3.3 kB

URL GET
cf.bstatic.com/psb/capla/static/css/76f450ac.e507a6a3.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (1683)
Size
3.3 kB (3263 bytes)
Hash
5e1e1e78cf85fd81569ad4205021c879
f27427104a540bb81f39eea44cb56297a6e00b4e
eb6a3443fddaf7ded8b3a3f1b3624b5c7c7ecff7802d3c786d5b09770943cdf0

HTTP Headers

GET /psb/capla/static/css/76f450ac.e507a6a3.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Mon, 30 Jun 2025 12:57:10 GMT
last-modified: Fri, 27 Jun 2025 09:50:25 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 9f8b1781ca048569f64f916c688455a857d29f35
x-amz-version-id: njRuf6TNHJa_jFJ0VIuSl7E41EvKbOdn
server: AmazonS3
etag: W/"5e1e1e78cf85fd81569ad4205021c879"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 5-m_NyCPsya3X6ICsIWcstqSVsY1A5uqImrc7Ux7H_ftN-G1zZRXsQ==
age: 1519915
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/remoteEntry.573e5c0f.client.js

3.167.2.62

200 OK

25 kB

URL GET
cf.bstatic.com/psb/capla/static/js/remoteEntry.573e5c0f.client.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (24992)
Size
25 kB (25108 bytes)
Hash
adea3a0638f92192de4de45387c9fd74
0650e26e72682950e452ab19e92cc2566e50f8b7
7a1c1dd0bd79f7fbca0169b49d40257aafbcfa9e89e47c2133df6f60f14d8562

HTTP Headers

GET /psb/capla/static/js/remoteEntry.573e5c0f.client.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Wed, 16 Jul 2025 08:55:14 GMT
last-modified: Wed, 16 Jul 2025 08:47:48 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 5f2f87128fac05d3b6e7504b4c0dd37dbc6a663b
x-amz-version-id: _oqx8Q44oKxPC5D4xOfD_hXnFQk4m_8N
server: AmazonS3
etag: W/"adea3a0638f92192de4de45387c9fd74"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: THxKatikx7z7DmXn2XKJhngdVyQ4Xc8VismWNiEYWFw8CqsQOx7HqA==
age: 152031
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET q-xx.bstatic.com/xdata/images/city/170x136/737551.jpg?k=ad4ef19a2b979ef794b56d1901e6937b874b4726a4085d8ddbe795f5c6bfed73&o=

3.167.2.62

0 B

URL GET
q-xx.bstatic.com/xdata/images/city/170x136/737551.jpg?k=ad4ef19a2b979ef794b56d1901e6937b874b4726a4085d8ddbe795f5c6bfed73&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /xdata/images/city/170x136/737551.jpg?k=ad4ef19a2b979ef794b56d1901e6937b874b4726a4085d8ddbe795f5c6bfed73&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

GET q-xx.bstatic.com/xdata/images/city/170x136/894152.jpg?k=44f3e1ca20bd0a7e0f455316f2f93b49945239d70f60ce7fdec592db83b30e85&o=

3.167.2.62

0 B

URL GET
q-xx.bstatic.com/xdata/images/city/170x136/894152.jpg?k=44f3e1ca20bd0a7e0f455316f2f93b49945239d70f60ce7fdec592db83b30e85&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /xdata/images/city/170x136/894152.jpg?k=44f3e1ca20bd0a7e0f455316f2f93b49945239d70f60ce7fdec592db83b30e85&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

GET r-xx.bstatic.com/xdata/images/city/170x136/740935.jpg?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o=

3.167.2.62

0 B

URL GET
r-xx.bstatic.com/xdata/images/city/170x136/740935.jpg?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /xdata/images/city/170x136/740935.jpg?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

GET cf.bstatic.com/static/js/main_cloudfront_sd/37b0035f1b7ece069e7b9aa8f0a27b2fe25486cb.js

3.167.2.62

200 OK

573 kB

URL GET
cf.bstatic.com/static/js/main_cloudfront_sd/37b0035f1b7ece069e7b9aa8f0a27b2fe25486cb.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (57572)
Size
573 kB (573057 bytes)
Hash
6b8fca62194c40254cd158ce96b8c803
5694d99f46939ede2787af9b1e655139351b3184
d45e259489658771cb19b890ffc2dc427a40492de6093ec290fd98eb0c81b0d3

HTTP Headers

GET /static/js/main_cloudfront_sd/37b0035f1b7ece069e7b9aa8f0a27b2fe25486cb.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
date: Thu, 17 Jul 2025 12:54:56 GMT
last-modified: Wed, 16 Jul 2025 08:37:10 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=604800
x-amz-version-id: QROnBiWCo112s3AuLS0.9QnDidUEq00x
server: AmazonS3
etag: W/"6b8fca62194c40254cd158ce96b8c803"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: EKThZzzCyvTL7CcpI9N4nQN04-tHfuR1nVSNgwNoG-uZuKkXltSSag==
age: 51248
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/ace575b5.f78e2c6e.chunk.js

3.167.2.62

200 OK

229 kB

URL GET
cf.bstatic.com/psb/capla/static/js/ace575b5.f78e2c6e.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65455)
Size
229 kB (228617 bytes)
Hash
4d07e09f104d7c02e0f30df34a35332b
959e224e1ec6bd53e9f530e17cc575be5b7454cb
5b2234e1bf75afe060b308a7cb1d2509348d5653264231a8ffcea2e95b161652

HTTP Headers

GET /psb/capla/static/js/ace575b5.f78e2c6e.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Thu, 17 Jul 2025 14:13:06 GMT
last-modified: Thu, 17 Jul 2025 08:43:20 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 6a06f45a2dc6276a3d4a4597f20b8d3a7eb1a4c0
x-amz-version-id: 7S81gkhyMhyfxTM_L_7aDghCyNjyN49M
server: AmazonS3
etag: W/"4d07e09f104d7c02e0f30df34a35332b"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 4cTONMhWCV3hmPdoPeNoUAUTO1VFxVGOv2ezeXjO80-rzVv8Kv-2IA==
age: 46559
timing-allow-origin: *
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2

GET r-xx.bstatic.com/xdata/images/hotel/263x210/595549938.jpeg?k=88e50f4acf09b4edc03ca94818723b3baca6eeaf49bf318edf8dc6690775c480&o=

3.167.2.62

200 OK

17 kB

URL GET
r-xx.bstatic.com/xdata/images/hotel/263x210/595549938.jpeg?k=88e50f4acf09b4edc03ca94818723b3baca6eeaf49bf318edf8dc6690775c480&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x210, components 3
Size
17 kB (16561 bytes)
Hash
e53bd17153352cc87889ac0e29e10a72
af86a918abdaf28709db1a806e4997ca470ede5d
f2bf9dca3f43525988004e5e525d0aeff3cb35cadb7f5100ff6c7eb04a90d858

HTTP Headers

GET /xdata/images/hotel/263x210/595549938.jpeg?k=88e50f4acf09b4edc03ca94818723b3baca6eeaf49bf318edf8dc6690775c480&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Thu, 26 Jun 2025 15:10:04 GMT
content-language: 16561
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "ed0d9c913bc55fd6b95d2fdf89cd07124cfe45d5"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: q4iVn1Gt0-nN_MrfR3HxPSXSyEPVCPj8VL3fKMYiLF3akyZ-ReDiBg==
age: 1857545
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/js/5aeeadf2.14097820.chunk.js

3.167.2.62

200 OK

172 kB

URL GET
cf.bstatic.com/psb/capla/static/js/5aeeadf2.14097820.chunk.js
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
172 kB (172117 bytes)
Hash
40ac6664a57b054dacf7299a1639a8dc
0dc1c756f9725f1f43b00ee657e13a0db1bf331c
95a212c62019cd6c82322b54094af79eb294abcf5e973212934f1976e3b5cf51

HTTP Headers

GET /psb/capla/static/js/5aeeadf2.14097820.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Wed, 16 Jul 2025 08:41:34 GMT
last-modified: Tue, 15 Jul 2025 12:31:45 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 5cf119e5900c81b7c9105a2f3bd7097b38b8793c
x-amz-version-id: kxdqLKolHL3dIlyL6p_chrxSMbM2dYi5
server: AmazonS3
etag: W/"40ac6664a57b054dacf7299a1639a8dc"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: s09MEcpxpqir-C8ArmgT28DSRjzzuMrNY_1QVsgBsO1Oo9S_2CvUaA==
age: 152857
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/694950327.webp?k=f2289c369c9576a7bfb0c9c742763de0faeecbcb9721eec07095164818e98eb9&o=

3.167.2.62

0 B

URL GET
cf.bstatic.com/xdata/images/hotel/square600/694950327.webp?k=f2289c369c9576a7bfb0c9c742763de0faeecbcb9721eec07095164818e98eb9&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /xdata/images/hotel/square600/694950327.webp?k=f2289c369c9576a7bfb0c9c742763de0faeecbcb9721eec07095164818e98eb9&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

GET cf.bstatic.com/psb/capla/static/css/e041cab1.243e20f4.chunk.css

3.167.2.62

200 OK

860 B

URL GET
cf.bstatic.com/psb/capla/static/css/e041cab1.243e20f4.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (527)
Size
860 B (860 bytes)
Hash
65703ff6d7d9468d8b4d1bd3ff04e5f2
6b29fac200c309548c71846b05745c82381bd4fe
5968af2b1e0348fb1867104a47b58ac60c5505c2ddf2b6a83d526174a630ce2e

HTTP Headers

GET /psb/capla/static/css/e041cab1.243e20f4.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
content-length: 860
date: Mon, 14 Jul 2025 13:31:02 GMT
last-modified: Mon, 14 Jul 2025 08:43:18 GMT
etag: "65703ff6d7d9468d8b4d1bd3ff04e5f2"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 105c281e5639f5ad04cebbaacef2e8b0ba285a26
x-amz-version-id: zhORRE2nDs52OPApcSwLivctOALloHf1
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: uoB3qC6360A730Wpfje7jvc11CJffSFsK-eO3iDJMD6262tVXdV26Q==
age: 308283
timing-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/css/09fb2abd.4abd0d95.chunk.css

3.167.2.62

200 OK

487 B

URL GET
cf.bstatic.com/psb/capla/static/css/09fb2abd.4abd0d95.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (316)
Size
487 B (487 bytes)
Hash
2fdae36a588ce6116fffd3401b20bded
d4e4a59dcedda7167cbede8b714a57952deb264e
dc453605aee08b003cc2d8296bb0c8ffd376e0a93e5d85254f93bed3476c4287

HTTP Headers

GET /psb/capla/static/css/09fb2abd.4abd0d95.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
content-length: 487
date: Tue, 06 May 2025 07:40:30 GMT
last-modified: Tue, 06 May 2025 07:31:05 GMT
etag: "2fdae36a588ce6116fffd3401b20bded"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: af708a8556351c172a29ce95cde0efa3bf60791c
x-amz-version-id: o0OpZp1rjkgVZlE25vuFmt2kgL7kGeMd
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: zUv-WBcq3wUX1QWd9NZtqFFsGxGjjzFtO6Z_sE48NfBCZttiboYPbw==
age: 6290915
timing-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/css/ddf740c7.883a98eb.chunk.css

3.167.2.62

200 OK

12 kB

URL GET
cf.bstatic.com/psb/capla/static/css/ddf740c7.883a98eb.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (2480)
Size
12 kB (12303 bytes)
Hash
022b2528df35b0de58ecb0005df1fba5
52110fd83ec3a26ee3e72971ea0f29a02064cd9a
8d104fc0e78f99c1db844ed38378d329cf2993f6918d47988582b34ce55d5cb5

HTTP Headers

GET /psb/capla/static/css/ddf740c7.883a98eb.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Fri, 04 Jul 2025 13:33:50 GMT
last-modified: Fri, 04 Jul 2025 12:31:00 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 2f7b897df2982f6cf5fbd1a642c4d3fbdeda5e37
x-amz-version-id: CWOrAcnK2NXEuEYgwkNm0p5B97MCHKDZ
server: AmazonS3
etag: W/"022b2528df35b0de58ecb0005df1fba5"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: M7wKiCwCiGC2GnqdIOvV6Vn-qjmfeirUeHoo1G6EIw-2q69l1CVP4g==
age: 1172115
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/static/css/fonticons_clean/base64/woff/5d61b8a7156073e5e3e9741f65dda44ae3eef7d2.css

3.167.2.62

200 OK

227 kB

URL GET
cf.bstatic.com/static/css/fonticons_clean/base64/woff/5d61b8a7156073e5e3e9741f65dda44ae3eef7d2.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (65487)
Size
227 kB (226735 bytes)
Hash
cad5fe4c499f7568e14e7ab6ff9b3361
7cf66966b26c499b535efd53c77f65df7da14338
83f4228d1d92171186e8b8ccce6e69b32ad6b322db4af7e4b6f54ce50e299587

HTTP Headers

GET /static/css/fonticons_clean/base64/woff/5d61b8a7156073e5e3e9741f65dda44ae3eef7d2.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
last-modified: Mon, 14 Apr 2025 13:30:19 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
x-amz-version-id: A._gVlRv8DVNh8ZowfQAeMa53IqmbCtR
server: AmazonS3
date: Thu, 17 Jul 2025 18:17:03 GMT
cache-control: public,max-age=604800
etag: W/"cad5fe4c499f7568e14e7ab6ff9b3361"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 6I5xrCOqutZUCW5zSyWlf6SLqn7NeTo3SXPbsH1iVT00OLD0WUmffA==
age: 31927
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET www.booking.com/js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=c9c216276d7902f0&ete=&etg=&etcg=OAYRKHMaXbSbcVIZdRJbYTceMaCTPdKNKNKWe|1&ets=cCeIVOdJEVOAeZTbQNPcZRALOLOLMO|2,cCeIVOTeJUNSMTfIMLebaTaTaET|2,cCeIVOTeJUNSMTaSdNdKNKNKWe|2,ZXZAVacDNBMPLZQNPcUecUYCMDORMTfLT|2,fGcBeNZbBcRcAPQHVLWIXOERJPXafJCfSFNTTNdKNKNKWe|2,OAYRKHMdReLDEZRERXSBSLKMBdLOLOLMO|8&etgwv=

54.240.174.43

200 OK

12 B

URL GET
www.booking.com/js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=c9c216276d7902f0&ete=&etg=&etcg=OAYRKHMaXbSbcVIZdRJbYTceMaCTPdKNKNKWe|1&ets=cCeIVOdJEVOAeZTbQNPcZRALOLOLMO|2,cCeIVOTeJUNSMTfIMLebaTaTaET|2,cCeIVOTeJUNSMTaSdNdKNKNKWe|2,ZXZAVacDNBMPLZQNPcUecUYCMDORMTfLT|2,fGcBeNZbBcRcAPQHVLWIXOERJPXafJCfSFNTTNdKNKNKWe|2,OAYRKHMdReLDEZRERXSBSLKMBdLOLOLMO|8&etgwv=
IP
54.240.174.43:443
ASN
#16509 AMAZON-02

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.booking.com
Fingerprint40:C8:C7:99:E8:DF:B4:B7:80:45:6C:57:15:2A:09:28:16:A7:2B:BB
ValidityFri, 07 Mar 2025 00:00:00 GMT - Sat, 17 Jan 2026 23:59:59 GMT

File type
GIF image data, version 89a, 1 x 1
Size
12 B (12 bytes)
Hash
45e0d10a08ad25f44cb9c2b6e732858c
8e47bb27521f644194d8d6ed92c22513a68715d9
4c55d6d27f3d4503e15ce98f4e4cccc15a49ecc0445a3a0996578437f7ab701f

HTTP Headers

GET /js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=c9c216276d7902f0&ete=&etg=&etcg=OAYRKHMaXbSbcVIZdRJbYTceMaCTPdKNKNKWe|1&ets=cCeIVOdJEVOAeZTbQNPcZRALOLOLMO|2,cCeIVOTeJUNSMTfIMLebaTaTaET|2,cCeIVOTeJUNSMTaSdNdKNKNKWe|2,ZXZAVacDNBMPLZQNPcUecUYCMDORMTfLT|2,fGcBeNZbBcRcAPQHVLWIXOERJPXafJCfSFNTTNdKNKNKWe|2,OAYRKHMdReLDEZRERXSBSLKMBdLOLOLMO|8&etgwv= HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
X-Booking-Info: 
X-Booking-Client-Info: 
X-Booking-Pageview-Id: c9c216276d7902f0
X-Booking-SiteType-Id: 1
X-Booking-Language-Code: en-us
X-Booking-AID: 818288
X-Booking-Session-Id: aeed92b9ea705988ecd6d3925c162904
X-Booking-ET-Serialized-State: EZC0me3pHIwv-yYtQGQUdHMaUQ3rRxsio5-cDr4cc3Ohkp_KG_12HWFDp-raNqwOx
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbKE7bjkbYWzkssVfMmPBJG5sR9oMGYqz2d6iZkeX%2Bd5nQpRIS%2FDh2dNFnDGRVmVOi800kUmuzkhMMeaSPIp%2Bf%2FWNg9BC8iIp74wDTfIDWf8QNyjX9Alj2El96fpdqPE%2F5qZsmr0qZOMniSpGyFkXO1wfW8GVvtgtsbg89GhlMGXY%3D; pcm_personalization_disabled=0; bkng_sso_auth=CAIQ0+WGHxpmrqlfCI/7cj7WenmOuL5QxSn4u0pk06cV4xlrrrhmJKAb1FesYuKumLV4pSqW60W2NnCfEB+Pr3GDZ3i/aG465ACIGtpwXlBI9XDqnlhOkhTT7xUttessFF0wXrOKUtvFXd/bRD8o; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3De1046c70-f5fb-4ace-8c3b-1dcf67343057%26consentedAt%3D2025-07-18T03%3A09%3A02.576Z%26expiresAt%3D2026-01-14T03%3A09%3A02.576Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; cors_js=1; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/gif
content-length: 35
server: nginx
date: Fri, 18 Jul 2025 03:09:09 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=8a29162a0ce003d8&e=UmFuZG9tSVYkc2RlIyh9Yea92wm0yRUjnCBymoy8ejIvUNClHzQPVRoG9NGb79mKKxnqSgmFo9k
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bPT5f0sVYm8hrfa1ZiiAN-hcyQBvrB_KyOtRvz6y5_6SYqjRxSi-eQ==
server-timing: cdn-upstream-layer;desc="REC",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=1,cdn-upstream-fbl;dur=19,cdn-cache-miss,cdn-pop;desc="OSL50-P1",cdn-rid;desc="bPT5f0sVYm8hrfa1ZiiAN-hcyQBvrB_KyOtRvz6y5_6SYqjRxSi-eQ==",cdn-downstream-fbl;dur=55
X-Firefox-Spdy: h2

GET cf.bstatic.com/psb/capla/static/css/d0625f39.9d8a69b4.chunk.css

3.167.2.62

200 OK

9.5 kB

URL GET
cf.bstatic.com/psb/capla/static/css/d0625f39.9d8a69b4.chunk.css
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with very long lines (2480)
Size
9.5 kB (9506 bytes)
Hash
454d3baa88541c97bc52e3ad861b891e
acef35181c7bfb469b9783fe63000af14868acc0
a9a6bf8f0d4922b06ef0e1e82582aa92b3e079115dc51f928c857e2a02ba0612

HTTP Headers

GET /psb/capla/static/css/d0625f39.9d8a69b4.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Mon, 14 Jul 2025 13:26:28 GMT
last-modified: Mon, 14 Jul 2025 08:43:18 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
x-amz-meta-x-deployment-hash: 105c281e5639f5ad04cebbaacef2e8b0ba285a26
x-amz-version-id: CZWfmQ_kVs4V_fwciMIwvf8s0bVHTgFs
server: AmazonS3
etag: W/"454d3baa88541c97bc52e3ad861b891e"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: bd-OJenESjQKUjcgyrVxlsj3iy_-K-lyVKIm5VX3DsXOz-eJscmu2Q==
age: 308557
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET cf.bstatic.com/xdata/images/hotel/square600/286573218.webp?k=b4287a4f02fc1d676009d16ebf5243df76493eeacebff3e12561b51d4a2fc675&o=

3.167.2.62

200 OK

68 kB

URL GET
cf.bstatic.com/xdata/images/hotel/square600/286573218.webp?k=b4287a4f02fc1d676009d16ebf5243df76493eeacebff3e12561b51d4a2fc675&o=
IP
3.167.2.62:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp
Size
68 kB (67956 bytes)
Hash
e2b858be6b241298e492ff3284fd6683
63ba81ec4c118b5858c04aceee9090ef8c15ce36
aa13f5b7107803e252d6741bc3a65df152897f32190e6876a63b82791fe414ab

HTTP Headers

GET /xdata/images/hotel/square600/286573218.webp?k=b4287a4f02fc1d676009d16ebf5243df76493eeacebff3e12561b51d4a2fc675&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
server: nginx
date: Tue, 15 Jul 2025 08:33:45 GMT
content-language: 67956
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
etag: "02fd526087bb82246f3218c13dc8d70cc7758f9a"
x-cache: Hit from cloudfront
via: 1.1 16015e09e0d70f7cc17ec5c4f52b310e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 9X5MP_VrpAZDaL8w-l0akrEn33TzMaEtBpojw717BvCOvi3T_3pOnA==
age: 239725
X-Firefox-Spdy: h2

POST www.booking.com/c360/v1/track

54.240.174.43

200 OK

181 B

URL POST
www.booking.com/c360/v1/track
IP
54.240.174.43:443
ASN
#16509 AMAZON-02

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.booking.com
Fingerprint40:C8:C7:99:E8:DF:B4:B7:80:45:6C:57:15:2A:09:28:16:A7:2B:BB
ValidityFri, 07 Mar 2025 00:00:00 GMT - Sat, 17 Jan 2026 23:59:59 GMT

File type
JSON text data
Size
181 B (181 bytes)
Hash
4524c3ba9aa29b5eeab99451ebfd1f02
b66ff7d3b99417fad9385df6d988b2a55ed127e9
93e4a6ccafe2de54520e43663939507bf474421d521daaa17322499ccadb4ced

HTTP Headers

POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-Type: application/json
X-Booking-Platform: www
X-Booking-SiteType-Id: 1
X-Booking-Pageview-Id: c9c216276d7902f0
X-Booking-Session-Id: undefined
X-Booking-ET-Seed: undefined
X-Booking-AID: 818288
X-Booking-Label: undefined
X-Booking-CSRF: undefined
X-Booking-Language-Code: en-us
Content-Length: 5778
Origin: https://www.booking.com
DNT: 1
Connection: keep-alive
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbXpFeYC4TUhC2Bxpad7rBkr%2BBrpJH1iHk8hNi2mMcmzXF8jUW%2BVxThsdq6wInopZjuV27xCTneFk6OCFM3nVGzmdMgxhdOwgJHsEG9nA9HLOqiL3KT2uYPI%2B9bcLdcZ9QWYldSuSfFW9JqZd13MmC8q5smnfwFrzCgwDtRO%2By6V4%3D; pcm_personalization_disabled=0; bkng_sso_auth=CAIQ0+WGHxpmrqlfCI/7cj7WenmOuL5QxSn4u0pk06cV4xlrrrhmJKAb1FesYuKumLV4pSqW60W2NnCfEB+Pr3GDZ3i/aG465ACIGtpwXlBI9XDqnlhOkhTT7xUttessFF0wXrOKUtvFXd/bRD8o; pcm_consent=analytical%3Dfalse%26countryCode%3DNO%26consentId%3De1046c70-f5fb-4ace-8c3b-1dcf67343057%26consentedAt%3D2025-07-18T03%3A09%3A02.576Z%26expiresAt%3D2026-01-14T03%3A09%3A02.576Z%26implicit%3Dtrue%26marketing%3Dfalse%26regionCode%3D03%26regulation%3Dgdpr%26legacyRegulation%3Dgdpr; cors_js=1; BJS=-; OptanonConsent=isGpcEnabled=0&datestamp=Fri+Jul+18+2025+03%3A09%3A10+GMT%2B0000+(GMT)&version=202501.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=09256104-0f5f-4a6a-ac93-609487ab974a&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D818288%26label%3Daffnetcj-12365056_pub-5108952_site-101463210_pname-Go%2BTravel%2BUn%2BLimited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74%26utm_source%3Daffnetcj%26utm_medium%3Dbannerindex%26utm_campaign%3Dxx%26utm_term%3Dindex-12365056
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 57
server: nginx
date: Fri, 18 Jul 2025 03:09:11 GMT
vary: Accept-Encoding, User-Agent
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
content-security-policy: default-src 'self'; frame-ancestors https://*.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBJosCsR3hFNf85KfpAeWiDR2QeM7MGnpcHs5sFDxAvka99XqVS9Q2w%2BAIN%2FmAlQ%2BZDLp97av9mEeJQ2CpJ3Kb0a%2BRDgsQ%2FKddgnSzyMEOWuFhZLnmVIQ8FcUl8CqDDlhADmpvl87wO5Tmly1L1hhUmKfy%2FZ9xmpqzo%3D; domain=.booking.com; path=/; expires=Wed, 17-Jul-2030 03:09:11 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -QhAM5r23axJkGpR1I3EMR2EpZtQ7v7k0X_LYtY5OfPadlc6EVNHmw==
server-timing: cdn-upstream-layer;desc="REC",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=129,cdn-cache-miss,cdn-pop;desc="OSL50-P1",cdn-rid;desc="-QhAM5r23axJkGpR1I3EMR2EpZtQ7v7k0X_LYtY5OfPadlc6EVNHmw==",cdn-downstream-fbl;dur=170
X-Firefox-Spdy: h2

GET t-cf.bstatic.com/design-assets/assets/v3.160.0/illustrations-traveller/GeniusGenericGiftBox.png

3.167.2.99

200 OK

19 kB

URL GET
t-cf.bstatic.com/design-assets/assets/v3.160.0/illustrations-traveller/GeniusGenericGiftBox.png
IP
3.167.2.99:443
ASN
#0

Requested by
https://www.booking.com/index.html?aid=818288&label=affnetcj-12365056_pub-5108952_site-101463210_pname-Go+Travel+Un+Limited_clkid-aa06e047496b4d29b09a3e979-621213_cjevent-8e6002fa638411f080aa001d0a18ba74&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=xx&utm_term=index-12365056
Certificate
IssuerDigiCert Inc
Subject*.bstatic.com
FingerprintED:89:86:62:AE:EA:9F:3B:1C:7E:93:21:F4:87:83:C7:AB:70:79:9B
ValidityThu, 21 Nov 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
PNG image data, 223 x 260, 8-bit colormap, non-interlaced
Size
19 kB (18837 bytes)
Hash
1b9ad561aa5d91ad4448afa122438ca7
5163ea169b915ac55ed031f6898dd1cff53a7345
6d4f3204952d251df7943f925ff3a27c7e1fe9ab501bd622c7b0b2d2131d05ee

HTTP Headers

GET /design-assets/assets/v3.160.0/illustrations-traveller/GeniusGenericGiftBox.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Android; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 18837
last-modified: Mon, 14 Jul 2025 09:13:34 GMT
x-amz-server-side-encryption: aws:kms
x-amz-server-side-encryption-aws-kms-key-id: arn:aws:kms:eu-west-2:339712873537:key/a7c9de2e-1f60-4f87-bbf7-dc4071c8d126
x-amz-version-id: 9dE5_0WjMehCkhiuIwwGJh24clpujmit
accept-ranges: bytes
server: AmazonS3
date: Thu, 17 Jul 2025 08:58:18 GMT
etag: "729b822a4847e2a0f772c209834b8cbf"
x-cache: Hit from cloudfront
via: 1.1 50c588fd3255d023d9b9021263f5fa0a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: aohaHgnlL5DrfvC6IFnHK8eU1DCZUQvjzvmGGp2qUWjtQhszTEWoig==
age: 65456
timing-allow-origin: *
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (59)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML